xnu-10002.41.9/tests/net_bridge.c

*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions * Copyright (c) 2019-2023 Apple Inc. All rights reserved.
*699cd480SApple OSS Distributions *
*699cd480SApple OSS Distributions * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
*699cd480SApple OSS Distributions *
*699cd480SApple OSS Distributions * This file contains Original Code and/or Modifications of Original Code
*699cd480SApple OSS Distributions * as defined in and that are subject to the Apple Public Source License
*699cd480SApple OSS Distributions * Version 2.0 (the 'License'). You may not use this file except in
*699cd480SApple OSS Distributions * compliance with the License. The rights granted to you under the License
*699cd480SApple OSS Distributions * may not be used to create, or enable the creation or redistribution of,
*699cd480SApple OSS Distributions * unlawful or unlicensed copies of an Apple operating system, or to
*699cd480SApple OSS Distributions * circumvent, violate, or enable the circumvention or violation of, any
*699cd480SApple OSS Distributions * terms of an Apple operating system software license agreement.
*699cd480SApple OSS Distributions *
*699cd480SApple OSS Distributions * Please obtain a copy of the License at
*699cd480SApple OSS Distributions * http://www.opensource.apple.com/apsl/ and read it before using this file.
*699cd480SApple OSS Distributions *
*699cd480SApple OSS Distributions * The Original Code and all software distributed under the License are
*699cd480SApple OSS Distributions * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
*699cd480SApple OSS Distributions * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
*699cd480SApple OSS Distributions * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
*699cd480SApple OSS Distributions * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
*699cd480SApple OSS Distributions * Please see the License for the specific language governing rights and
*699cd480SApple OSS Distributions * limitations under the License.
*699cd480SApple OSS Distributions *
*699cd480SApple OSS Distributions * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions * net_bridge.c
*699cd480SApple OSS Distributions * - test if_bridge.c functionality
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#include <darwintest.h>
*699cd480SApple OSS Distributions#include <stdio.h>
*699cd480SApple OSS Distributions#include <unistd.h>
*699cd480SApple OSS Distributions#include <stddef.h>
*699cd480SApple OSS Distributions#include <stdlib.h>
*699cd480SApple OSS Distributions#include <string.h>
*699cd480SApple OSS Distributions#include <sys/socket.h>
*699cd480SApple OSS Distributions#include <arpa/inet.h>
*699cd480SApple OSS Distributions#include <sys/event.h>
*699cd480SApple OSS Distributions#include <net/if.h>
*699cd480SApple OSS Distributions#include <netinet/in.h>
*699cd480SApple OSS Distributions#include <netinet6/in6_var.h>
*699cd480SApple OSS Distributions#include <netinet6/nd6.h>
*699cd480SApple OSS Distributions#include <netinet/in.h>
*699cd480SApple OSS Distributions#include <netinet/ip.h>
*699cd480SApple OSS Distributions#include <netinet/udp.h>
*699cd480SApple OSS Distributions#include <netinet/tcp.h>
*699cd480SApple OSS Distributions#include <netinet/if_ether.h>
*699cd480SApple OSS Distributions#include <netinet/ip6.h>
*699cd480SApple OSS Distributions#include <netinet/icmp6.h>
*699cd480SApple OSS Distributions#include <net/if_arp.h>
*699cd480SApple OSS Distributions#include <net/bpf.h>
*699cd480SApple OSS Distributions#include <net/if_bridgevar.h>
*699cd480SApple OSS Distributions#include <net/if_fake_var.h>
*699cd480SApple OSS Distributions#include <sys/ioctl.h>
*699cd480SApple OSS Distributions#include <sys/types.h>
*699cd480SApple OSS Distributions#include <sys/stat.h>
*699cd480SApple OSS Distributions#include <errno.h>
*699cd480SApple OSS Distributions#include <pthread.h>
*699cd480SApple OSS Distributions#include <stdbool.h>
*699cd480SApple OSS Distributions#include <TargetConditionals.h>
*699cd480SApple OSS Distributions#include <darwintest_utils.h>
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#include "net_test_lib.h"
*699cd480SApple OSS Distributions#include "inet_transfer.h"
*699cd480SApple OSS Distributions#include "bpflib.h"
*699cd480SApple OSS Distributions#include "in_cksum.h"
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic bool S_cleaning_up;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define ALL_ADDRS (uint32_t)(-1)
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionstypedef struct {
*699cd480SApple OSS Distributions	char            ifname[IFNAMSIZ];       /* port we do I/O on */
*699cd480SApple OSS Distributions	ether_addr_t    mac;
*699cd480SApple OSS Distributions	char            member_ifname[IFNAMSIZ]; /* member of bridge */
*699cd480SApple OSS Distributions	ether_addr_t    member_mac;
*699cd480SApple OSS Distributions	int             fd;
*699cd480SApple OSS Distributions	u_int           unit;
*699cd480SApple OSS Distributions	u_int           num_addrs;
*699cd480SApple OSS Distributions	void *          rx_buf;
*699cd480SApple OSS Distributions	int             rx_buf_size;
*699cd480SApple OSS Distributions	bool            mac_nat;
*699cd480SApple OSS Distributions	struct in_addr  ip;
*699cd480SApple OSS Distributions	struct in6_addr ip6;
*699cd480SApple OSS Distributions	u_short         if_index;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	u_int           test_count;
*699cd480SApple OSS Distributions	u_int           test_address_count;
*699cd480SApple OSS Distributions	uint64_t        test_address_present;
*699cd480SApple OSS Distributions} switch_port, *switch_port_t;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionstypedef struct {
*699cd480SApple OSS Distributions	u_int           size;
*699cd480SApple OSS Distributions	u_int           count;
*699cd480SApple OSS Distributions	bool            mac_nat;
*699cd480SApple OSS Distributions	switch_port     list[1];
*699cd480SApple OSS Distributions} switch_port_list, * switch_port_list_t;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic struct in_addr   bridge_ip_addr;
*699cd480SApple OSS Distributionsstatic struct in6_addr  bridge_ipv6_addr;
*699cd480SApple OSS Distributionsstatic u_short          bridge_if_index;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic struct ifbareq *
*699cd480SApple OSS Distributionsbridge_rt_table_copy(u_int * ret_count);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_rt_table_log(struct ifbareq *rt_table, u_int count);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic struct ifbrmne *
*699cd480SApple OSS Distributionsbridge_mac_nat_entries_copy(u_int * ret_count);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_mac_nat_entries_log(struct ifbrmne * entries, u_int count);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define SETUP_FLAGS_MAC_NAT             0x1
*699cd480SApple OSS Distributions#define SETUP_FLAGS_CHECKSUM_OFFLOAD    0x2
*699cd480SApple OSS Distributions#define SETUP_FLAGS_ATTACH_STACK        0x4
*699cd480SApple OSS Distributions#define SETUP_FLAGS_TRAILERS            0x8
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define s6_addr16 __u6_addr.__u6_addr16
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/**
*699cd480SApple OSS Distributions** Packet creation/display
*699cd480SApple OSS Distributions**/
*699cd480SApple OSS Distributions#define BOOTP_SERVER_PORT       67
*699cd480SApple OSS Distributions#define BOOTP_CLIENT_PORT       68
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define TEST_SOURCE_PORT        14
*699cd480SApple OSS Distributions#define TEST_DEST_PORT          15
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define EA_UNIT_INDEX           4
*699cd480SApple OSS Distributions#define EA_ADDR_INDEX           5
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsset_ethernet_address(ether_addr_t *eaddr, u_int unit, u_int addr_index)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_char  *a = eaddr->octet;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	a[0] = 0x02;
*699cd480SApple OSS Distributions	a[2] = 0x00;
*699cd480SApple OSS Distributions	a[3] = 0x00;
*699cd480SApple OSS Distributions	a[1] = 0x00;
*699cd480SApple OSS Distributions	a[EA_UNIT_INDEX] = (u_char)unit;
*699cd480SApple OSS Distributions	a[EA_ADDR_INDEX] = (u_char)addr_index;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define TEN_NET                 0x0a000000
*699cd480SApple OSS Distributions#define TEN_1_NET               (TEN_NET | 0x010000)
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsget_ipv4_address(u_int unit, u_int addr_index, struct in_addr *ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	/* up to 255 units, 255 addresses */
*699cd480SApple OSS Distributions	ip->s_addr = htonl(TEN_1_NET | (unit << 8) | addr_index);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define IN6ADDR_ULA_INIT \
*699cd480SApple OSS Distributions	{{{ 0xfd, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, \
*699cd480SApple OSS Distributions	    0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }}}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic struct in6_addr ula_address = IN6ADDR_ULA_INIT;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define ULA_UNIT_INDEX  14
*699cd480SApple OSS Distributions#define ULA_ADDR_INDEX  15
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsget_ipv6_ula_address(u_int unit, u_int addr_index, struct in6_addr *ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	*ip = ula_address;
*699cd480SApple OSS Distributions	/* up to 255 units, 255 addresses */
*699cd480SApple OSS Distributions	ip->s6_addr[ULA_UNIT_INDEX] = (uint8_t)unit;
*699cd480SApple OSS Distributions	ip->s6_addr[ULA_ADDR_INDEX] = (uint8_t)addr_index;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define ND6_EUI64_GBIT  0x01
*699cd480SApple OSS Distributions#define ND6_EUI64_UBIT  0x02
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define ND6_EUI64_TO_IFID(in6) \
*699cd480SApple OSS Distributions	do {(in6)->s6_addr[8] ^= ND6_EUI64_UBIT; } while (0)
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsget_ipv6_ll_address(const ether_addr_t *mac, struct in6_addr * in6)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	const u_char *  addr = mac->octet;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(in6, sizeof(*in6));
*699cd480SApple OSS Distributions	in6->s6_addr16[0] = htons(0xfe80);
*699cd480SApple OSS Distributions	in6->s6_addr[8] = addr[0];
*699cd480SApple OSS Distributions	in6->s6_addr[9] = addr[1];
*699cd480SApple OSS Distributions	in6->s6_addr[10] = addr[2];
*699cd480SApple OSS Distributions	in6->s6_addr[11] = 0xff;
*699cd480SApple OSS Distributions	in6->s6_addr[12] = 0xfe;
*699cd480SApple OSS Distributions	in6->s6_addr[13] = addr[3];
*699cd480SApple OSS Distributions	in6->s6_addr[14] = addr[4];
*699cd480SApple OSS Distributions	in6->s6_addr[15] = addr[5];
*699cd480SApple OSS Distributions	ND6_EUI64_TO_IFID(in6);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsget_ip_address(uint8_t af, u_int unit, u_int addr_index, union ifbrip *ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	switch (af) {
*699cd480SApple OSS Distributions	case AF_INET:
*699cd480SApple OSS Distributions		get_ipv4_address(unit, addr_index, &ip->ifbrip_addr);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case AF_INET6:
*699cd480SApple OSS Distributions		get_ipv6_ula_address(unit, addr_index, &ip->ifbrip_addr6);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("unrecognized address family %u", af);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic bool
*699cd480SApple OSS Distributionsip_addresses_are_equal(uint8_t af, union ifbrip * ip1, union ifbrip * ip2)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bool    equal;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	switch (af) {
*699cd480SApple OSS Distributions	case AF_INET:
*699cd480SApple OSS Distributions		equal = (ip1->ifbrip_addr.s_addr == ip2->ifbrip_addr.s_addr);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case AF_INET6:
*699cd480SApple OSS Distributions		equal = IN6_ARE_ADDR_EQUAL(&ip1->ifbrip_addr6,
*699cd480SApple OSS Distributions		    &ip2->ifbrip_addr6);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("unrecognized address family %u", af);
*699cd480SApple OSS Distributions		equal = false;
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return equal;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic ether_addr_t ether_broadcast = {
*699cd480SApple OSS Distributions	{ 0xff, 0xff, 0xff, 0xff, 0xff, 0xff }
*699cd480SApple OSS Distributions};
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic ether_addr_t ether_external = {
*699cd480SApple OSS Distributions	{ 0x80, 0x00, 0x00, 0x00, 0x00, 0x01 }
*699cd480SApple OSS Distributions};
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic inline struct in_addr
*699cd480SApple OSS Distributionsget_external_ipv4_address(void)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct in_addr  ip;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* IP 10.1.255.1 */
*699cd480SApple OSS Distributions	ip.s_addr = htonl(TEN_1_NET | 0xff01);
*699cd480SApple OSS Distributions	return ip;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic inline void
*699cd480SApple OSS Distributionsget_external_ip_address(uint8_t af, union ifbrip * ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	switch (af) {
*699cd480SApple OSS Distributions	case AF_INET:
*699cd480SApple OSS Distributions		/* IP 10.1.255.1 */
*699cd480SApple OSS Distributions		ip->ifbrip_addr = get_external_ipv4_address();
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case AF_INET6:
*699cd480SApple OSS Distributions		/* fd80::1 */
*699cd480SApple OSS Distributions		ip->ifbrip_addr6 = ula_address;
*699cd480SApple OSS Distributions		ip->ifbrip_addr6.s6_addr[1] = 0x80;
*699cd480SApple OSS Distributions		ip->ifbrip_addr6.s6_addr[15] = 0x01;
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("unrecognized address family %u", af);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic inline void
*699cd480SApple OSS Distributionsget_broadcast_ip_address(uint8_t af, union ifbrip * ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	switch (af) {
*699cd480SApple OSS Distributions	case AF_INET:
*699cd480SApple OSS Distributions		ip->ifbrip_addr.s_addr = INADDR_BROADCAST;
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case AF_INET6:
*699cd480SApple OSS Distributions		/* 0xff0e::0 linklocal scope multicast */
*699cd480SApple OSS Distributions		ip->ifbrip_addr6 = in6addr_any;
*699cd480SApple OSS Distributions		ip->ifbrip_addr6.s6_addr[0] = 0xff;
*699cd480SApple OSS Distributions		ip->ifbrip_addr6.s6_addr[1] = __IPV6_ADDR_SCOPE_LINKLOCAL;
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("unrecognized address family %u", af);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionssiocaifaddr(int s, char *ifname, struct in_addr addr)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct ifaliasreq       ifra;
*699cd480SApple OSS Distributions	char                    ntopbuf_ip[INET_ADDRSTRLEN];
*699cd480SApple OSS Distributions	char                    ntopbuf_mask[INET_ADDRSTRLEN];
*699cd480SApple OSS Distributions	int                     ret;
*699cd480SApple OSS Distributions	struct sockaddr_in *    sin;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(&ifra, sizeof(ifra));
*699cd480SApple OSS Distributions	strncpy(ifra.ifra_name, ifname, sizeof(ifra.ifra_name));
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	sin = (struct sockaddr_in *)(void *)&ifra.ifra_addr;
*699cd480SApple OSS Distributions	sin->sin_len = sizeof(*sin);
*699cd480SApple OSS Distributions	sin->sin_family = AF_INET;
*699cd480SApple OSS Distributions	sin->sin_addr = addr;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	sin = (struct sockaddr_in *)(void *)&ifra.ifra_mask;
*699cd480SApple OSS Distributions	sin->sin_len = sizeof(*sin);
*699cd480SApple OSS Distributions	sin->sin_family = AF_INET;
*699cd480SApple OSS Distributions	sin->sin_addr.s_addr = htonl(IN_CLASSC_NET);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	ret = ioctl(s, SIOCAIFADDR, &ifra);
*699cd480SApple OSS Distributions	inet_ntop(AF_INET, &addr, ntopbuf_ip, sizeof(ntopbuf_ip));
*699cd480SApple OSS Distributions	inet_ntop(AF_INET, &sin->sin_addr, ntopbuf_mask, sizeof(ntopbuf_mask));
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(ret, "SIOCAIFADDR %s %s %s",
*699cd480SApple OSS Distributions	    ifname, ntopbuf_ip, ntopbuf_mask);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#if 0
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsin6_len2mask(struct in6_addr * mask, int len)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int i;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(mask, sizeof(*mask));
*699cd480SApple OSS Distributions	for (i = 0; i < len / 8; i++) {
*699cd480SApple OSS Distributions		mask->s6_addr[i] = 0xff;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (len % 8) {
*699cd480SApple OSS Distributions		mask->s6_addr[i] = (0xff00 >> (len % 8)) & 0xff;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionssiocaifaddr_in6(int s, char *ifname, struct in6_addr *addr)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct in6_aliasreq     ifra;
*699cd480SApple OSS Distributions	char                    ntopbuf_ip[INET6_ADDRSTRLEN];
*699cd480SApple OSS Distributions	int                     result;
*699cd480SApple OSS Distributions	struct sockaddr_in6 *   sin;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(&ifra, sizeof(ifra));
*699cd480SApple OSS Distributions	(void) strncpy(ifra.ifra_name, ifname, sizeof(ifra.ifra_name));
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	sin = (struct sockaddr_in6 *)(&ifra.ifra_addr);
*699cd480SApple OSS Distributions	sin->sin6_family = AF_INET6;
*699cd480SApple OSS Distributions	sin->sin6_len = sizeof(*sin);
*699cd480SApple OSS Distributions	sin->sin6_addr = *addr;
*699cd480SApple OSS Distributions#define _PREFIX_LEN_64          64
*699cd480SApple OSS Distributions	sin = (struct sockaddr_in6 *)&ifra.ifra_prefixmask;
*699cd480SApple OSS Distributions	sin->sin6_family = AF_INET6;
*699cd480SApple OSS Distributions	sin->sin6_len = sizeof(*sin);
*699cd480SApple OSS Distributions	in6_len2mask(&sin->sin6_addr, _PREFIX_LEN_64);
*699cd480SApple OSS Distributions	ifra.ifra_lifetime.ia6t_vltime = ND6_INFINITE_LIFETIME;
*699cd480SApple OSS Distributions	ifra.ifra_lifetime.ia6t_pltime = ND6_INFINITE_LIFETIME;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	result = ioctl(s, SIOCAIFADDR_IN6, &ifra);
*699cd480SApple OSS Distributions	inet_ntop(AF_INET6, addr, ntopbuf_ip, sizeof(ntopbuf_ip));
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(result, "SIOCAIFADDR_IN6 %s %s/64",
*699cd480SApple OSS Distributions	    ifname, ntopbuf_ip);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions#endif
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionssiocll_start(int s, const char * ifname)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct in6_aliasreq     ifra_in6;
*699cd480SApple OSS Distributions	int                     result;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(&ifra_in6, sizeof(ifra_in6));
*699cd480SApple OSS Distributions	strncpy(ifra_in6.ifra_name, ifname, sizeof(ifra_in6.ifra_name));
*699cd480SApple OSS Distributions	result = ioctl(s, SIOCLL_START, &ifra_in6);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(result, "SIOCLL_START %s", ifname);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsnd_flags_set(int s, const char * if_name,
*699cd480SApple OSS Distributions    uint32_t set_flags, uint32_t clear_flags)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	uint32_t                new_flags;
*699cd480SApple OSS Distributions	struct in6_ndireq       nd;
*699cd480SApple OSS Distributions	int                     result;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(&nd, sizeof(nd));
*699cd480SApple OSS Distributions	strncpy(nd.ifname, if_name, sizeof(nd.ifname));
*699cd480SApple OSS Distributions	result = ioctl(s, SIOCGIFINFO_IN6, &nd);
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(result, "SIOCGIFINFO_IN6(%s)", if_name);
*699cd480SApple OSS Distributions	new_flags = nd.ndi.flags;
*699cd480SApple OSS Distributions	if (set_flags) {
*699cd480SApple OSS Distributions		new_flags |= set_flags;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (clear_flags) {
*699cd480SApple OSS Distributions		new_flags &= ~clear_flags;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (new_flags != nd.ndi.flags) {
*699cd480SApple OSS Distributions		nd.ndi.flags = new_flags;
*699cd480SApple OSS Distributions		result = ioctl(s, SIOCSIFINFO_FLAGS, (caddr_t)&nd);
*699cd480SApple OSS Distributions		T_ASSERT_POSIX_SUCCESS(result,
*699cd480SApple OSS Distributions		    "SIOCSIFINFO_FLAGS(%s) 0x%x",
*699cd480SApple OSS Distributions		    if_name, nd.ndi.flags);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionssiocprotoattach_in6(int s, const char * name)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct in6_aliasreq ifra;
*699cd480SApple OSS Distributions	int                 result;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(&ifra, sizeof(ifra));
*699cd480SApple OSS Distributions	strncpy(ifra.ifra_name, name, sizeof(ifra.ifra_name));
*699cd480SApple OSS Distributions	result = ioctl(s, SIOCPROTOATTACH_IN6, &ifra);
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(result, "SIOCPROTOATTACH_IN6(%s)", name);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsstart_ipv6(int s, const char * ifname)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	/* attach IPv6 */
*699cd480SApple OSS Distributions	siocprotoattach_in6(s, ifname);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* disable DAD to avoid 1 second delay (rdar://problem/73270401) */
*699cd480SApple OSS Distributions	nd_flags_set(s, ifname, 0, ND6_IFF_DAD);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* start IPv6LL */
*699cd480SApple OSS Distributions	siocll_start(s, ifname);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions * Stolen/modified from IPMonitor/ip_plugin.c
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions * Define: ROUTE_MSG_ADDRS_SPACE
*699cd480SApple OSS Distributions * Purpose:
*699cd480SApple OSS Distributions *   Since sizeof(sockaddr_dl) > sizeof(sockaddr_in), we need space for
*699cd480SApple OSS Distributions *   3 sockaddr_in's and 2 sockaddr_dl's, but pad it just in case
*699cd480SApple OSS Distributions *   someone changes the code and doesn't think to modify this.
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributions#define ROUTE_MSG_ADDRS_SPACE   (3 * sizeof(struct sockaddr_in) \
*699cd480SApple OSS Distributions	                         + 2 * sizeof(struct sockaddr_dl) \
*699cd480SApple OSS Distributions	                         + 128)
*699cd480SApple OSS Distributionstypedef struct {
*699cd480SApple OSS Distributions	struct rt_msghdr    hdr;
*699cd480SApple OSS Distributions	char                addrs[ROUTE_MSG_ADDRS_SPACE];
*699cd480SApple OSS Distributions} route_msg;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionstypedef unsigned short  IFIndex;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionstypedef enum {
*699cd480SApple OSS Distributions	kRouteFlagsIsScoped         = 0x0001,
*699cd480SApple OSS Distributions	kRouteFlagsHasGateway       = 0x0002,
*699cd480SApple OSS Distributions	kRouteFlagsIsHost           = 0x0004,
*699cd480SApple OSS Distributions} RouteFlags;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionstypedef struct {
*699cd480SApple OSS Distributions	IFIndex         ifindex;
*699cd480SApple OSS Distributions	RouteFlags      flags;
*699cd480SApple OSS Distributions	struct in_addr  dest;
*699cd480SApple OSS Distributions	struct in_addr  mask;
*699cd480SApple OSS Distributions	struct in_addr  gateway;
*699cd480SApple OSS Distributions	struct in_addr  ifa;
*699cd480SApple OSS Distributions} IPv4Route, * IPv4RouteRef;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions * Function: IPv4RouteApply
*699cd480SApple OSS Distributions * Purpose:
*699cd480SApple OSS Distributions *   Add or remove the specified route to/from the kernel routing table.
