sys/netinet/sctp_usrreq.c

163953Srrs/*-
185694Srrs * Copyright (c) 2001-2008, by Cisco Systems, Inc. All rights reserved.
218319Srrs * Copyright (c) 2008-2011, by Randall Stewart. All rights reserved.
218319Srrs * Copyright (c) 2008-2011, by Michael Tuexen. All rights reserved.
163953Srrs *
163953Srrs * Redistribution and use in source and binary forms, with or without
163953Srrs * modification, are permitted provided that the following conditions are met:
163953Srrs *
163953Srrs * a) Redistributions of source code must retain the above copyright notice,
163953Srrs *   this list of conditions and the following disclaimer.
163953Srrs *
163953Srrs * b) Redistributions in binary form must reproduce the above copyright
163953Srrs *    notice, this list of conditions and the following disclaimer in
163953Srrs *   the documentation and/or other materials provided with the distribution.
163953Srrs *
163953Srrs * c) Neither the name of Cisco Systems, Inc. nor the names of its
163953Srrs *    contributors may be used to endorse or promote products derived
163953Srrs *    from this software without specific prior written permission.
163953Srrs *
163953Srrs * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
163953Srrs * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
163953Srrs * THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
163953Srrs * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
163953Srrs * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
163953Srrs * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
163953Srrs * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
163953Srrs * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
163953Srrs * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
163953Srrs * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
163953Srrs * THE POSSIBILITY OF SUCH DAMAGE.
163953Srrs */
163953Srrs
163953Srrs/* $KAME: sctp_usrreq.c,v 1.48 2005/03/07 23:26:08 itojun Exp $	 */
163953Srrs
163953Srrs#include <sys/cdefs.h>
163953Srrs__FBSDID("$FreeBSD: head/sys/netinet/sctp_usrreq.c 221249 2011-04-30 11:18:16Z tuexen $");
166086Srrs#include <netinet/sctp_os.h>
163953Srrs#include <sys/proc.h>
163953Srrs#include <netinet/sctp_pcb.h>
163953Srrs#include <netinet/sctp_header.h>
163953Srrs#include <netinet/sctp_var.h>
167695Srrs#if defined(INET6)
167695Srrs#endif
167598Srrs#include <netinet/sctp_sysctl.h>
163953Srrs#include <netinet/sctp_output.h>
163953Srrs#include <netinet/sctp_uio.h>
163953Srrs#include <netinet/sctp_asconf.h>
163953Srrs#include <netinet/sctputil.h>
163953Srrs#include <netinet/sctp_indata.h>
163953Srrs#include <netinet/sctp_timer.h>
163953Srrs#include <netinet/sctp_auth.h>
170091Srrs#include <netinet/sctp_bsd_addr.h>
185694Srrs#include <netinet/udp.h>
164085Srrs
163953Srrs
163953Srrs
217611Stuexenextern struct sctp_cc_functions sctp_cc_functions[];
217760Stuexenextern struct sctp_ss_functions sctp_ss_functions[];
170091Srrs
163953Srrsvoid
163953Srrssctp_init(void)
163953Srrs{
163953Srrs	u_long sb_max_adj;
163953Srrs
179783Srrs	/* Initialize and modify the sysctled variables */
179783Srrs	sctp_init_sysctls();
163953Srrs	if ((nmbclusters / 8) > SCTP_ASOC_MAX_CHUNKS_ON_QUEUE)
179783Srrs		SCTP_BASE_SYSCTL(sctp_max_chunks_on_queue) = (nmbclusters / 8);
163953Srrs	/*
163953Srrs	 * Allow a user to take no more than 1/2 the number of clusters or
163953Srrs	 * the SB_MAX whichever is smaller for the send window.
163953Srrs	 */
163953Srrs	sb_max_adj = (u_long)((u_quad_t) (SB_MAX) * MCLBYTES / (MSIZE + MCLBYTES));
179783Srrs	SCTP_BASE_SYSCTL(sctp_sendspace) = min(sb_max_adj,
170056Srrs	    (((uint32_t) nmbclusters / 2) * SCTP_DEFAULT_MAXSEGMENT));
163953Srrs	/*
163953Srrs	 * Now for the recv window, should we take the same amount? or
163953Srrs	 * should I do 1/2 the SB_MAX instead in the SB_MAX min above. For
163953Srrs	 * now I will just copy.
163953Srrs	 */
179783Srrs	SCTP_BASE_SYSCTL(sctp_recvspace) = SCTP_BASE_SYSCTL(sctp_sendspace);
163953Srrs
179783Srrs	SCTP_BASE_VAR(first_time) = 0;
179783Srrs	SCTP_BASE_VAR(sctp_pcb_initialized) = 0;
179783Srrs	sctp_pcb_init();
179783Srrs#if defined(SCTP_PACKET_LOGGING)
179783Srrs	SCTP_BASE_VAR(packet_log_writers) = 0;
179783Srrs	SCTP_BASE_VAR(packet_log_end) = 0;
179783Srrs	bzero(&SCTP_BASE_VAR(packet_log_buffer), SCTP_PACKET_LOG_SIZE);
179783Srrs#endif
179783Srrs
179783Srrs
163953Srrs}
163953Srrs
179783Srrsvoid
179783Srrssctp_finish(void)
179783Srrs{
179783Srrs	sctp_pcb_finish();
179783Srrs}
163953Srrs
166023Srrs
163953Srrs
179157Srrsvoid
167695Srrssctp_pathmtu_adjustment(struct sctp_inpcb *inp,
163953Srrs    struct sctp_tcb *stcb,
163953Srrs    struct sctp_nets *net,
163953Srrs    uint16_t nxtsz)
163953Srrs{
163953Srrs	struct sctp_tmit_chunk *chk;
197257Stuexen	uint16_t overhead;
163953Srrs
163953Srrs	/* Adjust that too */
163953Srrs	stcb->asoc.smallest_mtu = nxtsz;
163953Srrs	/* now off to subtract IP_DF flag if needed */
197257Stuexen	overhead = IP_HDR_SIZE;
197257Stuexen	if (sctp_auth_is_required_chunk(SCTP_DATA, stcb->asoc.peer_auth_chunks)) {
197257Stuexen		overhead += sctp_get_auth_chunk_len(stcb->asoc.peer_hmac_id);
197257Stuexen	}
163953Srrs	TAILQ_FOREACH(chk, &stcb->asoc.send_queue, sctp_next) {
197257Stuexen		if ((chk->send_size + overhead) > nxtsz) {
163953Srrs			chk->flags |= CHUNK_FLAGS_FRAGMENT_OK;
163953Srrs		}
163953Srrs	}
163953Srrs	TAILQ_FOREACH(chk, &stcb->asoc.sent_queue, sctp_next) {
197257Stuexen		if ((chk->send_size + overhead) > nxtsz) {
163953Srrs			/*
163953Srrs			 * For this guy we also mark for immediate resend
163953Srrs			 * since we sent to big of chunk
163953Srrs			 */
163953Srrs			chk->flags |= CHUNK_FLAGS_FRAGMENT_OK;
190689Srrs			if (chk->sent < SCTP_DATAGRAM_RESEND) {
190689Srrs				sctp_flight_size_decrease(chk);
190689Srrs				sctp_total_flight_decrease(stcb, chk);
190689Srrs			}
163953Srrs			if (chk->sent != SCTP_DATAGRAM_RESEND) {
163953Srrs				sctp_ucount_incr(stcb->asoc.sent_queue_retran_cnt);
163953Srrs			}
163953Srrs			chk->sent = SCTP_DATAGRAM_RESEND;
163953Srrs			chk->rec.data.doing_fast_retransmit = 0;
179783Srrs			if (SCTP_BASE_SYSCTL(sctp_logging_level) & SCTP_FLIGHT_LOGGING_ENABLE) {
170744Srrs				sctp_misc_ints(SCTP_FLIGHT_LOG_DOWN_PMTU,
170744Srrs				    chk->whoTo->flight_size,
170744Srrs				    chk->book_size,
170744Srrs				    (uintptr_t) chk->whoTo,
170744Srrs				    chk->rec.data.TSN_seq);
170744Srrs			}
163953Srrs			/* Clear any time so NO RTT is being done */
163953Srrs			chk->do_rtt = 0;
163953Srrs		}
163953Srrs	}
163953Srrs}
163953Srrs
221249Stuexen#ifdef INET
163953Srrsstatic void
163953Srrssctp_notify_mbuf(struct sctp_inpcb *inp,
163953Srrs    struct sctp_tcb *stcb,
163953Srrs    struct sctp_nets *net,
163953Srrs    struct ip *ip,
163953Srrs    struct sctphdr *sh)
163953Srrs{
163953Srrs	struct icmp *icmph;
163953Srrs	int totsz, tmr_stopped = 0;
163953Srrs	uint16_t nxtsz;
163953Srrs
163953Srrs	/* protection */
163953Srrs	if ((inp == NULL) || (stcb == NULL) || (net == NULL) ||
163953Srrs	    (ip == NULL) || (sh == NULL)) {
169420Srrs		if (stcb != NULL) {
163953Srrs			SCTP_TCB_UNLOCK(stcb);
169420Srrs		}
163953Srrs		return;
163953Srrs	}
163953Srrs	/* First job is to verify the vtag matches what I would send */
163953Srrs	if (ntohl(sh->v_tag) != (stcb->asoc.peer_vtag)) {
163953Srrs		SCTP_TCB_UNLOCK(stcb);
163953Srrs		return;
163953Srrs	}
163953Srrs	icmph = (struct icmp *)((caddr_t)ip - (sizeof(struct icmp) -
163953Srrs	    sizeof(struct ip)));
163953Srrs	if (icmph->icmp_type != ICMP_UNREACH) {
163953Srrs		/* We only care about unreachable */
163953Srrs		SCTP_TCB_UNLOCK(stcb);
163953Srrs		return;
163953Srrs	}
163953Srrs	if (icmph->icmp_code != ICMP_UNREACH_NEEDFRAG) {
163953Srrs		/* not a unreachable message due to frag. */
163953Srrs		SCTP_TCB_UNLOCK(stcb);
163953Srrs		return;
163953Srrs	}
163953Srrs	totsz = ip->ip_len;
163953Srrs
171943Srrs	nxtsz = ntohs(icmph->icmp_nextmtu);
163953Srrs	if (nxtsz == 0) {
163953Srrs		/*
163953Srrs		 * old type router that does not tell us what the next size
163953Srrs		 * mtu is. Rats we will have to guess (in a educated fashion
163953Srrs		 * of course)
163953Srrs		 */
214939Stuexen		nxtsz = sctp_get_prev_mtu(totsz);
163953Srrs	}
163953Srrs	/* Stop any PMTU timer */
165647Srrs	if (SCTP_OS_TIMER_PENDING(&net->pmtu_timer.timer)) {
163953Srrs		tmr_stopped = 1;
165220Srrs		sctp_timer_stop(SCTP_TIMER_TYPE_PATHMTURAISE, inp, stcb, net,
165220Srrs		    SCTP_FROM_SCTP_USRREQ + SCTP_LOC_1);
163953Srrs	}
163953Srrs	/* Adjust destination size limit */
163953Srrs	if (net->mtu > nxtsz) {
163953Srrs		net->mtu = nxtsz;
185694Srrs		if (net->port) {
185694Srrs			net->mtu -= sizeof(struct udphdr);
185694Srrs		}
163953Srrs	}
163953Srrs	/* now what about the ep? */
163953Srrs	if (stcb->asoc.smallest_mtu > nxtsz) {
167695Srrs		sctp_pathmtu_adjustment(inp, stcb, net, nxtsz);
163953Srrs	}
163953Srrs	if (tmr_stopped)
163953Srrs		sctp_timer_start(SCTP_TIMER_TYPE_PATHMTURAISE, inp, stcb, net);
163953Srrs
163953Srrs	SCTP_TCB_UNLOCK(stcb);
163953Srrs}
163953Srrs
221249Stuexen#endif
163953Srrs
163953Srrsvoid
163953Srrssctp_notify(struct sctp_inpcb *inp,
172091Srrs    struct ip *ip,
163953Srrs    struct sctphdr *sh,
163953Srrs    struct sockaddr *to,
163953Srrs    struct sctp_tcb *stcb,
163953Srrs    struct sctp_nets *net)
163953Srrs{
172090Srrs#if defined (__APPLE__) || defined(SCTP_SO_LOCK_TESTING)
172090Srrs	struct socket *so;
172090Srrs
172090Srrs#endif
163953Srrs	/* protection */
172091Srrs	int reason;
172091Srrs	struct icmp *icmph;
172091Srrs
172091Srrs
163953Srrs	if ((inp == NULL) || (stcb == NULL) || (net == NULL) ||
163953Srrs	    (sh == NULL) || (to == NULL)) {
172091Srrs		if (stcb)
172091Srrs			SCTP_TCB_UNLOCK(stcb);
163953Srrs		return;
163953Srrs	}
163953Srrs	/* First job is to verify the vtag matches what I would send */
163953Srrs	if (ntohl(sh->v_tag) != (stcb->asoc.peer_vtag)) {
172091Srrs		SCTP_TCB_UNLOCK(stcb);
163953Srrs		return;
163953Srrs	}
172091Srrs	icmph = (struct icmp *)((caddr_t)ip - (sizeof(struct icmp) -
172091Srrs	    sizeof(struct ip)));
172091Srrs	if (icmph->icmp_type != ICMP_UNREACH) {
172091Srrs		/* We only care about unreachable */
172091Srrs		SCTP_TCB_UNLOCK(stcb);
172091Srrs		return;
172091Srrs	}
172091Srrs	if ((icmph->icmp_code == ICMP_UNREACH_NET) ||
172091Srrs	    (icmph->icmp_code == ICMP_UNREACH_HOST) ||
172091Srrs	    (icmph->icmp_code == ICMP_UNREACH_NET_UNKNOWN) ||
172091Srrs	    (icmph->icmp_code == ICMP_UNREACH_HOST_UNKNOWN) ||
172091Srrs	    (icmph->icmp_code == ICMP_UNREACH_ISOLATED) ||
172091Srrs	    (icmph->icmp_code == ICMP_UNREACH_NET_PROHIB) ||
172091Srrs	    (icmph->icmp_code == ICMP_UNREACH_HOST_PROHIB) ||
172091Srrs	    (icmph->icmp_code == ICMP_UNREACH_FILTER_PROHIB)) {
163953Srrs
163953Srrs		/*
163953Srrs		 * Hmm reachablity problems we must examine closely. If its
163953Srrs		 * not reachable, we may have lost a network. Or if there is
163953Srrs		 * NO protocol at the other end named SCTP. well we consider
163953Srrs		 * it a OOTB abort.
163953Srrs		 */
172091Srrs		if (net->dest_state & SCTP_ADDR_REACHABLE) {
172091Srrs			/* Ok that destination is NOT reachable */
172091Srrs			SCTP_PRINTF("ICMP (thresh %d/%d) takes interface %p down\n",
172091Srrs			    net->error_count,
172091Srrs			    net->failure_threshold,
172091Srrs			    net);
167598Srrs
172091Srrs			net->dest_state &= ~SCTP_ADDR_REACHABLE;
172091Srrs			net->dest_state |= SCTP_ADDR_NOT_REACHABLE;
163953Srrs			/*
172091Srrs			 * JRS 5/14/07 - If a destination is unreachable,
172091Srrs			 * the PF bit is turned off.  This allows an
172091Srrs			 * unambiguous use of the PF bit for destinations
172091Srrs			 * that are reachable but potentially failed. If the
172091Srrs			 * destination is set to the unreachable state, also
172091Srrs			 * set the destination to the PF state.
163953Srrs			 */
172091Srrs			/*
172091Srrs			 * Add debug message here if destination is not in
172091Srrs			 * PF state.
172091Srrs			 */
172091Srrs			/* Stop any running T3 timers here? */
216669Stuexen			if ((stcb->asoc.sctp_cmt_on_off > 0) &&
211944Stuexen			    (stcb->asoc.sctp_cmt_pf > 0)) {
172091Srrs				net->dest_state &= ~SCTP_ADDR_PF;
172091Srrs				SCTPDBG(SCTP_DEBUG_TIMER4, "Destination %p moved from PF to unreachable.\n",
172091Srrs				    net);
172091Srrs			}
172091Srrs			net->error_count = net->failure_threshold + 1;
172091Srrs			sctp_ulp_notify(SCTP_NOTIFY_INTERFACE_DOWN,
172091Srrs			    stcb, SCTP_FAILED_THRESHOLD,
172091Srrs			    (void *)net, SCTP_SO_NOT_LOCKED);
172091Srrs		}
172091Srrs		SCTP_TCB_UNLOCK(stcb);
172091Srrs	} else if ((icmph->icmp_code == ICMP_UNREACH_PROTOCOL) ||
172091Srrs	    (icmph->icmp_code == ICMP_UNREACH_PORT)) {
172091Srrs		/*
172091Srrs		 * Here the peer is either playing tricks on us, including
172091Srrs		 * an address that belongs to someone who does not support
172091Srrs		 * SCTP OR was a userland implementation that shutdown and
172091Srrs		 * now is dead. In either case treat it like a OOTB abort
172091Srrs		 * with no TCB
172091Srrs		 */
172091Srrs		reason = SCTP_PEER_FAULTY;
172091Srrs		sctp_abort_notification(stcb, reason, SCTP_SO_NOT_LOCKED);
172090Srrs#if defined (__APPLE__) || defined(SCTP_SO_LOCK_TESTING)
172091Srrs		so = SCTP_INP_SO(inp);
172091Srrs		atomic_add_int(&stcb->asoc.refcnt, 1);
172091Srrs		SCTP_TCB_UNLOCK(stcb);
172091Srrs		SCTP_SOCKET_LOCK(so, 1);
172091Srrs		SCTP_TCB_LOCK(stcb);
172091Srrs		atomic_subtract_int(&stcb->asoc.refcnt, 1);
172090Srrs#endif
172091Srrs		(void)sctp_free_assoc(inp, stcb, SCTP_NORMAL_PROC, SCTP_FROM_SCTP_USRREQ + SCTP_LOC_2);
172090Srrs#if defined (__APPLE__) || defined(SCTP_SO_LOCK_TESTING)
172091Srrs		SCTP_SOCKET_UNLOCK(so, 1);
172091Srrs		/* SCTP_TCB_UNLOCK(stcb); MT: I think this is not needed. */
172090Srrs#endif
172091Srrs		/* no need to unlock here, since the TCB is gone */
163953Srrs	} else {
172091Srrs		SCTP_TCB_UNLOCK(stcb);
163953Srrs	}
163953Srrs}
163953Srrs
221249Stuexen#ifdef INET
163953Srrsvoid
163953Srrssctp_ctlinput(cmd, sa, vip)
163953Srrs	int cmd;
163953Srrs	struct sockaddr *sa;
163953Srrs	void *vip;
163953Srrs{
163953Srrs	struct ip *ip = vip;
163953Srrs	struct sctphdr *sh;
167598Srrs	uint32_t vrf_id;
163953Srrs
168299Srrs	/* FIX, for non-bsd is this right? */
167598Srrs	vrf_id = SCTP_DEFAULT_VRFID;
163953Srrs	if (sa->sa_family != AF_INET ||
163953Srrs	    ((struct sockaddr_in *)sa)->sin_addr.s_addr == INADDR_ANY) {
163953Srrs		return;
163953Srrs	}
163953Srrs	if (PRC_IS_REDIRECT(cmd)) {
163953Srrs		ip = 0;
163953Srrs	} else if ((unsigned)cmd >= PRC_NCMDS || inetctlerrmap[cmd] == 0) {
163953Srrs		return;
163953Srrs	}
163953Srrs	if (ip) {
163953Srrs		struct sctp_inpcb *inp = NULL;
163953Srrs		struct sctp_tcb *stcb = NULL;
163953Srrs		struct sctp_nets *net = NULL;
163953Srrs		struct sockaddr_in to, from;
163953Srrs
163953Srrs		sh = (struct sctphdr *)((caddr_t)ip + (ip->ip_hl << 2));
163953Srrs		bzero(&to, sizeof(to));
163953Srrs		bzero(&from, sizeof(from));
163953Srrs		from.sin_family = to.sin_family = AF_INET;
163953Srrs		from.sin_len = to.sin_len = sizeof(to);
163953Srrs		from.sin_port = sh->src_port;
163953Srrs		from.sin_addr = ip->ip_src;
163953Srrs		to.sin_port = sh->dest_port;
163953Srrs		to.sin_addr = ip->ip_dst;
163953Srrs
163953Srrs		/*
163953Srrs		 * 'to' holds the dest of the packet that failed to be sent.
163953Srrs		 * 'from' holds our local endpoint address. Thus we reverse
163953Srrs		 * the to and the from in the lookup.
163953Srrs		 */
163953Srrs		stcb = sctp_findassociation_addr_sa((struct sockaddr *)&from,
163953Srrs		    (struct sockaddr *)&to,
167598Srrs		    &inp, &net, 1, vrf_id);
163953Srrs		if (stcb != NULL && inp && (inp->sctp_socket != NULL)) {
163953Srrs			if (cmd != PRC_MSGSIZE) {
172091Srrs				sctp_notify(inp, ip, sh,
163953Srrs				    (struct sockaddr *)&to, stcb,
163953Srrs				    net);
163953Srrs			} else {
163953Srrs				/* handle possible ICMP size messages */
163953Srrs				sctp_notify_mbuf(inp, stcb, net, ip, sh);
163953Srrs			}
163953Srrs		} else {
163953Srrs			if ((stcb == NULL) && (inp != NULL)) {
163953Srrs				/* reduce ref-count */
163953Srrs				SCTP_INP_WLOCK(inp);
163953Srrs				SCTP_INP_DECR_REF(inp);
163953Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
209029Srrs			if (stcb) {
209029Srrs				SCTP_TCB_UNLOCK(stcb);
209029Srrs			}
163953Srrs		}
163953Srrs	}
163953Srrs	return;
163953Srrs}
163953Srrs
221249Stuexen#endif
221249Stuexen
163953Srrsstatic int
163953Srrssctp_getcred(SYSCTL_HANDLER_ARGS)
163953Srrs{
164085Srrs	struct xucred xuc;
163953Srrs	struct sockaddr_in addrs[2];
163953Srrs	struct sctp_inpcb *inp;
163953Srrs	struct sctp_nets *net;
163953Srrs	struct sctp_tcb *stcb;
164085Srrs	int error;
167598Srrs	uint32_t vrf_id;
163953Srrs
168299Srrs	/* FIX, for non-bsd is this right? */
167598Srrs	vrf_id = SCTP_DEFAULT_VRFID;
168299Srrs
170587Srwatson	error = priv_check(req->td, PRIV_NETINET_GETCRED);
170587Srwatson
163953Srrs	if (error)
163953Srrs		return (error);
164039Srwatson
163953Srrs	error = SYSCTL_IN(req, addrs, sizeof(addrs));
163953Srrs	if (error)
163953Srrs		return (error);
163953Srrs
163953Srrs	stcb = sctp_findassociation_addr_sa(sintosa(&addrs[0]),
163953Srrs	    sintosa(&addrs[1]),
167598Srrs	    &inp, &net, 1, vrf_id);
163953Srrs	if (stcb == NULL || inp == NULL || inp->sctp_socket == NULL) {
163953Srrs		if ((inp != NULL) && (stcb == NULL)) {
163953Srrs			/* reduce ref-count */
163953Srrs			SCTP_INP_WLOCK(inp);
163953Srrs			SCTP_INP_DECR_REF(inp);
164085Srrs			goto cred_can_cont;
163953Srrs		}
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT);
163953Srrs		error = ENOENT;
163953Srrs		goto out;
163953Srrs	}
163953Srrs	SCTP_TCB_UNLOCK(stcb);
164085Srrs	/*
164085Srrs	 * We use the write lock here, only since in the error leg we need
164085Srrs	 * it. If we used RLOCK, then we would have to
164085Srrs	 * wlock/decr/unlock/rlock. Which in theory could create a hole.
