2002-04-19 04:46:24 +00:00
|
|
|
/* $KAME: if_faith.c,v 1.23 2001/12/17 13:55:29 sumikawa Exp $ */
|
2001-06-11 12:39:29 +00:00
|
|
|
|
1999-12-07 17:39:16 +00:00
|
|
|
/*
|
|
|
|
* Copyright (c) 1982, 1986, 1993
|
|
|
|
* The Regents of the University of California. All rights reserved.
|
|
|
|
*
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
* modification, are permitted provided that the following conditions
|
|
|
|
* are met:
|
|
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
|
|
* notice, this list of conditions and the following disclaimer.
|
|
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
|
|
* documentation and/or other materials provided with the distribution.
|
|
|
|
* 4. Neither the name of the University nor the names of its contributors
|
|
|
|
* may be used to endorse or promote products derived from this software
|
|
|
|
* without specific prior written permission.
|
|
|
|
*
|
|
|
|
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
|
|
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
|
|
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
|
|
* SUCH DAMAGE.
|
|
|
|
*
|
|
|
|
* $FreeBSD$
|
|
|
|
*/
|
|
|
|
/*
|
|
|
|
* derived from
|
|
|
|
* @(#)if_loop.c 8.1 (Berkeley) 6/10/93
|
|
|
|
* Id: if_loop.c,v 1.22 1996/06/19 16:24:10 wollman Exp
|
|
|
|
*/
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Loopback interface driver for protocol testing and timing.
|
|
|
|
*/
|
2001-06-11 12:39:29 +00:00
|
|
|
#include "opt_inet.h"
|
|
|
|
#include "opt_inet6.h"
|
1999-12-07 17:39:16 +00:00
|
|
|
|
|
|
|
#include <sys/param.h>
|
|
|
|
#include <sys/systm.h>
|
|
|
|
#include <sys/kernel.h>
|
|
|
|
#include <sys/mbuf.h>
|
|
|
|
#include <sys/socket.h>
|
2001-06-11 12:39:29 +00:00
|
|
|
#include <sys/errno.h>
|
1999-12-07 17:39:16 +00:00
|
|
|
#include <sys/sockio.h>
|
2001-06-11 12:39:29 +00:00
|
|
|
#include <sys/time.h>
|
|
|
|
#include <sys/queue.h>
|
2001-09-25 18:40:52 +00:00
|
|
|
#include <sys/types.h>
|
|
|
|
#include <sys/malloc.h>
|
1999-12-07 17:39:16 +00:00
|
|
|
|
|
|
|
#include <net/if.h>
|
|
|
|
#include <net/if_types.h>
|
|
|
|
#include <net/netisr.h>
|
|
|
|
#include <net/route.h>
|
|
|
|
#include <net/bpf.h>
|
2001-06-11 12:39:29 +00:00
|
|
|
|
|
|
|
#ifdef INET
|
|
|
|
#include <netinet/in.h>
|
|
|
|
#include <netinet/in_systm.h>
|
|
|
|
#include <netinet/in_var.h>
|
|
|
|
#include <netinet/ip.h>
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#ifdef INET6
|
|
|
|
#ifndef INET
|
|
|
|
#include <netinet/in.h>
|
|
|
|
#endif
|
|
|
|
#include <netinet6/in6_var.h>
|
|
|
