1 /*
2 * Copyright (c) 1982, 1989, 1993
3 * The Regents of the University of California. All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 * 3. All advertising materials mentioning features or use of this software
14 * must display the following acknowledgement:
15 * This product includes software developed by the University of
16 * California, Berkeley and its contributors.
17 * 4. Neither the name of the University nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 *
33 * @(#)if_ethersubr.c 8.1 (Berkeley) 6/10/93
34 * $FreeBSD$
35 */
36
37 #include "opt_atalk.h"
38 #include "opt_inet.h"
39 #include "opt_inet6.h"
40 #include "opt_ipx.h"
41 #include "opt_bdg.h"
42 #include "opt_netgraph.h"
43
44 #include <sys/param.h>
45 #include <sys/systm.h>
46 #include <sys/kernel.h>
47 #include <sys/malloc.h>
48 #include <sys/mbuf.h>
49 #include <sys/socket.h>
50 #include <sys/sockio.h>
51 #include <sys/sysctl.h>
52
53 #include <net/if.h>
54 #include <net/netisr.h>
55 #include <net/route.h>
56 #include <net/if_llc.h>
57 #include <net/if_dl.h>
58 #include <net/if_types.h>
59 #include <net/bpf.h>
60 #include <net/ethernet.h>
61 #include <net/bridge.h>
62
63 #if defined(INET) || defined(INET6)
64 #include <netinet/in.h>
65 #include <netinet/in_var.h>
66 #include <netinet/if_ether.h>
67 #include <netinet/ip_fw.h>
68 #include <netinet/ip_dummynet.h>
69 #endif
70 #ifdef INET6
71 #include <netinet6/nd6.h>
72 #endif
73
74 #ifdef IPX
75 #include <netipx/ipx.h>
76 #include <netipx/ipx_if.h>
77 int (*ef_inputp)(struct ifnet*, struct ether_header *eh, struct mbuf *m);
78 int (*ef_outputp)(struct ifnet *ifp, struct mbuf **mp,
79 struct sockaddr *dst, short *tp, int *hlen);
80 #endif
81
82 #ifdef NS
83 #include <netns/ns.h>
84 #include <netns/ns_if.h>
85 ushort ns_nettype;
86 int ether_outputdebug = 0;
87 int ether_inputdebug = 0;
88 #endif
89
90 #ifdef NETATALK
91 #include <netatalk/at.h>
92 #include <netatalk/at_var.h>
93 #include <netatalk/at_extern.h>
94
95 #define llc_snap_org_code llc_un.type_snap.org_code
96 #define llc_snap_ether_type llc_un.type_snap.ether_type
97
98 extern u_char at_org_code[3];
99 extern u_char aarp_org_code[3];
100 #endif /* NETATALK */
101
102 /* netgraph node hooks for ng_ether(4) */
103 void (*ng_ether_input_p)(struct ifnet *ifp,
104 struct mbuf **mp, struct ether_header *eh);
105 void (*ng_ether_input_orphan_p)(struct ifnet *ifp,
106 struct mbuf *m, struct ether_header *eh);
107 int (*ng_ether_output_p)(struct ifnet *ifp, struct mbuf **mp);
108 void (*ng_ether_attach_p)(struct ifnet *ifp);
109 void (*ng_ether_detach_p)(struct ifnet *ifp);
110
111 int (*vlan_input_p)(struct ether_header *eh, struct mbuf *m);
112 int (*vlan_input_tag_p)(struct ether_header *eh, struct mbuf *m,
113 u_int16_t t);
114
115 /* bridge support */
116 int do_bridge;
117 bridge_in_t *bridge_in_ptr;
118 bdg_forward_t *bdg_forward_ptr;
119 bdgtakeifaces_t *bdgtakeifaces_ptr;
120 struct bdg_softc *ifp2sc;
121
122 static int ether_resolvemulti(struct ifnet *, struct sockaddr **,
123 struct sockaddr *);
124 u_char etherbroadcastaddr[6] = { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff };
125 #define senderr(e) do { error = (e); goto bad;} while (0)
126 #define IFP2AC(IFP) ((struct arpcom *)IFP)
127
128 int
129 ether_ipfw_chk(struct mbuf **m0, struct ifnet *dst,
130 struct ip_fw **rule, struct ether_header *eh, int shared);
131 static int ether_ipfw;
132
133 /*
134 * Ethernet output routine.
135 * Encapsulate a packet of type family for the local net.
136 * Use trailer local net encapsulation if enough data in first
137 * packet leaves a multiple of 512 bytes of data in remainder.
138 * Assumes that ifp is actually pointer to arpcom structure.
