Now available: The Design and Implementation of the FreeBSD Operating System (Second Edition)
[ source navigation ] [ diff markup ] [ identifier search ] [ freetext search ] [ file search ] [ list types ] [ track identifier ]
FreeBSD/Linux Kernel Cross Reference
sys/netinet/raw_ip.c
Version:
- FREEBSD - FREEBSD-13-STABLE - FREEBSD-13-0 - FREEBSD-12-STABLE - FREEBSD-12-0 - FREEBSD-11-STABLE - FREEBSD-11-0 - FREEBSD-10-STABLE - FREEBSD-10-0 - FREEBSD-9-STABLE - FREEBSD-9-0 - FREEBSD-8-STABLE - FREEBSD-8-0 - FREEBSD-7-STABLE - FREEBSD-7-0 - FREEBSD-6-STABLE - FREEBSD-6-0 - FREEBSD-5-STABLE - FREEBSD-5-0 - FREEBSD-4-STABLE - FREEBSD-3-STABLE - FREEBSD22 - l41 - OPENBSD - linux-2.6 - MK84 - PLAN9 - xnu-8792
SearchContext: - none - 3 - 10
SearchContext: - none - 3 - 10
1 /* 2 * Copyright (c) 1982, 1986, 1988, 1993 3 * The Regents of the University of California. All rights reserved. 4 * 5 * Redistribution and use in source and binary forms, with or without 6 * modification, are permitted provided that the following conditions 7 * are met: 8 * 1. Redistributions of source code must retain the above copyright 9 * notice, this list of conditions and the following disclaimer. 10 * 2. Redistributions in binary form must reproduce the above copyright 11 * notice, this list of conditions and the following disclaimer in the 12 * documentation and/or other materials provided with the distribution. 13 * 3. All advertising materials mentioning features or use of this software 14 * must display the following acknowledgement: 15 * This product includes software developed by the University of 16 * California, Berkeley and its contributors. 17 * 4. Neither the name of the University nor the names of its contributors 18 * may be used to endorse or promote products derived from this software 19 * without specific prior written permission. 20 * 21 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 24 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 31 * SUCH DAMAGE. 32 * 33 * @(#)raw_ip.c 8.7 (Berkeley) 5/15/95 34 * $FreeBSD: releng/5.2/sys/netinet/raw_ip.c 122991 2003-11-26 01:40:44Z sam $ 35 */ 36 37 #include "opt_inet6.h" 38 #include "opt_ipsec.h" 39 #include "opt_mac.h" 40 #include "opt_random_ip_id.h" 41 42 #include <sys/param.h> 43 #include <sys/kernel.h> 44 #include <sys/lock.h> 45 #include <sys/mac.h> 46 #include <sys/malloc.h> 47 #include <sys/mbuf.h> 48 #include <sys/proc.h> 49 #include <sys/protosw.h> 50 #include <sys/signalvar.h> 51 #include <sys/socket.h> 52 #include <sys/socketvar.h> 53 #include <sys/sx.h> 54 #include <sys/sysctl.h> 55 #include <sys/systm.h> 56 57 #include <vm/uma.h> 58 59 #include <net/if.h> 60 #include <net/route.h> 61 62 #include <netinet/in.h> 63 #include <netinet/in_systm.h> 64 #include <netinet/in_pcb.h> 65 #include <netinet/in_var.h> 66 #include <netinet/ip.h> 67 #include <netinet/ip_var.h> 