root/net/pfkeyv2.c

DEFINITIONS

1. pfdatatopacket
2. pfkeyv2_create
3. pfkeyv2_release
4. pfkeyv2_sendmessage
5. pfkeyv2_policy
6. pfkeyv2_get
7. pfkeyv2_dump_walker
8. pfkeyv2_flush_walker
9. pfkeyv2_get_proto_alg
10. pfkeyv2_send
11. pfkeyv2_acquire
12. pfkeyv2_expire
13. pfkeyv2_sysctl_walker
14. pfkeyv2_dump_policy
15. pfkeyv2_ipo_walk
16. pfkeyv2_sysctl_policydumper
17. pfkeyv2_sysctl
18. pfkeyv2_init
19. pfkeyv2_cleanup

    1 /* $OpenBSD: pfkeyv2.c,v 1.115 2007/06/22 12:14:05 markus Exp $ */
    3 /*
    4  *      @(#)COPYRIGHT   1.1 (NRL) 17 January 1995
    5  * 
    6  * NRL grants permission for redistribution and use in source and binary
    7  * forms, with or without modification, of the software and documentation
    8  * created at NRL provided that the following conditions are met:
    9  * 
   10  * 1. Redistributions of source code must retain the above copyright
   11  *    notice, this list of conditions and the following disclaimer.
   12  * 2. Redistributions in binary form must reproduce the above copyright
   13  *    notice, this list of conditions and the following disclaimer in the
   14  *    documentation and/or other materials provided with the distribution.
   15  * 3. All advertising materials mentioning features or use of this software
   16  *    must display the following acknowledgements:
   17  *      This product includes software developed by the University of
   18  *      California, Berkeley and its contributors.
   19  *      This product includes software developed at the Information
   20  *      Technology Division, US Naval Research Laboratory.
   21  * 4. Neither the name of the NRL nor the names of its contributors
   22  *    may be used to endorse or promote products derived from this software
   23  *    without specific prior written permission.
   24  * 
   25  * THE SOFTWARE PROVIDED BY NRL IS PROVIDED BY NRL AND CONTRIBUTORS ``AS
   26  * IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
   27  * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A
   28  * PARTICULAR PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL NRL OR
   29  * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
   30  * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
   31  * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
   32  * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
   33  * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
   34  * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
   35  * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
   36  * 
   37  * The views and conclusions contained in the software and documentation
   38  * are those of the authors and should not be interpreted as representing
   39  * official policies, either expressed or implied, of the US Naval
   40  * Research Laboratory (NRL).
   41  */
   43 /*
   44  * Copyright (c) 1995, 1996, 1997, 1998, 1999 Craig Metz. All rights reserved.
   45  *
   46  * Redistribution and use in source and binary forms, with or without
   47  * modification, are permitted provided that the following conditions
   48  * are met:
   49  * 1. Redistributions of source code must retain the above copyright
   50  *    notice, this list of conditions and the following disclaimer.
   51  * 2. Redistributions in binary form must reproduce the above copyright
   52  *    notice, this list of conditions and the following disclaimer in the
   53  *    documentation and/or other materials provided with the distribution.
   54  * 3. Neither the name of the author nor the names of any contributors
   55  *    may be used to endorse or promote products derived from this software
   56  *    without specific prior written permission.
   57  *
   58  * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
   59  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
   60  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
   61  * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
   62  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
   63  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
   64  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
   65  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
   66  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
   67  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
   68  * SUCH DAMAGE.
   69  */
   71 #include "pf.h"
   73 #include <sys/types.h>
   74 #include <sys/param.h>
   75 #include <sys/socket.h>
   76 #include <sys/systm.h>
   77 #include <sys/mbuf.h>
   78 #include <sys/kernel.h>
   79 #include <sys/proc.h>
   80 #include <net/route.h>
   81 #include <netinet/ip_ipsp.h>
   82 #include <net/pfkeyv2.h>
   83 #include <netinet/ip_ah.h>
   84 #include <netinet/ip_esp.h>
   85 #include <netinet/ip_ipcomp.h>
   86 #include <crypto/blf.h>
   88 #if NPF > 0
   89 #include <net/if.h>
   90 #include <net/pfvar.h>
   91 #endif
   93 #define PFKEYV2_PROTOCOL 2
   94 #define GETSPI_TRIES 10
   96 /* Static globals */
   97 static struct pfkeyv2_socket *pfkeyv2_sockets = NULL;
   98 static struct pfkey_version pfkeyv2_version;
   99 static uint32_t pfkeyv2_seq = 1;
  100 static int nregistered = 0;
  101 static int npromisc = 0;
  103 static const struct sadb_alg ealgs[] = {
  104         { SADB_EALG_NULL, 0, 0, 0 },
  105         { SADB_EALG_DESCBC, 64, 64, 64 },
  106         { SADB_EALG_3DESCBC, 64, 192, 192 },
  107         { SADB_X_EALG_BLF, 64, 40, BLF_MAXKEYLEN * 8},
  108         { SADB_X_EALG_CAST, 64, 40, 128},
  109         { SADB_X_EALG_SKIPJACK, 64, 80, 80},
  110         { SADB_X_EALG_AES, 128, 128, 256},
  111         { SADB_X_EALG_AESCTR, 128, 128 + 32, 256 + 32}
  112 };
  114 static const struct sadb_alg aalgs[] = {
  115         { SADB_AALG_SHA1HMAC, 0, 160, 160 },
  116         { SADB_AALG_MD5HMAC, 0, 128, 128 },
  117         { SADB_X_AALG_RIPEMD160HMAC, 0, 160, 160 },
  118         { SADB_X_AALG_SHA2_256, 0, 256, 256 },
  119         { SADB_X_AALG_SHA2_384, 0, 384, 384 },
  120         { SADB_X_AALG_SHA2_512, 0, 512, 512 }
  121 };
  123 static const struct sadb_alg calgs[] = {
  124         { SADB_X_CALG_DEFLATE, 0, 0, 0},
  125         { SADB_X_CALG_LZS, 0, 0, 0}
  126 };
  128 extern uint64_t sadb_exts_allowed_out[SADB_MAX+1];
  129 extern uint64_t sadb_exts_required_out[SADB_MAX+1];
  131 extern struct pool ipsec_policy_pool;
  133 /*
  134  * Wrapper around m_devget(); copy data from contiguous buffer to mbuf
  135  * chain.
  136  */
  137 int
pfdatatopacket(void *data, int len, struct mbuf **packet)
  139 {
  140         if (!(*packet = m_devget(data, len, 0, NULL, NULL)))
  141                 return (ENOMEM);
  142         return (0);
  143 }
  145 /*
  146  * Create a new PF_KEYv2 socket.
  147  */
  148 int
pfkeyv2_create(struct socket *socket)
  150 {
  151         struct pfkeyv2_socket *pfkeyv2_socket;
  153         if (!(pfkeyv2_socket = malloc(sizeof(struct pfkeyv2_socket),
M_PFKEY, M_DONTWAIT)))
  155                 return (ENOMEM);
bzero(pfkeyv2_socket, sizeof(struct pfkeyv2_socket));
pfkeyv2_socket->next = pfkeyv2_sockets;
pfkeyv2_socket->socket = socket;
pfkeyv2_socket->pid = curproc->p_pid;
pfkeyv2_sockets = pfkeyv2_socket;
  164         return (0);
  165 }
  167 /*
  168  * Close a PF_KEYv2 socket.
  169  */
  170 int
pfkeyv2_release(struct socket *socket)
  172 {
  173         struct pfkeyv2_socket **pp;
  175         for (pp = &pfkeyv2_sockets; *pp && ((*pp)->socket != socket);
pp = &((*pp)->next))
  177                 /*EMPTY*/;
  179         if (*pp) {
  180                 struct pfkeyv2_socket *pfkeyv2_socket;
pfkeyv2_socket = *pp;
  183                 *pp = (*pp)->next;
  185                 if (pfkeyv2_socket->flags & PFKEYV2_SOCKETFLAGS_REGISTERED)
nregistered--;
  188                 if (pfkeyv2_socket->flags & PFKEYV2_SOCKETFLAGS_PROMISC)
npromisc--;
free(pfkeyv2_socket, M_PFKEY);
  192         }
  194         return (0);
  195 }
  197 /*
  198  * Send a PFKEYv2 message, possibly to many receivers, based on the
  199  * satype of the socket (which is set by the REGISTER message), and the
  200  * third argument.
  201  */
  202 int
pfkeyv2_sendmessage(void **headers, int mode, struct socket *socket,
u_int8_t satype, int count)
  205 {
  206         int i, j, rval;
  207         void *p, *buffer = NULL;
  208         struct mbuf *packet;
  209         struct pfkeyv2_socket *s;
  210         struct sadb_msg *smsg;
  212         /* Find out how much space we'll need... */
j = sizeof(struct sadb_msg);
  215         for (i = 1; i <= SADB_EXT_MAX; i++)
  216                 if (headers[i])
j += ((struct sadb_ext *)headers[i])->sadb_ext_len *
  218                             sizeof(uint64_t);
  220         /* ...and allocate it */
  221         if (!(buffer = malloc(j + sizeof(struct sadb_msg), M_PFKEY,
M_DONTWAIT))) {
rval = ENOMEM;
  224                 goto ret;
  225         }
p = buffer + sizeof(struct sadb_msg);
bcopy(headers[0], p, sizeof(struct sadb_msg));
  229         ((struct sadb_msg *) p)->sadb_msg_len = j / sizeof(uint64_t);
p += sizeof(struct sadb_msg);
  232         /* Copy payloads in the packet */
  233         for (i = 1; i <= SADB_EXT_MAX; i++)
  234                 if (headers[i]) {
  235                         ((struct sadb_ext *) headers[i])->sadb_ext_type = i;
bcopy(headers[i], p, EXTLEN(headers[i]));
p += EXTLEN(headers[i]);
  238                 }
  240         if ((rval = pfdatatopacket(buffer + sizeof(struct sadb_msg),
j, &packet)) != 0)
  242                 goto ret;
  244         switch (mode) {
  245         case PFKEYV2_SENDMESSAGE_UNICAST:
  246                 /*
  247                  * Send message to the specified socket, plus all
  248                  * promiscuous listeners.
  249                  */
pfkey_sendup(socket, packet, 0);
  252                 /*
  253                  * Promiscuous messages contain the original message
  254                  * encapsulated in another sadb_msg header.
  255                  */
bzero(buffer, sizeof(struct sadb_msg));
smsg = (struct sadb_msg *) buffer;
smsg->sadb_msg_version = PF_KEY_V2;
smsg->sadb_msg_type = SADB_X_PROMISC;
smsg->sadb_msg_len = (sizeof(struct sadb_msg) + j) /
  261                     sizeof(uint64_t);
smsg->sadb_msg_seq = 0;
  264                 /* Copy to mbuf chain */
  265                 if ((rval = pfdatatopacket(buffer, sizeof(struct sadb_msg) + j,
  266                     &packet)) != 0)
  267                         goto ret;
  269                 /*
  270                  * Search for promiscuous listeners, skipping the
  271                  * original destination.
  272                  */
  273                 for (s = pfkeyv2_sockets; s; s = s->next)
  274                         if ((s->flags & PFKEYV2_SOCKETFLAGS_PROMISC) &&
  275                             (s->socket != socket))
pfkey_sendup(s->socket, packet, 1);
  278                 /* Done, let's be a bit paranoid */
m_zero(packet);
m_freem(packet);
  281                 break;
  283         case PFKEYV2_SENDMESSAGE_REGISTERED:
  284                 /*
  285                  * Send the message to all registered sockets that match
  286                  * the specified satype (e.g., all IPSEC-ESP negotiators)
  287                  */
  288                 for (s = pfkeyv2_sockets; s; s = s->next)
  289                         if (s->flags & PFKEYV2_SOCKETFLAGS_REGISTERED) {
  290                                 if (!satype)    /* Just send to everyone registered */
pfkey_sendup(s->socket, packet, 1);
  292                                 else {
  293                                         /* Check for specified satype */
  294                                         if ((1 << satype) & s->registration)
pfkey_sendup(s->socket, packet, 1);
  296                                 }
  297                         }
  299                 /* Free last/original copy of the packet */
m_freem(packet);
  302                 /* Encapsulate the original message "inside" an sadb_msg header */
bzero(buffer, sizeof(struct sadb_msg));
smsg = (struct sadb_msg *) buffer;
smsg->sadb_msg_version = PF_KEY_V2;
smsg->sadb_msg_type = SADB_X_PROMISC;
smsg->sadb_msg_len = (sizeof(struct sadb_msg) + j) /
  308                     sizeof(uint64_t);
smsg->sadb_msg_seq = 0;
  311                 /* Convert to mbuf chain */
  312                 if ((rval = pfdatatopacket(buffer, sizeof(struct sadb_msg) + j,
  313                     &packet)) != 0)
  314                         goto ret;
  316                 /* Send to all registered promiscuous listeners */
  317                 for (s = pfkeyv2_sockets; s; s = s->next)
  318                         if ((s->flags & PFKEYV2_SOCKETFLAGS_PROMISC) &&
  319                             !(s->flags & PFKEYV2_SOCKETFLAGS_REGISTERED))
pfkey_sendup(s->socket, packet, 1);
m_freem(packet);
  323                 break;
  325         case PFKEYV2_SENDMESSAGE_BROADCAST:
  326                 /* Send message to all sockets */
  327                 for (s = pfkeyv2_sockets; s; s = s->next)
pfkey_sendup(s->socket, packet, 1);
m_freem(packet);
  331                 break;
  332         }
ret:
  335         if (buffer != NULL) {
bzero(buffer, j + sizeof(struct sadb_msg));
free(buffer, M_PFKEY);
  338         }
  340         return (rval);
  341 }
  343 /*
  344  * Get SPD information for an ACQUIRE. We setup the message such that
  345  * the SRC/DST payloads are relative to us (regardless of whether the
  346  * SPD rule was for incoming or outgoing packets).