139 */
140 int
141 ether_output(ifp, m, dst, rt0)
142 register struct ifnet *ifp;
143 struct mbuf *m;
144 struct sockaddr *dst;
145 struct rtentry *rt0;
146 {
147 short type;
148 int error = 0, hdrcmplt = 0;
149 u_char esrc[6], edst[6];
150 register struct rtentry *rt;
151 register struct ether_header *eh;
152 int loop_copy = 0;
153 int hlen; /* link layer header lenght */
154 struct arpcom *ac = IFP2AC(ifp);
155
156 if ((ifp->if_flags & (IFF_UP|IFF_RUNNING)) != (IFF_UP|IFF_RUNNING))
157 senderr(ENETDOWN);
158 rt = rt0;
159 if (rt) {
160 if ((rt->rt_flags & RTF_UP) == 0) {
161 rt0 = rt = rtalloc1(dst, 1, 0UL);
162 if (rt0)
163 rt->rt_refcnt--;
164 else
165 senderr(EHOSTUNREACH);
166 }
167 if (rt->rt_flags & RTF_GATEWAY) {
168 if (rt->rt_gwroute == 0)
169 goto lookup;
170 if (((rt = rt->rt_gwroute)->rt_flags & RTF_UP) == 0) {
171 rtfree(rt); rt = rt0;
172 lookup: rt->rt_gwroute = rtalloc1(rt->rt_gateway, 1,
173 0UL);
174 if ((rt = rt->rt_gwroute) == 0)
175 senderr(EHOSTUNREACH);
176 }
177 }
178 if (rt->rt_flags & RTF_REJECT)
179 if (rt->rt_rmx.rmx_expire == 0 ||
180 time_second < rt->rt_rmx.rmx_expire)
181 senderr(rt == rt0 ? EHOSTDOWN : EHOSTUNREACH);
182 }
183 hlen = ETHER_HDR_LEN;
184 switch (dst->sa_family) {
185 #ifdef INET
186 case AF_INET:
187 if (!arpresolve(ifp, rt, m, dst, edst, rt0))
188 return (0); /* if not yet resolved */
189 type = htons(ETHERTYPE_IP);
190 break;
191 #endif
192 #ifdef INET6
193 case AF_INET6:
194 if (!nd6_storelladdr(&ac->ac_if, rt, m, dst, (u_char *)edst)) {
195 /* Something bad happened */
196 return(0);
197 }
198 type = htons(ETHERTYPE_IPV6);
199 break;
200 #endif
201 #ifdef IPX
202 case AF_IPX:
203 if (ef_outputp) {
204 error = ef_outputp(ifp, &m, dst, &type, &hlen);
205 if (error)
206 goto bad;
207 } else
208 type = htons(ETHERTYPE_IPX);
209 bcopy((caddr_t)&(((struct sockaddr_ipx *)dst)->sipx_addr.x_host),
210 (caddr_t)edst, sizeof (edst));
211 break;
212 #endif
213 #ifdef NETATALK
214 case AF_APPLETALK:
215 {
216 struct at_ifaddr *aa;
217
218 if ((aa = at_ifawithnet((struct sockaddr_at *)dst)) == NULL) {
219 goto bad;
220 }
221 if (!aarpresolve(ac, m, (struct sockaddr_at *)dst, edst))
222 return (0);
223 /*
224 * In the phase 2 case, need to prepend an mbuf for the llc header.
225 * Since we must preserve the value of m, which is passed to us by
226 * value, we m_copy() the first mbuf, and use it for our llc header.
227 */
228 if ( aa->aa_flags & AFA_PHASE2 ) {
229 struct llc llc;
230
231 M_PREPEND(m, sizeof(struct llc), M_WAIT);
232 llc.llc_dsap = llc.llc_ssap = LLC_SNAP_LSAP;
233 llc.llc_control = LLC_UI;
234 bcopy(at_org_code, llc.llc_snap_org_code, sizeof(at_org_code));
235 llc.llc_snap_ether_type = htons( ETHERTYPE_AT );
236 bcopy(&llc, mtod(m, caddr_t), sizeof(struct llc));
237 type = htons(m->m_pkthdr.len);
238 hlen = sizeof(struct llc) + ETHER_HDR_LEN;
239 } else {
240 type = htons(ETHERTYPE_AT);
241 }
242 break;
243 }
244 #endif /* NETATALK */
245 #ifdef NS
246 case AF_NS:
247 switch(ns_nettype){
248 default:
249 case 0x8137: /* Novell Ethernet_II Ethernet TYPE II */
250 type = 0x8137;
251 break;
252 case 0x0: /* Novell 802.3 */
253 type = htons( m->m_pkthdr.len);
254 break;
255 case 0xe0e0: /* Novell 802.2 and Token-Ring */
256 M_PREPEND(m, 3, M_WAIT);
257 type = htons( m->m_pkthdr.len);
258 cp = mtod(m, u_char *);
259 *cp++ = 0xE0;
260 *cp++ = 0xE0;
261 *cp++ = 0x03;
262 break;
263 }
264 bcopy((caddr_t)&(((struct sockaddr_ns *)dst)->sns_addr.x_host),
265 (caddr_t)edst, sizeof (edst));
266 /*
267 * XXX if ns_thishost is the same as the node's ethernet
268 * address then just the default code will catch this anyhow.
