]> git.saurik.com Git - apple/xnu.git/blob - bsd/net/if_stf.c
projects / apple / xnu.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
xnu-3248.60.10.tar.gz
[apple/xnu.git] / bsd / net / if_stf.c
1 /*
2 * Copyright (c) 2000-2013 Apple Inc. All rights reserved.
3 *
4 * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. The rights granted to you under the License
10 * may not be used to create, or enable the creation or redistribution of,
11 * unlawful or unlicensed copies of an Apple operating system, or to
12 * circumvent, violate, or enable the circumvention or violation of, any
13 * terms of an Apple operating system software license agreement.
14 *
15 * Please obtain a copy of the License at
16 * http://www.opensource.apple.com/apsl/ and read it before using this file.
17 *
18 * The Original Code and all software distributed under the License are
19 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
20 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
21 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
22 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
23 * Please see the License for the specific language governing rights and
24 * limitations under the License.
25 *
26 * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
27 */
28
29 /* $FreeBSD: src/sys/net/if_stf.c,v 1.1.2.6 2001/07/24 19:10:18 brooks Exp $ */
30 /* $KAME: if_stf.c,v 1.62 2001/06/07 22:32:16 itojun Exp $ */
31
32 /*
33 * Copyright (C) 2000 WIDE Project.
34 * All rights reserved.
35 *
36 * Redistribution and use in source and binary forms, with or without
37 * modification, are permitted provided that the following conditions
38 * are met:
39 * 1. Redistributions of source code must retain the above copyright
40 * notice, this list of conditions and the following disclaimer.
41 * 2. Redistributions in binary form must reproduce the above copyright
42 * notice, this list of conditions and the following disclaimer in the
43 * documentation and/or other materials provided with the distribution.
44 * 3. Neither the name of the project nor the names of its contributors
45 * may be used to endorse or promote products derived from this software
46 * without specific prior written permission.
47 *
48 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
49 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
50 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
51 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
52 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
53 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
54 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
55 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
56 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
57 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
58 * SUCH DAMAGE.
59 */
60 /*
61 * NOTICE: This file was modified by SPARTA, Inc. in 2006 to introduce
62 * support for mandatory and extensible security protections. This notice
63 * is included in support of clause 2.2 (b) of the Apple Public License,
64 * Version 2.0.
65 */
66
67 /*
68 * 6to4 interface, based on RFC3056.
69 *
70 * 6to4 interface is NOT capable of link-layer (I mean, IPv4) multicasting.
71 * There is no address mapping defined from IPv6 multicast address to IPv4
72 * address. Therefore, we do not have IFF_MULTICAST on the interface.
73 *
74 * Due to the lack of address mapping for link-local addresses, we cannot
75 * throw packets toward link-local addresses (fe80::x). Also, we cannot throw
76 * packets to link-local multicast addresses (ff02::x).
77 *
78 * Here are interesting symptoms due to the lack of link-local address:
79 *
80 * Unicast routing exchange:
81 * - RIPng: Impossible. Uses link-local multicast packet toward ff02::9,
82 * and link-local addresses as nexthop.
83 * - OSPFv6: Impossible. OSPFv6 assumes that there's link-local address
84 * assigned to the link, and makes use of them. Also, HELLO packets use
85 * link-local multicast addresses (ff02::5 and ff02::6).
86 * - BGP4+: Maybe. You can only use global address as nexthop, and global
87 * address as TCP endpoint address.
88 *
89 * Multicast routing protocols:
90 * - PIM: Hello packet cannot be used to discover adjacent PIM routers.
91 * Adjacent PIM routers must be configured manually (is it really spec-wise
92 * correct thing to do?).
93 *
94 * ICMPv6:
95 * - Redirects cannot be used due to the lack of link-local address.
96 *
97 * stf interface does not have, and will not need, a link-local address.
98 * It seems to have no real benefit and does not help the above symptoms much.
99 * Even if we assign link-locals to interface, we cannot really
100 * use link-local unicast/multicast on top of 6to4 cloud (since there's no
101 * encapsulation defined for link-local address), and the above analysis does
102 * not change. RFC3056 does not mandate the assignment of link-local address
103 * either.