  347  */
  348 int
pfkeyv2_policy(struct ipsec_acquire *ipa, void **headers, void **buffer)
  350 {
  351         union sockaddr_union sunion;
  352         struct sadb_protocol *sp;
  353         int rval, i, dir;
  354         void *p;
  356         /* Find out how big a buffer we need */
i = 4 * sizeof(struct sadb_address) + sizeof(struct sadb_protocol);
bzero(&sunion, sizeof(union sockaddr_union));
  360         switch (ipa->ipa_info.sen_type) {
  361 #ifdef INET
  362         case SENT_IP4:
i += 4 * PADUP(sizeof(struct sockaddr_in));
sunion.sa.sa_family = AF_INET;
sunion.sa.sa_len = sizeof(struct sockaddr_in);
dir = ipa->ipa_info.sen_direction;
  367                 break;
  368 #endif /* INET */
  370 #ifdef INET6
  371         case SENT_IP6:
i += 4 * PADUP(sizeof(struct sockaddr_in6));
sunion.sa.sa_family = AF_INET6;
sunion.sa.sa_len = sizeof(struct sockaddr_in6);
dir = ipa->ipa_info.sen_ip6_direction;
  376                 break;
  377 #endif /* INET6 */
  379         default:
  380                 return (EINVAL);
  381         }
  383         if (!(p = malloc(i, M_PFKEY, M_DONTWAIT))) {
rval = ENOMEM;
  385                 goto ret;
  386         } else {
  387                 *buffer = p;
bzero(p, i);
  389         }
  391         if (dir == IPSP_DIRECTION_OUT)
headers[SADB_X_EXT_SRC_FLOW] = p;
  393         else
headers[SADB_X_EXT_DST_FLOW] = p;
  395         switch (sunion.sa.sa_family) {
  396 #ifdef INET
  397         case AF_INET:
sunion.sin.sin_addr = ipa->ipa_info.sen_ip_src;
sunion.sin.sin_port = ipa->ipa_info.sen_sport;
  400                 break;
  401 #endif /* INET */
  403 #ifdef INET6
  404         case AF_INET6:
sunion.sin6.sin6_addr = ipa->ipa_info.sen_ip6_src;
sunion.sin6.sin6_port = ipa->ipa_info.sen_ip6_sport;
  407                 break;
  408 #endif /* INET6 */
  409         }
export_address(&p, (struct sockaddr *) &sunion);
  412         if (dir == IPSP_DIRECTION_OUT)
headers[SADB_X_EXT_SRC_MASK] = p;
  414         else
headers[SADB_X_EXT_DST_MASK] = p;
  416         switch (sunion.sa.sa_family) {
  417 #ifdef INET
  418         case AF_INET:
sunion.sin.sin_addr = ipa->ipa_mask.sen_ip_src;
sunion.sin.sin_port = ipa->ipa_mask.sen_sport;
  421                 break;
  422 #endif /* INET */
  424 #ifdef INET6
  425         case AF_INET6:
sunion.sin6.sin6_addr = ipa->ipa_mask.sen_ip6_src;
sunion.sin6.sin6_port = ipa->ipa_mask.sen_ip6_sport;
  428                 break;
  429 #endif /* INET6 */
  430         }
export_address(&p, (struct sockaddr *) &sunion);
  433         if (dir == IPSP_DIRECTION_OUT)
headers[SADB_X_EXT_DST_FLOW] = p;
  435         else
headers[SADB_X_EXT_SRC_FLOW] = p;
  437         switch (sunion.sa.sa_family) {
  438 #ifdef INET
  439         case AF_INET:
sunion.sin.sin_addr = ipa->ipa_info.sen_ip_dst;
sunion.sin.sin_port = ipa->ipa_info.sen_dport;
  442                 break;
  443 #endif /* INET */
  445 #ifdef INET6
  446         case AF_INET6:
sunion.sin6.sin6_addr = ipa->ipa_info.sen_ip6_dst;
sunion.sin6.sin6_port = ipa->ipa_info.sen_ip6_dport;
  449                 break;
  450 #endif /* INET6 */
  451         }
export_address(&p, (struct sockaddr *) &sunion);
  454         if (dir == IPSP_DIRECTION_OUT)
headers[SADB_X_EXT_DST_MASK] = p;
  456         else
headers[SADB_X_EXT_SRC_MASK] = p;
  458         switch (sunion.sa.sa_family) {
  459 #ifdef INET
  460         case AF_INET:
sunion.sin.sin_addr = ipa->ipa_mask.sen_ip_dst;
sunion.sin.sin_port = ipa->ipa_mask.sen_dport;
  463                 break;
  464 #endif /* INET */
  466 #ifdef INET6
  467         case AF_INET6:
sunion.sin6.sin6_addr = ipa->ipa_mask.sen_ip6_dst;
sunion.sin6.sin6_port = ipa->ipa_mask.sen_ip6_dport;
  470                 break;
  471 #endif /* INET6 */
  472         }
export_address(&p, (struct sockaddr *) &sunion);
headers[SADB_X_EXT_FLOW_TYPE] = p;
sp = p;
sp->sadb_protocol_len = sizeof(struct sadb_protocol) /
  478             sizeof(u_int64_t);
  479         switch (sunion.sa.sa_family) {
  480 #ifdef INET
  481         case AF_INET:
  482                 if (ipa->ipa_mask.sen_proto)
sp->sadb_protocol_proto = ipa->ipa_info.sen_proto;
sp->sadb_protocol_direction = ipa->ipa_info.sen_direction;
  485                 break;
  486 #endif /* INET */
  488 #ifdef INET6
  489         case AF_INET6:
  490                 if (ipa->ipa_mask.sen_ip6_proto)
sp->sadb_protocol_proto = ipa->ipa_info.sen_ip6_proto;
sp->sadb_protocol_direction = ipa->ipa_info.sen_ip6_direction;
  493                 break;
  494 #endif /* INET6 */
  495         }
rval = 0;
ret:
  500         return (rval);
  501 }
  503 /*
  504  * Get all the information contained in an SA to a PFKEYV2 message.
  505  */
  506 int
pfkeyv2_get(struct tdb *sa, void **headers, void **buffer, int *lenp)
  508 {
  509         int rval, i;
  510         void *p;
  512         /* Find how much space we need */
i = sizeof(struct sadb_sa) + sizeof(struct sadb_lifetime);
  515         if (sa->tdb_soft_allocations || sa->tdb_soft_bytes ||
sa->tdb_soft_timeout || sa->tdb_soft_first_use)
i += sizeof(struct sadb_lifetime);
  519         if (sa->tdb_exp_allocations || sa->tdb_exp_bytes ||
sa->tdb_exp_timeout || sa->tdb_exp_first_use)
i += sizeof(struct sadb_lifetime);
  523         if (sa->tdb_last_used)
i += sizeof(struct sadb_lifetime);
  526         if (sa->tdb_src.sa.sa_family)
i += sizeof(struct sadb_address) + PADUP(SA_LEN(&sa->tdb_src.sa));
  529         if (sa->tdb_dst.sa.sa_family)
i += sizeof(struct sadb_address) + PADUP(SA_LEN(&sa->tdb_dst.sa));
  532         if (sa->tdb_proxy.sa.sa_family)
i += sizeof(struct sadb_address) + PADUP(SA_LEN(&sa->tdb_proxy.sa));
  535         if (sa->tdb_srcid)
i += PADUP(sa->tdb_srcid->ref_len) + sizeof(struct sadb_ident);
  538         if (sa->tdb_dstid)
i += PADUP(sa->tdb_dstid->ref_len) + sizeof(struct sadb_ident);
  541         if (sa->tdb_local_cred)
i += PADUP(sa->tdb_local_cred->ref_len) + sizeof(struct sadb_x_cred);
  544         if (sa->tdb_remote_cred)
i += PADUP(sa->tdb_remote_cred->ref_len) + sizeof(struct sadb_x_cred);
  547         if (sa->tdb_local_auth)
i += PADUP(sa->tdb_local_auth->ref_len) + sizeof(struct sadb_x_cred);
  550         if (sa->tdb_remote_auth)
i += PADUP(sa->tdb_remote_auth->ref_len) + sizeof(struct sadb_x_cred);
  553         if (sa->tdb_amxkey)
i+= PADUP(sa->tdb_amxkeylen) + sizeof(struct sadb_key);
  556         if (sa->tdb_emxkey)
i+= PADUP(sa->tdb_emxkeylen) + sizeof(struct sadb_key);
  559         if (sa->tdb_filter.sen_type) {
i += 2 * sizeof(struct sadb_protocol);
  562                 /* We'll need four of them: src, src mask, dst, dst mask. */
  563                 switch (sa->tdb_filter.sen_type) {
  564 #ifdef INET
  565                 case SENT_IP4:
i += 4 * PADUP(sizeof(struct sockaddr_in));
i += 4 * sizeof(struct sadb_address);
  568                         break;
  569 #endif /* INET */
  570 #ifdef INET6
  571                 case SENT_IP6:
i += 4 * PADUP(sizeof(struct sockaddr_in6));
i += 4 * sizeof(struct sadb_address);
  574                         break;
  575 #endif /* INET6 */
  576                 default:
rval = EINVAL;
  578                         goto ret;
  579                 }
  580         }
  582         if (sa->tdb_udpencap_port)
i+= sizeof(struct sadb_x_udpencap);
  585 #if NPF > 0
  586         if (sa->tdb_tag)
i+= PADUP(PF_TAG_NAME_SIZE) + sizeof(struct sadb_x_tag);
  588 #endif
  590         if (lenp)
  591                 *lenp = i;
  593         if (buffer == NULL) {
rval = 0;
  595                 goto ret;
  596         }
  598         if (!(p = malloc(i, M_PFKEY, M_DONTWAIT))) {
rval = ENOMEM;
  600                 goto ret;
  601         } else {
  602                 *buffer = p;
bzero(p, i);
  604         }
headers[SADB_EXT_SA] = p;
export_sa(&p, sa);  /* Export SA information (mostly flags) */
  610         /* Export lifetimes where applicable */
headers[SADB_EXT_LIFETIME_CURRENT] = p;
export_lifetime(&p, sa, PFKEYV2_LIFETIME_CURRENT);
  614         if (sa->tdb_soft_allocations || sa->tdb_soft_bytes ||
sa->tdb_soft_first_use || sa->tdb_soft_timeout) {
headers[SADB_EXT_LIFETIME_SOFT] = p;
export_lifetime(&p, sa, PFKEYV2_LIFETIME_SOFT);
  618         }
  620         if (sa->tdb_exp_allocations || sa->tdb_exp_bytes ||
sa->tdb_exp_first_use || sa->tdb_exp_timeout) {
headers[SADB_EXT_LIFETIME_HARD] = p;
export_lifetime(&p, sa, PFKEYV2_LIFETIME_HARD);
  624         }
  626         if (sa->tdb_last_used) {
headers[SADB_X_EXT_LIFETIME_LASTUSE] = p;
export_lifetime(&p, sa, PFKEYV2_LIFETIME_LASTUSE);
  629         }
  631         /* Export TDB source address */
headers[SADB_EXT_ADDRESS_SRC] = p;
export_address(&p, (struct sockaddr *) &sa->tdb_src);
  635         /* Export TDB destination address */
headers[SADB_EXT_ADDRESS_DST] = p;
export_address(&p, (struct sockaddr *) &sa->tdb_dst);
  639         /* Export TDB proxy address, if present */
  640         if (SA_LEN(&sa->tdb_proxy.sa)) {
headers[SADB_EXT_ADDRESS_PROXY] = p;
export_address(&p, (struct sockaddr *) &sa->tdb_proxy);
  643         }
  645         /* Export source identity, if present */
  646         if (sa->tdb_srcid) {
headers[SADB_EXT_IDENTITY_SRC] = p;
export_identity(&p, sa, PFKEYV2_IDENTITY_SRC);
  649         }
  651         /* Export destination identity, if present */
  652         if (sa->tdb_dstid) {
headers[SADB_EXT_IDENTITY_DST] = p;
export_identity(&p, sa, PFKEYV2_IDENTITY_DST);
  655         }
  657         /* Export credentials, if present */
  658         if (sa->tdb_local_cred) {
headers[SADB_X_EXT_LOCAL_CREDENTIALS] = p;
export_credentials(&p, sa, PFKEYV2_CRED_LOCAL);
  661         }
  663         if (sa->tdb_remote_cred) {
headers[SADB_X_EXT_REMOTE_CREDENTIALS] = p;
export_credentials(&p, sa, PFKEYV2_CRED_REMOTE);
  666         }
  668         /* Export authentication information, if present */
  669         if (sa->tdb_local_auth) {
headers[SADB_X_EXT_LOCAL_AUTH] = p;
export_auth(&p, sa, PFKEYV2_AUTH_LOCAL);
  672         }
  674         if (sa->tdb_remote_auth) {
headers[SADB_X_EXT_REMOTE_AUTH] = p;
export_auth(&p, sa, PFKEYV2_AUTH_REMOTE);
  677         }
  679         /* Export authentication key, if present */
  680         if (sa->tdb_amxkey) {
headers[SADB_EXT_KEY_AUTH] = p;
export_key(&p, sa, PFKEYV2_AUTHENTICATION_KEY);
  683         }
  685         /* Export encryption key, if present */
  686         if (sa->tdb_emxkey) {
headers[SADB_EXT_KEY_ENCRYPT] = p;
export_key(&p, sa, PFKEYV2_ENCRYPTION_KEY);
  689         }
  691         /* Export flow/filter, if present */
  692         if (sa->tdb_filter.sen_type)
export_flow(&p, IPSP_IPSEC_USE, &sa->tdb_filter,
  694                     &sa->tdb_filtermask, headers);
  696         /* Export UDP encapsulation port, if present */
  697         if (sa->tdb_udpencap_port) {
headers[SADB_X_EXT_UDPENCAP] = p;
export_udpencap(&p, sa);
  700         }
  702 #if NPF > 0
  703         /* Export tag information, if present */
  704         if (sa->tdb_tag) {
headers[SADB_X_EXT_TAG] = p;
export_tag(&p, sa);
  707         }
  708 #endif
rval = 0;
ret:
  713         return (rval);
  714 }
  716 /*
  717  * Dump a TDB.