269 * So I'm not sure if this next clause should be here at all?
270 * [JRE]
271 */
272 if (!bcmp((caddr_t)edst, (caddr_t)&ns_thishost, sizeof(edst))){
273 m->m_pkthdr.rcvif = ifp;
274 inq = &nsintrq;
275 if (IF_HANDOFF(inq, m, NULL))
276 schednetisr(NETISR_NS);
277 return (error);
278 }
279 if (!bcmp((caddr_t)edst, (caddr_t)&ns_broadhost, sizeof(edst))){
280 m->m_flags |= M_BCAST;
281 }
282 break;
283 #endif /* NS */
284
285 case pseudo_AF_HDRCMPLT:
286 hdrcmplt = 1;
287 eh = (struct ether_header *)dst->sa_data;
288 (void)memcpy(esrc, eh->ether_shost, sizeof (esrc));
289 /* FALLTHROUGH */
290
291 case AF_UNSPEC:
292 loop_copy = -1; /* if this is for us, don't do it */
293 eh = (struct ether_header *)dst->sa_data;
294 (void)memcpy(edst, eh->ether_dhost, sizeof (edst));
295 type = eh->ether_type;
296 break;
297
298 default:
299 printf("%s%d: can't handle af%d\n", ifp->if_name, ifp->if_unit,
300 dst->sa_family);
301 senderr(EAFNOSUPPORT);
302 }
303
304 /*
305 * Add local net header. If no space in first mbuf,
306 * allocate another.
307 */
308 M_PREPEND(m, sizeof (struct ether_header), M_DONTWAIT);
309 if (m == 0)
310 senderr(ENOBUFS);
311 eh = mtod(m, struct ether_header *);
312 (void)memcpy(&eh->ether_type, &type,
313 sizeof(eh->ether_type));
314 (void)memcpy(eh->ether_dhost, edst, sizeof (edst));
315 if (hdrcmplt)
316 (void)memcpy(eh->ether_shost, esrc,
317 sizeof(eh->ether_shost));
318 else
319 (void)memcpy(eh->ether_shost, ac->ac_enaddr,
320 sizeof(eh->ether_shost));
321
322 /*
323 * If a simplex interface, and the packet is being sent to our
324 * Ethernet address or a broadcast address, loopback a copy.
325 * XXX To make a simplex device behave exactly like a duplex
326 * device, we should copy in the case of sending to our own
327 * ethernet address (thus letting the original actually appear
328 * on the wire). However, we don't do that here for security
329 * reasons and compatibility with the original behavior.
330 */
331 if ((ifp->if_flags & IFF_SIMPLEX) && (loop_copy != -1)) {
332 int csum_flags = 0;
333
334 if (m->m_pkthdr.csum_flags & CSUM_IP)
335 csum_flags |= (CSUM_IP_CHECKED|CSUM_IP_VALID);
336 if (m->m_pkthdr.csum_flags & CSUM_DELAY_DATA)
337 csum_flags |= (CSUM_DATA_VALID|CSUM_PSEUDO_HDR);
338 if ((m->m_flags & M_BCAST) || (loop_copy > 0)) {
339 struct mbuf *n;
340
341 if ((n = m_copy(m, 0, (int)M_COPYALL)) != NULL) {
342 n->m_pkthdr.csum_flags |= csum_flags;
343 if (csum_flags & CSUM_DATA_VALID)
344 n->m_pkthdr.csum_data = 0xffff;
345 (void)if_simloop(ifp, n, dst->sa_family, hlen);
346 } else
347 ifp->if_iqdrops++;
348 } else if (bcmp(eh->ether_dhost,
349 eh->ether_shost, ETHER_ADDR_LEN) == 0) {
350 m->m_pkthdr.csum_flags |= csum_flags;
351 if (csum_flags & CSUM_DATA_VALID)
352 m->m_pkthdr.csum_data = 0xffff;
353 (void) if_simloop(ifp, m, dst->sa_family, hlen);
354 return (0); /* XXX */
355 }
356 }
357
358 /* Handle ng_ether(4) processing, if any */
359 if (ng_ether_output_p != NULL) {
360 if ((error = (*ng_ether_output_p)(ifp, &m)) != 0) {
361 bad: if (m != NULL)
362 m_freem(m);
363 return (error);
364 }
365 if (m == NULL)
366 return (0);
367 }
368
369 /* Continue with link-layer output */
370 return ether_output_frame(ifp, m);
371 }
372
373 /*
374 * Ethernet link layer output routine to send a raw frame to the device.
375 *
376 * This assumes that the 14 byte Ethernet header is present and contiguous
377 * in the first mbuf (if BRIDGE'ing).
