Annotation of sys/netinet/in.h, Revision 1.1.1.1
1.1 nbrk 1: /* $OpenBSD: in.h,v 1.73 2006/10/11 09:34:51 henning Exp $ */
2: /* $NetBSD: in.h,v 1.20 1996/02/13 23:41:47 christos Exp $ */
3:
4: /*
5: * Copyright (c) 1982, 1986, 1990, 1993
6: * The Regents of the University of California. All rights reserved.
7: *
8: * Redistribution and use in source and binary forms, with or without
9: * modification, are permitted provided that the following conditions
10: * are met:
11: * 1. Redistributions of source code must retain the above copyright
12: * notice, this list of conditions and the following disclaimer.
13: * 2. Redistributions in binary form must reproduce the above copyright
14: * notice, this list of conditions and the following disclaimer in the
15: * documentation and/or other materials provided with the distribution.
16: * 3. Neither the name of the University nor the names of its contributors
17: * may be used to endorse or promote products derived from this software
18: * without specific prior written permission.
19: *
20: * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
21: * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23: * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
24: * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25: * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26: * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28: * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29: * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30: * SUCH DAMAGE.
31: *
32: * @(#)in.h 8.3 (Berkeley) 1/3/94
33: */
34:
35: /*
36: * Constants and structures defined by the internet system,
37: * Per RFC 790, September 1981, and numerous additions.
38: */
39:
40: #ifndef _NETINET_IN_H_
41: #define _NETINET_IN_H_
42:
43: /*
44: * Protocols
45: */
46: #define IPPROTO_IP 0 /* dummy for IP */
47: #define IPPROTO_HOPOPTS IPPROTO_IP /* Hop-by-hop option header */
48: #define IPPROTO_ICMP 1 /* control message protocol */
49: #define IPPROTO_IGMP 2 /* group mgmt protocol */
50: #define IPPROTO_GGP 3 /* gateway^2 (deprecated) */
51: #define IPPROTO_IPIP 4 /* IP inside IP */
52: #define IPPROTO_IPV4 IPPROTO_IPIP /* IP inside IP */
53: #define IPPROTO_TCP 6 /* tcp */
54: #define IPPROTO_EGP 8 /* exterior gateway protocol */
55: #define IPPROTO_PUP 12 /* pup */
56: #define IPPROTO_UDP 17 /* user datagram protocol */
57: #define IPPROTO_IDP 22 /* xns idp */
58: #define IPPROTO_TP 29 /* tp-4 w/ class negotiation */
59: #define IPPROTO_IPV6 41 /* IPv6 in IPv6 */
60: #define IPPROTO_ROUTING 43 /* Routing header */
61: #define IPPROTO_FRAGMENT 44 /* Fragmentation/reassembly header */
62: #define IPPROTO_RSVP 46 /* resource reservation */
63: #define IPPROTO_GRE 47 /* GRE encap, RFCs 1701/1702 */
64: #define IPPROTO_ESP 50 /* Encap. Security Payload */
65: #define IPPROTO_AH 51 /* Authentication header */
66: #define IPPROTO_MOBILE 55 /* IP Mobility, RFC 2004 */
67: #define IPPROTO_ICMPV6 58 /* ICMP for IPv6 */
68: #define IPPROTO_NONE 59 /* No next header */
69: #define IPPROTO_DSTOPTS 60 /* Destination options header */
70: #define IPPROTO_EON 80 /* ISO cnlp */
71: #define IPPROTO_ETHERIP 97 /* Ethernet in IPv4 */
72: #define IPPROTO_ENCAP 98 /* encapsulation header */
73: #define IPPROTO_PIM 103 /* Protocol indep. multicast */
74: #define IPPROTO_IPCOMP 108 /* IP Payload Comp. Protocol */
75: #define IPPROTO_CARP 112 /* CARP */
76: #define IPPROTO_PFSYNC 240 /* PFSYNC */
77: #define IPPROTO_RAW 255 /* raw IP packet */
78:
79: #define IPPROTO_MAX 256
80:
81: /*
82: * From FreeBSD:
83: *
84: * Local port number conventions:
85: *
86: * When a user does a bind(2) or connect(2) with a port number of zero,
87: * a non-conflicting local port address is chosen.