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributionsstatic int
*699cd480SApple OSS DistributionsIPv4RouteApply(IPv4RouteRef route, uint8_t cmd, int s)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	size_t          len;
*699cd480SApple OSS Distributions	int             ret = 0;
*699cd480SApple OSS Distributions	route_msg       rtmsg;
*699cd480SApple OSS Distributions	union {
*699cd480SApple OSS Distributions		struct sockaddr_in *    in_p;
*699cd480SApple OSS Distributions		struct sockaddr_dl *    dl_p;
*699cd480SApple OSS Distributions		char *                  ptr;
*699cd480SApple OSS Distributions	} rtaddr;
*699cd480SApple OSS Distributions	static int      rtm_seq;
*699cd480SApple OSS Distributions	static bool     rtm_seq_inited;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (!rtm_seq_inited) {
*699cd480SApple OSS Distributions		rtm_seq_inited = true;
*699cd480SApple OSS Distributions		rtm_seq = (int)arc4random();
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (route->ifindex == 0) {
*699cd480SApple OSS Distributions		T_LOG("no interface specified, ignoring %s",
*699cd480SApple OSS Distributions		    inet_ntoa(route->dest));
*699cd480SApple OSS Distributions		return ENXIO;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (s < 0) {
*699cd480SApple OSS Distributions		T_LOG("invalid routing socket");
*699cd480SApple OSS Distributions		return EBADF;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	memset(&rtmsg, 0, sizeof(rtmsg));
*699cd480SApple OSS Distributions	rtmsg.hdr.rtm_type = cmd;
*699cd480SApple OSS Distributions	rtmsg.hdr.rtm_version = RTM_VERSION;
*699cd480SApple OSS Distributions	rtmsg.hdr.rtm_seq = rtm_seq++;
*699cd480SApple OSS Distributions	rtmsg.hdr.rtm_addrs = RTA_DST | RTA_GATEWAY | RTA_IFP;
*699cd480SApple OSS Distributions	if (route->ifa.s_addr != 0) {
*699cd480SApple OSS Distributions		rtmsg.hdr.rtm_addrs |= RTA_IFA;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	rtmsg.hdr.rtm_flags = RTF_UP | RTF_STATIC;
*699cd480SApple OSS Distributions	if ((route->flags & kRouteFlagsIsHost) != 0) {
*699cd480SApple OSS Distributions		rtmsg.hdr.rtm_flags |= RTF_HOST;
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		rtmsg.hdr.rtm_addrs |= RTA_NETMASK;
*699cd480SApple OSS Distributions		if ((route->flags & kRouteFlagsHasGateway) == 0) {
*699cd480SApple OSS Distributions			rtmsg.hdr.rtm_flags |= RTF_CLONING;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if ((route->flags & kRouteFlagsHasGateway) != 0) {
*699cd480SApple OSS Distributions		rtmsg.hdr.rtm_flags |= RTF_GATEWAY;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if ((route->flags & kRouteFlagsIsScoped) != 0) {
*699cd480SApple OSS Distributions		rtmsg.hdr.rtm_index = route->ifindex;
*699cd480SApple OSS Distributions		rtmsg.hdr.rtm_flags |= RTF_IFSCOPE;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	rtaddr.ptr = rtmsg.addrs;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* dest */
*699cd480SApple OSS Distributions	rtaddr.in_p->sin_len = sizeof(*rtaddr.in_p);
*699cd480SApple OSS Distributions	rtaddr.in_p->sin_family = AF_INET;
*699cd480SApple OSS Distributions	rtaddr.in_p->sin_addr = route->dest;
*699cd480SApple OSS Distributions	rtaddr.ptr += sizeof(*rtaddr.in_p);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* gateway */
*699cd480SApple OSS Distributions	if ((rtmsg.hdr.rtm_flags & RTF_GATEWAY) != 0) {
*699cd480SApple OSS Distributions		/* gateway is an IP address */
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_len = sizeof(*rtaddr.in_p);
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_family = AF_INET;
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_addr = route->gateway;
*699cd480SApple OSS Distributions		rtaddr.ptr += sizeof(*rtaddr.in_p);
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		/* gateway is the interface itself */
*699cd480SApple OSS Distributions		rtaddr.dl_p->sdl_len = sizeof(*rtaddr.dl_p);
*699cd480SApple OSS Distributions		rtaddr.dl_p->sdl_family = AF_LINK;
*699cd480SApple OSS Distributions		rtaddr.dl_p->sdl_index = route->ifindex;
*699cd480SApple OSS Distributions		rtaddr.ptr += sizeof(*rtaddr.dl_p);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* mask */
*699cd480SApple OSS Distributions	if ((rtmsg.hdr.rtm_addrs & RTA_NETMASK) != 0) {
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_len = sizeof(*rtaddr.in_p);
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_family = AF_INET;
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_addr = route->mask;
*699cd480SApple OSS Distributions		rtaddr.ptr += sizeof(*rtaddr.in_p);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* interface */
*699cd480SApple OSS Distributions	if ((rtmsg.hdr.rtm_addrs & RTA_IFP) != 0) {
*699cd480SApple OSS Distributions		rtaddr.dl_p->sdl_len = sizeof(*rtaddr.dl_p);
*699cd480SApple OSS Distributions		rtaddr.dl_p->sdl_family = AF_LINK;
*699cd480SApple OSS Distributions		rtaddr.dl_p->sdl_index = route->ifindex;
*699cd480SApple OSS Distributions		rtaddr.ptr += sizeof(*rtaddr.dl_p);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	/* interface address */
*699cd480SApple OSS Distributions	if ((rtmsg.hdr.rtm_addrs & RTA_IFA) != 0) {
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_len = sizeof(*rtaddr.in_p);
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_family = AF_INET;
*699cd480SApple OSS Distributions		rtaddr.in_p->sin_addr = route->ifa;
*699cd480SApple OSS Distributions		rtaddr.ptr += sizeof(*rtaddr.in_p);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* apply the route */
*699cd480SApple OSS Distributions	len = (sizeof(rtmsg.hdr)
*699cd480SApple OSS Distributions	    + (unsigned long)(rtaddr.ptr - (char *)rtmsg.addrs));
*699cd480SApple OSS Distributions	rtmsg.hdr.rtm_msglen = (u_short)len;
*699cd480SApple OSS Distributions	if (write(s, &rtmsg, len) == -1) {
*699cd480SApple OSS Distributions		ret = errno;
*699cd480SApple OSS Distributions		T_LOG("write routing socket failed, (%d) %s",
*699cd480SApple OSS Distributions		    errno, strerror(errno));
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return ret;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsadd_scoped_subnet_route(int s, char * ifname, u_short if_index,
*699cd480SApple OSS Distributions    struct in_addr ifa)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int             error;
*699cd480SApple OSS Distributions	IPv4Route       route;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(&route, sizeof(route));
*699cd480SApple OSS Distributions	route.flags |= kRouteFlagsIsScoped;
*699cd480SApple OSS Distributions	route.ifa = ifa;
*699cd480SApple OSS Distributions	route.ifindex = if_index;
*699cd480SApple OSS Distributions	route.mask.s_addr = htonl(IN_CLASSC_NET);
*699cd480SApple OSS Distributions	route.dest.s_addr = route.ifa.s_addr & route.mask.s_addr;
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_NE((int)route.ifindex, 0, "if_nametoindex(%s)", ifname);
*699cd480SApple OSS Distributions	error = IPv4RouteApply(&route, RTM_ADD, s);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(error, 0, "add scoped subnet route %s %s/24", ifname,
*699cd480SApple OSS Distributions	    inet_ntoa(route.dest));
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define ETHER_NTOA_BUFSIZE      (ETHER_ADDR_LEN * 3)
*699cd480SApple OSS Distributionsstatic const char *
*699cd480SApple OSS Distributionsether_ntoa_buf(const ether_addr_t *n, char * buf, int buf_size)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	char *  str;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	str = ether_ntoa(n);
*699cd480SApple OSS Distributions	strlcpy(buf, str, buf_size);
*699cd480SApple OSS Distributions	return buf;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic const char *
*699cd480SApple OSS Distributionsinet_ptrtop(int af, const void * ptr, char * buf, socklen_t buf_size)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	union {
*699cd480SApple OSS Distributions		struct in_addr  ip;
*699cd480SApple OSS Distributions		struct in6_addr ip6;
*699cd480SApple OSS Distributions	} u;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	switch (af) {
*699cd480SApple OSS Distributions	case AF_INET:
*699cd480SApple OSS Distributions		bcopy(ptr, &u.ip, sizeof(u.ip));
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case AF_INET6:
*699cd480SApple OSS Distributions		bcopy(ptr, &u.ip6, sizeof(u.ip6));
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		return NULL;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return inet_ntop(af, &u, buf, buf_size);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic __inline__ char *
*699cd480SApple OSS Distributionsarpop_name(u_int16_t op)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	switch (op) {
*699cd480SApple OSS Distributions	case ARPOP_REQUEST:
*699cd480SApple OSS Distributions		return "ARP REQUEST";
*699cd480SApple OSS Distributions	case ARPOP_REPLY:
*699cd480SApple OSS Distributions		return "ARP REPLY";
*699cd480SApple OSS Distributions	case ARPOP_REVREQUEST:
*699cd480SApple OSS Distributions		return "REVARP REQUEST";
*699cd480SApple OSS Distributions	case ARPOP_REVREPLY:
*699cd480SApple OSS Distributions		return "REVARP REPLY";
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return "<unknown>";
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsarp_frame_validate(const struct ether_arp * earp, u_int len, bool dump)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	const struct arphdr *   arp_p;
*699cd480SApple OSS Distributions	int                     arphrd;
*699cd480SApple OSS Distributions	char                    buf_sender_ether[ETHER_NTOA_BUFSIZE];
*699cd480SApple OSS Distributions	char                    buf_sender_ip[INET_ADDRSTRLEN];
*699cd480SApple OSS Distributions	char                    buf_target_ether[ETHER_NTOA_BUFSIZE];
*699cd480SApple OSS Distributions	char                    buf_target_ip[INET_ADDRSTRLEN];
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(len, (u_int)sizeof(*earp),
*699cd480SApple OSS Distributions	    "%s ARP packet size %u need %u",
*699cd480SApple OSS Distributions	    __func__, len, (u_int)sizeof(*earp));
*699cd480SApple OSS Distributions	if (!dump) {
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	arp_p = &earp->ea_hdr;
*699cd480SApple OSS Distributions	arphrd = ntohs(arp_p->ar_hrd);
*699cd480SApple OSS Distributions	T_LOG("%s type=0x%x proto=0x%x", arpop_name(ntohs(arp_p->ar_op)),
*699cd480SApple OSS Distributions	    arphrd, ntohs(arp_p->ar_pro));
*699cd480SApple OSS Distributions	if (arp_p->ar_hln == sizeof(earp->arp_sha)) {
*699cd480SApple OSS Distributions		ether_ntoa_buf((const ether_addr_t *)earp->arp_sha,
*699cd480SApple OSS Distributions		    buf_sender_ether,
*699cd480SApple OSS Distributions		    sizeof(buf_sender_ether));
*699cd480SApple OSS Distributions		ether_ntoa_buf((const ether_addr_t *)earp->arp_tha,
*699cd480SApple OSS Distributions		    buf_target_ether,
*699cd480SApple OSS Distributions		    sizeof(buf_target_ether));
*699cd480SApple OSS Distributions		T_LOG("Sender H/W\t%s", buf_sender_ether);
*699cd480SApple OSS Distributions		T_LOG("Target H/W\t%s", buf_target_ether);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	inet_ptrtop(AF_INET, earp->arp_spa,
*699cd480SApple OSS Distributions	    buf_sender_ip, sizeof(buf_sender_ip));
*699cd480SApple OSS Distributions	inet_ptrtop(AF_INET, earp->arp_tpa,
*699cd480SApple OSS Distributions	    buf_target_ip, sizeof(buf_target_ip));
*699cd480SApple OSS Distributions	T_LOG("Sender IP\t%s", buf_sender_ip);
*699cd480SApple OSS Distributions	T_LOG("Target IP\t%s", buf_target_ip);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsip_frame_validate(const void * buf, u_int buf_len, bool dump)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	char                    buf_dst[INET_ADDRSTRLEN];
*699cd480SApple OSS Distributions	char                    buf_src[INET_ADDRSTRLEN];
*699cd480SApple OSS Distributions	const ip_udp_header_t * ip_udp;
*699cd480SApple OSS Distributions	u_int                   ip_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, (u_int)sizeof(struct ip), NULL);
*699cd480SApple OSS Distributions	ip_udp = (const ip_udp_header_t *)buf;
*699cd480SApple OSS Distributions	ip_len = ntohs(ip_udp->ip.ip_len);
*699cd480SApple OSS Distributions	inet_ptrtop(AF_INET, &ip_udp->ip.ip_src,
*699cd480SApple OSS Distributions	    buf_src, sizeof(buf_src));
*699cd480SApple OSS Distributions	inet_ptrtop(AF_INET, &ip_udp->ip.ip_dst,
*699cd480SApple OSS Distributions	    buf_dst, sizeof(buf_dst));
*699cd480SApple OSS Distributions	if (dump) {
*699cd480SApple OSS Distributions		T_LOG("ip src %s dst %s len %u id %d",
*699cd480SApple OSS Distributions		    buf_src, buf_dst, ip_len,
*699cd480SApple OSS Distributions		    ntohs(ip_udp->ip.ip_id));
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, ip_len, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((u_int)ip_udp->ip.ip_v, IPVERSION, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((u_int)(ip_udp->ip.ip_hl << 2),
*699cd480SApple OSS Distributions	    (u_int)sizeof(struct ip), NULL);
*699cd480SApple OSS Distributions	if (ip_udp->ip.ip_p == IPPROTO_UDP) {
*699cd480SApple OSS Distributions		u_int   udp_len;
*699cd480SApple OSS Distributions		u_int   data_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(buf_len, (u_int)sizeof(*ip_udp), NULL);
*699cd480SApple OSS Distributions		udp_len = ntohs(ip_udp->udp.uh_ulen);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(udp_len, (u_int)sizeof(ip_udp->udp), NULL);
*699cd480SApple OSS Distributions		data_len = udp_len - (u_int)sizeof(ip_udp->udp);
*699cd480SApple OSS Distributions		if (dump) {
*699cd480SApple OSS Distributions			T_LOG("udp src 0x%x dst 0x%x len %u"
*699cd480SApple OSS Distributions			    " csum 0x%x datalen %u",
*699cd480SApple OSS Distributions			    ntohs(ip_udp->udp.uh_sport),
*699cd480SApple OSS Distributions			    ntohs(ip_udp->udp.uh_dport),
*699cd480SApple OSS Distributions			    udp_len,
*699cd480SApple OSS Distributions			    ntohs(ip_udp->udp.uh_sum),
*699cd480SApple OSS Distributions			    data_len);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsip6_frame_validate(const void * buf, u_int buf_len, bool dump)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	char                    buf_dst[INET6_ADDRSTRLEN];
*699cd480SApple OSS Distributions	char                    buf_src[INET6_ADDRSTRLEN];
*699cd480SApple OSS Distributions	const struct ip6_hdr *  ip6;
*699cd480SApple OSS Distributions	u_int                   ip6_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, (u_int)sizeof(struct ip6_hdr), NULL);
*699cd480SApple OSS Distributions	ip6 = (const struct ip6_hdr *)buf;
*699cd480SApple OSS Distributions	ip6_len = ntohs(ip6->ip6_plen);
*699cd480SApple OSS Distributions	inet_ptrtop(AF_INET6, &ip6->ip6_src, buf_src, sizeof(buf_src));
*699cd480SApple OSS Distributions	inet_ptrtop(AF_INET6, &ip6->ip6_dst, buf_dst, sizeof(buf_dst));
*699cd480SApple OSS Distributions	if (dump) {
*699cd480SApple OSS Distributions		T_LOG("ip6 src %s dst %s len %u", buf_src, buf_dst, ip6_len);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, ip6_len + (u_int)sizeof(struct ip6_hdr), NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((ip6->ip6_vfc & IPV6_VERSION_MASK),
*699cd480SApple OSS Distributions	    IPV6_VERSION, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	switch (ip6->ip6_nxt) {
*699cd480SApple OSS Distributions	case IPPROTO_UDP: {
*699cd480SApple OSS Distributions		u_int                   data_len;
*699cd480SApple OSS Distributions		const ip6_udp_header_t *ip6_udp;
*699cd480SApple OSS Distributions		u_int                   udp_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		ip6_udp = (const ip6_udp_header_t *)buf;
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(buf_len, (u_int)sizeof(*ip6_udp), NULL);
*699cd480SApple OSS Distributions		udp_len = ntohs(ip6_udp->udp.uh_ulen);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(udp_len, (u_int)sizeof(ip6_udp->udp), NULL);
*699cd480SApple OSS Distributions		data_len = udp_len - (u_int)sizeof(ip6_udp->udp);
*699cd480SApple OSS Distributions		if (dump) {
*699cd480SApple OSS Distributions			T_LOG("udp src 0x%x dst 0x%x len %u"
*699cd480SApple OSS Distributions			    " csum 0x%x datalen %u",
*699cd480SApple OSS Distributions			    ntohs(ip6_udp->udp.uh_sport),
*699cd480SApple OSS Distributions			    ntohs(ip6_udp->udp.uh_dport),
*699cd480SApple OSS Distributions			    udp_len,
*699cd480SApple OSS Distributions			    ntohs(ip6_udp->udp.uh_sum),
*699cd480SApple OSS Distributions			    data_len);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	case IPPROTO_ICMPV6: {
*699cd480SApple OSS Distributions		const struct icmp6_hdr *icmp6;
*699cd480SApple OSS Distributions		u_int                   icmp6_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		icmp6_len = buf_len - sizeof(*ip6);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(buf_len, icmp6_len, NULL);
*699cd480SApple OSS Distributions		icmp6 = (const struct icmp6_hdr *)(ip6 + 1);
*699cd480SApple OSS Distributions		switch (icmp6->icmp6_type) {
*699cd480SApple OSS Distributions		case ND_NEIGHBOR_SOLICIT:
*699cd480SApple OSS Distributions			if (dump) {
*699cd480SApple OSS Distributions				T_LOG("neighbor solicit");
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		case ND_NEIGHBOR_ADVERT:
*699cd480SApple OSS Distributions			if (dump) {
*699cd480SApple OSS Distributions				T_LOG("neighbor advert");
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		case ND_ROUTER_SOLICIT:
*699cd480SApple OSS Distributions			if (dump) {
*699cd480SApple OSS Distributions				T_LOG("router solicit");
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		default:
*699cd480SApple OSS Distributions			if (dump) {
*699cd480SApple OSS Distributions				T_LOG("icmp6 code 0x%x", icmp6->icmp6_type);
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsethernet_frame_validate(const void * buf, u_int buf_len, bool dump)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	char                    ether_dst[ETHER_NTOA_BUFSIZE];
*699cd480SApple OSS Distributions	char                    ether_src[ETHER_NTOA_BUFSIZE];
*699cd480SApple OSS Distributions	uint16_t                ether_type;
*699cd480SApple OSS Distributions	const ether_header_t *  eh_p;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, (u_int)sizeof(*eh_p), NULL);
*699cd480SApple OSS Distributions	eh_p = (const ether_header_t *)buf;
*699cd480SApple OSS Distributions	ether_type = ntohs(eh_p->ether_type);
*699cd480SApple OSS Distributions	ether_ntoa_buf((const ether_addr_t *)&eh_p->ether_dhost,
*699cd480SApple OSS Distributions	    ether_dst, sizeof(ether_dst));
*699cd480SApple OSS Distributions	ether_ntoa_buf((const ether_addr_t *)&eh_p->ether_shost,
*699cd480SApple OSS Distributions	    ether_src, sizeof(ether_src));
*699cd480SApple OSS Distributions	if (dump) {
*699cd480SApple OSS Distributions		T_LOG("ether dst %s src %s type 0x%x",
*699cd480SApple OSS Distributions		    ether_dst, ether_src, ether_type);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	switch (ether_type) {
*699cd480SApple OSS Distributions	case ETHERTYPE_IP:
*699cd480SApple OSS Distributions		ip_frame_validate(eh_p + 1, (u_int)(buf_len - sizeof(*eh_p)),
*699cd480SApple OSS Distributions		    dump);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case ETHERTYPE_ARP:
*699cd480SApple OSS Distributions		arp_frame_validate((const struct ether_arp *)(eh_p + 1),
*699cd480SApple OSS Distributions		    (u_int)(buf_len - sizeof(*eh_p)),
*699cd480SApple OSS Distributions		    dump);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case ETHERTYPE_IPV6:
*699cd480SApple OSS Distributions		ip6_frame_validate(eh_p + 1, (u_int)(buf_len - sizeof(*eh_p)),
*699cd480SApple OSS Distributions		    dump);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("unrecognized ethertype 0x%x", ether_type);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic u_int
*699cd480SApple OSS Distributionsethernet_udp_frame_populate(void * buf, size_t buf_len,
*699cd480SApple OSS Distributions    uint8_t af,
*699cd480SApple OSS Distributions    const ether_addr_t * src,
*699cd480SApple OSS Distributions    union ifbrip * src_ip,
*699cd480SApple OSS Distributions    uint16_t src_port,
*699cd480SApple OSS Distributions    const ether_addr_t * dst,
*699cd480SApple OSS Distributions    union ifbrip * dst_ip,
*699cd480SApple OSS Distributions    uint16_t dst_port,
*699cd480SApple OSS Distributions    const void * data, u_int data_len)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int   len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	switch (af) {
*699cd480SApple OSS Distributions	case AF_INET:
*699cd480SApple OSS Distributions		len = ethernet_udp4_frame_populate(buf, buf_len,
*699cd480SApple OSS Distributions		    src,
*699cd480SApple OSS Distributions		    src_ip->ifbrip_addr,
*699cd480SApple OSS Distributions		    src_port,
*699cd480SApple OSS Distributions		    dst,
*699cd480SApple OSS Distributions		    dst_ip->ifbrip_addr,
*699cd480SApple OSS Distributions		    dst_port,
*699cd480SApple OSS Distributions		    data, data_len);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case AF_INET6:
*699cd480SApple OSS Distributions		len = ethernet_udp6_frame_populate(buf, buf_len,
*699cd480SApple OSS Distributions		    src,
*699cd480SApple OSS Distributions		    &src_ip->ifbrip_addr6,
*699cd480SApple OSS Distributions		    src_port,
*699cd480SApple OSS Distributions		    dst,
*699cd480SApple OSS Distributions		    &dst_ip->ifbrip_addr6,
*699cd480SApple OSS Distributions		    dst_port,
*699cd480SApple OSS Distributions		    data, data_len);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("unrecognized address family %u", af);
*699cd480SApple OSS Distributions		len = 0;
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return len;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic u_int
*699cd480SApple OSS Distributionsethernet_arp_frame_populate(void * buf, u_int buf_len,
*699cd480SApple OSS Distributions    uint16_t op,
*699cd480SApple OSS Distributions    const ether_addr_t * sender_hw,
*699cd480SApple OSS Distributions    struct in_addr sender_ip,
*699cd480SApple OSS Distributions    const ether_addr_t * target_hw,
*699cd480SApple OSS Distributions    struct in_addr target_ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	ether_header_t *        eh_p;
*699cd480SApple OSS Distributions	struct ether_arp *      earp;
*699cd480SApple OSS Distributions	struct arphdr *         arp_p;
*699cd480SApple OSS Distributions	u_int                   frame_length;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	frame_length = sizeof(*earp) + sizeof(*eh_p);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, frame_length,
*699cd480SApple OSS Distributions	    "%s buffer size %u needed %u",
*699cd480SApple OSS Distributions	    __func__, buf_len, frame_length);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* ethernet_header */
*699cd480SApple OSS Distributions	eh_p = (ether_header_t *)buf;
*699cd480SApple OSS Distributions	bcopy(sender_hw, eh_p->ether_shost, ETHER_ADDR_LEN);
*699cd480SApple OSS Distributions	if (target_hw != NULL) {
*699cd480SApple OSS Distributions		bcopy(target_hw, eh_p->ether_dhost,
*699cd480SApple OSS Distributions		    sizeof(eh_p->ether_dhost));
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		bcopy(&ether_broadcast, eh_p->ether_dhost,
*699cd480SApple OSS Distributions		    sizeof(eh_p->ether_dhost));
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	eh_p->ether_type = htons(ETHERTYPE_ARP);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* ARP payload */
*699cd480SApple OSS Distributions	earp = (struct ether_arp *)(void *)(eh_p + 1);
*699cd480SApple OSS Distributions	arp_p = &earp->ea_hdr;
*699cd480SApple OSS Distributions	arp_p->ar_hrd = htons(ARPHRD_ETHER);
*699cd480SApple OSS Distributions	arp_p->ar_pro = htons(ETHERTYPE_IP);
*699cd480SApple OSS Distributions	arp_p->ar_hln = sizeof(earp->arp_sha);
*699cd480SApple OSS Distributions	arp_p->ar_pln = sizeof(struct in_addr);
*699cd480SApple OSS Distributions	arp_p->ar_op = htons(op);
*699cd480SApple OSS Distributions	bcopy(sender_hw, earp->arp_sha, sizeof(earp->arp_sha));
*699cd480SApple OSS Distributions	bcopy(&sender_ip, earp->arp_spa, sizeof(earp->arp_spa));
*699cd480SApple OSS Distributions	if (target_hw != NULL) {
*699cd480SApple OSS Distributions		bcopy(target_hw, earp->arp_tha, sizeof(earp->arp_tha));
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		bzero(earp->arp_tha, sizeof(earp->arp_tha));
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	bcopy(&target_ip, earp->arp_tpa, sizeof(earp->arp_tpa));
*699cd480SApple OSS Distributions	return frame_length;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic uint32_t G_generation;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic uint32_t
*699cd480SApple OSS Distributionsnext_generation(void)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	return G_generation++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic const void *
*699cd480SApple OSS Distributionsethernet_frame_get_udp4_payload(void * buf, u_int buf_len,
*699cd480SApple OSS Distributions    u_int * ret_payload_length)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	ether_header_t *        eh_p;
*699cd480SApple OSS Distributions	uint16_t                ether_type;
*699cd480SApple OSS Distributions	ip_udp_header_t *       ip_udp;
*699cd480SApple OSS Distributions	u_int                   ip_len;
*699cd480SApple OSS Distributions	u_int                   left;
*699cd480SApple OSS Distributions	const void *            payload = NULL;
*699cd480SApple OSS Distributions	u_int                   payload_length = 0;