164085Srrs	 * Better to use higher wlock.
164085Srrs	 */
164085Srrs	SCTP_INP_WLOCK(inp);
164085Srrscred_can_cont:
164085Srrs	error = cr_canseesocket(req->td->td_ucred, inp->sctp_socket);
164085Srrs	if (error) {
164085Srrs		SCTP_INP_WUNLOCK(inp);
164085Srrs		goto out;
164085Srrs	}
164085Srrs	cru2x(inp->sctp_socket->so_cred, &xuc);
164085Srrs	SCTP_INP_WUNLOCK(inp);
164085Srrs	error = SYSCTL_OUT(req, &xuc, sizeof(struct xucred));
163953Srrsout:
163953Srrs	return (error);
163953Srrs}
163953Srrs
163953SrrsSYSCTL_PROC(_net_inet_sctp, OID_AUTO, getcred, CTLTYPE_OPAQUE | CTLFLAG_RW,
163953Srrs    0, 0, sctp_getcred, "S,ucred", "Get the ucred of a SCTP connection");
163953Srrs
163953Srrs
221249Stuexen#ifdef INET
163953Srrsstatic void
163953Srrssctp_abort(struct socket *so)
163953Srrs{
163953Srrs	struct sctp_inpcb *inp;
163953Srrs	uint32_t flags;
163953Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
171943Srrs	if (inp == 0) {
163953Srrs		return;
171943Srrs	}
163953Srrssctp_must_try_again:
163953Srrs	flags = inp->sctp_flags;
163953Srrs#ifdef SCTP_LOG_CLOSING
163953Srrs	sctp_log_closing(inp, NULL, 17);
163953Srrs#endif
163953Srrs	if (((flags & SCTP_PCB_FLAGS_SOCKET_GONE) == 0) &&
163953Srrs	    (atomic_cmpset_int(&inp->sctp_flags, flags, (flags | SCTP_PCB_FLAGS_SOCKET_GONE | SCTP_PCB_FLAGS_CLOSE_IP)))) {
163953Srrs#ifdef SCTP_LOG_CLOSING
163953Srrs		sctp_log_closing(inp, NULL, 16);
163953Srrs#endif
169380Srrs		sctp_inpcb_free(inp, SCTP_FREE_SHOULD_USE_ABORT,
169380Srrs		    SCTP_CALLED_AFTER_CMPSET_OFCLOSE);
163953Srrs		SOCK_LOCK(so);
167695Srrs		SCTP_SB_CLEAR(so->so_snd);
163953Srrs		/*
163953Srrs		 * same for the rcv ones, they are only here for the
163953Srrs		 * accounting/select.
163953Srrs		 */
167695Srrs		SCTP_SB_CLEAR(so->so_rcv);
167695Srrs
167695Srrs		/* Now null out the reference, we are completely detached. */
163953Srrs		so->so_pcb = NULL;
163953Srrs		SOCK_UNLOCK(so);
163953Srrs	} else {
163953Srrs		flags = inp->sctp_flags;
163953Srrs		if ((flags & SCTP_PCB_FLAGS_SOCKET_GONE) == 0) {
163953Srrs			goto sctp_must_try_again;
163953Srrs		}
163953Srrs	}
163953Srrs	return;
163953Srrs}
163953Srrs
163953Srrsstatic int
163953Srrssctp_attach(struct socket *so, int proto, struct thread *p)
163953Srrs{
163953Srrs	struct sctp_inpcb *inp;
163953Srrs	struct inpcb *ip_inp;
166086Srrs	int error;
170205Srrs	uint32_t vrf_id = SCTP_DEFAULT_VRFID;
185694Srrs
171167Sgnn#ifdef IPSEC
163953Srrs	uint32_t flags;
185694Srrs
185435Sbz#endif
171440Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (inp != 0) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return EINVAL;
163953Srrs	}
184030Srrs	if (so->so_snd.sb_hiwat == 0 || so->so_rcv.sb_hiwat == 0) {
184030Srrs		error = SCTP_SORESERVE(so, SCTP_BASE_SYSCTL(sctp_sendspace), SCTP_BASE_SYSCTL(sctp_recvspace));
184030Srrs		if (error) {
184030Srrs			return error;
184030Srrs		}
163953Srrs	}
170205Srrs	error = sctp_inpcb_alloc(so, vrf_id);
163953Srrs	if (error) {
163953Srrs		return error;
163953Srrs	}
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	SCTP_INP_WLOCK(inp);
163953Srrs	inp->sctp_flags &= ~SCTP_PCB_FLAGS_BOUND_V6;	/* I'm not v6! */
163953Srrs	ip_inp = &inp->ip_inp.inp;
163953Srrs	ip_inp->inp_vflag |= INP_IPV4;
197288Srrs	ip_inp->inp_ip_ttl = MODULE_GLOBAL(ip_defttl);
171167Sgnn#ifdef IPSEC
171133Sgnn	error = ipsec_init_policy(so, &ip_inp->inp_sp);
163953Srrs#ifdef SCTP_LOG_CLOSING
163953Srrs	sctp_log_closing(inp, NULL, 17);
163953Srrs#endif
163953Srrs	if (error != 0) {
202523Srrstry_again:
163953Srrs		flags = inp->sctp_flags;
163953Srrs		if (((flags & SCTP_PCB_FLAGS_SOCKET_GONE) == 0) &&
163953Srrs		    (atomic_cmpset_int(&inp->sctp_flags, flags, (flags | SCTP_PCB_FLAGS_SOCKET_GONE | SCTP_PCB_FLAGS_CLOSE_IP)))) {
163953Srrs#ifdef SCTP_LOG_CLOSING
163953Srrs			sctp_log_closing(inp, NULL, 15);
163953Srrs#endif
169352Srrs			SCTP_INP_WUNLOCK(inp);
169380Srrs			sctp_inpcb_free(inp, SCTP_FREE_SHOULD_USE_ABORT,
169380Srrs			    SCTP_CALLED_AFTER_CMPSET_OFCLOSE);
169254Srrs		} else {
202523Srrs			flags = inp->sctp_flags;
202523Srrs			if ((flags & SCTP_PCB_FLAGS_SOCKET_GONE) == 0) {
202523Srrs				goto try_again;
202523Srrs			} else {
202523Srrs				SCTP_INP_WUNLOCK(inp);
202523Srrs			}
163953Srrs		}
163953Srrs		return error;
163953Srrs	}
171167Sgnn#endif				/* IPSEC */
163953Srrs	SCTP_INP_WUNLOCK(inp);
163953Srrs	return 0;
163953Srrs}
163953Srrs
163953Srrsstatic int
163953Srrssctp_bind(struct socket *so, struct sockaddr *addr, struct thread *p)
163953Srrs{
171943Srrs	struct sctp_inpcb *inp = NULL;
166086Srrs	int error;
163953Srrs
163953Srrs#ifdef INET6
171943Srrs	if (addr && addr->sa_family != AF_INET) {
163953Srrs		/* must be a v4 address! */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return EINVAL;
171943Srrs	}
163953Srrs#endif				/* INET6 */
170056Srrs	if (addr && (addr->sa_len != sizeof(struct sockaddr_in))) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
170056Srrs		return EINVAL;
170056Srrs	}
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
171943Srrs	if (inp == 0) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return EINVAL;
171943Srrs	}
171572Srrs	error = sctp_inpcb_bind(so, addr, NULL, p);
163953Srrs	return error;
163953Srrs}
163953Srrs
221249Stuexen#endif
171990Srrsvoid
163953Srrssctp_close(struct socket *so)
163953Srrs{
163953Srrs	struct sctp_inpcb *inp;
163953Srrs	uint32_t flags;
163953Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (inp == 0)
163953Srrs		return;
163953Srrs
163953Srrs	/*
163953Srrs	 * Inform all the lower layer assoc that we are done.
163953Srrs	 */
163953Srrssctp_must_try_again:
163953Srrs	flags = inp->sctp_flags;
163953Srrs#ifdef SCTP_LOG_CLOSING
163953Srrs	sctp_log_closing(inp, NULL, 17);
163953Srrs#endif
163953Srrs	if (((flags & SCTP_PCB_FLAGS_SOCKET_GONE) == 0) &&
163953Srrs	    (atomic_cmpset_int(&inp->sctp_flags, flags, (flags | SCTP_PCB_FLAGS_SOCKET_GONE | SCTP_PCB_FLAGS_CLOSE_IP)))) {
163953Srrs		if (((so->so_options & SO_LINGER) && (so->so_linger == 0)) ||
163953Srrs		    (so->so_rcv.sb_cc > 0)) {
163953Srrs#ifdef SCTP_LOG_CLOSING
163953Srrs			sctp_log_closing(inp, NULL, 13);
163953Srrs#endif
169380Srrs			sctp_inpcb_free(inp, SCTP_FREE_SHOULD_USE_ABORT,
169380Srrs			    SCTP_CALLED_AFTER_CMPSET_OFCLOSE);
163953Srrs		} else {
163953Srrs#ifdef SCTP_LOG_CLOSING
163953Srrs			sctp_log_closing(inp, NULL, 14);
163953Srrs#endif
169380Srrs			sctp_inpcb_free(inp, SCTP_FREE_SHOULD_USE_GRACEFUL_CLOSE,
169380Srrs			    SCTP_CALLED_AFTER_CMPSET_OFCLOSE);
163953Srrs		}
163953Srrs		/*
163953Srrs		 * The socket is now detached, no matter what the state of
163953Srrs		 * the SCTP association.
163953Srrs		 */
163953Srrs		SOCK_LOCK(so);
167695Srrs		SCTP_SB_CLEAR(so->so_snd);
163953Srrs		/*
163953Srrs		 * same for the rcv ones, they are only here for the
163953Srrs		 * accounting/select.
163953Srrs		 */
167695Srrs		SCTP_SB_CLEAR(so->so_rcv);
167695Srrs
167695Srrs		/* Now null out the reference, we are completely detached. */
163953Srrs		so->so_pcb = NULL;
163953Srrs		SOCK_UNLOCK(so);
163953Srrs	} else {
163953Srrs		flags = inp->sctp_flags;
163953Srrs		if ((flags & SCTP_PCB_FLAGS_SOCKET_GONE) == 0) {
163953Srrs			goto sctp_must_try_again;
163953Srrs		}
163953Srrs	}
163953Srrs	return;
163953Srrs}
163953Srrs
163953Srrs
163953Srrsint
163953Srrssctp_sendm(struct socket *so, int flags, struct mbuf *m, struct sockaddr *addr,
163953Srrs    struct mbuf *control, struct thread *p);
163953Srrs
163953Srrs
163953Srrsint
163953Srrssctp_sendm(struct socket *so, int flags, struct mbuf *m, struct sockaddr *addr,
163953Srrs    struct mbuf *control, struct thread *p)
163953Srrs{
163953Srrs	struct sctp_inpcb *inp;
163953Srrs	int error;
163953Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (inp == 0) {
163953Srrs		if (control) {
163953Srrs			sctp_m_freem(control);
163953Srrs			control = NULL;
163953Srrs		}
171943Srrs		SCTP_LTRACE_ERR_RET_PKT(m, inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		sctp_m_freem(m);
163953Srrs		return EINVAL;
163953Srrs	}
163953Srrs	/* Got to have an to address if we are NOT a connected socket */
163953Srrs	if ((addr == NULL) &&
163953Srrs	    ((inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED) ||
163953Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE))
163953Srrs	    ) {
163953Srrs		goto connected_type;
163953Srrs	} else if (addr == NULL) {
171943Srrs		SCTP_LTRACE_ERR_RET_PKT(m, inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EDESTADDRREQ);
163953Srrs		error = EDESTADDRREQ;
163953Srrs		sctp_m_freem(m);
163953Srrs		if (control) {
163953Srrs			sctp_m_freem(control);
163953Srrs			control = NULL;
163953Srrs		}
163953Srrs		return (error);
163953Srrs	}
163953Srrs#ifdef INET6
163953Srrs	if (addr->sa_family != AF_INET) {
163953Srrs		/* must be a v4 address! */
171943Srrs		SCTP_LTRACE_ERR_RET_PKT(m, inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EDESTADDRREQ);
163953Srrs		sctp_m_freem(m);
163953Srrs		if (control) {
163953Srrs			sctp_m_freem(control);
163953Srrs			control = NULL;
163953Srrs		}
163953Srrs		error = EDESTADDRREQ;
171943Srrs		return EDESTADDRREQ;
163953Srrs	}
163953Srrs#endif				/* INET6 */
163953Srrsconnected_type:
163953Srrs	/* now what about control */
163953Srrs	if (control) {
163953Srrs		if (inp->control) {
169420Srrs			SCTP_PRINTF("huh? control set?\n");
163953Srrs			sctp_m_freem(inp->control);
163953Srrs			inp->control = NULL;
163953Srrs		}
163953Srrs		inp->control = control;
163953Srrs	}
163953Srrs	/* Place the data */
163953Srrs	if (inp->pkt) {
165647Srrs		SCTP_BUF_NEXT(inp->pkt_last) = m;
163953Srrs		inp->pkt_last = m;
163953Srrs	} else {
163953Srrs		inp->pkt_last = inp->pkt = m;
163953Srrs	}
163953Srrs	if (
163953Srrs	/* FreeBSD uses a flag passed */
163953Srrs	    ((flags & PRUS_MORETOCOME) == 0)
163953Srrs	    ) {
163953Srrs		/*
163953Srrs		 * note with the current version this code will only be used
163953Srrs		 * by OpenBSD-- NetBSD, FreeBSD, and MacOS have methods for
163953Srrs		 * re-defining sosend to use the sctp_sosend. One can
163953Srrs		 * optionally switch back to this code (by changing back the
163953Srrs		 * definitions) but this is not advisable. This code is used
163953Srrs		 * by FreeBSD when sending a file with sendfile() though.
163953Srrs		 */
163953Srrs		int ret;
163953Srrs
163953Srrs		ret = sctp_output(inp, inp->pkt, addr, inp->control, p, flags);
163953Srrs		inp->pkt = NULL;
163953Srrs		inp->control = NULL;
163953Srrs		return (ret);
163953Srrs	} else {
163953Srrs		return (0);
163953Srrs	}
163953Srrs}
163953Srrs
171990Srrsint
163953Srrssctp_disconnect(struct socket *so)
163953Srrs{
163953Srrs	struct sctp_inpcb *inp;
163953Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (inp == NULL) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOTCONN);
163953Srrs		return (ENOTCONN);
163953Srrs	}
163953Srrs	SCTP_INP_RLOCK(inp);
171745Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) ||
171745Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_IN_TCPPOOL)) {
199437Stuexen		if (LIST_EMPTY(&inp->sctp_asoc_list)) {
163953Srrs			/* No connection */
163953Srrs			SCTP_INP_RUNLOCK(inp);
163953Srrs			return (0);
163953Srrs		} else {
163953Srrs			struct sctp_association *asoc;
163953Srrs			struct sctp_tcb *stcb;
163953Srrs
163953Srrs			stcb = LIST_FIRST(&inp->sctp_asoc_list);
163953Srrs			if (stcb == NULL) {
163953Srrs				SCTP_INP_RUNLOCK(inp);
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs				return (EINVAL);
163953Srrs			}
163953Srrs			SCTP_TCB_LOCK(stcb);
163953Srrs			asoc = &stcb->asoc;
163953Srrs			if (stcb->asoc.state & SCTP_STATE_ABOUT_TO_BE_FREED) {
163953Srrs				/* We are about to be freed, out of here */
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs				return (0);
163953Srrs			}
163953Srrs			if (((so->so_options & SO_LINGER) &&
163953Srrs			    (so->so_linger == 0)) ||
163953Srrs			    (so->so_rcv.sb_cc > 0)) {
163953Srrs				if (SCTP_GET_STATE(asoc) !=
163953Srrs				    SCTP_STATE_COOKIE_WAIT) {
163953Srrs					/* Left with Data unread */
163953Srrs					struct mbuf *err;
163953Srrs
163953Srrs					err = sctp_get_mbuf_for_msg(sizeof(struct sctp_paramhdr), 0, M_DONTWAIT, 1, MT_DATA);
163953Srrs					if (err) {
163953Srrs						/*
163953Srrs						 * Fill in the user
163953Srrs						 * initiated abort
163953Srrs						 */
163953Srrs						struct sctp_paramhdr *ph;
163953Srrs
163953Srrs						ph = mtod(err, struct sctp_paramhdr *);
165647Srrs						SCTP_BUF_LEN(err) = sizeof(struct sctp_paramhdr);
163953Srrs						ph->param_type = htons(SCTP_CAUSE_USER_INITIATED_ABT);
165647Srrs						ph->param_length = htons(SCTP_BUF_LEN(err));
163953Srrs					}
172396Srrs#if defined(SCTP_PANIC_ON_ABORT)
172396Srrs					panic("disconnect does an abort");
172396Srrs#endif
172090Srrs					sctp_send_abort_tcb(stcb, err, SCTP_SO_LOCKED);
163953Srrs					SCTP_STAT_INCR_COUNTER32(sctps_aborted);
163953Srrs				}
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs				if ((SCTP_GET_STATE(&stcb->asoc) == SCTP_STATE_OPEN) ||
163953Srrs				    (SCTP_GET_STATE(&stcb->asoc) == SCTP_STATE_SHUTDOWN_RECEIVED)) {
163953Srrs					SCTP_STAT_DECR_GAUGE32(sctps_currestab);
163953Srrs				}
171943Srrs				(void)sctp_free_assoc(inp, stcb, SCTP_NORMAL_PROC, SCTP_FROM_SCTP_USRREQ + SCTP_LOC_3);
163953Srrs				/* No unlock tcb assoc is gone */
163953Srrs				return (0);
163953Srrs			}
163953Srrs			if (TAILQ_EMPTY(&asoc->send_queue) &&
163953Srrs			    TAILQ_EMPTY(&asoc->sent_queue) &&
163953Srrs			    (asoc->stream_queue_cnt == 0)) {
163953Srrs				/* there is nothing queued to send, so done */
163953Srrs				if (asoc->locked_on_sending) {
163953Srrs					goto abort_anyway;
163953Srrs				}
166675Srrs				if ((SCTP_GET_STATE(asoc) != SCTP_STATE_SHUTDOWN_SENT) &&
166675Srrs				    (SCTP_GET_STATE(asoc) != SCTP_STATE_SHUTDOWN_ACK_SENT)) {
163953Srrs					/* only send SHUTDOWN 1st time thru */
163953Srrs					sctp_stop_timers_for_shutdown(stcb);
163953Srrs					sctp_send_shutdown(stcb,
163953Srrs					    stcb->asoc.primary_destination);
172090Srrs					sctp_chunk_output(stcb->sctp_ep, stcb, SCTP_OUTPUT_FROM_T3, SCTP_SO_LOCKED);
166675Srrs					if ((SCTP_GET_STATE(asoc) == SCTP_STATE_OPEN) ||
166675Srrs					    (SCTP_GET_STATE(asoc) == SCTP_STATE_SHUTDOWN_RECEIVED)) {
166675Srrs						SCTP_STAT_DECR_GAUGE32(sctps_currestab);
166675Srrs					}
171943Srrs					SCTP_SET_STATE(asoc, SCTP_STATE_SHUTDOWN_SENT);
172703Srrs					SCTP_CLEAR_SUBSTATE(asoc, SCTP_STATE_SHUTDOWN_PENDING);
163953Srrs					sctp_timer_start(SCTP_TIMER_TYPE_SHUTDOWN,
163953Srrs					    stcb->sctp_ep, stcb,
163953Srrs					    asoc->primary_destination);
163953Srrs					sctp_timer_start(SCTP_TIMER_TYPE_SHUTDOWNGUARD,
163953Srrs					    stcb->sctp_ep, stcb,
163953Srrs					    asoc->primary_destination);
163953Srrs				}
163953Srrs			} else {
163953Srrs				/*
163953Srrs				 * we still got (or just got) data to send,
163953Srrs				 * so set SHUTDOWN_PENDING
163953Srrs				 */
163953Srrs				/*
163953Srrs				 * XXX sockets draft says that SCTP_EOF
163953Srrs				 * should be sent with no data. currently,
163953Srrs				 * we will allow user data to be sent first
163953Srrs				 * and move to SHUTDOWN-PENDING
163953Srrs				 */
163953Srrs				asoc->state |= SCTP_STATE_SHUTDOWN_PENDING;
163953Srrs				sctp_timer_start(SCTP_TIMER_TYPE_SHUTDOWNGUARD, stcb->sctp_ep, stcb,
163953Srrs				    asoc->primary_destination);
163953Srrs				if (asoc->locked_on_sending) {
163953Srrs					/* Locked to send out the data */
163953Srrs					struct sctp_stream_queue_pending *sp;
163953Srrs
163953Srrs					sp = TAILQ_LAST(&asoc->locked_on_sending->outqueue, sctp_streamhead);
163953Srrs					if (sp == NULL) {
169420Srrs						SCTP_PRINTF("Error, sp is NULL, locked on sending is non-null strm:%d\n",
163953Srrs						    asoc->locked_on_sending->stream_no);
163953Srrs					} else {
163953Srrs						if ((sp->length == 0) && (sp->msg_is_complete == 0))
163953Srrs							asoc->state |= SCTP_STATE_PARTIAL_MSG_LEFT;
163953Srrs					}
163953Srrs				}
163953Srrs				if (TAILQ_EMPTY(&asoc->send_queue) &&
163953Srrs				    TAILQ_EMPTY(&asoc->sent_queue) &&
163953Srrs				    (asoc->state & SCTP_STATE_PARTIAL_MSG_LEFT)) {
163953Srrs					struct mbuf *op_err;
163953Srrs
163953Srrs			abort_anyway:
163953Srrs					op_err = sctp_get_mbuf_for_msg((sizeof(struct sctp_paramhdr) + sizeof(uint32_t)),
163953Srrs					    0, M_DONTWAIT, 1, MT_DATA);
163953Srrs					if (op_err) {
163953Srrs						/*
163953Srrs						 * Fill in the user
163953Srrs						 * initiated abort
163953Srrs						 */
163953Srrs						struct sctp_paramhdr *ph;
163953Srrs						uint32_t *ippp;
163953Srrs
165647Srrs						SCTP_BUF_LEN(op_err) =
163953Srrs						    (sizeof(struct sctp_paramhdr) + sizeof(uint32_t));
163953Srrs						ph = mtod(op_err,
163953Srrs						    struct sctp_paramhdr *);
163953Srrs						ph->param_type = htons(
163953Srrs						    SCTP_CAUSE_USER_INITIATED_ABT);
165647Srrs						ph->param_length = htons(SCTP_BUF_LEN(op_err));
163953Srrs						ippp = (uint32_t *) (ph + 1);
165220Srrs						*ippp = htonl(SCTP_FROM_SCTP_USRREQ + SCTP_LOC_4);
163953Srrs					}
172396Srrs#if defined(SCTP_PANIC_ON_ABORT)
172396Srrs					panic("disconnect does an abort");
172396Srrs#endif
172396Srrs
165220Srrs					stcb->sctp_ep->last_abort_code = SCTP_FROM_SCTP_USRREQ + SCTP_LOC_4;
172090Srrs					sctp_send_abort_tcb(stcb, op_err, SCTP_SO_LOCKED);
163953Srrs					SCTP_STAT_INCR_COUNTER32(sctps_aborted);
163953Srrs					if ((SCTP_GET_STATE(&stcb->asoc) == SCTP_STATE_OPEN) ||
163953Srrs					    (SCTP_GET_STATE(&stcb->asoc) == SCTP_STATE_SHUTDOWN_RECEIVED)) {
163953Srrs						SCTP_STAT_DECR_GAUGE32(sctps_currestab);
163953Srrs					}
163953Srrs					SCTP_INP_RUNLOCK(inp);
171943Srrs					(void)sctp_free_assoc(inp, stcb, SCTP_NORMAL_PROC, SCTP_FROM_SCTP_USRREQ + SCTP_LOC_5);
163953Srrs					return (0);
171990Srrs				} else {
172090Srrs					sctp_chunk_output(inp, stcb, SCTP_OUTPUT_FROM_CLOSING, SCTP_SO_LOCKED);
163953Srrs				}
163953Srrs			}
188067Srrs			soisdisconnecting(so);
163953Srrs			SCTP_TCB_UNLOCK(stcb);
163953Srrs			SCTP_INP_RUNLOCK(inp);
163953Srrs			return (0);
163953Srrs		}
163953Srrs		/* not reached */
163953Srrs	} else {
163953Srrs		/* UDP model does not support this */
163953Srrs		SCTP_INP_RUNLOCK(inp);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EOPNOTSUPP);
163953Srrs		return EOPNOTSUPP;
163953Srrs	}
163953Srrs}
163953Srrs
163953Srrsint
178202Srrssctp_flush(struct socket *so, int how)
178202Srrs{
178202Srrs	/*
178202Srrs	 * We will just clear out the values and let subsequent close clear
178202Srrs	 * out the data, if any. Note if the user did a shutdown(SHUT_RD)
178202Srrs	 * they will not be able to read the data, the socket will block
178202Srrs	 * that from happening.
