1 /* 2 * Copyright (c) 2000-2024 Apple Inc. All rights reserved. 3 * 4 * @APPLE_OSREFERENCE_LICENSE_HEADER_START@ 5 * 6 * This file contains Original Code and/or Modifications of Original Code 7 * as defined in and that are subject to the Apple Public Source License 8 * Version 2.0 (the 'License'). You may not use this file except in 9 * compliance with the License. The rights granted to you under the License 10 * may not be used to create, or enable the creation or redistribution of, 11 * unlawful or unlicensed copies of an Apple operating system, or to 12 * circumvent, violate, or enable the circumvention or violation of, any 13 * terms of an Apple operating system software license agreement. 14 * 15 * Please obtain a copy of the License at 16 * http://www.opensource.apple.com/apsl/ and read it before using this file. 17 * 18 * The Original Code and all software distributed under the License are 19 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER 20 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, 21 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, 22 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. 23 * Please see the License for the specific language governing rights and 24 * limitations under the License. 25 * 26 * @APPLE_OSREFERENCE_LICENSE_HEADER_END@ 27 */ 28 29 /* 30 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. 31 * All rights reserved. 32 * 33 * Redistribution and use in source and binary forms, with or without 34 * modification, are permitted provided that the following conditions 35 * are met: 36 * 1. Redistributions of source code must retain the above copyright 37 * notice, this list of conditions and the following disclaimer. 38 * 2. Redistributions in binary form must reproduce the above copyright 39 * notice, this list of conditions and the following disclaimer in the 40 * documentation and/or other materials provided with the distribution. 41 * 3. Neither the name of the project nor the names of its contributors 42 * may be used to endorse or promote products derived from this software 43 * without specific prior written permission. 44 * 45 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND 46 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 47 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 48 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE 49 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 50 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 51 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 52 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 53 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 54 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 55 * SUCH DAMAGE. 56 */ 57 58 /* 59 * Copyright (c) 1982, 1986, 1993 60 * The Regents of the University of California. All rights reserved. 61 * 62 * Redistribution and use in source and binary forms, with or without 63 * modification, are permitted provided that the following conditions 64 * are met: 65 * 1. Redistributions of source code must retain the above copyright 66 * notice, this list of conditions and the following disclaimer. 67 * 2. Redistributions in binary form must reproduce the above copyright 68 * notice, this list of conditions and the following disclaimer in the 69 * documentation and/or other materials provided with the distribution. 