*699cd480SApple OSS Distributions	u_int                   udp_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, (u_int)(sizeof(*eh_p) + sizeof(*ip_udp)), NULL);
*699cd480SApple OSS Distributions	left = buf_len;
*699cd480SApple OSS Distributions	eh_p = (ether_header_t *)buf;
*699cd480SApple OSS Distributions	ether_type = ntohs(eh_p->ether_type);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)ether_type, ETHERTYPE_IP, NULL);
*699cd480SApple OSS Distributions	ip_udp = (ip_udp_header_t *)(void *)(eh_p + 1);
*699cd480SApple OSS Distributions	left -= sizeof(*eh_p);
*699cd480SApple OSS Distributions	ip_len = ntohs(ip_udp->ip.ip_len);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(left, ip_len, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)ip_udp->ip.ip_v, IPVERSION, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((u_int)ip_udp->ip.ip_hl << 2, (u_int)sizeof(struct ip),
*699cd480SApple OSS Distributions	        NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)ip_udp->ip.ip_p, IPPROTO_UDP, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, (u_int)sizeof(*ip_udp), NULL);
*699cd480SApple OSS Distributions	udp_len = ntohs(ip_udp->udp.uh_ulen);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(udp_len, (u_int)sizeof(ip_udp->udp), NULL);
*699cd480SApple OSS Distributions	payload_length = udp_len - (int)sizeof(ip_udp->udp);
*699cd480SApple OSS Distributions	if (payload_length > 0) {
*699cd480SApple OSS Distributions		payload = (ip_udp + 1);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (payload == NULL) {
*699cd480SApple OSS Distributions		payload_length = 0;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	*ret_payload_length = payload_length;
*699cd480SApple OSS Distributions	return payload;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic const void *
*699cd480SApple OSS Distributionsethernet_frame_get_udp6_payload(void * buf, u_int buf_len,
*699cd480SApple OSS Distributions    u_int * ret_payload_length)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	ether_header_t *        eh_p;
*699cd480SApple OSS Distributions	uint16_t                ether_type;
*699cd480SApple OSS Distributions	ip6_udp_header_t *      ip6_udp;
*699cd480SApple OSS Distributions	u_int                   ip6_len;
*699cd480SApple OSS Distributions	u_int                   left;
*699cd480SApple OSS Distributions	const void *            payload = NULL;
*699cd480SApple OSS Distributions	u_int                   payload_length = 0;
*699cd480SApple OSS Distributions	u_int                   udp_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, (u_int)(sizeof(*eh_p) + sizeof(*ip6_udp)), NULL);
*699cd480SApple OSS Distributions	left = buf_len;
*699cd480SApple OSS Distributions	eh_p = (ether_header_t *)buf;
*699cd480SApple OSS Distributions	ether_type = ntohs(eh_p->ether_type);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)ether_type, ETHERTYPE_IPV6, NULL);
*699cd480SApple OSS Distributions	ip6_udp = (ip6_udp_header_t *)(void *)(eh_p + 1);
*699cd480SApple OSS Distributions	left -= sizeof(*eh_p);
*699cd480SApple OSS Distributions	ip6_len = ntohs(ip6_udp->ip6.ip6_plen);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(left, ip6_len + (u_int)sizeof(struct ip6_hdr), NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)(ip6_udp->ip6.ip6_vfc & IPV6_VERSION_MASK),
*699cd480SApple OSS Distributions	    IPV6_VERSION, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)ip6_udp->ip6.ip6_nxt, IPPROTO_UDP, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, (u_int)sizeof(*ip6_udp), NULL);
*699cd480SApple OSS Distributions	udp_len = ntohs(ip6_udp->udp.uh_ulen);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(udp_len, (u_int)sizeof(ip6_udp->udp), NULL);
*699cd480SApple OSS Distributions	payload_length = udp_len - (int)sizeof(ip6_udp->udp);
*699cd480SApple OSS Distributions	if (payload_length > 0) {
*699cd480SApple OSS Distributions		payload = (ip6_udp + 1);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (payload == NULL) {
*699cd480SApple OSS Distributions		payload_length = 0;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	*ret_payload_length = payload_length;
*699cd480SApple OSS Distributions	return payload;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic const void *
*699cd480SApple OSS Distributionsethernet_frame_get_udp_payload(uint8_t af, void * buf, u_int buf_len,
*699cd480SApple OSS Distributions    u_int * ret_payload_length)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	const void *    payload;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	switch (af) {
*699cd480SApple OSS Distributions	case AF_INET:
*699cd480SApple OSS Distributions		payload = ethernet_frame_get_udp4_payload(buf, buf_len,
*699cd480SApple OSS Distributions		    ret_payload_length);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case AF_INET6:
*699cd480SApple OSS Distributions		payload = ethernet_frame_get_udp6_payload(buf, buf_len,
*699cd480SApple OSS Distributions		    ret_payload_length);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("unrecognized address family %u", af);
*699cd480SApple OSS Distributions		payload = NULL;
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return payload;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define MIN_ICMP6_LEN           ((u_int)(sizeof(ether_header_t) +       \
*699cd480SApple OSS Distributions	                                 sizeof(struct ip6_hdr) +       \
*699cd480SApple OSS Distributions	                                 sizeof(struct icmp6_hdr)))
*699cd480SApple OSS Distributions#define ALIGNED_ND_OPT_LEN      8
*699cd480SApple OSS Distributions#define SET_ND_OPT_LEN(a)       (u_int)((a) >> 3)
*699cd480SApple OSS Distributions#define GET_ND_OPT_LEN(a)       (u_int)((a) << 3)
*699cd480SApple OSS Distributions#define ALIGN_ND_OPT(a)         (u_int)roundup(a, ALIGNED_ND_OPT_LEN)
*699cd480SApple OSS Distributions#define LINKADDR_OPT_LEN        (ALIGN_ND_OPT(sizeof(struct nd_opt_hdr) + \
*699cd480SApple OSS Distributions	                                      sizeof(ether_addr_t)))
*699cd480SApple OSS Distributions#define ETHER_IPV6_LEN  (sizeof(*eh_p) + sizeof(*ip6))
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic u_int
*699cd480SApple OSS Distributionsethernet_nd6_frame_populate(void * buf, u_int buf_len,
*699cd480SApple OSS Distributions    uint8_t type,
*699cd480SApple OSS Distributions    const ether_addr_t * sender_hw,
*699cd480SApple OSS Distributions    struct in6_addr * sender_ip,
*699cd480SApple OSS Distributions    const ether_addr_t * dest_ether,
*699cd480SApple OSS Distributions    const ether_addr_t * target_hw,
*699cd480SApple OSS Distributions    struct in6_addr * target_ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int                           data_len = 0;
*699cd480SApple OSS Distributions	ether_header_t *                eh_p;
*699cd480SApple OSS Distributions	u_int                           frame_length;
*699cd480SApple OSS Distributions	struct icmp6_hdr *              icmp6;
*699cd480SApple OSS Distributions	struct ip6_hdr *                ip6;
*699cd480SApple OSS Distributions	struct nd_opt_hdr *             nd_opt;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	switch (type) {
*699cd480SApple OSS Distributions	case ND_ROUTER_SOLICIT:
*699cd480SApple OSS Distributions	case ND_NEIGHBOR_ADVERT:
*699cd480SApple OSS Distributions	case ND_NEIGHBOR_SOLICIT:
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("%s: unsupported type %u", __func__, type);
*699cd480SApple OSS Distributions		return 0;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(buf_len, MIN_ICMP6_LEN, NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	eh_p = (ether_header_t *)buf;
*699cd480SApple OSS Distributions	ip6 = (struct ip6_hdr *)(void *)(eh_p + 1);
*699cd480SApple OSS Distributions	icmp6 = (struct icmp6_hdr *)(void *)(ip6 + 1);
*699cd480SApple OSS Distributions	frame_length = sizeof(*eh_p) + sizeof(*ip6);
*699cd480SApple OSS Distributions	switch (type) {
*699cd480SApple OSS Distributions	case ND_NEIGHBOR_SOLICIT: {
*699cd480SApple OSS Distributions		struct nd_neighbor_solicit *    nd_ns;
*699cd480SApple OSS Distributions		bool                            sender_is_specified;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		sender_is_specified = !IN6_IS_ADDR_UNSPECIFIED(sender_ip);
*699cd480SApple OSS Distributions		data_len = sizeof(*nd_ns);
*699cd480SApple OSS Distributions		if (sender_is_specified) {
*699cd480SApple OSS Distributions			data_len += LINKADDR_OPT_LEN;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		frame_length += data_len;
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(buf_len, frame_length, NULL);
*699cd480SApple OSS Distributions		nd_ns = (struct nd_neighbor_solicit *)(void *)icmp6;
*699cd480SApple OSS Distributions		if (sender_is_specified) {
*699cd480SApple OSS Distributions			/* add the source lladdr option */
*699cd480SApple OSS Distributions			nd_opt = (struct nd_opt_hdr *)(nd_ns + 1);
*699cd480SApple OSS Distributions			nd_opt->nd_opt_type = ND_OPT_SOURCE_LINKADDR;
*699cd480SApple OSS Distributions			nd_opt->nd_opt_len = SET_ND_OPT_LEN(LINKADDR_OPT_LEN);
*699cd480SApple OSS Distributions			bcopy(sender_hw, (nd_opt + 1), sizeof(*sender_hw));
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		bcopy(target_ip, &nd_ns->nd_ns_target,
*699cd480SApple OSS Distributions		    sizeof(nd_ns->nd_ns_target));
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	case ND_NEIGHBOR_ADVERT: {
*699cd480SApple OSS Distributions		struct nd_neighbor_advert *     nd_na;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		data_len = sizeof(*nd_na) + LINKADDR_OPT_LEN;
*699cd480SApple OSS Distributions		frame_length += data_len;
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(buf_len, frame_length, NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		nd_na = (struct nd_neighbor_advert *)(void *)icmp6;
*699cd480SApple OSS Distributions		bcopy(target_ip, &nd_na->nd_na_target,
*699cd480SApple OSS Distributions		    sizeof(nd_na->nd_na_target));
*699cd480SApple OSS Distributions		/* add the target lladdr option */
*699cd480SApple OSS Distributions		nd_opt = (struct nd_opt_hdr *)(nd_na + 1);
*699cd480SApple OSS Distributions		nd_opt->nd_opt_type = ND_OPT_TARGET_LINKADDR;
*699cd480SApple OSS Distributions		nd_opt->nd_opt_len = SET_ND_OPT_LEN(LINKADDR_OPT_LEN);
*699cd480SApple OSS Distributions		bcopy(target_hw, (nd_opt + 1), sizeof(*target_hw));
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	case ND_ROUTER_SOLICIT: {
*699cd480SApple OSS Distributions		struct nd_router_solicit *      nd_rs;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		data_len = sizeof(*nd_rs) + LINKADDR_OPT_LEN;
*699cd480SApple OSS Distributions		frame_length += data_len;
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(buf_len, frame_length, NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		nd_rs = (struct nd_router_solicit *)(void *)icmp6;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* add the source lladdr option */
*699cd480SApple OSS Distributions		nd_opt = (struct nd_opt_hdr *)(nd_rs + 1);
*699cd480SApple OSS Distributions		nd_opt->nd_opt_type = ND_OPT_SOURCE_LINKADDR;
*699cd480SApple OSS Distributions		nd_opt->nd_opt_len = SET_ND_OPT_LEN(LINKADDR_OPT_LEN);
*699cd480SApple OSS Distributions		bcopy(sender_hw, (nd_opt + 1), sizeof(*sender_hw));
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("%s: unsupported type %u", __func__, type);
*699cd480SApple OSS Distributions		return 0;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	/* icmp6 header */
*699cd480SApple OSS Distributions	icmp6->icmp6_type = type;
*699cd480SApple OSS Distributions	icmp6->icmp6_code = 0;
*699cd480SApple OSS Distributions	icmp6->icmp6_cksum = 0;
*699cd480SApple OSS Distributions	icmp6->icmp6_data32[0] = 0;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* ethernet_header */
*699cd480SApple OSS Distributions	bcopy(sender_hw, eh_p->ether_shost, ETHER_ADDR_LEN);
*699cd480SApple OSS Distributions	if (dest_ether != NULL) {
*699cd480SApple OSS Distributions		bcopy(dest_ether, eh_p->ether_dhost,
*699cd480SApple OSS Distributions		    sizeof(eh_p->ether_dhost));
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		/* XXX ether_dhost should be multicast */
*699cd480SApple OSS Distributions		bcopy(&ether_broadcast, eh_p->ether_dhost,
*699cd480SApple OSS Distributions		    sizeof(eh_p->ether_dhost));
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	eh_p->ether_type = htons(ETHERTYPE_IPV6);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* IPv6 header */
*699cd480SApple OSS Distributions	bzero(ip6, sizeof(*ip6));
*699cd480SApple OSS Distributions	ip6->ip6_nxt = IPPROTO_ICMPV6;
*699cd480SApple OSS Distributions	ip6->ip6_vfc = IPV6_VERSION;
*699cd480SApple OSS Distributions	bcopy(sender_ip, &ip6->ip6_src, sizeof(ip6->ip6_src));
*699cd480SApple OSS Distributions	/* XXX ip6_dst should be specific multicast */
*699cd480SApple OSS Distributions	bcopy(&in6addr_linklocal_allnodes, &ip6->ip6_dst, sizeof(ip6->ip6_dst));
*699cd480SApple OSS Distributions	ip6->ip6_plen = htons(data_len);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	return frame_length;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/**
*699cd480SApple OSS Distributions** Switch port
*699cd480SApple OSS Distributions**/
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_check_tx(switch_port_t port)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int             error;
*699cd480SApple OSS Distributions	struct kevent   kev;
*699cd480SApple OSS Distributions	int             kq;
*699cd480SApple OSS Distributions	struct timespec ts = { .tv_sec = 0, .tv_nsec = 1000 * 1000};
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	kq = kqueue();
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(kq, "kqueue check_tx");
*699cd480SApple OSS Distributions	EV_SET(&kev, port->fd, EVFILT_WRITE, EV_ADD | EV_ENABLE, 0, 0, NULL);
*699cd480SApple OSS Distributions	error = kevent(kq, &kev, 1, &kev, 1, &ts);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(error, 1, "kevent");
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)kev.filter, EVFILT_WRITE, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)kev.ident, port->fd, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_NULL(kev.udata, NULL);
*699cd480SApple OSS Distributions	close(kq);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_send_arp(switch_port_t port,
*699cd480SApple OSS Distributions    uint16_t op,
*699cd480SApple OSS Distributions    const ether_addr_t * sender_hw,
*699cd480SApple OSS Distributions    struct in_addr sender_ip,
*699cd480SApple OSS Distributions    const ether_addr_t * target_hw,
*699cd480SApple OSS Distributions    struct in_addr target_ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           frame_length;
*699cd480SApple OSS Distributions	ether_packet    pkt;
*699cd480SApple OSS Distributions	ssize_t         n;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* make sure we can send */
*699cd480SApple OSS Distributions	switch_port_check_tx(port);
*699cd480SApple OSS Distributions	frame_length = ethernet_arp_frame_populate(&pkt, sizeof(pkt),
*699cd480SApple OSS Distributions	    op,
*699cd480SApple OSS Distributions	    sender_hw,
*699cd480SApple OSS Distributions	    sender_ip,
*699cd480SApple OSS Distributions	    target_hw,
*699cd480SApple OSS Distributions	    target_ip);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GT(frame_length, 0, "%s: frame_length %u",
*699cd480SApple OSS Distributions	    __func__, frame_length);
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("Port %s -> %s transmitting %u bytes",
*699cd480SApple OSS Distributions		    port->ifname, port->member_ifname, frame_length);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	ethernet_frame_validate(&pkt, frame_length, S_debug);
*699cd480SApple OSS Distributions	n = write(port->fd, &pkt, frame_length);
*699cd480SApple OSS Distributions	if (n < 0) {
*699cd480SApple OSS Distributions		T_ASSERT_POSIX_SUCCESS(n, "%s write fd %d failed %ld",
*699cd480SApple OSS Distributions		    port->ifname, port->fd, n);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((u_int)n, frame_length,
*699cd480SApple OSS Distributions	    "%s fd %d wrote %ld",
*699cd480SApple OSS Distributions	    port->ifname, port->fd, n);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_send_nd6(switch_port_t port,
*699cd480SApple OSS Distributions    uint8_t type,
*699cd480SApple OSS Distributions    const ether_addr_t * sender_hw,
*699cd480SApple OSS Distributions    struct in6_addr * sender_ip,
*699cd480SApple OSS Distributions    const ether_addr_t * dest_ether,
*699cd480SApple OSS Distributions    const ether_addr_t * target_hw,
*699cd480SApple OSS Distributions    struct in6_addr * target_ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           frame_length;
*699cd480SApple OSS Distributions	ether_packet    pkt;
*699cd480SApple OSS Distributions	ssize_t         n;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* make sure we can send */
*699cd480SApple OSS Distributions	switch_port_check_tx(port);
*699cd480SApple OSS Distributions	frame_length = ethernet_nd6_frame_populate(&pkt, sizeof(pkt),
*699cd480SApple OSS Distributions	    type,
*699cd480SApple OSS Distributions	    sender_hw,
*699cd480SApple OSS Distributions	    sender_ip,
*699cd480SApple OSS Distributions	    dest_ether,
*699cd480SApple OSS Distributions	    target_hw,
*699cd480SApple OSS Distributions	    target_ip);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GT(frame_length, 0, "%s: frame_length %u",
*699cd480SApple OSS Distributions	    __func__, frame_length);
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("Port %s -> %s transmitting %u bytes",
*699cd480SApple OSS Distributions		    port->ifname, port->member_ifname, frame_length);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	ethernet_frame_validate(&pkt, frame_length, S_debug);
*699cd480SApple OSS Distributions	n = write(port->fd, &pkt, frame_length);
*699cd480SApple OSS Distributions	if (n < 0) {
*699cd480SApple OSS Distributions		T_ASSERT_POSIX_SUCCESS(n, "%s write fd %d failed %ld",
*699cd480SApple OSS Distributions		    port->ifname, port->fd, n);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((u_int)n, frame_length,
*699cd480SApple OSS Distributions	    "%s fd %d wrote %ld",
*699cd480SApple OSS Distributions	    port->ifname, port->fd, n);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_send_udp(switch_port_t port,
*699cd480SApple OSS Distributions    uint8_t af,
*699cd480SApple OSS Distributions    const ether_addr_t * src_eaddr,
*699cd480SApple OSS Distributions    union ifbrip * src_ip,
*699cd480SApple OSS Distributions    uint16_t src_port,
*699cd480SApple OSS Distributions    const ether_addr_t * dst_eaddr,
*699cd480SApple OSS Distributions    union ifbrip * dst_ip,
*699cd480SApple OSS Distributions    uint16_t dst_port,
*699cd480SApple OSS Distributions    const void * payload, u_int payload_length)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int                   frame_length;
*699cd480SApple OSS Distributions	ether_packet            pkt;
*699cd480SApple OSS Distributions	ssize_t                 n;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* make sure we can send */
*699cd480SApple OSS Distributions	switch_port_check_tx(port);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* generate the packet */
*699cd480SApple OSS Distributions	frame_length
*699cd480SApple OSS Distributions	        = ethernet_udp_frame_populate((void *)&pkt,
*699cd480SApple OSS Distributions	    (u_int)sizeof(pkt),
*699cd480SApple OSS Distributions	    af,
*699cd480SApple OSS Distributions	    src_eaddr,
*699cd480SApple OSS Distributions	    src_ip,
*699cd480SApple OSS Distributions	    src_port,
*699cd480SApple OSS Distributions	    dst_eaddr,
*699cd480SApple OSS Distributions	    dst_ip,
*699cd480SApple OSS Distributions	    dst_port,
*699cd480SApple OSS Distributions	    payload,
*699cd480SApple OSS Distributions	    payload_length);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GT(frame_length, 0, NULL);
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("Port %s transmitting %u bytes",
*699cd480SApple OSS Distributions		    port->ifname, frame_length);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	ethernet_frame_validate(&pkt, frame_length, S_debug);
*699cd480SApple OSS Distributions	n = write(port->fd, &pkt, frame_length);
*699cd480SApple OSS Distributions	if (n < 0) {
*699cd480SApple OSS Distributions		T_ASSERT_POSIX_SUCCESS(n, "%s write fd %d failed %ld",
*699cd480SApple OSS Distributions		    port->ifname, port->fd, n);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((u_int)n, frame_length,
*699cd480SApple OSS Distributions	    "%s fd %d wrote %ld",
*699cd480SApple OSS Distributions	    port->ifname, port->fd, n);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_send_udp_addr_index(switch_port_t port,
*699cd480SApple OSS Distributions    uint8_t af,
*699cd480SApple OSS Distributions    u_int addr_index,
*699cd480SApple OSS Distributions    const ether_addr_t * dst_eaddr,
*699cd480SApple OSS Distributions    union ifbrip * dst_ip,
*699cd480SApple OSS Distributions    const void * payload, u_int payload_length)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	ether_addr_t    eaddr;
*699cd480SApple OSS Distributions	union ifbrip    ip;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* generate traffic for the unit and address */
*699cd480SApple OSS Distributions	set_ethernet_address(&eaddr, port->unit, addr_index);
*699cd480SApple OSS Distributions	get_ip_address(af, port->unit, addr_index, &ip);
*699cd480SApple OSS Distributions	switch_port_send_udp(port, af,
*699cd480SApple OSS Distributions	    &eaddr, &ip, TEST_SOURCE_PORT,
*699cd480SApple OSS Distributions	    dst_eaddr, dst_ip, TEST_DEST_PORT,
*699cd480SApple OSS Distributions	    payload, payload_length);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionstypedef void
*699cd480SApple OSS Distributions(packet_validator)(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    u_int pkt_len, void * context);
*699cd480SApple OSS Distributionstypedef packet_validator * packet_validator_t;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_receive(switch_port_t port,
*699cd480SApple OSS Distributions    uint8_t af,
*699cd480SApple OSS Distributions    const void * payload, u_int payload_length,
*699cd480SApple OSS Distributions    packet_validator_t validator,
*699cd480SApple OSS Distributions    void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	ether_header_t *        eh_p;
*699cd480SApple OSS Distributions	ssize_t                 n;
*699cd480SApple OSS Distributions	char *                  offset;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	n = read(port->fd, port->rx_buf, (unsigned)port->rx_buf_size);
*699cd480SApple OSS Distributions	if (n < 0) {
*699cd480SApple OSS Distributions		if (errno == EAGAIN) {
*699cd480SApple OSS Distributions			return;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_POSIX_SUCCESS(n, "read %s port %d fd %d",
*699cd480SApple OSS Distributions		    port->ifname, port->unit, port->fd);
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	for (offset = port->rx_buf; n > 0;) {
*699cd480SApple OSS Distributions		struct bpf_hdr *        bpf = (struct bpf_hdr *)(void *)offset;
*699cd480SApple OSS Distributions		u_int                   pkt_len;
*699cd480SApple OSS Distributions		char *                  pkt;
*699cd480SApple OSS Distributions		u_int                   skip;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		pkt = offset + bpf->bh_hdrlen;
*699cd480SApple OSS Distributions		pkt_len = bpf->bh_caplen;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		eh_p = (ether_header_t *)(void *)pkt;
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_GE(pkt_len, (u_int)sizeof(*eh_p),
*699cd480SApple OSS Distributions		    "short packet %ld", n);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* source shouldn't be broadcast/multicast */
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_EQ(eh_p->ether_shost[0] & 0x01, 0,
*699cd480SApple OSS Distributions		    "broadcast/multicast source");
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		if (S_debug) {
*699cd480SApple OSS Distributions			T_LOG("Port %s [unit %d] [fd %d] Received %u bytes",
*699cd480SApple OSS Distributions			    port->ifname, port->unit, port->fd, pkt_len);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		ethernet_frame_validate(pkt, pkt_len, S_debug);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* call the validation function */
*699cd480SApple OSS Distributions		(*validator)(port, eh_p, pkt_len, context);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		if (payload != NULL) {
*699cd480SApple OSS Distributions			const void *    p;
*699cd480SApple OSS Distributions			u_int           p_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			p = ethernet_frame_get_udp_payload(af, pkt, pkt_len,
*699cd480SApple OSS Distributions			    &p_len);
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_NOTNULL(p, "ethernet_frame_get_udp_payload");
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_EQ(p_len, payload_length,
*699cd480SApple OSS Distributions			    "payload length %u < expected %u",
*699cd480SApple OSS Distributions			    p_len, payload_length);
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_EQ(bcmp(payload, p, payload_length), 0,
*699cd480SApple OSS Distributions			    "unexpected payload");
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		skip = BPF_WORDALIGN(pkt_len + bpf->bh_hdrlen);
*699cd480SApple OSS Distributions		if (skip == 0) {
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		offset += skip;