178202Srrs	 */
209289Stuexen	struct sctp_inpcb *inp;
209289Stuexen
209289Stuexen	inp = (struct sctp_inpcb *)so->so_pcb;
209289Stuexen	if (inp == NULL) {
209289Stuexen		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
209289Stuexen		return EINVAL;
209289Stuexen	}
209289Stuexen	SCTP_INP_RLOCK(inp);
209289Stuexen	/* For the 1 to many model this does nothing */
209289Stuexen	if (inp->sctp_flags & SCTP_PCB_FLAGS_UDPTYPE) {
209289Stuexen		SCTP_INP_RUNLOCK(inp);
209289Stuexen		return (0);
209289Stuexen	}
209289Stuexen	SCTP_INP_RUNLOCK(inp);
178202Srrs	if ((how == PRU_FLUSH_RD) || (how == PRU_FLUSH_RDWR)) {
178202Srrs		/*
178202Srrs		 * First make sure the sb will be happy, we don't use these
178202Srrs		 * except maybe the count
178202Srrs		 */
209289Stuexen		SCTP_INP_WLOCK(inp);
209289Stuexen		SCTP_INP_READ_LOCK(inp);
209289Stuexen		inp->sctp_flags |= SCTP_PCB_FLAGS_SOCKET_CANT_READ;
209289Stuexen		SCTP_INP_READ_UNLOCK(inp);
209289Stuexen		SCTP_INP_WUNLOCK(inp);
178202Srrs		so->so_rcv.sb_cc = 0;
178202Srrs		so->so_rcv.sb_mbcnt = 0;
178202Srrs		so->so_rcv.sb_mb = NULL;
178202Srrs	}
178202Srrs	if ((how == PRU_FLUSH_WR) || (how == PRU_FLUSH_RDWR)) {
178202Srrs		/*
178202Srrs		 * First make sure the sb will be happy, we don't use these
178202Srrs		 * except maybe the count
178202Srrs		 */
178202Srrs		so->so_snd.sb_cc = 0;
178202Srrs		so->so_snd.sb_mbcnt = 0;
178202Srrs		so->so_snd.sb_mb = NULL;
178202Srrs
178202Srrs	}
178202Srrs	return (0);
178202Srrs}
178202Srrs
178202Srrsint
163953Srrssctp_shutdown(struct socket *so)
163953Srrs{
163953Srrs	struct sctp_inpcb *inp;
163953Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (inp == 0) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return EINVAL;
163953Srrs	}
163953Srrs	SCTP_INP_RLOCK(inp);
163953Srrs	/* For UDP model this is a invalid call */
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_UDPTYPE) {
163953Srrs		/* Restore the flags that the soshutdown took away. */
204096Stuexen		SOCKBUF_LOCK(&so->so_rcv);
163953Srrs		so->so_rcv.sb_state &= ~SBS_CANTRCVMORE;
204096Stuexen		SOCKBUF_UNLOCK(&so->so_rcv);
163953Srrs		/* This proc will wakeup for read and do nothing (I hope) */
163953Srrs		SCTP_INP_RUNLOCK(inp);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EOPNOTSUPP);
163953Srrs		return (EOPNOTSUPP);
163953Srrs	}
163953Srrs	/*
163953Srrs	 * Ok if we reach here its the TCP model and it is either a SHUT_WR
163953Srrs	 * or SHUT_RDWR. This means we put the shutdown flag against it.
163953Srrs	 */
163953Srrs	{
163953Srrs		struct sctp_tcb *stcb;
163953Srrs		struct sctp_association *asoc;
163953Srrs
188067Srrs		if ((so->so_state &
188067Srrs		    (SS_ISCONNECTED | SS_ISCONNECTING | SS_ISDISCONNECTING)) == 0) {
188067Srrs			SCTP_INP_RUNLOCK(inp);
188067Srrs			return (ENOTCONN);
188067Srrs		}
163953Srrs		socantsendmore(so);
163953Srrs
163953Srrs		stcb = LIST_FIRST(&inp->sctp_asoc_list);
163953Srrs		if (stcb == NULL) {
163953Srrs			/*
163953Srrs			 * Ok we hit the case that the shutdown call was
163953Srrs			 * made after an abort or something. Nothing to do
163953Srrs			 * now.
163953Srrs			 */
168299Srrs			SCTP_INP_RUNLOCK(inp);
163953Srrs			return (0);
163953Srrs		}
163953Srrs		SCTP_TCB_LOCK(stcb);
163953Srrs		asoc = &stcb->asoc;
163953Srrs		if (TAILQ_EMPTY(&asoc->send_queue) &&
163953Srrs		    TAILQ_EMPTY(&asoc->sent_queue) &&
163953Srrs		    (asoc->stream_queue_cnt == 0)) {
163953Srrs			if (asoc->locked_on_sending) {
163953Srrs				goto abort_anyway;
163953Srrs			}
163953Srrs			/* there is nothing queued to send, so I'm done... */
163953Srrs			if (SCTP_GET_STATE(asoc) != SCTP_STATE_SHUTDOWN_SENT) {
163953Srrs				/* only send SHUTDOWN the first time through */
163953Srrs				sctp_stop_timers_for_shutdown(stcb);
163953Srrs				sctp_send_shutdown(stcb,
163953Srrs				    stcb->asoc.primary_destination);
172218Srrs				sctp_chunk_output(stcb->sctp_ep, stcb, SCTP_OUTPUT_FROM_T3, SCTP_SO_LOCKED);
166675Srrs				if ((SCTP_GET_STATE(asoc) == SCTP_STATE_OPEN) ||
166675Srrs				    (SCTP_GET_STATE(asoc) == SCTP_STATE_SHUTDOWN_RECEIVED)) {
166675Srrs					SCTP_STAT_DECR_GAUGE32(sctps_currestab);
166675Srrs				}
171943Srrs				SCTP_SET_STATE(asoc, SCTP_STATE_SHUTDOWN_SENT);
172703Srrs				SCTP_CLEAR_SUBSTATE(asoc, SCTP_STATE_SHUTDOWN_PENDING);
163953Srrs				sctp_timer_start(SCTP_TIMER_TYPE_SHUTDOWN,
163953Srrs				    stcb->sctp_ep, stcb,
163953Srrs				    asoc->primary_destination);
163953Srrs				sctp_timer_start(SCTP_TIMER_TYPE_SHUTDOWNGUARD,
163953Srrs				    stcb->sctp_ep, stcb,
163953Srrs				    asoc->primary_destination);
163953Srrs			}
163953Srrs		} else {
163953Srrs			/*
163953Srrs			 * we still got (or just got) data to send, so set
163953Srrs			 * SHUTDOWN_PENDING
163953Srrs			 */
163953Srrs			asoc->state |= SCTP_STATE_SHUTDOWN_PENDING;
163953Srrs			sctp_timer_start(SCTP_TIMER_TYPE_SHUTDOWNGUARD, stcb->sctp_ep, stcb,
163953Srrs			    asoc->primary_destination);
163953Srrs
163953Srrs			if (asoc->locked_on_sending) {
163953Srrs				/* Locked to send out the data */
163953Srrs				struct sctp_stream_queue_pending *sp;
163953Srrs
163953Srrs				sp = TAILQ_LAST(&asoc->locked_on_sending->outqueue, sctp_streamhead);
163953Srrs				if (sp == NULL) {
169420Srrs					SCTP_PRINTF("Error, sp is NULL, locked on sending is non-null strm:%d\n",
163953Srrs					    asoc->locked_on_sending->stream_no);
163953Srrs				} else {
163953Srrs					if ((sp->length == 0) && (sp->msg_is_complete == 0)) {
163953Srrs						asoc->state |= SCTP_STATE_PARTIAL_MSG_LEFT;
163953Srrs					}
163953Srrs				}
163953Srrs			}
163953Srrs			if (TAILQ_EMPTY(&asoc->send_queue) &&
163953Srrs			    TAILQ_EMPTY(&asoc->sent_queue) &&
163953Srrs			    (asoc->state & SCTP_STATE_PARTIAL_MSG_LEFT)) {
163953Srrs				struct mbuf *op_err;
163953Srrs
163953Srrs		abort_anyway:
163953Srrs				op_err = sctp_get_mbuf_for_msg((sizeof(struct sctp_paramhdr) + sizeof(uint32_t)),
163953Srrs				    0, M_DONTWAIT, 1, MT_DATA);
163953Srrs				if (op_err) {
163953Srrs					/* Fill in the user initiated abort */
163953Srrs					struct sctp_paramhdr *ph;
163953Srrs					uint32_t *ippp;
163953Srrs
165647Srrs					SCTP_BUF_LEN(op_err) =
163953Srrs					    sizeof(struct sctp_paramhdr) + sizeof(uint32_t);
163953Srrs					ph = mtod(op_err,
163953Srrs					    struct sctp_paramhdr *);
163953Srrs					ph->param_type = htons(
163953Srrs					    SCTP_CAUSE_USER_INITIATED_ABT);
165647Srrs					ph->param_length = htons(SCTP_BUF_LEN(op_err));
163953Srrs					ippp = (uint32_t *) (ph + 1);
165220Srrs					*ippp = htonl(SCTP_FROM_SCTP_USRREQ + SCTP_LOC_6);
163953Srrs				}
172396Srrs#if defined(SCTP_PANIC_ON_ABORT)
172396Srrs				panic("shutdown does an abort");
172396Srrs#endif
165220Srrs				stcb->sctp_ep->last_abort_code = SCTP_FROM_SCTP_USRREQ + SCTP_LOC_6;
163953Srrs				sctp_abort_an_association(stcb->sctp_ep, stcb,
163953Srrs				    SCTP_RESPONSE_TO_USER_REQ,
172090Srrs				    op_err, SCTP_SO_LOCKED);
163953Srrs				goto skip_unlock;
171990Srrs			} else {
172090Srrs				sctp_chunk_output(inp, stcb, SCTP_OUTPUT_FROM_CLOSING, SCTP_SO_LOCKED);
163953Srrs			}
163953Srrs		}
163953Srrs		SCTP_TCB_UNLOCK(stcb);
163953Srrs	}
163953Srrsskip_unlock:
163953Srrs	SCTP_INP_RUNLOCK(inp);
163953Srrs	return 0;
163953Srrs}
163953Srrs
163953Srrs/*
163953Srrs * copies a "user" presentable address and removes embedded scope, etc.
163953Srrs * returns 0 on success, 1 on error
163953Srrs */
163953Srrsstatic uint32_t
163953Srrssctp_fill_user_address(struct sockaddr_storage *ss, struct sockaddr *sa)
163953Srrs{
178251Srrs#ifdef INET6
163953Srrs	struct sockaddr_in6 lsa6;
163953Srrs
163953Srrs	sa = (struct sockaddr *)sctp_recover_scope((struct sockaddr_in6 *)sa,
163953Srrs	    &lsa6);
178251Srrs#endif
163953Srrs	memcpy(ss, sa, sa->sa_len);
163953Srrs	return (0);
163953Srrs}
163953Srrs
163953Srrs
163953Srrs
172091Srrs/*
172091Srrs * NOTE: assumes addr lock is held
172091Srrs */
166675Srrsstatic size_t
168124Srrssctp_fill_up_addresses_vrf(struct sctp_inpcb *inp,
163953Srrs    struct sctp_tcb *stcb,
166675Srrs    size_t limit,
167598Srrs    struct sockaddr_storage *sas,
167598Srrs    uint32_t vrf_id)
163953Srrs{
167598Srrs	struct sctp_ifn *sctp_ifn;
167598Srrs	struct sctp_ifa *sctp_ifa;
166675Srrs	int loopback_scope, ipv4_local_scope, local_scope, site_scope;
166675Srrs	size_t actual;
163953Srrs	int ipv4_addr_legal, ipv6_addr_legal;
167598Srrs	struct sctp_vrf *vrf;
163953Srrs
163953Srrs	actual = 0;
163953Srrs	if (limit <= 0)
163953Srrs		return (actual);
163953Srrs
163953Srrs	if (stcb) {
163953Srrs		/* Turn on all the appropriate scope */
163953Srrs		loopback_scope = stcb->asoc.loopback_scope;
163953Srrs		ipv4_local_scope = stcb->asoc.ipv4_local_scope;
163953Srrs		local_scope = stcb->asoc.local_scope;
163953Srrs		site_scope = stcb->asoc.site_scope;
163953Srrs	} else {
163953Srrs		/* Turn on ALL scope, since we look at the EP */
163953Srrs		loopback_scope = ipv4_local_scope = local_scope =
163953Srrs		    site_scope = 1;
163953Srrs	}
163953Srrs	ipv4_addr_legal = ipv6_addr_legal = 0;
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) {
163953Srrs		ipv6_addr_legal = 1;
166023Srrs		if (SCTP_IPV6_V6ONLY(inp) == 0) {
163953Srrs			ipv4_addr_legal = 1;
163953Srrs		}
163953Srrs	} else {
163953Srrs		ipv4_addr_legal = 1;
163953Srrs	}
167598Srrs	vrf = sctp_find_vrf(vrf_id);
167598Srrs	if (vrf == NULL) {
167598Srrs		return (0);
167598Srrs	}
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
167598Srrs		LIST_FOREACH(sctp_ifn, &vrf->ifnlist, next_ifn) {
163953Srrs			if ((loopback_scope == 0) &&
167598Srrs			    SCTP_IFN_IS_IFT_LOOP(sctp_ifn)) {
163953Srrs				/* Skip loopback if loopback_scope not set */
163953Srrs				continue;
163953Srrs			}
167598Srrs			LIST_FOREACH(sctp_ifa, &sctp_ifn->ifalist, next_ifa) {
163953Srrs				if (stcb) {
163953Srrs					/*
163953Srrs					 * For the BOUND-ALL case, the list
163953Srrs					 * associated with a TCB is Always
163953Srrs					 * considered a reverse list.. i.e.
163953Srrs					 * it lists addresses that are NOT
163953Srrs					 * part of the association. If this
163953Srrs					 * is one of those we must skip it.
163953Srrs					 */
163953Srrs					if (sctp_is_addr_restricted(stcb,
167598Srrs					    sctp_ifa)) {
163953Srrs						continue;
163953Srrs					}
163953Srrs				}
178251Srrs				switch (sctp_ifa->address.sa.sa_family) {
221249Stuexen#ifdef INET
178251Srrs				case AF_INET:
178251Srrs					if (ipv4_addr_legal) {
178251Srrs						struct sockaddr_in *sin;
163953Srrs
178251Srrs						sin = (struct sockaddr_in *)&sctp_ifa->address.sa;
178251Srrs						if (sin->sin_addr.s_addr == 0) {
178251Srrs							/*
178251Srrs							 * we skip
178251Srrs							 * unspecifed
178251Srrs							 * addresses
178251Srrs							 */
178251Srrs							continue;
178251Srrs						}
178251Srrs						if ((ipv4_local_scope == 0) &&
178251Srrs						    (IN4_ISPRIVATE_ADDRESS(&sin->sin_addr))) {
178251Srrs							continue;
178251Srrs						}
178251Srrs#ifdef INET6
178251Srrs						if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NEEDS_MAPPED_V4)) {
178251Srrs							in6_sin_2_v4mapsin6(sin, (struct sockaddr_in6 *)sas);
178251Srrs							((struct sockaddr_in6 *)sas)->sin6_port = inp->sctp_lport;
178251Srrs							sas = (struct sockaddr_storage *)((caddr_t)sas + sizeof(struct sockaddr_in6));
178251Srrs							actual += sizeof(struct sockaddr_in6);
178251Srrs						} else {
178251Srrs#endif
178251Srrs							memcpy(sas, sin, sizeof(*sin));
178251Srrs							((struct sockaddr_in *)sas)->sin_port = inp->sctp_lport;
178251Srrs							sas = (struct sockaddr_storage *)((caddr_t)sas + sizeof(*sin));
178251Srrs							actual += sizeof(*sin);
178251Srrs#ifdef INET6
178251Srrs						}
178251Srrs#endif
178251Srrs						if (actual >= limit) {
178251Srrs							return (actual);
178251Srrs						}
178251Srrs					} else {
163953Srrs						continue;
163953Srrs					}
178251Srrs					break;
221249Stuexen#endif
178251Srrs#ifdef INET6
178251Srrs				case AF_INET6:
178251Srrs					if (ipv6_addr_legal) {
178251Srrs						struct sockaddr_in6 *sin6;
163953Srrs
178251Srrs						sin6 = (struct sockaddr_in6 *)&sctp_ifa->address.sa;
178251Srrs						if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
178251Srrs							/*
178251Srrs							 * we skip
178251Srrs							 * unspecifed
178251Srrs							 * addresses
178251Srrs							 */
163953Srrs							continue;
178251Srrs						}
178251Srrs						if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr)) {
178251Srrs							if (local_scope == 0)
163953Srrs								continue;
178251Srrs							if (sin6->sin6_scope_id == 0) {
178251Srrs								if (sa6_recoverscope(sin6) != 0)
178251Srrs									/*
178251Srrs									 *
178251Srrs									 * bad
178251Srrs									 *
178251Srrs									 * li
178251Srrs									 * nk
178251Srrs									 *
178251Srrs									 * loc
178251Srrs									 * al
178251Srrs									 *
178251Srrs									 * add
178251Srrs									 * re
178251Srrs									 * ss
178251Srrs									 * */
178251Srrs									continue;
178251Srrs							}
163953Srrs						}
178251Srrs						if ((site_scope == 0) &&
178251Srrs						    (IN6_IS_ADDR_SITELOCAL(&sin6->sin6_addr))) {
178251Srrs							continue;
178251Srrs						}
178251Srrs						memcpy(sas, sin6, sizeof(*sin6));
178251Srrs						((struct sockaddr_in6 *)sas)->sin6_port = inp->sctp_lport;
178251Srrs						sas = (struct sockaddr_storage *)((caddr_t)sas + sizeof(*sin6));
178251Srrs						actual += sizeof(*sin6);
178251Srrs						if (actual >= limit) {
178251Srrs							return (actual);
178251Srrs						}
178251Srrs					} else {
163953Srrs						continue;
163953Srrs					}
178251Srrs					break;
178251Srrs#endif
178251Srrs				default:
178251Srrs					/* TSNH */
178251Srrs					break;
163953Srrs				}
163953Srrs			}
163953Srrs		}
163953Srrs	} else {
163953Srrs		struct sctp_laddr *laddr;
163953Srrs
167598Srrs		LIST_FOREACH(laddr, &inp->sctp_addr_list, sctp_nxt_addr) {
167598Srrs			if (stcb) {
167598Srrs				if (sctp_is_addr_restricted(stcb, laddr->ifa)) {
163953Srrs					continue;
163953Srrs				}
163953Srrs			}
167598Srrs			if (sctp_fill_user_address(sas, &laddr->ifa->address.sa))
167598Srrs				continue;
167598Srrs
167598Srrs			((struct sockaddr_in6 *)sas)->sin6_port = inp->sctp_lport;
167598Srrs			sas = (struct sockaddr_storage *)((caddr_t)sas +
167598Srrs			    laddr->ifa->address.sa.sa_len);
167598Srrs			actual += laddr->ifa->address.sa.sa_len;
167598Srrs			if (actual >= limit) {
167598Srrs				return (actual);
163953Srrs			}
163953Srrs		}
163953Srrs	}
163953Srrs	return (actual);
163953Srrs}
163953Srrs
168124Srrsstatic size_t
168124Srrssctp_fill_up_addresses(struct sctp_inpcb *inp,
168124Srrs    struct sctp_tcb *stcb,
168124Srrs    size_t limit,
168124Srrs    struct sockaddr_storage *sas)
168124Srrs{
168124Srrs	size_t size = 0;
168124Srrs
172218Srrs	SCTP_IPI_ADDR_RLOCK();
168124Srrs	/* fill up addresses for the endpoint's default vrf */
168124Srrs	size = sctp_fill_up_addresses_vrf(inp, stcb, limit, sas,
168124Srrs	    inp->def_vrf_id);
172218Srrs	SCTP_IPI_ADDR_RUNLOCK();
168124Srrs	return (size);
168124Srrs}
168124Srrs
172091Srrs/*
172091Srrs * NOTE: assumes addr lock is held
172091Srrs */
163953Srrsstatic int
168124Srrssctp_count_max_addresses_vrf(struct sctp_inpcb *inp, uint32_t vrf_id)
163953Srrs{
163953Srrs	int cnt = 0;
167598Srrs	struct sctp_vrf *vrf = NULL;
163953Srrs
163953Srrs	/*
163953Srrs	 * In both sub-set bound an bound_all cases we return the MAXIMUM
163953Srrs	 * number of addresses that you COULD get. In reality the sub-set
163953Srrs	 * bound may have an exclusion list for a given TCB OR in the
163953Srrs	 * bound-all case a TCB may NOT include the loopback or other
163953Srrs	 * addresses as well.