70 * 3. All advertising materials mentioning features or use of this software 71 * must display the following acknowledgement: 72 * This product includes software developed by the University of 73 * California, Berkeley and its contributors. 74 * 4. Neither the name of the University nor the names of its contributors 75 * may be used to endorse or promote products derived from this software 76 * without specific prior written permission. 77 * 78 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 79 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 80 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 81 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 82 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 83 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 84 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 85 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 86 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 87 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 88 * SUCH DAMAGE. 89 * 90 * @(#)ip_var.h 8.1 (Berkeley) 6/10/93 91 */ 92 93 #ifndef _NETINET6_IP6_VAR_H_ 94 #define _NETINET6_IP6_VAR_H_ 95 #include <sys/appleapiopts.h> 96 97 #ifdef BSD_KERNEL_PRIVATE 98 #include <kern/zalloc.h> 99 100 #include <net/ethernet.h> 101 #include <net/if.h> 102 103 #include <netinet6/in6_var.h> 104 105 #include <net/if_private.h> 106 107 #include <netinet6/in6_var.h> 108 109 struct ip6asfrag; 110 /* 111 * IP6 reassembly queue structure. Each fragment 112 * being reassembled is attached to one of these structures. 113 */ 114 struct ip6q { 115 struct ip6asfrag *ip6q_down; 116 struct ip6asfrag *ip6q_up; 117 u_int32_t ip6q_ident; 118 u_int8_t ip6q_nxt; 119 u_int8_t ip6q_ecn; 120 u_int8_t ip6q_ttl; 121 struct in6_addr ip6q_src, ip6q_dst; 122 struct ip6q *ip6q_next; 123 struct ip6q *ip6q_prev; 124 int ip6q_unfrglen; /* len of unfragmentable part */ 125 int ip6q_nfrag; /* # of fragments */ 126 uint32_t ip6q_csum_flags; /* checksum flags */ 127 uint32_t ip6q_csum; /* partial checksum value */ 128 uint32_t ip6q_flags; 129 uint32_t ip6q_dst_ifscope, ip6q_src_ifscope; 130 #define IP6QF_DIRTY 0x00000001 131 }; 132 133 struct ip6_moptions { 134 decl_lck_mtx_data(, im6o_lock); 135 uint32_t im6o_refcnt; /* ref count */ 136 uint32_t im6o_debug; /* see ifa_debug flags */ 137 struct ifnet *im6o_multicast_ifp; /* ifp for outgoing multicasts */ 138 u_char im6o_multicast_hlim; /* hoplimit for outgoing multicasts */ 139 u_char im6o_multicast_loop; /* 1 >= hear sends if a member */ 140 u_short im6o_num_memberships; /* no. memberships this socket */ 141 u_short im6o_max_memberships; /* max memberships this socket */ 142 u_short im6o_max_filters; /* max filters this socket */ 143 struct in6_multi **__counted_by(im6o_max_memberships) im6o_membership; 144 /* group memberships */ 145 struct in6_mfilter *__counted_by(im6o_max_filters) im6o_mfilters; 146 /* source filters */ 147 void (*im6o_trace) /* callback fn for tracing refs */ 148 (struct ip6_moptions *, int); 149 }; 150 151 #define IM6O_LOCK_ASSERT_HELD(_im6o) \ 152 LCK_MTX_ASSERT(&(_im6o)->im6o_lock, LCK_MTX_ASSERT_OWNED) 153 154 #define IM6O_LOCK_ASSERT_NOTHELD(_im6o) \ 155 LCK_MTX_ASSERT(&(_im6o)->im6o_lock, LCK_MTX_ASSERT_NOTOWNED) 156 157 #define IM6O_LOCK(_im6o) \ 158 lck_mtx_lock(&(_im6o)->im6o_lock) 