68 #include <netinet/ip_mroute.h> 69 70 #include <netinet/ip_fw.h> 71 #include <netinet/ip_dummynet.h> 72 73 #ifdef FAST_IPSEC 74 #include <netipsec/ipsec.h> 75 #endif /*FAST_IPSEC*/ 76 77 #ifdef IPSEC 78 #include <netinet6/ipsec.h> 79 #endif /*IPSEC*/ 80 81 struct inpcbhead ripcb; 82 struct inpcbinfo ripcbinfo; 83 84 /* control hooks for ipfw and dummynet */ 85 ip_fw_ctl_t *ip_fw_ctl_ptr; 86 ip_dn_ctl_t *ip_dn_ctl_ptr; 87 88 /* 89 * hooks for multicast routing. They all default to NULL, 90 * so leave them not initialized and rely on BSS being set to 0. 91 */ 92 93 /* The socket used to communicate with the multicast routing daemon. */ 94 struct socket *ip_mrouter; 95 96 /* The various mrouter and rsvp functions */ 97 int (*ip_mrouter_set)(struct socket *, struct sockopt *); 98 int (*ip_mrouter_get)(struct socket *, struct sockopt *); 99 int (*ip_mrouter_done)(void); 100 int (*ip_mforward)(struct ip *, struct ifnet *, struct mbuf *, 101 struct ip_moptions *); 102 int (*mrt_ioctl)(int, caddr_t); 103 int (*legal_vif_num)(int); 104 u_long (*ip_mcast_src)(int); 105 106 void (*rsvp_input_p)(struct mbuf *m, int off); 107 int (*ip_rsvp_vif)(struct socket *, struct sockopt *); 108 void (*ip_rsvp_force_done)(struct socket *); 109 110 /* 111 * Nominal space allocated to a raw ip socket. 112 */ 113 #define RIPSNDQ 8192 114 #define RIPRCVQ 8192 115 116 /* 117 * Raw interface to IP protocol. 118 */ 119 120 /* 121 * Initialize raw connection block q. 122 */ 123 void 124 rip_init() 125 { 126 INP_INFO_LOCK_INIT(&ripcbinfo, "rip"); 127 LIST_INIT(&ripcb); 128 ripcbinfo.listhead = &ripcb; 129 /* 130 * XXX We don't use the hash list for raw IP, but it's easier 131 * to allocate a one entry hash list than it is to check all 132 * over the place for hashbase == NULL. 133 */ 134 ripcbinfo.hashbase = hashinit(1, M_PCB, &ripcbinfo.hashmask); 135 ripcbinfo.porthashbase = hashinit(1, M_PCB, &ripcbinfo.porthashmask); 136 ripcbinfo.ipi_zone = uma_zcreate("ripcb", sizeof(struct inpcb), 137 NULL, NULL, NULL, NULL, UMA_ALIGN_PTR, UMA_ZONE_NOFREE); 138 uma_zone_set_max(ripcbinfo.ipi_zone, maxsockets); 139 } 140 141 static struct sockaddr_in ripsrc = { sizeof(ripsrc), AF_INET }; 142 143 static int 144 raw_append(struct inpcb *last, struct ip *ip, struct mbuf *n) 145 { 146 int policyfail = 0; 147 148 #ifdef IPSEC 149 /* check AH/ESP integrity. */ 150 if (ipsec4_in_reject_so(n, last->inp_socket)) { 151 policyfail = 1; 152 ipsecstat.in_polvio++; 153 /* do not inject data to pcb */ 154 } 155 #endif /*IPSEC*/ 156 #ifdef FAST_IPSEC 157 /* check AH/ESP integrity. */ 158 if (ipsec4_in_reject(n, last)) { 159 policyfail = 1; 160 /* do not inject data to pcb */ 161 } 162 #endif /*FAST_IPSEC*/ 163 #ifdef MAC 164 if (!policyfail && mac_check_inpcb_deliver(last, n) != 0) 165 policyfail = 1; 166 #endif 167 if (!policyfail) { 168 struct mbuf *opts = NULL; 169 170 if ((last->inp_flags & INP_CONTROLOPTS) || 171 (last->inp_socket->so_options & SO_TIMESTAMP)) 172 ip_savecontrol(last, &opts, ip, n); 173 if (sbappendaddr(&last->inp_socket->so_rcv, 174 (struct sockaddr *)&ripsrc, n, opts) == 0) { 175 /* should notify about lost packet */ 176 m_freem(n); 177 if (opts) 178 m_freem(opts); 179 } else 180 sorwakeup(last->inp_socket); 181 } else 182 m_freem(n); 183 return policyfail; 184 } 185 186 /* 187 * Setup generic address and protocol structures 188 * for raw_input routine, then pass them along with 189 * mbuf chain. 190 */ 191 void 192 rip_input(struct mbuf *m, int off) 193 { 194 struct ip *ip = mtod(m, struct ip *); 195 int proto = ip->ip_p; 196 struct inpcb *inp, *last; 197 198 INP_INFO_RLOCK(&ripcbinfo); 199 ripsrc.sin_addr = ip->ip_src; 200 last = NULL; 201 LIST_FOREACH(inp, &ripcb, inp_list) { 202 INP_LOCK(inp); 203 if (inp->inp_ip_p && inp->inp_ip_p != proto) { 204 docontinue: 205 INP_UNLOCK(inp); 206 continue; 207 } 208 #ifdef INET6 209 if ((inp->inp_vflag & INP_IPV4) == 0) 210 goto docontinue; 211 #endif 212 if (inp->inp_laddr.s_addr && 213 inp->inp_laddr.s_addr != ip->ip_dst.s_addr) 214 goto docontinue; 215 if (inp->inp_faddr.s_addr && 216 inp->inp_faddr.s_addr != ip->ip_src.s_addr) 217 goto docontinue; 218 if (last) { 219 struct mbuf *n; 220 221 n = m_copy(m, 0, (int)M_COPYALL); 222 if (n != NULL) 223 (void) raw_append(last, ip, n); 224 /* XXX count dropped packet */ 225 INP_UNLOCK(last); 226 } 227 last = inp; 228 } 229 if (last != NULL) { 230 if (raw_append(last, ip, m) != 0) 231 ipstat.ips_delivered--; 232 INP_UNLOCK(last); 233 } else { 234 m_freem(m); 235 ipstat.ips_noproto++; 236 ipstat.ips_delivered--; 237 } 238 INP_INFO_RUNLOCK(&ripcbinfo); 239 } 240 241 /* 242 * Generate IP header and pass packet to ip_output. 243 * Tack on options user may have setup with control call. 244 */ 245 int 246 rip_output(struct mbuf *m, struct socket *so, u_long dst) 247 { 248 struct ip *ip; 249 struct inpcb *inp = sotoinpcb(so); 250 int flags = (so->so_options & SO_DONTROUTE) | IP_ALLOWBROADCAST; 251 252 #ifdef MAC 253 mac_create_mbuf_from_socket(so, m); 254 #endif 255 256 /* 257 * If the user handed us a complete IP packet, use it. 258 * Otherwise, allocate an mbuf for a header and fill it in. 259 */ 260 if ((inp->inp_flags & INP_HDRINCL) == 0) { 261 if (m->m_pkthdr.len + sizeof(struct ip) > IP_MAXPACKET) { 262 m_freem(m); 263 return(EMSGSIZE); 264 } 265 M_PREPEND(m, sizeof(struct ip), M_TRYWAIT); 266 if (m == NULL) 267 return(ENOBUFS); 268 ip = mtod(m, struct ip *); 269 ip->ip_tos = inp->inp_ip_tos; 270 ip->ip_off = 0; 271 ip->ip_p = inp->inp_ip_p; 272 ip->ip_len = m->m_pkthdr.len; 273 ip->ip_src = inp->inp_laddr; 274 ip->ip_dst.s_addr = dst; 275 ip->ip_ttl = inp->inp_ip_ttl; 276 } else { 277 if (m->m_pkthdr.len > IP_MAXPACKET) { 278 m_freem(m); 279 