88: * The default range is IPPORT_RESERVED through
89: * IPPORT_USERRESERVED, although that is settable by sysctl.
90: *
91: * A user may set the IPPROTO_IP option IP_PORTRANGE to change this
92: * default assignment range.
93: *
94: * The value IP_PORTRANGE_DEFAULT causes the default behavior.
95: *
96: * The value IP_PORTRANGE_HIGH changes the range of candidate port numbers
97: * into the "high" range. These are reserved for client outbound connections
98: * which do not want to be filtered by any firewalls.
99: *
100: * The value IP_PORTRANGE_LOW changes the range to the "low" are
101: * that is (by convention) restricted to privileged processes. This
102: * convention is based on "vouchsafe" principles only. It is only secure
103: * if you trust the remote host to restrict these ports.
104: *
105: * The default range of ports and the high range can be changed by
106: * sysctl(3). (net.inet.ip.port{hi}{first,last})
107: *
108: * Changing those values has bad security implications if you are
109: * using a a stateless firewall that is allowing packets outside of that
110: * range in order to allow transparent outgoing connections.
111: *
112: * Such a firewall configuration will generally depend on the use of these
113: * default values. If you change them, you may find your Security
114: * Administrator looking for you with a heavy object.
115: */
116:
117: /*
118: * Ports < IPPORT_RESERVED are reserved for
119: * privileged processes (e.g. root).
120: * Ports > IPPORT_USERRESERVED are reserved
121: * for servers, not necessarily privileged.
122: */
123: #define IPPORT_RESERVED 1024
124: #define IPPORT_USERRESERVED 49151
125:
126: /*
127: * Default local port range to use by setting IP_PORTRANGE_HIGH
128: */
129: #define IPPORT_HIFIRSTAUTO 49152
130: #define IPPORT_HILASTAUTO 65535
131:
132: /*
133: * IP Version 4 Internet address (a structure for historical reasons)
134: */
135: struct in_addr {
136: in_addr_t s_addr;
137: };
138:
139: /* last return value of *_input(), meaning "all job for this pkt is done". */
140: #define IPPROTO_DONE 257
141:
142: /*
143: * Definitions of bits in internet address integers.
144: * On subnets, the decomposition of addresses to host and net parts
145: * is done according to subnet mask, not the masks here.
146: *
147: * By byte-swapping the constants, we avoid ever having to byte-swap IP
148: * addresses inside the kernel. Unfortunately, user-level programs rely
149: * on these macros not doing byte-swapping.
150: */
151: #ifdef _KERNEL
152: #define __IPADDR(x) ((u_int32_t) htonl((u_int32_t)(x)))
153: #else
154: #define __IPADDR(x) ((u_int32_t)(x))
155: #endif
156:
157: #define IN_CLASSA(i) (((u_int32_t)(i) & __IPADDR(0x80000000)) == \
158: __IPADDR(0x00000000))
159: #define IN_CLASSA_NET __IPADDR(0xff000000)
160: #define IN_CLASSA_NSHIFT 24
161: #define IN_CLASSA_HOST __IPADDR(0x00ffffff)
162: #define IN_CLASSA_MAX 128
163:
164: #define IN_CLASSB(i) (((u_int32_t)(i) & __IPADDR(0xc0000000)) == \
165: __IPADDR(0x80000000))
166: #define IN_CLASSB_NET __IPADDR(0xffff0000)
167: #define IN_CLASSB_NSHIFT 16
168: #define IN_CLASSB_HOST __IPADDR(0x0000ffff)
169: #define IN_CLASSB_MAX 65536
170:
171: #define IN_CLASSC(i) (((u_int32_t)(i) & __IPADDR(0xe0000000)) == \
172: __IPADDR(0xc0000000))
173: #define IN_CLASSC_NET __IPADDR(0xffffff00)
174: #define IN_CLASSC_NSHIFT 8
175: #define IN_CLASSC_HOST __IPADDR(0x000000ff)
176:
177: #define IN_CLASSD(i) (((u_int32_t)(i) & __IPADDR(0xf0000000)) == \
178: __IPADDR(0xe0000000))
179: /* These ones aren't really net and host fields, but routing needn't know. */
180: #define IN_CLASSD_NET __IPADDR(0xf0000000)
181: #define IN_CLASSD_NSHIFT 28
182: #define IN_CLASSD_HOST __IPADDR(0x0fffffff)
183: #define IN_MULTICAST(i) IN_CLASSD(i)
184:
185: #define IN_EXPERIMENTAL(i) (((u_int32_t)(i) & __IPADDR(0xf0000000)) == \
186: __IPADDR(0xf0000000))
187: #define IN_BADCLASS(i) (((u_int32_t)(i) & __IPADDR(0xf0000000)) == \
188: __IPADDR(0xf0000000))
189:
190: #define IN_LOCAL_GROUP(i) (((u_int32_t)(i) & __IPADDR(0xffffff00)) == \
191: __IPADDR(0xe0000000))
192:
193: #define INADDR_ANY __IPADDR(0x00000000)
194: #define INADDR_LOOPBACK __IPADDR(0x7f000001)
195: #define INADDR_BROADCAST __IPADDR(0xffffffff) /* must be masked */
196: #ifndef _KERNEL
197: #define INADDR_NONE __IPADDR(0xffffffff) /* -1 return */
198: #endif
199:
200: #define INADDR_UNSPEC_GROUP __IPADDR(0xe0000000) /* 224.0.0.0 */
201: #define INADDR_ALLHOSTS_GROUP __IPADDR(0xe0000001) /* 224.0.0.1 */
202: #define INADDR_ALLROUTERS_GROUP __IPADDR(0xe0000002) /* 224.0.0.2 */
203: #define INADDR_CARP_GROUP __IPADDR(0xe0000012) /* 224.0.0.18 */
204: #define INADDR_PFSYNC_GROUP __IPADDR(0xe00000f0) /* 224.0.0.240 */
205: #define INADDR_MAX_LOCAL_GROUP __IPADDR(0xe00000ff) /* 224.0.0.255 */
206:
207: #define IN_LOOPBACKNET 127 /* official! */
208:
209: /*
210: * IP Version 4 socket address.
211: */
212: struct sockaddr_in {
213: u_int8_t sin_len;
214: sa_family_t sin_family;
215: in_port_t sin_port;
216: struct in_addr sin_addr;
217: int8_t sin_zero[8];
218: };
219:
220: /*
221: * Structure used to describe IP options.
222: * Used to store options internally, to pass them to a process,
223: * or to restore options retrieved earlier.
224: * The ip_dst is used for the first-hop gateway when using a source route
225: * (this gets put into the header proper).
226: */
227: struct ip_opts {
228: struct in_addr ip_dst; /* first hop, 0 w/o src rt */
229: #if defined(__cplusplus)
230: int8_t Ip_opts[40]; /* cannot have same name as class */
231: #else
232: int8_t ip_opts[40]; /* actually variable in size */
233: #endif
234: };
235:
236: /*
237: * Options for use with [gs]etsockopt at the IP level.
238: * First word of comment is data type; bool is stored in int.
239: */
240: #define IP_OPTIONS 1 /* buf/ip_opts; set/get IP options */
241: #define IP_HDRINCL 2 /* int; header is included with data */
242: #define IP_TOS 3 /* int; IP type of service and preced. */
243: #define IP_TTL 4 /* int; IP time to live */
244: #define IP_RECVOPTS 5 /* bool; receive all IP opts w/dgram */
245: #define IP_RECVRETOPTS 6 /* bool; receive IP opts for response */
246: #define IP_RECVDSTADDR 7 /* bool; receive IP dst addr w/dgram */
247: #define IP_RETOPTS 8 /* ip_opts; set/get IP options */
248: #define IP_MULTICAST_IF 9 /* in_addr; set/get IP multicast i/f */
249: #define IP_MULTICAST_TTL 10 /* u_char; set/get IP multicast ttl */