163953Srrs	 */
167598Srrs	vrf = sctp_find_vrf(vrf_id);
167598Srrs	if (vrf == NULL) {
167598Srrs		return (0);
167598Srrs	}
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
167598Srrs		struct sctp_ifn *sctp_ifn;
167598Srrs		struct sctp_ifa *sctp_ifa;
163953Srrs
167598Srrs		LIST_FOREACH(sctp_ifn, &vrf->ifnlist, next_ifn) {
167598Srrs			LIST_FOREACH(sctp_ifa, &sctp_ifn->ifalist, next_ifa) {
163953Srrs				/* Count them if they are the right type */
221249Stuexen				switch (sctp_ifa->address.sa.sa_family) {
221249Stuexen#ifdef INET
221249Stuexen				case AF_INET:
178251Srrs					if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NEEDS_MAPPED_V4))
163953Srrs						cnt += sizeof(struct sockaddr_in6);
163953Srrs					else
163953Srrs						cnt += sizeof(struct sockaddr_in);
221249Stuexen					break;
221249Stuexen#endif
221249Stuexen#ifdef INET6
221249Stuexen				case AF_INET6:
163953Srrs					cnt += sizeof(struct sockaddr_in6);
221249Stuexen					break;
221249Stuexen#endif
221249Stuexen				default:
221249Stuexen					break;
221249Stuexen				}
163953Srrs			}
163953Srrs		}
163953Srrs	} else {
163953Srrs		struct sctp_laddr *laddr;
163953Srrs
163953Srrs		LIST_FOREACH(laddr, &inp->sctp_addr_list, sctp_nxt_addr) {
221249Stuexen			switch (laddr->ifa->address.sa.sa_family) {
221249Stuexen#ifdef INET
221249Stuexen			case AF_INET:
178251Srrs				if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NEEDS_MAPPED_V4))
163953Srrs					cnt += sizeof(struct sockaddr_in6);
163953Srrs				else
163953Srrs					cnt += sizeof(struct sockaddr_in);
221249Stuexen				break;
221249Stuexen#endif
221249Stuexen#ifdef INET6
221249Stuexen			case AF_INET6:
163953Srrs				cnt += sizeof(struct sockaddr_in6);
221249Stuexen				break;
221249Stuexen#endif
221249Stuexen			default:
221249Stuexen				break;
221249Stuexen			}
163953Srrs		}
163953Srrs	}
163953Srrs	return (cnt);
163953Srrs}
163953Srrs
168124Srrsstatic int
168124Srrssctp_count_max_addresses(struct sctp_inpcb *inp)
168124Srrs{
168124Srrs	int cnt = 0;
166675Srrs
172218Srrs	SCTP_IPI_ADDR_RLOCK();
168124Srrs	/* count addresses for the endpoint's default VRF */
168124Srrs	cnt = sctp_count_max_addresses_vrf(inp, inp->def_vrf_id);
172218Srrs	SCTP_IPI_ADDR_RUNLOCK();
168124Srrs	return (cnt);
168124Srrs}
168124Srrs
163953Srrsstatic int
166675Srrssctp_do_connect_x(struct socket *so, struct sctp_inpcb *inp, void *optval,
166675Srrs    size_t optsize, void *p, int delay)
163953Srrs{
163953Srrs	int error = 0;
163953Srrs	int creat_lock_on = 0;
163953Srrs	struct sctp_tcb *stcb = NULL;
163953Srrs	struct sockaddr *sa;
169352Srrs	int num_v6 = 0, num_v4 = 0, *totaddrp, totaddr;
169352Srrs	int added = 0;
167598Srrs	uint32_t vrf_id;
170056Srrs	int bad_addresses = 0;
167598Srrs	sctp_assoc_t *a_id;
163953Srrs
169420Srrs	SCTPDBG(SCTP_DEBUG_PCB1, "Connectx called\n");
163953Srrs
163953Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) &&
163953Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED)) {
163953Srrs		/* We are already connected AND the TCP model */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, EADDRINUSE);
163953Srrs		return (EADDRINUSE);
163953Srrs	}
181054Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_IN_TCPPOOL) &&
181054Srrs	    (sctp_is_feature_off(inp, SCTP_PCB_FLAGS_PORTREUSE))) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return (EINVAL);
163953Srrs	}
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED) {
163953Srrs		SCTP_INP_RLOCK(inp);
163953Srrs		stcb = LIST_FIRST(&inp->sctp_asoc_list);
163953Srrs		SCTP_INP_RUNLOCK(inp);
163953Srrs	}
163953Srrs	if (stcb) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, EALREADY);
163953Srrs		return (EALREADY);
163953Srrs	}
163953Srrs	SCTP_INP_INCR_REF(inp);
163953Srrs	SCTP_ASOC_CREATE_LOCK(inp);
163953Srrs	creat_lock_on = 1;
163953Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_SOCKET_ALLGONE) ||
163953Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_SOCKET_GONE)) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, EFAULT);
163953Srrs		error = EFAULT;
163953Srrs		goto out_now;
163953Srrs	}
166675Srrs	totaddrp = (int *)optval;
163953Srrs	totaddr = *totaddrp;
163953Srrs	sa = (struct sockaddr *)(totaddrp + 1);
170056Srrs	stcb = sctp_connectx_helper_find(inp, sa, &totaddr, &num_v4, &num_v6, &error, (optsize - sizeof(int)), &bad_addresses);
170056Srrs	if ((stcb != NULL) || bad_addresses) {
169352Srrs		/* Already have or am bring up an association */
169352Srrs		SCTP_ASOC_CREATE_UNLOCK(inp);
169352Srrs		creat_lock_on = 0;
170931Srrs		if (stcb)
170931Srrs			SCTP_TCB_UNLOCK(stcb);
171943Srrs		if (bad_addresses == 0) {
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EALREADY);
170056Srrs			error = EALREADY;
171943Srrs		}
169352Srrs		goto out_now;
163953Srrs	}
163953Srrs#ifdef INET6
163953Srrs	if (((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0) &&
163953Srrs	    (num_v6 > 0)) {
163953Srrs		error = EINVAL;
163953Srrs		goto out_now;
163953Srrs	}
163953Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
163953Srrs	    (num_v4 > 0)) {
163953Srrs		struct in6pcb *inp6;
163953Srrs
163953Srrs		inp6 = (struct in6pcb *)inp;
166023Srrs		if (SCTP_IPV6_V6ONLY(inp6)) {
163953Srrs			/*
163953Srrs			 * if IPV6_V6ONLY flag, ignore connections destined
163953Srrs			 * to a v4 addr or v4-mapped addr
163953Srrs			 */
171943Srrs			SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs			error = EINVAL;
163953Srrs			goto out_now;
163953Srrs		}
163953Srrs	}
163953Srrs#endif				/* INET6 */
163953Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_UNBOUND) ==
163953Srrs	    SCTP_PCB_FLAGS_UNBOUND) {
163953Srrs		/* Bind a ephemeral port */
171572Srrs		error = sctp_inpcb_bind(so, NULL, NULL, p);
163953Srrs		if (error) {
163953Srrs			goto out_now;
163953Srrs		}
163953Srrs	}
167695Srrs	/* FIX ME: do we want to pass in a vrf on the connect call? */
167695Srrs	vrf_id = inp->def_vrf_id;
167695Srrs
181054Srrs
163953Srrs	/* We are GOOD to go */
206137Stuexen	stcb = sctp_aloc_assoc(inp, sa, &error, 0, vrf_id,
171531Srrs	    (struct thread *)p
171531Srrs	    );
163953Srrs	if (stcb == NULL) {
163953Srrs		/* Gak! no memory */
163953Srrs		goto out_now;
163953Srrs	}
171943Srrs	SCTP_SET_STATE(&stcb->asoc, SCTP_STATE_COOKIE_WAIT);
163953Srrs	/* move to second address */
221249Stuexen	switch (sa->sa_family) {
221249Stuexen#ifdef INET
221249Stuexen	case AF_INET:
163953Srrs		sa = (struct sockaddr *)((caddr_t)sa + sizeof(struct sockaddr_in));
221249Stuexen		break;
221249Stuexen#endif
221249Stuexen#ifdef INET6
221249Stuexen	case AF_INET6:
163953Srrs		sa = (struct sockaddr *)((caddr_t)sa + sizeof(struct sockaddr_in6));
221249Stuexen		break;
221249Stuexen#endif
221249Stuexen	default:
221249Stuexen		break;
221249Stuexen	}
163953Srrs
170056Srrs	error = 0;
169352Srrs	added = sctp_connectx_helper_add(stcb, sa, (totaddr - 1), &error);
167598Srrs	/* Fill in the return id */
170056Srrs	if (error) {
207924Srrs		(void)sctp_free_assoc(inp, stcb, SCTP_PCBFREE_FORCE, SCTP_FROM_SCTP_USRREQ + SCTP_LOC_6);
170056Srrs		goto out_now;
170056Srrs	}
167598Srrs	a_id = (sctp_assoc_t *) optval;
167598Srrs	*a_id = sctp_get_associd(stcb);
163953Srrs
163953Srrs	/* initialize authentication parameters for the assoc */
163953Srrs	sctp_initialize_auth_params(inp, stcb);
163953Srrs
163953Srrs	if (delay) {
163953Srrs		/* doing delayed connection */
163953Srrs		stcb->asoc.delayed_connection = 1;
163953Srrs		sctp_timer_start(SCTP_TIMER_TYPE_INIT, inp, stcb, stcb->asoc.primary_destination);
163953Srrs	} else {
169378Srrs		(void)SCTP_GETTIME_TIMEVAL(&stcb->asoc.time_entered);
172090Srrs		sctp_send_initiate(inp, stcb, SCTP_SO_LOCKED);
163953Srrs	}
163953Srrs	SCTP_TCB_UNLOCK(stcb);
163953Srrs	if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) {
163953Srrs		stcb->sctp_ep->sctp_flags |= SCTP_PCB_FLAGS_CONNECTED;
163953Srrs		/* Set the connected flag so we can queue data */
163953Srrs		soisconnecting(so);
163953Srrs	}
163953Srrsout_now:
169655Srrs	if (creat_lock_on) {
163953Srrs		SCTP_ASOC_CREATE_UNLOCK(inp);
169655Srrs	}
163953Srrs	SCTP_INP_DECR_REF(inp);
163953Srrs	return error;
163953Srrs}
163953Srrs
169420Srrs#define SCTP_FIND_STCB(inp, stcb, assoc_id) { \
169655Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) ||\
169655Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_IN_TCPPOOL)) { \
166675Srrs		SCTP_INP_RLOCK(inp); \
166675Srrs		stcb = LIST_FIRST(&inp->sctp_asoc_list); \
169655Srrs		if (stcb) { \
166675Srrs			SCTP_TCB_LOCK(stcb); \
169655Srrs                } \
166675Srrs		SCTP_INP_RUNLOCK(inp); \
166675Srrs	} else if (assoc_id != 0) { \
166675Srrs		stcb = sctp_findassociation_ep_asocid(inp, assoc_id, 1); \
166675Srrs		if (stcb == NULL) { \
171943Srrs		        SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT); \
166675Srrs			error = ENOENT; \
166675Srrs			break; \
166675Srrs		} \
166675Srrs	} else { \
166675Srrs		stcb = NULL; \
169420Srrs        } \
169420Srrs  }
163953Srrs
169420Srrs
169420Srrs#define SCTP_CHECK_AND_CAST(destp, srcp, type, size)  {\
166675Srrs	if (size < sizeof(type)) { \
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL); \
166675Srrs		error = EINVAL; \
166675Srrs		break; \
166675Srrs	} else { \
166675Srrs		destp = (type *)srcp; \
169420Srrs	} \
169420Srrs      }
163953Srrs
163953Srrsstatic int
166675Srrssctp_getopt(struct socket *so, int optname, void *optval, size_t *optsize,
166675Srrs    void *p)
163953Srrs{
171943Srrs	struct sctp_inpcb *inp = NULL;
166675Srrs	int error, val = 0;
163953Srrs	struct sctp_tcb *stcb = NULL;
163953Srrs
166675Srrs	if (optval == NULL) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
166675Srrs		return (EINVAL);
166675Srrs	}
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
171943Srrs	if (inp == 0) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return EINVAL;
171943Srrs	}
163953Srrs	error = 0;
163953Srrs
166675Srrs	switch (optname) {
163953Srrs	case SCTP_NODELAY:
163953Srrs	case SCTP_AUTOCLOSE:
163953Srrs	case SCTP_EXPLICIT_EOR:
163953Srrs	case SCTP_AUTO_ASCONF:
163953Srrs	case SCTP_DISABLE_FRAGMENTS:
163953Srrs	case SCTP_I_WANT_MAPPED_V4_ADDR:
163953Srrs	case SCTP_USE_EXT_RCVINFO:
163953Srrs		SCTP_INP_RLOCK(inp);
166675Srrs		switch (optname) {
163953Srrs		case SCTP_DISABLE_FRAGMENTS:
166675Srrs			val = sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NO_FRAGMENT);
163953Srrs			break;
163953Srrs		case SCTP_I_WANT_MAPPED_V4_ADDR:
166675Srrs			val = sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NEEDS_MAPPED_V4);
163953Srrs			break;
163953Srrs		case SCTP_AUTO_ASCONF:
171943Srrs			if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
171943Srrs				/* only valid for bound all sockets */
171943Srrs				val = sctp_is_feature_on(inp, SCTP_PCB_FLAGS_AUTO_ASCONF);
171943Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171943Srrs				error = EINVAL;
171943Srrs				goto flags_out;
171943Srrs			}
163953Srrs			break;
163953Srrs		case SCTP_EXPLICIT_EOR:
166675Srrs			val = sctp_is_feature_on(inp, SCTP_PCB_FLAGS_EXPLICIT_EOR);
163953Srrs			break;
163953Srrs		case SCTP_NODELAY:
166675Srrs			val = sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NODELAY);
163953Srrs			break;
163953Srrs		case SCTP_USE_EXT_RCVINFO:
166675Srrs			val = sctp_is_feature_on(inp, SCTP_PCB_FLAGS_EXT_RCVINFO);
163953Srrs			break;
163953Srrs		case SCTP_AUTOCLOSE:
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_AUTOCLOSE))
166675Srrs				val = TICKS_TO_SEC(inp->sctp_ep.auto_close_time);
163953Srrs			else
166675Srrs				val = 0;
163953Srrs			break;
163953Srrs
163953Srrs		default:
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOPROTOOPT);
163953Srrs			error = ENOPROTOOPT;
163953Srrs		}		/* end switch (sopt->sopt_name) */
166675Srrs		if (optname != SCTP_AUTOCLOSE) {
163953Srrs			/* make it an "on/off" value */
166675Srrs			val = (val != 0);
163953Srrs		}
166675Srrs		if (*optsize < sizeof(val)) {
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs			error = EINVAL;
163953Srrs		}
171943Srrsflags_out:
163953Srrs		SCTP_INP_RUNLOCK(inp);
163953Srrs		if (error == 0) {
163953Srrs			/* return the option value */
166675Srrs			*(int *)optval = val;
166675Srrs			*optsize = sizeof(val);
163953Srrs		}
163953Srrs		break;
170091Srrs	case SCTP_GET_PACKET_LOG:
170091Srrs		{
170091Srrs#ifdef  SCTP_PACKET_LOGGING
170091Srrs			uint8_t *target;
170091Srrs			int ret;
167598Srrs
170091Srrs			SCTP_CHECK_AND_CAST(target, optval, uint8_t, *optsize);
170091Srrs			ret = sctp_copy_out_packet_log(target, (int)*optsize);
170091Srrs			*optsize = ret;
170091Srrs#else
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EOPNOTSUPP);
170091Srrs			error = EOPNOTSUPP;
170091Srrs#endif
170091Srrs			break;
170091Srrs		}
181054Srrs	case SCTP_REUSE_PORT:
181054Srrs		{
181054Srrs			uint32_t *value;
181054Srrs
181054Srrs			if ((inp->sctp_flags & SCTP_PCB_FLAGS_UDPTYPE)) {
181054Srrs				/* Can't do this for a 1-m socket */
181054Srrs				error = EINVAL;
181054Srrs				break;
181054Srrs			}
181054Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, *optsize);
181054Srrs			*value = sctp_is_feature_on(inp, SCTP_PCB_FLAGS_PORTREUSE);
181054Srrs			*optsize = sizeof(uint32_t);
181054Srrs		}
181054Srrs		break;
163953Srrs	case SCTP_PARTIAL_DELIVERY_POINT:
163953Srrs		{
166675Srrs			uint32_t *value;
166675Srrs
166675Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, *optsize);
166675Srrs			*value = inp->partial_delivery_point;
166675Srrs			*optsize = sizeof(uint32_t);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_FRAGMENT_INTERLEAVE:
163953Srrs		{
166675Srrs			uint32_t *value;
166675Srrs
166675Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, *optsize);
168943Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_FRAG_INTERLEAVE)) {
168943Srrs				if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_INTERLEAVE_STRMS)) {
168943Srrs					*value = SCTP_FRAG_LEVEL_2;
168943Srrs				} else {
168943Srrs					*value = SCTP_FRAG_LEVEL_1;
168943Srrs				}
168943Srrs			} else {
168943Srrs				*value = SCTP_FRAG_LEVEL_0;
168943Srrs			}
166675Srrs			*optsize = sizeof(uint32_t);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_CMT_ON_OFF:
163953Srrs		{
166675Srrs			struct sctp_assoc_value *av;
166675Srrs
166675Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, *optsize);
211944Stuexen			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
211944Stuexen			if (stcb) {
211944Stuexen				av->assoc_value = stcb->asoc.sctp_cmt_on_off;
211944Stuexen				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
211944Stuexen				SCTP_INP_RLOCK(inp);
211944Stuexen				av->assoc_value = inp->sctp_cmt_on_off;
211944Stuexen				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
166675Srrs			*optsize = sizeof(*av);
163953Srrs		}
163953Srrs		break;
171440Srrs		/* JRS - Get socket option for pluggable congestion control */
171440Srrs	case SCTP_PLUGGABLE_CC:
171440Srrs		{
171440Srrs			struct sctp_assoc_value *av;
171440Srrs
171440Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, *optsize);
171440Srrs			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
171440Srrs			if (stcb) {
171440Srrs				av->assoc_value = stcb->asoc.congestion_control_module;
171440Srrs				SCTP_TCB_UNLOCK(stcb);
171440Srrs			} else {
171440Srrs				av->assoc_value = inp->sctp_ep.sctp_default_cc_module;
171440Srrs			}
171440Srrs			*optsize = sizeof(*av);
171440Srrs		}
171440Srrs		break;
219057Srrs	case SCTP_CC_OPTION:
219057Srrs		{
219057Srrs			struct sctp_cc_option *cc_opt;
219057Srrs
219057Srrs			SCTP_CHECK_AND_CAST(cc_opt, optval, struct sctp_cc_option, *optsize);
219057Srrs			SCTP_FIND_STCB(inp, stcb, cc_opt->aid_value.assoc_id);
219057Srrs			if (stcb == NULL) {
219057Srrs				error = EINVAL;
219057Srrs			} else {
219057Srrs				if (stcb->asoc.cc_functions.sctp_cwnd_socket_option == NULL) {
219057Srrs					error = ENOTSUP;
219057Srrs				} else {
219057Srrs					error = (*stcb->asoc.cc_functions.sctp_cwnd_socket_option) (stcb, 0,
219057Srrs					    cc_opt);
219057Srrs					*optsize = sizeof(*cc_opt);
219057Srrs				}
219057Srrs				SCTP_TCB_UNLOCK(stcb);
219057Srrs			}
219057Srrs		}
219120Srrs		break;
217760Stuexen		/* RS - Get socket option for pluggable stream scheduling */
217760Stuexen	case SCTP_PLUGGABLE_SS:
217760Stuexen		{
217760Stuexen			struct sctp_assoc_value *av;
217760Stuexen
217760Stuexen			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, *optsize);
217760Stuexen			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
217760Stuexen			if (stcb) {
217760Stuexen				av->assoc_value = stcb->asoc.stream_scheduling_module;
217760Stuexen				SCTP_TCB_UNLOCK(stcb);
217760Stuexen			} else {
217760Stuexen				av->assoc_value = inp->sctp_ep.sctp_default_ss_module;
217760Stuexen			}
217760Stuexen			*optsize = sizeof(*av);
217760Stuexen		}
217760Stuexen		break;
217760Stuexen	case SCTP_SS_VALUE:
217760Stuexen		{
217760Stuexen			struct sctp_stream_value *av;
217760Stuexen
217760Stuexen			SCTP_CHECK_AND_CAST(av, optval, struct sctp_stream_value, *optsize);
217760Stuexen			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
217760Stuexen			if (stcb) {
217760Stuexen				if (stcb->asoc.ss_functions.sctp_ss_get_value(stcb, &stcb->asoc, &stcb->asoc.strmout[av->stream_id],
217760Stuexen				    &av->stream_value) < 0) {
217760Stuexen					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
217760Stuexen					error = EINVAL;
217760Stuexen				} else {
217760Stuexen					*optsize = sizeof(*av);
217760Stuexen				}
217760Stuexen				SCTP_TCB_UNLOCK(stcb);
217760Stuexen			} else {
217760Stuexen				/*
217760Stuexen				 * Can't get stream value without
217760Stuexen				 * association
217760Stuexen				 */
217760Stuexen				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
217760Stuexen				error = EINVAL;
217760Stuexen			}
217760Stuexen		}
217760Stuexen		break;
163953Srrs	case SCTP_GET_ADDR_LEN:
163953Srrs		{
163953Srrs			struct sctp_assoc_value *av;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, *optsize);
163953Srrs			error = EINVAL;
167598Srrs#ifdef INET
163953Srrs			if (av->assoc_value == AF_INET) {
163953Srrs				av->assoc_value = sizeof(struct sockaddr_in);
163953Srrs				error = 0;
163953Srrs			}
163953Srrs#endif
167598Srrs#ifdef INET6
163953Srrs			if (av->assoc_value == AF_INET6) {
163953Srrs				av->assoc_value = sizeof(struct sockaddr_in6);
163953Srrs				error = 0;
163953Srrs			}
163953Srrs#endif
172091Srrs			if (error) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
172091Srrs			}
166675Srrs			*optsize = sizeof(*av);
163953Srrs		}
163953Srrs		break;
169655Srrs	case SCTP_GET_ASSOC_NUMBER:
163953Srrs		{
169655Srrs			uint32_t *value, cnt;
163953Srrs
169655Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, *optsize);
163953Srrs			cnt = 0;
163953Srrs			SCTP_INP_RLOCK(inp);
169655Srrs			LIST_FOREACH(stcb, &inp->sctp_asoc_list, sctp_tcblist) {
169655Srrs				cnt++;
163953Srrs			}
169655Srrs			SCTP_INP_RUNLOCK(inp);
169655Srrs			*value = cnt;
169655Srrs			*optsize = sizeof(uint32_t);
169655Srrs		}
169655Srrs		break;
163953Srrs
169655Srrs	case SCTP_GET_ASSOC_ID_LIST:
169655Srrs		{
169655Srrs			struct sctp_assoc_ids *ids;
169655Srrs			unsigned int at, limit;
169655Srrs
169655Srrs			SCTP_CHECK_AND_CAST(ids, optval, struct sctp_assoc_ids, *optsize);
163953Srrs			at = 0;
185694Srrs			limit = (*optsize - sizeof(uint32_t)) / sizeof(sctp_assoc_t);
169655Srrs			SCTP_INP_RLOCK(inp);
169655Srrs			LIST_FOREACH(stcb, &inp->sctp_asoc_list, sctp_tcblist) {
169655Srrs				if (at < limit) {
169655Srrs					ids->gaids_assoc_id[at++] = sctp_get_associd(stcb);
169655Srrs				} else {
169655Srrs					error = EINVAL;
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
163953Srrs					break;
163953Srrs				}
163953Srrs			}
163953Srrs			SCTP_INP_RUNLOCK(inp);
185694Srrs			ids->gaids_number_of_ids = at;
185694Srrs			*optsize = ((at * sizeof(sctp_assoc_t)) + sizeof(uint32_t));
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_CONTEXT:
163953Srrs		{
163953Srrs			struct sctp_assoc_value *av;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
166675Srrs
166675Srrs			if (stcb) {
166675Srrs				av->assoc_value = stcb->asoc.context;