return(EMSGSIZE); 280 } 281 ip = mtod(m, struct ip *); 282 /* don't allow both user specified and setsockopt options, 283 and don't allow packet length sizes that will crash */ 284 if (((ip->ip_hl != (sizeof (*ip) >> 2)) 285 && inp->inp_options) 286 || (ip->ip_len > m->m_pkthdr.len) 287 || (ip->ip_len < (ip->ip_hl << 2))) { 288 m_freem(m); 289 return EINVAL; 290 } 291 if (ip->ip_id == 0) 292 #ifdef RANDOM_IP_ID 293 ip->ip_id = ip_randomid(); 294 #else 295 ip->ip_id = htons(ip_id++); 296 #endif 297 /* XXX prevent ip_output from overwriting header fields */ 298 flags |= IP_RAWOUTPUT; 299 ipstat.ips_rawout++; 300 } 301 302 if (inp->inp_flags & INP_ONESBCAST) 303 flags |= IP_SENDONES; 304 305 return (ip_output(m, inp->inp_options, NULL, flags, 306 inp->inp_moptions, inp)); 307 } 308 309 /* 310 * Raw IP socket option processing. 311 * 312 * Note that access to all of the IP administrative functions here is 313 * implicitly protected by suser() as gaining access to a raw socket 314 * requires either that the thread pass a suser() check, or that it be 315 * passed a raw socket by another thread that has passed a suser() check. 316 * If FreeBSD moves to a more fine-grained access control mechanism, 317 * additional checks will need to be placed here if the raw IP attachment 318 * check is not equivilent the the check required for these 319 * administrative operations; in some cases, these checks are already 320 * present. 321 */ 322 int 323 rip_ctloutput(struct socket *so, struct sockopt *sopt) 324 { 325 struct inpcb *inp = sotoinpcb(so); 326 int error, optval; 327 328 if (sopt->sopt_level != IPPROTO_IP) 329 return (EINVAL); 330 331 error = 0; 332 333 switch (sopt->sopt_dir) { 334 case SOPT_GET: 335 switch (sopt->sopt_name) { 336 case IP_HDRINCL: 337 optval = inp->inp_flags & INP_HDRINCL; 338 error = sooptcopyout(sopt, &optval, sizeof optval); 339 break; 340 341 case IP_FW_ADD: /* ADD actually returns the body... */ 342 case IP_FW_GET: 343 if (IPFW_LOADED) 344 error = ip_fw_ctl_ptr(sopt); 345 else 346 error = ENOPROTOOPT; 347 break; 348 349 case IP_DUMMYNET_GET: 350 if (DUMMYNET_LOADED) 351 error = ip_dn_ctl_ptr(sopt); 352 else 353 error = ENOPROTOOPT; 354 break ; 355 356 case MRT_INIT: 357 case MRT_DONE: 358 case MRT_ADD_VIF: 359 case MRT_DEL_VIF: 360 case MRT_ADD_MFC: 361 case MRT_DEL_MFC: 362 case MRT_VERSION: 363 case MRT_ASSERT: 364 case MRT_API_SUPPORT: 365 case MRT_API_CONFIG: 366 case MRT_ADD_BW_UPCALL: 367 case MRT_DEL_BW_UPCALL: 368 error = ip_mrouter_get ? ip_mrouter_get(so, sopt) : 369 EOPNOTSUPP; 370 break; 371 372 default: 373 error = ip_ctloutput(so, sopt); 374 break; 375 } 376 break; 377 378 case SOPT_SET: 379 switch (sopt->sopt_name) { 380 case IP_HDRINCL: 381 error = sooptcopyin(sopt, &optval, sizeof optval, 382 sizeof optval); 383 if (error) 384 break; 385 if (optval) 386 inp->inp_flags |= INP_HDRINCL; 387 else 388 inp->inp_flags &= ~INP_HDRINCL; 389 break; 390 391 case IP_FW_ADD: 392 case IP_FW_DEL: 393 case IP_FW_FLUSH: 394 case IP_FW_ZERO: 395 case IP_FW_RESETLOG: 396 if (IPFW_LOADED) 397 error = ip_fw_ctl_ptr(sopt); 398 else 399 error = ENOPROTOOPT; 400 break; 401 402 case IP_DUMMYNET_CONFIGURE: 403 case IP_DUMMYNET_DEL: 404 case IP_DUMMYNET_FLUSH: 405 if (DUMMYNET_LOADED) 406 error = ip_dn_ctl_ptr(sopt); 407 else 408 error = ENOPROTOOPT ; 409 break ; 410 411 case IP_RSVP_ON: 412 error = ip_rsvp_init(so); 413 break; 414 415 case IP_RSVP_OFF: 416 error = ip_rsvp_done(); 417 break; 418 419 case IP_RSVP_VIF_ON: 420 case IP_RSVP_VIF_OFF: 421 error = ip_rsvp_vif ? 422 ip_rsvp_vif(so, sopt) : EINVAL; 423 break; 424 425 case MRT_INIT: 426 case MRT_DONE: 427 case MRT_ADD_VIF: 428 case MRT_DEL_VIF: 429 case MRT_ADD_MFC: 430 case MRT_DEL_MFC: 431 case MRT_VERSION: 432 case MRT_ASSERT: 433 case MRT_API_SUPPORT: 434 case MRT_API_CONFIG: 435 case MRT_ADD_BW_UPCALL: 436 case MRT_DEL_BW_UPCALL: 437 error = ip_mrouter_set ? ip_mrouter_set(so, sopt) : 438 EOPNOTSUPP; 439 break; 440 441 default: 442 error = ip_ctloutput(so, sopt); 443 break; 444 } 445 break; 446 } 447 448 return (error); 449 } 450 451 /* 452 * This function exists solely to receive the PRC_IFDOWN messages which 453 * are sent by if_down(). It looks for an ifaddr whose ifa_addr is sa, 454 * and calls in_ifadown() to remove all routes corresponding to that address. 455 * It also receives the PRC_IFUP messages from if_up() and reinstalls the 456 * interface routes. 457 */ 458 void 459 rip_ctlinput(int cmd, struct sockaddr *sa, void *vip) 460 { 461 struct in_ifaddr *ia; 462 struct ifnet *ifp; 463 int err; 464 int flags; 465 466 switch (cmd) { 467 case PRC_IFDOWN: 468 TAILQ_FOREACH(ia, &in_ifaddrhead, ia_link) { 469 if (ia->ia_ifa.ifa_addr == sa 470 && (ia->ia_flags & IFA_ROUTE)) { 471 /* 472 * in_ifscrub kills the interface route. 473 */ 474 in_ifscrub(ia->ia_ifp, ia); 475 /* 476 * in_ifadown gets rid of all the rest of 477 * the routes. This is not quite the right 478 * thing to do, but at least if we are running 479 * a routing process they will come back. 480 */ 481 in_ifadown(&ia->ia_ifa, 0); 482 break; 483 } 484 } 485 break; 486 487 case PRC_IFUP: 488 TAILQ_FOREACH(ia, &in_ifaddrhead, ia_link) { 489 if (ia->ia_ifa.ifa_addr == sa) 490 break; 491 } 492 if (ia == 0 || (ia->ia_flags & IFA_ROUTE)) 493 return; 494 flags = RTF_UP; 495 ifp = ia->ia_ifa.ifa_ifp; 496 497 if ((ifp->if_flags & IFF_LOOPBACK) 498 || (ifp->if_flags & IFF_POINTOPOINT)) 499 flags |= RTF_HOST; 500 501 err = rtinit(&ia->ia_ifa, RTM_ADD, flags); 502 if (err == 0) 503 ia->ia_flags |= IFA_ROUTE; 504 break; 505 } 506 } 507 508 u_long rip_sendspace = RIPSNDQ; 509 u_long rip_recvspace = RIPRCVQ; 510 511 SYSCTL_INT(_net_inet_raw, OID_AUTO, maxdgram, CTLFLAG_RW, 512 &rip_sendspace, 