1 /*-
2 * Copyright (c) 2001-2007, by Cisco Systems, Inc. All rights reserved.
3 * Copyright (c) 2008-2011, by Randall Stewart. All rights reserved.
4 * Copyright (c) 2008-2011, by Michael Tuexen. All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions are met:
8 *
9 * a) Redistributions of source code must retain the above copyright notice,
10 * this list of conditions and the following disclaimer.
11 *
12 * b) Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in
14 * the documentation and/or other materials provided with the distribution.
15 *
16 * c) Neither the name of Cisco Systems, Inc. nor the names of its
17 * contributors may be used to endorse or promote products derived
18 * from this software without specific prior written permission.
19 *
20 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
21 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
22 * THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
24 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
25 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
26 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
27 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
28 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
29 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
30 * THE POSSIBILITY OF SUCH DAMAGE.
31 */
32
33 /* $KAME: sctp_asconf.c,v 1.24 2005/03/06 16:04:16 itojun Exp $ */
34
35 #include <sys/cdefs.h>
36 __FBSDID("$FreeBSD: releng/9.0/sys/netinet/sctp_asconf.c 225584 2011-09-15 12:20:52Z tuexen $");
37 #include <netinet/sctp_os.h>
38 #include <netinet/sctp_var.h>
39 #include <netinet/sctp_sysctl.h>
40 #include <netinet/sctp_pcb.h>
41 #include <netinet/sctp_header.h>
42 #include <netinet/sctputil.h>
43 #include <netinet/sctp_output.h>
44 #include <netinet/sctp_asconf.h>
45 #include <netinet/sctp_timer.h>
46
47 /*
48 * debug flags:
49 * SCTP_DEBUG_ASCONF1: protocol info, general info and errors
50 * SCTP_DEBUG_ASCONF2: detailed info
51 */
52 #ifdef SCTP_DEBUG
53 #endif /* SCTP_DEBUG */
54
55
56 static void
57 sctp_asconf_get_source_ip(struct mbuf *m, struct sockaddr *sa)
58 {
59 struct ip *iph;
60
61 #ifdef INET
62 struct sockaddr_in *sin;
63
64 #endif
65 #ifdef INET6
66 struct sockaddr_in6 *sin6;
67
68 #endif
69
70 iph = mtod(m, struct ip *);
71 switch (iph->ip_v) {
72 #ifdef INET
73 case IPVERSION:
74 {
75 /* IPv4 source */
76 sin = (struct sockaddr_in *)sa;
77 bzero(sin, sizeof(*sin));
78 sin->sin_family = AF_INET;
79 sin->sin_len = sizeof(struct sockaddr_in);
80 sin->sin_port = 0;
81 sin->sin_addr.s_addr = iph->ip_src.s_addr;
82 break;
83 }
84 #endif
85 #ifdef INET6
86 case (IPV6_VERSION >> 4):
87 {
88 /* IPv6 source */
89 struct ip6_hdr *ip6;
90
91 sin6 = (struct sockaddr_in6 *)sa;
92 bzero(sin6, sizeof(*sin6));
93 sin6->sin6_family = AF_INET6;
94 sin6->sin6_len = sizeof(struct sockaddr_in6);
95 sin6->sin6_port = 0;
96 ip6 = mtod(m, struct ip6_hdr *);
97 sin6->sin6_addr = ip6->ip6_src;
98 break;
99 }
100 #endif /* INET6 */
101 default:
102 break;
103 }
104 return;
105 }
106
107 /*
108 * draft-ietf-tsvwg-addip-sctp
109 *
110 * An ASCONF parameter queue exists per asoc which holds the pending address
111 * operations. Lists are updated upon receipt of ASCONF-ACK.
112 *
113 * A restricted_addrs list exists per assoc to hold local addresses that are
114 * not (yet) usable by the assoc as a source address. These addresses are
115 * either pending an ASCONF operation (and exist on the ASCONF parameter
116 * queue), or they are permanently restricted (the peer has returned an
117 * ERROR indication to an ASCONF(ADD), or the peer does not support ASCONF).
118 *
119 * Deleted addresses are always immediately removed from the lists as they will
120 * (shortly) no longer exist in the kernel. We send ASCONFs as a courtesy,
121 * only if allowed.
122 */
123
124 /*
125 * ASCONF parameter processing.
126 * response_required: set if a reply is required (eg. SUCCESS_REPORT).
127 * returns a mbuf to an "error" response parameter or NULL/"success" if ok.
128 * FIX: allocating this many mbufs on the fly is pretty inefficient...
129 */
130 static struct mbuf *
131 sctp_asconf_success_response(uint32_t id)
132 {
133 struct mbuf *m_reply = NULL;
134 struct sctp_asconf_paramhdr *aph;
135
136 m_reply = sctp_get_mbuf_for_msg(sizeof(struct sctp_asconf_paramhdr),
137 0, M_DONTWAIT, 1, MT_DATA);
138 if (m_reply == NULL) {
139 SCTPDBG(SCTP_DEBUG_ASCONF1,
140 "asconf_success_response: couldn't get mbuf!\n");
141 return NULL;
142 }
143 aph = mtod(m_reply, struct sctp_asconf_paramhdr *);
144 aph->correlation_id = id;
145 aph->ph.param_type = htons(SCTP_SUCCESS_REPORT);
146 aph->ph.param_length = sizeof(struct sctp_asconf_paramhdr);
147 SCTP_BUF_LEN(m_reply) = aph->ph.param_length;
148 aph->ph.param_length = htons(aph->ph.param_length);
149
150 return m_reply;
151 }
152
153 static struct mbuf *
154 sctp_asconf_error_response(uint32_t id, uint16_t cause, uint8_t * error_tlv,
155 uint16_t tlv_length)
156 {
157 struct mbuf *m_reply = NULL;
158 struct sctp_asconf_paramhdr *aph;
159 struct sctp_error_cause *error;
160 uint8_t *tlv;
161
162 m_reply = sctp_get_mbuf_for_msg((sizeof(struct sctp_asconf_paramhdr) +
163 tlv_length +
164 sizeof(struct sctp_error_cause)),
165 0, M_DONTWAIT, 1, MT_DATA);
166 if (m_reply == NULL) {
167 SCTPDBG(SCTP_DEBUG_ASCONF1,
168 "asconf_error_response: couldn't get mbuf!\n");
169 return NULL;
170 }
171 aph = mtod(m_reply, struct sctp_asconf_paramhdr *);
172 error = (struct sctp_error_cause *)(aph + 1);
173
174 aph->correlation_id = id;
175 aph->ph.param_type = htons(SCTP_ERROR_CAUSE_IND);
176 error->code = htons(cause);
177 error->length = tlv_length + sizeof(struct sctp_error_cause);
178 aph->ph.param_length = error->length +
179 sizeof(struct sctp_asconf_paramhdr);
180
181 if (aph->ph.param_length > MLEN) {
182 SCTPDBG(SCTP_DEBUG_ASCONF1,
183 "asconf_error_response: tlv_length (%xh) too big\n",
184 tlv_length);
185 sctp_m_freem(m_reply); /* discard */
186 return NULL;
187 }
188 if (error_tlv != NULL) {
189 tlv = (uint8_t *) (error + 1);
190 memcpy(tlv, error_tlv, tlv_length);
191 }
192 SCTP_BUF_LEN(m_reply) = aph->ph.param_length;
193 error->length = htons(error->length);
194 aph->ph.param_length = htons(aph->ph.param_length);
195
196 return m_reply;
197 }
198
199 static struct mbuf *
200 sctp_process_asconf_add_ip(struct mbuf *m, struct sctp_asconf_paramhdr *aph,
201 struct sctp_tcb *stcb, int send_hb, int response_required)
202 {
203 struct sctp_nets *net;
204 struct mbuf *m_reply = NULL;
205 struct sockaddr_storage sa_source, sa_store;
206 struct sctp_paramhdr *ph;
207 uint16_t param_type, param_length, aparam_length;
208 struct sockaddr *sa;
209 int zero_address = 0;
210 int bad_address = 0;
211
212 #ifdef INET
213 struct sockaddr_in *sin;
214 struct sctp_ipv4addr_param *v4addr;
215
216 #endif
217 #ifdef INET6
218 struct sockaddr_in6 *sin6;
219 struct sctp_ipv6addr_param *v6addr;
220
221 #endif
222
223 aparam_length = ntohs(aph->ph.param_length);
224 ph = (struct sctp_paramhdr *)(aph + 1);
225 param_type = ntohs(ph->param_type);
226 param_length = ntohs(ph->param_length);
227
228 sa = (struct sockaddr *)&sa_store;
229 switch (param_type) {
230 #ifdef INET
231 case SCTP_IPV4_ADDRESS:
232 if (param_length != sizeof(struct sctp_ipv4addr_param)) {
233 /* invalid param size */
234 return NULL;
235 }
236 v4addr = (struct sctp_ipv4addr_param *)ph;
237 sin = (struct sockaddr_in *)&sa_store;
238 bzero(sin, sizeof(*sin));
239 sin->sin_family = AF_INET;
240 sin->sin_len = sizeof(struct sockaddr_in);
241 sin->sin_port = stcb->rport;
242 sin->sin_addr.s_addr = v4addr->addr;
243 if ((sin->sin_addr.s_addr == INADDR_BROADCAST) ||
244 IN_MULTICAST(ntohl(sin->sin_addr.s_addr))) {
245 bad_address = 1;
246 }
247 if (sin->sin_addr.s_addr == INADDR_ANY)
248 zero_address = 1;
249 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_add_ip: adding ");
250 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
251 break;
252 #endif
253 #ifdef INET6
254 case SCTP_IPV6_ADDRESS:
255 if (param_length != sizeof(struct sctp_ipv6addr_param)) {
256 /* invalid param size */
257 return NULL;
258 }
259 v6addr = (struct sctp_ipv6addr_param *)ph;
260 sin6 = (struct sockaddr_in6 *)&sa_store;
261 bzero(sin6, sizeof(*sin6));
262 sin6->sin6_family = AF_INET6;
263 sin6->sin6_len = sizeof(struct sockaddr_in6);
264 sin6->sin6_port = stcb->rport;
265 memcpy((caddr_t)&sin6->sin6_addr, v6addr->addr,
266 sizeof(struct in6_addr));
267 if (IN6_IS_ADDR_MULTICAST(&sin6->sin6_addr)) {
268 bad_address = 1;
269 }
270 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr))
271 zero_address = 1;
272 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_add_ip: adding ");
273 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
274 break;
275 #endif
276 default:
277 m_reply = sctp_asconf_error_response(aph->correlation_id,
278 SCTP_CAUSE_INVALID_PARAM, (uint8_t *) aph,
279 aparam_length);
280 return m_reply;
281 } /* end switch */
282
283 /* if 0.0.0.0/::0, add the source address instead */
284 if (zero_address && SCTP_BASE_SYSCTL(sctp_nat_friendly)) {
285 sa = (struct sockaddr *)&sa_source;
286 sctp_asconf_get_source_ip(m, sa);
287 SCTPDBG(SCTP_DEBUG_ASCONF1,
288 "process_asconf_add_ip: using source addr ");
289 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
290 }
291 /* add the address */
292 if (bad_address) {
293 m_reply = sctp_asconf_error_response(aph->correlation_id,
294 SCTP_CAUSE_INVALID_PARAM, (uint8_t *) aph,
295 aparam_length);
296 } else if (sctp_add_remote_addr(stcb, sa, &net, SCTP_DONOT_SETSCOPE,
297 SCTP_ADDR_DYNAMIC_ADDED) != 0) {
298 SCTPDBG(SCTP_DEBUG_ASCONF1,
299 "process_asconf_add_ip: error adding address\n");
300 m_reply = sctp_asconf_error_response(aph->correlation_id,
301 SCTP_CAUSE_RESOURCE_SHORTAGE, (uint8_t *) aph,
302 aparam_length);
303 } else {
304 /* notify upper layer */
305 sctp_ulp_notify(SCTP_NOTIFY_ASCONF_ADD_IP, stcb, 0, sa, SCTP_SO_NOT_LOCKED);
306 if (response_required) {
307 m_reply =
308 sctp_asconf_success_response(aph->correlation_id);
309 }
310 sctp_timer_start(SCTP_TIMER_TYPE_PATHMTURAISE, stcb->sctp_ep, stcb, net);
311 sctp_timer_start(SCTP_TIMER_TYPE_HEARTBEAT, stcb->sctp_ep,
312 stcb, net);
313 if (send_hb) {
314 sctp_send_hb(stcb, net, SCTP_SO_NOT_LOCKED);
315 }
316 }
317 return m_reply;
318 }
319
320 static int
321 sctp_asconf_del_remote_addrs_except(struct sctp_tcb *stcb, struct sockaddr *src)
322 {
323 struct sctp_nets *src_net, *net;
324
325 /* make sure the source address exists as a destination net */
326 src_net = sctp_findnet(stcb, src);
327 if (src_net == NULL) {
328 /* not found */
329 return -1;
330 }
331 /* delete all destination addresses except the source */
332 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
333 if (net != src_net) {
334 /* delete this address */
335 sctp_remove_net(stcb, net);
336 SCTPDBG(SCTP_DEBUG_ASCONF1,
337 "asconf_del_remote_addrs_except: deleting ");
338 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1,
339 (struct sockaddr *)&net->ro._l_addr);
340 /* notify upper layer */
341 sctp_ulp_notify(SCTP_NOTIFY_ASCONF_DELETE_IP, stcb, 0,
342 (struct sockaddr *)&net->ro._l_addr, SCTP_SO_NOT_LOCKED);
343 }
344 }
345 return 0;
346 }
347
348 static struct mbuf *
349 sctp_process_asconf_delete_ip(struct mbuf *m, struct sctp_asconf_paramhdr *aph,
350 struct sctp_tcb *stcb, int response_required)
351 {
352 struct mbuf *m_reply = NULL;
353 struct sockaddr_storage sa_source, sa_store;
354 struct sctp_paramhdr *ph;
355 uint16_t param_type, param_length, aparam_length;
356 struct sockaddr *sa;
357 int zero_address = 0;
358 int result;
359
360 #ifdef INET
361 struct sockaddr_in *sin;
362 struct sctp_ipv4addr_param *v4addr;
363
364 #endif
365 #ifdef INET6
366 struct sockaddr_in6 *sin6;
367 struct sctp_ipv6addr_param *v6addr;
368
369 #endif
370
371 /* get the source IP address for src and 0.0.0.0/::0 delete checks */
372 sctp_asconf_get_source_ip(m, (struct sockaddr *)&sa_source);
373
374 aparam_length = ntohs(aph->ph.param_length);
375 ph = (struct sctp_paramhdr *)(aph + 1);
376 param_type = ntohs(ph->param_type);
377 param_length = ntohs(ph->param_length);
378
379 sa = (struct sockaddr *)&sa_store;
380 switch (param_type) {
381 #ifdef INET
382 case SCTP_IPV4_ADDRESS:
383 if (param_length != sizeof(struct sctp_ipv4addr_param)) {
384 /* invalid param size */
385 return NULL;
386 }
387 v4addr = (struct sctp_ipv4addr_param *)ph;
388 sin = (struct sockaddr_in *)&sa_store;
389 bzero(sin, sizeof(*sin));
390 sin->sin_family = AF_INET;
391 sin->sin_len = sizeof(struct sockaddr_in);
392 sin->sin_port = stcb->rport;
393 sin->sin_addr.s_addr = v4addr->addr;
394 if (sin->sin_addr.s_addr == INADDR_ANY)
395 zero_address = 1;
396 SCTPDBG(SCTP_DEBUG_ASCONF1,
397 "process_asconf_delete_ip: deleting ");
398 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
399 break;
400 #endif
401 #ifdef INET6
402 case SCTP_IPV6_ADDRESS:
403 if (param_length != sizeof(struct sctp_ipv6addr_param)) {
404 /* invalid param size */
405 return NULL;
406 }
407 v6addr = (struct sctp_ipv6addr_param *)ph;
408 sin6 = (struct sockaddr_in6 *)&sa_store;
409 bzero(sin6, sizeof(*sin6));
410 sin6->sin6_family = AF_INET6;
411 sin6->sin6_len = sizeof(struct sockaddr_in6);
412 sin6->sin6_port = stcb->rport;
413 memcpy(&sin6->sin6_addr, v6addr->addr,
414 sizeof(struct in6_addr));
415 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr))
416 zero_address = 1;
417 SCTPDBG(SCTP_DEBUG_ASCONF1,
418 "process_asconf_delete_ip: deleting ");
419 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
420 break;
421 #endif
422 default:
423 m_reply = sctp_asconf_error_response(aph->correlation_id,
424 SCTP_CAUSE_UNRESOLVABLE_ADDR, (uint8_t *) aph,
425 aparam_length);
426 return m_reply;
427 }
428