250: #define IP_MULTICAST_LOOP 11 /* u_char; set/get IP multicast loopback */
251: #define IP_ADD_MEMBERSHIP 12 /* ip_mreq; add an IP group membership */
252: #define IP_DROP_MEMBERSHIP 13 /* ip_mreq; drop an IP group membership */
253:
254: /* 14-17 left empty for future compatibility with FreeBSD */
255:
256: #define IP_PORTRANGE 19 /* int; range to choose for unspec port */
257: #define IP_AUTH_LEVEL 20 /* int; authentication used */
258: #define IP_ESP_TRANS_LEVEL 21 /* int; transport encryption */
259: #define IP_ESP_NETWORK_LEVEL 22 /* int; full-packet encryption */
260: #define IP_IPSEC_LOCAL_ID 23 /* buf; IPsec local ID */
261: #define IP_IPSEC_REMOTE_ID 24 /* buf; IPsec remote ID */
262: #define IP_IPSEC_LOCAL_CRED 25 /* buf; IPsec local credentials */
263: #define IP_IPSEC_REMOTE_CRED 26 /* buf; IPsec remote credentials */
264: #define IP_IPSEC_LOCAL_AUTH 27 /* buf; IPsec local auth material */
265: #define IP_IPSEC_REMOTE_AUTH 28 /* buf; IPsec remote auth material */
266: #define IP_IPCOMP_LEVEL 29 /* int; compression used */
267: #define IP_RECVIF 30 /* bool; receive reception if w/dgram */
268: #define IP_RECVTTL 31 /* bool; receive IP TTL w/dgram */
269: #define IP_MINTTL 32 /* minimum TTL for packet or drop */
270:
271: /*
272: * Security levels - IPsec, not IPSO
273: */
274:
275: #define IPSEC_LEVEL_BYPASS 0x00 /* Bypass policy altogether */
276: #define IPSEC_LEVEL_NONE 0x00 /* Send clear, accept any */
277: #define IPSEC_LEVEL_AVAIL 0x01 /* Send secure if SA available */
278: #define IPSEC_LEVEL_USE 0x02 /* Send secure, accept any */
279: #define IPSEC_LEVEL_REQUIRE 0x03 /* Require secure inbound, also use */
280: #define IPSEC_LEVEL_UNIQUE 0x04 /* Use outbound SA that is unique */
281: #define IPSEC_LEVEL_DEFAULT IPSEC_LEVEL_AVAIL
282:
283: #define IPSEC_AUTH_LEVEL_DEFAULT IPSEC_LEVEL_DEFAULT
284: #define IPSEC_ESP_TRANS_LEVEL_DEFAULT IPSEC_LEVEL_DEFAULT
285: #define IPSEC_ESP_NETWORK_LEVEL_DEFAULT IPSEC_LEVEL_DEFAULT
286: #define IPSEC_IPCOMP_LEVEL_DEFAULT IPSEC_LEVEL_DEFAULT
287:
288: /*
289: * Defaults and limits for options
290: */
291: #define IP_DEFAULT_MULTICAST_TTL 1 /* normally limit m'casts to 1 hop */
292: #define IP_DEFAULT_MULTICAST_LOOP 1 /* normally hear sends if a member */
293: #define IP_MAX_MEMBERSHIPS 20 /* per socket; must fit in one mbuf */
294:
295: /*
296: * Argument structure for IP_ADD_MEMBERSHIP and IP_DROP_MEMBERSHIP.
297: */
298: struct ip_mreq {
299: struct in_addr imr_multiaddr; /* IP multicast address of group */
300: struct in_addr imr_interface; /* local IP address of interface */
301: };
302:
303: /*
304: * Argument for IP_PORTRANGE:
305: * - which range to search when port is unspecified at bind() or connect()
306: */
307: #define IP_PORTRANGE_DEFAULT 0 /* default range */
308: #define IP_PORTRANGE_HIGH 1 /* "high" - request firewall bypass */
309: #define IP_PORTRANGE_LOW 2 /* "low" - vouchsafe security */
310:
311: /*
312: * Buffer lengths for strings containing printable IP addresses
313: */
314: #define INET_ADDRSTRLEN 16
315:
316: /*
317: * Definitions for inet sysctl operations.
318: *
319: * Third level is protocol number.
320: * Fourth level is desired variable within that protocol.