|
#include <netinet/ip6.h>
|
|
|
|
#include <netinet6/ip6_var.h>
|
|
|
|
#endif
|
|
|
|
|
2001-02-04 11:46:17 +00:00
|
|
|
#include <net/net_osdep.h>
|
|
|
|
|
2001-09-25 18:40:52 +00:00
|
|
|
#define FAITHNAME "faith"
|
|
|
|
|
|
|
|
struct faith_softc {
|
|
|
|
struct ifnet sc_if; /* must be first */
|
|
|
|
LIST_ENTRY(faith_softc) sc_list;
|
|
|
|
};
|
|
|
|
|
2002-03-19 21:54:18 +00:00
|
|
|
static int faithioctl(struct ifnet *, u_long, caddr_t);
|
|
|
|
int faithoutput(struct ifnet *, struct mbuf *, struct sockaddr *,
|
|
|
|
struct rtentry *);
|
|
|
|
static void faithrtrequest(int, struct rtentry *, struct rt_addrinfo *);
|
2002-02-26 17:11:37 +00:00
|
|
|
#ifdef INET6
|
2002-03-19 21:54:18 +00:00
|
|
|
static int faithprefix(struct in6_addr *);
|
2002-02-26 17:11:37 +00:00
|
|
|
#endif
|
2001-09-25 18:40:52 +00:00
|
|
|
|
2002-03-19 21:54:18 +00:00
|
|
|
static int faithmodevent(module_t, int, void *);
|
2001-09-25 18:40:52 +00:00
|
|
|
|
2004-03-09 19:23:06 +00:00
|
|
|
static struct mtx faith_mtx;
|
2001-09-25 18:40:52 +00:00
|
|
|
static MALLOC_DEFINE(M_FAITH, FAITHNAME, "Firewall Assisted Tunnel Interface");
|
2002-01-08 10:30:09 +00:00
|
|
|
static LIST_HEAD(, faith_softc) faith_softc_list;
|
1999-12-07 17:39:16 +00:00
|
|
|
|
2002-03-19 21:54:18 +00:00
|
|
|
int faith_clone_create(struct if_clone *, int);
|
2002-05-25 20:17:04 +00:00
|
|
|
void faith_clone_destroy(struct ifnet *);
|
2004-03-09 19:23:06 +00:00
|
|
|
static void faith_destroy(struct faith_softc *);
|
2001-06-11 12:39:29 +00:00
|
|
|
|
2002-03-11 09:26:07 +00:00
|
|
|
struct if_clone faith_cloner = IF_CLONE_INITIALIZER(FAITHNAME,
|
2002-05-25 20:17:04 +00:00
|
|
|
faith_clone_create, faith_clone_destroy, 0, IF_MAXUNIT);
|
1999-12-07 17:39:16 +00:00
|
|
|
|
|
|
|
#define FAITHMTU 1500
|
|
|
|
|
2001-09-25 18:40:52 +00:00
|
|
|
static int
|
|
|
|
faithmodevent(mod, type, data)
|
|
|
|
module_t mod;
|
|
|
|
int type;
|
|
|
|
void *data;
|
1999-12-07 17:39:16 +00:00
|
|
|
{
|
2004-03-09 19:23:06 +00:00
|
|
|
struct faith_softc *sc;
|
2001-09-25 18:40:52 +00:00
|
|
|
|
|
|
|
switch (type) {
|
|
|
|
case MOD_LOAD:
|
2004-03-09 19:23:06 +00:00
|
|
|
mtx_init(&faith_mtx, "faith_mtx", NULL, MTX_DEF);
|
2001-09-25 18:40:52 +00:00
|
|
|
LIST_INIT(&faith_softc_list);
|
|
|
|
if_clone_attach(&faith_cloner);
|
|
|
|
|
|
|
|
#ifdef INET6
|
|
|
|
faithprefix_p = faithprefix;
|
2001-06-11 12:39:29 +00:00
|
|
|
#endif
|
2001-09-25 18:40:52 +00:00
|
|
|
|
|
|
|
break;
|
|
|
|
case MOD_UNLOAD:
|
|
|
|
#ifdef INET6
|
|
|
|
faithprefix_p = NULL;
|
2001-06-11 12:39:29 +00:00