*699cd480SApple OSS Distributions		n -= skip;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_log(switch_port_t port)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	T_LOG("%s [unit %d] [member %s]%s bpf fd %d bufsize %d\n",
*699cd480SApple OSS Distributions	    port->ifname, port->unit,
*699cd480SApple OSS Distributions	    port->member_ifname,
*699cd480SApple OSS Distributions	    port->mac_nat ? " [mac-nat]" : "",
*699cd480SApple OSS Distributions	    port->fd, port->rx_buf_size);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define switch_port_list_size(port_count)               \
*699cd480SApple OSS Distributions	offsetof(switch_port_list, list[port_count])
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic switch_port_list_t
*699cd480SApple OSS Distributionsswitch_port_list_alloc(u_int port_count, bool mac_nat)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	switch_port_list_t      list;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	list = (switch_port_list_t)
*699cd480SApple OSS Distributions	    calloc(1, switch_port_list_size(port_count));;
*699cd480SApple OSS Distributions	list->size = port_count;
*699cd480SApple OSS Distributions	list->mac_nat = mac_nat;
*699cd480SApple OSS Distributions	return list;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_list_dealloc(switch_port_list_t list)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, port = list->list; i < list->count; i++, port++) {
*699cd480SApple OSS Distributions		close(port->fd);
*699cd480SApple OSS Distributions		free(port->rx_buf);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	free(list);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic errno_t
*699cd480SApple OSS Distributionsswitch_port_list_add_port(int s, switch_port_list_t port_list, u_int unit,
*699cd480SApple OSS Distributions    const char * ifname, u_short if_index, const char * member_ifname,
*699cd480SApple OSS Distributions    u_int num_addrs, bool mac_nat, struct in_addr * ip)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int             buf_size;
*699cd480SApple OSS Distributions	errno_t         err = EINVAL;
*699cd480SApple OSS Distributions	int             fd = -1;
*699cd480SApple OSS Distributions	char            ntopbuf_ip[INET6_ADDRSTRLEN];
*699cd480SApple OSS Distributions	int             opt;
*699cd480SApple OSS Distributions	switch_port_t   p;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (port_list->count >= port_list->size) {
*699cd480SApple OSS Distributions		T_LOG("Internal error: port_list count %u >= size %u\n",
*699cd480SApple OSS Distributions		    port_list->count, port_list->size);
*699cd480SApple OSS Distributions		goto failed;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	fd = bpf_new();
*699cd480SApple OSS Distributions	if (fd < 0) {
*699cd480SApple OSS Distributions		err = errno;
*699cd480SApple OSS Distributions		T_LOG("bpf_new");
*699cd480SApple OSS Distributions		goto failed;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	bpf_set_traffic_class(fd, SO_TC_CTL);
*699cd480SApple OSS Distributions	opt = 1;
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(ioctl(fd, FIONBIO, &opt), NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(bpf_set_immediate(fd, 1), NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(bpf_setif(fd, ifname), "bpf set if %s",
*699cd480SApple OSS Distributions	    ifname);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(bpf_set_see_sent(fd, 0), NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(bpf_set_header_complete(fd, 1), NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(bpf_get_blen(fd, &buf_size), NULL);
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("%s [unit %d] [member %s] bpf fd %d bufsize %d\n",
*699cd480SApple OSS Distributions		    ifname, unit,
*699cd480SApple OSS Distributions		    member_ifname, fd, buf_size);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	p = port_list->list + port_list->count++;
*699cd480SApple OSS Distributions	p->fd = fd;
*699cd480SApple OSS Distributions	p->unit = unit;
*699cd480SApple OSS Distributions	strlcpy(p->ifname, ifname, sizeof(p->ifname));
*699cd480SApple OSS Distributions	strlcpy(p->member_ifname, member_ifname, sizeof(p->member_ifname));
*699cd480SApple OSS Distributions	p->num_addrs = num_addrs;
*699cd480SApple OSS Distributions	p->rx_buf_size = buf_size;
*699cd480SApple OSS Distributions	p->rx_buf = malloc((unsigned)buf_size);
*699cd480SApple OSS Distributions	p->mac_nat = mac_nat;
*699cd480SApple OSS Distributions	ifnet_get_lladdr(s, ifname, &p->mac);
*699cd480SApple OSS Distributions	ifnet_get_lladdr(s, member_ifname, &p->member_mac);
*699cd480SApple OSS Distributions	p->ip = *ip;
*699cd480SApple OSS Distributions	p->if_index = if_index;
*699cd480SApple OSS Distributions	get_ipv6_ll_address(&p->mac, &p->ip6);
*699cd480SApple OSS Distributions	inet_ntop(AF_INET6, &p->ip6, ntopbuf_ip, sizeof(ntopbuf_ip));
*699cd480SApple OSS Distributions	T_LOG("%s %s", ifname, ntopbuf_ip);
*699cd480SApple OSS Distributions	return 0;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsfailed:
*699cd480SApple OSS Distributions	if (fd >= 0) {
*699cd480SApple OSS Distributions		close(fd);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return err;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic switch_port_t
*699cd480SApple OSS Distributionsswitch_port_list_find_fd(switch_port_list_t ports, int fd)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, port = ports->list; i < ports->count; i++, port++) {
*699cd480SApple OSS Distributions		if (port->fd == fd) {
*699cd480SApple OSS Distributions			return port;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return NULL;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_list_log(switch_port_list_t port_list)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		switch_port_log(port);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic switch_port_t
*699cd480SApple OSS Distributionsswitch_port_list_find_member(switch_port_list_t ports, const char * member_ifname)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, port = ports->list; i < ports->count; i++, port++) {
*699cd480SApple OSS Distributions		if (strcmp(port->member_ifname, member_ifname) == 0) {
*699cd480SApple OSS Distributions			return port;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return NULL;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsswitch_port_list_check_receive(switch_port_list_t ports, uint8_t af,
*699cd480SApple OSS Distributions    const void * payload, u_int payload_length,
*699cd480SApple OSS Distributions    packet_validator_t validator,
*699cd480SApple OSS Distributions    void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int             i;
*699cd480SApple OSS Distributions	int             n_events;
*699cd480SApple OSS Distributions	struct kevent   kev[ports->count];
*699cd480SApple OSS Distributions	int             kq;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions	struct timespec ts = { .tv_sec = 0, .tv_nsec = 10 * 1000 * 1000};
*699cd480SApple OSS Distributions	u_int           u;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	kq = kqueue();
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(kq, "kqueue check_receive");
*699cd480SApple OSS Distributions	for (u = 0, port = ports->list; u < ports->count; u++, port++) {
*699cd480SApple OSS Distributions		port->test_count = 0;
*699cd480SApple OSS Distributions		EV_SET(kev + u, port->fd,
*699cd480SApple OSS Distributions		    EVFILT_READ, EV_ADD | EV_ENABLE, 0, 0, NULL);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	do {
*699cd480SApple OSS Distributions		n_events = kevent(kq, kev, (int)ports->count, kev,
*699cd480SApple OSS Distributions		    (int)ports->count, &ts);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_POSIX_SUCCESS(n_events, "kevent receive %d", n_events);
*699cd480SApple OSS Distributions		for (i = 0; i < n_events; i++) {
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_EQ((int)kev[i].filter, EVFILT_READ, NULL);
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_NULL(kev[i].udata, NULL);
*699cd480SApple OSS Distributions			port = switch_port_list_find_fd(ports,
*699cd480SApple OSS Distributions			    (int)kev[i].ident);
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_NE(port, NULL,
*699cd480SApple OSS Distributions			    "port %p fd %d", (void *)port,
*699cd480SApple OSS Distributions			    (int)kev[i].ident);
*699cd480SApple OSS Distributions			switch_port_receive(port, af, payload, payload_length,
*699cd480SApple OSS Distributions			    validator, context);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	} while (n_events != 0);
*699cd480SApple OSS Distributions	close(kq);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic bool
*699cd480SApple OSS Distributionsswitch_port_list_verify_rt_table(switch_port_list_t port_list, bool log)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bool            all_present = true;
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	u_int           count;
*699cd480SApple OSS Distributions	struct ifbareq *ifba;
*699cd480SApple OSS Distributions	struct ifbareq *rt_table;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* clear out current notion of how many addresses are present */
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		port->test_address_count = 0;
*699cd480SApple OSS Distributions		port->test_address_present = 0;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	rt_table = bridge_rt_table_copy(&count);
*699cd480SApple OSS Distributions	if (rt_table == NULL) {
*699cd480SApple OSS Distributions		return false;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (log) {
*699cd480SApple OSS Distributions		bridge_rt_table_log(rt_table, count);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	for (i = 0, ifba = rt_table; i < count; i++, ifba++) {
*699cd480SApple OSS Distributions		uint64_t        addr_bit;
*699cd480SApple OSS Distributions		u_int           addr_index;
*699cd480SApple OSS Distributions		u_int           unit_index;
*699cd480SApple OSS Distributions		u_char *        ea;
*699cd480SApple OSS Distributions		ether_addr_t *  eaddr;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		eaddr = (ether_addr_t *)&ifba->ifba_dst;
*699cd480SApple OSS Distributions		ea = eaddr->octet;
*699cd480SApple OSS Distributions		addr_index = ea[EA_ADDR_INDEX];
*699cd480SApple OSS Distributions		unit_index = ea[EA_UNIT_INDEX];
*699cd480SApple OSS Distributions		port = switch_port_list_find_member(port_list,
*699cd480SApple OSS Distributions		    ifba->ifba_ifsname);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_NOTNULL(port, "switch_port_list_find_member %s",
*699cd480SApple OSS Distributions		    ifba->ifba_ifsname);
*699cd480SApple OSS Distributions		if (!S_cleaning_up) {
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_EQ(unit_index, port->unit, NULL);
*699cd480SApple OSS Distributions			addr_bit = 1 << addr_index;
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_BITS_NOTSET(port->test_address_present,
*699cd480SApple OSS Distributions			    addr_bit, "%s address %u",
*699cd480SApple OSS Distributions			    ifba->ifba_ifsname, addr_index);
*699cd480SApple OSS Distributions			port->test_address_present |= addr_bit;
*699cd480SApple OSS Distributions			port->test_address_count++;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		if (S_debug) {
*699cd480SApple OSS Distributions			T_LOG("%s unit %d [member %s] %u expect %u",
*699cd480SApple OSS Distributions			    port->ifname, port->unit, port->member_ifname,
*699cd480SApple OSS Distributions			    port->test_address_count, port->num_addrs);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		if (port->test_address_count != port->num_addrs) {
*699cd480SApple OSS Distributions			all_present = false;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	free(rt_table);
*699cd480SApple OSS Distributions	return all_present;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic bool
*699cd480SApple OSS Distributionsswitch_port_list_verify_mac_nat(switch_port_list_t port_list, bool log)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bool                    all_present = true;
*699cd480SApple OSS Distributions	u_int                   i;
*699cd480SApple OSS Distributions	u_int                   count;
*699cd480SApple OSS Distributions	static struct ifbrmne * entries;
*699cd480SApple OSS Distributions	switch_port_t           port;
*699cd480SApple OSS Distributions	struct ifbrmne *        scan;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* clear out current notion of how many addresses are present */
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		port->test_address_count = 0;
*699cd480SApple OSS Distributions		port->test_address_present = 0;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	entries = bridge_mac_nat_entries_copy(&count);
*699cd480SApple OSS Distributions	if (entries == NULL) {
*699cd480SApple OSS Distributions		return false;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (log) {
*699cd480SApple OSS Distributions		bridge_mac_nat_entries_log(entries, count);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	for (i = 0, scan = entries; i < count; i++, scan++) {
*699cd480SApple OSS Distributions		uint8_t         af;
*699cd480SApple OSS Distributions		uint64_t        addr_bit;
*699cd480SApple OSS Distributions		u_int           addr_index;
*699cd480SApple OSS Distributions		char            buf_ip1[INET6_ADDRSTRLEN];
*699cd480SApple OSS Distributions		char            buf_ip2[INET6_ADDRSTRLEN];
*699cd480SApple OSS Distributions		u_char *        ea;
*699cd480SApple OSS Distributions		ether_addr_t *  eaddr;
*699cd480SApple OSS Distributions		union ifbrip    ip;
*699cd480SApple OSS Distributions		u_int           unit_index;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		eaddr = (ether_addr_t *)&scan->ifbmne_mac;
*699cd480SApple OSS Distributions		ea = eaddr->octet;
*699cd480SApple OSS Distributions		addr_index = ea[EA_ADDR_INDEX];
*699cd480SApple OSS Distributions		unit_index = ea[EA_UNIT_INDEX];
*699cd480SApple OSS Distributions		port = switch_port_list_find_member(port_list,
*699cd480SApple OSS Distributions		    scan->ifbmne_ifname);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_NOTNULL(port,
*699cd480SApple OSS Distributions		    "switch_port_list_find_member %s",
*699cd480SApple OSS Distributions		    scan->ifbmne_ifname);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_EQ(unit_index, port->unit, NULL);
*699cd480SApple OSS Distributions		af = scan->ifbmne_af;
*699cd480SApple OSS Distributions		get_ip_address(af, port->unit, addr_index, &ip);
*699cd480SApple OSS Distributions		addr_bit = 1 << addr_index;
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_TRUE(ip_addresses_are_equal(af, &ip, &scan->ifbmne_ip),
*699cd480SApple OSS Distributions		    "mac nat entry IP address %s expected %s",
*699cd480SApple OSS Distributions		    inet_ntop(af, &scan->ifbmne_ip_addr,
*699cd480SApple OSS Distributions		    buf_ip1, sizeof(buf_ip1)),
*699cd480SApple OSS Distributions		    inet_ntop(af, &ip,
*699cd480SApple OSS Distributions		    buf_ip2, sizeof(buf_ip2)));
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_BITS_NOTSET(port->test_address_present,
*699cd480SApple OSS Distributions		    addr_bit, "%s address %u",
*699cd480SApple OSS Distributions		    scan->ifbmne_ifname, addr_index);
*699cd480SApple OSS Distributions		port->test_address_present |= addr_bit;
*699cd480SApple OSS Distributions		port->test_address_count++;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		if (port->mac_nat) {
*699cd480SApple OSS Distributions			/* MAC-NAT interface should have no entries */
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_EQ(port->test_address_count, 0,
*699cd480SApple OSS Distributions			    "mac nat interface %s has %u entries",
*699cd480SApple OSS Distributions			    port->member_ifname,
*699cd480SApple OSS Distributions			    port->test_address_count);
*699cd480SApple OSS Distributions		} else {
*699cd480SApple OSS Distributions			if (S_debug) {
*699cd480SApple OSS Distributions				T_LOG("%s unit %d [member %s] %u expect %u",
*699cd480SApple OSS Distributions				    port->ifname, port->unit,
*699cd480SApple OSS Distributions				    port->member_ifname,
*699cd480SApple OSS Distributions				    port->test_address_count, port->num_addrs);
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			if (port->test_address_count != port->num_addrs) {
*699cd480SApple OSS Distributions				all_present = false;
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	free(entries);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	return all_present;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/**
*699cd480SApple OSS Distributions** Basic Bridge Tests
*699cd480SApple OSS Distributions**/
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionssend_generation(switch_port_t port, uint8_t af, u_int addr_index,
*699cd480SApple OSS Distributions    const ether_addr_t * dst_eaddr, union ifbrip * dst_ip,
*699cd480SApple OSS Distributions    uint32_t generation)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	uint32_t        payload;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	payload = htonl(generation);
*699cd480SApple OSS Distributions	switch_port_send_udp_addr_index(port, af, addr_index, dst_eaddr, dst_ip,
*699cd480SApple OSS Distributions	    &payload, sizeof(payload));
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionscheck_receive_generation(switch_port_list_t ports, uint8_t af,
*699cd480SApple OSS Distributions    uint32_t generation, packet_validator_t validator,
*699cd480SApple OSS Distributions    __unused void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	uint32_t        payload;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	payload = htonl(generation);
*699cd480SApple OSS Distributions	switch_port_list_check_receive(ports, af, &payload, sizeof(payload),
*699cd480SApple OSS Distributions	    validator, context);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_source_ether_mismatch(switch_port_t port, const ether_header_t * eh_p)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	/* source shouldn't be our own MAC addresses */
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_NE(eh_p->ether_shost[EA_UNIT_INDEX], port->unit,
*699cd480SApple OSS Distributions	    "ether source matches unit %d", port->unit);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_not_present_dhost(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    __unused u_int pkt_len,
*699cd480SApple OSS Distributions    __unused void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	validate_source_ether_mismatch(port, eh_p);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(bcmp(eh_p->ether_dhost, &ether_external,
*699cd480SApple OSS Distributions	    sizeof(eh_p->ether_dhost)), 0,
*699cd480SApple OSS Distributions	    "%s", __func__);
*699cd480SApple OSS Distributions	port->test_count++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_broadcast_dhost(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    __unused u_int pkt_len,
*699cd480SApple OSS Distributions    __unused void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	validate_source_ether_mismatch(port, eh_p);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_NE((eh_p->ether_dhost[0] & 0x01), 0,
*699cd480SApple OSS Distributions	    "%s", __func__);
*699cd480SApple OSS Distributions	port->test_count++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_port_dhost(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    __unused u_int pkt_len,
*699cd480SApple OSS Distributions    __unused void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	validate_source_ether_mismatch(port, eh_p);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(eh_p->ether_dhost[EA_UNIT_INDEX], port->unit,
*699cd480SApple OSS Distributions	    "wrong dhost unit %d != %d",
*699cd480SApple OSS Distributions	    eh_p->ether_dhost[EA_UNIT_INDEX], port->unit);
*699cd480SApple OSS Distributions	port->test_count++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionscheck_received_count(switch_port_list_t port_list,
*699cd480SApple OSS Distributions    switch_port_t port, uint32_t expected_packets)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   scan;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, scan = port_list->list; i < port_list->count; i++, scan++) {
*699cd480SApple OSS Distributions		if (scan == port) {
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_EQ(port->test_count, 0,
*699cd480SApple OSS Distributions			    "unexpected receive on port %d",
*699cd480SApple OSS Distributions			    port->unit);
*699cd480SApple OSS Distributions		} else if (expected_packets == ALL_ADDRS) {
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_EQ(scan->test_count, scan->num_addrs,
*699cd480SApple OSS Distributions			    "didn't receive on all addrs");
*699cd480SApple OSS Distributions		} else {
*699cd480SApple OSS Distributions			T_QUIET;
*699cd480SApple OSS Distributions			T_ASSERT_EQ(scan->test_count, expected_packets,
*699cd480SApple OSS Distributions			    "wrong receive count on port %s", scan->member_ifname);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsunicast_send_all(switch_port_list_t port_list, uint8_t af, switch_port_t port)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   scan;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, scan = port_list->list; i < port_list->count; i++, scan++) {
*699cd480SApple OSS Distributions		if (S_debug) {
*699cd480SApple OSS Distributions			T_LOG("Unicast send on %s", port->ifname);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		for (u_int j = 0; j < scan->num_addrs; j++) {
*699cd480SApple OSS Distributions			ether_addr_t    eaddr;
*699cd480SApple OSS Distributions			union ifbrip    ip;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			set_ethernet_address(&eaddr, scan->unit, j);
*699cd480SApple OSS Distributions			get_ip_address(af, scan->unit, j, &ip);
*699cd480SApple OSS Distributions			switch_port_send_udp_addr_index(port, af, 0, &eaddr, &ip,
*699cd480SApple OSS Distributions			    NULL, 0);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_learning_test_once(switch_port_list_t port_list,
*699cd480SApple OSS Distributions    uint8_t af,
*699cd480SApple OSS Distributions    packet_validator_t validator,
*699cd480SApple OSS Distributions    void * context,
*699cd480SApple OSS Distributions    const ether_addr_t * dst_eaddr,
*699cd480SApple OSS Distributions    bool retry)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	union ifbrip    dst_ip;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	get_broadcast_ip_address(af, &dst_ip);
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		if (port->test_address_count == port->num_addrs) {
*699cd480SApple OSS Distributions			/* already populated */
*699cd480SApple OSS Distributions			continue;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		if (S_debug) {
*699cd480SApple OSS Distributions			T_LOG("Sending on %s", port->ifname);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions			uint32_t        generation;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			if (retry) {
*699cd480SApple OSS Distributions				uint64_t        addr_bit;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions				addr_bit = 1 << j;
*699cd480SApple OSS Distributions				if ((port->test_address_present & addr_bit)
*699cd480SApple OSS Distributions				    != 0) {
*699cd480SApple OSS Distributions					/* already present */
*699cd480SApple OSS Distributions					continue;
*699cd480SApple OSS Distributions				}
*699cd480SApple OSS Distributions				T_LOG("Retry port %s unit %u address %u",
*699cd480SApple OSS Distributions				    port->ifname, port->unit, j);
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			generation = next_generation();
*699cd480SApple OSS Distributions			send_generation(port,
*699cd480SApple OSS Distributions			    af,
*699cd480SApple OSS Distributions			    j,
*699cd480SApple OSS Distributions			    dst_eaddr,
*699cd480SApple OSS Distributions			    &dst_ip,
*699cd480SApple OSS Distributions			    generation);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			/* receive across all ports */
*699cd480SApple OSS Distributions			check_receive_generation(port_list,
*699cd480SApple OSS Distributions			    af,
*699cd480SApple OSS Distributions			    generation,
*699cd480SApple OSS Distributions			    validator,
*699cd480SApple OSS Distributions			    context);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			/* ensure that every port saw the packet */
*699cd480SApple OSS Distributions			check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic inline const char *
*699cd480SApple OSS Distributionsaf_get_str(uint8_t af)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	return (af == AF_INET) ? "IPv4" : "IPv6";
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_learning_test(switch_port_list_t port_list,
*699cd480SApple OSS Distributions    uint8_t af,
*699cd480SApple OSS Distributions    packet_validator_t validator,
*699cd480SApple OSS Distributions    void * context,
*699cd480SApple OSS Distributions    const ether_addr_t * dst_eaddr)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	char            ntoabuf[ETHER_NTOA_BUFSIZE];
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions	bool            verified = false;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	ether_ntoa_buf(dst_eaddr, ntoabuf, sizeof(ntoabuf));
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/*
*699cd480SApple OSS Distributions	 * Send a broadcast frame from every port in the list so that the bridge
*699cd480SApple OSS Distributions	 * learns our MAC address.