321: */
322: #define IPPROTO_MAXID (IPPROTO_CARP + 1) /* don't list to IPPROTO_MAX */
323:
324: #define CTL_IPPROTO_NAMES { \
325: { "ip", CTLTYPE_NODE }, \
326: { "icmp", CTLTYPE_NODE }, \
327: { "igmp", CTLTYPE_NODE }, \
328: { "ggp", CTLTYPE_NODE }, \
329: { "ipip", CTLTYPE_NODE }, \
330: { 0, 0 }, \
331: { "tcp", CTLTYPE_NODE }, \
332: { 0, 0 }, \
333: { "egp", CTLTYPE_NODE }, \
334: { 0, 0 }, \
335: { 0, 0 }, \
336: { 0, 0 }, \
337: { "pup", CTLTYPE_NODE }, \
338: { 0, 0 }, \
339: { 0, 0 }, \
340: { 0, 0 }, \
341: { 0, 0 }, \
342: { "udp", CTLTYPE_NODE }, \
343: { 0, 0 }, \
344: { 0, 0 }, \
345: { 0, 0 }, \
346: { 0, 0 }, \
347: { 0, 0 }, \
348: { 0, 0 }, \
349: { 0, 0 }, \
350: { 0, 0 }, \
351: { 0, 0 }, \
352: { 0, 0 }, \
353: { 0, 0 }, \
354: { 0, 0 }, \
355: { 0, 0 }, \
356: { 0, 0 }, \
357: { 0, 0 }, \
358: { 0, 0 }, \
359: { 0, 0 }, \
360: { 0, 0 }, \
361: { 0, 0 }, \
362: { 0, 0 }, \
363: { 0, 0 }, \
364: { 0, 0 }, \
365: { 0, 0 }, \
366: { 0, 0 }, \
367: { 0, 0 }, \
368: { 0, 0 }, \
369: { 0, 0 }, \
370: { 0, 0 }, \
371: { 0, 0 }, \
372: { "gre", CTLTYPE_NODE }, \
373: { 0, 0 }, \
374: { 0, 0 }, \
375: { "esp", CTLTYPE_NODE }, \
376: { "ah", CTLTYPE_NODE }, \
377: { 0, 0 }, \
378: { 0, 0 }, \
379: { 0, 0 }, \
380: { "mobileip", CTLTYPE_NODE }, \
381: { 0, 0 }, \
382: { 0, 0 }, \
383: { 0, 0 }, \
384: { 0, 0 }, \
385: { 0, 0 }, \
386: { 0, 0 }, \
387: { 0, 0 }, \
388: { 0, 0 }, \
389: { 0, 0 }, \
390: { 0, 0 }, \
391: { 0, 0 }, \
392: { 0, 0 }, \
393: { 0, 0 }, \
394: { 0, 0 }, \
395: { 0, 0 }, \
396: { 0, 0 }, \
397: { 0, 0 }, \
398: { 0, 0 }, \
399: { 0, 0 }, \
400: { 0, 0 }, \
401: { 0, 0 }, \
402: { 0, 0 }, \
403: { 0, 0 }, \
404: { 0, 0 }, \
405: { 0, 0 }, \
406: { 0, 0 }, \
407: { 0, 0 }, \
408: { 0, 0 }, \
409: { 0, 0 }, \
410: { 0, 0 }, \
411: { 0, 0 }, \
412: { 0, 0 }, \
413: { 0, 0 }, \
414: { 0, 0 }, \
415: { 0, 0 }, \
416: { 0, 0 }, \
417: { 0, 0 }, \
418: { 0, 0 }, \
419: { 0, 0 }, \
420: { 0, 0 }, \
421: { 0, 0 }, \
422: { "etherip", CTLTYPE_NODE }, \
423: { 0, 0 }, \
424: { 0, 0 }, \
425: { 0, 0 }, \
426: { 0, 0 }, \
427: { 0, 0 }, \
428: { "pim", CTLTYPE_NODE }, \
429: { 0, 0 }, \
430: { 0, 0 }, \
431: { 0, 0 }, \
432: { 0, 0 }, \
433: { "ipcomp", CTLTYPE_NODE }, \
434: { 0, 0 }, \
435: { 0, 0 }, \
436: { 0, 0 }, \
437: { "carp", CTLTYPE_NODE }, \
438: }
439:
440: /*
441: * Names for IP sysctl objects
442: */
443: #define IPCTL_FORWARDING 1 /* act as router */
444: #define IPCTL_SENDREDIRECTS 2 /* may send redirects when forwarding */
445: #define IPCTL_DEFTTL 3 /* default TTL */
446: #ifdef notyet
447: #define IPCTL_DEFMTU 4 /* default MTU */
448: #endif
449: #define IPCTL_SOURCEROUTE 5 /* may perform source routes */
450: #define IPCTL_DIRECTEDBCAST 6 /* default broadcast behavior */