378 */
379 int
380 ether_output_frame(ifp, m)
381 struct ifnet *ifp;
382 struct mbuf *m;
383 {
384 int error = 0;
385 int s;
386 struct ip_fw *rule = NULL;
387
388 /* Extract info from dummynet tag, ignore others */
389 for (; m->m_type == MT_TAG; m = m->m_next)
390 if (m->m_flags == PACKET_TAG_DUMMYNET)
391 rule = ((struct dn_pkt *)m)->rule;
392
393 if (rule) /* packet was already bridged */
394 goto no_bridge;
395
396 if (BDG_ACTIVE(ifp) ) {
397 struct ether_header *eh; /* a ptr suffices */
398
399 m->m_pkthdr.rcvif = NULL;
400 eh = mtod(m, struct ether_header *);
401 m_adj(m, ETHER_HDR_LEN);
402 m = bdg_forward_ptr(m, eh, ifp);
403 if (m != NULL)
404 m_freem(m);
405 return (0);
406 }
407
408 no_bridge:
409 s = splimp();
410 if (IPFW_LOADED && ether_ipfw != 0) {
411 struct ether_header save_eh, *eh;
412
413 eh = mtod(m, struct ether_header *);
414 save_eh = *eh;
415 m_adj(m, ETHER_HDR_LEN);
416 if (ether_ipfw_chk(&m, ifp, &rule, eh, 0) == 0) {
417 splx(s);
418 if (m) {
419 m_freem(m);
420 return EACCES; /* pkt dropped */
421 } else
422 return 0; /* consumed e.g. in a pipe */
423 }
424 /* packet was ok, restore the ethernet header */
425 if ( (void *)(eh + 1) == (void *)m->m_data) {
426 m->m_data -= ETHER_HDR_LEN ;
427 m->m_len += ETHER_HDR_LEN ;
428 m->m_pkthdr.len += ETHER_HDR_LEN ;
429 } else {
430 M_PREPEND(m, ETHER_HDR_LEN, M_DONTWAIT);
431 if (m == NULL) { /* nope... */
432 splx(s);
433 return ENOBUFS;
434 }
435 bcopy(&save_eh, mtod(m, struct ether_header *),
436 ETHER_HDR_LEN);
437 }
438 }
439
440 /*
441 * Queue message on interface, update output statistics if
442 * successful, and start output if interface not yet active.
443 */
444 if (!IF_HANDOFF(&ifp->if_snd, m, ifp))
445 error = ENOBUFS;
446 splx(s);
447 return (error);
448 }
449
450 /*
451 * ipfw processing for ethernet packets (in and out).
452 * The second parameter is NULL from ether_demux, and ifp from
453 * ether_output_frame. This section of code could be used from
454 * bridge.c as well as long as we use some extra info
455 * to distinguish that case from ether_output_frame();
456 */
457 int
458 ether_ipfw_chk(struct mbuf **m0, struct ifnet *dst,
459 struct ip_fw **rule, struct ether_header *eh, int shared)
460 {
461 struct ether_header save_eh = *eh; /* might be a ptr in m */
462 int i;
463 struct ip_fw_args args;
464
465 if (*rule != NULL && fw_one_pass)
466 return 1; /* dummynet packet, already partially processed */
467
468 /*
469 * I need some amt of data to be contiguous, and in case others need
470 * the packet (shared==1) also better be in the first mbuf.
471 */
472 i = min( (*m0)->m_pkthdr.len, max_protohdr);
473 if ( shared || (*m0)->m_len < i) {
474 *m0 = m_pullup(*m0, i);
475 if (*m0 == NULL)
476 return 0;
477 }
478
479 args.m = *m0; /* the packet we are looking at */
480 args.oif = dst; /* destination, if any */
481 args.divert_rule = 0; /* we do not support divert yet */
482 args.rule = *rule; /* matching rule to restart */
483 args.next_hop = NULL; /* we do not support forward yet */
484 args.eh = &save_eh; /* MAC header for bridged/MAC packets */
485 i = ip_fw_chk_ptr(&args);
486 *m0 = args.m;
487 *rule = args.rule;
488
489 if ( (i & IP_FW_PORT_DENY_FLAG) || *m0 == NULL) /* drop */
490 return 0;
491
492 if (i == 0) /* a PASS rule. */
493 return 1;
494
495 if (DUMMYNET_LOADED && (i & IP_FW_PORT_DYNT_FLAG)) {
496 /*
497 * Pass the pkt to dummynet, which consumes it.
498 * If shared, make a copy and keep the original.
499 */
500 struct mbuf *m ;
501
502 if (shared) {
503 m = m_copypacket(*m0, M_DONTWAIT);
504 if (m == NULL)
505 return 0;
506 } else {
507 m = *m0 ; /* pass the original to dummynet */
508 *m0 = NULL ; /* and nothing back to the caller */
509 }
510 /*
511 * Prepend the header, optimize for the common case of
512 * eh pointing into the mbuf.