0, "Maximum outgoing raw IP datagram size"); 513 SYSCTL_INT(_net_inet_raw, OID_AUTO, recvspace, CTLFLAG_RW, 514 &rip_recvspace, 0, "Maximum incoming raw IP datagram size"); 515 516 static int 517 rip_attach(struct socket *so, int proto, struct thread *td) 518 { 519 struct inpcb *inp; 520 int error; 521 522 /* XXX why not lower? */ 523 INP_INFO_WLOCK(&ripcbinfo); 524 inp = sotoinpcb(so); 525 if (inp) { 526 /* XXX counter, printf */ 527 INP_INFO_WUNLOCK(&ripcbinfo); 528 return EINVAL; 529 } 530 if (td && (error = suser(td)) != 0) { 531 INP_INFO_WUNLOCK(&ripcbinfo); 532 return error; 533 } 534 if (proto >= IPPROTO_MAX || proto < 0) { 535 INP_INFO_WUNLOCK(&ripcbinfo); 536 return EPROTONOSUPPORT; 537 } 538 539 error = soreserve(so, rip_sendspace, rip_recvspace); 540 if (error) { 541 INP_INFO_WUNLOCK(&ripcbinfo); 542 return error; 543 } 544 error = in_pcballoc(so, &ripcbinfo, td, "rawinp"); 545 if (error) { 546 INP_INFO_WUNLOCK(&ripcbinfo); 547 return error; 548 } 549 inp = (struct inpcb *)so->so_pcb; 550 INP_LOCK(inp); 551 INP_INFO_WUNLOCK(&ripcbinfo); 552 inp->inp_vflag |= INP_IPV4; 553 inp->inp_ip_p = proto; 554 inp->inp_ip_ttl = ip_defttl; 555 INP_UNLOCK(inp); 556 return 0; 557 } 558 559 static void 560 rip_pcbdetach(struct socket *so, struct inpcb *inp) 561 { 562 INP_INFO_WLOCK_ASSERT(&ripcbinfo); 563 INP_LOCK_ASSERT(inp); 564 565 if (so == ip_mrouter && ip_mrouter_done) 566 ip_mrouter_done(); 567 if (ip_rsvp_force_done) 568 ip_rsvp_force_done(so); 569 if (so == ip_rsvpd) 570 ip_rsvp_done(); 571 in_pcbdetach(inp); 572 } 573 574 static int 575 rip_detach(struct socket *so) 576 { 577 struct inpcb *inp; 578 579 INP_INFO_WLOCK(&ripcbinfo); 580 inp = sotoinpcb(so); 581 if (inp == 0) { 582 /* XXX counter, printf */ 583 INP_INFO_WUNLOCK(&ripcbinfo); 584 return EINVAL; 585 } 586 INP_LOCK(inp); 587 rip_pcbdetach(so, inp); 588 INP_INFO_WUNLOCK(&ripcbinfo); 589 return 0; 590 } 591 592 static int 593 rip_abort(struct socket *so) 594 { 595 struct inpcb *inp; 596 597 INP_INFO_WLOCK(&ripcbinfo); 598 inp = sotoinpcb(so); 599 if (inp == 0) { 600 INP_INFO_WUNLOCK(&ripcbinfo); 601 return EINVAL; /* ??? possible? panic instead? */ 602 } 603 INP_LOCK(inp); 604 soisdisconnected(so); 605 if (so->so_state & SS_NOFDREF) 606 rip_pcbdetach(so, inp); 607 else 608 INP_UNLOCK(inp); 609 INP_INFO_WUNLOCK(&ripcbinfo); 610 return 0; 611 } 612 613 static int 614 rip_disconnect(struct socket *so) 615 { 616 if ((so->so_state & SS_ISCONNECTED) == 0) 617 return ENOTCONN; 618 return rip_abort(so); 619 } 620 621 static int 622 rip_bind(struct socket *so, struct sockaddr *nam, struct thread *td) 623 { 624 struct sockaddr_in *addr = (struct sockaddr_in *)nam; 625 struct inpcb *inp; 626 627 if (nam->sa_len != sizeof(*addr)) 628 return EINVAL; 629 630 if (TAILQ_EMPTY(&ifnet) || 631 (addr->sin_family != AF_INET && addr->sin_family != AF_IMPLINK) || 