blob: 750cc30d286966c7ae264e33752db21d2e1a8fd7 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
|
/*
* CDDL HEADER START
*
* The contents of this file are subject to the terms of the
* Common Development and Distribution License (the "License").
* You may not use this file except in compliance with the License.
*
* You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
* or http://www.opensolaris.org/os/licensing.
* See the License for the specific language governing permissions
* and limitations under the License.
*
* When distributing Covered Code, include this CDDL HEADER in each
* file and include the License file at usr/src/OPENSOLARIS.LICENSE.
* If applicable, add the following below this CDDL HEADER, with the
* fields enclosed by brackets "[]" replaced with your own identifying
* information: Portions Copyright [yyyy] [name of copyright owner]
*
* CDDL HEADER END
*/
/*
* Copyright 2007 Sun Microsystems, Inc. All rights reserved.
* Use is subject to license terms.
*/
#ifndef _INET_IP_STACK_H
#define _INET_IP_STACK_H
#pragma ident "%Z%%M% %I% %E% SMI"
#ifdef __cplusplus
extern "C" {
#endif
#include <sys/isa_defs.h>
#include <sys/md5.h>
#include <sys/types.h>
#include <inet/mib2.h>
#include <inet/nd.h>
#include <sys/atomic.h>
#include <sys/socket.h>
#include <sys/netstack.h>
#include <net/if_dl.h>
#include <net/if.h>
#include <netinet/ip.h>
#include <netinet/igmp_var.h>
#include <inet/ip.h>
#include <sys/taskq.h>
#ifdef _KERNEL
#include <netinet/ip6.h>
#include <sys/avl.h>
#include <sys/vmem.h>
#include <sys/squeue.h>
#endif /* _KERNEL */
#ifdef _KERNEL
/*
* IP statistics.
*/
#define IP_STAT(ipst, x) ((ipst)->ips_ip_statistics.x.value.ui64++)
#define IP_STAT_UPDATE(ipst, x, n) \
((ipst)->ips_ip_statistics.x.value.ui64 += (n))
typedef struct ip_stat {
kstat_named_t ipsec_fanout_proto;
kstat_named_t ip_udp_fannorm;
kstat_named_t ip_udp_fanmb;
kstat_named_t ip_udp_fanothers;
kstat_named_t ip_udp_fast_path;
kstat_named_t ip_udp_slow_path;
kstat_named_t ip_udp_input_err;
kstat_named_t ip_tcppullup;
kstat_named_t ip_tcpoptions;
kstat_named_t ip_multipkttcp;
kstat_named_t ip_tcp_fast_path;
kstat_named_t ip_tcp_slow_path;
kstat_named_t ip_tcp_input_error;
kstat_named_t ip_db_ref;
kstat_named_t ip_notaligned1;
kstat_named_t ip_notaligned2;
kstat_named_t ip_multimblk3;
kstat_named_t ip_multimblk4;
kstat_named_t ip_ipoptions;
kstat_named_t ip_classify_fail;
kstat_named_t ip_opt;
kstat_named_t ip_udp_rput_local;
kstat_named_t ipsec_proto_ahesp;
kstat_named_t ip_conn_flputbq;
kstat_named_t ip_conn_walk_drain;
kstat_named_t ip_out_sw_cksum;
kstat_named_t ip_in_sw_cksum;
kstat_named_t ip_trash_ire_reclaim_calls;
kstat_named_t ip_trash_ire_reclaim_success;
kstat_named_t ip_ire_arp_timer_expired;
kstat_named_t ip_ire_redirect_timer_expired;
kstat_named_t ip_ire_pmtu_timer_expired;
kstat_named_t ip_input_multi_squeue;
kstat_named_t ip_tcp_in_full_hw_cksum_err;
kstat_named_t ip_tcp_in_part_hw_cksum_err;
kstat_named_t ip_tcp_in_sw_cksum_err;
kstat_named_t ip_tcp_out_sw_cksum_bytes;
kstat_named_t ip_udp_in_full_hw_cksum_err;
kstat_named_t ip_udp_in_part_hw_cksum_err;
kstat_named_t ip_udp_in_sw_cksum_err;
kstat_named_t ip_udp_out_sw_cksum_bytes;
kstat_named_t ip_frag_mdt_pkt_out;
kstat_named_t ip_frag_mdt_discarded;
kstat_named_t ip_frag_mdt_allocfail;
kstat_named_t ip_frag_mdt_addpdescfail;
kstat_named_t ip_frag_mdt_allocd;
} ip_stat_t;
/*
* IP6 statistics.