513 */
514 if ( (void *)(eh + 1) == (void *)m->m_data) {
515 m->m_data -= ETHER_HDR_LEN ;
516 m->m_len += ETHER_HDR_LEN ;
517 m->m_pkthdr.len += ETHER_HDR_LEN ;
518 } else {
519 M_PREPEND(m, ETHER_HDR_LEN, M_DONTWAIT);
520 if (m == NULL) /* nope... */
521 return 0;
522 bcopy(&save_eh, mtod(m, struct ether_header *),
523 ETHER_HDR_LEN);
524 }
525 ip_dn_io_ptr(m, (i & 0xffff),
526 dst ? DN_TO_ETH_OUT: DN_TO_ETH_DEMUX, &args);
527 return 0;
528 }
529 /*
530 * XXX at some point add support for divert/forward actions.
531 * If none of the above matches, we have to drop the pkt.
532 */
533 return 0;
534 }
535
536 /*
537 * Process a received Ethernet packet. We have two different interfaces:
538 * one (conventional) assumes the packet in the mbuf, with the ethernet
539 * header provided separately in *eh. The second one (new) has everything
540 * in the mbuf, and we can tell it because eh == NULL.
541 * The caller MUST MAKE SURE that there are at least
542 * sizeof(struct ether_header) bytes in the first mbuf.
543 *
544 * This allows us to concentrate in one place a bunch of code which
545 * is replicated in all device drivers. Also, many functions called
546 * from ether_input() try to put the eh back into the mbuf, so we
547 * can later propagate the 'contiguous packet' interface to them,
548 * and handle the old interface just here.
549 *
550 * NOTA BENE: for many drivers "eh" is a pointer into the first mbuf or
551 * cluster, right before m_data. So be very careful when working on m,
552 * as you could destroy *eh !!
553 *
554 * First we perform any link layer operations, then continue
555 * to the upper layers with ether_demux().
556 */
557 void
558 ether_input(struct ifnet *ifp, struct ether_header *eh, struct mbuf *m)
559 {
560 struct ether_header save_eh;
561
562 if (eh == NULL) {
563 if (m->m_len < sizeof(struct ether_header)) {
564 /* XXX error in the caller. */
565 m_freem(m);
566 return;
567 }
568 m->m_pkthdr.rcvif = ifp;
569 eh = mtod(m, struct ether_header *);
570 m_adj(m, sizeof(*eh));
571 }
572
573 /* Check for a BPF tap */
574 if (ifp->if_bpf != NULL) {
575 struct m_hdr mh;
576
577 /* This kludge is OK; BPF treats the "mbuf" as read-only */
578 mh.mh_next = m;
579 mh.mh_data = (char *)eh;
580 mh.mh_len = ETHER_HDR_LEN;
581 bpf_mtap(ifp, (struct mbuf *)&mh);
582 }
583
584 ifp->if_ibytes += m->m_pkthdr.len + sizeof (*eh);
585
586 /* Handle ng_ether(4) processing, if any */
587 if (ng_ether_input_p != NULL) {
588 (*ng_ether_input_p)(ifp, &m, eh);
589 if (m == NULL)
590 return;
591 }
592
593 /* Check for bridging mode */
594 if (BDG_ACTIVE(ifp) ) {
595 struct ifnet *bif;
596
597 /* Check with bridging code */
598 if ((bif = bridge_in_ptr(ifp, eh)) == BDG_DROP) {
599 m_freem(m);
600 return;
601 }
602 if (bif != BDG_LOCAL) {
603 save_eh = *eh; /* because it might change */
604 m = bdg_forward_ptr(m, eh, bif); /* needs forwarding */
605 /*
606 * Do not continue if bdg_forward_ptr() processed our
607 * packet (and cleared the mbuf pointer m) or if
608 * it dropped (m_free'd) the packet itself.
609 */
610 if (m == NULL) {
611 if (bif == BDG_BCAST || bif == BDG_MCAST)
612 printf("bdg_forward drop MULTICAST PKT\n");
613 return;
614 }
615 eh = &save_eh ;
616 }
617 if (bif == BDG_LOCAL
618 || bif == BDG_BCAST
619 || bif == BDG_MCAST)
620 goto recvLocal; /* receive locally */
621
622 /* If not local and not multicast, just drop it */
623 if (m != NULL)
624 m_freem(m);
625 return;
626 }
627
628 recvLocal:
629 /* Continue with upper layer processing */
630 ether_demux(ifp, eh, m);
631 }
632
633 /*
634 * Upper layer processing for a received Ethernet packet.