104 *
105 * 6to4 interface has security issues. Refer to
106 * http://playground.iijlab.net/i-d/draft-itojun-ipv6-transition-abuse-00.txt
107 * for details. The code tries to filter out some of malicious packets.
108 * Note that there is no way to be 100% secure.
109 */
110
111 #include <sys/param.h>
112 #include <sys/systm.h>
113 #include <sys/socket.h>
114 #include <sys/sockio.h>
115 #include <sys/mbuf.h>
116 #include <sys/errno.h>
117 #include <sys/protosw.h>
118 #include <sys/kernel.h>
119 #include <sys/syslog.h>
120
121 #include <sys/malloc.h>
122
123 #include <kern/locks.h>
124
125 #include <net/if.h>
126 #include <net/route.h>
127 #include <net/if_types.h>
128
129 #include <netinet/in.h>
130 #include <netinet/in_systm.h>
131 #include <netinet/ip.h>
132 #include <netinet/ip_var.h>
133 #include <netinet/in_var.h>
134
135 #include <netinet/ip6.h>
136 #include <netinet6/ip6_var.h>
137 #include <netinet6/in6_var.h>
138 #include <netinet/ip_ecn.h>
139
140 #include <netinet/ip_encap.h>
141 #include <net/kpi_interface.h>
142 #include <net/kpi_protocol.h>
143
144
145 #include <net/net_osdep.h>
146
147 #include <net/bpf.h>
148
149 #if CONFIG_MACF_NET
150 #include <security/mac_framework.h>
151 #endif
152
153 #define GET_V4(x) ((const struct in_addr *)(const void *)(&(x)->s6_addr16[1]))
154
155 static lck_grp_t *stf_mtx_grp;
156
157 struct stf_softc {
158 ifnet_t sc_if; /* common area */
159 u_int32_t sc_protocol_family; /* dlil protocol attached */
160 union {
161 struct route __sc_ro4;
162 struct route_in6 __sc_ro6; /* just for safety */
163 } __sc_ro46;
164 #define sc_ro __sc_ro46.__sc_ro4
165 decl_lck_mtx_data(, sc_ro_mtx);
166 const struct encaptab *encap_cookie;
167 bpf_tap_mode tap_mode;
168 bpf_packet_func tap_callback;
169 };
170
171 void stfattach (void);
172
173 static int ip_stf_ttl = 40;
174 static int stf_init_done;
175
176 static void in_stf_input(struct mbuf *, int);
177 static void stfinit(void);
178
179 static struct protosw in_stf_protosw =
180 {
181 .pr_type = SOCK_RAW,
182 .pr_protocol = IPPROTO_IPV6,
183 .pr_flags = PR_ATOMIC|PR_ADDR,
184 .pr_input = in_stf_input,
185 .pr_ctloutput = rip_ctloutput,
186 .pr_usrreqs = &rip_usrreqs,
187 .pr_unlock = rip_unlock,
188 };
189
190 static int stf_encapcheck(const struct mbuf *, int, int, void *);
191 static struct in6_ifaddr *stf_getsrcifa6(struct ifnet *);
192 int stf_pre_output(struct ifnet *, protocol_family_t, struct mbuf **,
193 const struct sockaddr *, void *, char *, char *);
194 static int stf_checkaddr4(struct stf_softc *, const struct in_addr *,
195 struct ifnet *);
196 static int stf_checkaddr6(struct stf_softc *, struct in6_addr *,
197 struct ifnet *);
198 static void stf_rtrequest(int, struct rtentry *, struct sockaddr *);
199 static errno_t stf_ioctl(ifnet_t ifp, u_long cmd, void *data);
200 static errno_t stf_output(ifnet_t ifp, mbuf_t m);