429 /* make sure the source address is not being deleted */
430 if (sctp_cmpaddr(sa, (struct sockaddr *)&sa_source)) {
431 /* trying to delete the source address! */
432 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_delete_ip: tried to delete source addr\n");
433 m_reply = sctp_asconf_error_response(aph->correlation_id,
434 SCTP_CAUSE_DELETING_SRC_ADDR, (uint8_t *) aph,
435 aparam_length);
436 return m_reply;
437 }
438 /* if deleting 0.0.0.0/::0, delete all addresses except src addr */
439 if (zero_address && SCTP_BASE_SYSCTL(sctp_nat_friendly)) {
440 result = sctp_asconf_del_remote_addrs_except(stcb,
441 (struct sockaddr *)&sa_source);
442
443 if (result) {
444 /* src address did not exist? */
445 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_delete_ip: src addr does not exist?\n");
446 /* what error to reply with?? */
447 m_reply =
448 sctp_asconf_error_response(aph->correlation_id,
449 SCTP_CAUSE_REQUEST_REFUSED, (uint8_t *) aph,
450 aparam_length);
451 } else if (response_required) {
452 m_reply =
453 sctp_asconf_success_response(aph->correlation_id);
454 }
455 return m_reply;
456 }
457 /* delete the address */
458 result = sctp_del_remote_addr(stcb, sa);
459 /*
460 * note if result == -2, the address doesn't exist in the asoc but
461 * since it's being deleted anyways, we just ack the delete -- but
462 * this probably means something has already gone awry
463 */
464 if (result == -1) {
465 /* only one address in the asoc */
466 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_delete_ip: tried to delete last IP addr!\n");
467 m_reply = sctp_asconf_error_response(aph->correlation_id,
468 SCTP_CAUSE_DELETING_LAST_ADDR, (uint8_t *) aph,
469 aparam_length);
470 } else {
471 if (response_required) {
472 m_reply = sctp_asconf_success_response(aph->correlation_id);
473 }
474 /* notify upper layer */
475 sctp_ulp_notify(SCTP_NOTIFY_ASCONF_DELETE_IP, stcb, 0, sa, SCTP_SO_NOT_LOCKED);
476 }
477 return m_reply;
478 }
479
480 static struct mbuf *
481 sctp_process_asconf_set_primary(struct mbuf *m,
482 struct sctp_asconf_paramhdr *aph,
483 struct sctp_tcb *stcb, int response_required)
484 {
485 struct mbuf *m_reply = NULL;
486 struct sockaddr_storage sa_source, sa_store;
487 struct sctp_paramhdr *ph;
488 uint16_t param_type, param_length, aparam_length;
489 struct sockaddr *sa;
490 int zero_address = 0;
491
492 #ifdef INET
493 struct sockaddr_in *sin;
494 struct sctp_ipv4addr_param *v4addr;
495
496 #endif
497 #ifdef INET6
498 struct sockaddr_in6 *sin6;
499 struct sctp_ipv6addr_param *v6addr;
500
501 #endif
502
503 aparam_length = ntohs(aph->ph.param_length);
504 ph = (struct sctp_paramhdr *)(aph + 1);
505 param_type = ntohs(ph->param_type);
506 param_length = ntohs(ph->param_length);
507
508 sa = (struct sockaddr *)&sa_store;
509 switch (param_type) {
510 #ifdef INET
511 case SCTP_IPV4_ADDRESS:
512 if (param_length != sizeof(struct sctp_ipv4addr_param)) {
513 /* invalid param size */
514 return NULL;
515 }
516 v4addr = (struct sctp_ipv4addr_param *)ph;
517 sin = (struct sockaddr_in *)&sa_store;
518 bzero(sin, sizeof(*sin));
519 sin->sin_family = AF_INET;
520 sin->sin_len = sizeof(struct sockaddr_in);
521 sin->sin_addr.s_addr = v4addr->addr;
522 if (sin->sin_addr.s_addr == INADDR_ANY)
523 zero_address = 1;
524 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_set_primary: ");
525 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
526 break;
527 #endif
528 #ifdef INET6
529 case SCTP_IPV6_ADDRESS:
530 if (param_length != sizeof(struct sctp_ipv6addr_param)) {
531 /* invalid param size */
532 return NULL;
533 }
534 v6addr = (struct sctp_ipv6addr_param *)ph;
535 sin6 = (struct sockaddr_in6 *)&sa_store;
536 bzero(sin6, sizeof(*sin6));
537 sin6->sin6_family = AF_INET6;
538 sin6->sin6_len = sizeof(struct sockaddr_in6);
539 memcpy((caddr_t)&sin6->sin6_addr, v6addr->addr,
540 sizeof(struct in6_addr));
541 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr))
542 zero_address = 1;
543 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_set_primary: ");
544 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
545 break;
546 #endif
547 default:
548 m_reply = sctp_asconf_error_response(aph->correlation_id,
549 SCTP_CAUSE_UNRESOLVABLE_ADDR, (uint8_t *) aph,
550 aparam_length);
551 return m_reply;
552 }
553
554 /* if 0.0.0.0/::0, use the source address instead */
555 if (zero_address && SCTP_BASE_SYSCTL(sctp_nat_friendly)) {
556 sa = (struct sockaddr *)&sa_source;
557 sctp_asconf_get_source_ip(m, sa);
558 SCTPDBG(SCTP_DEBUG_ASCONF1,
559 "process_asconf_set_primary: using source addr ");
560 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
561 }
562 /* set the primary address */
563 if (sctp_set_primary_addr(stcb, sa, NULL) == 0) {
564 SCTPDBG(SCTP_DEBUG_ASCONF1,
565 "process_asconf_set_primary: primary address set\n");
566 /* notify upper layer */
567 sctp_ulp_notify(SCTP_NOTIFY_ASCONF_SET_PRIMARY, stcb, 0, sa, SCTP_SO_NOT_LOCKED);
568 if ((stcb->asoc.primary_destination->dest_state & SCTP_ADDR_REACHABLE) &&
569 (!(stcb->asoc.primary_destination->dest_state & SCTP_ADDR_PF)) &&
570 (stcb->asoc.alternate)) {
571 sctp_free_remote_addr(stcb->asoc.alternate);
572 stcb->asoc.alternate = NULL;
573 }
574 if (response_required) {
575 m_reply = sctp_asconf_success_response(aph->correlation_id);
576 }
577 /*
578 * Mobility adaptation. Ideally, when the reception of SET
579 * PRIMARY with DELETE IP ADDRESS of the previous primary
580 * destination, unacknowledged DATA are retransmitted
581 * immediately to the new primary destination for seamless
582 * handover. If the destination is UNCONFIRMED and marked to
583 * REQ_PRIM, The retransmission occur when reception of the
584 * HEARTBEAT-ACK. (See sctp_handle_heartbeat_ack in
585 * sctp_input.c) Also, when change of the primary
586 * destination, it is better that all subsequent new DATA
587 * containing already queued DATA are transmitted to the new
588 * primary destination. (by micchie)
589 */
590 if ((sctp_is_mobility_feature_on(stcb->sctp_ep,
591 SCTP_MOBILITY_BASE) ||
592 sctp_is_mobility_feature_on(stcb->sctp_ep,
593 SCTP_MOBILITY_FASTHANDOFF)) &&
594 sctp_is_mobility_feature_on(stcb->sctp_ep,
595 SCTP_MOBILITY_PRIM_DELETED) &&
596 (stcb->asoc.primary_destination->dest_state &
597 SCTP_ADDR_UNCONFIRMED) == 0) {
598
599 sctp_timer_stop(SCTP_TIMER_TYPE_PRIM_DELETED, stcb->sctp_ep, stcb, NULL, SCTP_FROM_SCTP_TIMER + SCTP_LOC_7);
600 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
601 SCTP_MOBILITY_FASTHANDOFF)) {
602 sctp_assoc_immediate_retrans(stcb,
603 stcb->asoc.primary_destination);
604 }
605 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
606 SCTP_MOBILITY_BASE)) {
607 sctp_move_chunks_from_net(stcb,
608 stcb->asoc.deleted_primary);
609 }
610 sctp_delete_prim_timer(stcb->sctp_ep, stcb,
611 stcb->asoc.deleted_primary);
612 }
613 } else {
614 /* couldn't set the requested primary address! */
615 SCTPDBG(SCTP_DEBUG_ASCONF1,
616 "process_asconf_set_primary: set primary failed!\n");
617 /* must have been an invalid address, so report */
618 m_reply = sctp_asconf_error_response(aph->correlation_id,
619 SCTP_CAUSE_UNRESOLVABLE_ADDR, (uint8_t *) aph,
620 aparam_length);
621 }
622
623 return m_reply;
624 }
625
626 /*
627 * handles an ASCONF chunk.
628 * if all parameters are processed ok, send a plain (empty) ASCONF-ACK
629 */
630 void
631 sctp_handle_asconf(struct mbuf *m, unsigned int offset,
632 struct sctp_asconf_chunk *cp, struct sctp_tcb *stcb,
633 int first)
634 {
635 struct sctp_association *asoc;
636 uint32_t serial_num;
637 struct mbuf *n, *m_ack, *m_result, *m_tail;
638 struct sctp_asconf_ack_chunk *ack_cp;
639 struct sctp_asconf_paramhdr *aph, *ack_aph;
640 struct sctp_ipv6addr_param *p_addr;
641 unsigned int asconf_limit, cnt;
642 int error = 0; /* did an error occur? */
643
644 /* asconf param buffer */
645 uint8_t aparam_buf[SCTP_PARAM_BUFFER_SIZE];
646 struct sctp_asconf_ack *ack, *ack_next;
647
648 /* verify minimum length */
649 if (ntohs(cp->ch.chunk_length) < sizeof(struct sctp_asconf_chunk)) {
650 SCTPDBG(SCTP_DEBUG_ASCONF1,
651 "handle_asconf: chunk too small = %xh\n",
652 ntohs(cp->ch.chunk_length));
653 return;
654 }
655 asoc = &stcb->asoc;
656 serial_num = ntohl(cp->serial_number);
657
658 if (SCTP_TSN_GE(asoc->asconf_seq_in, serial_num)) {
659 /* got a duplicate ASCONF */
660 SCTPDBG(SCTP_DEBUG_ASCONF1,
661 "handle_asconf: got duplicate serial number = %xh\n",
662 serial_num);
663 return;
664 } else if (serial_num != (asoc->asconf_seq_in + 1)) {
665 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: incorrect serial number = %xh (expected next = %xh)\n",
666 serial_num, asoc->asconf_seq_in + 1);
667 return;
668 }
669 /* it's the expected "next" sequence number, so process it */
670 asoc->asconf_seq_in = serial_num; /* update sequence */
671 /* get length of all the param's in the ASCONF */
672 asconf_limit = offset + ntohs(cp->ch.chunk_length);
673 SCTPDBG(SCTP_DEBUG_ASCONF1,
674 "handle_asconf: asconf_limit=%u, sequence=%xh\n",
675 asconf_limit, serial_num);
676
677 if (first) {
678 /* delete old cache */
679 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: Now processing first ASCONF. Try to delete old cache\n");
680
681 TAILQ_FOREACH_SAFE(ack, &asoc->asconf_ack_sent, next, ack_next) {
682 if (ack->serial_number == serial_num)
683 break;
684 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: delete old(%u) < first(%u)\n",
685 ack->serial_number, serial_num);
686 TAILQ_REMOVE(&asoc->asconf_ack_sent, ack, next);
687 if (ack->data != NULL) {
688 sctp_m_freem(ack->data);
689 }
690 SCTP_ZONE_FREE(SCTP_BASE_INFO(ipi_zone_asconf_ack), ack);
691 }
692 }
693 m_ack = sctp_get_mbuf_for_msg(sizeof(struct sctp_asconf_ack_chunk), 0,
694 M_DONTWAIT, 1, MT_DATA);
695 if (m_ack == NULL) {
696 SCTPDBG(SCTP_DEBUG_ASCONF1,
697 "handle_asconf: couldn't get mbuf!\n");
698 return;
699 }
700 m_tail = m_ack; /* current reply chain's tail */
701
702 /* fill in ASCONF-ACK header */
703 ack_cp = mtod(m_ack, struct sctp_asconf_ack_chunk *);
704 ack_cp->ch.chunk_type = SCTP_ASCONF_ACK;
705 ack_cp->ch.chunk_flags = 0;
706 ack_cp->serial_number = htonl(serial_num);
707 /* set initial lengths (eg. just an ASCONF-ACK), ntohx at the end! */
708 SCTP_BUF_LEN(m_ack) = sizeof(struct sctp_asconf_ack_chunk);
709 ack_cp->ch.chunk_length = sizeof(struct sctp_asconf_ack_chunk);
710
711 /* skip the lookup address parameter */
712 offset += sizeof(struct sctp_asconf_chunk);
713 p_addr = (struct sctp_ipv6addr_param *)sctp_m_getptr(m, offset, sizeof(struct sctp_paramhdr), (uint8_t *) & aparam_buf);
714 if (p_addr == NULL) {
715 SCTPDBG(SCTP_DEBUG_ASCONF1,
716 "handle_asconf: couldn't get lookup addr!\n");
717 /* respond with a missing/invalid mandatory parameter error */
718 return;
719 }
720 /* param_length is already validated in process_control... */
721 offset += ntohs(p_addr->ph.param_length); /* skip lookup addr */
722
723 /* get pointer to first asconf param in ASCONF-ACK */
724 ack_aph = (struct sctp_asconf_paramhdr *)(mtod(m_ack, caddr_t)+sizeof(struct sctp_asconf_ack_chunk));
725 if (ack_aph == NULL) {
726 SCTPDBG(SCTP_DEBUG_ASCONF1, "Gak in asconf2\n");
727 return;
728 }
729 /* get pointer to first asconf param in ASCONF */
730 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset, sizeof(struct sctp_asconf_paramhdr), (uint8_t *) & aparam_buf);
731 if (aph == NULL) {
732 SCTPDBG(SCTP_DEBUG_ASCONF1, "Empty ASCONF received?\n");
733 goto send_reply;
734 }
735 /* process through all parameters */
736 cnt = 0;
737 while (aph != NULL) {
738 unsigned int param_length, param_type;
739
740 param_type = ntohs(aph->ph.param_type);
741 param_length = ntohs(aph->ph.param_length);
742 if (offset + param_length > asconf_limit) {
743 /* parameter goes beyond end of chunk! */
744 sctp_m_freem(m_ack);
745 return;
746 }
747 m_result = NULL;
748
749 if (param_length > sizeof(aparam_buf)) {
750 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: param length (%u) larger than buffer size!\n", param_length);
751 sctp_m_freem(m_ack);
752 return;
753 }
754 if (param_length <= sizeof(struct sctp_paramhdr)) {
755 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: param length (%u) too short\n", param_length);
756 sctp_m_freem(m_ack);
757 }
758 /* get the entire parameter */
759 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset, param_length, aparam_buf);
760 if (aph == NULL) {
761 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: couldn't get entire param\n");
762 sctp_m_freem(m_ack);
763 return;
764 }
765 switch (param_type) {
766 case SCTP_ADD_IP_ADDRESS:
767 asoc->peer_supports_asconf = 1;
768 m_result = sctp_process_asconf_add_ip(m, aph, stcb,
769 (cnt < SCTP_BASE_SYSCTL(sctp_hb_maxburst)), error);
770 cnt++;
771 break;
772 case SCTP_DEL_IP_ADDRESS:
773 asoc->peer_supports_asconf = 1;
774 m_result = sctp_process_asconf_delete_ip(m, aph, stcb,
775 error);
776 break;
777 case SCTP_ERROR_CAUSE_IND:
778 /* not valid in an ASCONF chunk */
779 break;
780 case SCTP_SET_PRIM_ADDR:
781 asoc->peer_supports_asconf = 1;
782 m_result = sctp_process_asconf_set_primary(m, aph,
783 stcb, error);
784 break;
785 case SCTP_NAT_VTAGS:
786 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: sees a NAT VTAG state parameter\n");
787 break;
788 case SCTP_SUCCESS_REPORT:
789 /* not valid in an ASCONF chunk */
790 break;
791 case SCTP_ULP_ADAPTATION:
792 /* FIX */
793 break;
794 default:
795 if ((param_type & 0x8000) == 0) {
796 /* Been told to STOP at this param */
797 asconf_limit = offset;
798 /*
799 * FIX FIX - We need to call
800 * sctp_arethere_unrecognized_parameters()
801 * to get a operr and send it for any
802 * param's with the 0x4000 bit set OR do it
803 * here ourselves... note we still must STOP
804 * if the 0x8000 bit is clear.