*/
#define IP6_STAT(ipst, x) ((ipst)->ips_ip6_statistics.x.value.ui64++)
#define IP6_STAT_UPDATE(ipst, x, n) \
((ipst)->ips_ip6_statistics.x.value.ui64 += (n))
typedef struct ip6_stat {
kstat_named_t ip6_udp_fast_path;
kstat_named_t ip6_udp_slow_path;
kstat_named_t ip6_udp_fannorm;
kstat_named_t ip6_udp_fanmb;
kstat_named_t ip6_out_sw_cksum;
kstat_named_t ip6_in_sw_cksum;
kstat_named_t ip6_tcp_in_full_hw_cksum_err;
kstat_named_t ip6_tcp_in_part_hw_cksum_err;
kstat_named_t ip6_tcp_in_sw_cksum_err;
kstat_named_t ip6_tcp_out_sw_cksum_bytes;
kstat_named_t ip6_udp_in_full_hw_cksum_err;
kstat_named_t ip6_udp_in_part_hw_cksum_err;
kstat_named_t ip6_udp_in_sw_cksum_err;
kstat_named_t ip6_udp_out_sw_cksum_bytes;
kstat_named_t ip6_frag_mdt_pkt_out;
kstat_named_t ip6_frag_mdt_discarded;
kstat_named_t ip6_frag_mdt_allocfail;
kstat_named_t ip6_frag_mdt_addpdescfail;
kstat_named_t ip6_frag_mdt_allocd;
} ip6_stat_t;
typedef struct ire_stats {
uint64_t ire_stats_alloced; /* # of ires alloced */
uint64_t ire_stats_freed; /* # of ires freed */
uint64_t ire_stats_inserted; /* # of ires inserted in the bucket */
uint64_t ire_stats_deleted; /* # of ires deleted from the bucket */
} ire_stats_t;
/*
* IP stack instances
*/
struct ip_stack {
netstack_t *ips_netstack; /* Common netstack */
struct ipparam_s *ips_param_arr; /* ndd variable table */
struct ipndp_s *ips_ndp_arr;
mib2_ipIfStatsEntry_t ips_ip_mib; /* SNMP fixed size info */
mib2_icmp_t ips_icmp_mib;
/*
* IPv6 mibs when the interface (ill) is not known.
* When the ill is known the per-interface mib in the ill is used.
*/
mib2_ipIfStatsEntry_t ips_ip6_mib;
mib2_ipv6IfIcmpEntry_t ips_icmp6_mib;
struct igmpstat ips_igmpstat;
kstat_t *ips_ip_mibkp; /* kstat exporting ip_mib data */
kstat_t *ips_icmp_mibkp; /* kstat exporting icmp_mib data */
kstat_t *ips_ip_kstat;
ip_stat_t ips_ip_statistics;
kstat_t *ips_ip6_kstat;
ip6_stat_t ips_ip6_statistics;
/* ip.c */
krwlock_t ips_ip_g_nd_lock;
kmutex_t ips_igmp_timer_lock;
kmutex_t ips_mld_timer_lock;
kmutex_t ips_ip_mi_lock;
kmutex_t ips_ip_addr_avail_lock;
krwlock_t ips_ill_g_lock;
krwlock_t ips_ipsec_capab_ills_lock;
/* protects the list of IPsec capable ills */
struct ipsec_capab_ill_s *ips_ipsec_capab_ills_ah;
struct ipsec_capab_ill_s *ips_ipsec_capab_ills_esp;
krwlock_t ips_ill_g_usesrc_lock;
struct ill_group *ips_illgrp_head_v4; /* Head of IPv4 ill groups */
struct ill_group *ips_illgrp_head_v6; /* Head of IPv6 ill groups */
/* ipclassifier.c - keep in ip_stack_t */
/* ipclassifier hash tables */
struct connf_s *ips_rts_clients;
struct connf_s *ips_ipcl_conn_fanout;
struct connf_s *ips_ipcl_bind_fanout;
struct connf_s *ips_ipcl_proto_fanout;
struct connf_s *ips_ipcl_proto_fanout_v6;
struct connf_s *ips_ipcl_udp_fanout;
struct connf_s *ips_ipcl_raw_fanout;
uint_t ips_ipcl_conn_fanout_size;
uint_t ips_ipcl_bind_fanout_size;
uint_t ips_ipcl_udp_fanout_size;
uint_t ips_ipcl_raw_fanout_size;
struct connf_s *ips_ipcl_globalhash_fanout;
int ips_conn_g_index;
/* ip.c */
/* Following protected by ips_igmp_timer_lock */
int ips_igmp_time_to_next; /* Time since last timeout */
int ips_igmp_timer_fired_last;
int ips_igmp_deferred_next;
timeout_id_t ips_igmp_timeout_id;
/* Protected by igmp_timer_lock */
boolean_t ips_igmp_timer_setter_active;
/* Following protected by mld_timer_lock */
int ips_mld_time_to_next; /* Time since last timeout */
int ips_mld_timer_fired_last;
int ips_mld_deferred_next;
timeout_id_t ips_mld_timeout_id;
/* Protected by mld_timer_lock */
boolean_t ips_mld_timer_setter_active;
/* Protected by igmp_slowtimeout_lock */
timeout_id_t ips_igmp_slowtimeout_id;
kmutex_t ips_igmp_slowtimeout_lock;
/* Protected by mld_slowtimeout_lock */
timeout_id_t ips_mld_slowtimeout_id;
kmutex_t ips_mld_slowtimeout_lock;