159 160 #define IM6O_LOCK_SPIN(_im6o) \ 161 lck_mtx_lock_spin(&(_im6o)->im6o_lock) 162 163 #define IM6O_CONVERT_LOCK(_im6o) do { \ 164 IM6O_LOCK_ASSERT_HELD(_im6o); \ 165 lck_mtx_convert_spin(&(_im6o)->im6o_lock); \ 166 } while (0) 167 168 #define IM6O_UNLOCK(_im6o) \ 169 lck_mtx_unlock(&(_im6o)->im6o_lock) 170 171 #define IM6O_ADDREF(_im6o) \ 172 im6o_addref(_im6o, 0) 173 174 #define IM6O_ADDREF_LOCKED(_im6o) \ 175 im6o_addref(_im6o, 1) 176 177 #define IM6O_REMREF(_im6o) \ 178 im6o_remref(_im6o) 179 180 struct ip6_exthdrs { 181 struct mbuf *ip6e_ip6; 182 struct mbuf *ip6e_hbh; 183 struct mbuf *ip6e_dest1; 184 struct mbuf *ip6e_rthdr; 185 struct mbuf *ip6e_dest2; 186 boolean_t merged; 187 }; 188 189 /* 190 * Control options for outgoing packets 191 */ 192 193 /* Routing header related info */ 194 struct ip6po_rhinfo { 195 struct ip6_rthdr *ip6po_rhi_rthdr; /* Routing header */ 196 struct route_in6 ip6po_rhi_route; /* Route to the 1st hop */ 197 }; 198 #define ip6po_rthdr ip6po_rhinfo.ip6po_rhi_rthdr 199 #define ip6po_route ip6po_rhinfo.ip6po_rhi_route 200 201 /* Nexthop related info */ 202 struct ip6po_nhinfo { 203 struct sockaddr *ip6po_nhi_nexthop; 204 struct route_in6 ip6po_nhi_route; /* Route to the nexthop */ 205 }; 206 #define ip6po_nexthop ip6po_nhinfo.ip6po_nhi_nexthop 207 #define ip6po_nextroute ip6po_nhinfo.ip6po_nhi_route 208 209 struct ip6_pktopts { 210 struct mbuf *ip6po_m; /* Pointer to mbuf storing the data */ 211 int ip6po_hlim; /* Hoplimit for outgoing packets */ 212 213 /* Outgoing IF/address information */ 214 struct in6_pktinfo *ip6po_pktinfo; 215 216 /* Next-hop address information */ 217 struct ip6po_nhinfo ip6po_nhinfo; 218 219 struct ip6_hbh *ip6po_hbh; /* Hop-by-Hop options header */ 220 221 /* Destination options header (before a routing header) */ 222 struct ip6_dest *ip6po_dest1; 223 224 /* Routing header related info. */ 225 struct ip6po_rhinfo ip6po_rhinfo; 226 227 /* Destination options header (after a routing header) */ 228 struct ip6_dest *ip6po_dest2; 229 230 int ip6po_tclass; /* traffic class */ 231 232 int ip6po_minmtu; /* fragment vs PMTU discovery policy */ 233 #define IP6PO_MINMTU_MCASTONLY -1 /* default; send at min MTU for multicast */ 234 #define IP6PO_MINMTU_DISABLE 0 /* always perform pmtu disc */ 235 #define IP6PO_MINMTU_ALL 1 /* always send at min MTU */ 236 237 /* whether temporary addresses are preferred as source address */ 238 int ip6po_prefer_tempaddr; 239 240 #define IP6PO_TEMPADDR_SYSTEM -1 /* follow the system default */ 241 #define IP6PO_TEMPADDR_NOTPREFER 0 /* not prefer temporary address */ 242 #define IP6PO_TEMPADDR_PREFER 1 /* prefer temporary address */ 243 244 int ip6po_flags; 245 #if 0 /* parameters in this block is obsolete. do not reuse the values. */ 246 #define IP6PO_REACHCONF 0x01 /* upper-layer reachability confirmation. */ 247 #define IP6PO_MINMTU 0x02 /* use minimum MTU (IPV6_USE_MIN_MTU) */ 248 #endif 249 #define IP6PO_DONTFRAG 0x04 /* no fragmentation (IPV6_DONTFRAG) */ 250 #define IP6PO_USECOA 0x08 /* use care of address */ 251 }; 252 253 /* 254 * Control options for incoming packets 255 */ 256 #endif /* BSD_KERNEL_PRIVATE */ 257 258 #define IP6S_SRCRULE_COUNT 16 259 #include <netinet6/scope6_var.h> 260 261 struct ip6stat { 262 u_quad_t ip6s_total; /* total packets received */ 263 u_quad_t ip6s_tooshort; /* packet