451: #define IPCTL_IPPORT_FIRSTAUTO 7
452: #define IPCTL_IPPORT_LASTAUTO 8
453: #define IPCTL_IPPORT_HIFIRSTAUTO 9
454: #define IPCTL_IPPORT_HILASTAUTO 10
455: #define IPCTL_IPPORT_MAXQUEUE 11
456: #define IPCTL_ENCDEBUG 12
457: #ifdef notdef /*obsolete*/
458: #define IPCTL_GIF_TTL 13 /* default TTL for gif encap packet */
459: #endif
460: #define IPCTL_IPSEC_EXPIRE_ACQUIRE 14 /* How long to wait for key mgmt. */
461: #define IPCTL_IPSEC_EMBRYONIC_SA_TIMEOUT 15 /* new SA lifetime */
462: #define IPCTL_IPSEC_REQUIRE_PFS 16
463: #define IPCTL_IPSEC_SOFT_ALLOCATIONS 17
464: #define IPCTL_IPSEC_ALLOCATIONS 18
465: #define IPCTL_IPSEC_SOFT_BYTES 19
466: #define IPCTL_IPSEC_BYTES 20
467: #define IPCTL_IPSEC_TIMEOUT 21
468: #define IPCTL_IPSEC_SOFT_TIMEOUT 22
469: #define IPCTL_IPSEC_SOFT_FIRSTUSE 23
470: #define IPCTL_IPSEC_FIRSTUSE 24
471: #define IPCTL_IPSEC_ENC_ALGORITHM 25
472: #define IPCTL_IPSEC_AUTH_ALGORITHM 26
473: #define IPCTL_MTUDISC 27 /* allow path MTU discovery */
474: #define IPCTL_MTUDISCTIMEOUT 28 /* allow path MTU discovery */
475: #define IPCTL_IPSEC_IPCOMP_ALGORITHM 29
476: #define IPCTL_IFQUEUE 30
477: #define IPCTL_MFORWARDING 31
478: #define IPCTL_MULTIPATH 32
479: #define IPCTL_MAXID 33
480:
481: #define IPCTL_NAMES { \
482: { 0, 0 }, \
483: { "forwarding", CTLTYPE_INT }, \
484: { "redirect", CTLTYPE_INT }, \
485: { "ttl", CTLTYPE_INT }, \
486: /* { "mtu", CTLTYPE_INT }, */ { 0, 0 }, \
487: { "sourceroute", CTLTYPE_INT }, \
488: { "directed-broadcast", CTLTYPE_INT }, \
489: { "portfirst", CTLTYPE_INT }, \
490: { "portlast", CTLTYPE_INT }, \
491: { "porthifirst", CTLTYPE_INT }, \
492: { "porthilast", CTLTYPE_INT }, \
493: { "maxqueue", CTLTYPE_INT }, \
494: { "encdebug", CTLTYPE_INT }, \
495: { 0, 0 }, \
496: { "ipsec-expire-acquire", CTLTYPE_INT }, \
497: { "ipsec-invalid-life", CTLTYPE_INT }, \
498: { "ipsec-pfs", CTLTYPE_INT }, \
499: { "ipsec-soft-allocs", CTLTYPE_INT }, \
500: { "ipsec-allocs", CTLTYPE_INT }, \
501: { "ipsec-soft-bytes", CTLTYPE_INT }, \
502: { "ipsec-bytes", CTLTYPE_INT }, \
503: { "ipsec-timeout", CTLTYPE_INT }, \
504: { "ipsec-soft-timeout", CTLTYPE_INT }, \
505: { "ipsec-soft-firstuse", CTLTYPE_INT }, \
506: { "ipsec-firstuse", CTLTYPE_INT }, \
507: { "ipsec-enc-alg", CTLTYPE_STRING }, \
508: { "ipsec-auth-alg", CTLTYPE_STRING }, \
509: { "mtudisc", CTLTYPE_INT }, \
510: { "mtudisctimeout", CTLTYPE_INT }, \
511: { "ipsec-comp-alg", CTLTYPE_STRING }, \
512: { "ifq", CTLTYPE_NODE }, \
513: { "mforwarding", CTLTYPE_INT }, \
514: { "multipath", CTLTYPE_INT } \
515: }
516: #define IPCTL_VARS { \
517: NULL, \
518: &ipforwarding, \
519: &ipsendredirects, \
520: &ip_defttl, \
521: NULL, \
522: NULL, \
523: &ip_directedbcast, \
524: &ipport_firstauto, \
525: &ipport_lastauto, \
526: &ipport_hifirstauto, \