805 */
806 }
807 /* unknown/invalid param type */
808 break;
809 } /* switch */
810
811 /* add any (error) result to the reply mbuf chain */
812 if (m_result != NULL) {
813 SCTP_BUF_NEXT(m_tail) = m_result;
814 m_tail = m_result;
815 /* update lengths, make sure it's aligned too */
816 SCTP_BUF_LEN(m_result) = SCTP_SIZE32(SCTP_BUF_LEN(m_result));
817 ack_cp->ch.chunk_length += SCTP_BUF_LEN(m_result);
818 /* set flag to force success reports */
819 error = 1;
820 }
821 offset += SCTP_SIZE32(param_length);
822 /* update remaining ASCONF message length to process */
823 if (offset >= asconf_limit) {
824 /* no more data in the mbuf chain */
825 break;
826 }
827 /* get pointer to next asconf param */
828 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset,
829 sizeof(struct sctp_asconf_paramhdr),
830 (uint8_t *) & aparam_buf);
831 if (aph == NULL) {
832 /* can't get an asconf paramhdr */
833 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: can't get asconf param hdr!\n");
834 /* FIX ME - add error here... */
835 }
836 }
837
838 send_reply:
839 ack_cp->ch.chunk_length = htons(ack_cp->ch.chunk_length);
840 /* save the ASCONF-ACK reply */
841 ack = SCTP_ZONE_GET(SCTP_BASE_INFO(ipi_zone_asconf_ack),
842 struct sctp_asconf_ack);
843 if (ack == NULL) {
844 sctp_m_freem(m_ack);
845 return;
846 }
847 ack->serial_number = serial_num;
848 ack->last_sent_to = NULL;
849 ack->data = m_ack;
850 ack->len = 0;
851 for (n = m_ack; n != NULL; n = SCTP_BUF_NEXT(n)) {
852 ack->len += SCTP_BUF_LEN(n);
853 }
854 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_ack_sent, ack, next);
855
856 /* see if last_control_chunk_from is set properly (use IP src addr) */
857 if (stcb->asoc.last_control_chunk_from == NULL) {
858 /*
859 * this could happen if the source address was just newly
860 * added
861 */
862 struct ip *iph;
863 struct sctphdr *sh;
864 struct sockaddr_storage from_store;
865 struct sockaddr *from = (struct sockaddr *)&from_store;
866
867 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: looking up net for IP source address\n");
868 /* pullup already done, IP options already stripped */
869 iph = mtod(m, struct ip *);
870 switch (iph->ip_v) {
871 #ifdef INET
872 case IPVERSION:
873 {
874 struct sockaddr_in *from4;
875
876 sh = (struct sctphdr *)((caddr_t)iph + sizeof(*iph));
877 from4 = (struct sockaddr_in *)&from_store;
878 bzero(from4, sizeof(*from4));
879 from4->sin_family = AF_INET;
880 from4->sin_len = sizeof(struct sockaddr_in);
881 from4->sin_addr.s_addr = iph->ip_src.s_addr;
882 from4->sin_port = sh->src_port;
883 break;
884 }
885 #endif
886 #ifdef INET6
887 case IPV6_VERSION >> 4:
888 {
889 struct ip6_hdr *ip6;
890 struct sockaddr_in6 *from6;
891
892 ip6 = mtod(m, struct ip6_hdr *);
893 sh = (struct sctphdr *)((caddr_t)ip6 + sizeof(*ip6));
894 from6 = (struct sockaddr_in6 *)&from_store;
895 bzero(from6, sizeof(*from6));
896 from6->sin6_family = AF_INET6;
897 from6->sin6_len = sizeof(struct sockaddr_in6);
898 from6->sin6_addr = ip6->ip6_src;
899 from6->sin6_port = sh->src_port;
900 /*
901 * Get the scopes in properly to the sin6
902 * addr's
903 */
904 /* we probably don't need these operations */
905 (void)sa6_recoverscope(from6);
906 sa6_embedscope(from6,
907 MODULE_GLOBAL(ip6_use_defzone));
908
909 break;
910 }
911 #endif
912 default:
913 /* unknown address type */
914 from = NULL;
915 }
916 if (from != NULL) {
917 SCTPDBG(SCTP_DEBUG_ASCONF1, "Looking for IP source: ");
918 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, from);
919 /* look up the from address */
920 stcb->asoc.last_control_chunk_from = sctp_findnet(stcb, from);
921 #ifdef SCTP_DEBUG
922 if (stcb->asoc.last_control_chunk_from == NULL)
923 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: IP source address not found?!\n");
924 #endif
925 }
926 }
927 }
928
929 /*
930 * does the address match? returns 0 if not, 1 if so
931 */
932 static uint32_t
933 sctp_asconf_addr_match(struct sctp_asconf_addr *aa, struct sockaddr *sa)
934 {
935 switch (sa->sa_family) {
936 #ifdef INET6
937 case AF_INET6:
938 {
939 /* XXX scopeid */
940 struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)sa;
941
942 if ((aa->ap.addrp.ph.param_type == SCTP_IPV6_ADDRESS) &&
943 (memcmp(&aa->ap.addrp.addr, &sin6->sin6_addr,
944 sizeof(struct in6_addr)) == 0)) {
945 return (1);
946 }
947 break;
948 }
949 #endif
950 #ifdef INET
951 case AF_INET:
952 {
953 struct sockaddr_in *sin = (struct sockaddr_in *)sa;
954
955 if ((aa->ap.addrp.ph.param_type == SCTP_IPV4_ADDRESS) &&
956 (memcmp(&aa->ap.addrp.addr, &sin->sin_addr,
957 sizeof(struct in_addr)) == 0)) {
958 return (1);
959 }
960 break;
961 }
962 #endif
963 default:
964 break;
965 }
966 return (0);
967 }
968
969 /*
970 * does the address match? returns 0 if not, 1 if so
971 */
972 static uint32_t
973 sctp_addr_match(struct sctp_paramhdr *ph, struct sockaddr *sa)
974 {
975 uint16_t param_type, param_length;
976
977 param_type = ntohs(ph->param_type);
978 param_length = ntohs(ph->param_length);
979 switch (sa->sa_family) {
980 #ifdef INET6
981 case AF_INET6:
982 {
983 /* XXX scopeid */
984 struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)sa;
985 struct sctp_ipv6addr_param *v6addr;
986
987 v6addr = (struct sctp_ipv6addr_param *)ph;
988 if ((param_type == SCTP_IPV6_ADDRESS) &&
989 param_length == sizeof(struct sctp_ipv6addr_param) &&
990 (memcmp(&v6addr->addr, &sin6->sin6_addr,
991 sizeof(struct in6_addr)) == 0)) {
992 return (1);
993 }
994 break;
995 }
996 #endif
997 #ifdef INET
998 case AF_INET:
999 {
1000 struct sockaddr_in *sin = (struct sockaddr_in *)sa;
1001 struct sctp_ipv4addr_param *v4addr;
1002
1003 v4addr = (struct sctp_ipv4addr_param *)ph;
1004 if ((param_type == SCTP_IPV4_ADDRESS) &&
1005 param_length == sizeof(struct sctp_ipv4addr_param) &&
1006 (memcmp(&v4addr->addr, &sin->sin_addr,
1007 sizeof(struct in_addr)) == 0)) {
1008 return (1);
1009 }
1010 break;
1011 }
1012 #endif
1013 default:
1014 break;
1015 }
1016 return (0);
1017 }
1018
1019 /*
1020 * Cleanup for non-responded/OP ERR'd ASCONF
1021 */
1022 void
1023 sctp_asconf_cleanup(struct sctp_tcb *stcb, struct sctp_nets *net)
1024 {
1025 /* mark peer as ASCONF incapable */
1026 stcb->asoc.peer_supports_asconf = 0;
1027 /*
1028 * clear out any existing asconfs going out
1029 */
1030 sctp_timer_stop(SCTP_TIMER_TYPE_ASCONF, stcb->sctp_ep, stcb, net,
1031 SCTP_FROM_SCTP_ASCONF + SCTP_LOC_2);
1032 stcb->asoc.asconf_seq_out_acked = stcb->asoc.asconf_seq_out;
1033 /* remove the old ASCONF on our outbound queue */
1034 sctp_toss_old_asconf(stcb);
1035 }
1036
1037 /*
1038 * cleanup any cached source addresses that may be topologically
1039 * incorrect after a new address has been added to this interface.
1040 */
1041 static void
1042 sctp_asconf_nets_cleanup(struct sctp_tcb *stcb, struct sctp_ifn *ifn)
1043 {
1044 struct sctp_nets *net;
1045
1046 /*
1047 * Ideally, we want to only clear cached routes and source addresses
1048 * that are topologically incorrect. But since there is no easy way
1049 * to know whether the newly added address on the ifn would cause a
1050 * routing change (i.e. a new egress interface would be chosen)
1051 * without doing a new routing lookup and source address selection,
1052 * we will (for now) just flush any cached route using a different
1053 * ifn (and cached source addrs) and let output re-choose them
1054 * during the next send on that net.
1055 */
1056 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1057 /*
1058 * clear any cached route (and cached source address) if the
1059 * route's interface is NOT the same as the address change.
1060 * If it's the same interface, just clear the cached source
1061 * address.
1062 */
1063 if (SCTP_ROUTE_HAS_VALID_IFN(&net->ro) &&
1064 ((ifn == NULL) ||
1065 (SCTP_GET_IF_INDEX_FROM_ROUTE(&net->ro) != ifn->ifn_index))) {
1066 /* clear any cached route */
1067 RTFREE(net->ro.ro_rt);
1068 net->ro.ro_rt = NULL;
1069 }
1070 /* clear any cached source address */
1071 if (net->src_addr_selected) {
1072 sctp_free_ifa(net->ro._s_addr);
1073 net->ro._s_addr = NULL;
1074 net->src_addr_selected = 0;
1075 }
1076 }
1077 }
1078
1079
1080 void
1081 sctp_assoc_immediate_retrans(struct sctp_tcb *stcb, struct sctp_nets *dstnet)
1082 {
1083 int error;
1084
1085 if (dstnet->dest_state & SCTP_ADDR_UNCONFIRMED) {
1086 return;
1087 }
1088 if (stcb->asoc.deleted_primary == NULL) {
1089 return;
1090 }
1091 if (!TAILQ_EMPTY(&stcb->asoc.sent_queue)) {
1092 SCTPDBG(SCTP_DEBUG_ASCONF1, "assoc_immediate_retrans: Deleted primary is ");
1093 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, &stcb->asoc.deleted_primary->ro._l_addr.sa);
1094 SCTPDBG(SCTP_DEBUG_ASCONF1, "Current Primary is ");
1095 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, &stcb->asoc.primary_destination->ro._l_addr.sa);
1096 sctp_timer_stop(SCTP_TIMER_TYPE_SEND, stcb->sctp_ep, stcb,
1097 stcb->asoc.deleted_primary,
1098 SCTP_FROM_SCTP_TIMER + SCTP_LOC_8);
1099 stcb->asoc.num_send_timers_up--;
1100 if (stcb->asoc.num_send_timers_up < 0) {
1101 stcb->asoc.num_send_timers_up = 0;
1102 }
1103 SCTP_TCB_LOCK_ASSERT(stcb);
1104 error = sctp_t3rxt_timer(stcb->sctp_ep, stcb,
1105 stcb->asoc.deleted_primary);
1106 if (error) {
1107 SCTP_INP_DECR_REF(stcb->sctp_ep);
1108 return;
1109 }
1110 SCTP_TCB_LOCK_ASSERT(stcb);
1111 #ifdef SCTP_AUDITING_ENABLED
1112 sctp_auditing(4, stcb->sctp_ep, stcb, stcb->asoc.deleted_primary);
1113 #endif
1114 sctp_chunk_output(stcb->sctp_ep, stcb, SCTP_OUTPUT_FROM_T3, SCTP_SO_NOT_LOCKED);
1115 if ((stcb->asoc.num_send_timers_up == 0) &&
1116 (stcb->asoc.sent_queue_cnt > 0)) {
1117 struct sctp_tmit_chunk *chk;
1118
1119 chk = TAILQ_FIRST(&stcb->asoc.sent_queue);
1120 sctp_timer_start(SCTP_TIMER_TYPE_SEND, stcb->sctp_ep,
1121 stcb, chk->whoTo);
1122 }
1123 }
1124 return;
1125 }
1126
1127 static int
1128 sctp_asconf_queue_mgmt(struct sctp_tcb *, struct sctp_ifa *, uint16_t);
1129
1130 void
1131 sctp_net_immediate_retrans(struct sctp_tcb *stcb, struct sctp_nets *net)
1132 {
1133 struct sctp_tmit_chunk *chk;
1134
1135 SCTPDBG(SCTP_DEBUG_ASCONF1, "net_immediate_retrans: RTO is %d\n", net->RTO);
1136 sctp_timer_stop(SCTP_TIMER_TYPE_SEND, stcb->sctp_ep, stcb, net,
1137 SCTP_FROM_SCTP_TIMER + SCTP_LOC_5);
1138 stcb->asoc.cc_functions.sctp_set_initial_cc_param(stcb, net);
1139 net->error_count = 0;
1140 TAILQ_FOREACH(chk, &stcb->asoc.sent_queue, sctp_next) {
1141 if (chk->whoTo == net) {
1142 if (chk->sent < SCTP_DATAGRAM_RESEND) {
1143 chk->sent = SCTP_DATAGRAM_RESEND;
1144 sctp_ucount_incr(stcb->asoc.sent_queue_retran_cnt);
1145 sctp_flight_size_decrease(chk);
1146 sctp_total_flight_decrease(stcb, chk);
1147 net->marked_retrans++;
1148 stcb->asoc.marked_retrans++;
1149 }
1150 }
1151 }
1152 if (net->marked_retrans) {
1153 sctp_chunk_output(stcb->sctp_ep, stcb, SCTP_OUTPUT_FROM_T3, SCTP_SO_NOT_LOCKED);
1154 }
1155 }
1156
1157 static void
1158 sctp_path_check_and_react(struct sctp_tcb *stcb, struct sctp_ifa *newifa)
1159 {
1160 struct sctp_nets *net;
1161 int addrnum, changed;
1162
1163 /*
1164 * If number of local valid addresses is 1, the valid address is
1165 * probably newly added address. Several valid addresses in this
1166 * association. A source address may not be changed. Additionally,
1167 * they can be configured on a same interface as "alias" addresses.
1168 * (by micchie)
1169 */
1170 addrnum = sctp_local_addr_count(stcb);
1171 SCTPDBG(SCTP_DEBUG_ASCONF1, "p_check_react(): %d local addresses\n",
1172 addrnum);
1173 if (addrnum == 1) {
1174 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1175 /* clear any cached route and source address */
1176 if (net->ro.ro_rt) {
1177 RTFREE(net->ro.ro_rt);
1178 net->ro.ro_rt = NULL;
1179 }
1180 if (net->src_addr_selected) {
1181 sctp_free_ifa(net->ro._s_addr);
1182 net->ro._s_addr = NULL;
1183 net->src_addr_selected = 0;
1184 }
1185 /* Retransmit unacknowledged DATA chunks immediately */
1186 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
1187 SCTP_MOBILITY_FASTHANDOFF)) {
1188 sctp_net_immediate_retrans(stcb, net);
1189 }
1190 /* also, SET PRIMARY is maybe already sent */
1191 }
1192 return;
1193 }
1194 /* Multiple local addresses exsist in the association. */
1195 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1196 /* clear any cached route and source address */
1197 if (net->ro.ro_rt) {
1198 RTFREE(net->ro.ro_rt);
1199 net->ro.ro_rt = NULL;
1200 }
1201 if (net->src_addr_selected) {
1202 sctp_free_ifa(net->ro._s_addr);
1203 net->ro._s_addr = NULL;
1204 net->src_addr_selected = 0;
1205 }
1206 /*
1207 * Check if the nexthop is corresponding to the new address.
1208 * If the new address is corresponding to the current
1209 * nexthop, the path will be changed. If the new address is
1210 * NOT corresponding to the current nexthop, the path will
1211 * not be changed.
1212 */
1213 SCTP_RTALLOC((sctp_route_t *) & net->ro,
1214 stcb->sctp_ep->def_vrf_id);
1215 if (net->ro.ro_rt == NULL)
1216 continue;
1217
1218 changed = 0;
1219 switch (net->ro._l_addr.sa.sa_family) {
1220 #ifdef INET
1221 case AF_INET:
1222 if (sctp_v4src_match_nexthop(newifa, (sctp_route_t *) & net->ro)) {
1223 changed = 1;
1224 }
1225 break;
1226 #endif
1227 #ifdef INET6
1228 case AF_INET6:
1229 if (sctp_v6src_match_nexthop(
1230 &newifa->address.sin6, (sctp_route_t *) & net->ro)) {
1231 changed = 1;
1232 }
1233 break;
1234 #endif
1235 default:
1236 break;
1237 }
1238 /*
1239 * if the newly added address does not relate routing
1240 * information, we skip.
1241 */
1242 if (changed == 0)
1243 continue;
1244 /* Retransmit unacknowledged DATA chunks immediately */
1245 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
1246 SCTP_MOBILITY_FASTHANDOFF)) {
1247 sctp_net_immediate_retrans(stcb, net);
1248 }
1249 /* Send SET PRIMARY for this new address */
1250 if (net == stcb->asoc.primary_destination) {
1251 (void)sctp_asconf_queue_mgmt(stcb, newifa,
1252 SCTP_SET_PRIM_ADDR);
1253 }
1254 }
1255 }
1256
1257 /*
1258 * process an ADD/DELETE IP ack from peer.
1259 * addr: corresponding sctp_ifa to the address being added/deleted.
1260 * type: SCTP_ADD_IP_ADDRESS or SCTP_DEL_IP_ADDRESS.
1261 * flag: 1=success, 0=failure.
1262 */
1263 static void
1264 sctp_asconf_addr_mgmt_ack(struct sctp_tcb *stcb, struct sctp_ifa *addr,
1265 uint16_t type, uint32_t flag)
1266 {
1267 /*
1268 * do the necessary asoc list work- if we get a failure indication,
1269 * leave the address on the assoc's restricted list. If we get a
1270 * success indication, remove the address from the restricted list.
1271 */
1272 /*
1273 * Note: this will only occur for ADD_IP_ADDRESS, since
1274 * DEL_IP_ADDRESS is never actually added to the list...
1275 */
1276 if (flag) {
1277 /* success case, so remove from the restricted list */
1278 sctp_del_local_addr_restricted(stcb, addr);
1279
1280 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
1281 SCTP_MOBILITY_BASE) ||
1282 sctp_is_mobility_feature_on(stcb->sctp_ep,
1283 SCTP_MOBILITY_FASTHANDOFF)) {
1284 sctp_path_check_and_react(stcb, addr);
1285 return;
1286 }
1287 /* clear any cached/topologically incorrect source addresses */
1288 sctp_asconf_nets_cleanup(stcb, addr->ifn_p);
1289 }
1290 /* else, leave it on the list */
1291 }
1292
1293 /*
1294 * add an asconf add/delete/set primary IP address parameter to the queue.
1295 * type = SCTP_ADD_IP_ADDRESS, SCTP_DEL_IP_ADDRESS, SCTP_SET_PRIM_ADDR.
1296 * returns 0 if queued, -1 if not queued/removed.
1297 * NOTE: if adding, but a delete for the same address is already scheduled
1298 * (and not yet sent out), simply remove it from queue. Same for deleting
1299 * an address already scheduled for add. If a duplicate operation is found,
1300 * ignore the new one.