  718  */
  719 int
pfkeyv2_dump_walker(struct tdb *sa, void *state, int last)
  721 {
  722         struct dump_state *dump_state = (struct dump_state *) state;
  723         void *headers[SADB_EXT_MAX+1], *buffer;
  724         int rval;
  726         /* If not satype was specified, dump all TDBs */
  727         if (!dump_state->sadb_msg->sadb_msg_satype ||
  728             (sa->tdb_satype == dump_state->sadb_msg->sadb_msg_satype)) {
bzero(headers, sizeof(headers));
headers[0] = (void *) dump_state->sadb_msg;
  732                 /* Get the information from the TDB to a PFKEYv2 message */
  733                 if ((rval = pfkeyv2_get(sa, headers, &buffer, NULL)) != 0)
  734                         return (rval);
  736                 if (last)
  737                         ((struct sadb_msg *)headers[0])->sadb_msg_seq = 0;
  739                 /* Send the message to the specified socket */
rval = pfkeyv2_sendmessage(headers,
PFKEYV2_SENDMESSAGE_UNICAST, dump_state->socket, 0, 0);
free(buffer, M_PFKEY);
  744                 if (rval)
  745                         return (rval);
  746         }
  748         return (0);
  749 }
  751 /*
  752  * Delete an SA.
  753  */
  754 int
pfkeyv2_flush_walker(struct tdb *sa, void *satype_vp, int last)
  756 {
  757         if (!(*((u_int8_t *) satype_vp)) ||
sa->tdb_satype == *((u_int8_t *) satype_vp))
tdb_delete(sa);
  760         return (0);
  761 }
  763 /*
  764  * Convert between SATYPEs and IPsec protocols, taking into consideration
  765  * sysctl variables enabling/disabling ESP/AH and the presence of the old
  766  * IPsec transforms.
  767  */
  768 int
pfkeyv2_get_proto_alg(u_int8_t satype, u_int8_t *sproto, int *alg)
  770 {
  771         switch (satype) {
  772 #ifdef IPSEC
  773         case SADB_SATYPE_AH:
  774                 if (!ah_enable)
  775                         return (EOPNOTSUPP);
  777                 *sproto = IPPROTO_AH;
  779                 if(alg != NULL)
  780                         *alg = satype = XF_AH;
  782                 break;
  784         case SADB_SATYPE_ESP:
  785                 if (!esp_enable)
  786                         return (EOPNOTSUPP);
  788                 *sproto = IPPROTO_ESP;
  790                 if(alg != NULL)
  791                         *alg = satype = XF_ESP;
  793                 break;
  795         case SADB_X_SATYPE_IPIP:
  796                 *sproto = IPPROTO_IPIP;
  798                 if (alg != NULL)
  799                         *alg = XF_IP4;
  801                 break;
  803         case SADB_X_SATYPE_IPCOMP:
  804                 if (!ipcomp_enable)
  805                         return (EOPNOTSUPP);
  807                 *sproto = IPPROTO_IPCOMP;
  809                 if(alg != NULL)
  810                         *alg = satype = XF_IPCOMP;
  812                 break;
  813 #endif /* IPSEC */
  814 #ifdef TCP_SIGNATURE
  815         case SADB_X_SATYPE_TCPSIGNATURE:
  816                 *sproto = IPPROTO_TCP;
  818                 if (alg != NULL)
  819                         *alg = XF_TCPSIGNATURE;
  821                 break;
  822 #endif /* TCP_SIGNATURE */
  824         default: /* Nothing else supported */
  825                 return (EOPNOTSUPP);
  826         }
  828         return (0);
  829 }
  831 /*
  832  * Handle all messages from userland to kernel.
  833  */
  834 int
pfkeyv2_send(struct socket *socket, void *message, int len)
  836 {
  837         int i, j, rval = 0, mode = PFKEYV2_SENDMESSAGE_BROADCAST;
  838         int delflag = 0, s;
  839         struct sockaddr_encap encapdst, encapnetmask, encapgw;
  840         struct ipsec_policy *ipo, *tmpipo;
  841         struct ipsec_acquire *ipa;
  843         struct pfkeyv2_socket *pfkeyv2_socket, *so = NULL;
  845         void *freeme = NULL, *bckptr = NULL;
  846         void *headers[SADB_EXT_MAX + 1];
  848         union sockaddr_union *sunionp;
  850         struct tdb sa, *sa2 = NULL;
  852         struct sadb_msg *smsg;
  853         struct sadb_spirange *sprng;
  854         struct sadb_sa *ssa;
  855         struct sadb_supported *ssup;
  856         struct sadb_ident *sid;
  858         /* Verify that we received this over a legitimate pfkeyv2 socket */
bzero(headers, sizeof(headers));
  861         for (pfkeyv2_socket = pfkeyv2_sockets; pfkeyv2_socket;
pfkeyv2_socket = pfkeyv2_socket->next)
  863                 if (pfkeyv2_socket->socket == socket)
  864                         break;
  866         if (!pfkeyv2_socket) {
rval = EINVAL;
  868                 goto ret;
  869         }
  871         /* If we have any promiscuous listeners, send them a copy of the message */
  872         if (npromisc) {
  873                 struct mbuf *packet;
  875                 if (!(freeme = malloc(sizeof(struct sadb_msg) + len, M_PFKEY,
M_DONTWAIT))) {
rval = ENOMEM;
  878                         goto ret;
  879                 }
  881                 /* Initialize encapsulating header */
bzero(freeme, sizeof(struct sadb_msg));
smsg = (struct sadb_msg *) freeme;
smsg->sadb_msg_version = PF_KEY_V2;
smsg->sadb_msg_type = SADB_X_PROMISC;
smsg->sadb_msg_len = (sizeof(struct sadb_msg) + len) /
  887                     sizeof(uint64_t);
smsg->sadb_msg_seq = curproc->p_pid;
bcopy(message, freeme + sizeof(struct sadb_msg), len);
  892                 /* Convert to mbuf chain */
  893                 if ((rval = pfdatatopacket(freeme,
  894                     sizeof(struct sadb_msg) + len, &packet)) != 0)
  895                         goto ret;
  897                 /* Send to all promiscuous listeners */
  898                 for (so = pfkeyv2_sockets; so; so = so->next)
  899                         if (so->flags & PFKEYV2_SOCKETFLAGS_PROMISC)
pfkey_sendup(so->socket, packet, 1);
  902                 /* Paranoid */
m_zero(packet);
m_freem(packet);
  906                 /* Even more paranoid */
bzero(freeme, sizeof(struct sadb_msg) + len);
free(freeme, M_PFKEY);
freeme = NULL;
  910         }
  912         /* Validate message format */
  913         if ((rval = pfkeyv2_parsemessage(message, len, headers)) != 0)
  914                 goto ret;
smsg = (struct sadb_msg *) headers[0];
  917         switch (smsg->sadb_msg_type) {
  918         case SADB_GETSPI:  /* Reserve an SPI */
bzero(&sa, sizeof(struct tdb));
sa.tdb_satype = smsg->sadb_msg_satype;
  922                 if ((rval = pfkeyv2_get_proto_alg(sa.tdb_satype,
  923                     &sa.tdb_sproto, 0)))
  924                         goto ret;
import_address((struct sockaddr *) &sa.tdb_src,
headers[SADB_EXT_ADDRESS_SRC]);
import_address((struct sockaddr *) &sa.tdb_dst,
headers[SADB_EXT_ADDRESS_DST]);
  931                 /* Find an unused SA identifier */
sprng = (struct sadb_spirange *) headers[SADB_EXT_SPIRANGE];
sa.tdb_spi = reserve_spi(sprng->sadb_spirange_min,
sprng->sadb_spirange_max, &sa.tdb_src, &sa.tdb_dst,
sa.tdb_sproto, &rval);
  936                 if (sa.tdb_spi == 0)
  937                         goto ret;
  939                 /* Send a message back telling what the SA (the SPI really) is */
  940                 if (!(freeme = malloc(sizeof(struct sadb_sa), M_PFKEY,
M_DONTWAIT))) {
rval = ENOMEM;
  943                         goto ret;
  944                 }
bzero(freeme, sizeof(struct sadb_sa));
headers[SADB_EXT_SPIRANGE] = NULL;
headers[SADB_EXT_SA] = freeme;
bckptr = freeme;
  951                 /* We really only care about the SPI, but we'll export the SA */
export_sa((void **) &bckptr, &sa);
  953                 break;
  955         case SADB_UPDATE:
ssa = (struct sadb_sa *) headers[SADB_EXT_SA];
sunionp = (union sockaddr_union *) (headers[SADB_EXT_ADDRESS_DST] +
  958                     sizeof(struct sadb_address));
  960                 /* Either all or none of the flow must be included */
  961                 if ((headers[SADB_X_EXT_SRC_FLOW] ||
headers[SADB_X_EXT_PROTOCOL] ||
headers[SADB_X_EXT_FLOW_TYPE] ||
headers[SADB_X_EXT_DST_FLOW] ||
headers[SADB_X_EXT_SRC_MASK] ||
headers[SADB_X_EXT_DST_MASK]) &&
  967                     !(headers[SADB_X_EXT_SRC_FLOW] &&
headers[SADB_X_EXT_PROTOCOL] &&
headers[SADB_X_EXT_FLOW_TYPE] &&
headers[SADB_X_EXT_DST_FLOW] &&
headers[SADB_X_EXT_SRC_MASK] &&
headers[SADB_X_EXT_DST_MASK])) {
rval = EINVAL;
  974                         goto ret;
  975                 }
  976 #ifdef IPSEC
  977                 /* UDP encap has to be enabled and is only supported for ESP */
  978                 if (headers[SADB_X_EXT_UDPENCAP] &&
  979                     (!udpencap_enable ||
smsg->sadb_msg_satype != SADB_SATYPE_ESP)) {
rval = EINVAL;
  982                         goto ret;
  983                 }
  984 #endif /* IPSEC */
s = spltdb();
  988                 /* Find TDB */
sa2 = gettdb(ssa->sadb_sa_spi, sunionp,
SADB_X_GETSPROTO(smsg->sadb_msg_satype));
  992                 /* If there's no such SA, we're done */
  993                 if (sa2 == NULL) {
rval = ESRCH;
  995                         goto splxret;
  996                 }
  998                 /* If this is a reserved SA */
  999                 if (sa2->tdb_flags & TDBF_INVALID) {
 1000                         struct tdb *newsa;
 1001                         struct ipsecinit ii;
 1002                         int alg;
 1004                         /* Create new TDB */
freeme = tdb_alloc();
bzero(&ii, sizeof(struct ipsecinit));
newsa = (struct tdb *) freeme;
newsa->tdb_satype = smsg->sadb_msg_satype;
 1011                         if ((rval = pfkeyv2_get_proto_alg(newsa->tdb_satype,
 1012                             &newsa->tdb_sproto, &alg))) {
tdb_free(freeme);
freeme = NULL;
 1015                                 goto splxret;
 1016                         }
 1018                         /* Initialize SA */
import_sa(newsa, headers[SADB_EXT_SA], &ii);
import_address((struct sockaddr *) &newsa->tdb_src,
headers[SADB_EXT_ADDRESS_SRC]);
import_address((struct sockaddr *) &newsa->tdb_dst,
headers[SADB_EXT_ADDRESS_DST]);
import_address((struct sockaddr *) &newsa->tdb_proxy,
headers[SADB_EXT_ADDRESS_PROXY]);
import_lifetime(newsa,
headers[SADB_EXT_LIFETIME_CURRENT],
PFKEYV2_LIFETIME_CURRENT);
import_lifetime(newsa, headers[SADB_EXT_LIFETIME_SOFT],
PFKEYV2_LIFETIME_SOFT);
import_lifetime(newsa, headers[SADB_EXT_LIFETIME_HARD],
PFKEYV2_LIFETIME_HARD);
import_key(&ii, headers[SADB_EXT_KEY_AUTH],
PFKEYV2_AUTHENTICATION_KEY);
import_key(&ii, headers[SADB_EXT_KEY_ENCRYPT],
PFKEYV2_ENCRYPTION_KEY);
import_identity(newsa, headers[SADB_EXT_IDENTITY_SRC],
PFKEYV2_IDENTITY_SRC);
import_identity(newsa, headers[SADB_EXT_IDENTITY_DST],
PFKEYV2_IDENTITY_DST);
import_credentials(newsa,
headers[SADB_X_EXT_LOCAL_CREDENTIALS],
PFKEYV2_CRED_LOCAL);
import_credentials(newsa,
headers[SADB_X_EXT_REMOTE_CREDENTIALS],
PFKEYV2_CRED_REMOTE);
import_auth(newsa, headers[SADB_X_EXT_LOCAL_AUTH],
PFKEYV2_AUTH_LOCAL);
import_auth(newsa, headers[SADB_X_EXT_REMOTE_AUTH],
PFKEYV2_AUTH_REMOTE);
import_flow(&newsa->tdb_filter, &newsa->tdb_filtermask,
headers[SADB_X_EXT_SRC_FLOW],
headers[SADB_X_EXT_SRC_MASK],
headers[SADB_X_EXT_DST_FLOW],
headers[SADB_X_EXT_DST_MASK],
headers[SADB_X_EXT_PROTOCOL],
headers[SADB_X_EXT_FLOW_TYPE]);
import_udpencap(newsa, headers[SADB_X_EXT_UDPENCAP]);
 1059 #if NPF > 0
import_tag(newsa, headers[SADB_X_EXT_TAG]);
 1061 #endif
headers[SADB_EXT_KEY_AUTH] = NULL;
headers[SADB_EXT_KEY_ENCRYPT] = NULL;
headers[SADB_X_EXT_LOCAL_AUTH] = NULL;
newsa->tdb_seq = smsg->sadb_msg_seq;
rval = tdb_init(newsa, alg, &ii);
 1070                         if (rval) {
rval = EINVAL;
tdb_free(freeme);
freeme = NULL;
 1074                                 goto splxret;
 1075                         }
newsa->tdb_cur_allocations = sa2->tdb_cur_allocations;
 1079                         /* Delete old version of the SA, insert new one */
tdb_delete(sa2);
puttdb((struct tdb *) freeme);
sa2 = freeme = NULL;
 1083                 } else {
 1084                         /*
 1085                          * The SA is already initialized, so we're only allowed to
 1086                          * change lifetimes and some other information; we're
 1087                          * not allowed to change keys, addresses or identities.