635 */
636 void
637 ether_demux(ifp, eh, m)
638 struct ifnet *ifp;
639 struct ether_header *eh;
640 struct mbuf *m;
641 {
642 struct ifqueue *inq;
643 u_short ether_type;
644 #if defined(NETATALK)
645 register struct llc *l;
646 #endif
647 struct ip_fw *rule = NULL;
648
649 /* Extract info from dummynet tag, ignore others */
650 for (;m->m_type == MT_TAG; m = m->m_next)
651 if (m->m_flags == PACKET_TAG_DUMMYNET) {
652 rule = ((struct dn_pkt *)m)->rule;
653 ifp = m->m_next->m_pkthdr.rcvif;
654 }
655
656 if (rule) /* packet was already bridged */
657 goto post_stats;
658
659 if (! (BDG_ACTIVE(ifp) ) )
660 /* Discard packet if upper layers shouldn't see it because it was
661 unicast to a different Ethernet address. If the driver is working
662 properly, then this situation can only happen when the interface
663 is in promiscuous mode. */
664 if ((ifp->if_flags & IFF_PROMISC) != 0
665 && (eh->ether_dhost[0] & 1) == 0
666 && bcmp(eh->ether_dhost,
667 IFP2AC(ifp)->ac_enaddr, ETHER_ADDR_LEN) != 0
668 && (ifp->if_ipending & IFF_PPROMISC) == 0) {
669 m_freem(m);
670 return;
671 }
672
673 /* Discard packet if interface is not up */
674 if ((ifp->if_flags & IFF_UP) == 0) {
675 m_freem(m);
676 return;
677 }
678 if (eh->ether_dhost[0] & 1) {
679 if (bcmp((caddr_t)etherbroadcastaddr, (caddr_t)eh->ether_dhost,
680 sizeof(etherbroadcastaddr)) == 0)
681 m->m_flags |= M_BCAST;
682 else
683 m->m_flags |= M_MCAST;
684 }
685 if (m->m_flags & (M_BCAST|M_MCAST))
686 ifp->if_imcasts++;
687
688 post_stats:
689 if (IPFW_LOADED && ether_ipfw != 0) {
690 if (ether_ipfw_chk(&m, NULL, &rule, eh, 0 ) == 0) {
691 if (m)
692 m_freem(m);
693 return;
694 }
695 }
696
697 ether_type = ntohs(eh->ether_type);
698
699 switch (ether_type) {
700 #ifdef INET
701 case ETHERTYPE_IP:
702 if (ipflow_fastforward(m))
703 return;
704 schednetisr(NETISR_IP);
705 inq = &ipintrq;
706 break;
707
708 case ETHERTYPE_ARP:
709 if (ifp->if_flags & IFF_NOARP) {
710 /* Discard packet if ARP is disabled on interface */
711 m_freem(m);
712 return;
713 }
714 schednetisr(NETISR_ARP);
715 inq = &arpintrq;
716 break;
717 #endif
718 #ifdef IPX
719 case ETHERTYPE_IPX:
720 if (ef_inputp && ef_inputp(ifp, eh, m) == 0)
721 return;
722 schednetisr(NETISR_IPX);
723 inq = &ipxintrq;
724 break;
725 #endif
726 #ifdef INET6
727 case ETHERTYPE_IPV6:
728 schednetisr(NETISR_IPV6);
729 inq = &ip6intrq;
730 break;
731 #endif
732 #ifdef NS
733 case 0x8137: /* Novell Ethernet_II Ethernet TYPE II */
734 schednetisr(NETISR_NS);
735 inq = &nsintrq;
736 break;
737
738 #endif /* NS */
739 #ifdef NETATALK
740 case ETHERTYPE_AT:
741 schednetisr(NETISR_ATALK);
742 inq = &atintrq1;
743 break;
744 case ETHERTYPE_AARP:
745 /* probably this should be done with a NETISR as well */
746 aarpinput(IFP2AC(ifp), m); /* XXX */
747 return;
748 #endif /* NETATALK */
749 case ETHERTYPE_VLAN:
750 /* XXX lock ? */
751 if (vlan_input_p != NULL)
752 (*vlan_input_p)(eh, m);
753 else {
754 m->m_pkthdr.rcvif->if_noproto++;
755 m_freem(m);
756 }
757 /* XXX unlock ? */
758 return;
759 default:
760 #ifdef IPX
761 if (ef_inputp && ef_inputp(ifp, eh, m) == 0)
762 return;
763 #endif /* IPX */
764 #ifdef NS
765 checksum = mtod(m, ushort *);
766 /* Novell 802.3 */
767 if ((ether_type <= ETHERMTU) &&
768 ((*checksum == 0xffff) || (*checksum == 0xE0E0))){
769 if(*checksum == 0xE0E0) {
770 m->m_pkthdr.len -= 3;
771 m->m_len -= 3;
772 m->m_data += 3;
773 }
774 schednetisr(NETISR_NS);
775 inq = &nsintrq;
776 break;
777 }
778 #endif /* NS */
779 #if defined(NETATALK)
780 if (ether_type > ETHERMTU)
781 goto dropanyway;
782 l = mtod(m, struct llc *);
783 switch (l->llc_dsap) {
784 case LLC_SNAP_LSAP:
785 switch (l->llc_control) {
786 case LLC_UI:
787 if (l->llc_ssap != LLC_SNAP_LSAP)
788 goto dropanyway;
789
790 if (Bcmp(&(l->llc_snap_org_code)[0], at_org_code,
791 sizeof(at_org_code)) == 0 &&
792 ntohs(l->llc_snap_ether_type) == ETHERTYPE_AT) {
793 inq = &atintrq2;
794 m_adj( m, sizeof( struct llc ));
795 schednetisr(NETISR_ATALK);
796 break;
797 }
798