1301 */
1302 static int
1303 sctp_asconf_queue_mgmt(struct sctp_tcb *stcb, struct sctp_ifa *ifa,
1304 uint16_t type)
1305 {
1306 struct sctp_asconf_addr *aa, *aa_next;
1307 struct sockaddr *sa;
1308
1309 /* make sure the request isn't already in the queue */
1310 TAILQ_FOREACH_SAFE(aa, &stcb->asoc.asconf_queue, next, aa_next) {
1311 /* address match? */
1312 if (sctp_asconf_addr_match(aa, &ifa->address.sa) == 0)
1313 continue;
1314 /*
1315 * is the request already in queue but not sent? pass the
1316 * request already sent in order to resolve the following
1317 * case: 1. arrival of ADD, then sent 2. arrival of DEL. we
1318 * can't remove the ADD request already sent 3. arrival of
1319 * ADD
1320 */
1321 if (aa->ap.aph.ph.param_type == type && aa->sent == 0) {
1322 return (-1);
1323 }
1324 /* is the negative request already in queue, and not sent */
1325 if ((aa->sent == 0) && (type == SCTP_ADD_IP_ADDRESS) &&
1326 (aa->ap.aph.ph.param_type == SCTP_DEL_IP_ADDRESS)) {
1327 /* add requested, delete already queued */
1328 TAILQ_REMOVE(&stcb->asoc.asconf_queue, aa, next);
1329 /* remove the ifa from the restricted list */
1330 sctp_del_local_addr_restricted(stcb, ifa);
1331 /* free the asconf param */
1332 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1333 SCTPDBG(SCTP_DEBUG_ASCONF2, "asconf_queue_mgmt: add removes queued entry\n");
1334 return (-1);
1335 }
1336 if ((aa->sent == 0) && (type == SCTP_DEL_IP_ADDRESS) &&
1337 (aa->ap.aph.ph.param_type == SCTP_ADD_IP_ADDRESS)) {
1338 /* delete requested, add already queued */
1339 TAILQ_REMOVE(&stcb->asoc.asconf_queue, aa, next);
1340 /* remove the aa->ifa from the restricted list */
1341 sctp_del_local_addr_restricted(stcb, aa->ifa);
1342 /* free the asconf param */
1343 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1344 SCTPDBG(SCTP_DEBUG_ASCONF2, "asconf_queue_mgmt: delete removes queued entry\n");
1345 return (-1);
1346 }
1347 } /* for each aa */
1348
1349 /* adding new request to the queue */
1350 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
1351 SCTP_M_ASC_ADDR);
1352 if (aa == NULL) {
1353 /* didn't get memory */
1354 SCTPDBG(SCTP_DEBUG_ASCONF1, "asconf_queue_mgmt: failed to get memory!\n");
1355 return (-1);
1356 }
1357 aa->special_del = 0;
1358 /* fill in asconf address parameter fields */
1359 /* top level elements are "networked" during send */
1360 aa->ap.aph.ph.param_type = type;
1361 aa->ifa = ifa;
1362 atomic_add_int(&ifa->refcount, 1);
1363 /* correlation_id filled in during send routine later... */
1364 switch (ifa->address.sa.sa_family) {
1365 #ifdef INET6
1366 case AF_INET6:
1367 {
1368 struct sockaddr_in6 *sin6;
1369
1370 sin6 = (struct sockaddr_in6 *)&ifa->address.sa;
1371 sa = (struct sockaddr *)sin6;
1372 aa->ap.addrp.ph.param_type = SCTP_IPV6_ADDRESS;
1373 aa->ap.addrp.ph.param_length = (sizeof(struct sctp_ipv6addr_param));
1374 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_paramhdr) +
1375 sizeof(struct sctp_ipv6addr_param);
1376 memcpy(&aa->ap.addrp.addr, &sin6->sin6_addr,
1377 sizeof(struct in6_addr));
1378 break;
1379 }
1380 #endif
1381 #ifdef INET
1382 case AF_INET:
1383 {
1384 struct sockaddr_in *sin;
1385
1386 sin = (struct sockaddr_in *)&ifa->address.sa;
1387 sa = (struct sockaddr *)sin;
1388 aa->ap.addrp.ph.param_type = SCTP_IPV4_ADDRESS;
1389 aa->ap.addrp.ph.param_length = (sizeof(struct sctp_ipv4addr_param));
1390 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_paramhdr) +
1391 sizeof(struct sctp_ipv4addr_param);
1392 memcpy(&aa->ap.addrp.addr, &sin->sin_addr,
1393 sizeof(struct in_addr));
1394 break;
1395 }
1396 #endif
1397 default:
1398 /* invalid family! */
1399 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1400 sctp_free_ifa(ifa);
1401 return (-1);
1402 }
1403 aa->sent = 0; /* clear sent flag */
1404
1405 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
1406 #ifdef SCTP_DEBUG
1407 if (SCTP_BASE_SYSCTL(sctp_debug_on) & SCTP_DEBUG_ASCONF2) {
1408 if (type == SCTP_ADD_IP_ADDRESS) {
1409 SCTP_PRINTF("asconf_queue_mgmt: inserted asconf ADD_IP_ADDRESS: ");
1410 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF2, sa);
1411 } else if (type == SCTP_DEL_IP_ADDRESS) {
1412 SCTP_PRINTF("asconf_queue_mgmt: appended asconf DEL_IP_ADDRESS: ");
1413 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF2, sa);
1414 } else {
1415 SCTP_PRINTF("asconf_queue_mgmt: appended asconf SET_PRIM_ADDR: ");
1416 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF2, sa);
1417 }
1418 }
1419 #endif
1420
1421 return (0);
1422 }
1423
1424
1425 /*
1426 * add an asconf operation for the given ifa and type.
1427 * type = SCTP_ADD_IP_ADDRESS, SCTP_DEL_IP_ADDRESS, SCTP_SET_PRIM_ADDR.
1428 * returns 0 if completed, -1 if not completed, 1 if immediate send is
1429 * advisable.
1430 */
1431 static int
1432 sctp_asconf_queue_add(struct sctp_tcb *stcb, struct sctp_ifa *ifa,
1433 uint16_t type)
1434 {
1435 uint32_t status;
1436 int pending_delete_queued = 0;
1437
1438 /* see if peer supports ASCONF */
1439 if (stcb->asoc.peer_supports_asconf == 0) {
1440 return (-1);
1441 }
1442 /*
1443 * if this is deleting the last address from the assoc, mark it as
1444 * pending.
1445 */
1446 if ((type == SCTP_DEL_IP_ADDRESS) && !stcb->asoc.asconf_del_pending &&
1447 (sctp_local_addr_count(stcb) < 2)) {
1448 /* set the pending delete info only */
1449 stcb->asoc.asconf_del_pending = 1;
1450 stcb->asoc.asconf_addr_del_pending = ifa;
1451 atomic_add_int(&ifa->refcount, 1);
1452 SCTPDBG(SCTP_DEBUG_ASCONF2,
1453 "asconf_queue_add: mark delete last address pending\n");
1454 return (-1);
1455 }
1456 /* queue an asconf parameter */
1457 status = sctp_asconf_queue_mgmt(stcb, ifa, type);
1458
1459 /*
1460 * if this is an add, and there is a delete also pending (i.e. the
1461 * last local address is being changed), queue the pending delete
1462 * too.
1463 */
1464 if ((type == SCTP_ADD_IP_ADDRESS) && stcb->asoc.asconf_del_pending && (status == 0)) {
1465 /* queue in the pending delete */
1466 if (sctp_asconf_queue_mgmt(stcb,
1467 stcb->asoc.asconf_addr_del_pending,
1468 SCTP_DEL_IP_ADDRESS) == 0) {
1469 SCTPDBG(SCTP_DEBUG_ASCONF2, "asconf_queue_add: queing pending delete\n");
1470 pending_delete_queued = 1;
1471 /* clear out the pending delete info */
1472 stcb->asoc.asconf_del_pending = 0;
1473 sctp_free_ifa(stcb->asoc.asconf_addr_del_pending);
1474 stcb->asoc.asconf_addr_del_pending = NULL;
1475 }
1476 }
1477 if (pending_delete_queued) {
1478 struct sctp_nets *net;
1479
1480 /*
1481 * since we know that the only/last address is now being
1482 * changed in this case, reset the cwnd/rto on all nets to
1483 * start as a new address and path. Also clear the error
1484 * counts to give the assoc the best chance to complete the
1485 * address change.
1486 */
1487 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1488 stcb->asoc.cc_functions.sctp_set_initial_cc_param(stcb,
1489 net);
1490 net->RTO = 0;
1491 net->error_count = 0;
1492 }
1493 stcb->asoc.overall_error_count = 0;
1494 if (SCTP_BASE_SYSCTL(sctp_logging_level) & SCTP_THRESHOLD_LOGGING) {
1495 sctp_misc_ints(SCTP_THRESHOLD_CLEAR,
1496 stcb->asoc.overall_error_count,
1497 0,
1498 SCTP_FROM_SCTP_ASCONF,
1499 __LINE__);
1500 }
1501 /* queue in an advisory set primary too */
1502 (void)sctp_asconf_queue_mgmt(stcb, ifa, SCTP_SET_PRIM_ADDR);
1503 /* let caller know we should send this out immediately */
1504 status = 1;
1505 }
1506 return (status);
1507 }
1508
1509 /*-
1510 * add an asconf delete IP address parameter to the queue by sockaddr and
1511 * possibly with no sctp_ifa available. This is only called by the routine
1512 * that checks the addresses in an INIT-ACK against the current address list.
1513 * returns 0 if completed, non-zero if not completed.
1514 * NOTE: if an add is already scheduled (and not yet sent out), simply
1515 * remove it from queue. If a duplicate operation is found, ignore the
1516 * new one.
1517 */
1518 static int
1519 sctp_asconf_queue_sa_delete(struct sctp_tcb *stcb, struct sockaddr *sa)
1520 {
1521 struct sctp_ifa *ifa;
1522 struct sctp_asconf_addr *aa, *aa_next;
1523 uint32_t vrf_id;
1524
1525 if (stcb == NULL) {
1526 return (-1);
1527 }
1528 /* see if peer supports ASCONF */
1529 if (stcb->asoc.peer_supports_asconf == 0) {
1530 return (-1);
1531 }
1532 /* make sure the request isn't already in the queue */
1533 TAILQ_FOREACH_SAFE(aa, &stcb->asoc.asconf_queue, next, aa_next) {
1534 /* address match? */
1535 if (sctp_asconf_addr_match(aa, sa) == 0)
1536 continue;
1537 /* is the request already in queue (sent or not) */
1538 if (aa->ap.aph.ph.param_type == SCTP_DEL_IP_ADDRESS) {
1539 return (-1);
1540 }
1541 /* is the negative request already in queue, and not sent */
1542 if (aa->sent == 1)
1543 continue;
1544 if (aa->ap.aph.ph.param_type == SCTP_ADD_IP_ADDRESS) {
1545 /* add already queued, so remove existing entry */
1546 TAILQ_REMOVE(&stcb->asoc.asconf_queue, aa, next);
1547 sctp_del_local_addr_restricted(stcb, aa->ifa);
1548 /* free the entry */
1549 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1550 return (-1);
1551 }
1552 } /* for each aa */
1553
1554 /* find any existing ifa-- NOTE ifa CAN be allowed to be NULL */
1555 if (stcb) {
1556 vrf_id = stcb->asoc.vrf_id;
1557 } else {
1558 vrf_id = SCTP_DEFAULT_VRFID;
1559 }
1560 ifa = sctp_find_ifa_by_addr(sa, vrf_id, SCTP_ADDR_NOT_LOCKED);
1561
1562 /* adding new request to the queue */
1563 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
1564 SCTP_M_ASC_ADDR);
1565 if (aa == NULL) {
1566 /* didn't get memory */
1567 SCTPDBG(SCTP_DEBUG_ASCONF1,
1568 "sctp_asconf_queue_sa_delete: failed to get memory!\n");
1569 return (-1);
1570 }
1571 aa->special_del = 0;
1572 /* fill in asconf address parameter fields */
1573 /* top level elements are "networked" during send */
1574 aa->ap.aph.ph.param_type = SCTP_DEL_IP_ADDRESS;
1575 aa->ifa = ifa;
1576 if (ifa)
1577 atomic_add_int(&ifa->refcount, 1);
1578 /* correlation_id filled in during send routine later... */
1579 switch (sa->sa_family) {
1580 #ifdef INET6
1581 case AF_INET6:
1582 {
1583 /* IPv6 address */
1584 struct sockaddr_in6 *sin6;
1585
1586 sin6 = (struct sockaddr_in6 *)sa;
1587 aa->ap.addrp.ph.param_type = SCTP_IPV6_ADDRESS;
1588 aa->ap.addrp.ph.param_length = (sizeof(struct sctp_ipv6addr_param));
1589 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_paramhdr) + sizeof(struct sctp_ipv6addr_param);
1590 memcpy(&aa->ap.addrp.addr, &sin6->sin6_addr,
1591 sizeof(struct in6_addr));
1592 break;
1593 }
1594 #endif
1595 #ifdef INET
1596 case AF_INET:
1597 {
1598 /* IPv4 address */
1599 struct sockaddr_in *sin = (struct sockaddr_in *)sa;
1600
1601 aa->ap.addrp.ph.param_type = SCTP_IPV4_ADDRESS;
1602 aa->ap.addrp.ph.param_length = (sizeof(struct sctp_ipv4addr_param));
1603 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_paramhdr) + sizeof(struct sctp_ipv4addr_param);
1604 memcpy(&aa->ap.addrp.addr, &sin->sin_addr,
1605 sizeof(struct in_addr));
1606 break;
1607 }
1608 #endif
1609 default:
1610 /* invalid family! */
1611 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1612 if (ifa)
1613 sctp_free_ifa(ifa);
1614 return (-1);
1615 }
1616 aa->sent = 0; /* clear sent flag */
1617
1618 /* delete goes to the back of the queue */
1619 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
1620
1621 /* sa_ignore MEMLEAK {memory is put on the tailq} */
1622 return (0);
1623 }
1624
1625 /*
1626 * find a specific asconf param on our "sent" queue
1627 */
1628 static struct sctp_asconf_addr *
1629 sctp_asconf_find_param(struct sctp_tcb *stcb, uint32_t correlation_id)
1630 {
1631 struct sctp_asconf_addr *aa;
1632
1633 TAILQ_FOREACH(aa, &stcb->asoc.asconf_queue, next) {
1634 if (aa->ap.aph.correlation_id == correlation_id &&
1635 aa->sent == 1) {
1636 /* found it */
1637 return (aa);
1638 }
1639 }
1640 /* didn't find it */
1641 return (NULL);
1642 }
1643
1644 /*
1645 * process an SCTP_ERROR_CAUSE_IND for a ASCONF-ACK parameter and do
1646 * notifications based on the error response
1647 */
1648 static void
1649 sctp_asconf_process_error(struct sctp_tcb *stcb,
1650 struct sctp_asconf_paramhdr *aph)
1651 {
1652 struct sctp_error_cause *eh;
1653 struct sctp_paramhdr *ph;
1654 uint16_t param_type;
1655 uint16_t error_code;
1656
1657 eh = (struct sctp_error_cause *)(aph + 1);
1658 ph = (struct sctp_paramhdr *)(eh + 1);
1659 /* validate lengths */
1660 if (htons(eh->length) + sizeof(struct sctp_error_cause) >
1661 htons(aph->ph.param_length)) {
1662 /* invalid error cause length */
1663 SCTPDBG(SCTP_DEBUG_ASCONF1,
1664 "asconf_process_error: cause element too long\n");
1665 return;
1666 }
1667 if (htons(ph->param_length) + sizeof(struct sctp_paramhdr) >
1668 htons(eh->length)) {
1669 /* invalid included TLV length */
1670 SCTPDBG(SCTP_DEBUG_ASCONF1,
1671 "asconf_process_error: included TLV too long\n");
1672 return;
1673 }
1674 /* which error code ? */
1675 error_code = ntohs(eh->code);
1676 param_type = ntohs(aph->ph.param_type);
1677 /* FIX: this should go back up the REMOTE_ERROR ULP notify */
1678 switch (error_code) {
1679 case SCTP_CAUSE_RESOURCE_SHORTAGE:
1680 /* we allow ourselves to "try again" for this error */
1681 break;
1682 default:
1683 /* peer can't handle it... */
1684 switch (param_type) {
1685 case SCTP_ADD_IP_ADDRESS:
1686 case SCTP_DEL_IP_ADDRESS:
1687 stcb->asoc.peer_supports_asconf = 0;
1688 break;
1689 case SCTP_SET_PRIM_ADDR:
1690 stcb->asoc.peer_supports_asconf = 0;
1691 break;
1692 default:
1693 break;
1694 }
1695 }
1696 }
1697
1698 /*
1699 * process an asconf queue param.
1700 * aparam: parameter to process, will be removed from the queue.
1701 * flag: 1=success case, 0=failure case
1702 */
1703 static void
1704 sctp_asconf_process_param_ack(struct sctp_tcb *stcb,
1705 struct sctp_asconf_addr *aparam, uint32_t flag)
1706 {
1707 uint16_t param_type;
1708
1709 /* process this param */
1710 param_type = aparam->ap.aph.ph.param_type;
1711 switch (param_type) {
1712 case SCTP_ADD_IP_ADDRESS:
1713 SCTPDBG(SCTP_DEBUG_ASCONF1,
1714 "process_param_ack: added IP address\n");
1715 sctp_asconf_addr_mgmt_ack(stcb, aparam->ifa, param_type, flag);
1716 break;
1717 case SCTP_DEL_IP_ADDRESS:
1718 SCTPDBG(SCTP_DEBUG_ASCONF1,
1719 "process_param_ack: deleted IP address\n");
1720 /* nothing really to do... lists already updated */
1721 break;
1722 case SCTP_SET_PRIM_ADDR:
1723 SCTPDBG(SCTP_DEBUG_ASCONF1,
1724 "process_param_ack: set primary IP address\n");
1725 /* nothing to do... peer may start using this addr */
1726 if (flag == 0)
1727 stcb->asoc.peer_supports_asconf = 0;
1728 break;
1729 default:
1730 /* should NEVER happen */
1731 break;
1732 }
1733
1734 /* remove the param and free it */
1735 TAILQ_REMOVE(&stcb->asoc.asconf_queue, aparam, next);
1736 if (aparam->ifa)
1737 sctp_free_ifa(aparam->ifa);
1738 SCTP_FREE(aparam, SCTP_M_ASC_ADDR);
1739 }
1740
1741 /*
1742 * cleanup from a bad asconf ack parameter
1743 */
1744 static void
1745 sctp_asconf_ack_clear(struct sctp_tcb *stcb)
1746 {
1747 /* assume peer doesn't really know how to do asconfs */
1748 stcb->asoc.peer_supports_asconf = 0;
1749 /* XXX we could free the pending queue here */
1750 }
1751
1752 void
1753 sctp_handle_asconf_ack(struct mbuf *m, int offset,
1754 struct sctp_asconf_ack_chunk *cp, struct sctp_tcb *stcb,
1755 struct sctp_nets *net, int *abort_no_unlock)
1756 {
1757 struct sctp_association *asoc;
1758 uint32_t serial_num;
1759 uint16_t ack_length;
1760 struct sctp_asconf_paramhdr *aph;
1761 struct sctp_asconf_addr *aa, *aa_next;
1762 uint32_t last_error_id = 0; /* last error correlation id */
1763 uint32_t id;
1764 struct sctp_asconf_addr *ap;
1765
1766 /* asconf param buffer */
1767 uint8_t aparam_buf[SCTP_PARAM_BUFFER_SIZE];
1768
1769 /* verify minimum length */
1770 if (ntohs(cp->ch.chunk_length) < sizeof(struct sctp_asconf_ack_chunk)) {
1771 SCTPDBG(SCTP_DEBUG_ASCONF1,
1772 "handle_asconf_ack: chunk too small = %xh\n",
1773 ntohs(cp->ch.chunk_length));
1774 return;
1775 }
1776 asoc = &stcb->asoc;
1777 serial_num = ntohl(cp->serial_number);
1778
1779 /*
1780 * NOTE: we may want to handle this differently- currently, we will
1781 * abort when we get an ack for the expected serial number + 1 (eg.