*699cd480SApple OSS Distributions	 */
*699cd480SApple OSS Distributions#define BROADCAST_MAX_TRIES             20
*699cd480SApple OSS Distributions	for (int try = 1; try < BROADCAST_MAX_TRIES; try++) {
*699cd480SApple OSS Distributions		bool    retry = (try > 1);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		if (!retry) {
*699cd480SApple OSS Distributions			T_LOG("%s: %s #ports %u #addrs %u dest %s",
*699cd480SApple OSS Distributions			    __func__,
*699cd480SApple OSS Distributions			    af_get_str(af),
*699cd480SApple OSS Distributions			    port_list->count, port_list->list->num_addrs,
*699cd480SApple OSS Distributions			    ntoabuf);
*699cd480SApple OSS Distributions		} else {
*699cd480SApple OSS Distributions			T_LOG("%s: %s #ports %u #addrs %u dest %s (TRY=%d)",
*699cd480SApple OSS Distributions			    __func__,
*699cd480SApple OSS Distributions			    af_get_str(af),
*699cd480SApple OSS Distributions			    port_list->count, port_list->list->num_addrs,
*699cd480SApple OSS Distributions			    ntoabuf, try);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		bridge_learning_test_once(port_list, af, validator, context,
*699cd480SApple OSS Distributions		    dst_eaddr, retry);
*699cd480SApple OSS Distributions		/*
*699cd480SApple OSS Distributions		 * In the event of a memory allocation failure, it's possible
*699cd480SApple OSS Distributions		 * that the address was not learned. Figure out whether
*699cd480SApple OSS Distributions		 * all addresses are present, and if not, we'll retry on
*699cd480SApple OSS Distributions		 * those that are not present.
*699cd480SApple OSS Distributions		 */
*699cd480SApple OSS Distributions		verified = switch_port_list_verify_rt_table(port_list, false);
*699cd480SApple OSS Distributions		if (verified) {
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		/* wait a short time to allow the system to recover */
*699cd480SApple OSS Distributions		usleep(100 * 1000);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_TRUE(verified, "All addresses present");
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/*
*699cd480SApple OSS Distributions	 * Since we just broadcast on every port in the switch, the bridge knows
*699cd480SApple OSS Distributions	 * the port's MAC addresses. The bridge should not need to broadcast the
*699cd480SApple OSS Distributions	 * packet to learn, which means the unicast traffic should only arrive
*699cd480SApple OSS Distributions	 * on the intended port.
*699cd480SApple OSS Distributions	 */
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		/* send unicast packets to every other port's MAC addresses */
*699cd480SApple OSS Distributions		unicast_send_all(port_list, af, port);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* receive all of that generated traffic */
*699cd480SApple OSS Distributions		switch_port_list_check_receive(port_list, af, NULL, 0,
*699cd480SApple OSS Distributions		    validate_port_dhost, NULL);
*699cd480SApple OSS Distributions		/* check that we saw all of the unicast packets */
*699cd480SApple OSS Distributions		check_received_count(port_list, port, ALL_ADDRS);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_PASS("%s", __func__);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/**
*699cd480SApple OSS Distributions** MAC-NAT tests
*699cd480SApple OSS Distributions**/
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_check_received_count(switch_port_list_t port_list, switch_port_t port)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   scan;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, scan = port_list->list; i < port_list->count; i++, scan++) {
*699cd480SApple OSS Distributions		u_int   expected = 0;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		if (scan == port) {
*699cd480SApple OSS Distributions			expected = scan->num_addrs;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_EQ(scan->test_count, expected,
*699cd480SApple OSS Distributions		    "%s [member %s]%s expected %u actual %u",
*699cd480SApple OSS Distributions		    scan->ifname, scan->member_ifname,
*699cd480SApple OSS Distributions		    scan->mac_nat ? " [mac-nat]" : "",
*699cd480SApple OSS Distributions		    expected, scan->test_count);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_mac_nat(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    __unused u_int pkt_len,
*699cd480SApple OSS Distributions    __unused void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	if (port->mac_nat) {
*699cd480SApple OSS Distributions		bool    equal;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* source must match MAC-NAT interface */
*699cd480SApple OSS Distributions		equal = (bcmp(eh_p->ether_shost, &port->member_mac,
*699cd480SApple OSS Distributions		    sizeof(port->member_mac)) == 0);
*699cd480SApple OSS Distributions		if (!equal) {
*699cd480SApple OSS Distributions			ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_TRUE(equal, "source address match");
*699cd480SApple OSS Distributions		port->test_count++;
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		validate_not_present_dhost(port, eh_p, pkt_len, NULL);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_mac_nat_in(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    u_int pkt_len, __unused void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("%s received %u bytes", port->member_ifname, pkt_len);
*699cd480SApple OSS Distributions		ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(eh_p->ether_dhost[EA_UNIT_INDEX], port->unit,
*699cd480SApple OSS Distributions	    "dhost unit %u expected %u",
*699cd480SApple OSS Distributions	    eh_p->ether_dhost[EA_UNIT_INDEX], port->unit);
*699cd480SApple OSS Distributions	port->test_count++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_mac_nat_arp_out(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    u_int pkt_len, void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	const struct ether_arp *        earp;
*699cd480SApple OSS Distributions	switch_port_t                   send_port = (switch_port_t)context;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("%s received %u bytes", port->member_ifname, pkt_len);
*699cd480SApple OSS Distributions		ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)ntohs(eh_p->ether_type), (int)ETHERTYPE_ARP, NULL);
*699cd480SApple OSS Distributions	earp = (const struct ether_arp *)(const void *)(eh_p + 1);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(pkt_len, (u_int)(sizeof(*eh_p) + sizeof(*earp)), NULL);
*699cd480SApple OSS Distributions	if (port->mac_nat) {
*699cd480SApple OSS Distributions		bool            equal;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* source ethernet must match MAC-NAT interface */
*699cd480SApple OSS Distributions		equal = (bcmp(eh_p->ether_shost, &port->member_mac,
*699cd480SApple OSS Distributions		    sizeof(port->member_mac)) == 0);
*699cd480SApple OSS Distributions		if (!equal) {
*699cd480SApple OSS Distributions			ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_TRUE(equal, "%s -> %s source address translated",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname);
*699cd480SApple OSS Distributions		/* sender hw must match MAC-NAT interface */
*699cd480SApple OSS Distributions		equal = (bcmp(earp->arp_sha, &port->member_mac,
*699cd480SApple OSS Distributions		    sizeof(port->member_mac)) == 0);
*699cd480SApple OSS Distributions		if (!equal) {
*699cd480SApple OSS Distributions			ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_TRUE(equal, "%s -> %s sender hardware translated",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname);
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		/* source ethernet must match the sender */
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_EQ(eh_p->ether_shost[EA_UNIT_INDEX], send_port->unit,
*699cd480SApple OSS Distributions		    "%s -> %s unit %u expected %u",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname,
*699cd480SApple OSS Distributions		    eh_p->ether_shost[EA_UNIT_INDEX], send_port->unit);
*699cd480SApple OSS Distributions		/* source hw must match the sender */
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_EQ(earp->arp_sha[EA_UNIT_INDEX], send_port->unit,
*699cd480SApple OSS Distributions		    "%s -> %s unit %u expected %u",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname,
*699cd480SApple OSS Distributions		    earp->arp_sha[EA_UNIT_INDEX], send_port->unit);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	port->test_count++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_mac_nat_arp_in(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    u_int pkt_len, void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	const struct ether_arp *        earp;
*699cd480SApple OSS Distributions	switch_port_t                   send_port = (switch_port_t)context;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("%s received %u bytes", port->member_ifname, pkt_len);
*699cd480SApple OSS Distributions		ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	earp = (const struct ether_arp *)(const void *)(eh_p + 1);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)ntohs(eh_p->ether_type), (int)ETHERTYPE_ARP, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(pkt_len, (u_int)(sizeof(*eh_p) + sizeof(*earp)), NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_FALSE(port->mac_nat, NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* destination ethernet must match the unit */
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(eh_p->ether_dhost[EA_UNIT_INDEX], port->unit,
*699cd480SApple OSS Distributions	    "%s -> %s unit %u expected %u",
*699cd480SApple OSS Distributions	    send_port->member_ifname,
*699cd480SApple OSS Distributions	    port->member_ifname,
*699cd480SApple OSS Distributions	    eh_p->ether_dhost[EA_UNIT_INDEX], port->unit);
*699cd480SApple OSS Distributions	/* source hw must match the sender */
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(earp->arp_tha[EA_UNIT_INDEX], port->unit,
*699cd480SApple OSS Distributions	    "%s -> %s unit %u expected %u",
*699cd480SApple OSS Distributions	    send_port->member_ifname,
*699cd480SApple OSS Distributions	    port->member_ifname,
*699cd480SApple OSS Distributions	    earp->arp_tha[EA_UNIT_INDEX], port->unit);
*699cd480SApple OSS Distributions	port->test_count++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_test_arp_out(switch_port_list_t port_list)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	struct in_addr  ip_dst;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	ip_dst = get_external_ipv4_address();
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		if (port->mac_nat) {
*699cd480SApple OSS Distributions			continue;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions			ether_addr_t    eaddr;
*699cd480SApple OSS Distributions			struct in_addr  ip_src;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			set_ethernet_address(&eaddr, port->unit, j);
*699cd480SApple OSS Distributions			get_ipv4_address(port->unit, j, &ip_src);
*699cd480SApple OSS Distributions			switch_port_send_arp(port,
*699cd480SApple OSS Distributions			    ARPOP_REQUEST,
*699cd480SApple OSS Distributions			    &eaddr,
*699cd480SApple OSS Distributions			    ip_src,
*699cd480SApple OSS Distributions			    NULL,
*699cd480SApple OSS Distributions			    ip_dst);
*699cd480SApple OSS Distributions			switch_port_list_check_receive(port_list, AF_INET,
*699cd480SApple OSS Distributions			    NULL, 0,
*699cd480SApple OSS Distributions			    validate_mac_nat_arp_out,
*699cd480SApple OSS Distributions			    port);
*699cd480SApple OSS Distributions			check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_PASS("%s", __func__);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_send_arp_response(switch_port_t ext_port, switch_port_t port)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct in_addr  ip_src;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_TRUE(ext_port->mac_nat, "%s is MAC-NAT interface",
*699cd480SApple OSS Distributions	    ext_port->member_ifname);
*699cd480SApple OSS Distributions	ip_src = get_external_ipv4_address();
*699cd480SApple OSS Distributions	for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions		struct in_addr  ip_dst;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		get_ipv4_address(port->unit, j, &ip_dst);
*699cd480SApple OSS Distributions		if (S_debug) {
*699cd480SApple OSS Distributions			T_LOG("Generating ARP destined to %s %s",
*699cd480SApple OSS Distributions			    port->ifname, inet_ntoa(ip_dst));
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		switch_port_send_arp(ext_port,
*699cd480SApple OSS Distributions		    ARPOP_REPLY,
*699cd480SApple OSS Distributions		    &ether_external,
*699cd480SApple OSS Distributions		    ip_src,
*699cd480SApple OSS Distributions		    &ext_port->member_mac,
*699cd480SApple OSS Distributions		    ip_dst);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_test_arp_in(switch_port_list_t port_list)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	struct in_addr  ip_src;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	ip_src = get_external_ipv4_address();
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		if (port->mac_nat) {
*699cd480SApple OSS Distributions			continue;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		mac_nat_send_arp_response(port_list->list, port);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* receive the generated traffic */
*699cd480SApple OSS Distributions		switch_port_list_check_receive(port_list, AF_INET, NULL, 0,
*699cd480SApple OSS Distributions		    validate_mac_nat_arp_in,
*699cd480SApple OSS Distributions		    port_list->list);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* verify that only the single port got the packet */
*699cd480SApple OSS Distributions		mac_nat_check_received_count(port_list, port);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_PASS("%s", __func__);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_mac_nat_dhcp(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    u_int pkt_len, void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int                           dp_flags;
*699cd480SApple OSS Distributions	const struct bootp_packet *     pkt;
*699cd480SApple OSS Distributions	switch_port_t                   send_port = (switch_port_t)context;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(pkt_len, (u_int)sizeof(*pkt), NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ((int)ntohs(eh_p->ether_type), (int)ETHERTYPE_IP, NULL);
*699cd480SApple OSS Distributions	pkt = (const struct bootp_packet *)(const void *)(eh_p + 1);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	dp_flags = ntohs(pkt->bp_bootp.bp_unused);
*699cd480SApple OSS Distributions	if (port->mac_nat) {
*699cd480SApple OSS Distributions		bool            equal;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* Broadcast bit must be set */
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_BITS_SET(dp_flags, (u_int)DHCP_FLAGS_BROADCAST,
*699cd480SApple OSS Distributions		    "%s -> %s: flags 0x%x must have 0x%x",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname,
*699cd480SApple OSS Distributions		    dp_flags, DHCP_FLAGS_BROADCAST);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* source must match MAC-NAT interface */
*699cd480SApple OSS Distributions		equal = (bcmp(eh_p->ether_shost, &port->member_mac,
*699cd480SApple OSS Distributions		    sizeof(port->member_mac)) == 0);
*699cd480SApple OSS Distributions		if (!equal) {
*699cd480SApple OSS Distributions			ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_TRUE(equal, "%s -> %s source address translated",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname);
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		/* Broadcast bit must not be set */
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_BITS_NOTSET(dp_flags, DHCP_FLAGS_BROADCAST,
*699cd480SApple OSS Distributions		    "%s -> %s flags 0x%x must not have 0x%x",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname,
*699cd480SApple OSS Distributions		    dp_flags, DHCP_FLAGS_BROADCAST);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_EQ(eh_p->ether_shost[EA_UNIT_INDEX], send_port->unit,
*699cd480SApple OSS Distributions		    "%s -> %s unit %u expected %u",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname,
*699cd480SApple OSS Distributions		    eh_p->ether_shost[EA_UNIT_INDEX], send_port->unit);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	port->test_count++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_test_dhcp(switch_port_list_t port_list, bool link_layer_unicast)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	struct in_addr  ip_dst = { INADDR_BROADCAST };
*699cd480SApple OSS Distributions	struct in_addr  ip_src = { INADDR_ANY };
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions	ether_addr_t *  ether_dst;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (link_layer_unicast) {
*699cd480SApple OSS Distributions		/* use link-layer address of MAC-NAT interface */
*699cd480SApple OSS Distributions		ether_dst = &port_list->list[0].member_mac;
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		/* use link-layer broadcast address */
*699cd480SApple OSS Distributions		ether_dst = &ether_broadcast;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		ether_addr_t            eaddr;
*699cd480SApple OSS Distributions		dhcp_min_payload        payload;
*699cd480SApple OSS Distributions		u_int                   payload_len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		if (!link_layer_unicast && port->mac_nat) {
*699cd480SApple OSS Distributions			/* only send through non-MAC-NAT ports */
*699cd480SApple OSS Distributions			continue;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		set_ethernet_address(&eaddr, port->unit, 0);
*699cd480SApple OSS Distributions		payload_len = make_dhcp_payload(&payload, &eaddr);
*699cd480SApple OSS Distributions		if (S_debug) {
*699cd480SApple OSS Distributions			T_LOG("%s: transmit DHCP packet (member %s)",
*699cd480SApple OSS Distributions			    port->ifname, port->member_ifname);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		switch_port_send_udp(port,
*699cd480SApple OSS Distributions		    AF_INET,
*699cd480SApple OSS Distributions		    &eaddr,
*699cd480SApple OSS Distributions		    (union ifbrip *)&ip_src,
*699cd480SApple OSS Distributions		    BOOTP_CLIENT_PORT,
*699cd480SApple OSS Distributions		    ether_dst,
*699cd480SApple OSS Distributions		    (union ifbrip *)&ip_dst,
*699cd480SApple OSS Distributions		    BOOTP_SERVER_PORT,
*699cd480SApple OSS Distributions		    &payload,
*699cd480SApple OSS Distributions		    payload_len);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		switch_port_list_check_receive(port_list, AF_INET, NULL, 0,
*699cd480SApple OSS Distributions		    validate_mac_nat_dhcp,
*699cd480SApple OSS Distributions		    port);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions		if (link_layer_unicast) {
*699cd480SApple OSS Distributions			/* send a single unicast to MAC-NAT interface */
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_PASS("%s %s", __func__,
*699cd480SApple OSS Distributions	    link_layer_unicast ? "unicast" : "broadcast");
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_mac_nat_nd6(switch_port_t port,
*699cd480SApple OSS Distributions    const struct icmp6_hdr * icmp6,
*699cd480SApple OSS Distributions    u_int icmp6_len,
*699cd480SApple OSS Distributions    uint8_t opt_type,
*699cd480SApple OSS Distributions    u_int nd_hdr_size,
*699cd480SApple OSS Distributions    switch_port_t send_port)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	const uint8_t *                 linkaddr;
*699cd480SApple OSS Distributions	const uint8_t *                 ptr;
*699cd480SApple OSS Distributions	const struct nd_opt_hdr *       nd_opt;
*699cd480SApple OSS Distributions	u_int                           nd_size;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	ptr = (const uint8_t *)icmp6;
*699cd480SApple OSS Distributions	nd_size = nd_hdr_size + LINKADDR_OPT_LEN;
*699cd480SApple OSS Distributions	if (icmp6_len < nd_size) {
*699cd480SApple OSS Distributions		/* no LINKADDR option */
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	nd_opt = (const struct nd_opt_hdr *)(const void *)(ptr + nd_hdr_size);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(nd_opt->nd_opt_type, opt_type, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(GET_ND_OPT_LEN(nd_opt->nd_opt_len), LINKADDR_OPT_LEN, NULL);
*699cd480SApple OSS Distributions	linkaddr = (const uint8_t *)(nd_opt + 1);
*699cd480SApple OSS Distributions	if (port->mac_nat) {
*699cd480SApple OSS Distributions		bool    equal;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		equal = (bcmp(linkaddr, &port->member_mac,
*699cd480SApple OSS Distributions		    sizeof(port->member_mac)) == 0);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_TRUE(equal, "%s -> %s sender hardware translated",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname);
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		/* source hw must match the sender */
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_EQ(linkaddr[EA_UNIT_INDEX], send_port->unit,
*699cd480SApple OSS Distributions		    "%s -> %s unit %u expected %u",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname,
*699cd480SApple OSS Distributions		    linkaddr[EA_UNIT_INDEX], send_port->unit);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_mac_nat_icmp6_out(switch_port_t port, const struct icmp6_hdr * icmp6,
*699cd480SApple OSS Distributions    u_int icmp6_len, switch_port_t send_port)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	switch (icmp6->icmp6_type) {
*699cd480SApple OSS Distributions	case ND_NEIGHBOR_ADVERT:
*699cd480SApple OSS Distributions		validate_mac_nat_nd6(port, icmp6, icmp6_len,
*699cd480SApple OSS Distributions		    ND_OPT_TARGET_LINKADDR,
*699cd480SApple OSS Distributions		    sizeof(struct nd_neighbor_advert),