201
202 static void
203 stfinit(void)
204 {
205 if (!stf_init_done) {
206 stf_mtx_grp = lck_grp_alloc_init("stf", LCK_GRP_ATTR_NULL);
207 stf_init_done = 1;
208 }
209 }
210
211 /*
212 * gif_input is the input handler for IP and IPv6 attached to gif
213 */
214 static errno_t
215 stf_media_input(
216 __unused ifnet_t ifp,
217 protocol_family_t protocol_family,
218 mbuf_t m,
219 __unused char *frame_header)
220 {
221 if (proto_input(protocol_family, m) != 0)
222 m_freem(m);
223
224 return (0);
225 }
226
227
228
229 static errno_t
230 stf_add_proto(
231 ifnet_t ifp,
232 protocol_family_t protocol_family,
233 __unused const struct ifnet_demux_desc *demux_array,
234 __unused u_int32_t demux_count)
235 {
236 /* Only one protocol may be attached at a time */
237 struct stf_softc* stf = ifnet_softc(ifp);
238 if (stf->sc_protocol_family == 0)
239 stf->sc_protocol_family = protocol_family;
240 else {
241 printf("stf_add_proto: stf already has a proto\n");
242 return EBUSY;
243 }
244
245 return 0;
246 }
247
248 static errno_t
249 stf_del_proto(
250 ifnet_t ifp,
251 protocol_family_t protocol_family)
252 {
253 if (((struct stf_softc*)ifnet_softc(ifp))->sc_protocol_family == protocol_family)
254 ((struct stf_softc*)ifnet_softc(ifp))->sc_protocol_family = 0;
255
256 return 0;
257 }
258
259 static errno_t
260 stf_attach_inet6(
261 ifnet_t ifp,
262 protocol_family_t protocol_family)
263 {
264 struct ifnet_attach_proto_param reg;
265 errno_t stat;
266
267 if (protocol_family != PF_INET6)
268 return EPROTONOSUPPORT;
269
270 bzero(&reg, sizeof(reg));
271 reg.input = stf_media_input;
272 reg.pre_output = stf_pre_output;
273
274 stat = ifnet_attach_protocol(ifp, protocol_family, &reg);
275 if (stat && stat != EEXIST) {
276 printf("stf_attach_proto_family can't attach interface fam=%d\n",
277 protocol_family);
278 }
279
280 return stat;
281 }
282
283 static errno_t
284 stf_demux(
285 ifnet_t ifp,
286 __unused mbuf_t m,
287 __unused char *frame_ptr,
288 protocol_family_t *protocol_family)
289 {
290 struct stf_softc* stf = ifnet_softc(ifp);
291 *protocol_family = stf->sc_protocol_family;
292 return 0;
293 }
294
295 static errno_t
296 stf_set_bpf_tap(
297 ifnet_t ifp,
298 bpf_tap_mode mode,
299 bpf_packet_func callback)
300 {
301 struct stf_softc *sc = ifnet_softc(ifp);
302
303 sc->tap_mode = mode;
304 sc->tap_callback = callback;
305
306 return 0;
307 }
308
309 void
310 stfattach(void)
311 {
312 struct stf_softc *sc;
313 int error;
314 const struct encaptab *p;
315 struct ifnet_init_params stf_init;
316
317 stfinit();
318
319 error = proto_register_plumber(PF_INET6, APPLE_IF_FAM_STF,
320 stf_attach_inet6, NULL);
321 if (error != 0)
322 printf("proto_register_plumber failed for AF_INET6 error=%d\n", error);
323
324 sc = _MALLOC(sizeof(struct stf_softc), M_DEVBUF, M_WAITOK | M_ZERO);
325 if (sc == 0) {
326 printf("stf softc attach failed\n" );