166675Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
166675Srrs				SCTP_INP_RLOCK(inp);
163953Srrs				av->assoc_value = inp->sctp_context;
166675Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
166675Srrs			*optsize = sizeof(*av);
163953Srrs		}
163953Srrs		break;
167598Srrs	case SCTP_VRF_ID:
167598Srrs		{
170056Srrs			uint32_t *default_vrfid;
167598Srrs
170056Srrs			SCTP_CHECK_AND_CAST(default_vrfid, optval, uint32_t, *optsize);
170056Srrs			*default_vrfid = inp->def_vrf_id;
167598Srrs			break;
167598Srrs		}
167598Srrs	case SCTP_GET_ASOC_VRF:
167598Srrs		{
167598Srrs			struct sctp_assoc_value *id;
167598Srrs
167598Srrs			SCTP_CHECK_AND_CAST(id, optval, struct sctp_assoc_value, *optsize);
167598Srrs			SCTP_FIND_STCB(inp, stcb, id->assoc_id);
167598Srrs			if (stcb == NULL) {
167598Srrs				error = EINVAL;
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
167598Srrs				break;
167598Srrs			}
167598Srrs			id->assoc_value = stcb->asoc.vrf_id;
167598Srrs			break;
167598Srrs		}
167598Srrs	case SCTP_GET_VRF_IDS:
167598Srrs		{
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EOPNOTSUPP);
167598Srrs			error = EOPNOTSUPP;
167598Srrs			break;
167598Srrs		}
163953Srrs	case SCTP_GET_NONCE_VALUES:
163953Srrs		{
163953Srrs			struct sctp_get_nonce_values *gnv;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(gnv, optval, struct sctp_get_nonce_values, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, gnv->gn_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
163953Srrs				gnv->gn_peers_tag = stcb->asoc.peer_vtag;
163953Srrs				gnv->gn_local_tag = stcb->asoc.my_vtag;
163953Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOTCONN);
166675Srrs				error = ENOTCONN;
163953Srrs			}
166675Srrs			*optsize = sizeof(*gnv);
163953Srrs		}
163953Srrs		break;
170056Srrs	case SCTP_DELAYED_SACK:
163953Srrs		{
170056Srrs			struct sctp_sack_info *sack;
163953Srrs
170056Srrs			SCTP_CHECK_AND_CAST(sack, optval, struct sctp_sack_info, *optsize);
170056Srrs			SCTP_FIND_STCB(inp, stcb, sack->sack_assoc_id);
166675Srrs			if (stcb) {
170056Srrs				sack->sack_delay = stcb->asoc.delayed_ack;
170056Srrs				sack->sack_freq = stcb->asoc.sack_freq;
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
163953Srrs				SCTP_INP_RLOCK(inp);
170056Srrs				sack->sack_delay = TICKS_TO_MSEC(inp->sctp_ep.sctp_timeoutticks[SCTP_TIMER_RECV]);
170056Srrs				sack->sack_freq = inp->sctp_ep.sctp_sack_freq;
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
170056Srrs			*optsize = sizeof(*sack);
163953Srrs		}
163953Srrs		break;
163953Srrs
163953Srrs	case SCTP_GET_SNDBUF_USE:
166675Srrs		{
163953Srrs			struct sctp_sockstat *ss;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(ss, optval, struct sctp_sockstat, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, ss->ss_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
166675Srrs				ss->ss_total_sndbuf = stcb->asoc.total_output_queue_size;
166675Srrs				ss->ss_total_recv_buf = (stcb->asoc.size_on_reasm_queue +
166675Srrs				    stcb->asoc.size_on_all_streams);
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOTCONN);
163953Srrs				error = ENOTCONN;
163953Srrs			}
166675Srrs			*optsize = sizeof(struct sctp_sockstat);
163953Srrs		}
163953Srrs		break;
170056Srrs	case SCTP_MAX_BURST:
163953Srrs		{
217895Stuexen			struct sctp_assoc_value *av;
163953Srrs
217895Stuexen			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, *optsize);
217895Stuexen			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
166675Srrs
217895Stuexen			if (stcb) {
217895Stuexen				av->assoc_value = stcb->asoc.max_burst;
217895Stuexen				SCTP_TCB_UNLOCK(stcb);
217894Stuexen			} else {
217895Stuexen				SCTP_INP_RLOCK(inp);
217895Stuexen				av->assoc_value = inp->sctp_ep.max_burst;
217895Stuexen				SCTP_INP_RUNLOCK(inp);
217894Stuexen			}
217895Stuexen			*optsize = sizeof(struct sctp_assoc_value);
217895Stuexen
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_MAXSEG:
163953Srrs		{
167598Srrs			struct sctp_assoc_value *av;
163953Srrs			int ovh;
163953Srrs
167598Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, *optsize);
170056Srrs			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
163953Srrs
167598Srrs			if (stcb) {
167598Srrs				av->assoc_value = sctp_get_frag_point(stcb, &stcb->asoc);
167598Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
167598Srrs				SCTP_INP_RLOCK(inp);
167598Srrs				if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) {
167598Srrs					ovh = SCTP_MED_OVERHEAD;
167598Srrs				} else {
167598Srrs					ovh = SCTP_MED_V4_OVERHEAD;
167598Srrs				}
170056Srrs				if (inp->sctp_frag_point >= SCTP_DEFAULT_MAXSEGMENT)
170056Srrs					av->assoc_value = 0;
170056Srrs				else
170056Srrs					av->assoc_value = inp->sctp_frag_point - ovh;
167598Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
167598Srrs			*optsize = sizeof(struct sctp_assoc_value);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_GET_STAT_LOG:
167598Srrs		error = sctp_fill_stat_log(optval, optsize);
163953Srrs		break;
163953Srrs	case SCTP_EVENTS:
163953Srrs		{
163953Srrs			struct sctp_event_subscribe *events;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(events, optval, struct sctp_event_subscribe, *optsize);
163953Srrs			memset(events, 0, sizeof(*events));
163953Srrs			SCTP_INP_RLOCK(inp);
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_RECVDATAIOEVNT))
163953Srrs				events->sctp_data_io_event = 1;
163953Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_RECVASSOCEVNT))
163953Srrs				events->sctp_association_event = 1;
163953Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_RECVPADDREVNT))
163953Srrs				events->sctp_address_event = 1;
163953Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_RECVSENDFAILEVNT))
163953Srrs				events->sctp_send_failure_event = 1;
163953Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_RECVPEERERR))
163953Srrs				events->sctp_peer_error_event = 1;
163953Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_RECVSHUTDOWNEVNT))
163953Srrs				events->sctp_shutdown_event = 1;
163953Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_PDAPIEVNT))
163953Srrs				events->sctp_partial_delivery_event = 1;
163953Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_ADAPTATIONEVNT))
163953Srrs				events->sctp_adaptation_layer_event = 1;
163953Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_AUTHEVNT))
163953Srrs				events->sctp_authentication_event = 1;
163953Srrs
185694Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_DRYEVNT))
185694Srrs				events->sctp_sender_dry_event = 1;
185694Srrs
163953Srrs			if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_STREAM_RESETEVNT))
202520Srrs				events->sctp_stream_reset_event = 1;
163953Srrs			SCTP_INP_RUNLOCK(inp);
166675Srrs			*optsize = sizeof(struct sctp_event_subscribe);
163953Srrs		}
163953Srrs		break;
163953Srrs
163953Srrs	case SCTP_ADAPTATION_LAYER:
166675Srrs		{
166675Srrs			uint32_t *value;
166675Srrs
166675Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, *optsize);
166675Srrs
166675Srrs			SCTP_INP_RLOCK(inp);
166675Srrs			*value = inp->sctp_ep.adaptation_layer_indicator;
166675Srrs			SCTP_INP_RUNLOCK(inp);
166675Srrs			*optsize = sizeof(uint32_t);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_SET_INITIAL_DBG_SEQ:
166675Srrs		{
166675Srrs			uint32_t *value;
166675Srrs
166675Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, *optsize);
166675Srrs			SCTP_INP_RLOCK(inp);
166675Srrs			*value = inp->sctp_ep.initial_sequence_debug;
166675Srrs			SCTP_INP_RUNLOCK(inp);
166675Srrs			*optsize = sizeof(uint32_t);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_GET_LOCAL_ADDR_SIZE:
166675Srrs		{
166675Srrs			uint32_t *value;
166675Srrs
166675Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, *optsize);
166675Srrs			SCTP_INP_RLOCK(inp);
168124Srrs			*value = sctp_count_max_addresses(inp);
166675Srrs			SCTP_INP_RUNLOCK(inp);
166675Srrs			*optsize = sizeof(uint32_t);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_GET_REMOTE_ADDR_SIZE:
163953Srrs		{
166675Srrs			uint32_t *value;
166675Srrs			size_t size;
163953Srrs			struct sctp_nets *net;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, *optsize);
166675Srrs			/* FIXME MT: change to sctp_assoc_value? */
166675Srrs			SCTP_FIND_STCB(inp, stcb, (sctp_assoc_t) * value);
166675Srrs
166675Srrs			if (stcb) {
166675Srrs				size = 0;
166675Srrs				/* Count the sizes */
166675Srrs				TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
221249Stuexen					if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NEEDS_MAPPED_V4)) {
166675Srrs						size += sizeof(struct sockaddr_in6);
166675Srrs					} else {
221249Stuexen						switch (((struct sockaddr *)&net->ro._l_addr)->sa_family) {
221249Stuexen#ifdef INET
221249Stuexen						case AF_INET:
221249Stuexen							size += sizeof(struct sockaddr_in);
221249Stuexen							break;
221249Stuexen#endif
221249Stuexen#ifdef INET6
221249Stuexen						case AF_INET6:
221249Stuexen							size += sizeof(struct sockaddr_in6);
221249Stuexen							break;
221249Stuexen#endif
221249Stuexen						default:
221249Stuexen							break;
221249Stuexen						}
166675Srrs					}
163953Srrs				}
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs				*value = (uint32_t) size;
166675Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOTCONN);
166675Srrs				error = ENOTCONN;
163953Srrs			}
166675Srrs			*optsize = sizeof(uint32_t);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_GET_PEER_ADDRESSES:
163953Srrs		/*
163953Srrs		 * Get the address information, an array is passed in to
163953Srrs		 * fill up we pack it.
163953Srrs		 */
163953Srrs		{
166675Srrs			size_t cpsz, left;
163953Srrs			struct sockaddr_storage *sas;
163953Srrs			struct sctp_nets *net;
163953Srrs			struct sctp_getaddresses *saddr;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(saddr, optval, struct sctp_getaddresses, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, saddr->sget_assoc_id);
163953Srrs
166675Srrs			if (stcb) {
166675Srrs				left = (*optsize) - sizeof(struct sctp_getaddresses);
166675Srrs				*optsize = sizeof(struct sctp_getaddresses);
166675Srrs				sas = (struct sockaddr_storage *)&saddr->addr[0];
166675Srrs
166675Srrs				TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
221249Stuexen					if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NEEDS_MAPPED_V4)) {
166675Srrs						cpsz = sizeof(struct sockaddr_in6);
166675Srrs					} else {
221249Stuexen						switch (((struct sockaddr *)&net->ro._l_addr)->sa_family) {
221249Stuexen#ifdef INET
221249Stuexen						case AF_INET:
221249Stuexen							cpsz = sizeof(struct sockaddr_in);
221249Stuexen							break;
221249Stuexen#endif
221249Stuexen#ifdef INET6
221249Stuexen						case AF_INET6:
221249Stuexen							cpsz = sizeof(struct sockaddr_in6);
221249Stuexen							break;
221249Stuexen#endif
221249Stuexen						default:
221249Stuexen							cpsz = 0;
221249Stuexen							break;
221249Stuexen						}
221249Stuexen					}
221249Stuexen					if (cpsz == 0) {
166675Srrs						break;
166675Srrs					}
166675Srrs					if (left < cpsz) {
166675Srrs						/* not enough room. */
166675Srrs						break;
166675Srrs					}
221249Stuexen#if defined(INET) && defined(INET6)
178251Srrs					if ((sctp_is_feature_on(inp, SCTP_PCB_FLAGS_NEEDS_MAPPED_V4)) &&
166675Srrs					    (((struct sockaddr *)&net->ro._l_addr)->sa_family == AF_INET)) {
166675Srrs						/* Must map the address */
166675Srrs						in6_sin_2_v4mapsin6((struct sockaddr_in *)&net->ro._l_addr,
166675Srrs						    (struct sockaddr_in6 *)sas);
166675Srrs					} else {
178251Srrs#endif
166675Srrs						memcpy(sas, &net->ro._l_addr, cpsz);
221249Stuexen#if defined(INET) && defined(INET6)
166675Srrs					}
178251Srrs#endif
166675Srrs					((struct sockaddr_in *)sas)->sin_port = stcb->rport;
166675Srrs
166675Srrs					sas = (struct sockaddr_storage *)((caddr_t)sas + cpsz);
166675Srrs					left -= cpsz;
166675Srrs					*optsize += cpsz;
163953Srrs				}
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT);
166675Srrs				error = ENOENT;
163953Srrs			}
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_GET_LOCAL_ADDRESSES:
163953Srrs		{
166675Srrs			size_t limit, actual;
163953Srrs			struct sockaddr_storage *sas;
163953Srrs			struct sctp_getaddresses *saddr;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(saddr, optval, struct sctp_getaddresses, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, saddr->sget_assoc_id);
163953Srrs
163953Srrs			sas = (struct sockaddr_storage *)&saddr->addr[0];
166675Srrs			limit = *optsize - sizeof(sctp_assoc_t);
168124Srrs			actual = sctp_fill_up_addresses(inp, stcb, limit, sas);
169655Srrs			if (stcb) {
163953Srrs				SCTP_TCB_UNLOCK(stcb);
169655Srrs			}
166675Srrs			*optsize = sizeof(struct sockaddr_storage) + actual;
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_PEER_ADDR_PARAMS:
163953Srrs		{
163953Srrs			struct sctp_paddrparams *paddrp;
163953Srrs			struct sctp_nets *net;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(paddrp, optval, struct sctp_paddrparams, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, paddrp->spp_assoc_id);
163953Srrs
163953Srrs			net = NULL;
166675Srrs			if (stcb) {
166675Srrs				net = sctp_findnet(stcb, (struct sockaddr *)&paddrp->spp_address);
166675Srrs			} else {
166675Srrs				/*
166675Srrs				 * We increment here since
166675Srrs				 * sctp_findassociation_ep_addr() wil do a
166675Srrs				 * decrement if it finds the stcb as long as
166675Srrs				 * the locked tcb (last argument) is NOT a
166675Srrs				 * TCB.. aka NULL.
166675Srrs				 */
166675Srrs				SCTP_INP_INCR_REF(inp);
166675Srrs				stcb = sctp_findassociation_ep_addr(&inp, (struct sockaddr *)&paddrp->spp_address, &net, NULL, NULL);
163953Srrs				if (stcb == NULL) {
166675Srrs					SCTP_INP_DECR_REF(inp);
163953Srrs				}
163953Srrs			}
171943Srrs			if (stcb && (net == NULL)) {
171943Srrs				struct sockaddr *sa;
163953Srrs
171943Srrs				sa = (struct sockaddr *)&paddrp->spp_address;
221249Stuexen#ifdef INET
171943Srrs				if (sa->sa_family == AF_INET) {
171943Srrs					struct sockaddr_in *sin;
171943Srrs
171943Srrs					sin = (struct sockaddr_in *)sa;
171943Srrs					if (sin->sin_addr.s_addr) {
171943Srrs						error = EINVAL;
171943Srrs						SCTP_TCB_UNLOCK(stcb);
171943Srrs						SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
171943Srrs						break;
171943Srrs					}
221249Stuexen				} else
221249Stuexen#endif
221249Stuexen#ifdef INET6
221249Stuexen				if (sa->sa_family == AF_INET6) {
171943Srrs					struct sockaddr_in6 *sin6;
171943Srrs
171943Srrs					sin6 = (struct sockaddr_in6 *)sa;
171943Srrs					if (!IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
171943Srrs						error = EINVAL;
171943Srrs						SCTP_TCB_UNLOCK(stcb);
171943Srrs						SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
171943Srrs						break;
171943Srrs					}
221249Stuexen				} else
221249Stuexen#endif
221249Stuexen				{
171943Srrs					error = EAFNOSUPPORT;
171943Srrs					SCTP_TCB_UNLOCK(stcb);
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
171943Srrs					break;
171943Srrs				}
171943Srrs			}
163953Srrs			if (stcb) {
163953Srrs				/* Applys to the specific association */
163953Srrs				paddrp->spp_flags = 0;
163953Srrs				if (net) {
170056Srrs					int ovh;
170056Srrs
170056Srrs					if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) {
170056Srrs						ovh = SCTP_MED_OVERHEAD;
170056Srrs					} else {
170056Srrs						ovh = SCTP_MED_V4_OVERHEAD;
170056Srrs					}
170056Srrs
170056Srrs
163953Srrs					paddrp->spp_pathmaxrxt = net->failure_threshold;
170056Srrs					paddrp->spp_pathmtu = net->mtu - ovh;
163953Srrs					/* get flags for HB */
163953Srrs					if (net->dest_state & SCTP_ADDR_NOHB)
163953Srrs						paddrp->spp_flags |= SPP_HB_DISABLE;
163953Srrs					else
163953Srrs						paddrp->spp_flags |= SPP_HB_ENABLE;
163953Srrs					/* get flags for PMTU */
165647Srrs					if (SCTP_OS_TIMER_PENDING(&net->pmtu_timer.timer)) {
163953Srrs						paddrp->spp_flags |= SPP_PMTUD_ENABLE;
163953Srrs					} else {
163953Srrs						paddrp->spp_flags |= SPP_PMTUD_DISABLE;
163953Srrs					}
167598Srrs#ifdef INET
163953Srrs					if (net->ro._l_addr.sin.sin_family == AF_INET) {
163953Srrs						paddrp->spp_ipv4_tos = net->tos_flowlabel & 0x000000fc;
163953Srrs						paddrp->spp_flags |= SPP_IPV4_TOS;
163953Srrs					}
163953Srrs#endif
167598Srrs#ifdef INET6
163953Srrs					if (net->ro._l_addr.sin6.sin6_family == AF_INET6) {
163953Srrs						paddrp->spp_ipv6_flowlabel = net->tos_flowlabel;
163953Srrs						paddrp->spp_flags |= SPP_IPV6_FLOWLABEL;
163953Srrs					}
163953Srrs#endif
163953Srrs				} else {
163953Srrs					/*
163953Srrs					 * No destination so return default
163953Srrs					 * value
163953Srrs					 */
170056Srrs					int cnt = 0;
170056Srrs
163953Srrs					paddrp->spp_pathmaxrxt = stcb->asoc.def_net_failure;
163953Srrs					paddrp->spp_pathmtu = sctp_get_frag_point(stcb, &stcb->asoc);
167598Srrs#ifdef INET
163953Srrs					paddrp->spp_ipv4_tos = stcb->asoc.default_tos & 0x000000fc;
163953Srrs					paddrp->spp_flags |= SPP_IPV4_TOS;
163953Srrs#endif
167598Srrs#ifdef INET6
163953Srrs					paddrp->spp_ipv6_flowlabel = stcb->asoc.default_flowlabel;
163953Srrs					paddrp->spp_flags |= SPP_IPV6_FLOWLABEL;
163953Srrs#endif
163953Srrs					/* default settings should be these */
170056Srrs					if (stcb->asoc.hb_is_disabled == 0) {
163953Srrs						paddrp->spp_flags |= SPP_HB_ENABLE;
170056Srrs					} else {
170056Srrs						paddrp->spp_flags |= SPP_HB_DISABLE;
163953Srrs					}
170056Srrs					TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
170056Srrs						if (SCTP_OS_TIMER_PENDING(&net->pmtu_timer.timer)) {
170056Srrs							cnt++;
170056Srrs						}
170056Srrs					}
170056Srrs					if (cnt) {
170056Srrs						paddrp->spp_flags |= SPP_PMTUD_ENABLE;
170056Srrs					}
163953Srrs				}
163953Srrs				paddrp->spp_hbinterval = stcb->asoc.heart_beat_delay;
163953Srrs				paddrp->spp_assoc_id = sctp_get_associd(stcb);
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				/* Use endpoint defaults */
163953Srrs				SCTP_INP_RLOCK(inp);
163953Srrs				paddrp->spp_pathmaxrxt = inp->sctp_ep.def_net_failure;
163953Srrs				paddrp->spp_hbinterval = TICKS_TO_MSEC(inp->sctp_ep.sctp_timeoutticks[SCTP_TIMER_HEARTBEAT]);
163953Srrs				paddrp->spp_assoc_id = (sctp_assoc_t) 0;
163953Srrs				/* get inp's default */
167598Srrs#ifdef INET
163953Srrs				paddrp->spp_ipv4_tos = inp->ip_inp.inp.inp_ip_tos;
163953Srrs				paddrp->spp_flags |= SPP_IPV4_TOS;
163953Srrs#endif
167598Srrs#ifdef INET6
163953Srrs				if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) {
163953Srrs					paddrp->spp_ipv6_flowlabel = ((struct in6pcb *)inp)->in6p_flowinfo;
163953Srrs					paddrp->spp_flags |= SPP_IPV6_FLOWLABEL;
163953Srrs				}
163953Srrs#endif
163953Srrs				/* can't return this */
163953Srrs				paddrp->spp_pathmtu = 0;
170056Srrs
163953Srrs				/* default behavior, no stcb */
170056Srrs				paddrp->spp_flags = SPP_PMTUD_ENABLE;
163953Srrs
170056Srrs				if (sctp_is_feature_off(inp, SCTP_PCB_FLAGS_DONOT_HEARTBEAT)) {
170056Srrs					paddrp->spp_flags |= SPP_HB_ENABLE;
170056Srrs				} else {
170056Srrs					paddrp->spp_flags |= SPP_HB_DISABLE;
170056Srrs				}
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
166675Srrs			*optsize = sizeof(struct sctp_paddrparams);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_GET_PEER_ADDR_INFO:
163953Srrs		{
163953Srrs			struct sctp_paddrinfo *paddri;
163953Srrs			struct sctp_nets *net;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(paddri, optval, struct sctp_paddrinfo, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, paddri->spinfo_assoc_id);
166675Srrs
163953Srrs			net = NULL;
166675Srrs			if (stcb) {
166675Srrs				net = sctp_findnet(stcb, (struct sockaddr *)&paddri->spinfo_address);
166675Srrs			} else {
166675Srrs				/*
166675Srrs				 * We increment here since
166675Srrs				 * sctp_findassociation_ep_addr() wil do a
166675Srrs				 * decrement if it finds the stcb as long as
166675Srrs				 * the locked tcb (last argument) is NOT a
166675Srrs				 * TCB.. aka NULL.