 1088                          */
 1089                         if (headers[SADB_EXT_ADDRESS_PROXY] ||
headers[SADB_EXT_KEY_AUTH] ||
headers[SADB_EXT_KEY_ENCRYPT] ||
headers[SADB_EXT_IDENTITY_SRC] ||
headers[SADB_EXT_IDENTITY_DST] ||
headers[SADB_EXT_SENSITIVITY]) {
rval = EINVAL;
 1096                                 goto splxret;
 1097                         }
import_sa(sa2, headers[SADB_EXT_SA], NULL);
import_lifetime(sa2,
headers[SADB_EXT_LIFETIME_CURRENT],
PFKEYV2_LIFETIME_CURRENT);
import_lifetime(sa2, headers[SADB_EXT_LIFETIME_SOFT],
PFKEYV2_LIFETIME_SOFT);
import_lifetime(sa2, headers[SADB_EXT_LIFETIME_HARD],
PFKEYV2_LIFETIME_HARD);
import_udpencap(sa2, headers[SADB_X_EXT_UDPENCAP]);
 1108 #if NPF > 0
import_tag(sa2, headers[SADB_X_EXT_TAG]);
 1110 #endif
 1111                 }
splx(s);
 1114                 break;
 1115         case SADB_ADD:
ssa = (struct sadb_sa *) headers[SADB_EXT_SA];
sunionp = (union sockaddr_union *) (headers[SADB_EXT_ADDRESS_DST] +
 1118                     sizeof(struct sadb_address));
 1120                 /* Either all or none of the flow must be included */
 1121                 if ((headers[SADB_X_EXT_SRC_FLOW] ||
headers[SADB_X_EXT_PROTOCOL] ||
headers[SADB_X_EXT_FLOW_TYPE] ||
headers[SADB_X_EXT_DST_FLOW] ||
headers[SADB_X_EXT_SRC_MASK] ||
headers[SADB_X_EXT_DST_MASK]) &&
 1127                     !(headers[SADB_X_EXT_SRC_FLOW] &&
headers[SADB_X_EXT_PROTOCOL] &&
headers[SADB_X_EXT_FLOW_TYPE] &&
headers[SADB_X_EXT_DST_FLOW] &&
headers[SADB_X_EXT_SRC_MASK] &&
headers[SADB_X_EXT_DST_MASK])) {
rval = EINVAL;
 1134                         goto ret;
 1135                 }
 1136 #ifdef IPSEC
 1137                 /* UDP encap has to be enabled and is only supported for ESP */
 1138                 if (headers[SADB_X_EXT_UDPENCAP] &&
 1139                     (!udpencap_enable ||
smsg->sadb_msg_satype != SADB_SATYPE_ESP)) {
rval = EINVAL;
 1142                         goto ret;
 1143                 }
 1144 #endif /* IPSEC */
s = spltdb();
sa2 = gettdb(ssa->sadb_sa_spi, sunionp,
SADB_X_GETSPROTO(smsg->sadb_msg_satype));
 1151                 /* We can't add an existing SA! */
 1152                 if (sa2 != NULL) {
rval = EEXIST;
 1154                         goto splxret;
 1155                 }
 1157                 /* We can only add "mature" SAs */
 1158                 if (ssa->sadb_sa_state != SADB_SASTATE_MATURE) {
rval = EINVAL;
 1160                         goto splxret;
 1161                 }
 1163                 /* Allocate and initialize new TDB */
freeme = tdb_alloc();
 1166                 {
 1167                         struct tdb *newsa = (struct tdb *) freeme;
 1168                         struct ipsecinit ii;
 1169                         int alg;
bzero(&ii, sizeof(struct ipsecinit));
newsa->tdb_satype = smsg->sadb_msg_satype;
 1174                         if ((rval = pfkeyv2_get_proto_alg(newsa->tdb_satype,
 1175                             &newsa->tdb_sproto, &alg))) {
tdb_free(freeme);
freeme = NULL;
 1178                                 goto splxret;
 1179                         }
import_sa(newsa, headers[SADB_EXT_SA], &ii);
import_address((struct sockaddr *) &newsa->tdb_src,
headers[SADB_EXT_ADDRESS_SRC]);
import_address((struct sockaddr *) &newsa->tdb_dst,
headers[SADB_EXT_ADDRESS_DST]);
import_address((struct sockaddr *) &newsa->tdb_proxy,
headers[SADB_EXT_ADDRESS_PROXY]);
import_lifetime(newsa,
headers[SADB_EXT_LIFETIME_CURRENT],
PFKEYV2_LIFETIME_CURRENT);
import_lifetime(newsa, headers[SADB_EXT_LIFETIME_SOFT],
PFKEYV2_LIFETIME_SOFT);
import_lifetime(newsa, headers[SADB_EXT_LIFETIME_HARD],
PFKEYV2_LIFETIME_HARD);
import_key(&ii, headers[SADB_EXT_KEY_AUTH],
PFKEYV2_AUTHENTICATION_KEY);
import_key(&ii, headers[SADB_EXT_KEY_ENCRYPT],
PFKEYV2_ENCRYPTION_KEY);
import_identity(newsa, headers[SADB_EXT_IDENTITY_SRC],
PFKEYV2_IDENTITY_SRC);
import_identity(newsa, headers[SADB_EXT_IDENTITY_DST],
PFKEYV2_IDENTITY_DST);
import_credentials(newsa,
headers[SADB_X_EXT_LOCAL_CREDENTIALS],
PFKEYV2_CRED_LOCAL);
import_credentials(newsa,
headers[SADB_X_EXT_REMOTE_CREDENTIALS],
PFKEYV2_CRED_REMOTE);
import_auth(newsa, headers[SADB_X_EXT_LOCAL_AUTH],
PFKEYV2_AUTH_LOCAL);
import_auth(newsa, headers[SADB_X_EXT_REMOTE_AUTH],
PFKEYV2_AUTH_REMOTE);
import_flow(&newsa->tdb_filter, &newsa->tdb_filtermask,
headers[SADB_X_EXT_SRC_FLOW],
headers[SADB_X_EXT_SRC_MASK],
headers[SADB_X_EXT_DST_FLOW],
headers[SADB_X_EXT_DST_MASK],
headers[SADB_X_EXT_PROTOCOL],
headers[SADB_X_EXT_FLOW_TYPE]);
import_udpencap(newsa, headers[SADB_X_EXT_UDPENCAP]);
 1225 #if NPF > 0
import_tag(newsa, headers[SADB_X_EXT_TAG]);
 1227 #endif
headers[SADB_EXT_KEY_AUTH] = NULL;
headers[SADB_EXT_KEY_ENCRYPT] = NULL;
headers[SADB_X_EXT_LOCAL_AUTH] = NULL;
newsa->tdb_seq = smsg->sadb_msg_seq;
rval = tdb_init(newsa, alg, &ii);
 1236                         if (rval) {
rval = EINVAL;
tdb_free(freeme);
freeme = NULL;
 1240                                 goto splxret;
 1241                         }
 1242                 }
 1244                 /* Add TDB in table */
puttdb((struct tdb *) freeme);
splx(s);
freeme = NULL;
 1250                 break;
 1252         case SADB_DELETE:
ssa = (struct sadb_sa *) headers[SADB_EXT_SA];
sunionp =
 1255                     (union sockaddr_union *)(headers[SADB_EXT_ADDRESS_DST] +
 1256                         sizeof(struct sadb_address));
s = spltdb();
sa2 = gettdb(ssa->sadb_sa_spi, sunionp,
SADB_X_GETSPROTO(smsg->sadb_msg_satype));
 1261                 if (sa2 == NULL) {
rval = ESRCH;
 1263                         goto splxret;
 1264                 }
tdb_delete(sa2);
splx(s);
sa2 = NULL;
 1271                 break;
 1273         case SADB_X_ASKPOLICY:
 1274                 /* Get the relevant policy */
ipa = ipsec_get_acquire(((struct sadb_x_policy *) headers[SADB_X_EXT_POLICY])->sadb_x_policy_seq);
 1276                 if (ipa == NULL) {
rval = ESRCH;
 1278                         goto ret;
 1279                 }
rval = pfkeyv2_policy(ipa, headers, &freeme);
 1282                 if (rval)
mode = PFKEYV2_SENDMESSAGE_UNICAST;
 1285                 break;
 1287         case SADB_GET:
ssa = (struct sadb_sa *) headers[SADB_EXT_SA];
sunionp =
 1290                     (union sockaddr_union *)(headers[SADB_EXT_ADDRESS_DST] +
 1291                         sizeof(struct sadb_address));
s = spltdb();
sa2 = gettdb(ssa->sadb_sa_spi, sunionp,
SADB_X_GETSPROTO(smsg->sadb_msg_satype));
 1297                 if (sa2 == NULL) {
rval = ESRCH;
 1299                         goto splxret;
 1300                 }
rval = pfkeyv2_get(sa2, headers, &freeme, NULL);
 1303                 if (rval)
mode = PFKEYV2_SENDMESSAGE_UNICAST;
splx(s);
 1308                 break;
 1310         case SADB_REGISTER:
 1311                 if (!(pfkeyv2_socket->flags & PFKEYV2_SOCKETFLAGS_REGISTERED)) {
pfkeyv2_socket->flags |= PFKEYV2_SOCKETFLAGS_REGISTERED;
nregistered++;
 1314                 }
i = sizeof(struct sadb_supported) + sizeof(ealgs);
 1318                 if (!(freeme = malloc(i, M_PFKEY, M_DONTWAIT))) {
rval = ENOMEM;
 1320                         goto ret;
 1321                 }
bzero(freeme, i);
ssup = (struct sadb_supported *) freeme;
ssup->sadb_supported_len = i / sizeof(uint64_t);
 1328                 {
 1329                         void *p = freeme + sizeof(struct sadb_supported);
bcopy(&ealgs[0], p, sizeof(ealgs));
 1332                 }
headers[SADB_EXT_SUPPORTED_ENCRYPT] = freeme;
i = sizeof(struct sadb_supported) + sizeof(aalgs);
 1338                 if (!(freeme = malloc(i, M_PFKEY, M_DONTWAIT))) {
rval = ENOMEM;
 1340                         goto ret;
 1341                 }
 1343                 /* Keep track what this socket has registered for */
pfkeyv2_socket->registration |= (1 << ((struct sadb_msg *)message)->sadb_msg_satype);
bzero(freeme, i);
ssup = (struct sadb_supported *) freeme;
ssup->sadb_supported_len = i / sizeof(uint64_t);
 1351                 {
 1352                         void *p = freeme + sizeof(struct sadb_supported);
bcopy(&aalgs[0], p, sizeof(aalgs));
 1355                 }
headers[SADB_EXT_SUPPORTED_AUTH] = freeme;
i = sizeof(struct sadb_supported) + sizeof(calgs);
 1361                 if (!(freeme = malloc(i, M_PFKEY, M_DONTWAIT))) {
rval = ENOMEM;
 1363                         goto ret;
 1364                 }
bzero(freeme, i);
ssup = (struct sadb_supported *) freeme;
ssup->sadb_supported_len = i / sizeof(uint64_t);
 1371                 {
 1372                         void *p = freeme + sizeof(struct sadb_supported);
bcopy(&calgs[0], p, sizeof(calgs));
 1375                 }
headers[SADB_X_EXT_SUPPORTED_COMP] = freeme;
 1379                 break;
 1381         case SADB_ACQUIRE:
 1382         case SADB_EXPIRE:
 1383                 /* Nothing to handle */
rval = 0;
 1385                 break;
 1387         case SADB_FLUSH:
rval = 0;
 1390                 switch (smsg->sadb_msg_satype) {
 1391                 case SADB_SATYPE_UNSPEC:
s = spltdb();
 1394                         /*
 1395                          * Go through the list of policies, delete those that
 1396                          * are not socket-attached.