|
|
|
#endif
|
2001-09-25 18:40:52 +00:00
|
|
|
|
|
|
|
if_clone_detach(&faith_cloner);
|
|
|
|
|
2004-03-09 19:23:06 +00:00
|
|
|
mtx_lock(&faith_mtx);
|
|
|
|
while ((sc = LIST_FIRST(&faith_softc_list)) != NULL) {
|
|
|
|
LIST_REMOVE(sc, sc_list);
|
|
|
|
mtx_unlock(&faith_mtx);
|
|
|
|
faith_destroy(sc);
|
|
|
|
mtx_lock(&faith_mtx);
|
|
|
|
}
|
|
|
|
mtx_unlock(&faith_mtx);
|
|
|
|
mtx_destroy(&faith_mtx);
|
2001-09-25 18:40:52 +00:00
|
|
|
break;
|
2001-06-11 12:39:29 +00:00
|
|
|
}
|
2001-09-25 18:40:52 +00:00
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
static moduledata_t faith_mod = {
|
|
|
|
"if_faith",
|
|
|
|
faithmodevent,
|
|
|
|
0
|
|
|
|
};
|
|
|
|
|
|
|
|
DECLARE_MODULE(if_faith, faith_mod, SI_SUB_PSEUDO, SI_ORDER_ANY);
|
|
|
|
MODULE_VERSION(if_faith, 1);
|
|
|
|
|
|
|
|
int
|
|
|
|
faith_clone_create(ifc, unit)
|
|
|
|
struct if_clone *ifc;
|
2002-03-11 09:26:07 +00:00
|
|
|
int unit;
|
2001-09-25 18:40:52 +00:00
|
|
|
{
|
|
|
|
struct faith_softc *sc;
|
|
|
|
|
2003-02-19 05:47:46 +00:00
|
|
|
sc = malloc(sizeof(struct faith_softc), M_FAITH, M_WAITOK);
|
2001-09-25 18:40:52 +00:00
|
|
|
bzero(sc, sizeof(struct faith_softc));
|
|
|
|
|
|
|
|
sc->sc_if.if_softc = sc;
|
2003-10-31 18:32:15 +00:00
|
|
|
if_initname(&sc->sc_if, ifc->ifc_name, unit);
|
2001-09-25 18:40:52 +00:00
|
|
|
|
|
|
|
sc->sc_if.if_mtu = FAITHMTU;
|
|
|
|
/* Change to BROADCAST experimentaly to announce its prefix. */
|
|
|
|
sc->sc_if.if_flags = /* IFF_LOOPBACK */ IFF_BROADCAST | IFF_MULTICAST;
|
|
|
|
sc->sc_if.if_ioctl = faithioctl;
|
|
|
|
sc->sc_if.if_output = faithoutput;
|
|
|
|
sc->sc_if.if_type = IFT_FAITH;
|
|
|
|
sc->sc_if.if_hdrlen = 0;
|
|
|
|
sc->sc_if.if_addrlen = 0;
|
2001-12-17 07:49:34 +00:00
|
|
|
sc->sc_if.if_snd.ifq_maxlen = ifqmaxlen;
|
2001-09-25 18:40:52 +00:00
|
|
|
if_attach(&sc->sc_if);
|
|
|
|
bpfattach(&sc->sc_if, DLT_NULL, sizeof(u_int));
|
2004-03-09 19:23:06 +00:00
|
|
|
mtx_lock(&faith_mtx);
|
2001-09-25 18:40:52 +00:00
|
|
|
LIST_INSERT_HEAD(&faith_softc_list, sc, sc_list);
|
2004-03-09 19:23:06 +00:00
|
|
|
mtx_unlock(&faith_mtx);
|
2001-09-25 18:40:52 +00:00
|
|
|
return (0);
|
|
|
|
}
|
|
|
|
|
2004-03-09 19:23:06 +00:00
|
|
|
static void
|
|
|
|
faith_destroy(struct faith_softc *sc)
|
|
|
|
{
|
|
|
|
|
|
|
|
bpfdetach(&sc->sc_if);
|
|
|
|
if_detach(&sc->sc_if);
|
|
|
|
free(sc, M_FAITH);
|
|
|
|
}
|
|
|
|
|
2002-05-25 20:17:04 +00:00
|
|
|
void
|
2001-09-25 18:40:52 +00:00
|
|
|
faith_clone_destroy(ifp)
|
|
|
|
struct ifnet *ifp;
|
|
|
|
{
|
|
|
|
struct faith_softc *sc = (void *) ifp;
|
|
|
|