too short */ 264 u_quad_t ip6s_toosmall; /* not enough data */ 265 u_quad_t ip6s_fragments; /* fragments received */ 266 u_quad_t ip6s_fragdropped; /* frags dropped(dups, out of space) */ 267 u_quad_t ip6s_fragtimeout; /* fragments timed out */ 268 u_quad_t ip6s_fragoverflow; /* fragments that exceeded limit */ 269 u_quad_t ip6s_forward; /* packets forwarded */ 270 u_quad_t ip6s_cantforward; /* packets rcvd for unreachable dest */ 271 u_quad_t ip6s_redirectsent; /* packets forwarded on same net */ 272 u_quad_t ip6s_delivered; /* datagrams delivered to upper level */ 273 u_quad_t ip6s_localout; /* total ip packets generated here */ 274 u_quad_t ip6s_odropped; /* lost packets due to nobufs, etc. */ 275 u_quad_t ip6s_reassembled; /* total packets reassembled ok */ 276 u_quad_t ip6s_atmfrag_rcvd; /* atomic fragments received */ 277 u_quad_t ip6s_fragmented; /* datagrams successfully fragmented */ 278 u_quad_t ip6s_ofragments; /* output fragments created */ 279 u_quad_t ip6s_cantfrag; /* don't fragment flag was set, etc. */ 280 u_quad_t ip6s_badoptions; /* error in option processing */ 281 u_quad_t ip6s_noroute; /* packets discarded due to no route */ 282 u_quad_t ip6s_badvers; /* ip6 version != 6 */ 283 u_quad_t ip6s_rawout; /* total raw ip packets generated */ 284 u_quad_t ip6s_badscope; /* scope error */ 285 u_quad_t ip6s_notmember; /* don't join this multicast group */ 286 u_quad_t ip6s_nxthist[256]; /* next header history */ 287 u_quad_t ip6s_m1; /* one mbuf */ 288 u_quad_t ip6s_m2m[32]; /* two or more mbuf */ 289 u_quad_t ip6s_mext1; /* one ext mbuf */ 290 u_quad_t ip6s_mext2m; /* two or more ext mbuf */ 291 u_quad_t ip6s_exthdrtoolong; /* ext hdr are not continuous */ 292 u_quad_t ip6s_nogif; /* no match gif found */ 293 u_quad_t ip6s_toomanyhdr; /* discarded due to too many headers */ 294 295 /* 296 * statistics for improvement of the source address selection 297 * algorithm: 298 */ 299 /* number of times that address selection fails */ 300 u_quad_t ip6s_sources_none; 301 /* number of times that an address on the outgoing I/F is chosen */ 302 u_quad_t ip6s_sources_sameif[SCOPE6_ID_MAX]; 303 /* number of times that an address on a non-outgoing I/F is chosen */ 304 u_quad_t ip6s_sources_otherif[SCOPE6_ID_MAX]; 305 /* 306 * number of times that an address that has the same scope 307 * from the destination is chosen. 308 */ 309 u_quad_t ip6s_sources_samescope[SCOPE6_ID_MAX]; 310 /* 311 * number of times that an address that has a different scope 312 * from the destination is chosen. 313 */ 314 u_quad_t ip6s_sources_otherscope[SCOPE6_ID_MAX]; 315 /* number of times that a deprecated address is chosen */ 316 u_quad_t ip6s_sources_deprecated[SCOPE6_ID_MAX]; 317 318 u_quad_t ip6s_forward_cachehit; 319 u_quad_t ip6s_forward_cachemiss; 320 321 /* number of times that each rule of source selection is applied. */ 322 u_quad_t ip6s_sources_rule[IP6S_SRCRULE_COUNT]; 323 324 /* number of times we ignored address on expensive secondary interfaces */ 325 u_quad_t ip6s_sources_skip_expensive_secondary_if; 326 327 /* pkt dropped, no mbufs for control data */ 328 u_quad_t ip6s_pktdropcntrl; 329 330 /* total packets trimmed/adjusted */ 331 u_quad_t ip6s_adj; 332 /* hwcksum info discarded during adjustment */ 333 u_quad_t ip6s_adj_hwcsum_clr; 334 335 /* duplicate address detection collisions */ 336 u_quad_t ip6s_dad_collide; 337 338 /* DAD NS looped back */ 339 u_quad_t ip6s_dad_loopcount; 340 341 /* NECP policy related drop */ 342 u_quad_t ip6s_necp_policy_drop; 343 344 /* CLAT46 stats */ 345 u_quad_t ip6s_clat464_in_tooshort_drop; 346 u_quad_t ip6s_clat464_in_nov6addr_drop; 347 u_quad_t ip6s_clat464_in_nov4addr_drop; 348 u_quad_t ip6s_clat464_in_v4synthfail_drop; 349 u_quad_t ip6s_clat464_in_64transfail_drop; 350 u_quad_t ip6s_clat464_in_64proto_transfail_drop; 351 u_quad_t ip6s_clat464_in_64frag_transfail_drop; 352 u_quad_t ip6s_clat464_in_invalpbuf_drop; 353 u_quad_t ip6s_clat464_in_success; 354 u_quad_t ip6s_clat464_in_drop; 355 u_quad_t ip6s_clat464_in_v4_drop; 356 357 u_quad_t ip6s_clat464_out_nov6addr_drop; 358 u_quad_t ip6s_clat464_out_v6synthfail_drop; 359 u_quad_t ip6s_clat464_out_46transfail_drop; 360 u_quad_t ip6s_clat464_out_46proto_transfail_drop; 361 u_quad_t ip6s_clat464_out_46frag_transfail_drop; 362 u_quad_t ip6s_clat464_out_invalpbuf_drop; 363 u_quad_t ip6s_clat464_out_success; 364 u_quad_t ip6s_clat464_out_drop; 365 366 u_quad_t ip6s_clat464_v6addr_conffail; 367 u_quad_t ip6s_clat464_plat64_pfx_setfail; 368 u_quad_t ip6s_clat464_plat64_pfx_getfail; 369 370 u_quad_t ip6s_overlap_frag_drop; 371 372 u_quad_t ip6s_rcv_if_weak_match; 373 u_quad_t ip6s_rcv_if_no_match; 374 }; 375 376 enum ip6s_sources_rule_index { 377 IP6S_SRCRULE_0, IP6S_SRCRULE_1, IP6S_SRCRULE_2, IP6S_SRCRULE_3, IP6S_SRCRULE_4, 378 IP6S_SRCRULE_5, IP6S_SRCRULE_5_5, IP6S_SRCRULE_6, IP6S_SRCRULE_7, 379 IP6S_SRCRULE_7x, IP6S_SRCRULE_8 380 }; 381 382 #ifdef BSD_KERNEL_PRIVATE 383 /* 384 * IPv6 onion peeling state. 385 * 386 * This is currently allocated for packets destined to the all-nodes 387 * multicast address over Ethernet. IPv6 destination address information 388 * is now stored in the mbuf itself. 389 */ 390 struct ip6aux { 391 u_int32_t ip6a_flags; 392 #define IP6A_HASEEN 0x01 /* HA was present */ 393 394 #ifdef notyet 395 #define IP6A_SWAP 0x02 /* swapped home/care-of on packet */ 396 #define IP6A_BRUID 0x04 /* BR Unique Identifier was present */ 397 #define IP6A_RTALERTSEEN 0x08 /* rtalert present */ 398 399 /* ip6.ip6_src */ 400 struct in6_addr ip6a_careof; /* care-of address of the peer */ 401 struct in6_addr ip6a_home; /* home address of the peer */ 402 u_int16_t ip6a_bruid; /* BR unique identifier */ 403 404 /* rtalert */ 405 u_int16_t ip6a_rtalert; /* rtalert option value */ 406 #endif /* notyet */ 407 408 /* ether source address if all-nodes multicast destination */ 409 u_char ip6a_ehsrc[ETHER_ADDR_LEN]; 410 }; 411 412 /* flags passed to ip6_output as last parameter */ 413 #define IPV6_UNSPECSRC 0x01 /* allow :: as the source address */ 414 #define IPV6_FORWARDING 0x02 /* most of IPv6 header exists */ 415 #define IPV6_MINMTU 0x04 /* use minimum MTU (IPV6_USE_MIN_MTU) */ 416 #define IPV6_FLAG_NOSRCIFSEL 0x80 /* bypass source address selection */ 417 #define IPV6_OUTARGS 0x100 /* has ancillary output info */ 418 419 #ifdef BSD_KERNEL_PRIVATE 420 #define IP6_HDR_ALIGNED_P(_ip6) ((((uintptr_t)(_ip6)) & ((uintptr_t)3)) == 0) 421 422 /* 423 * On platforms which require strict alignment (currently for anything but 424 * i386 or x86_64 or arm64), this macro checks whether the pointer to the IP header 425 * is 32-bit aligned, and assert otherwise. 