799 if (Bcmp(&(l->llc_snap_org_code)[0], aarp_org_code,
800 sizeof(aarp_org_code)) == 0 &&
801 ntohs(l->llc_snap_ether_type) == ETHERTYPE_AARP) {
802 m_adj( m, sizeof( struct llc ));
803 aarpinput(IFP2AC(ifp), m); /* XXX */
804 return;
805 }
806
807 default:
808 goto dropanyway;
809 }
810 break;
811 dropanyway:
812 default:
813 if (ng_ether_input_orphan_p != NULL)
814 (*ng_ether_input_orphan_p)(ifp, m, eh);
815 else
816 m_freem(m);
817 return;
818 }
819 #else /* NETATALK */
820 if (ng_ether_input_orphan_p != NULL)
821 (*ng_ether_input_orphan_p)(ifp, m, eh);
822 else
823 m_freem(m);
824 return;
825 #endif /* NETATALK */
826 }
827
828 (void) IF_HANDOFF(inq, m, NULL);
829 }
830
831 /*
832 * Perform common duties while attaching to interface list
833 */
834 void
835 ether_ifattach(ifp, bpf)
836 register struct ifnet *ifp;
837 int bpf;
838 {
839 register struct ifaddr *ifa;
840 register struct sockaddr_dl *sdl;
841
842 ifp->if_type = IFT_ETHER;
843 ifp->if_addrlen = 6;
844 ifp->if_hdrlen = 14;
845 if_attach(ifp);
846 ifp->if_mtu = ETHERMTU;
847 ifp->if_resolvemulti = ether_resolvemulti;
848 if (ifp->if_baudrate == 0)
849 ifp->if_baudrate = 10000000;
850 ifa = ifnet_addrs[ifp->if_index - 1];
851 KASSERT(ifa != NULL, ("%s: no lladdr!\n", __FUNCTION__));
852 sdl = (struct sockaddr_dl *)ifa->ifa_addr;
853 sdl->sdl_type = IFT_ETHER;
854 sdl->sdl_alen = ifp->if_addrlen;
855 bcopy((IFP2AC(ifp))->ac_enaddr, LLADDR(sdl), ifp->if_addrlen);
856 if (bpf)
857 bpfattach(ifp, DLT_EN10MB, sizeof(struct ether_header));
858 if (ng_ether_attach_p != NULL)
859 (*ng_ether_attach_p)(ifp);
860 if (BDG_LOADED)
861 bdgtakeifaces_ptr();
862 }
863
864 /*
865 * Perform common duties while detaching an Ethernet interface
866 */
867 void
868 ether_ifdetach(ifp, bpf)
869 struct ifnet *ifp;
870 int bpf;
871 {
872 if (ng_ether_detach_p != NULL)
873 (*ng_ether_detach_p)(ifp);
874 if (bpf)
875 bpfdetach(ifp);
876 if_detach(ifp);
877 if (BDG_LOADED)
878 bdgtakeifaces_ptr();
879 }
880
881 SYSCTL_DECL(_net_link);
882 SYSCTL_NODE(_net_link, IFT_ETHER, ether, CTLFLAG_RW, 0, "Ethernet");
883 SYSCTL_INT(_net_link_ether, OID_AUTO, ipfw, CTLFLAG_RW,
884 ðer_ipfw,0,"Pass ether pkts through firewall");
885
886 int
887 ether_ioctl(ifp, command, data)
888 struct ifnet *ifp;
889 int command;
890 caddr_t data;
891 {
892 struct ifaddr *ifa = (struct ifaddr *) data;
893 struct ifreq *ifr = (struct ifreq *) data;
894 int error = 0;
895
896 switch (command) {
897 case SIOCSIFADDR:
898 ifp->if_flags |= IFF_UP;
899
900 switch (ifa->ifa_addr->sa_family) {
901 #ifdef INET
902 case AF_INET:
903 ifp->if_init(ifp->if_softc); /* before arpwhohas */
904 arp_ifinit(ifp, ifa);
905 break;
906 #endif
907 #ifdef IPX
908 /*
909 * XXX - This code is probably wrong
910 */
911 case AF_IPX:
912 {
913 register struct ipx_addr *ina = &(IA_SIPX(ifa)->sipx_addr);
914 struct arpcom *ac = IFP2AC(ifp);
915
916 if (ipx_nullhost(*ina))
917 ina->x_host =
918 *(union ipx_host *)
919 ac->ac_enaddr;
920 else {
921 bcopy((caddr_t) ina->x_host.c_host,
922 (caddr_t) ac->ac_enaddr,
923 sizeof(ac->ac_enaddr));
924 }
925
926 /*
927 * Set new address
928 */
929 ifp->if_init(ifp->if_softc);
930 break;
931 }
932 #endif
933 #ifdef NS
934 /*
935 * XXX - This code is probably wrong
936 */
937 case AF_NS:
938 {
939 register struct ns_addr *ina = &(IA_SNS(ifa)->sns_addr);
940 struct arpcom *ac = IFP2AC(ifp);
941
942 if (ns_nullhost(*ina))
943 ina->x_host =
944 *(union ns_host *) (ac->ac_enaddr);
945 else {
946 bcopy((caddr_t) ina->x_host.c_host,
947 (caddr_t) ac->ac_enaddr,
948 sizeof(ac->ac_enaddr));
949 }
950
951 /*
952 * Set new address
953 */
954 ifp->if_init(ifp->if_softc);
955 break;
956 }
957 #endif
958 default:
959 ifp->if_init(ifp->if_softc);
960 break;
961 }
962 break;
963
964 case SIOCGIFADDR:
965 {
966 struct sockaddr *sa;
967
968 sa = (struct sockaddr *) & ifr->ifr_data;
969 bcopy(IFP2AC(ifp)->ac_enaddr,
970 (caddr_t) sa->sa_data, ETHER_ADDR_LEN);
971 }
972 break;
973
974 case SIOCSIFMTU:
975 /*
976 * Set the interface MTU.