527: &ipport_hilastauto, \
528: &ip_maxqueue, \
529: &encdebug, \
530: NULL, \
531: &ipsec_expire_acquire, \
532: &ipsec_keep_invalid, \
533: &ipsec_require_pfs, \
534: &ipsec_soft_allocations, \
535: &ipsec_exp_allocations, \
536: &ipsec_soft_bytes, \
537: &ipsec_exp_bytes, \
538: &ipsec_exp_timeout, \
539: &ipsec_soft_timeout, \
540: &ipsec_soft_first_use, \
541: &ipsec_exp_first_use, \
542: NULL, \
543: NULL, \
544: NULL, \
545: NULL, \
546: NULL, \
547: NULL, \
548: &ipmforwarding, \
549: &ipmultipath \
550: }
551:
552: /* INET6 stuff */
553: #define __KAME_NETINET_IN_H_INCLUDED_
554: #include <netinet6/in6.h>
555: #undef __KAME_NETINET_IN_H_INCLUDED_
556:
557: #ifndef _KERNEL
558:
559: #include <sys/cdefs.h>
560:
561: __BEGIN_DECLS
562: int bindresvport(int, struct sockaddr_in *);
563: struct sockaddr;
564: int bindresvport_sa(int, struct sockaddr *);
565: __END_DECLS
566:
567: #else
568: /*
569: * in_cksum_phdr:
570: *
571: * Compute significant parts of the IPv4 checksum pseudo-header
572: * for use in a delayed TCP/UDP checksum calculation.
573: *
574: * Args:
575: *
576: * src Source IP address
577: * dst Destination IP address
578: * lenproto htons(proto-hdr-len + proto-number)
579: */
580: static __inline u_int16_t __attribute__((__unused__))
581: in_cksum_phdr(u_int32_t src, u_int32_t dst, u_int32_t lenproto)
582: {
583: u_int32_t sum;
584:
585: sum = lenproto +
586: (u_int16_t)(src >> 16) +
587: (u_int16_t)(src /*& 0xffff*/) +
588: (u_int16_t)(dst >> 16) +
589: (u_int16_t)(dst /*& 0xffff*/);
590:
591: sum = (u_int16_t)(sum >> 16) + (u_int16_t)(sum /*& 0xffff*/);
592:
593: if (sum > 0xffff)
594: sum -= 0xffff;
595:
596: return (sum);
597: }
598:
599: /*
600: * in_cksum_addword:
601: *
602: * Add the two 16-bit network-order values, carry, and return.
603: */
604: static __inline u_int16_t __attribute__((__unused__))
605: in_cksum_addword(u_int16_t a, u_int16_t b)
606: {
607: u_int32_t sum = a + b;
608:
609: if (sum > 0xffff)
610: sum -= 0xffff;
611:
612: return (sum);
613: }
614:
615: extern struct in_addr zeroin_addr;
616:
617: int in_broadcast(struct in_addr, struct ifnet *);
618: int in_canforward(struct in_addr);
619: int in_cksum(struct mbuf *, int);
620: int in4_cksum(struct mbuf *, u_int8_t, int, int);
621: void in_delayed_cksum(struct mbuf *);
622: int in_localaddr(struct in_addr);
623: void in_socktrim(struct sockaddr_in *);
624: char *inet_ntoa(struct in_addr);
625:
626: #define in_hosteq(s,t) ((s).s_addr == (t).s_addr)
627: #define in_nullhost(x) ((x).s_addr == INADDR_ANY)
628:
629: #define satosin(sa) ((struct sockaddr_in *)(sa))
630: #define sintosa(sin) ((struct sockaddr *)(sin))
631: #define ifatoia(ifa) ((struct in_ifaddr *)(ifa))
632: #endif /* _KERNEL */
633: #endif /* _NETINET_IN_H_ */
CVSweb