|
2004-03-09 19:23:06 +00:00
|
|
|
mtx_lock(&faith_mtx);
|
2001-09-25 18:40:52 +00:00
|
|
|
LIST_REMOVE(sc, sc_list);
|
2004-03-09 19:23:06 +00:00
|
|
|
mtx_unlock(&faith_mtx);
|
2001-09-25 18:40:52 +00:00
|
|
|
|
2004-03-09 19:23:06 +00:00
|
|
|
faith_destroy(sc);
|
2001-06-11 12:39:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
int
|
|
|
|
faithoutput(ifp, m, dst, rt)
|
|
|
|
struct ifnet *ifp;
|
|
|
|
struct mbuf *m;
|
|
|
|
struct sockaddr *dst;
|
|
|
|
struct rtentry *rt;
|
|
|
|
{
|
|
|
|
int isr;
|
|
|
|
|
2003-04-08 14:25:47 +00:00
|
|
|
M_ASSERTPKTHDR(m);
|
2001-09-25 18:40:52 +00:00
|
|
|
|
2001-06-11 12:39:29 +00:00
|
|
|
/* BPF write needs to be handled specially */
|
|
|
|
if (dst->sa_family == AF_UNSPEC) {
|
|
|
|
dst->sa_family = *(mtod(m, int *));
|
|
|
|
m->m_len -= sizeof(int);
|
|
|
|
m->m_pkthdr.len -= sizeof(int);
|
|
|
|
m->m_data += sizeof(int);
|
1999-12-07 17:39:16 +00:00
|
|
|
}
|
2001-06-11 12:39:29 +00:00
|
|
|
|
|
|
|
if (ifp->if_bpf) {
|
|
|
|
u_int32_t af = dst->sa_family;
|
2003-12-28 03:56:00 +00:00
|
|
|
bpf_mtap2(ifp->if_bpf, &af, sizeof(af), m);
|
2001-06-11 12:39:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
if (rt && rt->rt_flags & (RTF_REJECT|RTF_BLACKHOLE)) {
|
|
|
|
m_freem(m);
|
|
|
|
return (rt->rt_flags & RTF_BLACKHOLE ? 0 :
|
|
|
|
rt->rt_flags & RTF_HOST ? EHOSTUNREACH : ENETUNREACH);
|
|
|
|
}
|
|
|
|
ifp->if_opackets++;
|
|
|
|
ifp->if_obytes += m->m_pkthdr.len;
|
|
|
|
switch (dst->sa_family) {
|
|
|
|
#ifdef INET
|
|
|
|
case AF_INET:
|
|
|
|
isr = NETISR_IP;
|
|
|
|
break;
|
|
|
|
#endif
|
|
|
|
#ifdef INET6
|
|
|
|
case AF_INET6:
|
|
|
|
isr = NETISR_IPV6;
|
|
|
|
break;
|
|
|
|
#endif
|
|
|
|
default:
|
|
|
|
m_freem(m);
|
|
|
|
return EAFNOSUPPORT;
|
|
|
|
}
|
|
|
|
|
|
|
|
/* XXX do we need more sanity checks? */
|
|
|
|
|
|
|
|
m->m_pkthdr.rcvif = ifp;
|
|
|
|
ifp->if_ipackets++;
|
|
|
|
ifp->if_ibytes += m->m_pkthdr.len;
|
2003-03-04 23:19:55 +00:00
|
|
|
netisr_dispatch(isr, m);
|
2001-06-11 12:39:29 +00:00
|
|
|
return (0);
|
|
|
|
}
|
|
|
|
|
|
|
|
/* ARGSUSED */
|
|
|
|
static void
|
2001-10-17 18:07:05 +00:00
|
|
|
faithrtrequest(cmd, rt, info)
|
2001-06-11 12:39:29 +00:00
|
|
|
int cmd;
|
|
|
|
struct rtentry *rt;
|
2001-10-17 18:07:05 +00:00
|
|
|
struct rt_addrinfo *info;
|
2001-06-11 12:39:29 +00:00
|
|
|
{
|
2003-10-04 03:44:50 +00:00
|
|
|
RT_LOCK_ASSERT(rt);
|
2003-11-20 20:07:39 +00:00
|
|
|
if (rt)
|
|
|
|
rt->rt_rmx.rmx_mtu = rt->rt_ifp->if_mtu;
|
2001-06-11 12:39:29 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Process an ioctl request.