*699cd480SApple OSS Distributions		    send_port);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case ND_NEIGHBOR_SOLICIT:
*699cd480SApple OSS Distributions		validate_mac_nat_nd6(port, icmp6, icmp6_len,
*699cd480SApple OSS Distributions		    ND_OPT_SOURCE_LINKADDR,
*699cd480SApple OSS Distributions		    sizeof(struct nd_neighbor_solicit),
*699cd480SApple OSS Distributions		    send_port);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case ND_ROUTER_SOLICIT:
*699cd480SApple OSS Distributions		validate_mac_nat_nd6(port, icmp6, icmp6_len,
*699cd480SApple OSS Distributions		    ND_OPT_SOURCE_LINKADDR,
*699cd480SApple OSS Distributions		    sizeof(struct nd_router_solicit),
*699cd480SApple OSS Distributions		    send_port);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		T_FAIL("Unsupported icmp6 type %d", icmp6->icmp6_type);
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsvalidate_mac_nat_nd6_out(switch_port_t port, const ether_header_t * eh_p,
*699cd480SApple OSS Distributions    u_int pkt_len, void * context)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	const struct icmp6_hdr *        icmp6;
*699cd480SApple OSS Distributions	const struct ip6_hdr *          ip6;
*699cd480SApple OSS Distributions	switch_port_t                   send_port = (switch_port_t)context;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("%s received %u bytes", port->member_ifname, pkt_len);
*699cd480SApple OSS Distributions		ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(ntohs(eh_p->ether_type), (u_short)ETHERTYPE_IPV6, NULL);
*699cd480SApple OSS Distributions	ip6 = (const struct ip6_hdr *)(const void *)(eh_p + 1);
*699cd480SApple OSS Distributions	icmp6 = (const struct icmp6_hdr *)(const void *)(ip6 + 1);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(pkt_len, (u_int)MIN_ICMP6_LEN, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(ip6->ip6_nxt, IPPROTO_ICMPV6, NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* validate the ethernet header */
*699cd480SApple OSS Distributions	if (port->mac_nat) {
*699cd480SApple OSS Distributions		bool            equal;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* source ethernet must match MAC-NAT interface */
*699cd480SApple OSS Distributions		equal = (bcmp(eh_p->ether_shost, &port->member_mac,
*699cd480SApple OSS Distributions		    sizeof(port->member_mac)) == 0);
*699cd480SApple OSS Distributions		if (!equal) {
*699cd480SApple OSS Distributions			ethernet_frame_validate(eh_p, pkt_len, true);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_TRUE(equal, "%s -> %s source address translated",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname);
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		/* source ethernet must match the sender */
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_EQ(eh_p->ether_shost[EA_UNIT_INDEX], send_port->unit,
*699cd480SApple OSS Distributions		    "%s -> %s unit %u expected %u",
*699cd480SApple OSS Distributions		    send_port->member_ifname,
*699cd480SApple OSS Distributions		    port->member_ifname,
*699cd480SApple OSS Distributions		    eh_p->ether_shost[EA_UNIT_INDEX], send_port->unit);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	/* validate the icmp6 payload */
*699cd480SApple OSS Distributions	validate_mac_nat_icmp6_out(port, icmp6,
*699cd480SApple OSS Distributions	    pkt_len - ETHER_IPV6_LEN,
*699cd480SApple OSS Distributions	    send_port);
*699cd480SApple OSS Distributions	port->test_count++;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_test_nd6_out(switch_port_list_t port_list)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	ether_addr_t *  ext_mac;
*699cd480SApple OSS Distributions	switch_port_t   ext_port;
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	union ifbrip    ip_dst;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	get_external_ip_address(AF_INET6, &ip_dst);
*699cd480SApple OSS Distributions	ext_port = port_list->list;
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_TRUE(ext_port->mac_nat, NULL);
*699cd480SApple OSS Distributions	ext_mac = &ext_port->member_mac;
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		if (port->mac_nat) {
*699cd480SApple OSS Distributions			continue;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		/* neighbor solicit */
*699cd480SApple OSS Distributions		for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions			ether_addr_t    eaddr;
*699cd480SApple OSS Distributions			union ifbrip    ip_src;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			set_ethernet_address(&eaddr, port->unit, j);
*699cd480SApple OSS Distributions			get_ip_address(AF_INET6, port->unit, j, &ip_src);
*699cd480SApple OSS Distributions			switch_port_send_nd6(port,
*699cd480SApple OSS Distributions			    ND_NEIGHBOR_SOLICIT,
*699cd480SApple OSS Distributions			    &eaddr,
*699cd480SApple OSS Distributions			    &ip_src.ifbrip_addr6,
*699cd480SApple OSS Distributions			    NULL,
*699cd480SApple OSS Distributions			    NULL,
*699cd480SApple OSS Distributions			    &ip_dst.ifbrip_addr6);
*699cd480SApple OSS Distributions			switch_port_list_check_receive(port_list, AF_INET,
*699cd480SApple OSS Distributions			    NULL, 0,
*699cd480SApple OSS Distributions			    validate_mac_nat_nd6_out,
*699cd480SApple OSS Distributions			    port);
*699cd480SApple OSS Distributions			check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		/* neighbor advert */
*699cd480SApple OSS Distributions		for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions			ether_addr_t    eaddr;
*699cd480SApple OSS Distributions			union ifbrip    ip_src;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			set_ethernet_address(&eaddr, port->unit, j);
*699cd480SApple OSS Distributions			get_ip_address(AF_INET6, port->unit, j, &ip_src);
*699cd480SApple OSS Distributions			switch_port_send_nd6(port,
*699cd480SApple OSS Distributions			    ND_NEIGHBOR_ADVERT,
*699cd480SApple OSS Distributions			    &eaddr,
*699cd480SApple OSS Distributions			    &ip_src.ifbrip_addr6,
*699cd480SApple OSS Distributions			    NULL,
*699cd480SApple OSS Distributions			    &eaddr,
*699cd480SApple OSS Distributions			    &ip_src.ifbrip_addr6);
*699cd480SApple OSS Distributions			switch_port_list_check_receive(port_list, AF_INET,
*699cd480SApple OSS Distributions			    NULL, 0,
*699cd480SApple OSS Distributions			    validate_mac_nat_nd6_out,
*699cd480SApple OSS Distributions			    port);
*699cd480SApple OSS Distributions			check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		/* router solicit */
*699cd480SApple OSS Distributions		for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions			ether_addr_t    eaddr;
*699cd480SApple OSS Distributions			union ifbrip    ip_src;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			set_ethernet_address(&eaddr, port->unit, j);
*699cd480SApple OSS Distributions			get_ip_address(AF_INET6, port->unit, j, &ip_src);
*699cd480SApple OSS Distributions			//get_ipv6ll_address(port->unit, j, &ip_src.ifbrip_addr6);
*699cd480SApple OSS Distributions			switch_port_send_nd6(port,
*699cd480SApple OSS Distributions			    ND_ROUTER_SOLICIT,
*699cd480SApple OSS Distributions			    &eaddr,
*699cd480SApple OSS Distributions			    &ip_src.ifbrip_addr6,
*699cd480SApple OSS Distributions			    NULL,
*699cd480SApple OSS Distributions			    NULL,
*699cd480SApple OSS Distributions			    NULL);
*699cd480SApple OSS Distributions			switch_port_list_check_receive(port_list, AF_INET,
*699cd480SApple OSS Distributions			    NULL, 0,
*699cd480SApple OSS Distributions			    validate_mac_nat_nd6_out,
*699cd480SApple OSS Distributions			    port);
*699cd480SApple OSS Distributions			check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_PASS("%s", __func__);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_send_response(switch_port_t ext_port, uint8_t af, switch_port_t port)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	union ifbrip    src_ip;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_TRUE(ext_port->mac_nat, "%s is MAC-NAT interface",
*699cd480SApple OSS Distributions	    ext_port->member_ifname);
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("Generating UDP traffic destined to %s", port->ifname);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	get_external_ip_address(af, &src_ip);
*699cd480SApple OSS Distributions	for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions		union ifbrip    ip;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		get_ip_address(af, port->unit, j, &ip);
*699cd480SApple OSS Distributions		switch_port_send_udp(ext_port,
*699cd480SApple OSS Distributions		    af,
*699cd480SApple OSS Distributions		    &ether_external,
*699cd480SApple OSS Distributions		    &src_ip,
*699cd480SApple OSS Distributions		    TEST_DEST_PORT,
*699cd480SApple OSS Distributions		    &ext_port->member_mac,
*699cd480SApple OSS Distributions		    &ip,
*699cd480SApple OSS Distributions		    TEST_SOURCE_PORT,
*699cd480SApple OSS Distributions		    NULL, 0);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_test_ip_once(switch_port_list_t port_list, uint8_t af, bool retry)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	union ifbrip    dst_ip;
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	get_external_ip_address(af, &dst_ip);
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		if (port->test_address_count == port->num_addrs) {
*699cd480SApple OSS Distributions			/* already populated */
*699cd480SApple OSS Distributions			continue;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		if (S_debug) {
*699cd480SApple OSS Distributions			T_LOG("Sending on %s", port->ifname);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions			uint32_t        generation;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			if (retry) {
*699cd480SApple OSS Distributions				uint64_t        addr_bit;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions				addr_bit = 1 << j;
*699cd480SApple OSS Distributions				if ((port->test_address_present & addr_bit)
*699cd480SApple OSS Distributions				    != 0) {
*699cd480SApple OSS Distributions					/* already present */
*699cd480SApple OSS Distributions					continue;
*699cd480SApple OSS Distributions				}
*699cd480SApple OSS Distributions				T_LOG("Retry port %s unit %u address %u",
*699cd480SApple OSS Distributions				    port->ifname, port->unit, j);
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			generation = next_generation();
*699cd480SApple OSS Distributions			send_generation(port,
*699cd480SApple OSS Distributions			    af,
*699cd480SApple OSS Distributions			    j,
*699cd480SApple OSS Distributions			    &ether_external,
*699cd480SApple OSS Distributions			    &dst_ip,
*699cd480SApple OSS Distributions			    generation);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			/* receive across all ports */
*699cd480SApple OSS Distributions			check_receive_generation(port_list,
*699cd480SApple OSS Distributions			    af,
*699cd480SApple OSS Distributions			    generation,
*699cd480SApple OSS Distributions			    validate_mac_nat,
*699cd480SApple OSS Distributions			    NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions			/* ensure that every port saw the packet */
*699cd480SApple OSS Distributions			check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsmac_nat_test_ip(switch_port_list_t port_list, uint8_t af)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions	bool            verified = false;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/*
*699cd480SApple OSS Distributions	 * Send a packet from every port in the list so that the bridge
*699cd480SApple OSS Distributions	 * learns the MAC addresses and IP addresses.
*699cd480SApple OSS Distributions	 */
*699cd480SApple OSS Distributions#define MAC_NAT_MAX_TRIES               20
*699cd480SApple OSS Distributions	for (int try = 1; try < BROADCAST_MAX_TRIES; try++) {
*699cd480SApple OSS Distributions		bool    retry = (try > 1);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		if (!retry) {
*699cd480SApple OSS Distributions			T_LOG("%s: #ports %u #addrs %u",
*699cd480SApple OSS Distributions			    __func__,
*699cd480SApple OSS Distributions			    port_list->count, port_list->list->num_addrs);
*699cd480SApple OSS Distributions		} else {
*699cd480SApple OSS Distributions			T_LOG("%s: #ports %u #addrs %u destination (TRY=%d)",
*699cd480SApple OSS Distributions			    __func__,
*699cd480SApple OSS Distributions			    port_list->count, port_list->list->num_addrs,
*699cd480SApple OSS Distributions			    try);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		mac_nat_test_ip_once(port_list, af, retry);
*699cd480SApple OSS Distributions		/*
*699cd480SApple OSS Distributions		 * In the event of a memory allocation failure, it's possible
*699cd480SApple OSS Distributions		 * that the address was not learned. Figure out whether
*699cd480SApple OSS Distributions		 * all addresses are present, and if not, we'll retry on
*699cd480SApple OSS Distributions		 * those that are not present.
*699cd480SApple OSS Distributions		 */
*699cd480SApple OSS Distributions		verified = switch_port_list_verify_mac_nat(port_list, false);
*699cd480SApple OSS Distributions		if (verified) {
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		/* wait a short time to allow the system to recover */
*699cd480SApple OSS Distributions		usleep(100 * 1000);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_TRUE(verified, "All addresses present");
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/*
*699cd480SApple OSS Distributions	 * The bridge now has an IP address <-> MAC address binding for every
*699cd480SApple OSS Distributions	 * address on each internal interface.
*699cd480SApple OSS Distributions	 *
*699cd480SApple OSS Distributions	 * Generate an inbound packet on the MAC-NAT interface targeting
*699cd480SApple OSS Distributions	 * each interface address. Verify that the packet appears on
*699cd480SApple OSS Distributions	 * the appropriate internal address with appropriate translation.
*699cd480SApple OSS Distributions	 */
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		if (port->mac_nat) {
*699cd480SApple OSS Distributions			continue;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		mac_nat_send_response(port_list->list, af, port);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* receive the generated traffic */
*699cd480SApple OSS Distributions		switch_port_list_check_receive(port_list, AF_INET, NULL, 0,
*699cd480SApple OSS Distributions		    validate_mac_nat_in,
*699cd480SApple OSS Distributions		    NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* verify that only the single port got the packet */
*699cd480SApple OSS Distributions		mac_nat_check_received_count(port_list, port);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_PASS("%s", __func__);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/**
*699cd480SApple OSS Distributions** interface management
*699cd480SApple OSS Distributions**/
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#if 0
*699cd480SApple OSS Distributionsstatic int
*699cd480SApple OSS Distributionsifnet_detach_ip(int s, char * name)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int                     err;
*699cd480SApple OSS Distributions	struct ifreq    ifr;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(&ifr, sizeof(ifr));
*699cd480SApple OSS Distributions	strncpy(ifr.ifr_name, name, sizeof(ifr.ifr_name));
*699cd480SApple OSS Distributions	err = ioctl(s, SIOCPROTODETACH, &ifr);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(err, "SIOCPROTODETACH %s", ifr.ifr_name);
*699cd480SApple OSS Distributions	return err;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions#endif
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define BRIDGE_NAME     "bridge"
*699cd480SApple OSS Distributions#define BRIDGE200       BRIDGE_NAME "200"
*699cd480SApple OSS Distributions#define FETH_NAME       "feth"
*699cd480SApple OSS Distributions#define FETH0           FETH_NAME "0"
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic int
*699cd480SApple OSS Distributionsbridge_add_member(int s, const char * bridge, const char * member)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct ifbreq           req;
*699cd480SApple OSS Distributions	int                     ret;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	memset(&req, 0, sizeof(req));
*699cd480SApple OSS Distributions	strlcpy(req.ifbr_ifsname, member, sizeof(req.ifbr_ifsname));
*699cd480SApple OSS Distributions	ret = siocdrvspec(s, bridge, BRDGADD, &req, sizeof(req), true);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(ret, "%s %s %s", __func__, bridge, member);
*699cd480SApple OSS Distributions	return ret;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic int
*699cd480SApple OSS Distributionsbridge_delete_member(int s, const char * bridge, const char * member)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct ifbreq           req;
*699cd480SApple OSS Distributions	int                     ret;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	memset(&req, 0, sizeof(req));
*699cd480SApple OSS Distributions	strlcpy(req.ifbr_ifsname, member, sizeof(req.ifbr_ifsname));
*699cd480SApple OSS Distributions	ret = siocdrvspec(s, bridge, BRDGDEL, &req, sizeof(req), true);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(ret, "%s %s %s", __func__, bridge, member);
*699cd480SApple OSS Distributions	return ret;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic int
*699cd480SApple OSS Distributionsbridge_member_modify_ifflags(int s, const char * bridge, const char * member,
*699cd480SApple OSS Distributions    uint32_t flags_to_modify, bool set)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	uint32_t        flags;
*699cd480SApple OSS Distributions	bool            need_set = false;
*699cd480SApple OSS Distributions	struct ifbreq   req;
*699cd480SApple OSS Distributions	int             ret;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	memset(&req, 0, sizeof(req));
*699cd480SApple OSS Distributions	strlcpy(req.ifbr_ifsname, member, sizeof(req.ifbr_ifsname));
*699cd480SApple OSS Distributions	ret = siocdrvspec(s, bridge, BRDGGIFFLGS, &req, sizeof(req), false);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(ret, "BRDGGIFFLGS %s %s", bridge, member);
*699cd480SApple OSS Distributions	flags = req.ifbr_ifsflags;
*699cd480SApple OSS Distributions	if (set) {
*699cd480SApple OSS Distributions		if ((flags & flags_to_modify) != flags_to_modify) {
*699cd480SApple OSS Distributions			need_set = true;
*699cd480SApple OSS Distributions			req.ifbr_ifsflags |= flags_to_modify;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		/* need to set it */
*699cd480SApple OSS Distributions	} else if ((flags & flags_to_modify) != 0) {
*699cd480SApple OSS Distributions		/* need to clear it */
*699cd480SApple OSS Distributions		need_set = true;
*699cd480SApple OSS Distributions		req.ifbr_ifsflags &= ~flags_to_modify;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (need_set) {
*699cd480SApple OSS Distributions		ret = siocdrvspec(s, bridge, BRDGSIFFLGS,
*699cd480SApple OSS Distributions		    &req, sizeof(req), true);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_POSIX_SUCCESS(ret, "BRDGSIFFLGS %s %s 0x%x => 0x%x",
*699cd480SApple OSS Distributions		    bridge, member,
*699cd480SApple OSS Distributions		    flags, req.ifbr_ifsflags);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return ret;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic int
*699cd480SApple OSS Distributionsbridge_member_modify_mac_nat(int s, const char * bridge,
*699cd480SApple OSS Distributions    const char * member, bool enable)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	return bridge_member_modify_ifflags(s, bridge, member,
*699cd480SApple OSS Distributions	           IFBIF_MAC_NAT,
*699cd480SApple OSS Distributions	           enable);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic int
*699cd480SApple OSS Distributionsbridge_member_modify_checksum_offload(int s, const char * bridge,
*699cd480SApple OSS Distributions    const char * member, bool enable)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions#ifndef IFBIF_CHECKSUM_OFFLOAD
*699cd480SApple OSS Distributions#define IFBIF_CHECKSUM_OFFLOAD  0x10000 /* checksum inbound packets,
*699cd480SApple OSS Distributions	                                 * drop outbound packets with
*699cd480SApple OSS Distributions	                                 * bad checksum
*699cd480SApple OSS Distributions	                                 */
*699cd480SApple OSS Distributions#endif
*699cd480SApple OSS Distributions	return bridge_member_modify_ifflags(s, bridge, member,
*699cd480SApple OSS Distributions	           IFBIF_CHECKSUM_OFFLOAD,
*699cd480SApple OSS Distributions	           enable);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic struct ifbareq *
*699cd480SApple OSS Distributionsbridge_rt_table_copy_common(const char * bridge, u_int * ret_count)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct ifbaconf         ifbac;
*699cd480SApple OSS Distributions	u_int                   len = 8 * 1024;
*699cd480SApple OSS Distributions	char *                  inbuf = NULL;
*699cd480SApple OSS Distributions	char *                  ninbuf;
*699cd480SApple OSS Distributions	int                     ret;
*699cd480SApple OSS Distributions	struct ifbareq *        rt_table = NULL;
*699cd480SApple OSS Distributions	int                     s;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	s = inet_dgram_socket();
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/*
*699cd480SApple OSS Distributions	 * BRDGRTS should work like other ioctl's where passing in NULL
*699cd480SApple OSS Distributions	 * for the buffer says "tell me how many there are". Unfortunately,
*699cd480SApple OSS Distributions	 * it doesn't so we have to pass in a buffer, then check that it
*699cd480SApple OSS Distributions	 * was too big.