327 return;
328 }
329
330 p = encap_attach_func(AF_INET, IPPROTO_IPV6, stf_encapcheck,
331 &in_stf_protosw, sc);
332 if (p == NULL) {
333 printf("sftattach encap_attach_func failed\n");
334 FREE(sc, M_DEVBUF);
335 return;
336 }
337 sc->encap_cookie = p;
338 lck_mtx_init(&sc->sc_ro_mtx, stf_mtx_grp, LCK_ATTR_NULL);
339
340 bzero(&stf_init, sizeof(stf_init));
341 stf_init.name = "stf";
342 stf_init.unit = 0;
343 stf_init.type = IFT_STF;
344 stf_init.family = IFNET_FAMILY_STF;
345 stf_init.output = stf_output;
346 stf_init.demux = stf_demux;
347 stf_init.add_proto = stf_add_proto;
348 stf_init.del_proto = stf_del_proto;
349 stf_init.softc = sc;
350 stf_init.ioctl = stf_ioctl;
351 stf_init.set_bpf_tap = stf_set_bpf_tap;
352
353 error = ifnet_allocate(&stf_init, &sc->sc_if);
354 if (error != 0) {
355 printf("stfattach, ifnet_allocate failed - %d\n", error);
356 encap_detach(sc->encap_cookie);
357 lck_mtx_destroy(&sc->sc_ro_mtx, stf_mtx_grp);
358 FREE(sc, M_DEVBUF);
359 return;
360 }
361 ifnet_set_mtu(sc->sc_if, IPV6_MMTU);
362 ifnet_set_flags(sc->sc_if, 0, 0xffff); /* clear all flags */
363 #if 0
364 /* turn off ingress filter */
365 ifnet_set_flags(sc->sc_if, IFF_LINK2, IFF_LINK2);
366 #endif
367
368 #if CONFIG_MACF_NET
369 mac_ifnet_label_init(&sc->sc_if);
370 #endif
371
372 error = ifnet_attach(sc->sc_if, NULL);
373 if (error != 0) {
374 printf("stfattach: ifnet_attach returned error=%d\n", error);
375 encap_detach(sc->encap_cookie);
376 ifnet_release(sc->sc_if);
377 lck_mtx_destroy(&sc->sc_ro_mtx, stf_mtx_grp);
378 FREE(sc, M_DEVBUF);
379 return;
380 }
381
382 bpfattach(sc->sc_if, DLT_NULL, sizeof(u_int));
383
384 return;
385 }
386
387 static int
388 stf_encapcheck(
389 const struct mbuf *m,
390 __unused int off,
391 int proto,
392 void *arg)
393 {
394 struct ip ip;
395 struct in6_ifaddr *ia6;
396 struct stf_softc *sc;
397 struct in_addr a, b;
398
399 sc = (struct stf_softc *)arg;
400 if (sc == NULL)
401 return 0;
402
403 if ((ifnet_flags(sc->sc_if) & IFF_UP) == 0)
404 return 0;
405
406 /* IFF_LINK0 means "no decapsulation" */
407 if ((ifnet_flags(sc->sc_if) & IFF_LINK0) != 0)
408 return 0;
409
410 if (proto != IPPROTO_IPV6)
411 return 0;
412
413 mbuf_copydata((struct mbuf *)(size_t)m, 0, sizeof(ip), &ip);
414
415 if (ip.ip_v != 4)
416 return 0;
417
418 ia6 = stf_getsrcifa6(sc->sc_if);
419 if (ia6 == NULL)
420 return 0;
421
422 /*
423 * check if IPv4 dst matches the IPv4 address derived from the
424 * local 6to4 address.
425 * success on: dst = 10.1.1.1, ia6->ia_addr = 2002:0a01:0101:...
426 */
427 IFA_LOCK(&ia6->ia_ifa);
428 if (bcmp(GET_V4(&ia6->ia_addr.sin6_addr), &ip.ip_dst,
429 sizeof(ip.ip_dst)) != 0) {
430 IFA_UNLOCK(&ia6->ia_ifa);
431 IFA_REMREF(&ia6->ia_ifa);
432 return 0;
433 }
434 /*
435 * check if IPv4 src matches the IPv4 address derived from the
436 * local 6to4 address masked by prefixmask.