426 */ 427 #if defined(__i386__) || defined(__x86_64__) || defined(__arm64__) 428 #define IP6_HDR_STRICT_ALIGNMENT_CHECK(_ip6) do { } while (0) 429 #else /* !__i386__ && !__x86_64__ && !__arm64__ */ 430 #define IP6_HDR_STRICT_ALIGNMENT_CHECK(_ip6) do { \ 431 if (!IP_HDR_ALIGNED_P(_ip6)) { \ 432 panic_plain("\n%s: Unaligned IPv6 header %p\n", \ 433 __func__, _ip6); \ 434 } \ 435 } while (0) 436 #endif /* !__i386__ && !__x86_64__ && !__arm64__ */ 437 #endif /* BSD_KERNEL_PRIVATE */ 438 439 #include <net/flowadv.h> 440 441 /* 442 * Extra information passed to ip6_output when IPV6_OUTARGS is set. 443 */ 444 struct ip6_out_args { 445 unsigned int ip6oa_boundif; /* bound outgoing interface */ 446 struct flowadv ip6oa_flowadv; /* flow advisory code */ 447 u_int32_t ip6oa_flags; /* IP6OAF flags (see below) */ 448 #define IP6OAF_SELECT_SRCIF 0x00000001 /* src interface selection */ 449 #define IP6OAF_BOUND_IF 0x00000002 /* boundif value is valid */ 450 #define IP6OAF_BOUND_SRCADDR 0x00000004 /* bound to src address */ 451 #define IP6OAF_NO_CELLULAR 0x00000010 /* skip IFT_CELLULAR */ 452 #define IP6OAF_NO_EXPENSIVE 0x00000020 /* skip IFEF_EXPENSIVE */ 453 #define IP6OAF_AWDL_UNRESTRICTED 0x00000040 /* privileged AWDL */ 454 #define IP6OAF_QOSMARKING_ALLOWED 0x00000080 /* policy allows Fastlane DSCP marking */ 455 #define IP6OAF_INTCOPROC_ALLOWED 0x00000100 /* access to internal coproc interfaces */ 456 #define IP6OAF_NO_LOW_POWER 0x00000200 /* skip low power */ 457 #define IP6OAF_NO_CONSTRAINED 0x00000400 /* skip IFXF_CONSTRAINED */ 458 #define IP6OAF_SKIP_PF 0x00000800 /* skip PF */ 459 #define IP6OAF_DONT_FRAG 0x00001000 /* Don't fragment */ 460 #define IP6OAF_REDO_QOSMARKING_POLICY 0x00002000 /* Re-evaluate QOS marking policy */ 461 #define IP6OAF_R_IFDENIED 0x00004000 /* return flag: denied access to interface */ 462 #define IP6OAF_MANAGEMENT_ALLOWED 0x00008000 /* access to management interfaces */ 463 #define IP6OAF_ULTRA_CONSTRAINED_ALLOWED 0x00010000 /* access to ultra constrained interfaces */ 464 int ip6oa_sotc; /* traffic class for Fastlane DSCP mapping */ 465 int ip6oa_netsvctype; 466 int32_t qos_marking_gencount; 467 }; 468 469 #define IP6OAF_RET_MASK (IP6OAF_R_IFDENIED) 470 471 extern struct ip6stat ip6stat; /* statistics */ 472 extern int ip6_defhlim; /* default hop limit */ 473 extern int ip6_defmcasthlim; /* default multicast hop limit */ 474 extern int ip6_forwarding; /* act as router? */ 475 extern int ip6_gif_hlim; /* Hop limit for gif encap packet */ 476 extern int ip6_use_deprecated; /* allow deprecated addr as source */ 477 extern int ip6_rr_prune; /* router renumbering prefix */ 478 /* walk list every 5 sec. */ 479 extern int ip6_mcast_pmtu; /* enable pMTU discovery for multicast? */ 480 #define ip6_mapped_addr_on (!ip6_v6only) 481 extern int ip6_v6only; 482 483 extern int ip6_neighborgcthresh; /* Threshold # of NDP entries for GC */ 484 extern int ip6_maxifprefixes; /* Max acceptable prefixes via RA per IF */ 485 extern int ip6_maxifdefrouters; /* Max acceptable def routers via RA */ 486 extern int ip6_maxdynroutes; /* Max # of routes created via redirect */ 487 extern int ip6_sendredirects; /* send IP redirects when forwarding? */ 488 extern int ip6_accept_rtadv; /* deprecated */ 489 extern int ip6_log_interval; 490 extern uint64_t ip6_log_time; 491 extern int ip6_hdrnestlimit; /* upper limit of # of extension headers */ 492 extern int ip6_dad_count; /* DupAddrDetectionTransmits */ 493 494 /* RFC4193 Unique Local Unicast Prefixes only */ 495 extern int ip6_only_allow_rfc4193_prefix; 496 497 extern int ip6_auto_flowlabel; 498 extern int ip6_auto_linklocal; 499 500 extern int ip6_anonportmin; /* minimum ephemeral port */ 501 extern int ip6_anonportmax; /* maximum ephemeral port */ 502 extern int ip6_lowportmin; /* minimum reserved port */ 503 extern int ip6_lowportmax; /* maximum reserved port */ 504 505 extern int ip6_use_tempaddr; /* whether to use temporary addresses. */ 506 extern int ip6_ula_use_tempaddr; /* whether to use temporary ULA addresses */ 507 508 /* whether to prefer temporary addresses in the source address selection */ 509 extern int ip6_prefer_tempaddr; 510 511 /* whether to use the default scope zone when unspecified */ 512 extern int ip6_use_defzone; 513 514 /* how many times to try allocating cga address after conflict */ 515 extern int ip6_cga_conflict_retries; 516 #define IPV6_CGA_CONFLICT_RETRIES_DEFAULT 3 517 #define IPV6_CGA_CONFLICT_RETRIES_MAX 10 518 519 extern struct pr_usrreqs rip6_usrreqs; 520 extern struct pr_usrreqs icmp6_dgram_usrreqs; 521 522 struct sockopt; 523 struct inpcb; 524 struct ip6_hdr; 525 struct in6_ifaddr; 526 struct ip6protosw; 527 struct domain; 528 529 extern int icmp6_ctloutput(struct socket *, struct sockopt *); 530 extern int icmp6_dgram_ctloutput(struct socket *, struct sockopt *); 531 extern int icmp6_dgram_send(struct socket *, int, struct mbuf *, 532 struct sockaddr *, struct mbuf *, struct proc *); 533 extern int icmp6_dgram_attach(struct socket *, int, struct proc *); 534 535 extern void ip6_register_m_tag(void); 536 537 extern void ip6_init(struct ip6protosw *, struct domain *); 538 extern void ip6_input(struct mbuf *); 539 extern void ip6_setsrcifaddr_info(struct mbuf *, uint32_t, struct in6_ifaddr *); 540 extern void ip6_setdstifaddr_info(struct mbuf *, uint32_t, struct in6_ifaddr *); 541 extern int ip6_getsrcifaddr_info(struct mbuf *, uint32_t *, uint32_t *); 542 extern int ip6_getdstifaddr_info(struct mbuf *, uint32_t *, uint32_t *); 543 extern uint32_t ip6_input_getsrcifscope(struct mbuf *); 544 extern uint32_t ip6_input_getdstifscope(struct mbuf *); 545 extern void ip6_output_setsrcifscope(struct mbuf *, uint32_t, struct in6_ifaddr *); 546 extern void ip6_output_setdstifscope(struct mbuf *, uint32_t, struct in6_ifaddr *); 547 extern uint32_t ip6_output_getsrcifscope(struct mbuf *); 548 extern uint32_t ip6_output_getdstifscope(struct mbuf *); 549 550 extern void ip6_freepcbopts(struct ip6_pktopts *); 551 extern int ip6_unknown_opt(uint8_t * __counted_by(optplen) optp, size_t optplen, struct mbuf *, size_t); 552 extern char *ip6_get_prevhdr(struct mbuf *, int); 553 extern int ip6_nexthdr(struct mbuf *, int, int, int *); 554 extern int ip6_lasthdr(struct mbuf *, int, int, int *); 555 extern boolean_t ip6_pkt_has_ulp(struct mbuf *m); 556 557 extern void ip6_moptions_init(void); 558 extern struct ip6_moptions *ip6_allocmoptions(zalloc_flags_t); 559 extern void im6o_addref(struct ip6_moptions *, int); 560 extern void im6o_remref(struct ip6_moptions *); 561 562 extern struct ip6aux *ip6_addaux(struct mbuf *); 563 extern struct ip6aux *ip6_findaux(struct mbuf *); 564 extern void ip6_delaux(struct mbuf *); 565 566 