1782 * we didn't send it), process an ack normally if it is the expected
1783 * serial number, and re-send the previous ack for *ALL* other
1784 * serial numbers
1785 */
1786
1787 /*
1788 * if the serial number is the next expected, but I didn't send it,
1789 * abort the asoc, since someone probably just hijacked us...
1790 */
1791 if (serial_num == (asoc->asconf_seq_out + 1)) {
1792 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf_ack: got unexpected next serial number! Aborting asoc!\n");
1793 sctp_abort_an_association(stcb->sctp_ep, stcb,
1794 SCTP_CAUSE_ILLEGAL_ASCONF_ACK, NULL, SCTP_SO_NOT_LOCKED);
1795 *abort_no_unlock = 1;
1796 return;
1797 }
1798 if (serial_num != asoc->asconf_seq_out_acked + 1) {
1799 /* got a duplicate/unexpected ASCONF-ACK */
1800 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf_ack: got duplicate/unexpected serial number = %xh (expected = %xh)\n",
1801 serial_num, asoc->asconf_seq_out_acked + 1);
1802 return;
1803 }
1804 if (serial_num == asoc->asconf_seq_out - 1) {
1805 /* stop our timer */
1806 sctp_timer_stop(SCTP_TIMER_TYPE_ASCONF, stcb->sctp_ep, stcb, net,
1807 SCTP_FROM_SCTP_ASCONF + SCTP_LOC_3);
1808 }
1809 /* process the ASCONF-ACK contents */
1810 ack_length = ntohs(cp->ch.chunk_length) -
1811 sizeof(struct sctp_asconf_ack_chunk);
1812 offset += sizeof(struct sctp_asconf_ack_chunk);
1813 /* process through all parameters */
1814 while (ack_length >= sizeof(struct sctp_asconf_paramhdr)) {
1815 unsigned int param_length, param_type;
1816
1817 /* get pointer to next asconf parameter */
1818 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset,
1819 sizeof(struct sctp_asconf_paramhdr), aparam_buf);
1820 if (aph == NULL) {
1821 /* can't get an asconf paramhdr */
1822 sctp_asconf_ack_clear(stcb);
1823 return;
1824 }
1825 param_type = ntohs(aph->ph.param_type);
1826 param_length = ntohs(aph->ph.param_length);
1827 if (param_length > ack_length) {
1828 sctp_asconf_ack_clear(stcb);
1829 return;
1830 }
1831 if (param_length < sizeof(struct sctp_paramhdr)) {
1832 sctp_asconf_ack_clear(stcb);
1833 return;
1834 }
1835 /* get the complete parameter... */
1836 if (param_length > sizeof(aparam_buf)) {
1837 SCTPDBG(SCTP_DEBUG_ASCONF1,
1838 "param length (%u) larger than buffer size!\n", param_length);
1839 sctp_asconf_ack_clear(stcb);
1840 return;
1841 }
1842 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset, param_length, aparam_buf);
1843 if (aph == NULL) {
1844 sctp_asconf_ack_clear(stcb);
1845 return;
1846 }
1847 /* correlation_id is transparent to peer, no ntohl needed */
1848 id = aph->correlation_id;
1849
1850 switch (param_type) {
1851 case SCTP_ERROR_CAUSE_IND:
1852 last_error_id = id;
1853 /* find the corresponding asconf param in our queue */
1854 ap = sctp_asconf_find_param(stcb, id);
1855 if (ap == NULL) {
1856 /* hmm... can't find this in our queue! */
1857 break;
1858 }
1859 /* process the parameter, failed flag */
1860 sctp_asconf_process_param_ack(stcb, ap, 0);
1861 /* process the error response */
1862 sctp_asconf_process_error(stcb, aph);
1863 break;
1864 case SCTP_SUCCESS_REPORT:
1865 /* find the corresponding asconf param in our queue */
1866 ap = sctp_asconf_find_param(stcb, id);
1867 if (ap == NULL) {
1868 /* hmm... can't find this in our queue! */
1869 break;
1870 }
1871 /* process the parameter, success flag */
1872 sctp_asconf_process_param_ack(stcb, ap, 1);
1873 break;
1874 default:
1875 break;
1876 } /* switch */
1877
1878 /* update remaining ASCONF-ACK message length to process */
1879 ack_length -= SCTP_SIZE32(param_length);
1880 if (ack_length <= 0) {
1881 /* no more data in the mbuf chain */
1882 break;
1883 }
1884 offset += SCTP_SIZE32(param_length);
1885 } /* while */
1886
1887 /*
1888 * if there are any "sent" params still on the queue, these are
1889 * implicitly "success", or "failed" (if we got an error back) ...
1890 * so process these appropriately
1891 *
1892 * we assume that the correlation_id's are monotonically increasing
1893 * beginning from 1 and that we don't have *that* many outstanding
1894 * at any given time
1895 */
1896 if (last_error_id == 0)
1897 last_error_id--;/* set to "max" value */
1898 TAILQ_FOREACH_SAFE(aa, &stcb->asoc.asconf_queue, next, aa_next) {
1899 if (aa->sent == 1) {
1900 /*
1901 * implicitly successful or failed if correlation_id
1902 * < last_error_id, then success else, failure
1903 */
1904 if (aa->ap.aph.correlation_id < last_error_id)
1905 sctp_asconf_process_param_ack(stcb, aa, 1);
1906 else
1907 sctp_asconf_process_param_ack(stcb, aa, 0);
1908 } else {
1909 /*
1910 * since we always process in order (FIFO queue) if
1911 * we reach one that hasn't been sent, the rest
1912 * should not have been sent either. so, we're
1913 * done...
1914 */
1915 break;
1916 }
1917 }
1918
1919 /* update the next sequence number to use */
1920 asoc->asconf_seq_out_acked++;
1921 /* remove the old ASCONF on our outbound queue */
1922 sctp_toss_old_asconf(stcb);
1923 if (!TAILQ_EMPTY(&stcb->asoc.asconf_queue)) {
1924 #ifdef SCTP_TIMER_BASED_ASCONF
1925 /* we have more params, so restart our timer */
1926 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF, stcb->sctp_ep,
1927 stcb, net);
1928 #else
1929 /* we have more params, so send out more */
1930 sctp_send_asconf(stcb, net, SCTP_ADDR_NOT_LOCKED);
1931 #endif
1932 }
1933 }
1934
1935 #ifdef INET6
1936 static uint32_t
1937 sctp_is_scopeid_in_nets(struct sctp_tcb *stcb, struct sockaddr *sa)
1938 {
1939 struct sockaddr_in6 *sin6, *net6;
1940 struct sctp_nets *net;
1941
1942 if (sa->sa_family != AF_INET6) {
1943 /* wrong family */
1944 return (0);
1945 }
1946 sin6 = (struct sockaddr_in6 *)sa;
1947 if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr) == 0) {
1948 /* not link local address */
1949 return (0);
1950 }
1951 /* hunt through our destination nets list for this scope_id */
1952 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1953 if (((struct sockaddr *)(&net->ro._l_addr))->sa_family !=
1954 AF_INET6)
1955 continue;
1956 net6 = (struct sockaddr_in6 *)&net->ro._l_addr;
1957 if (IN6_IS_ADDR_LINKLOCAL(&net6->sin6_addr) == 0)
1958 continue;
1959 if (sctp_is_same_scope(sin6, net6)) {
1960 /* found one */
1961 return (1);
1962 }
1963 }
1964 /* didn't find one */
1965 return (0);
1966 }
1967
1968 #endif
1969
1970 /*
1971 * address management functions
1972 */
1973 static void
1974 sctp_addr_mgmt_assoc(struct sctp_inpcb *inp, struct sctp_tcb *stcb,
1975 struct sctp_ifa *ifa, uint16_t type, int addr_locked)
1976 {
1977 int status;
1978
1979
1980 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) == 0 ||
1981 sctp_is_feature_off(inp, SCTP_PCB_FLAGS_DO_ASCONF)) {
1982 /* subset bound, no ASCONF allowed case, so ignore */
1983 return;
1984 }
1985 /*
1986 * note: we know this is not the subset bound, no ASCONF case eg.
1987 * this is boundall or subset bound w/ASCONF allowed
1988 */
1989
1990 /* first, make sure it's a good address family */
1991 switch (ifa->address.sa.sa_family) {
1992 #ifdef INET6
1993 case AF_INET6:
1994 break;
1995 #endif
1996 #ifdef INET
1997 case AF_INET:
1998 break;
1999 #endif
2000 default:
2001 return;
2002 }
2003 #ifdef INET6
2004 /* make sure we're "allowed" to add this type of addr */
2005 if (ifa->address.sa.sa_family == AF_INET6) {
2006 /* invalid if we're not a v6 endpoint */
2007 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0)
2008 return;
2009 /* is the v6 addr really valid ? */
2010 if (ifa->localifa_flags & SCTP_ADDR_IFA_UNUSEABLE) {
2011 return;
2012 }
2013 }
2014 #endif
2015 /* put this address on the "pending/do not use yet" list */
2016 sctp_add_local_addr_restricted(stcb, ifa);
2017 /*
2018 * check address scope if address is out of scope, don't queue
2019 * anything... note: this would leave the address on both inp and
2020 * asoc lists
2021 */
2022 switch (ifa->address.sa.sa_family) {
2023 #ifdef INET6
2024 case AF_INET6:
2025 {
2026 struct sockaddr_in6 *sin6;
2027
2028 sin6 = (struct sockaddr_in6 *)&ifa->address.sin6;
2029 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
2030 /* we skip unspecifed addresses */
2031 return;
2032 }
2033 if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr)) {
2034 if (stcb->asoc.local_scope == 0) {
2035 return;
2036 }
2037 /* is it the right link local scope? */
2038 if (sctp_is_scopeid_in_nets(stcb, &ifa->address.sa) == 0) {
2039 return;
2040 }
2041 }
2042 if (stcb->asoc.site_scope == 0 &&
2043 IN6_IS_ADDR_SITELOCAL(&sin6->sin6_addr)) {
2044 return;
2045 }
2046 break;
2047 }
2048 #endif
2049 #ifdef INET
2050 case AF_INET:
2051 {
2052 struct sockaddr_in *sin;
2053 struct in6pcb *inp6;
2054
2055 inp6 = (struct in6pcb *)&inp->ip_inp.inp;
2056 /* invalid if we are a v6 only endpoint */
2057 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
2058 SCTP_IPV6_V6ONLY(inp6))
2059 return;
2060
2061 sin = (struct sockaddr_in *)&ifa->address.sa;
2062 if (sin->sin_addr.s_addr == 0) {
2063 /* we skip unspecifed addresses */
2064 return;
2065 }
2066 if (stcb->asoc.ipv4_local_scope == 0 &&
2067 IN4_ISPRIVATE_ADDRESS(&sin->sin_addr)) {
2068 return;
2069 }
2070 break;
2071 }
2072 #endif
2073 default:
2074 /* else, not AF_INET or AF_INET6, so skip */
2075 return;
2076 }
2077
2078 /* queue an asconf for this address add/delete */
2079 if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_DO_ASCONF)) {
2080 /* does the peer do asconf? */
2081 if (stcb->asoc.peer_supports_asconf) {
2082 /* queue an asconf for this addr */
2083 status = sctp_asconf_queue_add(stcb, ifa, type);
2084
2085 /*
2086 * if queued ok, and in the open state, send out the
2087 * ASCONF. If in the non-open state, these will be
2088 * sent when the state goes open.
2089 */
2090 if (status == 0 &&
2091 SCTP_GET_STATE(&stcb->asoc) == SCTP_STATE_OPEN) {
2092 #ifdef SCTP_TIMER_BASED_ASCONF
2093 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF, inp,
2094 stcb, stcb->asoc.primary_destination);
2095 #else
2096 sctp_send_asconf(stcb, NULL, addr_locked);
2097 #endif
2098 }
2099 }
2100 }
2101 }
2102
2103
2104 int
2105 sctp_asconf_iterator_ep(struct sctp_inpcb *inp, void *ptr, uint32_t val)
2106 {
2107 struct sctp_asconf_iterator *asc;
2108 struct sctp_ifa *ifa;
2109 struct sctp_laddr *l;
2110 int cnt_invalid = 0;
2111
2112 asc = (struct sctp_asconf_iterator *)ptr;
2113 LIST_FOREACH(l, &asc->list_of_work, sctp_nxt_addr) {
2114 ifa = l->ifa;
2115 switch (ifa->address.sa.sa_family) {
2116 #ifdef INET6
2117 case AF_INET6:
2118 /* invalid if we're not a v6 endpoint */
2119 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0) {
2120 cnt_invalid++;
2121 if (asc->cnt == cnt_invalid)
2122 return (1);
2123 }
2124 break;
2125 #endif
2126 #ifdef INET
2127 case AF_INET:
2128 {
2129 /* invalid if we are a v6 only endpoint */
2130 struct in6pcb *inp6;
2131
2132 inp6 = (struct in6pcb *)&inp->ip_inp.inp;
2133 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
2134 SCTP_IPV6_V6ONLY(inp6)) {
2135 cnt_invalid++;
2136 if (asc->cnt == cnt_invalid)
2137 return (1);
2138 }
2139 break;
2140 }
2141 #endif
2142 default:
2143 /* invalid address family */
2144 cnt_invalid++;
2145 if (asc->cnt == cnt_invalid)
2146 return (1);
2147 }
2148 }
2149 return (0);
2150 }
2151
2152 static int
2153 sctp_asconf_iterator_ep_end(struct sctp_inpcb *inp, void *ptr, uint32_t val)
2154 {
2155 struct sctp_ifa *ifa;
2156 struct sctp_asconf_iterator *asc;
2157 struct sctp_laddr *laddr, *nladdr, *l;
2158
2159 /* Only for specific case not bound all */
2160 asc = (struct sctp_asconf_iterator *)ptr;
2161 LIST_FOREACH(l, &asc->list_of_work, sctp_nxt_addr) {
2162 ifa = l->ifa;
2163 if (l->action == SCTP_ADD_IP_ADDRESS) {
2164 LIST_FOREACH(laddr, &inp->sctp_addr_list,
2165 sctp_nxt_addr) {
2166 if (laddr->ifa == ifa) {
2167 laddr->action = 0;
2168 break;
2169 }
2170 }
2171 } else if (l->action == SCTP_DEL_IP_ADDRESS) {
2172 LIST_FOREACH_SAFE(laddr, &inp->sctp_addr_list, sctp_nxt_addr, nladdr) {
2173 /* remove only after all guys are done */
2174 if (laddr->ifa == ifa) {
2175 sctp_del_local_addr_ep(inp, ifa);
2176 }
2177 }
2178 }
2179 }
2180 return (0);
2181 }
2182
2183 void
2184 sctp_asconf_iterator_stcb(struct sctp_inpcb *inp, struct sctp_tcb *stcb,
2185 void *ptr, uint32_t val)
2186 {
2187 struct sctp_asconf_iterator *asc;
2188 struct sctp_ifa *ifa;
2189 struct sctp_laddr *l;
2190 int cnt_invalid = 0;
2191 int type, status;
2192 int num_queued = 0;
2193
2194 asc = (struct sctp_asconf_iterator *)ptr;
2195 LIST_FOREACH(l, &asc->list_of_work, sctp_nxt_addr) {
2196 ifa = l->ifa;
2197 type = l->action;
2198
2199 /* address's vrf_id must be the vrf_id of the assoc */
2200 if (ifa->vrf_id != stcb->asoc.vrf_id) {
2201 continue;
2202 }
2203 /* Same checks again for assoc */
2204 switch (ifa->address.sa.sa_family) {
2205 #ifdef INET6
2206 case AF_INET6:
2207 {
2208 /* invalid if we're not a v6 endpoint */
2209 struct sockaddr_in6 *sin6;
2210
2211 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0) {
2212 cnt_invalid++;
2213 if (asc->cnt == cnt_invalid)
2214 return;
2215 else
2216 continue;
2217 }
2218 sin6 = (struct sockaddr_in6 *)&ifa->address.sin6;
2219 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
2220 /* we skip unspecifed addresses */
2221 continue;
2222 }
2223 if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr)) {
2224 if (stcb->asoc.local_scope == 0) {
2225 continue;
2226 }
2227 /* is it the right link local scope? */
2228 if (sctp_is_scopeid_in_nets(stcb, &ifa->address.sa) == 0) {
2229 continue;
2230 }
2231 }
2232 break;
2233 }
2234 #endif
2235 #ifdef INET
2236 case AF_INET:
2237 {
2238 /* invalid if we are a v6 only endpoint */
2239 struct in6pcb *inp6;
2240 struct sockaddr_in *sin;
2241
2242 inp6 = (struct in6pcb *)&inp->ip_inp.inp;
2243 /* invalid if we are a v6 only endpoint */
2244 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
2245 SCTP_IPV6_V6ONLY(inp6))
2246 continue;
2247
2248 sin = (struct sockaddr_in *)&ifa->address.sa;
2249 if (sin->sin_addr.s_addr == 0) {
2250 /* we skip unspecifed addresses */
2251 continue;
2252 }
2253 if (stcb->asoc.ipv4_local_scope == 0 &&
2254 IN4_ISPRIVATE_ADDRESS(&sin->sin_addr)) {
2255 continue;
2256 }
2257 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
2258 SCTP_IPV6_V6ONLY(inp6)) {
2259 cnt_invalid++;
2260 if (asc->cnt == cnt_invalid)
2261 return;
2262 else
2263 continue;
2264 }
2265 break;
2266 }
2267 #endif
2268 default:
2269 /* invalid address family */
2270 cnt_invalid++;
2271 if (asc->cnt == cnt_invalid)
2272 return;
2273 else
2274 continue;
2275 break;
2276 }
2277
2278 if (type == SCTP_ADD_IP_ADDRESS) {
2279 /* prevent this address from being used as a source */
2280 sctp_add_local_addr_restricted(stcb, ifa);
2281 } else if (type == SCTP_DEL_IP_ADDRESS) {
2282 struct sctp_nets *net;
2283
2284 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
2285 sctp_rtentry_t *rt;
2286
2287 /* delete this address if cached */
2288 if (net->ro._s_addr == ifa) {
2289 sctp_free_ifa(net->ro._s_addr);
2290 net->ro._s_addr = NULL;
2291 net->src_addr_selected = 0;
2292 rt = net->ro.ro_rt;
2293 if (rt) {
2294 RTFREE(rt);
2295 net->ro.ro_rt = NULL;
2296 }
2297 /*
2298 * Now we deleted our src address,
2299 * should we not also now reset the
2300 * cwnd/rto to start as if its a new
2301 * address?