|
|
|
|
*/
|
|
|
|
/* ARGSUSED */
|
|
|
|
static int
|
|
|
|
faithioctl(ifp, cmd, data)
|
|
|
|
struct ifnet *ifp;
|
|
|
|
u_long cmd;
|
|
|
|
caddr_t data;
|
|
|
|
{
|
|
|
|
struct ifaddr *ifa;
|
|
|
|
struct ifreq *ifr = (struct ifreq *)data;
|
|
|
|
int error = 0;
|
|
|
|
|
|
|
|
switch (cmd) {
|
|
|
|
|
|
|
|
case SIOCSIFADDR:
|
|
|
|
ifp->if_flags |= IFF_UP | IFF_RUNNING;
|
|
|
|
ifa = (struct ifaddr *)data;
|
|
|
|
ifa->ifa_rtrequest = faithrtrequest;
|
|
|
|
/*
|
|
|
|
* Everything else is done at a higher level.
|
|
|
|
*/
|
|
|
|
break;
|
|
|
|
|
|
|
|
case SIOCADDMULTI:
|
|
|
|
case SIOCDELMULTI:
|
|
|
|
if (ifr == 0) {
|
|
|
|
error = EAFNOSUPPORT; /* XXX */
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
switch (ifr->ifr_addr.sa_family) {
|
|
|
|
#ifdef INET
|
|
|
|
case AF_INET:
|
|
|
|
break;
|
|
|
|
#endif
|
|
|
|
#ifdef INET6
|
|
|
|
case AF_INET6:
|
|
|
|
break;
|
|
|
|
#endif
|
|
|
|
|
|
|
|
default:
|
|
|
|
error = EAFNOSUPPORT;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
break;
|
|
|
|
|
|
|
|
#ifdef SIOCSIFMTU
|
|
|
|
case SIOCSIFMTU:
|
|
|
|
ifp->if_mtu = ifr->ifr_mtu;
|
|
|
|
break;
|
|
|
|
#endif
|
|
|
|
|
|
|
|
case SIOCSIFFLAGS:
|
|
|
|
break;
|
|
|
|
|
|
|
|
default:
|
|
|
|
error = EINVAL;
|
|
|
|
}
|
|
|
|
return (error);
|
|
|
|
}
|
|
|
|
|
2001-07-05 14:42:54 +00:00
|
|
|
#ifdef INET6
|
2001-06-11 12:39:29 +00:00
|
|
|
/*
|
|
|
|
* XXX could be slow
|
|
|
|
* XXX could be layer violation to call sys/net from sys/netinet6
|
|
|
|
*/
|
2001-09-25 18:40:52 +00:00
|
|
|
static int
|
2001-06-11 12:39:29 +00:00
|
|
|
faithprefix(in6)
|
|
|
|
struct in6_addr *in6;
|
|
|
|
{
|
|
|
|
struct rtentry *rt;
|
|
|
|
struct sockaddr_in6 sin6;
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
if (ip6_keepfaith == 0)
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
bzero(&sin6, sizeof(sin6));
|
|
|
|
sin6.sin6_family = AF_INET6;
|
|
|
|
sin6.sin6_len = sizeof(struct sockaddr_in6);
|
|
|
|
sin6.sin6_addr = *in6;
|
|
|
|
rt = rtalloc1((struct sockaddr *)&sin6, 0, 0UL);
|
|
|
|
if (rt && rt->rt_ifp && rt->rt_ifp->if_type == IFT_FAITH &&
|
|
|
|
(rt->rt_ifp->if_flags & IFF_UP) != 0)
|
|
|
|
ret = 1;
|
|
|
|
else
|
|
|
|
ret = 0;
|
|
|
|
if (rt)
|
2003-10-04 03:44:50 +00:00
|
|
|
RTFREE_LOCKED(rt);
|
2001-06-11 12:39:29 +00:00
|
|
|
return ret;
|
1999-12-07 17:39:16 +00:00
|
|
|
}
|
2001-07-05 14:42:54 +00:00
|
|
|
#endif
|