extern int ip6_process_hopopts(struct mbuf *, u_int8_t *__sized_by(hbhlen) opthead, int hbhlen, 567 u_int32_t *, u_int32_t *); 568 extern struct mbuf **ip6_savecontrol_v4(struct inpcb *, struct mbuf *, 569 struct mbuf **, int *); 570 extern int ip6_savecontrol(struct inpcb *, struct mbuf *, struct mbuf **); 571 extern struct mbuf *ip6_forward(struct mbuf *, struct route_in6 *, int); 572 extern void ip6_notify_pmtu(struct inpcb *, struct sockaddr_in6 *, u_int32_t *); 573 extern void ip6_mloopback(struct ifnet *, struct ifnet *, struct mbuf *, 574 struct sockaddr_in6 *, uint32_t, int32_t); 575 extern int ip6_output(struct mbuf *, struct ip6_pktopts *, struct route_in6 *, 576 int, struct ip6_moptions *, struct ifnet **, struct ip6_out_args *); 577 extern int ip6_output_list(struct mbuf *, int, struct ip6_pktopts *, 578 struct route_in6 *, int, struct ip6_moptions *, struct ifnet **, 579 struct ip6_out_args *); 580 extern int ip6_ctloutput(struct socket *, struct sockopt *); 581 extern int ip6_raw_ctloutput(struct socket *, struct sockopt *); 582 extern void ip6_initpktopts(struct ip6_pktopts *); 583 extern int ip6_setpktoptions(struct mbuf *, struct ip6_pktopts *, int, int); 584 extern void ip6_clearpktopts(struct ip6_pktopts *, int); 585 extern struct ip6_pktopts *ip6_copypktopts(struct ip6_pktopts *, zalloc_flags_t); 586 extern int ip6_optlen(struct inpcb *); 587 extern void ip6_drain(void); 588 extern int ip6_do_fragmentation(struct mbuf **, uint32_t, struct ifnet *, uint32_t, 589 struct ip6_hdr *, uint8_t *, uint32_t, int, uint32_t); 590 591 extern int route6_input(struct mbuf **, int *, int); 592 593 extern void frag6_init(void); 594 extern int frag6_input(struct mbuf **, int *, int); 595 extern void frag6_drain(void); 596 597 extern int rip6_input(struct mbuf **, int *, int); 598 extern void rip6_ctlinput(int, struct sockaddr *, void *, struct ifnet *); 599 extern int rip6_ctloutput(struct socket *so, struct sockopt *sopt); 600 extern int rip6_output(struct mbuf *, struct socket *, struct sockaddr_in6 *, 601 struct mbuf *, int); 602 603 extern int dest6_input(struct mbuf **, int *, int); 604 /* 605 * IPv6 source address selection hints 606 */ 607 #define IPV6_SRCSEL_HINT_PREFER_TMPADDR 0x00000001 608 609 extern struct ifaddr * in6_selectsrc_core_ifa(struct sockaddr_in6 *, struct ifnet *); 610 extern struct in6_addr * in6_selectsrc_core(struct sockaddr_in6 *, 611 uint32_t, struct ifnet *, int, struct in6_addr *, 612 struct ifnet **, int *, struct ifaddr **, struct route_in6 *, boolean_t); 613 extern struct in6_addr *in6_selectsrc(struct sockaddr_in6 *, 614 struct ip6_pktopts *, struct inpcb *, struct route_in6 *, 615 struct ifnet **, struct in6_addr *, unsigned int, int *); 616 extern struct in6_addrpolicy *in6_addrsel_lookup_policy(struct sockaddr_in6 *); 617 extern int in6_selectroute(struct sockaddr_in6 *, struct sockaddr_in6 *, 618 struct ip6_pktopts *, struct ip6_moptions *, struct in6_ifaddr **, 619 struct route_in6 *, struct ifnet **, struct rtentry **, int, 620 struct ip6_out_args *); 621 extern int ip6_setpktopts(struct mbuf *control, struct ip6_pktopts *opt, 622 struct ip6_pktopts *stickyopt, int uproto); 623 extern uint32_t ip6_randomid(uint64_t); 624 extern uint32_t ip6_randomflowlabel(void); 625 #endif /* BSD_KERNEL_PRIVATE */ 626 #endif /* !_NETINET6_IP6_VAR_H_ */ 627