2302 */
2303 stcb->asoc.cc_functions.sctp_set_initial_cc_param(stcb, net);
2304 net->RTO = 0;
2305
2306 }
2307 }
2308 } else if (type == SCTP_SET_PRIM_ADDR) {
2309 if ((stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) == 0) {
2310 /* must validate the ifa is in the ep */
2311 if (sctp_is_addr_in_ep(stcb->sctp_ep, ifa) == 0) {
2312 continue;
2313 }
2314 } else {
2315 /* Need to check scopes for this guy */
2316 if (sctp_is_address_in_scope(ifa,
2317 stcb->asoc.ipv4_addr_legal,
2318 stcb->asoc.ipv6_addr_legal,
2319 stcb->asoc.loopback_scope,
2320 stcb->asoc.ipv4_local_scope,
2321 stcb->asoc.local_scope,
2322 stcb->asoc.site_scope, 0) == 0) {
2323 continue;
2324 }
2325 }
2326 }
2327 /* queue an asconf for this address add/delete */
2328 if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_DO_ASCONF) &&
2329 stcb->asoc.peer_supports_asconf) {
2330 /* queue an asconf for this addr */
2331 status = sctp_asconf_queue_add(stcb, ifa, type);
2332 /*
2333 * if queued ok, and in the open state, update the
2334 * count of queued params. If in the non-open
2335 * state, these get sent when the assoc goes open.
2336 */
2337 if (SCTP_GET_STATE(&stcb->asoc) == SCTP_STATE_OPEN) {
2338 if (status >= 0) {
2339 num_queued++;
2340 }
2341 }
2342 }
2343 }
2344 /*
2345 * If we have queued params in the open state, send out an ASCONF.
2346 */
2347 if (num_queued > 0) {
2348 sctp_send_asconf(stcb, NULL, SCTP_ADDR_NOT_LOCKED);
2349 }
2350 }
2351
2352 void
2353 sctp_asconf_iterator_end(void *ptr, uint32_t val)
2354 {
2355 struct sctp_asconf_iterator *asc;
2356 struct sctp_ifa *ifa;
2357 struct sctp_laddr *l, *nl;
2358
2359 asc = (struct sctp_asconf_iterator *)ptr;
2360 LIST_FOREACH_SAFE(l, &asc->list_of_work, sctp_nxt_addr, nl) {
2361 ifa = l->ifa;
2362 if (l->action == SCTP_ADD_IP_ADDRESS) {
2363 /* Clear the defer use flag */
2364 ifa->localifa_flags &= ~SCTP_ADDR_DEFER_USE;
2365 }
2366 sctp_free_ifa(ifa);
2367 SCTP_ZONE_FREE(SCTP_BASE_INFO(ipi_zone_laddr), l);
2368 SCTP_DECR_LADDR_COUNT();
2369 }
2370 SCTP_FREE(asc, SCTP_M_ASC_IT);
2371 }
2372
2373 /*
2374 * sa is the sockaddr to ask the peer to set primary to.
2375 * returns: 0 = completed, -1 = error
2376 */
2377 int32_t
2378 sctp_set_primary_ip_address_sa(struct sctp_tcb *stcb, struct sockaddr *sa)
2379 {
2380 uint32_t vrf_id;
2381 struct sctp_ifa *ifa;
2382
2383 /* find the ifa for the desired set primary */
2384 vrf_id = stcb->asoc.vrf_id;
2385 ifa = sctp_find_ifa_by_addr(sa, vrf_id, SCTP_ADDR_NOT_LOCKED);
2386 if (ifa == NULL) {
2387 /* Invalid address */
2388 return (-1);
2389 }
2390 /* queue an ASCONF:SET_PRIM_ADDR to be sent */
2391 if (!sctp_asconf_queue_add(stcb, ifa, SCTP_SET_PRIM_ADDR)) {
2392 /* set primary queuing succeeded */
2393 SCTPDBG(SCTP_DEBUG_ASCONF1,
2394 "set_primary_ip_address_sa: queued on tcb=%p, ",
2395 stcb);
2396 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
2397 if (SCTP_GET_STATE(&stcb->asoc) == SCTP_STATE_OPEN) {
2398 #ifdef SCTP_TIMER_BASED_ASCONF
2399 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF,
2400 stcb->sctp_ep, stcb,
2401 stcb->asoc.primary_destination);
2402 #else
2403 sctp_send_asconf(stcb, NULL, SCTP_ADDR_NOT_LOCKED);
2404 #endif
2405 }
2406 } else {
2407 SCTPDBG(SCTP_DEBUG_ASCONF1, "set_primary_ip_address_sa: failed to add to queue on tcb=%p, ",
2408 stcb);
2409 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
2410 return (-1);
2411 }
2412 return (0);
2413 }
2414
2415 void
2416 sctp_set_primary_ip_address(struct sctp_ifa *ifa)
2417 {
2418 struct sctp_inpcb *inp;
2419
2420 /* go through all our PCB's */
2421 LIST_FOREACH(inp, &SCTP_BASE_INFO(listhead), sctp_list) {
2422 struct sctp_tcb *stcb;
2423
2424 /* process for all associations for this endpoint */
2425 LIST_FOREACH(stcb, &inp->sctp_asoc_list, sctp_tcblist) {
2426 /* queue an ASCONF:SET_PRIM_ADDR to be sent */
2427 if (!sctp_asconf_queue_add(stcb, ifa,
2428 SCTP_SET_PRIM_ADDR)) {
2429 /* set primary queuing succeeded */
2430 SCTPDBG(SCTP_DEBUG_ASCONF1, "set_primary_ip_address: queued on stcb=%p, ",
2431 stcb);
2432 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, &ifa->address.sa);
2433 if (SCTP_GET_STATE(&stcb->asoc) == SCTP_STATE_OPEN) {
2434 #ifdef SCTP_TIMER_BASED_ASCONF
2435 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF,
2436 stcb->sctp_ep, stcb,
2437 stcb->asoc.primary_destination);
2438 #else
2439 sctp_send_asconf(stcb, NULL, SCTP_ADDR_NOT_LOCKED);
2440 #endif
2441 }
2442 }
2443 } /* for each stcb */
2444 } /* for each inp */
2445 }
2446
2447 int
2448 sctp_is_addr_pending(struct sctp_tcb *stcb, struct sctp_ifa *sctp_ifa)
2449 {
2450 struct sctp_tmit_chunk *chk, *nchk;
2451 unsigned int offset, asconf_limit;
2452 struct sctp_asconf_chunk *acp;
2453 struct sctp_asconf_paramhdr *aph;
2454 uint8_t aparam_buf[SCTP_PARAM_BUFFER_SIZE];
2455 struct sctp_paramhdr *ph;
2456 int add_cnt, del_cnt;
2457 uint16_t last_param_type;
2458
2459 add_cnt = del_cnt = 0;
2460 last_param_type = 0;
2461 TAILQ_FOREACH_SAFE(chk, &stcb->asoc.asconf_send_queue, sctp_next, nchk) {
2462 if (chk->data == NULL) {
2463 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: No mbuf data?\n");
2464 continue;
2465 }
2466 offset = 0;
2467 acp = mtod(chk->data, struct sctp_asconf_chunk *);
2468 offset += sizeof(struct sctp_asconf_chunk);
2469 asconf_limit = ntohs(acp->ch.chunk_length);
2470 ph = (struct sctp_paramhdr *)sctp_m_getptr(chk->data, offset, sizeof(struct sctp_paramhdr), aparam_buf);
2471 if (ph == NULL) {
2472 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: couldn't get lookup addr!\n");
2473 continue;
2474 }
2475 offset += ntohs(ph->param_length);
2476
2477 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(chk->data, offset, sizeof(struct sctp_asconf_paramhdr), aparam_buf);
2478 if (aph == NULL) {
2479 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: Empty ASCONF will be sent?\n");
2480 continue;
2481 }
2482 while (aph != NULL) {
2483 unsigned int param_length, param_type;
2484
2485 param_type = ntohs(aph->ph.param_type);
2486 param_length = ntohs(aph->ph.param_length);
2487 if (offset + param_length > asconf_limit) {
2488 /* parameter goes beyond end of chunk! */
2489 break;
2490 }
2491 if (param_length > sizeof(aparam_buf)) {
2492 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: param length (%u) larger than buffer size!\n", param_length);
2493 break;
2494 }
2495 if (param_length <= sizeof(struct sctp_paramhdr)) {
2496 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: param length(%u) too short\n", param_length);
2497 break;
2498 }
2499 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(chk->data, offset, param_length, aparam_buf);
2500 if (aph == NULL) {
2501 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: couldn't get entire param\n");
2502 break;
2503 }
2504 ph = (struct sctp_paramhdr *)(aph + 1);
2505 if (sctp_addr_match(ph, &sctp_ifa->address.sa) != 0) {
2506 switch (param_type) {
2507 case SCTP_ADD_IP_ADDRESS:
2508 add_cnt++;
2509 break;
2510 case SCTP_DEL_IP_ADDRESS:
2511 del_cnt++;
2512 break;
2513 default:
2514 break;
2515 }
2516 last_param_type = param_type;
2517 }
2518 offset += SCTP_SIZE32(param_length);
2519 if (offset >= asconf_limit) {
2520 /* no more data in the mbuf chain */
2521 break;
2522 }
2523 /* get pointer to next asconf param */
2524 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(chk->data, offset, sizeof(struct sctp_asconf_paramhdr), aparam_buf);
2525 }
2526 }
2527
2528 /*
2529 * we want to find the sequences which consist of ADD -> DEL -> ADD
2530 * or DEL -> ADD
2531 */
2532 if (add_cnt > del_cnt ||
2533 (add_cnt == del_cnt && last_param_type == SCTP_ADD_IP_ADDRESS)) {
2534 return 1;
2535 }
2536 return 0;
2537 }
2538
2539 static struct sockaddr *
2540 sctp_find_valid_localaddr(struct sctp_tcb *stcb, int addr_locked)
2541 {
2542 struct sctp_vrf *vrf = NULL;
2543 struct sctp_ifn *sctp_ifn;
2544 struct sctp_ifa *sctp_ifa;
2545
2546 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2547 SCTP_IPI_ADDR_RLOCK();
2548 vrf = sctp_find_vrf(stcb->asoc.vrf_id);
2549 if (vrf == NULL) {
2550 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2551 SCTP_IPI_ADDR_RUNLOCK();
2552 return (NULL);
2553 }
2554 LIST_FOREACH(sctp_ifn, &vrf->ifnlist, next_ifn) {
2555 if (stcb->asoc.loopback_scope == 0 &&
2556 SCTP_IFN_IS_IFT_LOOP(sctp_ifn)) {
2557 /* Skip if loopback_scope not set */
2558 continue;
2559 }
2560 LIST_FOREACH(sctp_ifa, &sctp_ifn->ifalist, next_ifa) {
2561 switch (sctp_ifa->address.sa.sa_family) {
2562 #ifdef INET
2563 case AF_INET:
2564 if (stcb->asoc.ipv4_addr_legal) {
2565 struct sockaddr_in *sin;
2566
2567 sin = (struct sockaddr_in *)&sctp_ifa->address.sa;
2568 if (sin->sin_addr.s_addr == 0) {
2569 /* skip unspecifed addresses */
2570 continue;
2571 }
2572 if (stcb->asoc.ipv4_local_scope == 0 &&
2573 IN4_ISPRIVATE_ADDRESS(&sin->sin_addr))
2574 continue;
2575
2576 if (sctp_is_addr_restricted(stcb, sctp_ifa) &&
2577 (!sctp_is_addr_pending(stcb, sctp_ifa)))
2578 continue;
2579 /*
2580 * found a valid local v4 address to
2581 * use
2582 */
2583 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2584 SCTP_IPI_ADDR_RUNLOCK();
2585 return (&sctp_ifa->address.sa);
2586 }
2587 break;
2588 #endif
2589 #ifdef INET6
2590 case AF_INET6:
2591 if (stcb->asoc.ipv6_addr_legal) {
2592 struct sockaddr_in6 *sin6;
2593
2594 if (sctp_ifa->localifa_flags & SCTP_ADDR_IFA_UNUSEABLE) {
2595 continue;
2596 }
2597 sin6 = (struct sockaddr_in6 *)&sctp_ifa->address.sa;
2598 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
2599 /*
2600 * we skip unspecifed
2601 * addresses
2602 */
2603 continue;
2604 }
2605 if (stcb->asoc.local_scope == 0 &&
2606 IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr))
2607 continue;
2608 if (stcb->asoc.site_scope == 0 &&
2609 IN6_IS_ADDR_SITELOCAL(&sin6->sin6_addr))
2610 continue;
2611
2612 if (sctp_is_addr_restricted(stcb, sctp_ifa) &&
2613 (!sctp_is_addr_pending(stcb, sctp_ifa)))
2614 continue;
2615 /*
2616 * found a valid local v6 address to
2617 * use
2618 */
2619 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2620 SCTP_IPI_ADDR_RUNLOCK();
2621 return (&sctp_ifa->address.sa);
2622 }
2623 break;
2624 #endif
2625 default:
2626 break;
2627 }
2628 }
2629 }
2630 /* no valid addresses found */
2631 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2632 SCTP_IPI_ADDR_RUNLOCK();
2633 return (NULL);
2634 }
2635
2636 static struct sockaddr *
2637 sctp_find_valid_localaddr_ep(struct sctp_tcb *stcb)
2638 {
2639 struct sctp_laddr *laddr;
2640
2641 LIST_FOREACH(laddr, &stcb->sctp_ep->sctp_addr_list, sctp_nxt_addr) {
2642 if (laddr->ifa == NULL) {
2643 continue;
2644 }
2645 /* is the address restricted ? */
2646 if (sctp_is_addr_restricted(stcb, laddr->ifa) &&
2647 (!sctp_is_addr_pending(stcb, laddr->ifa)))
2648 continue;
2649
2650 /* found a valid local address to use */
2651 return (&laddr->ifa->address.sa);
2652 }
2653 /* no valid addresses found */
2654 return (NULL);
2655 }
2656
2657 /*
2658 * builds an ASCONF chunk from queued ASCONF params.
2659 * returns NULL on error (no mbuf, no ASCONF params queued, etc).