 1397                          */
 1398                         for (ipo = TAILQ_FIRST(&ipsec_policy_head);
ipo != NULL; ipo = tmpipo) {
tmpipo = TAILQ_NEXT(ipo, ipo_list);
 1401                                 if (!(ipo->ipo_flags & IPSP_POLICY_SOCKET))
ipsec_delete_policy(ipo);
 1403                         }
splx(s);
 1405                         /* FALLTHROUGH */
 1406                 case SADB_SATYPE_AH:
 1407                 case SADB_SATYPE_ESP:
 1408                 case SADB_X_SATYPE_IPIP:
 1409                 case SADB_X_SATYPE_IPCOMP:
 1410 #ifdef TCP_SIGNATURE
 1411                 case SADB_X_SATYPE_TCPSIGNATURE:
 1412 #endif /* TCP_SIGNATURE */
s = spltdb();
tdb_walk(pfkeyv2_flush_walker,
 1416                             (u_int8_t *) &(smsg->sadb_msg_satype));
splx(s);
 1419                         break;
 1421                 default:
rval = EINVAL; /* Unknown/unsupported type */
 1423                 }
 1425                 break;
 1427         case SADB_DUMP:
 1428         {
 1429                 struct dump_state dump_state;
dump_state.sadb_msg = (struct sadb_msg *) headers[0];
dump_state.socket = socket;
s = spltdb();
rval = tdb_walk(pfkeyv2_dump_walker, &dump_state);
splx(s);
 1437                 if (!rval)
 1438                         goto realret;
 1440                 if ((rval == ENOMEM) || (rval == ENOBUFS))
rval = 0;
 1442         }
 1443         break;
 1445         case SADB_X_GRPSPIS:
 1446         {
 1447                 struct tdb *tdb1, *tdb2, *tdb3;
 1448                 struct sadb_protocol *sa_proto;
ssa = (struct sadb_sa *) headers[SADB_EXT_SA];
sunionp = (union sockaddr_union *) (headers[SADB_EXT_ADDRESS_DST] +
 1452                     sizeof(struct sadb_address));
s = spltdb();
tdb1 = gettdb(ssa->sadb_sa_spi, sunionp,
SADB_X_GETSPROTO(smsg->sadb_msg_satype));
 1458                 if (tdb1 == NULL) {
rval = ESRCH;
 1460                         goto splxret;
 1461                 }
ssa = (struct sadb_sa *) headers[SADB_X_EXT_SA2];
sunionp = (union sockaddr_union *) (headers[SADB_X_EXT_DST2] +
 1465                     sizeof(struct sadb_address));
sa_proto = ((struct sadb_protocol *) headers[SADB_X_EXT_PROTOCOL]);
tdb2 = gettdb(ssa->sadb_sa_spi, sunionp,
SADB_X_GETSPROTO(sa_proto->sadb_protocol_proto));
 1470                 if (tdb2 == NULL) {
rval = ESRCH;
 1472                         goto splxret;
 1473                 }
 1475                 /* Detect cycles */
 1476                 for (tdb3 = tdb2; tdb3; tdb3 = tdb3->tdb_onext)
 1477                         if (tdb3 == tdb1) {
rval = ESRCH;
 1479                                 goto splxret;
 1480                         }
 1482                 /* Maintenance */
 1483                 if ((tdb1->tdb_onext) &&
 1484                     (tdb1->tdb_onext->tdb_inext == tdb1))
tdb1->tdb_onext->tdb_inext = NULL;
 1487                 if ((tdb2->tdb_inext) &&
 1488                     (tdb2->tdb_inext->tdb_onext == tdb2))
tdb2->tdb_inext->tdb_onext = NULL;
 1491                 /* Link them */
tdb1->tdb_onext = tdb2;
tdb2->tdb_inext = tdb1;
splx(s);
 1496         }
 1497         break;
 1499         case SADB_X_DELFLOW:
delflag = 1;
 1501                 /*FALLTHROUGH*/
 1502         case SADB_X_ADDFLOW:
 1503         {
 1504                 struct sadb_protocol *sab;
 1505                 union sockaddr_union *ssrc;
 1506                 struct route_enc re;
 1507                 int exists = 0;
sab = (struct sadb_protocol *) headers[SADB_X_EXT_FLOW_TYPE];
 1511                 if ((sab->sadb_protocol_direction != IPSP_DIRECTION_IN) &&
 1512                     (sab->sadb_protocol_direction != IPSP_DIRECTION_OUT)) {
rval = EINVAL;
 1514                         goto ret;
 1515                 }
 1517                 /* If the security protocol wasn't specified, pretend it was ESP */
 1518                 if (smsg->sadb_msg_satype == 0)
smsg->sadb_msg_satype = SADB_SATYPE_ESP;
 1521                 if (headers[SADB_EXT_ADDRESS_DST])
sunionp = (union sockaddr_union *)
 1523                             (headers[SADB_EXT_ADDRESS_DST] +
 1524                                 sizeof(struct sadb_address));
 1525                 else
sunionp = NULL;
 1528                 if (headers[SADB_EXT_ADDRESS_SRC])
ssrc = (union sockaddr_union *)
 1530                             (headers[SADB_EXT_ADDRESS_SRC] +
 1531                                 sizeof(struct sadb_address));
 1532                 else
ssrc = NULL;
import_flow(&encapdst, &encapnetmask,
headers[SADB_X_EXT_SRC_FLOW], headers[SADB_X_EXT_SRC_MASK],
headers[SADB_X_EXT_DST_FLOW], headers[SADB_X_EXT_DST_MASK],
headers[SADB_X_EXT_PROTOCOL], headers[SADB_X_EXT_FLOW_TYPE]);
 1540                 /* Determine whether the exact same SPD entry already exists. */
bzero(&encapgw, sizeof(struct sockaddr_encap));
bzero(&re, sizeof(struct route_enc));
bcopy(&encapdst, &re.re_dst, sizeof(struct sockaddr_encap));
s = spltdb();
rtalloc((struct route *) &re);
 1548                 if (re.re_rt != NULL) {
ipo = ((struct sockaddr_encap *) re.re_rt->rt_gateway)->sen_ipsp;
RTFREE(re.re_rt);
 1552                         /* Verify that the entry is identical */
 1553                         if (bcmp(&ipo->ipo_addr, &encapdst,
 1554                                 sizeof(struct sockaddr_encap)) ||
bcmp(&ipo->ipo_mask, &encapnetmask,
 1556                                 sizeof(struct sockaddr_encap)))
ipo = NULL; /* Fall through */
 1558                         else
exists = 1;
 1560                 } else
ipo = NULL;
 1563                 /*
 1564                  * If the existing policy is static, only delete or update
 1565                  * it if the new one is also static.