*699cd480SApple OSS Distributions	 */
*699cd480SApple OSS Distributions	for (;;) {
*699cd480SApple OSS Distributions		ninbuf = realloc(inbuf, len);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_NOTNULL((void *)ninbuf, "realloc %u", len);
*699cd480SApple OSS Distributions		ifbac.ifbac_len = len;
*699cd480SApple OSS Distributions		ifbac.ifbac_buf = inbuf = ninbuf;
*699cd480SApple OSS Distributions		ret = siocdrvspec(s, bridge, BRDGRTS,
*699cd480SApple OSS Distributions		    &ifbac, sizeof(ifbac), false);
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_POSIX_SUCCESS(ret, "%s %s", __func__, bridge);
*699cd480SApple OSS Distributions		if ((ifbac.ifbac_len + sizeof(*rt_table)) < len) {
*699cd480SApple OSS Distributions			/* we passed a buffer larger than what was required */
*699cd480SApple OSS Distributions			break;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		len *= 2;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (ifbac.ifbac_len == 0) {
*699cd480SApple OSS Distributions		free(ninbuf);
*699cd480SApple OSS Distributions		T_LOG("No bridge routing entries");
*699cd480SApple OSS Distributions		goto done;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	*ret_count = ifbac.ifbac_len / sizeof(*rt_table);
*699cd480SApple OSS Distributions	rt_table = (struct ifbareq *)(void *)ninbuf;
*699cd480SApple OSS Distributionsdone:
*699cd480SApple OSS Distributions	if (rt_table == NULL) {
*699cd480SApple OSS Distributions		*ret_count = 0;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (s >= 0) {
*699cd480SApple OSS Distributions		close(s);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return rt_table;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic struct ifbareq *
*699cd480SApple OSS Distributionsbridge_rt_table_copy(u_int * ret_count)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	return bridge_rt_table_copy_common(BRIDGE200, ret_count);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_rt_table_log(struct ifbareq *rt_table, u_int count)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int                   i;
*699cd480SApple OSS Distributions	char                    ntoabuf[ETHER_NTOA_BUFSIZE];
*699cd480SApple OSS Distributions	struct ifbareq *        ifba;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, ifba = rt_table; i < count; i++, ifba++) {
*699cd480SApple OSS Distributions		ether_ntoa_buf((const ether_addr_t *)&ifba->ifba_dst,
*699cd480SApple OSS Distributions		    ntoabuf, sizeof(ntoabuf));
*699cd480SApple OSS Distributions		T_LOG("%s %s %lu", ifba->ifba_ifsname, ntoabuf,
*699cd480SApple OSS Distributions		    ifba->ifba_expire);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic struct ifbrmne *
*699cd480SApple OSS Distributionsbridge_mac_nat_entries_copy_common(const char * bridge, u_int * ret_count)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	char *                  buf = NULL;
*699cd480SApple OSS Distributions	u_int                   count = 0;
*699cd480SApple OSS Distributions	int                     err;
*699cd480SApple OSS Distributions	u_int                   i;
*699cd480SApple OSS Distributions	struct ifbrmnelist      mnl;
*699cd480SApple OSS Distributions	struct ifbrmne *        ret_list = NULL;
*699cd480SApple OSS Distributions	int                     s;
*699cd480SApple OSS Distributions	char *                  scan;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	s = inet_dgram_socket();
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* find out how many there are */
*699cd480SApple OSS Distributions	bzero(&mnl, sizeof(mnl));
*699cd480SApple OSS Distributions	err = siocdrvspec(s, bridge, BRDGGMACNATLIST, &mnl, sizeof(mnl), false);
*699cd480SApple OSS Distributions	if (err != 0 && S_cleaning_up) {
*699cd480SApple OSS Distributions		T_LOG("BRDGGMACNATLIST %s failed %d", bridge, errno);
*699cd480SApple OSS Distributions		goto done;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(err, "BRDGGMACNATLIST %s", bridge);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_GE(mnl.ifbml_elsize, (uint16_t)sizeof(struct ifbrmne),
*699cd480SApple OSS Distributions	    "mac nat entry size %u minsize %u",
*699cd480SApple OSS Distributions	    mnl.ifbml_elsize, (u_int)sizeof(struct ifbrmne));
*699cd480SApple OSS Distributions	if (mnl.ifbml_len == 0) {
*699cd480SApple OSS Distributions		goto done;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* call again with a buffer large enough to hold them */
*699cd480SApple OSS Distributions	buf = malloc(mnl.ifbml_len);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_NOTNULL(buf, "mac nat entries buffer");
*699cd480SApple OSS Distributions	mnl.ifbml_buf = buf;
*699cd480SApple OSS Distributions	err = siocdrvspec(s, bridge, BRDGGMACNATLIST, &mnl, sizeof(mnl), false);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(err, "BRDGGMACNATLIST %s", bridge);
*699cd480SApple OSS Distributions	count = mnl.ifbml_len / mnl.ifbml_elsize;
*699cd480SApple OSS Distributions	if (count == 0) {
*699cd480SApple OSS Distributions		goto done;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (mnl.ifbml_elsize == sizeof(struct ifbrmne)) {
*699cd480SApple OSS Distributions		/* element size is expected size, no need to "right-size" it */
*699cd480SApple OSS Distributions		ret_list = (struct ifbrmne *)(void *)buf;
*699cd480SApple OSS Distributions		buf = NULL;
*699cd480SApple OSS Distributions		goto done;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	/* element size is larger than we expect, create a "right-sized" array */
*699cd480SApple OSS Distributions	ret_list = malloc(count * sizeof(*ret_list));
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_NOTNULL(ret_list, "mac nat entries list");
*699cd480SApple OSS Distributions	for (i = 0, scan = buf; i < count; i++, scan += mnl.ifbml_elsize) {
*699cd480SApple OSS Distributions		struct ifbrmne *        ifbmne;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		ifbmne = (struct ifbrmne *)(void *)scan;
*699cd480SApple OSS Distributions		ret_list[i] = *ifbmne;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributionsdone:
*699cd480SApple OSS Distributions	if (s >= 0) {
*699cd480SApple OSS Distributions		close(s);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (buf != NULL) {
*699cd480SApple OSS Distributions		free(buf);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	*ret_count = count;
*699cd480SApple OSS Distributions	return ret_list;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic struct ifbrmne *
*699cd480SApple OSS Distributionsbridge_mac_nat_entries_copy(u_int * ret_count)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	return bridge_mac_nat_entries_copy_common(BRIDGE200, ret_count);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_mac_nat_entries_log(struct ifbrmne * entries, u_int count)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int                   i;
*699cd480SApple OSS Distributions	char                    ntoabuf[ETHER_NTOA_BUFSIZE];
*699cd480SApple OSS Distributions	char                    ntopbuf[INET6_ADDRSTRLEN];
*699cd480SApple OSS Distributions	struct ifbrmne *        scan;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	for (i = 0, scan = entries; i < count; i++, scan++) {
*699cd480SApple OSS Distributions		ether_ntoa_buf((const ether_addr_t *)&scan->ifbmne_mac,
*699cd480SApple OSS Distributions		    ntoabuf, sizeof(ntoabuf));
*699cd480SApple OSS Distributions		inet_ntop(scan->ifbmne_af, &scan->ifbmne_ip,
*699cd480SApple OSS Distributions		    ntopbuf, sizeof(ntopbuf));
*699cd480SApple OSS Distributions		printf("%s %s %s %lu\n",
*699cd480SApple OSS Distributions		    scan->ifbmne_ifname, ntopbuf, ntoabuf,
*699cd480SApple OSS Distributions		    (unsigned long)scan->ifbmne_expire);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/**
*699cd480SApple OSS Distributions** Test Main
*699cd480SApple OSS Distributions**/
*699cd480SApple OSS Distributionsstatic u_int                    S_n_ports;
*699cd480SApple OSS Distributionsstatic switch_port_list_t       S_port_list;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_cleanup(const char * bridge, u_int n_ports, bool fail_on_error);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic int fake_bsd_mode;
*699cd480SApple OSS Distributionsstatic int fake_fcs;
*699cd480SApple OSS Distributionsstatic int fake_trailer_length;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsfake_set_trailers_fcs(bool enable)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int     error;
*699cd480SApple OSS Distributions	int     fcs;
*699cd480SApple OSS Distributions	size_t  len;
*699cd480SApple OSS Distributions	int     trailer_length;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (enable) {
*699cd480SApple OSS Distributions		fcs = 1;
*699cd480SApple OSS Distributions		trailer_length = 28;
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		fcs = 0;
*699cd480SApple OSS Distributions		trailer_length = 0;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* set fcs */
*699cd480SApple OSS Distributions	len = sizeof(fake_fcs);
*699cd480SApple OSS Distributions	error = sysctlbyname("net.link.fake.fcs",
*699cd480SApple OSS Distributions	    &fake_fcs, &len,
*699cd480SApple OSS Distributions	    &fcs, sizeof(fcs));
*699cd480SApple OSS Distributions	T_ASSERT_EQ(error, 0, "sysctl net.link.fake.fcs %d", fcs);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* set trailer_length */
*699cd480SApple OSS Distributions	len = sizeof(fake_trailer_length);
*699cd480SApple OSS Distributions	error = sysctlbyname("net.link.fake.trailer_length",
*699cd480SApple OSS Distributions	    &fake_trailer_length, &len,
*699cd480SApple OSS Distributions	    &trailer_length, sizeof(trailer_length));
*699cd480SApple OSS Distributions	T_ASSERT_EQ(error, 0, "sysctl net.link.fake.trailer_length %d",
*699cd480SApple OSS Distributions	    trailer_length);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsfake_restore_trailers_fcs(void)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int     error;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	error = sysctlbyname("net.link.fake.fcs",
*699cd480SApple OSS Distributions	    NULL, 0, &fake_fcs, sizeof(fake_fcs));
*699cd480SApple OSS Distributions	T_LOG("sysctl net.link.fake.fcs=%d returned %d", fake_fcs, error);
*699cd480SApple OSS Distributions	error = sysctlbyname("net.link.fake.trailer_length",
*699cd480SApple OSS Distributions	    NULL, 0, &fake_trailer_length, sizeof(fake_trailer_length));
*699cd480SApple OSS Distributions	T_LOG("sysctl net.link.fake.trailer_length=%d returned %d",
*699cd480SApple OSS Distributions	    fake_trailer_length, error);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsfake_set_bsd_mode(bool enable)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int     error;
*699cd480SApple OSS Distributions	int     bsd_mode;
*699cd480SApple OSS Distributions	size_t  len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bsd_mode = (enable) ? 1 : 0;
*699cd480SApple OSS Distributions	len = sizeof(fake_bsd_mode);
*699cd480SApple OSS Distributions	error = sysctlbyname("net.link.fake.bsd_mode",
*699cd480SApple OSS Distributions	    &fake_bsd_mode, &len,
*699cd480SApple OSS Distributions	    &bsd_mode, sizeof(bsd_mode));
*699cd480SApple OSS Distributions	T_ASSERT_EQ(error, 0, "sysctl net.link.fake.bsd_mode %d", bsd_mode);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsfake_restore_bsd_mode(void)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int     error;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	error = sysctlbyname("net.link.fake.bsd_mode",
*699cd480SApple OSS Distributions	    NULL, 0, &fake_bsd_mode, sizeof(fake_bsd_mode));
*699cd480SApple OSS Distributions	T_LOG("sysctl net.link.fake.bsd_mode=%d returned %d",
*699cd480SApple OSS Distributions	    fake_bsd_mode, error);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsfake_set_lro(bool enable)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int     error;
*699cd480SApple OSS Distributions	int     lro;
*699cd480SApple OSS Distributions	size_t  len;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	lro = (enable) ? 1 : 0;
*699cd480SApple OSS Distributions	len = sizeof(fake_bsd_mode);
*699cd480SApple OSS Distributions	error = sysctlbyname("net.link.fake.lro", NULL, 0,
*699cd480SApple OSS Distributions	    &lro, sizeof(lro));
*699cd480SApple OSS Distributions	T_ASSERT_EQ(error, 0, "sysctl net.link.fake.lro %d", lro);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionscleanup_common(bool dump_table)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	if (S_n_ports == 0) {
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	S_cleaning_up = true;
*699cd480SApple OSS Distributions	if (S_port_list != NULL &&
*699cd480SApple OSS Distributions	    (S_port_list->mac_nat || dump_table)) {
*699cd480SApple OSS Distributions		switch_port_list_log(S_port_list);
*699cd480SApple OSS Distributions		if (S_port_list->mac_nat) {
*699cd480SApple OSS Distributions			switch_port_list_verify_mac_nat(S_port_list, true);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		(void)switch_port_list_verify_rt_table(S_port_list, true);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("sleeping for 5 seconds\n");
*699cd480SApple OSS Distributions		sleep(5);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	bridge_cleanup(BRIDGE200, S_n_ports, false);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionscleanup(void)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	cleanup_common(true);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionssigint_handler(__unused int sig)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	cleanup_common(false);
*699cd480SApple OSS Distributions	signal(SIGINT, SIG_DFL);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic switch_port_list_t
*699cd480SApple OSS Distributionsbridge_setup(char * bridge, u_int n_ports, u_int num_addrs,
*699cd480SApple OSS Distributions    uint8_t setup_flags)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int                   addr_index = 1;
*699cd480SApple OSS Distributions	bool                    attach_stack;
*699cd480SApple OSS Distributions	bool                    checksum_offload;
*699cd480SApple OSS Distributions	errno_t                 err;
*699cd480SApple OSS Distributions	struct in_addr          ip;
*699cd480SApple OSS Distributions	switch_port_list_t      list = NULL;
*699cd480SApple OSS Distributions	bool                    mac_nat;
*699cd480SApple OSS Distributions	int                     rs = -1;
*699cd480SApple OSS Distributions	int                     s;
*699cd480SApple OSS Distributions	int                     s6 = -1;
*699cd480SApple OSS Distributions	uint8_t                 trailers;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	attach_stack = (setup_flags & SETUP_FLAGS_ATTACH_STACK) != 0;
*699cd480SApple OSS Distributions	checksum_offload = (setup_flags & SETUP_FLAGS_CHECKSUM_OFFLOAD) != 0;
*699cd480SApple OSS Distributions	mac_nat = (setup_flags & SETUP_FLAGS_MAC_NAT) != 0;
*699cd480SApple OSS Distributions	trailers = (setup_flags & SETUP_FLAGS_TRAILERS) != 0;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	S_n_ports = n_ports;
*699cd480SApple OSS Distributions	T_ATEND(cleanup);
*699cd480SApple OSS Distributions	T_SETUPBEGIN;
*699cd480SApple OSS Distributions	s = inet_dgram_socket();
*699cd480SApple OSS Distributions	if (attach_stack) {
*699cd480SApple OSS Distributions		rs = routing_socket();
*699cd480SApple OSS Distributions		s6 = inet6_dgram_socket();
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	err = ifnet_create(s, bridge);
*699cd480SApple OSS Distributions	if (err != 0) {
*699cd480SApple OSS Distributions		goto done;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	bridge_if_index = (u_short)if_nametoindex(bridge);
*699cd480SApple OSS Distributions	if (attach_stack) {
*699cd480SApple OSS Distributions		ether_addr_t    bridge_mac;
*699cd480SApple OSS Distributions		char            ntopbuf_ip[INET6_ADDRSTRLEN];
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		ifnet_get_lladdr(s, bridge, &bridge_mac);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		/* bridge gets .1 */
*699cd480SApple OSS Distributions		get_ipv4_address(0, addr_index, &bridge_ip_addr);
*699cd480SApple OSS Distributions		addr_index++;
*699cd480SApple OSS Distributions		siocaifaddr(s, bridge, bridge_ip_addr);
*699cd480SApple OSS Distributions		start_ipv6(s6, bridge);
*699cd480SApple OSS Distributions		get_ipv6_ll_address(&bridge_mac, &bridge_ipv6_addr);
*699cd480SApple OSS Distributions		inet_ntop(AF_INET6, &bridge_ipv6_addr, ntopbuf_ip,
*699cd480SApple OSS Distributions		    sizeof(ntopbuf_ip));
*699cd480SApple OSS Distributions		T_LOG("%s %s", bridge, ntopbuf_ip);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	list = switch_port_list_alloc(n_ports, mac_nat);
*699cd480SApple OSS Distributions	fake_set_bsd_mode(true);
*699cd480SApple OSS Distributions	fake_set_trailers_fcs(trailers);
*699cd480SApple OSS Distributions	for (u_int i = 0; i < n_ports; i++) {
*699cd480SApple OSS Distributions		bool    do_mac_nat;
*699cd480SApple OSS Distributions		char    ifname[IFNAMSIZ];
*699cd480SApple OSS Distributions		u_short if_index = 0;
*699cd480SApple OSS Distributions		char    member_ifname[IFNAMSIZ];
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		snprintf(ifname, sizeof(ifname), "%s%d",
*699cd480SApple OSS Distributions		    FETH_NAME, i);
*699cd480SApple OSS Distributions		snprintf(member_ifname, sizeof(member_ifname), "%s%d",
*699cd480SApple OSS Distributions		    FETH_NAME, i + n_ports);
*699cd480SApple OSS Distributions		err = ifnet_create(s, ifname);
*699cd480SApple OSS Distributions		if (err != 0) {
*699cd480SApple OSS Distributions			goto done;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		ifnet_attach_ip(s, ifname);
*699cd480SApple OSS Distributions		err = ifnet_create(s, member_ifname);
*699cd480SApple OSS Distributions		if (err != 0) {
*699cd480SApple OSS Distributions			goto done;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		err = fake_set_peer(s, ifname, member_ifname);
*699cd480SApple OSS Distributions		if (err != 0) {
*699cd480SApple OSS Distributions			goto done;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		if (attach_stack) {
*699cd480SApple OSS Distributions			/* members get .2, .3, etc. */
*699cd480SApple OSS Distributions			if_index = (u_short)if_nametoindex(ifname);
*699cd480SApple OSS Distributions			get_ipv4_address(0, addr_index, &ip);
*699cd480SApple OSS Distributions			siocaifaddr(s, ifname, ip);
*699cd480SApple OSS Distributions			add_scoped_subnet_route(rs, ifname, if_index, ip);
*699cd480SApple OSS Distributions			addr_index++;
*699cd480SApple OSS Distributions			start_ipv6(s6, ifname);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		/* add the interface's peer to the bridge */
*699cd480SApple OSS Distributions		err = bridge_add_member(s, bridge, member_ifname);
*699cd480SApple OSS Distributions		if (err != 0) {
*699cd480SApple OSS Distributions			goto done;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		do_mac_nat = (i == 0 && mac_nat);
*699cd480SApple OSS Distributions		if (do_mac_nat) {
*699cd480SApple OSS Distributions			/* enable MAC NAT on unit 0 */
*699cd480SApple OSS Distributions			err = bridge_member_modify_mac_nat(s, bridge,
*699cd480SApple OSS Distributions			    member_ifname,
*699cd480SApple OSS Distributions			    true);
*699cd480SApple OSS Distributions			if (err != 0) {
*699cd480SApple OSS Distributions				goto done;
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions		} else if (checksum_offload) {
*699cd480SApple OSS Distributions			err = bridge_member_modify_checksum_offload(s, bridge,
*699cd480SApple OSS Distributions			    member_ifname,
*699cd480SApple OSS Distributions			    true);
*699cd480SApple OSS Distributions			if (err != 0) {
*699cd480SApple OSS Distributions				goto done;
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions		/* we'll send/receive on the interface */
*699cd480SApple OSS Distributions		err = switch_port_list_add_port(s, list, i, ifname, if_index,
*699cd480SApple OSS Distributions		    member_ifname, num_addrs, do_mac_nat, &ip);
*699cd480SApple OSS Distributions		if (err != 0) {
*699cd480SApple OSS Distributions			goto done;
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributionsdone:
*699cd480SApple OSS Distributions	if (s >= 0) {
*699cd480SApple OSS Distributions		close(s);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (s6 >= 0) {
*699cd480SApple OSS Distributions		close(s6);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (err != 0 && list != NULL) {
*699cd480SApple OSS Distributions		switch_port_list_dealloc(list);
*699cd480SApple OSS Distributions		list = NULL;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	T_SETUPEND;
*699cd480SApple OSS Distributions	return list;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_cleanup(const char * bridge, u_int n_ports, bool fail_on_error)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int s;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	s = inet_dgram_socket();
*699cd480SApple OSS Distributions	ifnet_destroy(s, bridge, fail_on_error);
*699cd480SApple OSS Distributions	for (u_int i = 0; i < n_ports; i++) {
*699cd480SApple OSS Distributions		char    ifname[IFNAMSIZ];
*699cd480SApple OSS Distributions		char    member_ifname[IFNAMSIZ];
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		snprintf(ifname, sizeof(ifname), "%s%d",
*699cd480SApple OSS Distributions		    FETH_NAME, i);
*699cd480SApple OSS Distributions		snprintf(member_ifname, sizeof(member_ifname), "%s%d",
*699cd480SApple OSS Distributions		    FETH_NAME, i + n_ports);
*699cd480SApple OSS Distributions		ifnet_destroy(s, ifname, fail_on_error);
*699cd480SApple OSS Distributions		ifnet_destroy(s, member_ifname, fail_on_error);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	if (s >= 0) {
*699cd480SApple OSS Distributions		close(s);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	S_n_ports = 0;
*699cd480SApple OSS Distributions	fake_restore_trailers_fcs();
*699cd480SApple OSS Distributions	fake_restore_bsd_mode();
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions *  Basic Bridge Tests
*699cd480SApple OSS Distributions *
*699cd480SApple OSS Distributions *  Broadcast
*699cd480SApple OSS Distributions *  - two cases: actual broadcast, unknown ethernet
*699cd480SApple OSS Distributions *  - send broadcast packets
*699cd480SApple OSS Distributions *  - verify all received
*699cd480SApple OSS Distributions *  - check bridge rt list contains all expected MAC addresses
*699cd480SApple OSS Distributions *  - send unicast ARP packets
*699cd480SApple OSS Distributions *  - verify packets received only on expected port
*699cd480SApple OSS Distributions *
*699cd480SApple OSS Distributions *  MAC-NAT
*699cd480SApple OSS Distributions *  - verify ARP translation
*699cd480SApple OSS Distributions *  - verify IPv4 translation
*699cd480SApple OSS Distributions *  - verify DHCP broadcast bit conversion
*699cd480SApple OSS Distributions *  - verify IPv6 translation
*699cd480SApple OSS Distributions *  - verify ND6 translation (Neighbor, Router)
*699cd480SApple OSS Distributions *  - verify IPv4 subnet-local broadcast to MAC-NAT interface link-layer
*699cd480SApple OSS Distributions *    address arrives on all member links
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_test(packet_validator_t validator,
*699cd480SApple OSS Distributions    void * context,
*699cd480SApple OSS Distributions    const ether_addr_t * dst_eaddr,
*699cd480SApple OSS Distributions    uint8_t af, u_int n_ports, u_int num_addrs)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions#if TARGET_OS_BRIDGE
*699cd480SApple OSS Distributions	T_SKIP("Test uses too much memory");
*699cd480SApple OSS Distributions#else /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions	switch_port_list_t port_list;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	signal(SIGINT, sigint_handler);
*699cd480SApple OSS Distributions	port_list = bridge_setup(BRIDGE200, n_ports, num_addrs, 0);
*699cd480SApple OSS Distributions	if (port_list == NULL) {
*699cd480SApple OSS Distributions		T_FAIL("bridge_setup");
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	S_port_list = port_list;
*699cd480SApple OSS Distributions	bridge_learning_test(port_list, af, validator, context, dst_eaddr);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	//T_LOG("Sleeping for 5 seconds");
*699cd480SApple OSS Distributions	//sleep(5);
*699cd480SApple OSS Distributions	bridge_cleanup(BRIDGE200, n_ports, true);
*699cd480SApple OSS Distributions	switch_port_list_dealloc(port_list);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions#endif /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_test_mac_nat_ipv4(u_int n_ports, u_int num_addrs)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions#if TARGET_OS_BRIDGE
*699cd480SApple OSS Distributions	T_SKIP("Test uses too much memory");
*699cd480SApple OSS Distributions#else /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions	switch_port_list_t port_list;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	signal(SIGINT, sigint_handler);
*699cd480SApple OSS Distributions	port_list = bridge_setup(BRIDGE200, n_ports, num_addrs,