2660 */
2661 struct mbuf *
2662 sctp_compose_asconf(struct sctp_tcb *stcb, int *retlen, int addr_locked)
2663 {
2664 struct mbuf *m_asconf, *m_asconf_chk;
2665 struct sctp_asconf_addr *aa;
2666 struct sctp_asconf_chunk *acp;
2667 struct sctp_asconf_paramhdr *aph;
2668 struct sctp_asconf_addr_param *aap;
2669 uint32_t p_length;
2670 uint32_t correlation_id = 1; /* 0 is reserved... */
2671 caddr_t ptr, lookup_ptr;
2672 uint8_t lookup_used = 0;
2673
2674 /* are there any asconf params to send? */
2675 TAILQ_FOREACH(aa, &stcb->asoc.asconf_queue, next) {
2676 if (aa->sent == 0)
2677 break;
2678 }
2679 if (aa == NULL)
2680 return (NULL);
2681
2682 /*
2683 * get a chunk header mbuf and a cluster for the asconf params since
2684 * it's simpler to fill in the asconf chunk header lookup address on
2685 * the fly
2686 */
2687 m_asconf_chk = sctp_get_mbuf_for_msg(sizeof(struct sctp_asconf_chunk), 0, M_DONTWAIT, 1, MT_DATA);
2688 if (m_asconf_chk == NULL) {
2689 /* no mbuf's */
2690 SCTPDBG(SCTP_DEBUG_ASCONF1,
2691 "compose_asconf: couldn't get chunk mbuf!\n");
2692 return (NULL);
2693 }
2694 m_asconf = sctp_get_mbuf_for_msg(MCLBYTES, 0, M_DONTWAIT, 1, MT_DATA);
2695 if (m_asconf == NULL) {
2696 /* no mbuf's */
2697 SCTPDBG(SCTP_DEBUG_ASCONF1,
2698 "compose_asconf: couldn't get mbuf!\n");
2699 sctp_m_freem(m_asconf_chk);
2700 return (NULL);
2701 }
2702 SCTP_BUF_LEN(m_asconf_chk) = sizeof(struct sctp_asconf_chunk);
2703 SCTP_BUF_LEN(m_asconf) = 0;
2704 acp = mtod(m_asconf_chk, struct sctp_asconf_chunk *);
2705 bzero(acp, sizeof(struct sctp_asconf_chunk));
2706 /* save pointers to lookup address and asconf params */
2707 lookup_ptr = (caddr_t)(acp + 1); /* after the header */
2708 ptr = mtod(m_asconf, caddr_t); /* beginning of cluster */
2709
2710 /* fill in chunk header info */
2711 acp->ch.chunk_type = SCTP_ASCONF;
2712 acp->ch.chunk_flags = 0;
2713 acp->serial_number = htonl(stcb->asoc.asconf_seq_out);
2714 stcb->asoc.asconf_seq_out++;
2715
2716 /* add parameters... up to smallest MTU allowed */
2717 TAILQ_FOREACH(aa, &stcb->asoc.asconf_queue, next) {
2718 if (aa->sent)
2719 continue;
2720 /* get the parameter length */
2721 p_length = SCTP_SIZE32(aa->ap.aph.ph.param_length);
2722 /* will it fit in current chunk? */
2723 if (SCTP_BUF_LEN(m_asconf) + p_length > stcb->asoc.smallest_mtu) {
2724 /* won't fit, so we're done with this chunk */
2725 break;
2726 }
2727 /* assign (and store) a correlation id */
2728 aa->ap.aph.correlation_id = correlation_id++;
2729
2730 /*
2731 * fill in address if we're doing a delete this is a simple
2732 * way for us to fill in the correlation address, which
2733 * should only be used by the peer if we're deleting our
2734 * source address and adding a new address (e.g. renumbering
2735 * case)
2736 */
2737 if (lookup_used == 0 &&
2738 (aa->special_del == 0) &&
2739 aa->ap.aph.ph.param_type == SCTP_DEL_IP_ADDRESS) {
2740 struct sctp_ipv6addr_param *lookup;
2741 uint16_t p_size, addr_size;
2742
2743 lookup = (struct sctp_ipv6addr_param *)lookup_ptr;
2744 lookup->ph.param_type =
2745 htons(aa->ap.addrp.ph.param_type);
2746 if (aa->ap.addrp.ph.param_type == SCTP_IPV6_ADDRESS) {
2747 /* copy IPv6 address */
2748 p_size = sizeof(struct sctp_ipv6addr_param);
2749 addr_size = sizeof(struct in6_addr);
2750 } else {
2751 /* copy IPv4 address */
2752 p_size = sizeof(struct sctp_ipv4addr_param);
2753 addr_size = sizeof(struct in_addr);
2754 }
2755 lookup->ph.param_length = htons(SCTP_SIZE32(p_size));
2756 memcpy(lookup->addr, &aa->ap.addrp.addr, addr_size);
2757 SCTP_BUF_LEN(m_asconf_chk) += SCTP_SIZE32(p_size);
2758 lookup_used = 1;
2759 }
2760 /* copy into current space */
2761 memcpy(ptr, &aa->ap, p_length);
2762
2763 /* network elements and update lengths */
2764 aph = (struct sctp_asconf_paramhdr *)ptr;
2765 aap = (struct sctp_asconf_addr_param *)ptr;
2766 /* correlation_id is transparent to peer, no htonl needed */
2767 aph->ph.param_type = htons(aph->ph.param_type);
2768 aph->ph.param_length = htons(aph->ph.param_length);
2769 aap->addrp.ph.param_type = htons(aap->addrp.ph.param_type);
2770 aap->addrp.ph.param_length = htons(aap->addrp.ph.param_length);
2771
2772 SCTP_BUF_LEN(m_asconf) += SCTP_SIZE32(p_length);
2773 ptr += SCTP_SIZE32(p_length);
2774
2775 /*
2776 * these params are removed off the pending list upon
2777 * getting an ASCONF-ACK back from the peer, just set flag
2778 */
2779 aa->sent = 1;
2780 }
2781 /* check to see if the lookup addr has been populated yet */
2782 if (lookup_used == 0) {
2783 /* NOTE: if the address param is optional, can skip this... */
2784 /* add any valid (existing) address... */
2785 struct sctp_ipv6addr_param *lookup;
2786 uint16_t p_size, addr_size;
2787 struct sockaddr *found_addr;
2788 caddr_t addr_ptr;
2789
2790 if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL)
2791 found_addr = sctp_find_valid_localaddr(stcb,
2792 addr_locked);
2793 else
2794 found_addr = sctp_find_valid_localaddr_ep(stcb);
2795
2796 lookup = (struct sctp_ipv6addr_param *)lookup_ptr;
2797 if (found_addr != NULL) {
2798 switch (found_addr->sa_family) {
2799 #ifdef INET6
2800 case AF_INET6:
2801 /* copy IPv6 address */
2802 lookup->ph.param_type =
2803 htons(SCTP_IPV6_ADDRESS);
2804 p_size = sizeof(struct sctp_ipv6addr_param);
2805 addr_size = sizeof(struct in6_addr);
2806 addr_ptr = (caddr_t)&((struct sockaddr_in6 *)
2807 found_addr)->sin6_addr;
2808 break;
2809 #endif
2810 #ifdef INET
2811 case AF_INET:
2812 /* copy IPv4 address */
2813 lookup->ph.param_type =
2814 htons(SCTP_IPV4_ADDRESS);
2815 p_size = sizeof(struct sctp_ipv4addr_param);
2816 addr_size = sizeof(struct in_addr);
2817 addr_ptr = (caddr_t)&((struct sockaddr_in *)
2818 found_addr)->sin_addr;
2819 break;
2820 #endif
2821 default:
2822 p_size = 0;
2823 addr_size = 0;
2824 addr_ptr = NULL;
2825 break;
2826 }
2827 lookup->ph.param_length = htons(SCTP_SIZE32(p_size));
2828 memcpy(lookup->addr, addr_ptr, addr_size);
2829 SCTP_BUF_LEN(m_asconf_chk) += SCTP_SIZE32(p_size);
2830 } else {
2831 /* uh oh... don't have any address?? */
2832 SCTPDBG(SCTP_DEBUG_ASCONF1,
2833 "compose_asconf: no lookup addr!\n");
2834 /* XXX for now, we send a IPv4 address of 0.0.0.0 */
2835 lookup->ph.param_type = htons(SCTP_IPV4_ADDRESS);
2836 lookup->ph.param_length = htons(SCTP_SIZE32(sizeof(struct sctp_ipv4addr_param)));
2837 bzero(lookup->addr, sizeof(struct in_addr));
2838 SCTP_BUF_LEN(m_asconf_chk) += SCTP_SIZE32(sizeof(struct sctp_ipv4addr_param));
2839 }
2840 }
2841 /* chain it all together */
2842 SCTP_BUF_NEXT(m_asconf_chk) = m_asconf;
2843 *retlen = SCTP_BUF_LEN(m_asconf_chk) + SCTP_BUF_LEN(m_asconf);
2844 acp->ch.chunk_length = ntohs(*retlen);
2845
2846 return (m_asconf_chk);
2847 }
2848
2849 /*
2850 * section to handle address changes before an association is up eg. changes
2851 * during INIT/INIT-ACK/COOKIE-ECHO handshake
2852 */
2853
2854 /*
2855 * processes the (local) addresses in the INIT-ACK chunk
2856 */
2857 static void
2858 sctp_process_initack_addresses(struct sctp_tcb *stcb, struct mbuf *m,
2859 unsigned int offset, unsigned int length)
2860 {
2861 struct sctp_paramhdr tmp_param, *ph;
2862 uint16_t plen, ptype;
2863 struct sctp_ifa *sctp_ifa;
2864 struct sctp_ipv6addr_param addr_store;
2865
2866 #ifdef INET6
2867 struct sockaddr_in6 sin6;
2868
2869 #endif
2870 #ifdef INET
2871 struct sockaddr_in sin;
2872
2873 #endif
2874 struct sockaddr *sa;
2875 uint32_t vrf_id;
2876
2877 SCTPDBG(SCTP_DEBUG_ASCONF2, "processing init-ack addresses\n");
2878 if (stcb == NULL) /* Un-needed check for SA */
2879 return;
2880
2881 /* convert to upper bound */
2882 length += offset;
2883
2884 if ((offset + sizeof(struct sctp_paramhdr)) > length) {
2885 return;
2886 }
2887 /* init the addresses */
2888 #ifdef INET6
2889 bzero(&sin6, sizeof(sin6));
2890 sin6.sin6_family = AF_INET6;
2891 sin6.sin6_len = sizeof(sin6);
2892 sin6.sin6_port = stcb->rport;
2893 #endif
2894
2895 #ifdef INET
2896 bzero(&sin, sizeof(sin));
2897 sin.sin_family = AF_INET;
2898 sin.sin_len = sizeof(sin);
2899 sin.sin_port = stcb->rport;
2900 #endif
2901
2902 /* go through the addresses in the init-ack */
2903 ph = (struct sctp_paramhdr *)
2904 sctp_m_getptr(m, offset, sizeof(struct sctp_paramhdr),
2905 (uint8_t *) & tmp_param);
2906 while (ph != NULL) {
2907 ptype = ntohs(ph->param_type);
2908 plen = ntohs(ph->param_length);
2909 switch (ptype) {
2910 #ifdef INET6
2911 case SCTP_IPV6_ADDRESS:
2912 {
2913 struct sctp_ipv6addr_param *a6p;
2914
2915 /* get the entire IPv6 address param */
2916 a6p = (struct sctp_ipv6addr_param *)
2917 sctp_m_getptr(m, offset,
2918 sizeof(struct sctp_ipv6addr_param),
2919 (uint8_t *) & addr_store);
2920 if (plen != sizeof(struct sctp_ipv6addr_param) ||
2921 a6p == NULL) {
2922 return;
2923 }
2924 memcpy(&sin6.sin6_addr, a6p->addr,
2925 sizeof(struct in6_addr));
2926 sa = (struct sockaddr *)&sin6;
2927 break;
2928 }
2929 #endif
2930 #ifdef INET
2931 case SCTP_IPV4_ADDRESS:
2932 {
2933 struct sctp_ipv4addr_param *a4p;
2934
2935 /* get the entire IPv4 address param */
2936 a4p = (struct sctp_ipv4addr_param *)sctp_m_getptr(m, offset,
2937 sizeof(struct sctp_ipv4addr_param),
2938 (uint8_t *) & addr_store);
2939 if (plen != sizeof(struct sctp_ipv4addr_param) ||
2940 a4p == NULL) {
2941 return;
2942 }
2943 sin.sin_addr.s_addr = a4p->addr;
2944 sa = (struct sockaddr *)&sin;
2945 break;
2946 }
2947 #endif
2948 default:
2949 goto next_addr;
2950 }
2951
2952 /* see if this address really (still) exists */
2953 if (stcb) {
2954 vrf_id = stcb->asoc.vrf_id;
2955 } else {
2956 vrf_id = SCTP_DEFAULT_VRFID;
2957 }
2958 sctp_ifa = sctp_find_ifa_by_addr(sa, vrf_id,
2959 SCTP_ADDR_NOT_LOCKED);
2960 if (sctp_ifa == NULL) {
2961 /* address doesn't exist anymore */
2962 int status;
2963
2964 /* are ASCONFs allowed ? */
2965 if ((sctp_is_feature_on(stcb->sctp_ep,
2966 SCTP_PCB_FLAGS_DO_ASCONF)) &&
2967 stcb->asoc.peer_supports_asconf) {
2968 /* queue an ASCONF DEL_IP_ADDRESS */
2969 status = sctp_asconf_queue_sa_delete(stcb, sa);
2970 /*
2971 * if queued ok, and in correct state, send
2972 * out the ASCONF.
2973 */
2974 if (status == 0 &&
2975 SCTP_GET_STATE(&stcb->asoc) ==
2976 SCTP_STATE_OPEN) {
2977 #ifdef SCTP_TIMER_BASED_ASCONF
2978 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF,
2979 stcb->sctp_ep, stcb,
2980 stcb->asoc.primary_destination);
2981 #else
2982 sctp_send_asconf(stcb, NULL, SCTP_ADDR_NOT_LOCKED);
2983 #endif
2984 }
2985 }
2986 }
2987 next_addr:
2988 /*
2989 * Sanity check: Make sure the length isn't 0, otherwise
2990 * we'll be stuck in this loop for a long time...
2991 */
2992 if (SCTP_SIZE32(plen) == 0) {
2993 SCTP_PRINTF("process_initack_addrs: bad len (%d) type=%xh\n",
2994 plen, ptype);
2995 return;
2996 }
2997 /* get next parameter */
2998 offset += SCTP_SIZE32(plen);
2999 if ((offset + sizeof(struct sctp_paramhdr)) > length)
3000 return;
3001 ph = (struct sctp_paramhdr *)sctp_m_getptr(m, offset,
3002 sizeof(struct sctp_paramhdr), (uint8_t *) & tmp_param);
3003 } /* while */
3004 }
3005
3006 /* FIX ME: need to verify return result for v6 address type if v6 disabled */
3007 /*
3008 * checks to see if a specific address is in the initack address list returns
3009 * 1 if found, 0 if not
3010 */
3011 static uint32_t
3012 sctp_addr_in_initack(struct sctp_tcb *stcb, struct mbuf *m, uint32_t offset,
3013 uint32_t length, struct sockaddr *sa)
3014 {
3015 struct sctp_paramhdr tmp_param, *ph;
3016 uint16_t plen, ptype;
3017 struct sctp_ipv6addr_param addr_store;
3018
3019 #ifdef INET
3020 struct sockaddr_in *sin;
3021 struct sctp_ipv4addr_param *a4p;
3022
3023 #endif
3024 #ifdef INET6
3025 struct sockaddr_in6 *sin6;
3026 struct sctp_ipv6addr_param *a6p;
3027 struct sockaddr_in6 sin6_tmp;
3028
3029 #endif
3030
3031 switch (sa->sa_family) {
3032 #ifdef INET
3033 case AF_INET:
3034 break;
3035 #endif
3036 #ifdef INET6
3037 case AF_INET6:
3038 break;
3039 #endif
3040 default:
3041 return (0);
3042 }
3043
3044 SCTPDBG(SCTP_DEBUG_ASCONF2, "find_initack_addr: starting search for ");
3045 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF2, sa);
3046 /* convert to upper bound */
3047 length += offset;
3048
3049 if ((offset + sizeof(struct sctp_paramhdr)) > length) {
3050 SCTPDBG(SCTP_DEBUG_ASCONF1,
3051 "find_initack_addr: invalid offset?\n");
3052 return (0);
3053 }
3054 /* go through the addresses in the init-ack */
3055 ph = (struct sctp_paramhdr *)sctp_m_getptr(m, offset,
3056 sizeof(struct sctp_paramhdr), (uint8_t *) & tmp_param);
3057 while (ph != NULL) {
3058 ptype = ntohs(ph->param_type);
3059 plen = ntohs(ph->param_length);
3060 switch (ptype) {
3061 #ifdef INET6
3062 case SCTP_IPV6_ADDRESS:
3063 if (sa->sa_family == AF_INET6) {
3064 /* get the entire IPv6 address param */
3065 if (plen != sizeof(struct sctp_ipv6addr_param)) {
3066 break;
3067 }
3068 /* get the entire IPv6 address param */
3069 a6p = (struct sctp_ipv6addr_param *)
3070 sctp_m_getptr(m, offset,
3071 sizeof(struct sctp_ipv6addr_param),
3072 (uint8_t *) & addr_store);
3073 if (a6p == NULL) {
3074 return (0);
3075 }
3076 sin6 = (struct sockaddr_in6 *)sa;
3077 if (IN6_IS_SCOPE_LINKLOCAL(&sin6->sin6_addr)) {
3078 /* create a copy and clear scope */
3079 memcpy(&sin6_tmp, sin6,
3080 sizeof(struct sockaddr_in6));
3081 sin6 = &sin6_tmp;
3082 in6_clearscope(&sin6->sin6_addr);
3083 }
3084 if (memcmp(&sin6->sin6_addr, a6p->addr,
3085 sizeof(struct in6_addr)) == 0) {
3086 /* found it */
3087 return (1);
3088 }
3089 }
3090 break;
3091 #endif /* INET6 */
3092 #ifdef INET
3093 case SCTP_IPV4_ADDRESS:
3094 if (sa->sa_family == AF_INET) {
3095 if (plen != sizeof(struct sctp_ipv4addr_param)) {
3096 break;
3097 }
3098 /* get the entire IPv4 address param */
3099 a4p = (struct sctp_ipv4addr_param *)
3100 sctp_m_getptr(m, offset,
3101 sizeof(struct sctp_ipv4addr_param),
3102 (uint8_t *) & addr_store);
3103 if (a4p == NULL) {
3104 return (0);
3105 }
3106 sin = (struct sockaddr_in *)sa;
3107 if (sin->sin_addr.s_addr == a4p->addr) {
3108 /* found it */
3109 return (1);
3110 }
3111 }
3112 break;
3113 #endif
3114 default:
3115 break;
3116 }
3117 /* get next parameter */