437 * success on: src = 10.1.1.1, ia6->ia_addr = 2002:0a00:.../24
438 * fail on: src = 10.1.1.1, ia6->ia_addr = 2002:0b00:.../24
439 */
440 bzero(&a, sizeof(a));
441 a.s_addr = GET_V4(&ia6->ia_addr.sin6_addr)->s_addr;
442 a.s_addr &= GET_V4(&ia6->ia_prefixmask.sin6_addr)->s_addr;
443 b = ip.ip_src;
444 b.s_addr &= GET_V4(&ia6->ia_prefixmask.sin6_addr)->s_addr;
445 if (a.s_addr != b.s_addr) {
446 IFA_UNLOCK(&ia6->ia_ifa);
447 IFA_REMREF(&ia6->ia_ifa);
448 return 0;
449 }
450 /* stf interface makes single side match only */
451 IFA_UNLOCK(&ia6->ia_ifa);
452 IFA_REMREF(&ia6->ia_ifa);
453 return 32;
454 }
455
456 static struct in6_ifaddr *
457 stf_getsrcifa6(struct ifnet *ifp)
458 {
459 struct ifaddr *ia;
460 struct in_ifaddr *ia4;
461 struct sockaddr_in6 *sin6;
462 struct in_addr in;
463
464 ifnet_lock_shared(ifp);
465 for (ia = ifp->if_addrlist.tqh_first; ia; ia = ia->ifa_list.tqe_next) {
466 IFA_LOCK(ia);
467 if (ia->ifa_addr == NULL) {
468 IFA_UNLOCK(ia);
469 continue;
470 }
471 if (ia->ifa_addr->sa_family != AF_INET6) {
472 IFA_UNLOCK(ia);
473 continue;
474 }
475 sin6 = (struct sockaddr_in6 *)(void *)ia->ifa_addr;
476 if (!IN6_IS_ADDR_6TO4(&sin6->sin6_addr)) {
477 IFA_UNLOCK(ia);
478 continue;
479 }
480 bcopy(GET_V4(&sin6->sin6_addr), &in, sizeof(in));
481 IFA_UNLOCK(ia);
482 lck_rw_lock_shared(in_ifaddr_rwlock);
483 for (ia4 = TAILQ_FIRST(&in_ifaddrhead);
484 ia4;
485 ia4 = TAILQ_NEXT(ia4, ia_link))
486 {
487 IFA_LOCK(&ia4->ia_ifa);
488 if (ia4->ia_addr.sin_addr.s_addr == in.s_addr) {
489 IFA_UNLOCK(&ia4->ia_ifa);
490 break;
491 }
492 IFA_UNLOCK(&ia4->ia_ifa);
493 }
494 lck_rw_done(in_ifaddr_rwlock);
495 if (ia4 == NULL)
496 continue;
497
498 IFA_ADDREF(ia); /* for caller */
499 ifnet_lock_done(ifp);
500 return ((struct in6_ifaddr *)ia);
501 }
502 ifnet_lock_done(ifp);
503
504 return (NULL);
505 }
506
507 int
508 stf_pre_output(
509 struct ifnet *ifp,
510 __unused protocol_family_t protocol_family,
511 struct mbuf **m0,
512 const struct sockaddr *dst,
513 __unused void *route,
514 __unused char *desk_linkaddr,
515 __unused char *frame_type)
516 {
517 struct mbuf *m = *m0;
518 struct stf_softc *sc;
519 const struct sockaddr_in6 *dst6;
520 const struct in_addr *in4;
521 u_int8_t tos;
522 struct ip *ip;
523 struct ip6_hdr *ip6;
524 struct in6_ifaddr *ia6;
525 struct sockaddr_in *dst4;
526 struct ip_out_args ipoa =
527 { IFSCOPE_NONE, { 0 }, IPOAF_SELECT_SRCIF, 0 };
528 errno_t result = 0;
529
530 sc = ifnet_softc(ifp);
531 dst6 = (const struct sockaddr_in6 *)(const void *)dst;
532
533 /* just in case */
534 if ((ifnet_flags(ifp) & IFF_UP) == 0) {
535 printf("stf: IFF_DOWN\n");
536 return ENETDOWN;
537 }
538
539 /*
540 * If we don't have an ip4 address that match my inner ip6 address,
541 * we shouldn't generate output. Without this check, we'll end up
542 * using wrong IPv4 source.
543 */
544 ia6 = stf_getsrcifa6(ifp);
545 if (ia6 == NULL) {
546 return ENETDOWN;
547 }
548
549 if (mbuf_len(m) < sizeof(*ip6)) {
550 m = m_pullup(m, sizeof(*ip6));
551 if (!m) {
552 *m0 = NULL; /* makes sure this won't be double freed */
553 IFA_REMREF(&ia6->ia_ifa);
554 return ENOBUFS;
555 }
556 }
557 ip6 = mtod(m, struct ip6_hdr *);
558 tos = (ntohl(ip6->ip6_flow) >> 20) & 0xff;
559
560 /*
561 * Pickup the right outer dst addr from the list of candidates.
562 * ip6_dst has priority as it may be able to give us shorter IPv4 hops.