977 */
978 if (ifr->ifr_mtu > ETHERMTU) {
979 error = EINVAL;
980 } else {
981 ifp->if_mtu = ifr->ifr_mtu;
982 }
983 break;
984 }
985 return (error);
986 }
987
988 int
989 ether_resolvemulti(ifp, llsa, sa)
990 struct ifnet *ifp;
991 struct sockaddr **llsa;
992 struct sockaddr *sa;
993 {
994 struct sockaddr_dl *sdl;
995 struct sockaddr_in *sin;
996 #ifdef INET6
997 struct sockaddr_in6 *sin6;
998 #endif
999 u_char *e_addr;
1000
1001 switch(sa->sa_family) {
1002 case AF_LINK:
1003 /*
1004 * No mapping needed. Just check that it's a valid MC address.
1005 */
1006 sdl = (struct sockaddr_dl *)sa;
1007 e_addr = LLADDR(sdl);
1008 if ((e_addr[0] & 1) != 1)
1009 return EADDRNOTAVAIL;
1010 *llsa = 0;
1011 return 0;
1012
1013 #ifdef INET
1014 case AF_INET:
1015 sin = (struct sockaddr_in *)sa;
1016 if (!IN_MULTICAST(ntohl(sin->sin_addr.s_addr)))
1017 return EADDRNOTAVAIL;
1018 MALLOC(sdl, struct sockaddr_dl *, sizeof *sdl, M_IFMADDR,
1019 M_WAITOK|M_ZERO);
1020 sdl->sdl_len = sizeof *sdl;
1021 sdl->sdl_family = AF_LINK;
1022 sdl->sdl_index = ifp->if_index;
1023 sdl->sdl_type = IFT_ETHER;
1024 sdl->sdl_alen = ETHER_ADDR_LEN;
1025 e_addr = LLADDR(sdl);
1026 ETHER_MAP_IP_MULTICAST(&sin->sin_addr, e_addr);
1027 *llsa = (struct sockaddr *)sdl;
1028 return 0;
1029 #endif
1030 #ifdef INET6
1031 case AF_INET6:
1032 sin6 = (struct sockaddr_in6 *)sa;
1033 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
1034 /*
1035 * An IP6 address of 0 means listen to all
1036 * of the Ethernet multicast address used for IP6.
1037 * (This is used for multicast routers.)
1038 */
1039 ifp->if_flags |= IFF_ALLMULTI;
1040 *llsa = 0;
1041 return 0;
1042 }
1043 if (!IN6_IS_ADDR_MULTICAST(&sin6->sin6_addr))
1044 return EADDRNOTAVAIL;
1045 MALLOC(sdl, struct sockaddr_dl *, sizeof *sdl, M_IFMADDR,
1046 M_WAITOK|M_ZERO);
1047 sdl->sdl_len = sizeof *sdl;
1048 sdl->sdl_family = AF_LINK;
1049 sdl->sdl_index = ifp->if_index;
1050 sdl->sdl_type = IFT_ETHER;
1051 sdl->sdl_alen = ETHER_ADDR_LEN;
1052 e_addr = LLADDR(sdl);
1053 ETHER_MAP_IPV6_MULTICAST(&sin6->sin6_addr, e_addr);
1054 *llsa = (struct sockaddr *)sdl;
1055 return 0;
1056 #endif
1057
1058 default:
1059 /*
1060 * Well, the text isn't quite right, but it's the name
1061 * that counts...
1062 */
1063 return EAFNOSUPPORT;
1064 }
1065 }
Cache object: 998689043d13d2f05483240bf4ce8462
|