3118 offset += SCTP_SIZE32(plen);
3119 if (offset + sizeof(struct sctp_paramhdr) > length) {
3120 return (0);
3121 }
3122 ph = (struct sctp_paramhdr *)
3123 sctp_m_getptr(m, offset, sizeof(struct sctp_paramhdr),
3124 (uint8_t *) & tmp_param);
3125 } /* while */
3126 /* not found! */
3127 return (0);
3128 }
3129
3130 /*
3131 * makes sure that the current endpoint local addr list is consistent with
3132 * the new association (eg. subset bound, asconf allowed) adds addresses as
3133 * necessary
3134 */
3135 static void
3136 sctp_check_address_list_ep(struct sctp_tcb *stcb, struct mbuf *m, int offset,
3137 int length, struct sockaddr *init_addr)
3138 {
3139 struct sctp_laddr *laddr;
3140
3141 /* go through the endpoint list */
3142 LIST_FOREACH(laddr, &stcb->sctp_ep->sctp_addr_list, sctp_nxt_addr) {
3143 /* be paranoid and validate the laddr */
3144 if (laddr->ifa == NULL) {
3145 SCTPDBG(SCTP_DEBUG_ASCONF1,
3146 "check_addr_list_ep: laddr->ifa is NULL");
3147 continue;
3148 }
3149 if (laddr->ifa == NULL) {
3150 SCTPDBG(SCTP_DEBUG_ASCONF1, "check_addr_list_ep: laddr->ifa->ifa_addr is NULL");
3151 continue;
3152 }
3153 /* do i have it implicitly? */
3154 if (sctp_cmpaddr(&laddr->ifa->address.sa, init_addr)) {
3155 continue;
3156 }
3157 /* check to see if in the init-ack */
3158 if (!sctp_addr_in_initack(stcb, m, offset, length,
3159 &laddr->ifa->address.sa)) {
3160 /* try to add it */
3161 sctp_addr_mgmt_assoc(stcb->sctp_ep, stcb, laddr->ifa,
3162 SCTP_ADD_IP_ADDRESS, SCTP_ADDR_NOT_LOCKED);
3163 }
3164 }
3165 }
3166
3167 /*
3168 * makes sure that the current kernel address list is consistent with the new
3169 * association (with all addrs bound) adds addresses as necessary
3170 */
3171 static void
3172 sctp_check_address_list_all(struct sctp_tcb *stcb, struct mbuf *m, int offset,
3173 int length, struct sockaddr *init_addr,
3174 uint16_t local_scope, uint16_t site_scope,
3175 uint16_t ipv4_scope, uint16_t loopback_scope)
3176 {
3177 struct sctp_vrf *vrf = NULL;
3178 struct sctp_ifn *sctp_ifn;
3179 struct sctp_ifa *sctp_ifa;
3180 uint32_t vrf_id;
3181
3182 if (stcb) {
3183 vrf_id = stcb->asoc.vrf_id;
3184 } else {
3185 return;
3186 }
3187 SCTP_IPI_ADDR_RLOCK();
3188 vrf = sctp_find_vrf(vrf_id);
3189 if (vrf == NULL) {
3190 SCTP_IPI_ADDR_RUNLOCK();
3191 return;
3192 }
3193 /* go through all our known interfaces */
3194 LIST_FOREACH(sctp_ifn, &vrf->ifnlist, next_ifn) {
3195 if (loopback_scope == 0 && SCTP_IFN_IS_IFT_LOOP(sctp_ifn)) {
3196 /* skip loopback interface */
3197 continue;
3198 }
3199 /* go through each interface address */
3200 LIST_FOREACH(sctp_ifa, &sctp_ifn->ifalist, next_ifa) {
3201 /* do i have it implicitly? */
3202 if (sctp_cmpaddr(&sctp_ifa->address.sa, init_addr)) {
3203 continue;
3204 }
3205 /* check to see if in the init-ack */
3206 if (!sctp_addr_in_initack(stcb, m, offset, length,
3207 &sctp_ifa->address.sa)) {
3208 /* try to add it */
3209 sctp_addr_mgmt_assoc(stcb->sctp_ep, stcb,
3210 sctp_ifa, SCTP_ADD_IP_ADDRESS,
3211 SCTP_ADDR_LOCKED);
3212 }
3213 } /* end foreach ifa */
3214 } /* end foreach ifn */
3215 SCTP_IPI_ADDR_RUNLOCK();
3216 }
3217
3218 /*
3219 * validates an init-ack chunk (from a cookie-echo) with current addresses
3220 * adds addresses from the init-ack into our local address list, if needed
3221 * queues asconf adds/deletes addresses as needed and makes appropriate list
3222 * changes for source address selection m, offset: points to the start of the
3223 * address list in an init-ack chunk length: total length of the address
3224 * params only init_addr: address where my INIT-ACK was sent from
3225 */
3226 void
3227 sctp_check_address_list(struct sctp_tcb *stcb, struct mbuf *m, int offset,
3228 int length, struct sockaddr *init_addr,
3229 uint16_t local_scope, uint16_t site_scope,
3230 uint16_t ipv4_scope, uint16_t loopback_scope)
3231 {
3232 /* process the local addresses in the initack */
3233 sctp_process_initack_addresses(stcb, m, offset, length);
3234
3235 if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
3236 /* bound all case */
3237 sctp_check_address_list_all(stcb, m, offset, length, init_addr,
3238 local_scope, site_scope, ipv4_scope, loopback_scope);
3239 } else {
3240 /* subset bound case */
3241 if (sctp_is_feature_on(stcb->sctp_ep,
3242 SCTP_PCB_FLAGS_DO_ASCONF)) {
3243 /* asconf's allowed */
3244 sctp_check_address_list_ep(stcb, m, offset, length,
3245 init_addr);
3246 }
3247 /* else, no asconfs allowed, so what we sent is what we get */
3248 }
3249 }
3250
3251 /*
3252 * sctp_bindx() support
3253 */
3254 uint32_t
3255 sctp_addr_mgmt_ep_sa(struct sctp_inpcb *inp, struct sockaddr *sa,
3256 uint32_t type, uint32_t vrf_id, struct sctp_ifa *sctp_ifap)
3257 {
3258 struct sctp_ifa *ifa;
3259 struct sctp_laddr *laddr, *nladdr;
3260
3261 if (sa->sa_len == 0) {
3262 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, EINVAL);
3263 return (EINVAL);
3264 }
3265 if (sctp_ifap) {
3266 ifa = sctp_ifap;
3267 } else if (type == SCTP_ADD_IP_ADDRESS) {
3268 /* For an add the address MUST be on the system */
3269 ifa = sctp_find_ifa_by_addr(sa, vrf_id, SCTP_ADDR_NOT_LOCKED);
3270 } else if (type == SCTP_DEL_IP_ADDRESS) {
3271 /* For a delete we need to find it in the inp */
3272 ifa = sctp_find_ifa_in_ep(inp, sa, SCTP_ADDR_NOT_LOCKED);
3273 } else {
3274 ifa = NULL;
3275 }
3276 if (ifa != NULL) {
3277 if (type == SCTP_ADD_IP_ADDRESS) {
3278 sctp_add_local_addr_ep(inp, ifa, type);
3279 } else if (type == SCTP_DEL_IP_ADDRESS) {
3280 if (inp->laddr_count < 2) {
3281 /* can't delete the last local address */
3282 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, EINVAL);
3283 return (EINVAL);
3284 }
3285 LIST_FOREACH(laddr, &inp->sctp_addr_list,
3286 sctp_nxt_addr) {
3287 if (ifa == laddr->ifa) {
3288 /* Mark in the delete */
3289 laddr->action = type;
3290 }
3291 }
3292 }
3293 if (LIST_EMPTY(&inp->sctp_asoc_list)) {
3294 /*
3295 * There is no need to start the iterator if the inp
3296 * has no associations.
3297 */
3298 if (type == SCTP_DEL_IP_ADDRESS) {
3299 LIST_FOREACH_SAFE(laddr, &inp->sctp_addr_list, sctp_nxt_addr, nladdr) {
3300 if (laddr->ifa == ifa) {
3301 sctp_del_local_addr_ep(inp, ifa);
3302 }
3303 }
3304 }
3305 } else {
3306 struct sctp_asconf_iterator *asc;
3307 struct sctp_laddr *wi;
3308
3309 SCTP_MALLOC(asc, struct sctp_asconf_iterator *,
3310 sizeof(struct sctp_asconf_iterator),
3311 SCTP_M_ASC_IT);
3312 if (asc == NULL) {
3313 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, ENOMEM);
3314 return (ENOMEM);
3315 }
3316 wi = SCTP_ZONE_GET(SCTP_BASE_INFO(ipi_zone_laddr), struct sctp_laddr);
3317 if (wi == NULL) {
3318 SCTP_FREE(asc, SCTP_M_ASC_IT);
3319 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, ENOMEM);
3320 return (ENOMEM);
3321 }
3322 LIST_INIT(&asc->list_of_work);
3323 asc->cnt = 1;
3324 SCTP_INCR_LADDR_COUNT();
3325 wi->ifa = ifa;
3326 wi->action = type;
3327 atomic_add_int(&ifa->refcount, 1);
3328 LIST_INSERT_HEAD(&asc->list_of_work, wi, sctp_nxt_addr);
3329 (void)sctp_initiate_iterator(sctp_asconf_iterator_ep,
3330 sctp_asconf_iterator_stcb,
3331 sctp_asconf_iterator_ep_end,
3332 SCTP_PCB_ANY_FLAGS,
3333 SCTP_PCB_ANY_FEATURES,
3334 SCTP_ASOC_ANY_STATE,
3335 (void *)asc, 0,
3336 sctp_asconf_iterator_end, inp, 0);
3337 }
3338 return (0);
3339 } else {
3340 /* invalid address! */
3341 SCTP_LTRACE_ERR_RET(NULL, NULL, NULL, SCTP_FROM_SCTP_ASCONF, EADDRNOTAVAIL);
3342 return (EADDRNOTAVAIL);
3343 }
3344 }
3345
3346 void
3347 sctp_asconf_send_nat_state_update(struct sctp_tcb *stcb,
3348 struct sctp_nets *net)
3349 {
3350 struct sctp_asconf_addr *aa;
3351 struct sctp_ifa *sctp_ifap;
3352 struct sctp_asconf_tag_param *vtag;
3353
3354 #ifdef INET
3355 struct sockaddr_in *to;
3356
3357 #endif
3358 #ifdef INET6
3359 struct sockaddr_in6 *to6;
3360
3361 #endif
3362 if (net == NULL) {
3363 SCTPDBG(SCTP_DEBUG_ASCONF1, "sctp_asconf_send_nat_state_update: Missing net\n");
3364 return;
3365 }
3366 if (stcb == NULL) {
3367 SCTPDBG(SCTP_DEBUG_ASCONF1, "sctp_asconf_send_nat_state_update: Missing stcb\n");
3368 return;
3369 }
3370 /*
3371 * Need to have in the asconf: - vtagparam(my_vtag/peer_vtag) -
3372 * add(0.0.0.0) - del(0.0.0.0) - Any global addresses add(addr)
3373 */
3374 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
3375 SCTP_M_ASC_ADDR);
3376 if (aa == NULL) {
3377 /* didn't get memory */
3378 SCTPDBG(SCTP_DEBUG_ASCONF1,
3379 "sctp_asconf_send_nat_state_update: failed to get memory!\n");
3380 return;
3381 }
3382 aa->special_del = 0;
3383 /* fill in asconf address parameter fields */
3384 /* top level elements are "networked" during send */
3385 aa->ifa = NULL;
3386 aa->sent = 0; /* clear sent flag */
3387 vtag = (struct sctp_asconf_tag_param *)&aa->ap.aph;
3388 vtag->aph.ph.param_type = SCTP_NAT_VTAGS;
3389 vtag->aph.ph.param_length = sizeof(struct sctp_asconf_tag_param);
3390 vtag->local_vtag = htonl(stcb->asoc.my_vtag);
3391 vtag->remote_vtag = htonl(stcb->asoc.peer_vtag);
3392 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3393
3394 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
3395 SCTP_M_ASC_ADDR);
3396 if (aa == NULL) {
3397 /* didn't get memory */
3398 SCTPDBG(SCTP_DEBUG_ASCONF1,
3399 "sctp_asconf_send_nat_state_update: failed to get memory!\n");
3400 return;
3401 }
3402 memset(aa, 0, sizeof(struct sctp_asconf_addr));
3403 /* fill in asconf address parameter fields */
3404 /* ADD(0.0.0.0) */
3405 switch (net->ro._l_addr.sa.sa_family) {
3406 #ifdef INET
3407 case AF_INET:
3408 aa->ap.aph.ph.param_type = SCTP_ADD_IP_ADDRESS;
3409 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_addrv4_param);
3410 aa->ap.addrp.ph.param_type = SCTP_IPV4_ADDRESS;
3411 aa->ap.addrp.ph.param_length = sizeof(struct sctp_ipv4addr_param);
3412 /* No need to add an address, we are using 0.0.0.0 */
3413 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3414 break;
3415 #endif
3416 #ifdef INET6
3417 case AF_INET6:
3418 aa->ap.aph.ph.param_type = SCTP_ADD_IP_ADDRESS;
3419 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_addr_param);
3420 aa->ap.addrp.ph.param_type = SCTP_IPV6_ADDRESS;
3421 aa->ap.addrp.ph.param_length = sizeof(struct sctp_ipv6addr_param);
3422 /* No need to add an address, we are using 0.0.0.0 */
3423 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3424 break;
3425 #endif
3426 }
3427 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
3428 SCTP_M_ASC_ADDR);
3429 if (aa == NULL) {
3430 /* didn't get memory */
3431 SCTPDBG(SCTP_DEBUG_ASCONF1,
3432 "sctp_asconf_send_nat_state_update: failed to get memory!\n");
3433 return;
3434 }
3435 memset(aa, 0, sizeof(struct sctp_asconf_addr));
3436 /* fill in asconf address parameter fields */
3437 /* ADD(0.0.0.0) */
3438 switch (net->ro._l_addr.sa.sa_family) {
3439 #ifdef INET
3440 case AF_INET:
3441 aa->ap.aph.ph.param_type = SCTP_ADD_IP_ADDRESS;
3442 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_addrv4_param);
3443 aa->ap.addrp.ph.param_type = SCTP_IPV4_ADDRESS;
3444 aa->ap.addrp.ph.param_length = sizeof(struct sctp_ipv4addr_param);
3445 /* No need to add an address, we are using 0.0.0.0 */
3446 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3447 break;
3448 #endif
3449 #ifdef INET6
3450 case AF_INET6:
3451 aa->ap.aph.ph.param_type = SCTP_DEL_IP_ADDRESS;
3452 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_addr_param);
3453 aa->ap.addrp.ph.param_type = SCTP_IPV6_ADDRESS;
3454 aa->ap.addrp.ph.param_length = sizeof(struct sctp_ipv6addr_param);
3455 /* No need to add an address, we are using 0.0.0.0 */
3456 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3457 break;
3458 #endif
3459 }
3460 /* Now we must hunt the addresses and add all global addresses */
3461 if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
3462 struct sctp_vrf *vrf = NULL;
3463 struct sctp_ifn *sctp_ifnp;
3464 uint32_t vrf_id;
3465
3466 vrf_id = stcb->sctp_ep->def_vrf_id;
3467 vrf = sctp_find_vrf(vrf_id);
3468 if (vrf == NULL) {
3469 goto skip_rest;
3470 }
3471 SCTP_IPI_ADDR_RLOCK();
3472 LIST_FOREACH(sctp_ifnp, &vrf->ifnlist, next_ifn) {
3473 LIST_FOREACH(sctp_ifap, &sctp_ifnp->ifalist, next_ifa) {
3474 switch (sctp_ifap->address.sa.sa_family) {
3475 #ifdef INET
3476 case AF_INET:
3477 to = &sctp_ifap->address.sin;
3478 if (IN4_ISPRIVATE_ADDRESS(&to->sin_addr)) {
3479 continue;
3480 }
3481 if (IN4_ISLOOPBACK_ADDRESS(&to->sin_addr)) {
3482 continue;
3483 }
3484 break;
3485 #endif
3486 #ifdef INET6
3487 case AF_INET6:
3488 to6 = &sctp_ifap->address.sin6;
3489 if (IN6_IS_ADDR_LOOPBACK(&to6->sin6_addr)) {
3490 continue;
3491 }
3492 if (IN6_IS_ADDR_LINKLOCAL(&to6->sin6_addr)) {
3493 continue;
3494 }
3495 break;
3496 #endif
3497 default:
3498 continue;
3499 }
3500 sctp_asconf_queue_mgmt(stcb, sctp_ifap, SCTP_ADD_IP_ADDRESS);
3501 }
3502 }
3503 SCTP_IPI_ADDR_RUNLOCK();
3504 } else {
3505 struct sctp_laddr *laddr;
3506
3507 LIST_FOREACH(laddr, &stcb->sctp_ep->sctp_addr_list, sctp_nxt_addr) {
3508 if (laddr->ifa == NULL) {
3509 continue;
3510 }
3511 if (laddr->ifa->localifa_flags & SCTP_BEING_DELETED)
3512 /*
3513 * Address being deleted by the system, dont
3514 * list.
3515 */
3516 continue;
3517 if (laddr->action == SCTP_DEL_IP_ADDRESS) {
3518 /*
3519 * Address being deleted on this ep don't
3520 * list.
3521 */
3522 continue;
3523 }
3524 sctp_ifap = laddr->ifa;
3525 switch (sctp_ifap->address.sa.sa_family) {
3526 #ifdef INET
3527 case AF_INET:
3528 to = &sctp_ifap->address.sin;
3529 if (IN4_ISPRIVATE_ADDRESS(&to->sin_addr)) {
3530 continue;
3531 }
3532 if (IN4_ISLOOPBACK_ADDRESS(&to->sin_addr)) {
3533 continue;
3534 }
3535 break;
3536 #endif
3537 #ifdef INET6
3538 case AF_INET6:
3539 to6 = &sctp_ifap->address.sin6;
3540 if (IN6_IS_ADDR_LOOPBACK(&to6->sin6_addr)) {
3541 continue;
3542 }
3543 if (IN6_IS_ADDR_LINKLOCAL(&to6->sin6_addr)) {
3544 continue;
3545 }
3546 break;
3547 #endif
3548 default:
3549 continue;
3550 }
3551 sctp_asconf_queue_mgmt(stcb, sctp_ifap, SCTP_ADD_IP_ADDRESS);
3552 }
3553 }
3554 skip_rest:
3555 /* Now we must send the asconf into the queue */
3556 sctp_send_asconf(stcb, net, SCTP_ADDR_NOT_LOCKED);
3557 }
Cache object: c7127f0237b34183878ab8fbd858b9a5
|