563 */
564 if (IN6_IS_ADDR_6TO4(&ip6->ip6_dst))
565 in4 = GET_V4(&ip6->ip6_dst);
566 else if (IN6_IS_ADDR_6TO4(&dst6->sin6_addr))
567 in4 = GET_V4(&dst6->sin6_addr);
568 else {
569 IFA_REMREF(&ia6->ia_ifa);
570 return ENETUNREACH;
571 }
572
573 if (ifp->if_bpf) {
574 /* We need to prepend the address family as a four byte field. */
575 u_int32_t af = AF_INET6;
576
577 bpf_tap_out(ifp, 0, m, &af, sizeof(af));
578 }
579
580 M_PREPEND(m, sizeof(struct ip), M_DONTWAIT, 1);
581 if (m && mbuf_len(m) < sizeof(struct ip))
582 m = m_pullup(m, sizeof(struct ip));
583 if (m == NULL) {
584 *m0 = NULL;
585 IFA_REMREF(&ia6->ia_ifa);
586 return ENOBUFS;
587 }
588 ip = mtod(m, struct ip *);
589
590 bzero(ip, sizeof(*ip));
591
592 IFA_LOCK_SPIN(&ia6->ia_ifa);
593 bcopy(GET_V4(&((struct sockaddr_in6 *)&ia6->ia_addr)->sin6_addr),
594 &ip->ip_src, sizeof(ip->ip_src));
595 IFA_UNLOCK(&ia6->ia_ifa);
596 bcopy(in4, &ip->ip_dst, sizeof(ip->ip_dst));
597 ip->ip_p = IPPROTO_IPV6;
598 ip->ip_ttl = ip_stf_ttl;
599 ip->ip_len = m->m_pkthdr.len; /*host order*/
600 if (ifp->if_flags & IFF_LINK1)
601 ip_ecn_ingress(ECN_NORMAL, &ip->ip_tos, &tos);
602 else
603 ip_ecn_ingress(ECN_NOCARE, &ip->ip_tos, &tos);
604
605 lck_mtx_lock(&sc->sc_ro_mtx);
606 dst4 = (struct sockaddr_in *)(void *)&sc->sc_ro.ro_dst;
607 if (ROUTE_UNUSABLE(&sc->sc_ro) || dst4->sin_family != AF_INET ||
608 bcmp(&dst4->sin_addr, &ip->ip_dst, sizeof(ip->ip_dst)) != 0) {
609 ROUTE_RELEASE(&sc->sc_ro);
610 /* cache route doesn't match: always the case during the first use */
611 dst4->sin_family = AF_INET;
612 dst4->sin_len = sizeof(struct sockaddr_in);
613 bcopy(&ip->ip_dst, &dst4->sin_addr, sizeof(dst4->sin_addr));
614 }
615
616 result = ip_output(m, NULL, &sc->sc_ro, IP_OUTARGS, NULL, &ipoa);
617 lck_mtx_unlock(&sc->sc_ro_mtx);
618
619 /* Assumption: ip_output will free mbuf on errors */
620 /* All the output processing is done here, don't let stf_output be called */
621 if (result == 0)
622 result = EJUSTRETURN;
623 *m0 = NULL;
624 IFA_REMREF(&ia6->ia_ifa);
625 return result;
626 }
627 static errno_t
628 stf_output(
629 __unused ifnet_t ifp,
630 __unused mbuf_t m)
631 {
632 /* All processing is done in stf_pre_output
633 * this shouldn't be called as the pre_output returns "EJUSTRETURN"
634 */
635 return 0;
636 }
637
638 static int
639 stf_checkaddr4(
640 struct stf_softc *sc,
641 const struct in_addr *in,
642 struct ifnet *inifp) /* incoming interface */
643 {
644 struct in_ifaddr *ia4;
645
646 /*
647 * reject packets with the following address:
648 * 224.0.0.0/4 0.0.0.0/8 127.0.0.0/8 255.0.0.0/8
649 */
650 if (IN_MULTICAST(ntohl(in->s_addr)))
651 return -1;
652 switch ((ntohl(in->s_addr) & 0xff000000) >> 24) {
653 case 0: case 127: case 255:
654 return -1;
655 }
656
657 /*
658 * reject packets with broadcast
659 */
660 lck_rw_lock_shared(in_ifaddr_rwlock);
661 for (ia4 = TAILQ_FIRST(&in_ifaddrhead);
662 ia4;
663 ia4 = TAILQ_NEXT(ia4, ia_link))
664 {
665 IFA_LOCK(&ia4->ia_ifa);
666 if ((ia4->ia_ifa.ifa_ifp->if_flags & IFF_BROADCAST) == 0) {
667 IFA_UNLOCK(&ia4->ia_ifa);
668 continue;
669 }
670 if (in->s_addr == ia4->ia_broadaddr.sin_addr.s_addr) {
671 IFA_UNLOCK(&ia4->ia_ifa);
672 lck_rw_done(in_ifaddr_rwlock);
673 return -1;
674 }
675 IFA_UNLOCK(&ia4->ia_ifa);
676 }
677 lck_rw_done(in_ifaddr_rwlock);
678
679 /*
680 * perform ingress filter
681 */
682 if (sc && (ifnet_flags(sc->sc_if) & IFF_LINK2) == 0 && inifp) {
683 struct sockaddr_in sin;
684 struct rtentry *rt;
685
686 bzero(&sin, sizeof(sin));
687 sin.sin_family = AF_INET;
688 sin.sin_len = sizeof(struct sockaddr_in);
689 sin.sin_addr = *in;
690 rt = rtalloc1((struct sockaddr *)&sin, 0, 0);
691 if (rt != NULL)
692 RT_LOCK(rt);
693 if (rt == NULL || rt->rt_ifp != inifp) {
694 #if 1
695 log(LOG_WARNING, "%s: packet from 0x%x dropped "
696 "due to ingress filter\n", if_name(sc->sc_if),
697 (u_int32_t)ntohl(sin.sin_addr.s_addr));
698 #endif
699 if (rt != NULL) {
700 RT_UNLOCK(rt);
701 rtfree(rt);
702 }
703 return -1;
704 }
705 RT_UNLOCK(rt);
706 rtfree(rt);
707 }
708
709 return 0;
710 }
711
712 static int
713 stf_checkaddr6(
714 struct stf_softc *sc,
715 struct in6_addr *in6,
716 struct ifnet *inifp) /* incoming interface */
717 {
718 /*
719 * check 6to4 addresses
720 */
721 if (IN6_IS_ADDR_6TO4(in6))
722 return stf_checkaddr4(sc, GET_V4(in6), inifp);
723
724 /*
725 * reject anything that look suspicious. the test is implemented
726 * in ip6_input too, but we check here as well to
727 * (1) reject bad packets earlier, and
728 * (2) to be safe against future ip6_input change.
729 */
730 if (IN6_IS_ADDR_V4COMPAT(in6) || IN6_IS_ADDR_V4MAPPED(in6))
731 return -1;
732
733 return 0;
734 }
735
736 static void
737 in_stf_input(
738 struct mbuf *m,
739 int off)
740 {
741 struct stf_softc *sc;
742 struct ip *ip;
743 struct ip6_hdr ip6;
744 u_int8_t otos, itos;
745 int proto;
746 struct ifnet *ifp;
747 struct ifnet_stat_increment_param stats;
748
749 ip = mtod(m, struct ip *);
750 proto = ip->ip_p;
751
752 if (proto != IPPROTO_IPV6) {
753 m_freem(m);
754 return;
755 }
756
757 ip = mtod(m, struct ip *);
758
759 sc = (struct stf_softc *)encap_getarg(m);
760
761 if (sc == NULL || (ifnet_flags(sc->sc_if) & IFF_UP) == 0) {
762 m_freem(m);
763 return;
764 }
765
766 ifp = sc->sc_if;
767
768 #if MAC_LABEL
769 mac_mbuf_label_associate_ifnet(ifp, m);
770 #endif
771
772 /*
773 * perform sanity check against outer src/dst.
774 * for source, perform ingress filter as well.