632 (addr->sin_addr.s_addr && 633 ifa_ifwithaddr((struct sockaddr *)addr) == 0)) 634 return EADDRNOTAVAIL; 635 636 INP_INFO_WLOCK(&ripcbinfo); 637 inp = sotoinpcb(so); 638 if (inp == 0) { 639 INP_INFO_WUNLOCK(&ripcbinfo); 640 return EINVAL; 641 } 642 INP_LOCK(inp); 643 inp->inp_laddr = addr->sin_addr; 644 INP_UNLOCK(inp); 645 INP_INFO_WUNLOCK(&ripcbinfo); 646 return 0; 647 } 648 649 static int 650 rip_connect(struct socket *so, struct sockaddr *nam, struct thread *td) 651 { 652 struct sockaddr_in *addr = (struct sockaddr_in *)nam; 653 struct inpcb *inp; 654 655 if (nam->sa_len != sizeof(*addr)) 656 return EINVAL; 657 if (TAILQ_EMPTY(&ifnet)) 658 return EADDRNOTAVAIL; 659 if (addr->sin_family != AF_INET && addr->sin_family != AF_IMPLINK) 660 return EAFNOSUPPORT; 661 662 INP_INFO_WLOCK(&ripcbinfo); 663 inp = sotoinpcb(so); 664 if (inp == 0) { 665 INP_INFO_WUNLOCK(&ripcbinfo); 666 return EINVAL; 667 } 668 INP_LOCK(inp); 669 inp->inp_faddr = addr->sin_addr; 670 soisconnected(so); 671 INP_UNLOCK(inp); 672 INP_INFO_WUNLOCK(&ripcbinfo); 673 return 0; 674 } 675 676 static int 677 rip_shutdown(struct socket *so) 678 { 679 struct inpcb *inp; 680 681 INP_INFO_RLOCK(&ripcbinfo); 682 inp = sotoinpcb(so); 683 if (inp == 0) { 684 INP_INFO_RUNLOCK(&ripcbinfo); 685 return EINVAL; 686 } 687 INP_LOCK(inp); 688 INP_INFO_RUNLOCK(&ripcbinfo); 689 socantsendmore(so); 690 INP_UNLOCK(inp); 691 return 0; 692 } 693 694 static int 695 rip_send(struct socket *so, int flags, struct mbuf *m, struct sockaddr *nam, 696 struct mbuf *control, struct thread *td) 697 { 698 struct inpcb *inp; 699 u_long dst; 700 int ret; 701 702 INP_INFO_WLOCK(&ripcbinfo); 703 inp = sotoinpcb(so); 704 if (so->so_state & SS_ISCONNECTED) { 705 if (nam) { 706 INP_INFO_WUNLOCK(&ripcbinfo); 707 m_freem(m); 708 return EISCONN; 709 } 710 dst = inp->inp_faddr.s_addr; 711 } else { 712 if (nam == NULL) { 713 INP_INFO_WUNLOCK(&ripcbinfo); 714 m_freem(m); 715 return ENOTCONN; 716 } 717 dst = ((struct sockaddr_in *)nam)->sin_addr.s_addr; 718 } 719 INP_LOCK(inp); 720 ret = rip_output(m, so, dst); 721 INP_UNLOCK(inp); 722 INP_INFO_WUNLOCK(&ripcbinfo); 723 return ret; 724 } 725 726 static int 727 rip_pcblist(SYSCTL_HANDLER_ARGS) 728 { 729 int error, i, n; 730 struct inpcb *inp, **inp_list; 731 inp_gen_t gencnt; 732 struct xinpgen xig; 733 734 /* 735 * The process of preparing the TCB list is too time-consuming and 736 * resource-intensive to repeat twice on every request. 737 */ 738 if (req->oldptr == 0) { 739 n = ripcbinfo.ipi_count; 740 req->oldidx = 2 * (sizeof xig) 741 + (n + n/8) * sizeof(struct xinpcb); 742 return 0; 743 } 744 745 if (req->newptr != 0) 746 return EPERM; 747 748 /* 749 * OK, now we're committed to doing something. 