166675Srrs				 */
166675Srrs				SCTP_INP_INCR_REF(inp);
166675Srrs				stcb = sctp_findassociation_ep_addr(&inp, (struct sockaddr *)&paddri->spinfo_address, &net, NULL, NULL);
166675Srrs				if (stcb == NULL) {
166675Srrs					SCTP_INP_DECR_REF(inp);
163953Srrs				}
166675Srrs			}
163953Srrs
166675Srrs			if ((stcb) && (net)) {
217635Srrs				if (net->dest_state & SCTP_ADDR_UNCONFIRMED) {
217638Stuexen					/* It's unconfirmed */
217635Srrs					paddri->spinfo_state = SCTP_UNCONFIRMED;
217635Srrs				} else if (net->dest_state & SCTP_ADDR_REACHABLE) {
217638Stuexen					/* It's active */
217635Srrs					paddri->spinfo_state = SCTP_ACTIVE;
217635Srrs				} else {
217638Stuexen					/* It's inactive */
217635Srrs					paddri->spinfo_state = SCTP_INACTIVE;
217635Srrs				}
166675Srrs				paddri->spinfo_cwnd = net->cwnd;
219014Stuexen				paddri->spinfo_srtt = net->lastsa >> SCTP_RTT_SHIFT;
166675Srrs				paddri->spinfo_rto = net->RTO;
166675Srrs				paddri->spinfo_assoc_id = sctp_get_associd(stcb);
166675Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				if (stcb) {
163953Srrs					SCTP_TCB_UNLOCK(stcb);
163953Srrs				}
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT);
163953Srrs				error = ENOENT;
163953Srrs			}
166675Srrs			*optsize = sizeof(struct sctp_paddrinfo);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_PCB_STATUS:
163953Srrs		{
163953Srrs			struct sctp_pcbinfo *spcb;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(spcb, optval, struct sctp_pcbinfo, *optsize);
163953Srrs			sctp_fill_pcbinfo(spcb);
166675Srrs			*optsize = sizeof(struct sctp_pcbinfo);
163953Srrs		}
163953Srrs		break;
167598Srrs
163953Srrs	case SCTP_STATUS:
163953Srrs		{
163953Srrs			struct sctp_nets *net;
163953Srrs			struct sctp_status *sstat;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sstat, optval, struct sctp_status, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, sstat->sstat_assoc_id);
163953Srrs
163953Srrs			if (stcb == NULL) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
163953Srrs				error = EINVAL;
163953Srrs				break;
163953Srrs			}
163953Srrs			/*
163953Srrs			 * I think passing the state is fine since
163953Srrs			 * sctp_constants.h will be available to the user
163953Srrs			 * land.
163953Srrs			 */
163953Srrs			sstat->sstat_state = stcb->asoc.state;
173179Srrs			sstat->sstat_assoc_id = sctp_get_associd(stcb);
163953Srrs			sstat->sstat_rwnd = stcb->asoc.peers_rwnd;
163953Srrs			sstat->sstat_unackdata = stcb->asoc.sent_queue_cnt;
163953Srrs			/*
163953Srrs			 * We can't include chunks that have been passed to
163953Srrs			 * the socket layer. Only things in queue.
163953Srrs			 */
163953Srrs			sstat->sstat_penddata = (stcb->asoc.cnt_on_reasm_queue +
163953Srrs			    stcb->asoc.cnt_on_all_streams);
163953Srrs
163953Srrs
163953Srrs			sstat->sstat_instrms = stcb->asoc.streamincnt;
163953Srrs			sstat->sstat_outstrms = stcb->asoc.streamoutcnt;
163953Srrs			sstat->sstat_fragmentation_point = sctp_get_frag_point(stcb, &stcb->asoc);
163953Srrs			memcpy(&sstat->sstat_primary.spinfo_address,
163953Srrs			    &stcb->asoc.primary_destination->ro._l_addr,
163953Srrs			    ((struct sockaddr *)(&stcb->asoc.primary_destination->ro._l_addr))->sa_len);
163953Srrs			net = stcb->asoc.primary_destination;
163953Srrs			((struct sockaddr_in *)&sstat->sstat_primary.spinfo_address)->sin_port = stcb->rport;
163953Srrs			/*
163953Srrs			 * Again the user can get info from sctp_constants.h
163953Srrs			 * for what the state of the network is.
163953Srrs			 */
217635Srrs			if (net->dest_state & SCTP_ADDR_UNCONFIRMED) {
217635Srrs				/* It's unconfirmed */
217635Srrs				sstat->sstat_primary.spinfo_state = SCTP_UNCONFIRMED;
217635Srrs			} else if (net->dest_state & SCTP_ADDR_REACHABLE) {
217638Stuexen				/* It's active */
217635Srrs				sstat->sstat_primary.spinfo_state = SCTP_ACTIVE;
217635Srrs			} else {
217638Stuexen				/* It's inactive */
217635Srrs				sstat->sstat_primary.spinfo_state = SCTP_INACTIVE;
217635Srrs			}
163953Srrs			sstat->sstat_primary.spinfo_cwnd = net->cwnd;
219014Stuexen			sstat->sstat_primary.spinfo_srtt = net->lastsa >> SCTP_RTT_SHIFT;
163953Srrs			sstat->sstat_primary.spinfo_rto = net->RTO;
163953Srrs			sstat->sstat_primary.spinfo_mtu = net->mtu;
163953Srrs			sstat->sstat_primary.spinfo_assoc_id = sctp_get_associd(stcb);
163953Srrs			SCTP_TCB_UNLOCK(stcb);
166675Srrs			*optsize = sizeof(*sstat);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_RTOINFO:
163953Srrs		{
163953Srrs			struct sctp_rtoinfo *srto;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(srto, optval, struct sctp_rtoinfo, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, srto->srto_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
166675Srrs				srto->srto_initial = stcb->asoc.initial_rto;
166675Srrs				srto->srto_max = stcb->asoc.maxrto;
166675Srrs				srto->srto_min = stcb->asoc.minrto;
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
163953Srrs				SCTP_INP_RLOCK(inp);
163953Srrs				srto->srto_initial = inp->sctp_ep.initial_rto;
163953Srrs				srto->srto_max = inp->sctp_ep.sctp_maxrto;
163953Srrs				srto->srto_min = inp->sctp_ep.sctp_minrto;
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
166675Srrs			*optsize = sizeof(*srto);
163953Srrs		}
163953Srrs		break;
215410Stuexen	case SCTP_TIMEOUTS:
215410Stuexen		{
215410Stuexen			struct sctp_timeouts *stimo;
215410Stuexen
215410Stuexen			SCTP_CHECK_AND_CAST(stimo, optval, struct sctp_timeouts, *optsize);
215410Stuexen			SCTP_FIND_STCB(inp, stcb, stimo->stimo_assoc_id);
215410Stuexen
215410Stuexen			if (stcb) {
215410Stuexen				stimo->stimo_init = stcb->asoc.timoinit;
215410Stuexen				stimo->stimo_data = stcb->asoc.timodata;
215410Stuexen				stimo->stimo_sack = stcb->asoc.timosack;
215410Stuexen				stimo->stimo_shutdown = stcb->asoc.timoshutdown;
215410Stuexen				stimo->stimo_heartbeat = stcb->asoc.timoheartbeat;
215410Stuexen				stimo->stimo_cookie = stcb->asoc.timocookie;
215410Stuexen				stimo->stimo_shutdownack = stcb->asoc.timoshutdownack;
215410Stuexen				SCTP_TCB_UNLOCK(stcb);
215410Stuexen			} else {
215410Stuexen				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
215410Stuexen				error = EINVAL;
215410Stuexen			}
215410Stuexen			*optsize = sizeof(*stimo);
215410Stuexen		}
215410Stuexen		break;
163953Srrs	case SCTP_ASSOCINFO:
163953Srrs		{
163953Srrs			struct sctp_assocparams *sasoc;
171477Srrs			uint32_t oldval;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sasoc, optval, struct sctp_assocparams, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, sasoc->sasoc_assoc_id);
163953Srrs
163953Srrs			if (stcb) {
171477Srrs				oldval = sasoc->sasoc_cookie_life;
171477Srrs				sasoc->sasoc_cookie_life = TICKS_TO_MSEC(stcb->asoc.cookie_life);
163953Srrs				sasoc->sasoc_asocmaxrxt = stcb->asoc.max_send_times;
163953Srrs				sasoc->sasoc_number_peer_destinations = stcb->asoc.numnets;
163953Srrs				sasoc->sasoc_peer_rwnd = stcb->asoc.peers_rwnd;
163953Srrs				sasoc->sasoc_local_rwnd = stcb->asoc.my_rwnd;
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				SCTP_INP_RLOCK(inp);
171477Srrs				sasoc->sasoc_cookie_life = TICKS_TO_MSEC(inp->sctp_ep.def_cookie_life);
163953Srrs				sasoc->sasoc_asocmaxrxt = inp->sctp_ep.max_send_times;
163953Srrs				sasoc->sasoc_number_peer_destinations = 0;
163953Srrs				sasoc->sasoc_peer_rwnd = 0;
163953Srrs				sasoc->sasoc_local_rwnd = sbspace(&inp->sctp_socket->so_rcv);
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
166675Srrs			*optsize = sizeof(*sasoc);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_DEFAULT_SEND_PARAM:
163953Srrs		{
163953Srrs			struct sctp_sndrcvinfo *s_info;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(s_info, optval, struct sctp_sndrcvinfo, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, s_info->sinfo_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
170056Srrs				memcpy(s_info, &stcb->asoc.def_send, sizeof(stcb->asoc.def_send));
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
163953Srrs				SCTP_INP_RLOCK(inp);
170056Srrs				memcpy(s_info, &inp->def_send, sizeof(inp->def_send));
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
166675Srrs			*optsize = sizeof(*s_info);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_INITMSG:
163953Srrs		{
163953Srrs			struct sctp_initmsg *sinit;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sinit, optval, struct sctp_initmsg, *optsize);
163953Srrs			SCTP_INP_RLOCK(inp);
163953Srrs			sinit->sinit_num_ostreams = inp->sctp_ep.pre_open_stream_count;
163953Srrs			sinit->sinit_max_instreams = inp->sctp_ep.max_open_streams_intome;
163953Srrs			sinit->sinit_max_attempts = inp->sctp_ep.max_init_times;
163953Srrs			sinit->sinit_max_init_timeo = inp->sctp_ep.initial_init_rto_max;
163953Srrs			SCTP_INP_RUNLOCK(inp);
166675Srrs			*optsize = sizeof(*sinit);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_PRIMARY_ADDR:
163953Srrs		/* we allow a "get" operation on this */
163953Srrs		{
163953Srrs			struct sctp_setprim *ssp;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(ssp, optval, struct sctp_setprim, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, ssp->ssp_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
166675Srrs				/* simply copy out the sockaddr_storage... */
170056Srrs				int len;
170056Srrs
170056Srrs				len = *optsize;
170056Srrs				if (len > stcb->asoc.primary_destination->ro._l_addr.sa.sa_len)
170056Srrs					len = stcb->asoc.primary_destination->ro._l_addr.sa.sa_len;
170056Srrs
170056Srrs				memcpy(&ssp->ssp_addr,
170056Srrs				    &stcb->asoc.primary_destination->ro._l_addr,
170056Srrs				    len);
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
163953Srrs				error = EINVAL;
163953Srrs			}
166675Srrs			*optsize = sizeof(*ssp);
163953Srrs		}
163953Srrs		break;
163953Srrs
163953Srrs	case SCTP_HMAC_IDENT:
163953Srrs		{
163953Srrs			struct sctp_hmacalgo *shmac;
163953Srrs			sctp_hmaclist_t *hmaclist;
163953Srrs			uint32_t size;
163953Srrs			int i;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(shmac, optval, struct sctp_hmacalgo, *optsize);
166675Srrs
163953Srrs			SCTP_INP_RLOCK(inp);
163953Srrs			hmaclist = inp->sctp_ep.local_hmacs;
163953Srrs			if (hmaclist == NULL) {
163953Srrs				/* no HMACs to return */
166675Srrs				*optsize = sizeof(*shmac);
168299Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs				break;
163953Srrs			}
163953Srrs			/* is there room for all of the hmac ids? */
163953Srrs			size = sizeof(*shmac) + (hmaclist->num_algo *
163953Srrs			    sizeof(shmac->shmac_idents[0]));
166675Srrs			if ((size_t)(*optsize) < size) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
163953Srrs				error = EINVAL;
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs				break;
163953Srrs			}
163953Srrs			/* copy in the list */
181054Srrs			shmac->shmac_number_of_idents = hmaclist->num_algo;
181054Srrs			for (i = 0; i < hmaclist->num_algo; i++) {
163953Srrs				shmac->shmac_idents[i] = hmaclist->hmac[i];
181054Srrs			}
163953Srrs			SCTP_INP_RUNLOCK(inp);
166675Srrs			*optsize = size;
163953Srrs			break;
163953Srrs		}
163953Srrs	case SCTP_AUTH_ACTIVE_KEY:
163953Srrs		{
163953Srrs			struct sctp_authkeyid *scact;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(scact, optval, struct sctp_authkeyid, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, scact->scact_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
163953Srrs				/* get the active key on the assoc */
185694Srrs				scact->scact_keynumber = stcb->asoc.authinfo.active_keyid;
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				/* get the endpoint active key */
163953Srrs				SCTP_INP_RLOCK(inp);
163953Srrs				scact->scact_keynumber = inp->sctp_ep.default_keyid;
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
166675Srrs			*optsize = sizeof(*scact);
163953Srrs			break;
163953Srrs		}
163953Srrs	case SCTP_LOCAL_AUTH_CHUNKS:
163953Srrs		{
163953Srrs			struct sctp_authchunks *sac;
163953Srrs			sctp_auth_chklist_t *chklist = NULL;
166675Srrs			size_t size = 0;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sac, optval, struct sctp_authchunks, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, sac->gauth_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
163953Srrs				/* get off the assoc */
163953Srrs				chklist = stcb->asoc.local_auth_chunks;
163953Srrs				/* is there enough space? */
163953Srrs				size = sctp_auth_get_chklist_size(chklist);
166675Srrs				if (*optsize < (sizeof(struct sctp_authchunks) + size)) {
163953Srrs					error = EINVAL;
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
166675Srrs				} else {
166675Srrs					/* copy in the chunks */
169420Srrs					(void)sctp_serialize_auth_chunks(chklist, sac->gauth_chunks);
163953Srrs				}
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				/* get off the endpoint */
163953Srrs				SCTP_INP_RLOCK(inp);
163953Srrs				chklist = inp->sctp_ep.local_auth_chunks;
163953Srrs				/* is there enough space? */
163953Srrs				size = sctp_auth_get_chklist_size(chklist);
166675Srrs				if (*optsize < (sizeof(struct sctp_authchunks) + size)) {
163953Srrs					error = EINVAL;
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
166675Srrs				} else {
166675Srrs					/* copy in the chunks */
169420Srrs					(void)sctp_serialize_auth_chunks(chklist, sac->gauth_chunks);
163953Srrs				}
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			}
166675Srrs			*optsize = sizeof(struct sctp_authchunks) + size;
163953Srrs			break;
163953Srrs		}
163953Srrs	case SCTP_PEER_AUTH_CHUNKS:
163953Srrs		{
163953Srrs			struct sctp_authchunks *sac;
163953Srrs			sctp_auth_chklist_t *chklist = NULL;
166675Srrs			size_t size = 0;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sac, optval, struct sctp_authchunks, *optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, sac->gauth_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
166675Srrs				/* get off the assoc */
166675Srrs				chklist = stcb->asoc.peer_auth_chunks;
166675Srrs				/* is there enough space? */
166675Srrs				size = sctp_auth_get_chklist_size(chklist);
166675Srrs				if (*optsize < (sizeof(struct sctp_authchunks) + size)) {
166675Srrs					error = EINVAL;
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
166675Srrs				} else {
166675Srrs					/* copy in the chunks */
169420Srrs					(void)sctp_serialize_auth_chunks(chklist, sac->gauth_chunks);
166675Srrs				}
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT);
163953Srrs				error = ENOENT;
163953Srrs			}
166675Srrs			*optsize = sizeof(struct sctp_authchunks) + size;
163953Srrs			break;
163953Srrs		}
163953Srrs
163953Srrs
163953Srrs	default:
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOPROTOOPT);
163953Srrs		error = ENOPROTOOPT;
166675Srrs		*optsize = 0;
163953Srrs		break;
163953Srrs	}			/* end switch (sopt->sopt_name) */
163953Srrs	return (error);
163953Srrs}
163953Srrs
163953Srrsstatic int
166675Srrssctp_setopt(struct socket *so, int optname, void *optval, size_t optsize,
166675Srrs    void *p)
163953Srrs{
166675Srrs	int error, set_opt;
166675Srrs	uint32_t *mopt;
163953Srrs	struct sctp_tcb *stcb = NULL;
171943Srrs	struct sctp_inpcb *inp = NULL;
167598Srrs	uint32_t vrf_id;
163953Srrs
166675Srrs	if (optval == NULL) {
169420Srrs		SCTP_PRINTF("optval is NULL\n");
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return (EINVAL);
163953Srrs	}
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
167598Srrs	if (inp == 0) {
169420Srrs		SCTP_PRINTF("inp is NULL?\n");
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return EINVAL;
167598Srrs	}
168299Srrs	vrf_id = inp->def_vrf_id;
163953Srrs
163953Srrs	error = 0;
166675Srrs	switch (optname) {
163953Srrs	case SCTP_NODELAY:
163953Srrs	case SCTP_AUTOCLOSE:
163953Srrs	case SCTP_AUTO_ASCONF:
163953Srrs	case SCTP_EXPLICIT_EOR:
163953Srrs	case SCTP_DISABLE_FRAGMENTS:
163953Srrs	case SCTP_USE_EXT_RCVINFO:
163953Srrs	case SCTP_I_WANT_MAPPED_V4_ADDR:
163953Srrs		/* copy in the option value */
166675Srrs		SCTP_CHECK_AND_CAST(mopt, optval, uint32_t, optsize);
163953Srrs		set_opt = 0;
163953Srrs		if (error)
163953Srrs			break;
166675Srrs		switch (optname) {
163953Srrs		case SCTP_DISABLE_FRAGMENTS:
163953Srrs			set_opt = SCTP_PCB_FLAGS_NO_FRAGMENT;
163953Srrs			break;
163953Srrs		case SCTP_AUTO_ASCONF:
171943Srrs			/*
171943Srrs			 * NOTE: we don't really support this flag
171943Srrs			 */
171943Srrs			if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
171943Srrs				/* only valid for bound all sockets */
171943Srrs				set_opt = SCTP_PCB_FLAGS_AUTO_ASCONF;
171943Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171943Srrs				return (EINVAL);
171943Srrs			}
163953Srrs			break;
163953Srrs		case SCTP_EXPLICIT_EOR:
163953Srrs			set_opt = SCTP_PCB_FLAGS_EXPLICIT_EOR;
163953Srrs			break;
163953Srrs		case SCTP_USE_EXT_RCVINFO:
163953Srrs			set_opt = SCTP_PCB_FLAGS_EXT_RCVINFO;
163953Srrs			break;
163953Srrs		case SCTP_I_WANT_MAPPED_V4_ADDR:
163953Srrs			if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) {
163953Srrs				set_opt = SCTP_PCB_FLAGS_NEEDS_MAPPED_V4;
163953Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs				return (EINVAL);
163953Srrs			}
163953Srrs			break;
163953Srrs		case SCTP_NODELAY:
163953Srrs			set_opt = SCTP_PCB_FLAGS_NODELAY;
163953Srrs			break;
163953Srrs		case SCTP_AUTOCLOSE:
170056Srrs			if ((inp->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) ||
170056Srrs			    (inp->sctp_flags & SCTP_PCB_FLAGS_IN_TCPPOOL)) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
170056Srrs				return (EINVAL);
170056Srrs			}
163953Srrs			set_opt = SCTP_PCB_FLAGS_AUTOCLOSE;
163953Srrs			/*
163953Srrs			 * The value is in ticks. Note this does not effect
163953Srrs			 * old associations, only new ones.