/* IPv4 forwarding table */
struct radix_node_head *ips_ip_ftable;
/* This is dynamically allocated in ip_ire_init */
struct irb *ips_ip_cache_table;
/* This is dynamically allocated in ire_add_mrtun */
struct irb *ips_ip_mrtun_table;
#define IPV6_ABITS 128
#define IP6_MASK_TABLE_SIZE (IPV6_ABITS + 1) /* 129 ptrs */
struct irb *ips_ip_forwarding_table_v6[IP6_MASK_TABLE_SIZE];
/* This is dynamically allocated in ip_ire_init */
struct irb *ips_ip_cache_table_v6;
uint32_t ips_ire_handle;
/*
* ire_ft_init_lock is used while initializing ip_forwarding_table
* dynamically in ire_add.
*/
kmutex_t ips_ire_ft_init_lock;
kmutex_t ips_ire_mrtun_lock; /* Protects mrtun table and count */
kmutex_t ips_ire_srcif_table_lock; /* Same as above */
/*
* The following counts are used to determine whether a walk is
* needed through the reverse tunnel table or through ills
*/
kmutex_t ips_ire_handle_lock; /* Protects ire_handle */
/* # of ires in reverse tun table */
uint_t ips_ire_mrtun_count;
/* # of ires in all srcif tables */
uint_t ips_ire_srcif_table_count;
uint32_t ips_ip_cache_table_size;
uint32_t ips_ip6_cache_table_size;
uint32_t ips_ip6_ftable_hash_size;
ire_stats_t ips_ire_stats_v4; /* IPv4 ire statistics */
ire_stats_t ips_ire_stats_v6; /* IPv6 ire statistics */
/* pending binds */
mblk_t *ips_ip6_asp_pending_ops;
mblk_t *ips_ip6_asp_pending_ops_tail;
/* Synchronize updates with table usage */
mblk_t *ips_ip6_asp_pending_update; /* pending table updates */
boolean_t ips_ip6_asp_uip; /* table update in progress */
kmutex_t ips_ip6_asp_lock; /* protect all the above */
uint32_t ips_ip6_asp_refcnt; /* outstanding references */
struct ip6_asp *ips_ip6_asp_table;
/* The number of policy entries in the table */
uint_t ips_ip6_asp_table_count;
int ips_ip_g_forward;
int ips_ipv6_forward;
int ips_ipmp_hook_emulation; /* ndd variable */
time_t ips_ip_g_frag_timeout;
clock_t ips_ip_g_frag_timo_ms;
queue_t *ips_ip_g_mrouter;
/* Time since last icmp_pkt_err */
clock_t ips_icmp_pkt_err_last;
/* Number of packets sent in burst */
uint_t ips_icmp_pkt_err_sent;
/* Used by icmp_send_redirect_v6 for picking random src. */
uint_t ips_icmp_redirect_v6_src_index;
/* Protected by ip_mi_lock */
void *ips_ip_g_head; /* Instance Data List Head */
caddr_t ips_ip_g_nd; /* Named Dispatch List Head */
/* Multirouting stuff */
/* Interval (in ms) between consecutive 'bad MTU' warnings */
hrtime_t ips_ip_multirt_log_interval;
/* Time since last warning issued. */
hrtime_t ips_multirt_bad_mtu_last_time;
kmutex_t ips_ip_trash_timer_lock;
timeout_id_t ips_ip_ire_expire_id; /* IRE expiration timer. */
struct ipsq_s *ips_ipsq_g_head;
uint_t ips_ill_index; /* Used to assign interface indicies */
/* When set search for unused index */
boolean_t ips_ill_index_wrap;
clock_t ips_ip_ire_arp_time_elapsed;
/* Time since IRE cache last flushed */
clock_t ips_ip_ire_rd_time_elapsed;
/* ... redirect IREs last flushed */
clock_t ips_ip_ire_pmtu_time_elapsed;
/* Time since path mtu increase */
uint_t ips_ip_redirect_cnt;
/* Num of redirect routes in ftable */
uint_t ips_ipv6_ire_default_count;
/* Number of IPv6 IRE_DEFAULT entries */
uint_t ips_ipv6_ire_default_index;
/* Walking IPv6 index used to mod in */
uint_t ips_loopback_packets;
/* NDP/NCE structures for IPv4 and IPv6 */
struct ndp_g_s *ips_ndp4;
struct ndp_g_s *ips_ndp6;
/* ip_mroute stuff */
kmutex_t ips_ip_g_mrouter_mutex;
struct mrtstat *ips_mrtstat; /* Stats for netstat */
int ips_saved_ip_g_forward;
/* numvifs is only a hint about the max interface being used. */
ushort_t ips_numvifs;
kmutex_t ips_numvifs_mutex;
struct vif *ips_vifs;
struct mfcb *ips_mfcs; /* kernel routing table */
struct tbf *ips_tbfs;
/*
* One-back cache used to locate a tunnel's vif,
* given a datagram's src ip address.