*699cd480SApple OSS Distributions	    SETUP_FLAGS_MAC_NAT);
*699cd480SApple OSS Distributions	if (port_list == NULL) {
*699cd480SApple OSS Distributions		T_FAIL("bridge_setup");
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	S_port_list = port_list;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* verify that IPv4 packets get translated when necessary */
*699cd480SApple OSS Distributions	mac_nat_test_ip(port_list, AF_INET);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* verify the DHCP broadcast bit gets set appropriately */
*699cd480SApple OSS Distributions	mac_nat_test_dhcp(port_list, false);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* verify that ARP packet gets translated when necessary */
*699cd480SApple OSS Distributions	mac_nat_test_arp_out(port_list);
*699cd480SApple OSS Distributions	mac_nat_test_arp_in(port_list);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* verify IP broadcast to MAC-NAT interface link layer address */
*699cd480SApple OSS Distributions	mac_nat_test_dhcp(port_list, true);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("Sleeping for 5 seconds");
*699cd480SApple OSS Distributions		sleep(5);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	bridge_cleanup(BRIDGE200, n_ports, true);
*699cd480SApple OSS Distributions	switch_port_list_dealloc(port_list);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions#endif /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_test_mac_nat_ipv6(u_int n_ports, u_int num_addrs)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions#if TARGET_OS_BRIDGE
*699cd480SApple OSS Distributions	T_SKIP("Test uses too much memory");
*699cd480SApple OSS Distributions#else /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions	switch_port_list_t port_list;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	signal(SIGINT, sigint_handler);
*699cd480SApple OSS Distributions	port_list = bridge_setup(BRIDGE200, n_ports, num_addrs,
*699cd480SApple OSS Distributions	    SETUP_FLAGS_MAC_NAT);
*699cd480SApple OSS Distributions	if (port_list == NULL) {
*699cd480SApple OSS Distributions		T_FAIL("bridge_setup");
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	S_port_list = port_list;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* verify that IPv6 packets get translated when necessary */
*699cd480SApple OSS Distributions	mac_nat_test_ip(port_list, AF_INET6);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* verify that ND6 packet gets translated when necessary */
*699cd480SApple OSS Distributions	mac_nat_test_nd6_out(port_list);
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("Sleeping for 5 seconds");
*699cd480SApple OSS Distributions		sleep(5);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	bridge_cleanup(BRIDGE200, n_ports, true);
*699cd480SApple OSS Distributions	switch_port_list_dealloc(port_list);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions#endif /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions * Filter test utilities
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionssystem_cmd(const char *cmd, bool fail_on_error)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	pid_t pid = -1;
*699cd480SApple OSS Distributions	int exit_status = 0;
*699cd480SApple OSS Distributions	const char *argv[] = {
*699cd480SApple OSS Distributions		"/usr/local/bin/bash",
*699cd480SApple OSS Distributions		"-c",
*699cd480SApple OSS Distributions		cmd,
*699cd480SApple OSS Distributions		NULL
*699cd480SApple OSS Distributions	};
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	int rc = dt_launch_tool(&pid, (char **)(void *)argv, false, NULL, NULL);
*699cd480SApple OSS Distributions	T_QUIET;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(rc, 0, "dt_launch_tool(%s) failed", cmd);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	if (dt_waitpid(pid, &exit_status, NULL, 30)) {
*699cd480SApple OSS Distributions		T_QUIET;
*699cd480SApple OSS Distributions		T_ASSERT_MACH_SUCCESS(exit_status, "command(%s)", cmd);
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		if (fail_on_error) {
*699cd480SApple OSS Distributions			T_FAIL("dt_waitpid(%s) failed", cmd);
*699cd480SApple OSS Distributions		}
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic bool
*699cd480SApple OSS Distributionsexecutable_is_present(const char * path)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct stat statb = {};
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	return stat(path, &statb) == 0 && (statb.st_mode & S_IXUSR) != 0;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionscleanup_pf(void)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct ifbrparam param;
*699cd480SApple OSS Distributions	int s = inet_dgram_socket();
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	system_cmd("pfctl -d", false);
*699cd480SApple OSS Distributions	system_cmd("pfctl -F all", false);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	param.ifbrp_filter = 0;
*699cd480SApple OSS Distributions	siocdrvspec(s, BRIDGE200, BRDGSFILT,
*699cd480SApple OSS Distributions	    &param, sizeof(param), true);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsblock_all_traffic(bool input, const char* infname1, const char* infname2)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int s = inet_dgram_socket();
*699cd480SApple OSS Distributions	int ret;
*699cd480SApple OSS Distributions	struct ifbrparam param;
*699cd480SApple OSS Distributions	char command[512];
*699cd480SApple OSS Distributions	char *dir = input ? "in" : "out";
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	snprintf(command, sizeof(command), "echo \"block %s on %s all\nblock %s on %s all\n\" | pfctl -vvv -f -",
*699cd480SApple OSS Distributions	    dir, infname1, dir, infname2);
*699cd480SApple OSS Distributions	/* enable block all filter */
*699cd480SApple OSS Distributions	param.ifbrp_filter = IFBF_FILT_MEMBER | IFBF_FILT_ONLYIP;
*699cd480SApple OSS Distributions	ret = siocdrvspec(s, BRIDGE200, BRDGSFILT,
*699cd480SApple OSS Distributions	    &param, sizeof(param), true);
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(ret,
*699cd480SApple OSS Distributions	    "SIOCDRVSPEC(BRDGSFILT %s, 0x%x)",
*699cd480SApple OSS Distributions	    BRIDGE200, param.ifbrp_filter);
*699cd480SApple OSS Distributions	// ignore errors such that not having pf.os doesn't raise any issues
*699cd480SApple OSS Distributions	system_cmd(command, false);
*699cd480SApple OSS Distributions	system_cmd("pfctl -e", true);
*699cd480SApple OSS Distributions	system_cmd("pfctl -s all", true);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions *  Basic bridge filter test
*699cd480SApple OSS Distributions *
*699cd480SApple OSS Distributions *  For both broadcast and unicast transfers ensure that data can
*699cd480SApple OSS Distributions *  be blocked using pf on the bridge
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsfilter_test(uint8_t af)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions#if TARGET_OS_BRIDGE
*699cd480SApple OSS Distributions	T_SKIP("pfctl isn't valid on this platform");
*699cd480SApple OSS Distributions#else /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions	switch_port_list_t port_list;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions	const u_int n_ports = 2;
*699cd480SApple OSS Distributions	u_int num_addrs = 1;
*699cd480SApple OSS Distributions	u_int i;
*699cd480SApple OSS Distributions	char ntoabuf[ETHER_NTOA_BUFSIZE];
*699cd480SApple OSS Distributions	union ifbrip dst_ip;
*699cd480SApple OSS Distributions	bool blocked = true;
*699cd480SApple OSS Distributions	bool input = true;
*699cd480SApple OSS Distributions	const char* ifnames[2];
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions#define PFCTL_PATH      "/sbin/pfctl"
*699cd480SApple OSS Distributions	if (!executable_is_present(PFCTL_PATH)) {
*699cd480SApple OSS Distributions		T_SKIP("%s not present", PFCTL_PATH);
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	signal(SIGINT, sigint_handler);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_ATEND(cleanup);
*699cd480SApple OSS Distributions	T_ATEND(cleanup_pf);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	port_list = bridge_setup(BRIDGE200, n_ports, num_addrs, 0);
*699cd480SApple OSS Distributions	if (port_list == NULL) {
*699cd480SApple OSS Distributions		T_FAIL("bridge_setup");
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	ether_ntoa_buf(&ether_broadcast, ntoabuf, sizeof(ntoabuf));
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	S_port_list = port_list;
*699cd480SApple OSS Distributions	for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions		ifnames[i] = port->member_ifname;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	get_broadcast_ip_address(af, &dst_ip);
*699cd480SApple OSS Distributions	do {
*699cd480SApple OSS Distributions		do {
*699cd480SApple OSS Distributions			if (blocked) {
*699cd480SApple OSS Distributions				block_all_traffic(input, ifnames[0], ifnames[1]);
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions				if (S_debug) {
*699cd480SApple OSS Distributions					T_LOG("Sending on %s", port->ifname);
*699cd480SApple OSS Distributions				}
*699cd480SApple OSS Distributions				for (u_int j = 0; j < port->num_addrs; j++) {
*699cd480SApple OSS Distributions					uint32_t        generation;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions					generation = next_generation();
*699cd480SApple OSS Distributions					send_generation(port,
*699cd480SApple OSS Distributions					    af,
*699cd480SApple OSS Distributions					    j,
*699cd480SApple OSS Distributions					    &ether_broadcast,
*699cd480SApple OSS Distributions					    &dst_ip,
*699cd480SApple OSS Distributions					    generation);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions					/* receive across all ports */
*699cd480SApple OSS Distributions					check_receive_generation(port_list,
*699cd480SApple OSS Distributions					    af,
*699cd480SApple OSS Distributions					    generation,
*699cd480SApple OSS Distributions					    validate_broadcast_dhost,
*699cd480SApple OSS Distributions					    NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions					/* ensure that every port saw the right amount of packets*/
*699cd480SApple OSS Distributions					if (blocked) {
*699cd480SApple OSS Distributions						check_received_count(port_list, port, 0);
*699cd480SApple OSS Distributions					} else {
*699cd480SApple OSS Distributions						check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions					}
*699cd480SApple OSS Distributions				}
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			T_PASS("%s broadcast %s %s", __func__, blocked ? "blocked" : "not blocked", input ? "input" : "output");
*699cd480SApple OSS Distributions			input = !input;
*699cd480SApple OSS Distributions			cleanup_pf();
*699cd480SApple OSS Distributions		} while (input == false && blocked);
*699cd480SApple OSS Distributions		blocked = !blocked;
*699cd480SApple OSS Distributions	} while (blocked == false);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	do {
*699cd480SApple OSS Distributions		do {
*699cd480SApple OSS Distributions			if (blocked) {
*699cd480SApple OSS Distributions				block_all_traffic(input, ifnames[0], ifnames[1]);
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			for (i = 0, port = port_list->list; i < port_list->count; i++, port++) {
*699cd480SApple OSS Distributions				/* send unicast packets to every other port's MAC addresses */
*699cd480SApple OSS Distributions				unicast_send_all(port_list, af, port);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions				/* receive all of that generated traffic */
*699cd480SApple OSS Distributions				switch_port_list_check_receive(port_list, af, NULL, 0,
*699cd480SApple OSS Distributions				    validate_port_dhost, NULL);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions				/* ensure that every port saw the right amount of packets*/
*699cd480SApple OSS Distributions				if (blocked) {
*699cd480SApple OSS Distributions					check_received_count(port_list, port, 0);
*699cd480SApple OSS Distributions				} else {
*699cd480SApple OSS Distributions					check_received_count(port_list, port, 1);
*699cd480SApple OSS Distributions				}
*699cd480SApple OSS Distributions			}
*699cd480SApple OSS Distributions			T_PASS("%s unicast %s %s", __func__, blocked ? "blocked" : "not blocked", input ? "input" : "output");
*699cd480SApple OSS Distributions			input = !input;
*699cd480SApple OSS Distributions			cleanup_pf();
*699cd480SApple OSS Distributions		} while (input == false && blocked);
*699cd480SApple OSS Distributions		blocked = !blocked;
*699cd480SApple OSS Distributions	} while (blocked == false);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bridge_cleanup(BRIDGE200, n_ports, true);
*699cd480SApple OSS Distributions	switch_port_list_dealloc(port_list);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions#endif /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions/*
*699cd480SApple OSS Distributions * Bridge checksum offload tests
*699cd480SApple OSS Distributions */
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic const char *
*699cd480SApple OSS Distributionsipproto_get_str(uint8_t proto)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	const char * str;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	switch (proto) {
*699cd480SApple OSS Distributions	case IPPROTO_UDP:
*699cd480SApple OSS Distributions		str = "UDP";
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	case IPPROTO_TCP:
*699cd480SApple OSS Distributions		str = "TCP";
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	default:
*699cd480SApple OSS Distributions		str = "<?>";
*699cd480SApple OSS Distributions		break;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return str;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionstest_traffic(uint8_t af, inet_address_t server,
*699cd480SApple OSS Distributions    const char * server_ifname, int server_if_index,
*699cd480SApple OSS Distributions    const char * client_ifname, int client_if_index)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	inet_endpoint   endpoint;
*699cd480SApple OSS Distributions	/* do TCP first because TCP is reliable and will populate ND cache */
*699cd480SApple OSS Distributions	uint8_t         protos[] = { IPPROTO_TCP, IPPROTO_UDP, 0 };
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	bzero(&endpoint, sizeof(endpoint));
*699cd480SApple OSS Distributions	endpoint.af = af;
*699cd480SApple OSS Distributions	endpoint.addr = *server;
*699cd480SApple OSS Distributions	endpoint.port = 1;
*699cd480SApple OSS Distributions	for (uint8_t * proto = protos; *proto != 0; proto++) {
*699cd480SApple OSS Distributions		bool    success;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions		T_LOG("%s: %s %s server %s client %s",
*699cd480SApple OSS Distributions		    __func__, af_get_str(af),
*699cd480SApple OSS Distributions		    ipproto_get_str(*proto),
*699cd480SApple OSS Distributions		    server_ifname, client_ifname);
*699cd480SApple OSS Distributions		endpoint.proto = *proto;
*699cd480SApple OSS Distributions		success = inet_transfer_local(&endpoint, server_if_index,
*699cd480SApple OSS Distributions		    client_if_index);
*699cd480SApple OSS Distributions		T_ASSERT_TRUE(success,
*699cd480SApple OSS Distributions		    "inet_transfer_local(): %s",
*699cd480SApple OSS Distributions		    inet_transfer_error_string());
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionstest_traffic_for_af(switch_port_list_t ports, uint8_t af)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	u_int           i;
*699cd480SApple OSS Distributions	inet_address    server;
*699cd480SApple OSS Distributions	int             server_if_index;
*699cd480SApple OSS Distributions	const char *    server_name;
*699cd480SApple OSS Distributions	switch_port_t   server_port;
*699cd480SApple OSS Distributions	switch_port_t   port;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* bridge as server, each peer as client */
*699cd480SApple OSS Distributions	server_if_index = bridge_if_index;
*699cd480SApple OSS Distributions	server_name = BRIDGE200;
*699cd480SApple OSS Distributions	if (af == AF_INET) {
*699cd480SApple OSS Distributions		server.v4 = bridge_ip_addr;
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		server.v6 = bridge_ipv6_addr;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	for (i = 0, port = ports->list; i < ports->count; i++, port++) {
*699cd480SApple OSS Distributions		test_traffic(af, &server, server_name,
*699cd480SApple OSS Distributions		    server_if_index, port->ifname, port->if_index);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	/* peer 0 as server, other peers as client */
*699cd480SApple OSS Distributions	assert(ports->count > 0);
*699cd480SApple OSS Distributions	server_port = ports->list;
*699cd480SApple OSS Distributions	server_name = server_port->ifname;
*699cd480SApple OSS Distributions	server_if_index = server_port->if_index;
*699cd480SApple OSS Distributions	if (af == AF_INET) {
*699cd480SApple OSS Distributions		server.v4 = server_port->ip;
*699cd480SApple OSS Distributions	} else {
*699cd480SApple OSS Distributions		server.v6 = server_port->ip6;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	for (i = 1, port = ports->list + 1; i < ports->count; i++, port++) {
*699cd480SApple OSS Distributions		test_traffic(af, &server, server_name,
*699cd480SApple OSS Distributions		    server_if_index, port->ifname, port->if_index);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_test_checksum_offload(u_int n_ports, uint8_t setup_flags)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions#if TARGET_OS_BRIDGE
*699cd480SApple OSS Distributions	T_SKIP("Test uses too much memory");
*699cd480SApple OSS Distributions#else /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions	switch_port_list_t port_list;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	signal(SIGINT, sigint_handler);
*699cd480SApple OSS Distributions	port_list = bridge_setup(BRIDGE200, n_ports, 0,
*699cd480SApple OSS Distributions	    SETUP_FLAGS_CHECKSUM_OFFLOAD |
*699cd480SApple OSS Distributions	    SETUP_FLAGS_ATTACH_STACK | setup_flags);
*699cd480SApple OSS Distributions	if (port_list == NULL) {
*699cd480SApple OSS Distributions		T_FAIL("bridge_setup");
*699cd480SApple OSS Distributions		return;
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	test_traffic_for_af(port_list, AF_INET);
*699cd480SApple OSS Distributions	test_traffic_for_af(port_list, AF_INET6);
*699cd480SApple OSS Distributions	if (S_debug) {
*699cd480SApple OSS Distributions		T_LOG("Sleeping for 5 seconds");
*699cd480SApple OSS Distributions		sleep(5);
*699cd480SApple OSS Distributions	}
*699cd480SApple OSS Distributions	bridge_cleanup(BRIDGE200, n_ports, true);
*699cd480SApple OSS Distributions	switch_port_list_dealloc(port_list);
*699cd480SApple OSS Distributions	return;
*699cd480SApple OSS Distributions#endif /* TARGET_OS_BRIDGE */
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionslro_test_cleanup(void)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	int             s;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	s = inet_dgram_socket();
*699cd480SApple OSS Distributions	ifnet_destroy(s, BRIDGE200, false);
*699cd480SApple OSS Distributions	ifnet_destroy(s, FETH0, false);
*699cd480SApple OSS Distributions	fake_set_lro(false);
*699cd480SApple OSS Distributions	close(s);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionssigint_lro_cleanup(__unused int sig)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	signal(SIGINT, SIG_DFL);
*699cd480SApple OSS Distributions	lro_test_cleanup();
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsverify_lro_capability(int s, const char * if_name, bool expected)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	struct ifreq    ifr;
*699cd480SApple OSS Distributions	int             result;
*699cd480SApple OSS Distributions	bool            lro_enabled;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	memset(&ifr, 0, sizeof(ifr));
*699cd480SApple OSS Distributions	strlcpy(ifr.ifr_name, if_name, sizeof(ifr.ifr_name));
*699cd480SApple OSS Distributions	result = ioctl(s, SIOCGIFCAP, &ifr);
*699cd480SApple OSS Distributions	T_ASSERT_POSIX_SUCCESS(result, "SIOCGIFCAP(%s)", if_name);
*699cd480SApple OSS Distributions	lro_enabled = (ifr.ifr_curcap & IFCAP_LRO) != 0;
*699cd480SApple OSS Distributions	T_ASSERT_EQ(expected, lro_enabled, "%s %s expected %s",
*699cd480SApple OSS Distributions	    __func__, if_name, expected ? "enabled" : "disabled");
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributionsstatic void
*699cd480SApple OSS Distributionsbridge_test_lro_disable(void)
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	errno_t         err;
*699cd480SApple OSS Distributions	int             s;
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	signal(SIGINT, sigint_lro_cleanup);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	T_ATEND(lro_test_cleanup);
*699cd480SApple OSS Distributions
*699cd480SApple OSS Distributions	s = inet_dgram_socket();
*699cd480SApple OSS Distributions	err = ifnet_create(s, BRIDGE200);
*699cd480SApple OSS Distributions	T_ASSERT_EQ(err, 0, "ifnet_create(%s)", BRIDGE200);
*699cd480SApple OSS Distributions	fake_set_lro(true);
*699cd480SApple OSS Distributions	err = ifnet_create(s, FETH0);
*699cd480SApple OSS Distributions	T_ASSERT_EQ(err, 0, "ifnet_create(%s)", FETH0);
*699cd480SApple OSS Distributions	fake_set_lro(false);
*699cd480SApple OSS Distributions	verify_lro_capability(s, FETH0, true);
*699cd480SApple OSS Distributions	bridge_add_member(s, BRIDGE200, FETH0);
*699cd480SApple OSS Distributions	verify_lro_capability(s, FETH0, false);
*699cd480SApple OSS Distributions	bridge_delete_member(s, BRIDGE200, FETH0);
*699cd480SApple OSS Distributions	verify_lro_capability(s, FETH0, true);
*699cd480SApple OSS Distributions	close(s);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_bcast,
*699cd480SApple OSS Distributions    "bridge broadcast IPv4",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test(validate_broadcast_dhost, NULL, &ether_broadcast,
*699cd480SApple OSS Distributions	    AF_INET, 5, 1);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_bcast_many,
*699cd480SApple OSS Distributions    "bridge broadcast many IPv4",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test(validate_broadcast_dhost, NULL, &ether_broadcast,
*699cd480SApple OSS Distributions	    AF_INET, 5, 20);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_unknown,
*699cd480SApple OSS Distributions    "bridge unknown host IPv4",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test(validate_not_present_dhost, NULL, &ether_external,
*699cd480SApple OSS Distributions	    AF_INET, 5, 1);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_bcast_v6,
*699cd480SApple OSS Distributions    "bridge broadcast IPv6",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test(validate_broadcast_dhost, NULL, &ether_broadcast,
*699cd480SApple OSS Distributions	    AF_INET6, 5, 1);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_bcast_many_v6,
*699cd480SApple OSS Distributions    "bridge broadcast many IPv6",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test(validate_broadcast_dhost, NULL, &ether_broadcast,
*699cd480SApple OSS Distributions	    AF_INET6, 5, 20);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_unknown_v6,
*699cd480SApple OSS Distributions    "bridge unknown host IPv6",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test(validate_not_present_dhost, NULL, &ether_external,
*699cd480SApple OSS Distributions	    AF_INET6, 5, 1);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_mac_nat_ipv4,
*699cd480SApple OSS Distributions    "bridge mac nat ipv4",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test_mac_nat_ipv4(5, 10);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_mac_nat_ipv6,
*699cd480SApple OSS Distributions    "bridge mac nat ipv6",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test_mac_nat_ipv6(5, 10);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_filter_ipv4,
*699cd480SApple OSS Distributions    "bridge filter ipv4",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	filter_test(AF_INET);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_filter_ipv6,
*699cd480SApple OSS Distributions    "bridge filter ipv6",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	filter_test(AF_INET6);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_checksum_offload,
*699cd480SApple OSS Distributions    "bridge checksum offload",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test_checksum_offload(2, 0);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_checksum_offload_trailers,
*699cd480SApple OSS Distributions    "bridge checksum offload with trailers+fcs",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test_checksum_offload(2, SETUP_FLAGS_TRAILERS);
*699cd480SApple OSS Distributions}
*699cd480SApple OSS Distributions
*699cd480SApple OSS DistributionsT_DECL(if_bridge_lro_disable,
*699cd480SApple OSS Distributions    "bridge LRO disable",
*699cd480SApple OSS Distributions    T_META_ASROOT(true))
*699cd480SApple OSS Distributions{
*699cd480SApple OSS Distributions	bridge_test_lro_disable();
*699cd480SApple OSS Distributions}