163953Srrs			 */
163953Srrs			inp->sctp_ep.auto_close_time = SEC_TO_TICKS(*mopt);
163953Srrs			break;
163953Srrs		}
163953Srrs		SCTP_INP_WLOCK(inp);
163953Srrs		if (*mopt != 0) {
163953Srrs			sctp_feature_on(inp, set_opt);
163953Srrs		} else {
163953Srrs			sctp_feature_off(inp, set_opt);
163953Srrs		}
163953Srrs		SCTP_INP_WUNLOCK(inp);
163953Srrs		break;
181054Srrs	case SCTP_REUSE_PORT:
181054Srrs		{
181054Srrs			SCTP_CHECK_AND_CAST(mopt, optval, uint32_t, optsize);
181054Srrs			if ((inp->sctp_flags & SCTP_PCB_FLAGS_UNBOUND) == 0) {
181054Srrs				/* Can't set it after we are bound */
181054Srrs				error = EINVAL;
181054Srrs				break;
181054Srrs			}
181054Srrs			if ((inp->sctp_flags & SCTP_PCB_FLAGS_UDPTYPE)) {
181054Srrs				/* Can't do this for a 1-m socket */
181054Srrs				error = EINVAL;
181054Srrs				break;
181054Srrs			}
181054Srrs			if (optval)
181054Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_PORTREUSE);
181054Srrs			else
181054Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_PORTREUSE);
181054Srrs		}
181054Srrs		break;
163953Srrs	case SCTP_PARTIAL_DELIVERY_POINT:
163953Srrs		{
166675Srrs			uint32_t *value;
166675Srrs
166675Srrs			SCTP_CHECK_AND_CAST(value, optval, uint32_t, optsize);
167736Srrs			if (*value > SCTP_SB_LIMIT_RCV(so)) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
167736Srrs				error = EINVAL;
167736Srrs				break;
167736Srrs			}
166675Srrs			inp->partial_delivery_point = *value;
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_FRAGMENT_INTERLEAVE:
163953Srrs		/* not yet until we re-write sctp_recvmsg() */
163953Srrs		{
168943Srrs			uint32_t *level;
163953Srrs
168943Srrs			SCTP_CHECK_AND_CAST(level, optval, uint32_t, optsize);
168943Srrs			if (*level == SCTP_FRAG_LEVEL_2) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_FRAG_INTERLEAVE);
168943Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_INTERLEAVE_STRMS);
168943Srrs			} else if (*level == SCTP_FRAG_LEVEL_1) {
168943Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_FRAG_INTERLEAVE);
168943Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_INTERLEAVE_STRMS);
168943Srrs			} else if (*level == SCTP_FRAG_LEVEL_0) {
170056Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_FRAG_INTERLEAVE);
168943Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_INTERLEAVE_STRMS);
168943Srrs
163953Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
168943Srrs				error = EINVAL;
163953Srrs			}
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_CMT_ON_OFF:
211944Stuexen		if (SCTP_BASE_SYSCTL(sctp_cmt_on_off)) {
163953Srrs			struct sctp_assoc_value *av;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, optsize);
211944Stuexen			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
211944Stuexen			if (stcb) {
216669Stuexen				stcb->asoc.sctp_cmt_on_off = av->assoc_value;
216669Stuexen				if (stcb->asoc.sctp_cmt_on_off > 2) {
216669Stuexen					stcb->asoc.sctp_cmt_on_off = 2;
216669Stuexen				}
211944Stuexen				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
211944Stuexen				SCTP_INP_WLOCK(inp);
216669Stuexen				inp->sctp_cmt_on_off = av->assoc_value;
216669Stuexen				if (inp->sctp_cmt_on_off > 2) {
216669Stuexen					inp->sctp_cmt_on_off = 2;
216669Stuexen				}
211944Stuexen				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
211944Stuexen		} else {
211944Stuexen			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOPROTOOPT);
211944Stuexen			error = ENOPROTOOPT;
163953Srrs		}
163953Srrs		break;
171440Srrs		/* JRS - Set socket option for pluggable congestion control */
171440Srrs	case SCTP_PLUGGABLE_CC:
171440Srrs		{
171440Srrs			struct sctp_assoc_value *av;
219057Srrs			struct sctp_nets *net;
171440Srrs
171440Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, optsize);
171440Srrs			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
171440Srrs			if (stcb) {
171440Srrs				switch (av->assoc_value) {
171440Srrs				case SCTP_CC_RFC2581:
171440Srrs				case SCTP_CC_HSTCP:
171440Srrs				case SCTP_CC_HTCP:
219120Srrs				case SCTP_CC_RTCC:
217611Stuexen					stcb->asoc.cc_functions = sctp_cc_functions[av->assoc_value];
217611Stuexen					stcb->asoc.congestion_control_module = av->assoc_value;
219057Srrs					if (stcb->asoc.cc_functions.sctp_set_initial_cc_param != NULL) {
219057Srrs						TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
219057Srrs							stcb->asoc.cc_functions.sctp_set_initial_cc_param(stcb, net);
219057Srrs						}
219057Srrs					}
217611Stuexen					break;
171440Srrs				default:
217611Stuexen					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
217611Stuexen					error = EINVAL;
217611Stuexen					break;
171440Srrs				}
217611Stuexen				SCTP_TCB_UNLOCK(stcb);
171440Srrs			} else {
171440Srrs				switch (av->assoc_value) {
171440Srrs				case SCTP_CC_RFC2581:
171440Srrs				case SCTP_CC_HSTCP:
171440Srrs				case SCTP_CC_HTCP:
219120Srrs				case SCTP_CC_RTCC:
217611Stuexen					SCTP_INP_WLOCK(inp);
171440Srrs					inp->sctp_ep.sctp_default_cc_module = av->assoc_value;
217611Stuexen					SCTP_INP_WUNLOCK(inp);
171440Srrs					break;
171440Srrs				default:
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171440Srrs					error = EINVAL;
171440Srrs					break;
217760Stuexen				}
171440Srrs			}
171440Srrs		}
219120Srrs		break;
219057Srrs	case SCTP_CC_OPTION:
219057Srrs		{
219057Srrs			struct sctp_cc_option *cc_opt;
219057Srrs
219057Srrs			SCTP_CHECK_AND_CAST(cc_opt, optval, struct sctp_cc_option, optsize);
219057Srrs			SCTP_FIND_STCB(inp, stcb, cc_opt->aid_value.assoc_id);
219057Srrs			if (stcb == NULL) {
219057Srrs				error = EINVAL;
219057Srrs			} else {
219057Srrs				if (stcb->asoc.cc_functions.sctp_cwnd_socket_option == NULL) {
219057Srrs					error = ENOTSUP;
219057Srrs				} else {
219057Srrs					error = (*stcb->asoc.cc_functions.sctp_cwnd_socket_option) (stcb, 1,
219057Srrs					    cc_opt);
219057Srrs				}
219057Srrs				SCTP_TCB_UNLOCK(stcb);
219057Srrs			}
219057Srrs		}
171440Srrs		break;
217760Stuexen		/* RS - Set socket option for pluggable stream scheduling */
217760Stuexen	case SCTP_PLUGGABLE_SS:
217760Stuexen		{
217760Stuexen			struct sctp_assoc_value *av;
217760Stuexen
217760Stuexen			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, optsize);
217760Stuexen			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
217760Stuexen			if (stcb) {
217760Stuexen				switch (av->assoc_value) {
217760Stuexen				case SCTP_SS_DEFAULT:
217760Stuexen				case SCTP_SS_ROUND_ROBIN:
217760Stuexen				case SCTP_SS_ROUND_ROBIN_PACKET:
217760Stuexen				case SCTP_SS_PRIORITY:
217760Stuexen				case SCTP_SS_FAIR_BANDWITH:
217760Stuexen				case SCTP_SS_FIRST_COME:
217760Stuexen					stcb->asoc.ss_functions.sctp_ss_clear(stcb, &stcb->asoc, 1, 1);
217760Stuexen					stcb->asoc.ss_functions = sctp_ss_functions[av->assoc_value];
217760Stuexen					stcb->asoc.stream_scheduling_module = av->assoc_value;
217760Stuexen					stcb->asoc.ss_functions.sctp_ss_init(stcb, &stcb->asoc, 1);
217760Stuexen					break;
217760Stuexen				default:
217760Stuexen					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
217760Stuexen					error = EINVAL;
217760Stuexen					break;
217760Stuexen				}
217760Stuexen				SCTP_TCB_UNLOCK(stcb);
217760Stuexen			} else {
217760Stuexen				switch (av->assoc_value) {
217760Stuexen				case SCTP_SS_DEFAULT:
217760Stuexen				case SCTP_SS_ROUND_ROBIN:
217760Stuexen				case SCTP_SS_ROUND_ROBIN_PACKET:
217760Stuexen				case SCTP_SS_PRIORITY:
217760Stuexen				case SCTP_SS_FAIR_BANDWITH:
217760Stuexen				case SCTP_SS_FIRST_COME:
217760Stuexen					SCTP_INP_WLOCK(inp);
217760Stuexen					inp->sctp_ep.sctp_default_ss_module = av->assoc_value;
217760Stuexen					SCTP_INP_WUNLOCK(inp);
217760Stuexen					break;
217760Stuexen				default:
217760Stuexen					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
217760Stuexen					error = EINVAL;
217760Stuexen					break;
217760Stuexen				}
217760Stuexen			}
217760Stuexen		}
217760Stuexen		break;
217760Stuexen	case SCTP_SS_VALUE:
217760Stuexen		{
217760Stuexen			struct sctp_stream_value *av;
217760Stuexen
217760Stuexen			SCTP_CHECK_AND_CAST(av, optval, struct sctp_stream_value, optsize);
217760Stuexen			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
217760Stuexen			if (stcb) {
217760Stuexen				if (stcb->asoc.ss_functions.sctp_ss_set_value(stcb, &stcb->asoc, &stcb->asoc.strmout[av->stream_id],
217760Stuexen				    av->stream_value) < 0) {
217760Stuexen					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
217760Stuexen					error = EINVAL;
217760Stuexen				}
217760Stuexen				SCTP_TCB_UNLOCK(stcb);
217760Stuexen			} else {
217760Stuexen				/*
217760Stuexen				 * Can't set stream value without
217760Stuexen				 * association
217760Stuexen				 */
217760Stuexen				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
217760Stuexen				error = EINVAL;
217760Stuexen			}
217760Stuexen		}
217760Stuexen		break;
163953Srrs	case SCTP_CLR_STAT_LOG:
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EOPNOTSUPP);
163953Srrs		error = EOPNOTSUPP;
163953Srrs		break;
163953Srrs	case SCTP_CONTEXT:
163953Srrs		{
163953Srrs			struct sctp_assoc_value *av;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
166675Srrs
166675Srrs			if (stcb) {
166675Srrs				stcb->asoc.context = av->assoc_value;
166675Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
166675Srrs				SCTP_INP_WLOCK(inp);
163953Srrs				inp->sctp_context = av->assoc_value;
166675Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs		}
163953Srrs		break;
167598Srrs	case SCTP_VRF_ID:
167598Srrs		{
170056Srrs			uint32_t *default_vrfid;
167598Srrs
170056Srrs			SCTP_CHECK_AND_CAST(default_vrfid, optval, uint32_t, optsize);
170056Srrs			if (*default_vrfid > SCTP_MAX_VRF_ID) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
167598Srrs				error = EINVAL;
167598Srrs				break;
167598Srrs			}
170056Srrs			inp->def_vrf_id = *default_vrfid;
167598Srrs			break;
167598Srrs		}
167598Srrs	case SCTP_DEL_VRF_ID:
167598Srrs		{
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EOPNOTSUPP);
167598Srrs			error = EOPNOTSUPP;
167598Srrs			break;
167598Srrs		}
167598Srrs	case SCTP_ADD_VRF_ID:
167598Srrs		{
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EOPNOTSUPP);
167598Srrs			error = EOPNOTSUPP;
167598Srrs			break;
167598Srrs		}
170056Srrs	case SCTP_DELAYED_SACK:
163953Srrs		{
170056Srrs			struct sctp_sack_info *sack;
163953Srrs
170056Srrs			SCTP_CHECK_AND_CAST(sack, optval, struct sctp_sack_info, optsize);
170056Srrs			SCTP_FIND_STCB(inp, stcb, sack->sack_assoc_id);
171477Srrs			if (sack->sack_delay) {
171477Srrs				if (sack->sack_delay > SCTP_MAX_SACK_DELAY)
171477Srrs					sack->sack_delay = SCTP_MAX_SACK_DELAY;
171477Srrs			}
166675Srrs			if (stcb) {
170056Srrs				if (sack->sack_delay) {
170056Srrs					if (MSEC_TO_TICKS(sack->sack_delay) < 1) {
170056Srrs						sack->sack_delay = TICKS_TO_MSEC(1);
170056Srrs					}
170056Srrs					stcb->asoc.delayed_ack = sack->sack_delay;
170056Srrs				}
170056Srrs				if (sack->sack_freq) {
170056Srrs					stcb->asoc.sack_freq = sack->sack_freq;
170056Srrs				}
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
163953Srrs				SCTP_INP_WLOCK(inp);
170056Srrs				if (sack->sack_delay) {
170056Srrs					if (MSEC_TO_TICKS(sack->sack_delay) < 1) {
170056Srrs						sack->sack_delay = TICKS_TO_MSEC(1);
170056Srrs					}
170056Srrs					inp->sctp_ep.sctp_timeoutticks[SCTP_TIMER_RECV] = MSEC_TO_TICKS(sack->sack_delay);
170056Srrs				}
170056Srrs				if (sack->sack_freq) {
170056Srrs					inp->sctp_ep.sctp_sack_freq = sack->sack_freq;
170056Srrs				}
163953Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
166675Srrs			break;
163953Srrs		}
163953Srrs	case SCTP_AUTH_CHUNK:
163953Srrs		{
163953Srrs			struct sctp_authchunk *sauth;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sauth, optval, struct sctp_authchunk, optsize);
166675Srrs
166675Srrs			SCTP_INP_WLOCK(inp);
171943Srrs			if (sctp_auth_add_chunk(sauth->sauth_chunk, inp->sctp_ep.local_auth_chunks)) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs				error = EINVAL;
171943Srrs			}
166675Srrs			SCTP_INP_WUNLOCK(inp);
163953Srrs			break;
163953Srrs		}
163953Srrs	case SCTP_AUTH_KEY:
163953Srrs		{
163953Srrs			struct sctp_authkey *sca;
163953Srrs			struct sctp_keyhead *shared_keys;
163953Srrs			sctp_sharedkey_t *shared_key;
163953Srrs			sctp_key_t *key = NULL;
166675Srrs			size_t size;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sca, optval, struct sctp_authkey, optsize);
169420Srrs			SCTP_FIND_STCB(inp, stcb, sca->sca_assoc_id);
169420Srrs			size = optsize - sizeof(*sca);
166675Srrs
166675Srrs			if (stcb) {
163953Srrs				/* set it on the assoc */
163953Srrs				shared_keys = &stcb->asoc.shared_keys;
163953Srrs				/* clear the cached keys for this key id */
163953Srrs				sctp_clear_cachedkeys(stcb, sca->sca_keynumber);
163953Srrs				/*
163953Srrs				 * create the new shared key and
163953Srrs				 * insert/replace it
163953Srrs				 */
163953Srrs				if (size > 0) {
163953Srrs					key = sctp_set_key(sca->sca_key, (uint32_t) size);
163953Srrs					if (key == NULL) {
171943Srrs						SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOMEM);
163953Srrs						error = ENOMEM;
163953Srrs						SCTP_TCB_UNLOCK(stcb);
163953Srrs						break;
163953Srrs					}
163953Srrs				}
163953Srrs				shared_key = sctp_alloc_sharedkey();
163953Srrs				if (shared_key == NULL) {
163953Srrs					sctp_free_key(key);
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOMEM);
163953Srrs					error = ENOMEM;
163953Srrs					SCTP_TCB_UNLOCK(stcb);
163953Srrs					break;
163953Srrs				}
163953Srrs				shared_key->key = key;
163953Srrs				shared_key->keyid = sca->sca_keynumber;
185694Srrs				error = sctp_insert_sharedkey(shared_keys, shared_key);
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
166675Srrs				/* set it on the endpoint */
163953Srrs				SCTP_INP_WLOCK(inp);
163953Srrs				shared_keys = &inp->sctp_ep.shared_keys;
163953Srrs				/*
163953Srrs				 * clear the cached keys on all assocs for
163953Srrs				 * this key id
163953Srrs				 */
163953Srrs				sctp_clear_cachedkeys_ep(inp, sca->sca_keynumber);
163953Srrs				/*
163953Srrs				 * create the new shared key and
163953Srrs				 * insert/replace it
163953Srrs				 */
163953Srrs				if (size > 0) {
163953Srrs					key = sctp_set_key(sca->sca_key, (uint32_t) size);
163953Srrs					if (key == NULL) {
171943Srrs						SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOMEM);
163953Srrs						error = ENOMEM;
163953Srrs						SCTP_INP_WUNLOCK(inp);
163953Srrs						break;
163953Srrs					}
163953Srrs				}
163953Srrs				shared_key = sctp_alloc_sharedkey();
163953Srrs				if (shared_key == NULL) {
163953Srrs					sctp_free_key(key);
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOMEM);
163953Srrs					error = ENOMEM;
163953Srrs					SCTP_INP_WUNLOCK(inp);
163953Srrs					break;
163953Srrs				}
163953Srrs				shared_key->key = key;
163953Srrs				shared_key->keyid = sca->sca_keynumber;
185694Srrs				error = sctp_insert_sharedkey(shared_keys, shared_key);
163953Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs			break;
163953Srrs		}
163953Srrs	case SCTP_HMAC_IDENT:
163953Srrs		{
163953Srrs			struct sctp_hmacalgo *shmac;
163953Srrs			sctp_hmaclist_t *hmaclist;
181054Srrs			uint16_t hmacid;
181054Srrs			uint32_t i;
163953Srrs
181054Srrs			size_t found;
181054Srrs
166675Srrs			SCTP_CHECK_AND_CAST(shmac, optval, struct sctp_hmacalgo, optsize);
181054Srrs			if (optsize < sizeof(struct sctp_hmacalgo) + shmac->shmac_number_of_idents * sizeof(uint16_t)) {
181054Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
181054Srrs				error = EINVAL;
181054Srrs				break;
181054Srrs			}
181054Srrs			hmaclist = sctp_alloc_hmaclist(shmac->shmac_number_of_idents);
163953Srrs			if (hmaclist == NULL) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOMEM);
163953Srrs				error = ENOMEM;
163953Srrs				break;
163953Srrs			}
181054Srrs			for (i = 0; i < shmac->shmac_number_of_idents; i++) {
163953Srrs				hmacid = shmac->shmac_idents[i];
181054Srrs				if (sctp_auth_add_hmacid(hmaclist, hmacid)) {
163953Srrs					 /* invalid HMACs were found */ ;
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs					error = EINVAL;
164085Srrs					sctp_free_hmaclist(hmaclist);
163953Srrs					goto sctp_set_hmac_done;
163953Srrs				}
163953Srrs			}
170056Srrs			found = 0;
170056Srrs			for (i = 0; i < hmaclist->num_algo; i++) {
170056Srrs				if (hmaclist->hmac[i] == SCTP_AUTH_HMAC_ID_SHA1) {
170056Srrs					/* already in list */
170056Srrs					found = 1;
170056Srrs				}
170056Srrs			}
170056Srrs			if (!found) {
170056Srrs				sctp_free_hmaclist(hmaclist);
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
170056Srrs				error = EINVAL;
170056Srrs				break;
170056Srrs			}
163953Srrs			/* set it on the endpoint */
163953Srrs			SCTP_INP_WLOCK(inp);
163953Srrs			if (inp->sctp_ep.local_hmacs)
163953Srrs				sctp_free_hmaclist(inp->sctp_ep.local_hmacs);
163953Srrs			inp->sctp_ep.local_hmacs = hmaclist;
163953Srrs			SCTP_INP_WUNLOCK(inp);
163953Srrs	sctp_set_hmac_done:
163953Srrs			break;
163953Srrs		}
163953Srrs	case SCTP_AUTH_ACTIVE_KEY:
163953Srrs		{
163953Srrs			struct sctp_authkeyid *scact;
163953Srrs
185694Srrs			SCTP_CHECK_AND_CAST(scact, optval, struct sctp_authkeyid,
185694Srrs			    optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, scact->scact_assoc_id);
166675Srrs
163953Srrs			/* set the active key on the right place */
166675Srrs			if (stcb) {
163953Srrs				/* set the active key on the assoc */
185694Srrs				if (sctp_auth_setactivekey(stcb,
185694Srrs				    scact->scact_keynumber)) {
185694Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL,
185694Srrs					    SCTP_FROM_SCTP_USRREQ,
185694Srrs					    EINVAL);
163953Srrs					error = EINVAL;
171943Srrs				}
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				/* set the active key on the endpoint */
163953Srrs				SCTP_INP_WLOCK(inp);
185694Srrs				if (sctp_auth_setactivekey_ep(inp,
185694Srrs				    scact->scact_keynumber)) {
185694Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL,
185694Srrs					    SCTP_FROM_SCTP_USRREQ,
185694Srrs					    EINVAL);
163953Srrs					error = EINVAL;
171943Srrs				}
163953Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs			break;
163953Srrs		}
163953Srrs	case SCTP_AUTH_DELETE_KEY:
163953Srrs		{
163953Srrs			struct sctp_authkeyid *scdel;
163953Srrs
185694Srrs			SCTP_CHECK_AND_CAST(scdel, optval, struct sctp_authkeyid,
185694Srrs			    optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, scdel->scact_assoc_id);
166675Srrs
163953Srrs			/* delete the key from the right place */
166675Srrs			if (stcb) {
185694Srrs				if (sctp_delete_sharedkey(stcb,
185694Srrs				    scdel->scact_keynumber)) {
185694Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL,
185694Srrs					    SCTP_FROM_SCTP_USRREQ,
185694Srrs					    EINVAL);
163953Srrs					error = EINVAL;
171943Srrs				}
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				SCTP_INP_WLOCK(inp);
185694Srrs				if (sctp_delete_sharedkey_ep(inp,
185694Srrs				    scdel->scact_keynumber)) {
185694Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL,
185694Srrs					    SCTP_FROM_SCTP_USRREQ,
185694Srrs					    EINVAL);
163953Srrs					error = EINVAL;
171943Srrs				}
163953Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs			break;
163953Srrs		}
185694Srrs	case SCTP_AUTH_DEACTIVATE_KEY:
185694Srrs		{
185694Srrs			struct sctp_authkeyid *keyid;
163953Srrs
185694Srrs			SCTP_CHECK_AND_CAST(keyid, optval, struct sctp_authkeyid,
185694Srrs			    optsize);
185694Srrs			SCTP_FIND_STCB(inp, stcb, keyid->scact_assoc_id);
185694Srrs
185694Srrs			/* deactivate the key from the right place */
185694Srrs			if (stcb) {
185694Srrs				if (sctp_deact_sharedkey(stcb,
185694Srrs				    keyid->scact_keynumber)) {
185694Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL,
185694Srrs					    SCTP_FROM_SCTP_USRREQ,
185694Srrs					    EINVAL);
185694Srrs					error = EINVAL;
185694Srrs				}
185694Srrs				SCTP_TCB_UNLOCK(stcb);
185694Srrs			} else {
185694Srrs				SCTP_INP_WLOCK(inp);
185694Srrs				if (sctp_deact_sharedkey_ep(inp,
185694Srrs				    keyid->scact_keynumber)) {
185694Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL,
185694Srrs					    SCTP_FROM_SCTP_USRREQ,
185694Srrs					    EINVAL);
185694Srrs					error = EINVAL;
185694Srrs				}
185694Srrs				SCTP_INP_WUNLOCK(inp);
185694Srrs			}
185694Srrs			break;
185694Srrs		}
185694Srrs
163953Srrs	case SCTP_RESET_STREAMS:
163953Srrs		{
163953Srrs			struct sctp_stream_reset *strrst;
188854Srrs			uint8_t send_in = 0, send_tsn = 0, send_out = 0,
188854Srrs			        addstream = 0;
188854Srrs			uint16_t addstrmcnt = 0;
163953Srrs			int i;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(strrst, optval, struct sctp_stream_reset, optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, strrst->strrst_assoc_id);
163953Srrs
163953Srrs			if (stcb == NULL) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT);
163953Srrs				error = ENOENT;
163953Srrs				break;
163953Srrs			}
163953Srrs			if (stcb->asoc.peer_supports_strreset == 0) {
163953Srrs				/*
163953Srrs				 * Peer does not support it, we return
163953Srrs				 * protocol not supported since this is true
163953Srrs				 * for this feature and this peer, not the
163953Srrs				 * socket request in general.