 1566                  */
 1567                 if (exists && (ipo->ipo_flags & IPSP_POLICY_STATIC)) {
 1568                         if (!(sab->sadb_protocol_flags &
SADB_X_POLICYFLAGS_POLICY)) {
splx(s);
 1571                                 goto ret;
 1572                         }
 1573                 }
 1575                 /* Delete ? */
 1576                 if (delflag) {
 1577                         if (exists) {
rval = ipsec_delete_policy(ipo);
splx(s);
 1580                                 goto ret;
 1581                         }
 1583                         /* If we were asked to delete something non-existant, error. */
splx(s);
rval = ESRCH;
 1586                         break;
 1587                 }
 1589                 if (!exists) {
 1590                         if (ipsec_policy_pool_initialized == 0) {
ipsec_policy_pool_initialized = 1;
pool_init(&ipsec_policy_pool,
 1593                                     sizeof(struct ipsec_policy), 0, 0, 0,
 1594                                     "ipsec policy", NULL);
 1595                         }
 1597                         /* Allocate policy entry */
ipo = pool_get(&ipsec_policy_pool, 0);
 1599                         if (ipo == NULL) {
splx(s);
rval = ENOMEM;
 1602                                 goto ret;
 1603                         }
bzero(ipo, sizeof(struct ipsec_policy));
ipo->ipo_ref_count = 1;
TAILQ_INIT(&ipo->ipo_acquires);
 1609                         /* Finish initialization of SPD entry */
encapgw.sen_len = SENT_LEN;
encapgw.sen_family = PF_KEY;
encapgw.sen_type = SENT_IPSP;
encapgw.sen_ipsp = ipo;
 1615                         /* Initialize policy entry */
bcopy(&encapdst, &ipo->ipo_addr,
 1617                             sizeof(struct sockaddr_encap));
bcopy(&encapnetmask, &ipo->ipo_mask,
 1619                             sizeof(struct sockaddr_encap));
 1620                 }
 1622                 switch (((struct sadb_protocol *) headers[SADB_X_EXT_FLOW_TYPE])->sadb_protocol_proto) {
 1623                 case SADB_X_FLOW_TYPE_USE:
ipo->ipo_type = IPSP_IPSEC_USE;
 1625                         break;
 1627                 case SADB_X_FLOW_TYPE_ACQUIRE:
ipo->ipo_type = IPSP_IPSEC_ACQUIRE;
 1629                         break;
 1631                 case SADB_X_FLOW_TYPE_REQUIRE:
ipo->ipo_type = IPSP_IPSEC_REQUIRE;
 1633                         break;
 1635                 case SADB_X_FLOW_TYPE_DENY:
ipo->ipo_type = IPSP_DENY;
 1637                         break;
 1639                 case SADB_X_FLOW_TYPE_BYPASS:
ipo->ipo_type = IPSP_PERMIT;
 1641                         break;
 1643                 case SADB_X_FLOW_TYPE_DONTACQ:
ipo->ipo_type = IPSP_IPSEC_DONTACQ;
 1645                         break;
 1647                 default:
 1648                         if (!exists)
pool_put(&ipsec_policy_pool, ipo);
 1650                         else
ipsec_delete_policy(ipo);
splx(s);
rval = EINVAL;
 1655                         goto ret;
 1656                 }
 1658                 if (sab->sadb_protocol_flags & SADB_X_POLICYFLAGS_POLICY)
ipo->ipo_flags |= IPSP_POLICY_STATIC;
 1661                 if (sunionp)
bcopy(sunionp, &ipo->ipo_dst,
 1663                             sizeof(union sockaddr_union));
 1664                 else
bzero(&ipo->ipo_dst, sizeof(union sockaddr_union));
 1667                 if (ssrc)
bcopy(ssrc, &ipo->ipo_src,
 1669                             sizeof(union sockaddr_union));
 1670                 else
bzero(&ipo->ipo_src, sizeof(union sockaddr_union));
ipo->ipo_sproto = SADB_X_GETSPROTO(smsg->sadb_msg_satype);
 1675                 if (ipo->ipo_srcid) {
ipsp_reffree(ipo->ipo_srcid);
ipo->ipo_srcid = NULL;
 1678                 }
 1680                 if (ipo->ipo_dstid) {
ipsp_reffree(ipo->ipo_dstid);
ipo->ipo_dstid = NULL;
 1683                 }
 1685                 if ((sid = headers[SADB_EXT_IDENTITY_SRC]) != NULL) {
 1686                         int clen =  (sid->sadb_ident_len * sizeof(u_int64_t)) -
 1687                             sizeof(struct sadb_ident);
MALLOC(ipo->ipo_srcid, struct ipsec_ref *, clen +
 1690                             sizeof(struct ipsec_ref), M_CREDENTIALS, M_DONTWAIT);
 1691                         if (ipo->ipo_srcid == NULL) {
 1692                                 if (exists)
ipsec_delete_policy(ipo);
 1694                                 else
pool_put(&ipsec_policy_pool, ipo);
splx(s);
rval = ENOBUFS;
 1698                                 goto ret;
 1699                         }
ipo->ipo_srcid->ref_type = sid->sadb_ident_type;
ipo->ipo_srcid->ref_len = clen;
ipo->ipo_srcid->ref_count = 1;
ipo->ipo_srcid->ref_malloctype = M_CREDENTIALS;
bcopy(sid + 1, ipo->ipo_srcid + 1, ipo->ipo_srcid->ref_len);
 1705                 }
 1707                 if ((sid = headers[SADB_EXT_IDENTITY_DST]) != NULL) {
 1708                         int clen =  (sid->sadb_ident_len * sizeof(u_int64_t)) -
 1709                             sizeof(struct sadb_ident);
MALLOC(ipo->ipo_dstid, struct ipsec_ref *,
clen + sizeof(struct ipsec_ref),
M_CREDENTIALS, M_DONTWAIT);
 1714                         if (ipo->ipo_dstid == NULL) {
 1715                                 if (exists)
ipsec_delete_policy(ipo);
 1717                                 else {
 1718                                         if (ipo->ipo_dstid)
ipsp_reffree(ipo->ipo_dstid);
pool_put(&ipsec_policy_pool, ipo);
 1721                                 }
splx(s);
rval = ENOBUFS;
 1725                                 goto ret;
 1726                         }
ipo->ipo_dstid->ref_type = sid->sadb_ident_type;
ipo->ipo_dstid->ref_len = clen;
ipo->ipo_dstid->ref_count = 1;
ipo->ipo_dstid->ref_malloctype = M_CREDENTIALS;
bcopy(sid + 1, ipo->ipo_dstid + 1,
ipo->ipo_dstid->ref_len);
 1733                 }
 1735                 /* Flow type */
 1736                 if (!exists) {
 1737                         /* Add SPD entry */
 1738                         if ((rval = rtrequest(RTM_ADD,
 1739                                  (struct sockaddr *) &encapdst,
 1740                                  (struct sockaddr *) &encapgw,
 1741                                  (struct sockaddr *) &encapnetmask,
RTF_UP | RTF_GATEWAY | RTF_STATIC,
 1743                                  (struct rtentry **) 0, 0)) != 0) {
 1744                                 /* Remove from linked list of policies on TDB */
 1745                                 if (ipo->ipo_tdb)
TAILQ_REMOVE(&ipo->ipo_tdb->tdb_policy_head,
ipo, ipo_tdb_next);
 1749                                 if (ipo->ipo_srcid)
ipsp_reffree(ipo->ipo_srcid);
 1751                                 if (ipo->ipo_dstid)
ipsp_reffree(ipo->ipo_dstid);
pool_put(&ipsec_policy_pool, ipo);
splx(s);
 1756                                 goto ret;
 1757                         }
TAILQ_INSERT_HEAD(&ipsec_policy_head, ipo, ipo_list);
ipsec_in_use++;
 1761                 } else {
ipo->ipo_last_searched = ipo->ipo_flags = 0;
 1763                 }
splx(s);
 1766         }
 1767         break;
 1769         case SADB_X_PROMISC:
 1770                 if (len >= 2 * sizeof(struct sadb_msg)) {
 1771                         struct mbuf *packet;
 1773                         if ((rval = pfdatatopacket(message, len, &packet)) != 0)
 1774                                 goto ret;
 1776                         for (so = pfkeyv2_sockets; so; so = so->next)
 1777                                 if ((so != pfkeyv2_socket) &&
 1778                                     (!smsg->sadb_msg_seq ||
 1779                                     (smsg->sadb_msg_seq == pfkeyv2_socket->pid)))
pfkey_sendup(so->socket, packet, 1);
m_freem(packet);
 1783                 } else {
 1784                         if (len != sizeof(struct sadb_msg)) {
rval = EINVAL;
 1786                                 goto ret;
 1787                         }
i = (pfkeyv2_socket->flags &
PFKEYV2_SOCKETFLAGS_PROMISC) ? 1 : 0;
j = smsg->sadb_msg_satype ? 1 : 0;
 1793                         if (i ^ j) {
 1794                                 if (j) {
pfkeyv2_socket->flags |=
PFKEYV2_SOCKETFLAGS_PROMISC;
npromisc++;
 1798                                 } else {
pfkeyv2_socket->flags &=
 1800                                             ~PFKEYV2_SOCKETFLAGS_PROMISC;
npromisc--;
 1802                                 }
 1803                         }
 1804                 }
 1807                 break;
 1809         default:
rval = EINVAL;
 1811                 goto ret;
 1812         }
ret:
 1815         if (rval) {
 1816                 if ((rval == EINVAL) || (rval == ENOMEM) || (rval == ENOBUFS))
 1817                         goto realret;
 1819                 for (i = 1; i <= SADB_EXT_MAX; i++)
headers[i] = NULL;
smsg->sadb_msg_errno = abs(rval);
 1823         } else {
uint64_t seen = 0LL;
 1826                 for (i = 1; i <= SADB_EXT_MAX; i++)
 1827                         if (headers[i])
seen |= (1LL << i);
 1830                 if ((seen & sadb_exts_allowed_out[smsg->sadb_msg_type])
 1831                     != seen)
 1832                         goto realret;
 1834                 if ((seen & sadb_exts_required_out[smsg->sadb_msg_type]) !=
sadb_exts_required_out[smsg->sadb_msg_type])
 1836                         goto realret;
 1837         }
rval = pfkeyv2_sendmessage(headers, mode, socket, 0, 0);
realret:
 1842         if (freeme)
free(freeme, M_PFKEY);
free(message, M_PFKEY);
 1847         return (rval);
splxret:
splx(s);
 1851         goto ret;
 1852 }
 1854 /*
 1855  * Send an ACQUIRE message to key management, to get a new SA.
 1856  */
 1857 int
pfkeyv2_acquire(struct ipsec_policy *ipo, union sockaddr_union *gw,
 1859     union sockaddr_union *laddr, u_int32_t *seq, struct sockaddr_encap *ddst)
 1860 {
 1861         void *p, *headers[SADB_EXT_MAX + 1], *buffer = NULL;
 1862         struct sadb_ident *srcid, *dstid;
 1863         struct sadb_x_cred *lcred, *lauth;
 1864         struct sadb_comb *sadb_comb;
 1865         struct sadb_address *sadd;
 1866         struct sadb_prop *sa_prop;
 1867         struct sadb_msg *smsg;
 1868         int rval = 0;
 1869         int i, j;
 1871         *seq = pfkeyv2_seq++;
 1873         if (!nregistered) {
rval = ESRCH;
 1875                 goto ret;
 1876         }
 1878         /* How large a buffer do we need... XXX we only do one proposal for now */
i = sizeof(struct sadb_msg) +
 1880             (laddr == NULL ? 0 : sizeof(struct sadb_address) +
PADUP(SA_LEN(&ipo->ipo_src.sa))) +
 1882             sizeof(struct sadb_address) + PADUP(SA_LEN(&gw->sa)) +
 1883             sizeof(struct sadb_prop) + 1 * sizeof(struct sadb_comb);
 1885         if (ipo->ipo_srcid)
i += sizeof(struct sadb_ident) + PADUP(ipo->ipo_srcid->ref_len);
 1888         if (ipo->ipo_dstid)
i += sizeof(struct sadb_ident) + PADUP(ipo->ipo_dstid->ref_len);
 1891         if (ipo->ipo_local_cred)
i += sizeof(struct sadb_x_cred) + PADUP(ipo->ipo_local_cred->ref_len);
 1894         if (ipo->ipo_local_auth)
i += sizeof(struct sadb_x_cred) + PADUP(ipo->ipo_local_auth->ref_len);
 1897         /* Allocate */
 1898         if (!(p = malloc(i, M_PFKEY, M_DONTWAIT))) {
rval = ENOMEM;
 1900                 goto ret;
 1901         }
bzero(headers, sizeof(headers));
buffer = p;
bzero(p, i);
headers[0] = p;
p += sizeof(struct sadb_msg);
smsg = (struct sadb_msg *) headers[0];
smsg->sadb_msg_version = PF_KEY_V2;
smsg->sadb_msg_type = SADB_ACQUIRE;
smsg->sadb_msg_len = i / sizeof(uint64_t);
smsg->sadb_msg_seq = *seq;