775 */
776 if (stf_checkaddr4(sc, &ip->ip_dst, NULL) < 0 ||
777 stf_checkaddr4(sc, &ip->ip_src, m->m_pkthdr.rcvif) < 0) {
778 m_freem(m);
779 return;
780 }
781
782 otos = ip->ip_tos;
783 mbuf_copydata(m, off, sizeof(ip6), &ip6);
784
785 /*
786 * perform sanity check against inner src/dst.
787 * for source, perform ingress filter as well.
788 */
789 if (stf_checkaddr6(sc, &ip6.ip6_dst, NULL) < 0 ||
790 stf_checkaddr6(sc, &ip6.ip6_src, m->m_pkthdr.rcvif) < 0) {
791 m_freem(m);
792 return;
793 }
794
795 itos = (ntohl(ip6.ip6_flow) >> 20) & 0xff;
796 if ((ifnet_flags(ifp) & IFF_LINK1) != 0)
797 ip_ecn_egress(ECN_NORMAL, &otos, &itos);
798 else
799 ip_ecn_egress(ECN_NOCARE, &otos, &itos);
800 ip6.ip6_flow &= ~htonl(0xff << 20);
801 ip6.ip6_flow |= htonl((u_int32_t)itos << 20);
802
803 m->m_pkthdr.rcvif = ifp;
804 mbuf_pkthdr_setheader(m, mbuf_data(m));
805 mbuf_adj(m, off);
806
807 if (ifp->if_bpf) {
808 /* We need to prepend the address family as a four byte field. */
809 u_int32_t af = AF_INET6;
810 bpf_tap_in(ifp, 0, m, &af, sizeof(af));
811 }
812
813 /*
814 * Put the packet to the network layer input queue according to the
815 * specified address family.
816 * See net/if_gif.c for possible issues with packet processing
817 * reorder due to extra queueing.
818 */
819 bzero(&stats, sizeof(stats));
820 stats.packets_in = 1;
821 stats.bytes_in = mbuf_pkthdr_len(m);
822 mbuf_pkthdr_setrcvif(m, ifp);
823 ifnet_input(ifp, m, &stats);
824
825 return;
826 }
827
828 static void
829 stf_rtrequest(
830 __unused int cmd,
831 struct rtentry *rt,
832 __unused struct sockaddr *sa)
833 {
834 if (rt != NULL) {
835 RT_LOCK_ASSERT_HELD(rt);
836 rt->rt_rmx.rmx_mtu = IPV6_MMTU;
837 }
838 }
839
840 static errno_t
841 stf_ioctl(
842 ifnet_t ifp,
843 u_long cmd,
844 void *data)
845 {
846 struct ifaddr *ifa;
847 struct ifreq *ifr;
848 struct sockaddr_in6 *sin6;
849 int error;
850
851 error = 0;
852 switch (cmd) {
853 case SIOCSIFADDR:
854 ifa = (struct ifaddr *)data;
855 if (ifa == NULL) {
856 error = EAFNOSUPPORT;
857 break;
858 }
859 IFA_LOCK(ifa);
860 if (ifa->ifa_addr->sa_family != AF_INET6) {
861 IFA_UNLOCK(ifa);
862 error = EAFNOSUPPORT;
863 break;
864 }
865 sin6 = (struct sockaddr_in6 *)(void *)ifa->ifa_addr;
866 if (IN6_IS_ADDR_6TO4(&sin6->sin6_addr)) {
867 if ( !(ifnet_flags( ifp ) & IFF_UP) ) {
868 /* do this only if the interface is not already up */
869 ifa->ifa_rtrequest = stf_rtrequest;
870 IFA_UNLOCK(ifa);
871 ifnet_set_flags(ifp, IFF_UP, IFF_UP);
872 } else {
873 IFA_UNLOCK(ifa);
874 }
875 } else {
876 IFA_UNLOCK(ifa);
877 error = EINVAL;
878 }
879 IFA_LOCK_ASSERT_NOTHELD(ifa);
880 break;
881
882 case SIOCADDMULTI:
883 case SIOCDELMULTI:
884 ifr = (struct ifreq *)data;
885 if (ifr && ifr->ifr_addr.sa_family == AF_INET6)
886 ;
887 else
888 error = EAFNOSUPPORT;
889 break;
890
891 default:
892 error = EOPNOTSUPP;
893 break;
894 }
895
896 return error;
897 }
mirror of XNU