750 */ 751 INP_INFO_RLOCK(&ripcbinfo); 752 gencnt = ripcbinfo.ipi_gencnt; 753 n = ripcbinfo.ipi_count; 754 INP_INFO_RUNLOCK(&ripcbinfo); 755 756 xig.xig_len = sizeof xig; 757 xig.xig_count = n; 758 xig.xig_gen = gencnt; 759 xig.xig_sogen = so_gencnt; 760 error = SYSCTL_OUT(req, &xig, sizeof xig); 761 if (error) 762 return error; 763 764 inp_list = malloc(n * sizeof *inp_list, M_TEMP, M_WAITOK); 765 if (inp_list == 0) 766 return ENOMEM; 767 768 INP_INFO_RLOCK(&ripcbinfo); 769 for (inp = LIST_FIRST(ripcbinfo.listhead), i = 0; inp && i < n; 770 inp = LIST_NEXT(inp, inp_list)) { 771 INP_LOCK(inp); 772 if (inp->inp_gencnt <= gencnt && 773 cr_canseesocket(req->td->td_ucred, inp->inp_socket) == 0) { 774 /* XXX held references? */ 775 inp_list[i++] = inp; 776 } 777 INP_UNLOCK(inp); 778 } 779 INP_INFO_RUNLOCK(&ripcbinfo); 780 n = i; 781 782 error = 0; 783 for (i = 0; i < n; i++) { 784 inp = inp_list[i]; 785 if (inp->inp_gencnt <= gencnt) { 786 struct xinpcb xi; 787 xi.xi_len = sizeof xi; 788 /* XXX should avoid extra copy */ 789 bcopy(inp, &xi.xi_inp, sizeof *inp); 790 if (inp->inp_socket) 791 sotoxsocket(inp->inp_socket, &xi.xi_socket); 792 error = SYSCTL_OUT(req, &xi, sizeof xi); 793 } 794 } 795 if (!error) { 796 /* 797 * Give the user an updated idea of our state. 798 * If the generation differs from what we told 799 * her before, she knows that something happened 800 * while we were processing this request, and it 801 * might be necessary to retry. 802 */ 803 INP_INFO_RLOCK(&ripcbinfo); 804 xig.xig_gen = ripcbinfo.ipi_gencnt; 805 xig.xig_sogen = so_gencnt; 806 xig.xig_count = ripcbinfo.ipi_count; 807 INP_INFO_RUNLOCK(&ripcbinfo); 808 error = SYSCTL_OUT(req, &xig, sizeof xig); 809 } 810 free(inp_list, M_TEMP); 811 return error; 812 } 813 814 /* 815 * This is the wrapper function for in_setsockaddr. We just pass down 816 * the pcbinfo for in_setpeeraddr to lock. 817 */ 818 static int 819 rip_sockaddr(struct socket *so, struct sockaddr **nam) 820 { 821 return (in_setsockaddr(so, nam, &ripcbinfo)); 822 } 823 824 /* 825 * This is the wrapper function for in_setpeeraddr. We just pass down 826 * the pcbinfo for in_setpeeraddr to lock. 827 */ 828 static int 829 rip_peeraddr(struct socket *so, struct sockaddr **nam) 830 { 831 return (in_setpeeraddr(so, nam, &ripcbinfo)); 832 } 833 834 835 SYSCTL_PROC(_net_inet_raw, OID_AUTO/*XXX*/, pcblist, CTLFLAG_RD, 0, 0, 836 rip_pcblist, "S,xinpcb", "List of active raw IP sockets"); 837 838 struct pr_usrreqs rip_usrreqs = { 839 rip_abort, pru_accept_notsupp, rip_attach, rip_bind, rip_connect, 840 pru_connect2_notsupp, in_control, rip_detach, rip_disconnect, 841 pru_listen_notsupp, rip_peeraddr, pru_rcvd_notsupp, 842 pru_rcvoob_notsupp, rip_send, pru_sense_null, rip_shutdown, 843 rip_sockaddr, sosend, soreceive, sopoll, in_pcbsosetlabel 844 };
Cache object: 3da327ede0b8e2cecffe33151616524e
[ source navigation ] [ diff markup ] [ identifier search ] [ freetext search ] [ file search ] [ list types ] [ track identifier ]