 1917         if (ipo->ipo_sproto == IPPROTO_ESP)
smsg->sadb_msg_satype = SADB_SATYPE_ESP;
 1919         else if (ipo->ipo_sproto == IPPROTO_AH)
smsg->sadb_msg_satype = SADB_SATYPE_AH;
 1921         else if (ipo->ipo_sproto == IPPROTO_IPCOMP)
smsg->sadb_msg_satype = SADB_X_SATYPE_IPCOMP;
 1924         if (laddr) {
headers[SADB_EXT_ADDRESS_SRC] = p;
p += sizeof(struct sadb_address) + PADUP(SA_LEN(&laddr->sa));
sadd = (struct sadb_address *) headers[SADB_EXT_ADDRESS_SRC];
sadd->sadb_address_len = (sizeof(struct sadb_address) +
SA_LEN(&laddr->sa) + sizeof(uint64_t) - 1) /
 1930                     sizeof(uint64_t);
bcopy(laddr, headers[SADB_EXT_ADDRESS_SRC] +
 1932                     sizeof(struct sadb_address), SA_LEN(&laddr->sa));
 1933         }
headers[SADB_EXT_ADDRESS_DST] = p;
p += sizeof(struct sadb_address) + PADUP(SA_LEN(&gw->sa));
sadd = (struct sadb_address *) headers[SADB_EXT_ADDRESS_DST];
sadd->sadb_address_len = (sizeof(struct sadb_address) +
SA_LEN(&gw->sa) + sizeof(uint64_t) - 1) / sizeof(uint64_t);
bcopy(gw, headers[SADB_EXT_ADDRESS_DST] + sizeof(struct sadb_address),
SA_LEN(&gw->sa));
 1943         if (ipo->ipo_srcid) {
headers[SADB_EXT_IDENTITY_SRC] = p;
p += sizeof(struct sadb_ident) + PADUP(ipo->ipo_srcid->ref_len);
srcid = (struct sadb_ident *) headers[SADB_EXT_IDENTITY_SRC];
srcid->sadb_ident_len = (sizeof(struct sadb_ident) +
PADUP(ipo->ipo_srcid->ref_len)) / sizeof(u_int64_t);
srcid->sadb_ident_type = ipo->ipo_srcid->ref_type;
bcopy(ipo->ipo_srcid + 1, headers[SADB_EXT_IDENTITY_SRC] +
 1951                     sizeof(struct sadb_ident), ipo->ipo_srcid->ref_len);
 1952         }
 1954         if (ipo->ipo_dstid) {
headers[SADB_EXT_IDENTITY_DST] = p;
p += sizeof(struct sadb_ident) + PADUP(ipo->ipo_dstid->ref_len);
dstid = (struct sadb_ident *) headers[SADB_EXT_IDENTITY_DST];
dstid->sadb_ident_len = (sizeof(struct sadb_ident) +
PADUP(ipo->ipo_dstid->ref_len)) / sizeof(u_int64_t);
dstid->sadb_ident_type = ipo->ipo_dstid->ref_type;
bcopy(ipo->ipo_dstid + 1, headers[SADB_EXT_IDENTITY_DST] +
 1962                     sizeof(struct sadb_ident), ipo->ipo_dstid->ref_len);
 1963         }
 1965         if (ipo->ipo_local_cred) {
headers[SADB_X_EXT_LOCAL_CREDENTIALS] = p;
p += sizeof(struct sadb_x_cred) + PADUP(ipo->ipo_local_cred->ref_len);
lcred = (struct sadb_x_cred *) headers[SADB_X_EXT_LOCAL_CREDENTIALS];
lcred->sadb_x_cred_len = (sizeof(struct sadb_x_cred) +
PADUP(ipo->ipo_local_cred->ref_len)) / sizeof(u_int64_t);
 1971                 switch (ipo->ipo_local_cred->ref_type) {
 1972                 case IPSP_CRED_KEYNOTE:
lcred->sadb_x_cred_type = SADB_X_CREDTYPE_KEYNOTE;
 1974                         break;
 1975                 case IPSP_CRED_X509:
lcred->sadb_x_cred_type = SADB_X_CREDTYPE_X509;
 1977                         break;
 1978                 }
bcopy(ipo->ipo_local_cred + 1, headers[SADB_X_EXT_LOCAL_CREDENTIALS] +
 1980                     sizeof(struct sadb_x_cred), ipo->ipo_local_cred->ref_len);
 1981         }
 1983         if (ipo->ipo_local_auth) {
headers[SADB_X_EXT_LOCAL_AUTH] = p;
p += sizeof(struct sadb_x_cred) + PADUP(ipo->ipo_local_auth->ref_len);
lauth = (struct sadb_x_cred *) headers[SADB_X_EXT_LOCAL_AUTH];
lauth->sadb_x_cred_len = (sizeof(struct sadb_x_cred) +
PADUP(ipo->ipo_local_auth->ref_len)) / sizeof(u_int64_t);
 1989                 switch (ipo->ipo_local_auth->ref_type) {
 1990                 case IPSP_AUTH_PASSPHRASE:
lauth->sadb_x_cred_type = SADB_X_AUTHTYPE_PASSPHRASE;
 1992                         break;
 1993                 case IPSP_AUTH_RSA:
lauth->sadb_x_cred_type = SADB_X_AUTHTYPE_RSA;
 1995                         break;
 1996                 }
bcopy(ipo->ipo_local_auth + 1, headers[SADB_X_EXT_LOCAL_AUTH] +
 1999                     sizeof(struct sadb_x_cred), ipo->ipo_local_auth->ref_len);
 2000         }
headers[SADB_EXT_PROPOSAL] = p;
p += sizeof(struct sadb_prop);
sa_prop = (struct sadb_prop *) headers[SADB_EXT_PROPOSAL];
sa_prop->sadb_prop_num = 1; /* XXX One proposal only */
sa_prop->sadb_prop_len = (sizeof(struct sadb_prop) +
 2007             (sizeof(struct sadb_comb) * sa_prop->sadb_prop_num)) /
 2008             sizeof(uint64_t);
sadb_comb = p;
 2012         /* XXX Should actually ask the crypto layer what's supported */
 2013         for (j = 0; j < sa_prop->sadb_prop_num; j++) {
sadb_comb->sadb_comb_flags = 0;
 2016                 if (ipsec_require_pfs)
sadb_comb->sadb_comb_flags |= SADB_SAFLAGS_PFS;
 2019                 /* Set the encryption algorithm */
 2020                 if (ipo->ipo_sproto == IPPROTO_ESP) {
 2021                         if (!strncasecmp(ipsec_def_enc, "aes",
 2022                             sizeof("aes"))) {
sadb_comb->sadb_comb_encrypt = SADB_X_EALG_AES;
sadb_comb->sadb_comb_encrypt_minbits = 128;
sadb_comb->sadb_comb_encrypt_maxbits = 256;
 2026                         } else if (!strncasecmp(ipsec_def_enc, "aesctr",
 2027                             sizeof("aesctr"))) {
sadb_comb->sadb_comb_encrypt = SADB_X_EALG_AESCTR;
sadb_comb->sadb_comb_encrypt_minbits = 128+32;
sadb_comb->sadb_comb_encrypt_maxbits = 256+32;
 2031                         } else if (!strncasecmp(ipsec_def_enc, "3des",
 2032                             sizeof("3des"))) {
sadb_comb->sadb_comb_encrypt = SADB_EALG_3DESCBC;
sadb_comb->sadb_comb_encrypt_minbits = 192;
sadb_comb->sadb_comb_encrypt_maxbits = 192;
 2036                         } else if (!strncasecmp(ipsec_def_enc, "des",
 2037                             sizeof("des"))) {
sadb_comb->sadb_comb_encrypt = SADB_EALG_DESCBC;
sadb_comb->sadb_comb_encrypt_minbits = 64;
sadb_comb->sadb_comb_encrypt_maxbits = 64;
 2041                         } else if (!strncasecmp(ipsec_def_enc, "blowfish",
 2042                             sizeof("blowfish"))) {
sadb_comb->sadb_comb_encrypt = SADB_X_EALG_BLF;
sadb_comb->sadb_comb_encrypt_minbits = 40;
sadb_comb->sadb_comb_encrypt_maxbits = BLF_MAXKEYLEN * 8;
 2046                         } else if (!strncasecmp(ipsec_def_enc, "skipjack",
 2047                             sizeof("skipjack"))) {
sadb_comb->sadb_comb_encrypt = SADB_X_EALG_SKIPJACK;
sadb_comb->sadb_comb_encrypt_minbits = 80;
sadb_comb->sadb_comb_encrypt_maxbits = 80;
 2051                         } else if (!strncasecmp(ipsec_def_enc, "cast128",
 2052                             sizeof("cast128"))) {
sadb_comb->sadb_comb_encrypt = SADB_X_EALG_CAST;
sadb_comb->sadb_comb_encrypt_minbits = 40;
sadb_comb->sadb_comb_encrypt_maxbits = 128;
 2056                         }
 2057                 } else if (ipo->ipo_sproto == IPPROTO_IPCOMP) {
 2058                         /* Set the compression algorithm */
 2059                         if (!strncasecmp(ipsec_def_comp, "deflate",
 2060                             sizeof("deflate"))) {
sadb_comb->sadb_comb_encrypt = SADB_X_CALG_DEFLATE;
sadb_comb->sadb_comb_encrypt_minbits = 0;
sadb_comb->sadb_comb_encrypt_maxbits = 0;
 2064                         } else if (!strncasecmp(ipsec_def_comp, "lzs",
 2065                             sizeof("lzs"))) {
sadb_comb->sadb_comb_encrypt = SADB_X_CALG_LZS;
sadb_comb->sadb_comb_encrypt_minbits = 0;
sadb_comb->sadb_comb_encrypt_maxbits = 0;
 2069                         }
 2070                 }
 2072                 /* Set the authentication algorithm */
 2073                 if (!strncasecmp(ipsec_def_auth, "hmac-sha1",
 2074                     sizeof("hmac-sha1"))) {
sadb_comb->sadb_comb_auth = SADB_AALG_SHA1HMAC;
sadb_comb->sadb_comb_auth_minbits = 160;
sadb_comb->sadb_comb_auth_maxbits = 160;
 2078                 } else if (!strncasecmp(ipsec_def_auth, "hmac-ripemd160",
 2079                     sizeof("hmac_ripemd160"))) {
sadb_comb->sadb_comb_auth = SADB_X_AALG_RIPEMD160HMAC;
sadb_comb->sadb_comb_auth_minbits = 160;
sadb_comb->sadb_comb_auth_maxbits = 160;
 2083                 } else if (!strncasecmp(ipsec_def_auth, "hmac-md5",
 2084                     sizeof("hmac-md5"))) {
sadb_comb->sadb_comb_auth = SADB_AALG_MD5HMAC;
sadb_comb->sadb_comb_auth_minbits = 128;
sadb_comb->sadb_comb_auth_maxbits = 128;
 2088                 } else if (!strncasecmp(ipsec_def_auth, "hmac-sha2-256",
 2089                     sizeof("hmac-sha2-256"))) {
sadb_comb->sadb_comb_auth = SADB_X_AALG_SHA2_256;
sadb_comb->sadb_comb_auth_minbits = 256;
sadb_comb->sadb_comb_auth_maxbits = 256;
 2093                 } else if (!strncasecmp(ipsec_def_auth, "hmac-sha2-384",
 2094                     sizeof("hmac-sha2-384"))) {
sadb_comb->sadb_comb_auth = SADB_X_AALG_SHA2_384;
sadb_comb->sadb_comb_auth_minbits = 384;
sadb_comb->sadb_comb_auth_maxbits = 384;
 2098                 } else if (!strncasecmp(ipsec_def_auth, "hmac-sha2-512",
 2099                     sizeof("hmac-sha2-512"))) {
sadb_comb->sadb_comb_auth = SADB_X_AALG_SHA2_512;
sadb_comb->sadb_comb_auth_minbits = 512;
sadb_comb->sadb_comb_auth_maxbits = 512;
 2103                 }
sadb_comb->sadb_comb_soft_allocations = ipsec_soft_allocations;
sadb_comb->sadb_comb_hard_allocations = ipsec_exp_allocations;
sadb_comb->sadb_comb_soft_bytes = ipsec_soft_bytes;
sadb_comb->sadb_comb_hard_bytes = ipsec_exp_bytes;
sadb_comb->sadb_comb_soft_addtime = ipsec_soft_timeout;
sadb_comb->sadb_comb_hard_addtime = ipsec_exp_timeout;
sadb_comb->sadb_comb_soft_usetime = ipsec_soft_first_use;
sadb_comb->sadb_comb_hard_usetime = ipsec_exp_first_use;
sadb_comb++;
 2117         }
 2119         /* Send the ACQUIRE message to all compliant registered listeners. */
 2120         if ((rval = pfkeyv2_sendmessage(headers,
PFKEYV2_SENDMESSAGE_REGISTERED, NULL, smsg->sadb_msg_satype, 0))
 2122             != 0)
 2123                 goto ret;
rval = 0;
ret:
 2127         if (buffer != NULL) {
bzero(buffer, i);
free(buffer, M_PFKEY);
 2130         }
 2132         return (rval);
 2133 }
 2135 /*
 2136  * Notify key management that an expiration went off. The second argument
 2137  * specifies the type of expiration (soft or hard).
 2138  */
 2139 int
pfkeyv2_expire(struct tdb *sa, u_int16_t type)
 2141 {
 2142         void *p, *headers[SADB_EXT_MAX+1], *buffer = NULL;
 2143         struct sadb_msg *smsg;
 2144         int rval = 0;
 2145         int i;
 2147         switch (sa->tdb_sproto) {
 2148         case IPPROTO_AH:
 2149         case IPPROTO_ESP:
 2150         case IPPROTO_IPIP:
 2151         case IPPROTO_IPCOMP:
 2152 #ifdef TCP_SIGNATURE
 2153         case IPPROTO_TCP:
 2154 #endif /* TCP_SIGNATURE */
 2155                 break;
 2157         default:
rval = EOPNOTSUPP;
 2159                 goto ret;
 2160         }
i = sizeof(struct sadb_msg) + sizeof(struct sadb_sa) +
 2163             2 * sizeof(struct sadb_lifetime) +
 2164             sizeof(struct sadb_address) + PADUP(SA_LEN(&sa->tdb_src.sa)) +
 2165             sizeof(struct sadb_address) + PADUP(SA_LEN(&sa->tdb_dst.sa));
 2167         if (!(p = malloc(i, M_PFKEY, M_DONTWAIT))) {
rval = ENOMEM;
 2169                 goto ret;
 2170         }
bzero(headers, sizeof(headers));
buffer = p;
bzero(p, i);
headers[0] = p;
p += sizeof(struct sadb_msg);
smsg = (struct sadb_msg *) headers[0];
smsg->sadb_msg_version = PF_KEY_V2;
smsg->sadb_msg_type = SADB_EXPIRE;
smsg->sadb_msg_satype = sa->tdb_satype;
smsg->sadb_msg_len = i / sizeof(uint64_t);
smsg->sadb_msg_seq = pfkeyv2_seq++;
headers[SADB_EXT_SA] = p;
export_sa(&p, sa);
headers[SADB_EXT_LIFETIME_CURRENT] = p;
export_lifetime(&p, sa, 2);
headers[type] = p;
export_lifetime(&p, sa, type == SADB_EXT_LIFETIME_SOFT ?