*/
ipaddr_t ips_last_encap_src;
struct vif *ips_last_encap_vif;
kmutex_t ips_last_encap_lock; /* Protects the above */
/*
* reg_vif_num is protected by numvifs_mutex
*/
/* Whether or not special PIM assert processing is enabled. */
ushort_t ips_reg_vif_num; /* Index to Register vif */
int ips_pim_assert;
union ill_g_head_u *ips_ill_g_heads; /* ILL List Head */
kstat_t *ips_loopback_ksp;
uint_t ips_ipif_src_random;
struct idl_s *ips_conn_drain_list; /* Array of conn drain lists */
uint_t ips_conn_drain_list_cnt; /* Count of conn_drain_list */
int ips_conn_drain_list_index; /* Next drain_list */
/*
* ID used to assign next free one.
* Increases by one. Once it wraps we search for an unused ID.
*/
uint_t ips_ip_src_id;
boolean_t ips_srcid_wrapped;
struct srcid_map *ips_srcid_head;
krwlock_t ips_srcid_lock;
uint64_t ips_ipif_g_seqid;
union phyint_list_u *ips_phyint_g_list; /* start of phyint list */
/*
* Reflects value of FAILBACK variable in IPMP config file
* /etc/default/mpathd. Default value is B_TRUE.
* Set to B_FALSE if user disabled failback by configuring
* "FAILBACK=no" in.mpathd uses SIOCSIPMPFAILBACK ioctl to pass this
* information to kernel.
*/
boolean_t ips_ipmp_enable_failback;
/* ip_neti.c */
hook_family_t ips_ipv4root;
hook_family_t ips_ipv6root;
/*
* Hooks for firewalling
*/
hook_event_t ips_ip4_physical_in_event;
hook_event_t ips_ip4_physical_out_event;
hook_event_t ips_ip4_forwarding_event;
hook_event_t ips_ip4_loopback_in_event;
hook_event_t ips_ip4_loopback_out_event;
hook_event_t ips_ip4_nic_events;
hook_event_t ips_ip6_physical_in_event;
hook_event_t ips_ip6_physical_out_event;
hook_event_t ips_ip6_forwarding_event;
hook_event_t ips_ip6_loopback_in_event;
hook_event_t ips_ip6_loopback_out_event;
hook_event_t ips_ip6_nic_events;
hook_event_token_t ips_ipv4firewall_physical_in;
hook_event_token_t ips_ipv4firewall_physical_out;
hook_event_token_t ips_ipv4firewall_forwarding;
hook_event_token_t ips_ipv4firewall_loopback_in;
hook_event_token_t ips_ipv4firewall_loopback_out;
hook_event_token_t ips_ipv4nicevents;
hook_event_token_t ips_ipv6firewall_physical_in;
hook_event_token_t ips_ipv6firewall_physical_out;
hook_event_token_t ips_ipv6firewall_forwarding;
hook_event_token_t ips_ipv6firewall_loopback_in;
hook_event_token_t ips_ipv6firewall_loopback_out;
hook_event_token_t ips_ipv6nicevents;
net_data_t ips_ipv4_net_data;
net_data_t ips_ipv6_net_data;
};
typedef struct ip_stack ip_stack_t;
/* Finding an ip_stack_t */
#define CONNQ_TO_IPST(_q) (Q_TO_CONN(_q)->conn_netstack->netstack_ip)
#define ILLQ_TO_IPST(_q) (((ill_t *)(_q)->q_ptr)->ill_ipst)
#else /* _KERNEL */
typedef int ip_stack_t;
#endif /* _KERNEL */
#ifdef __cplusplus
}
#endif
#endif /* _INET_IP_STACK_H */
|