PFKEYV2_LIFETIME_SOFT : PFKEYV2_LIFETIME_HARD);
headers[SADB_EXT_ADDRESS_SRC] = p;
export_address(&p, (struct sockaddr *) &sa->tdb_src);
headers[SADB_EXT_ADDRESS_DST] = p;
export_address(&p, (struct sockaddr *) &sa->tdb_dst);
 2203         if ((rval = pfkeyv2_sendmessage(headers, PFKEYV2_SENDMESSAGE_BROADCAST,
NULL, 0, 0)) != 0)
 2205                 goto ret;
rval = 0;
ret:
 2210         if (buffer != NULL) {
bzero(buffer, i);
free(buffer, M_PFKEY);
 2213         }
 2215         return (rval);
 2216 }
 2218 struct pfkeyv2_sysctl_walk {
 2219         void            *w_where;
size_t           w_len;
 2221         int              w_op;
u_int8_t         w_satype;
 2223 };
 2225 int
pfkeyv2_sysctl_walker(struct tdb *sa, void *arg, int last)
 2227 {
 2228         struct pfkeyv2_sysctl_walk *w = (struct pfkeyv2_sysctl_walk *)arg;
 2229         void *buffer = NULL;
 2230         int error = 0;
 2231         int buflen, i;
 2233         if (w->w_satype != SADB_SATYPE_UNSPEC &&
w->w_satype != sa->tdb_satype)
 2235                 return (0);
 2237         if (w->w_where) {
 2238                 void *headers[SADB_EXT_MAX+1];
 2239                 struct sadb_msg msg;
bzero(headers, sizeof(headers));
 2242                 if ((error = pfkeyv2_get(sa, headers, &buffer, &buflen)) != 0)
 2243                         goto done;
 2244                 if (w->w_len < sizeof(msg) + buflen) {
error = ENOMEM;
 2246                         goto done;
 2247                 }
 2248                 /* prepend header */
bzero(&msg, sizeof(msg));
msg.sadb_msg_version = PF_KEY_V2;
msg.sadb_msg_satype = sa->tdb_satype;
msg.sadb_msg_type = SADB_DUMP;
msg.sadb_msg_len = (sizeof(msg) + buflen) / sizeof(uint64_t);
 2254                 if ((error = copyout(&msg, w->w_where, sizeof(msg))) != 0)
 2255                         goto done;
w->w_where += sizeof(msg);
w->w_len -= sizeof(msg);
 2258                 /* set extension type */
 2259                 for (i = 1; i <= SADB_EXT_MAX; i++)
 2260                         if (headers[i])
 2261                                 ((struct sadb_ext *)
headers[i])->sadb_ext_type = i;
 2263                 if ((error = copyout(buffer, w->w_where, buflen)) != 0)
 2264                         goto done;
w->w_where += buflen;
w->w_len -= buflen;
 2267         } else {
 2268                 if ((error = pfkeyv2_get(sa, NULL, NULL, &buflen)) != 0)
 2269                         return (error);
w->w_len += buflen;
w->w_len += sizeof(struct sadb_msg);
 2272         }
done:
 2275         if (buffer)
free(buffer, M_PFKEY);
 2277         return (error);
 2278 }
 2280 int
pfkeyv2_dump_policy(struct ipsec_policy *ipo, void **headers, void **buffer,
 2282     int *lenp)
 2283 {
 2284         struct sadb_ident *ident;
 2285         int i, rval, perm;
 2286         void *p;
 2288         /* Find how much space we need. */
i = 2 * sizeof(struct sadb_protocol);
 2291         /* We'll need four of them: src, src mask, dst, dst mask. */
 2292         switch (ipo->ipo_addr.sen_type) {
 2293 #ifdef INET
 2294         case SENT_IP4:
i += 4 * PADUP(sizeof(struct sockaddr_in));
i += 4 * sizeof(struct sadb_address);
 2297                 break;
 2298 #endif /* INET */
 2299 #ifdef INET6
 2300         case SENT_IP6:
i += 4 * PADUP(sizeof(struct sockaddr_in6));
i += 4 * sizeof(struct sadb_address);
 2303                 break;
 2304 #endif /* INET6 */
 2305         default:
 2306                 return (EINVAL);
 2307         }
 2309         /* Local address, might be zeroed. */
 2310         switch (ipo->ipo_src.sa.sa_family) {
 2311         case 0:
 2312                 break;
 2313 #ifdef INET
 2314         case AF_INET:
i += PADUP(sizeof(struct sockaddr_in));
i += sizeof(struct sadb_address);
 2317                 break;
 2318 #endif /* INET */
 2319 #ifdef INET6
 2320         case AF_INET6:
i += PADUP(sizeof(struct sockaddr_in6));
i += sizeof(struct sadb_address);
 2323                 break;
 2324 #endif /* INET6 */
 2325         default:
 2326                 return (EINVAL);
 2327         }
 2329         /* Remote address, might be zeroed. XXX ??? */
 2330         switch (ipo->ipo_dst.sa.sa_family) {
 2331         case 0:
 2332                 break;
 2333 #ifdef INET
 2334         case AF_INET:
i += PADUP(sizeof(struct sockaddr_in));
i += sizeof(struct sadb_address);
 2337                 break;
 2338 #endif /* INET */
 2339 #ifdef INET6
 2340         case AF_INET6:
i += PADUP(sizeof(struct sockaddr_in6));
i += sizeof(struct sadb_address);
 2343                 break;
 2344 #endif /* INET6 */
 2345         default:
 2346                 return (EINVAL);
 2347         }
 2349         if (ipo->ipo_srcid)
i += sizeof(struct sadb_ident) + PADUP(ipo->ipo_srcid->ref_len);
 2351         if (ipo->ipo_dstid)
i += sizeof(struct sadb_ident) + PADUP(ipo->ipo_dstid->ref_len);
 2354         if (lenp)
 2355                 *lenp = i;
 2357         if (buffer == NULL) {
rval = 0;
 2359                 goto ret;
 2360         }
 2362         if (!(p = malloc(i, M_PFKEY, M_DONTWAIT))) {
rval = ENOMEM;
 2364                 goto ret;
 2365         } else {
 2366                 *buffer = p;
bzero(p, i);
 2368         }
 2370         /* Local address. */
 2371         if (ipo->ipo_src.sa.sa_family) {
headers[SADB_EXT_ADDRESS_SRC] = p;
export_address(&p, (struct sockaddr *)&ipo->ipo_src);
 2374         }
 2376         /* Remote address. */
 2377         if (ipo->ipo_dst.sa.sa_family) {
headers[SADB_EXT_ADDRESS_DST] = p;
export_address(&p, (struct sockaddr *)&ipo->ipo_dst);
 2380         }
 2382         /* Get actual flow. */
export_flow(&p, ipo->ipo_type, &ipo->ipo_addr, &ipo->ipo_mask,
headers);
 2386         /* Add ids only when we are root. */
perm = suser(curproc, 0);
 2388         if (perm == 0 && ipo->ipo_srcid) {
headers[SADB_EXT_IDENTITY_SRC] = p;
p += sizeof(struct sadb_ident) + PADUP(ipo->ipo_srcid->ref_len);
ident = (struct sadb_ident *)headers[SADB_EXT_IDENTITY_SRC];
ident->sadb_ident_len = (sizeof(struct sadb_ident) +
PADUP(ipo->ipo_srcid->ref_len)) / sizeof(uint64_t);
ident->sadb_ident_type = ipo->ipo_srcid->ref_type;
bcopy(ipo->ipo_srcid + 1, headers[SADB_EXT_IDENTITY_SRC] +
 2396                     sizeof(struct sadb_ident), ipo->ipo_srcid->ref_len);
 2397         }
 2398         if (perm == 0 && ipo->ipo_dstid) {
headers[SADB_EXT_IDENTITY_DST] = p;
p += sizeof(struct sadb_ident) + PADUP(ipo->ipo_dstid->ref_len);
ident = (struct sadb_ident *)headers[SADB_EXT_IDENTITY_DST];
ident->sadb_ident_len = (sizeof(struct sadb_ident) +
PADUP(ipo->ipo_dstid->ref_len)) / sizeof(uint64_t);
ident->sadb_ident_type = ipo->ipo_dstid->ref_type;
bcopy(ipo->ipo_dstid + 1, headers[SADB_EXT_IDENTITY_DST] +
 2406                     sizeof(struct sadb_ident), ipo->ipo_dstid->ref_len);
 2407         }
rval = 0;
ret:
 2411         return (rval);
 2412 }
 2414 /*
 2415  * Caller is responsible for setting at least spltdb().
 2416  */
 2417 int
pfkeyv2_ipo_walk(int (*walker)(struct ipsec_policy *, void *), void *arg)
 2419 {
 2420         int rval = 0;
 2421         struct ipsec_policy *ipo;
TAILQ_FOREACH(ipo, &ipsec_policy_head, ipo_list)
rval = walker(ipo, (void *)arg);
 2425         return (rval);
 2426 }
 2428 int
pfkeyv2_sysctl_policydumper(struct ipsec_policy *ipo, void *arg)
 2430 {
 2431         struct pfkeyv2_sysctl_walk *w = (struct pfkeyv2_sysctl_walk *)arg;
 2432         void *buffer = 0;
 2433         int i, buflen, error = 0;
 2435         /* Do not dump policies attached to a socket. */
 2436         if (ipo->ipo_flags & IPSP_POLICY_SOCKET)
 2437                 return (0);
 2439         if (w->w_where) {
 2440                 void *headers[SADB_EXT_MAX + 1];
 2441                 struct sadb_msg msg;
bzero(headers, sizeof(headers));
 2444                 if ((error = pfkeyv2_dump_policy(ipo, headers, &buffer,
 2445                     &buflen)) != 0)
 2446                         goto done;
 2447                 if (w->w_len < buflen) {
error = ENOMEM;
 2449                         goto done;
 2450                 }
 2451                 /* prepend header */
bzero(&msg, sizeof(msg));
msg.sadb_msg_version = PF_KEY_V2;
 2454                 if (ipo->ipo_sproto == IPPROTO_ESP)
msg.sadb_msg_satype = SADB_SATYPE_ESP;
 2456                 else if (ipo->ipo_sproto == IPPROTO_AH)
msg.sadb_msg_satype = SADB_SATYPE_AH;
 2458                 else if (ipo->ipo_sproto == IPPROTO_IPCOMP)
msg.sadb_msg_satype = SADB_X_SATYPE_IPCOMP;
 2460                 else if (ipo->ipo_sproto == IPPROTO_IPIP)
msg.sadb_msg_satype = SADB_X_SATYPE_IPIP;
msg.sadb_msg_type = SADB_X_SPDDUMP;
msg.sadb_msg_len = (sizeof(msg) + buflen) / sizeof(uint64_t);
 2464                 if ((error = copyout(&msg, w->w_where, sizeof(msg))) != 0)
 2465                         goto done;
w->w_where += sizeof(msg);
w->w_len -= sizeof(msg);
 2468                 /* set extension type */
 2469                 for (i = 1; i < SADB_EXT_MAX; i++)
 2470                         if (headers[i])
 2471                                 ((struct sadb_ext *)
headers[i])->sadb_ext_type = i;
 2473                 if ((error = copyout(buffer, w->w_where, buflen)) != 0)
 2474                         goto done;
w->w_where += buflen;
w->w_len -= buflen;
 2477         } else {
 2478                 if ((error = pfkeyv2_dump_policy(ipo, NULL, NULL,
 2479                     &buflen)) != 0)
 2480                         goto done;
w->w_len += buflen;
w->w_len += sizeof(struct sadb_msg);
 2483         }
done:
 2486         if (buffer)
free(buffer, M_PFKEY);
 2488         return (error);
 2489 }
 2491 int
pfkeyv2_sysctl(int *name, u_int namelen, void *oldp, size_t *oldlenp,
 2493     void *new, size_t newlen)
 2494 {
 2495         struct pfkeyv2_sysctl_walk w;
 2496         int s, error = EINVAL;
 2498         if (new)
 2499                 return (EPERM);
 2500         if (namelen < 1)
 2501                 return (EINVAL);
w.w_op = name[0];
w.w_satype = name[1];
w.w_where = oldp;
w.w_len = oldp ? *oldlenp : 0;
 2507         switch(w.w_op) {
 2508         case NET_KEY_SADB_DUMP:
 2509                 if ((error = suser(curproc, 0)) != 0)
 2510                         return (error);
s = spltdb();
error = tdb_walk(pfkeyv2_sysctl_walker, &w);
splx(s);
 2514                 if (oldp)
 2515                         *oldlenp = w.w_where - oldp;
 2516                 else
 2517                         *oldlenp = w.w_len;
 2518                 break;
 2520         case NET_KEY_SPD_DUMP:
s = spltdb();
error = pfkeyv2_ipo_walk(pfkeyv2_sysctl_policydumper, &w);
splx(s);
 2524                 if (oldp)
 2525                         *oldlenp = w.w_where - oldp;
 2526                 else
 2527                         *oldlenp = w.w_len;
 2528                 break;
 2529         }
 2531         return (error);
 2532 }
 2534 int
pfkeyv2_init(void)
 2536 {
 2537         int rval;
bzero(&pfkeyv2_version, sizeof(struct pfkey_version));
pfkeyv2_version.protocol = PFKEYV2_PROTOCOL;
pfkeyv2_version.create = &pfkeyv2_create;
pfkeyv2_version.release = &pfkeyv2_release;
pfkeyv2_version.send = &pfkeyv2_send;
pfkeyv2_version.sysctl = &pfkeyv2_sysctl;
rval = pfkey_register(&pfkeyv2_version);
 2547         return (rval);
 2548 }
 2550 int
pfkeyv2_cleanup(void)
 2552 {
pfkey_unregister(&pfkeyv2_version);
 2554         return (0);
 2555 }