163953Srrs				 */
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EPROTONOSUPPORT);
163953Srrs				error = EPROTONOSUPPORT;
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs				break;
163953Srrs			}
163953Srrs			if (stcb->asoc.stream_reset_outstanding) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EALREADY);
163953Srrs				error = EALREADY;
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs				break;
163953Srrs			}
163953Srrs			if (strrst->strrst_flags == SCTP_RESET_LOCAL_RECV) {
163953Srrs				send_in = 1;
163953Srrs			} else if (strrst->strrst_flags == SCTP_RESET_LOCAL_SEND) {
163953Srrs				send_out = 1;
163953Srrs			} else if (strrst->strrst_flags == SCTP_RESET_BOTH) {
163953Srrs				send_in = 1;
163953Srrs				send_out = 1;
163953Srrs			} else if (strrst->strrst_flags == SCTP_RESET_TSN) {
163953Srrs				send_tsn = 1;
188854Srrs			} else if (strrst->strrst_flags == SCTP_RESET_ADD_STREAMS) {
188854Srrs				if (send_tsn ||
188854Srrs				    send_in ||
188854Srrs				    send_out) {
188854Srrs					/* We can't do that and add streams */
188854Srrs					error = EINVAL;
188854Srrs					goto skip_stuff;
188854Srrs				}
188854Srrs				if (stcb->asoc.stream_reset_outstanding) {
188854Srrs					error = EBUSY;
188854Srrs					goto skip_stuff;
188854Srrs				}
188854Srrs				addstream = 1;
188854Srrs				/* We allocate here */
188854Srrs				addstrmcnt = strrst->strrst_num_streams;
188854Srrs				if ((int)(addstrmcnt + stcb->asoc.streamoutcnt) > 0xffff) {
188854Srrs					/* You can't have more than 64k */
188854Srrs					error = EINVAL;
188854Srrs					goto skip_stuff;
188854Srrs				}
188854Srrs				if ((stcb->asoc.strm_realoutsize - stcb->asoc.streamoutcnt) < addstrmcnt) {
188854Srrs					/* Need to allocate more */
188854Srrs					struct sctp_stream_out *oldstream;
216822Stuexen					struct sctp_stream_queue_pending *sp,
216822Stuexen					                         *nsp;
188854Srrs
188854Srrs					oldstream = stcb->asoc.strmout;
188854Srrs					/* get some more */
188854Srrs					SCTP_MALLOC(stcb->asoc.strmout, struct sctp_stream_out *,
188854Srrs					    ((stcb->asoc.streamoutcnt + addstrmcnt) * sizeof(struct sctp_stream_out)),
188854Srrs					    SCTP_M_STRMO);
188854Srrs					if (stcb->asoc.strmout == NULL) {
188854Srrs						stcb->asoc.strmout = oldstream;
188854Srrs						error = ENOMEM;
188854Srrs						goto skip_stuff;
188854Srrs					}
188854Srrs					/*
188854Srrs					 * Ok now we proceed with copying
188854Srrs					 * the old out stuff and
188854Srrs					 * initializing the new stuff.
188854Srrs					 */
189121Srrs					SCTP_TCB_SEND_LOCK(stcb);
217760Stuexen					stcb->asoc.ss_functions.sctp_ss_clear(stcb, &stcb->asoc, 0, 1);
189121Srrs					for (i = 0; i < stcb->asoc.streamoutcnt; i++) {
189121Srrs						TAILQ_INIT(&stcb->asoc.strmout[i].outqueue);
189121Srrs						stcb->asoc.strmout[i].next_sequence_sent = oldstream[i].next_sequence_sent;
189121Srrs						stcb->asoc.strmout[i].last_msg_incomplete = oldstream[i].last_msg_incomplete;
189121Srrs						stcb->asoc.strmout[i].stream_no = i;
218241Stuexen						stcb->asoc.ss_functions.sctp_ss_init_stream(&stcb->asoc.strmout[i], &oldstream[i]);
189121Srrs						/*
189121Srrs						 * now anything on those
189121Srrs						 * queues?
189121Srrs						 */
216822Stuexen						TAILQ_FOREACH_SAFE(sp, &oldstream[i].outqueue, next, nsp) {
189121Srrs							TAILQ_REMOVE(&oldstream[i].outqueue, sp, next);
189121Srrs							TAILQ_INSERT_TAIL(&stcb->asoc.strmout[i].outqueue, sp, next);
189121Srrs						}
189121Srrs						/*
189121Srrs						 * Now move assoc pointers
189121Srrs						 * too
189121Srrs						 */
189121Srrs						if (stcb->asoc.last_out_stream == &oldstream[i]) {
189121Srrs							stcb->asoc.last_out_stream = &stcb->asoc.strmout[i];
189121Srrs						}
189121Srrs						if (stcb->asoc.locked_on_sending == &oldstream[i]) {
189121Srrs							stcb->asoc.locked_on_sending = &stcb->asoc.strmout[i];
189121Srrs						}
189121Srrs					}
188854Srrs					/* now the new streams */
217760Stuexen					stcb->asoc.ss_functions.sctp_ss_init(stcb, &stcb->asoc, 1);
188854Srrs					for (i = stcb->asoc.streamoutcnt; i < (stcb->asoc.streamoutcnt + addstrmcnt); i++) {
188854Srrs						stcb->asoc.strmout[i].next_sequence_sent = 0x0;
188854Srrs						TAILQ_INIT(&stcb->asoc.strmout[i].outqueue);
188854Srrs						stcb->asoc.strmout[i].stream_no = i;
188854Srrs						stcb->asoc.strmout[i].last_msg_incomplete = 0;
218241Stuexen						stcb->asoc.ss_functions.sctp_ss_init_stream(&stcb->asoc.strmout[i], NULL);
188854Srrs					}
188854Srrs					stcb->asoc.strm_realoutsize = stcb->asoc.streamoutcnt + addstrmcnt;
188854Srrs					SCTP_FREE(oldstream, SCTP_M_STRMO);
188854Srrs				}
189121Srrs				SCTP_TCB_SEND_UNLOCK(stcb);
188854Srrs				goto skip_stuff;
163953Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs				error = EINVAL;
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs				break;
163953Srrs			}
163953Srrs			for (i = 0; i < strrst->strrst_num_streams; i++) {
163953Srrs				if ((send_in) &&
163953Srrs
163953Srrs				    (strrst->strrst_list[i] > stcb->asoc.streamincnt)) {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs					error = EINVAL;
163953Srrs					goto get_out;
163953Srrs				}
163953Srrs				if ((send_out) &&
163953Srrs				    (strrst->strrst_list[i] > stcb->asoc.streamoutcnt)) {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs					error = EINVAL;
163953Srrs					goto get_out;
163953Srrs				}
163953Srrs			}
188854Srrs	skip_stuff:
163953Srrs			if (error) {
163953Srrs		get_out:
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs				break;
163953Srrs			}
163953Srrs			error = sctp_send_str_reset_req(stcb, strrst->strrst_num_streams,
163953Srrs			    strrst->strrst_list,
163953Srrs			    send_out, (stcb->asoc.str_reset_seq_in - 3),
188854Srrs			    send_in, send_tsn, addstream, addstrmcnt);
163953Srrs
172090Srrs			sctp_chunk_output(inp, stcb, SCTP_OUTPUT_FROM_STRRST_REQ, SCTP_SO_LOCKED);
163953Srrs			SCTP_TCB_UNLOCK(stcb);
163953Srrs		}
163953Srrs		break;
166675Srrs
163953Srrs	case SCTP_CONNECT_X:
166675Srrs		if (optsize < (sizeof(int) + sizeof(struct sockaddr_in))) {
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs			error = EINVAL;
163953Srrs			break;
163953Srrs		}
166675Srrs		error = sctp_do_connect_x(so, inp, optval, optsize, p, 0);
163953Srrs		break;
163953Srrs
163953Srrs	case SCTP_CONNECT_X_DELAYED:
166675Srrs		if (optsize < (sizeof(int) + sizeof(struct sockaddr_in))) {
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs			error = EINVAL;
163953Srrs			break;
163953Srrs		}
166675Srrs		error = sctp_do_connect_x(so, inp, optval, optsize, p, 1);
163953Srrs		break;
163953Srrs
163953Srrs	case SCTP_CONNECT_X_COMPLETE:
163953Srrs		{
163953Srrs			struct sockaddr *sa;
163953Srrs			struct sctp_nets *net;
163953Srrs
166675Srrs			/* FIXME MT: check correct? */
166675Srrs			SCTP_CHECK_AND_CAST(sa, optval, struct sockaddr, optsize);
166675Srrs
163953Srrs			/* find tcb */
163953Srrs			if (inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED) {
163953Srrs				SCTP_INP_RLOCK(inp);
163953Srrs				stcb = LIST_FIRST(&inp->sctp_asoc_list);
163953Srrs				if (stcb) {
163953Srrs					SCTP_TCB_LOCK(stcb);
163953Srrs					net = sctp_findnet(stcb, sa);
163953Srrs				}
163953Srrs				SCTP_INP_RUNLOCK(inp);
163953Srrs			} else {
166675Srrs				/*
166675Srrs				 * We increment here since
166675Srrs				 * sctp_findassociation_ep_addr() wil do a
166675Srrs				 * decrement if it finds the stcb as long as
166675Srrs				 * the locked tcb (last argument) is NOT a
166675Srrs				 * TCB.. aka NULL.
166675Srrs				 */
163953Srrs				SCTP_INP_INCR_REF(inp);
163953Srrs				stcb = sctp_findassociation_ep_addr(&inp, sa, &net, NULL, NULL);
163953Srrs				if (stcb == NULL) {
163953Srrs					SCTP_INP_DECR_REF(inp);
163953Srrs				}
163953Srrs			}
163953Srrs
163953Srrs			if (stcb == NULL) {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT);
163953Srrs				error = ENOENT;
163953Srrs				break;
163953Srrs			}
163953Srrs			if (stcb->asoc.delayed_connection == 1) {
163953Srrs				stcb->asoc.delayed_connection = 0;
169378Srrs				(void)SCTP_GETTIME_TIMEVAL(&stcb->asoc.time_entered);
165220Srrs				sctp_timer_stop(SCTP_TIMER_TYPE_INIT, inp, stcb,
165220Srrs				    stcb->asoc.primary_destination,
165220Srrs				    SCTP_FROM_SCTP_USRREQ + SCTP_LOC_9);
172090Srrs				sctp_send_initiate(inp, stcb, SCTP_SO_LOCKED);
163953Srrs			} else {
163953Srrs				/*
163953Srrs				 * already expired or did not use delayed
163953Srrs				 * connectx
163953Srrs				 */
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EALREADY);
163953Srrs				error = EALREADY;
163953Srrs			}
163953Srrs			SCTP_TCB_UNLOCK(stcb);
163953Srrs		}
163953Srrs		break;
170056Srrs	case SCTP_MAX_BURST:
163953Srrs		{
217895Stuexen			struct sctp_assoc_value *av;
163953Srrs
217895Stuexen			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, optsize);
217895Stuexen			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
166675Srrs
217895Stuexen			if (stcb) {
217895Stuexen				stcb->asoc.max_burst = av->assoc_value;
217895Stuexen				SCTP_TCB_UNLOCK(stcb);
217895Stuexen			} else {
217895Stuexen				SCTP_INP_WLOCK(inp);
217895Stuexen				inp->sctp_ep.max_burst = av->assoc_value;
217895Stuexen				SCTP_INP_WUNLOCK(inp);
217895Stuexen			}
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_MAXSEG:
163953Srrs		{
167598Srrs			struct sctp_assoc_value *av;
163953Srrs			int ovh;
163953Srrs
167598Srrs			SCTP_CHECK_AND_CAST(av, optval, struct sctp_assoc_value, optsize);
167598Srrs			SCTP_FIND_STCB(inp, stcb, av->assoc_id);
166675Srrs
170056Srrs			if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) {
170056Srrs				ovh = SCTP_MED_OVERHEAD;
170056Srrs			} else {
170056Srrs				ovh = SCTP_MED_V4_OVERHEAD;
170056Srrs			}
167598Srrs			if (stcb) {
170056Srrs				if (av->assoc_value) {
170056Srrs					stcb->asoc.sctp_frag_point = (av->assoc_value + ovh);
170056Srrs				} else {
170056Srrs					stcb->asoc.sctp_frag_point = SCTP_DEFAULT_MAXSEGMENT;
170056Srrs				}
167598Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
167598Srrs				SCTP_INP_WLOCK(inp);
167598Srrs				/*
167598Srrs				 * FIXME MT: I think this is not in tune
167598Srrs				 * with the API ID
167598Srrs				 */
167598Srrs				if (av->assoc_value) {
167598Srrs					inp->sctp_frag_point = (av->assoc_value + ovh);
167598Srrs				} else {
170056Srrs					inp->sctp_frag_point = SCTP_DEFAULT_MAXSEGMENT;
167598Srrs				}
167598Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_EVENTS:
163953Srrs		{
163953Srrs			struct sctp_event_subscribe *events;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(events, optval, struct sctp_event_subscribe, optsize);
166675Srrs
163953Srrs			SCTP_INP_WLOCK(inp);
163953Srrs			if (events->sctp_data_io_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_RECVDATAIOEVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_RECVDATAIOEVNT);
163953Srrs			}
163953Srrs
163953Srrs			if (events->sctp_association_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_RECVASSOCEVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_RECVASSOCEVNT);
163953Srrs			}
163953Srrs
163953Srrs			if (events->sctp_address_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_RECVPADDREVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_RECVPADDREVNT);
163953Srrs			}
163953Srrs
163953Srrs			if (events->sctp_send_failure_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_RECVSENDFAILEVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_RECVSENDFAILEVNT);
163953Srrs			}
163953Srrs
163953Srrs			if (events->sctp_peer_error_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_RECVPEERERR);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_RECVPEERERR);
163953Srrs			}
163953Srrs
163953Srrs			if (events->sctp_shutdown_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_RECVSHUTDOWNEVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_RECVSHUTDOWNEVNT);
163953Srrs			}
163953Srrs
163953Srrs			if (events->sctp_partial_delivery_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_PDAPIEVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_PDAPIEVNT);
163953Srrs			}
163953Srrs
163953Srrs			if (events->sctp_adaptation_layer_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_ADAPTATIONEVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_ADAPTATIONEVNT);
163953Srrs			}
163953Srrs
163953Srrs			if (events->sctp_authentication_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_AUTHEVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_AUTHEVNT);
163953Srrs			}
163953Srrs
185694Srrs			if (events->sctp_sender_dry_event) {
185694Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_DRYEVNT);
188067Srrs				if ((inp->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) ||
188067Srrs				    (inp->sctp_flags & SCTP_PCB_FLAGS_IN_TCPPOOL)) {
188067Srrs					stcb = LIST_FIRST(&inp->sctp_asoc_list);
188067Srrs					if (stcb) {
188067Srrs						SCTP_TCB_LOCK(stcb);
188067Srrs					}
188067Srrs					if (stcb &&
188067Srrs					    TAILQ_EMPTY(&stcb->asoc.send_queue) &&
188067Srrs					    TAILQ_EMPTY(&stcb->asoc.sent_queue) &&
188067Srrs					    (stcb->asoc.stream_queue_cnt == 0)) {
188067Srrs						sctp_ulp_notify(SCTP_NOTIFY_SENDER_DRY, stcb, 0, NULL, SCTP_SO_LOCKED);
188067Srrs					}
188067Srrs					if (stcb) {
188067Srrs						SCTP_TCB_UNLOCK(stcb);
188067Srrs					}
188067Srrs				}
185694Srrs			} else {
185694Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_DRYEVNT);
185694Srrs			}
185694Srrs
202520Srrs			if (events->sctp_stream_reset_event) {
163953Srrs				sctp_feature_on(inp, SCTP_PCB_FLAGS_STREAM_RESETEVNT);
163953Srrs			} else {
163953Srrs				sctp_feature_off(inp, SCTP_PCB_FLAGS_STREAM_RESETEVNT);
163953Srrs			}
163953Srrs			SCTP_INP_WUNLOCK(inp);
163953Srrs		}
163953Srrs		break;
163953Srrs
163953Srrs	case SCTP_ADAPTATION_LAYER:
163953Srrs		{
163953Srrs			struct sctp_setadaptation *adap_bits;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(adap_bits, optval, struct sctp_setadaptation, optsize);
163953Srrs			SCTP_INP_WLOCK(inp);
163953Srrs			inp->sctp_ep.adaptation_layer_indicator = adap_bits->ssb_adaptation_ind;
163953Srrs			SCTP_INP_WUNLOCK(inp);
163953Srrs		}
163953Srrs		break;
166675Srrs#ifdef SCTP_DEBUG
163953Srrs	case SCTP_SET_INITIAL_DBG_SEQ:
163953Srrs		{
163953Srrs			uint32_t *vvv;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(vvv, optval, uint32_t, optsize);
163953Srrs			SCTP_INP_WLOCK(inp);
163953Srrs			inp->sctp_ep.initial_sequence_debug = *vvv;
163953Srrs			SCTP_INP_WUNLOCK(inp);
163953Srrs		}
163953Srrs		break;
166675Srrs#endif
163953Srrs	case SCTP_DEFAULT_SEND_PARAM:
163953Srrs		{
163953Srrs			struct sctp_sndrcvinfo *s_info;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(s_info, optval, struct sctp_sndrcvinfo, optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, s_info->sinfo_assoc_id);
163953Srrs
166675Srrs			if (stcb) {
166675Srrs				if (s_info->sinfo_stream <= stcb->asoc.streamoutcnt) {
170056Srrs					memcpy(&stcb->asoc.def_send, s_info, min(optsize, sizeof(stcb->asoc.def_send)));
163953Srrs				} else {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
166675Srrs					error = EINVAL;
163953Srrs				}
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
166675Srrs				SCTP_INP_WLOCK(inp);
170056Srrs				memcpy(&inp->def_send, s_info, min(optsize, sizeof(inp->def_send)));
166675Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_PEER_ADDR_PARAMS:
163953Srrs		/* Applys to the specific association */
163953Srrs		{
163953Srrs			struct sctp_paddrparams *paddrp;
163953Srrs			struct sctp_nets *net;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(paddrp, optval, struct sctp_paddrparams, optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, paddrp->spp_assoc_id);
163953Srrs			net = NULL;
166675Srrs			if (stcb) {
166675Srrs				net = sctp_findnet(stcb, (struct sockaddr *)&paddrp->spp_address);
166675Srrs			} else {
166675Srrs				/*
166675Srrs				 * We increment here since
166675Srrs				 * sctp_findassociation_ep_addr() wil do a
166675Srrs				 * decrement if it finds the stcb as long as
166675Srrs				 * the locked tcb (last argument) is NOT a
166675Srrs				 * TCB.. aka NULL.
166675Srrs				 */
166675Srrs				SCTP_INP_INCR_REF(inp);
166675Srrs				stcb = sctp_findassociation_ep_addr(&inp,
166675Srrs				    (struct sockaddr *)&paddrp->spp_address,
166675Srrs				    &net, NULL, NULL);
163953Srrs				if (stcb == NULL) {
166675Srrs					SCTP_INP_DECR_REF(inp);
163953Srrs				}
163953Srrs			}
171943Srrs			if (stcb && (net == NULL)) {
171943Srrs				struct sockaddr *sa;
171943Srrs
171943Srrs				sa = (struct sockaddr *)&paddrp->spp_address;
221249Stuexen#ifdef INET
171943Srrs				if (sa->sa_family == AF_INET) {
221249Stuexen
171943Srrs					struct sockaddr_in *sin;
171943Srrs
171943Srrs					sin = (struct sockaddr_in *)sa;
171943Srrs					if (sin->sin_addr.s_addr) {
171943Srrs						SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171943Srrs						SCTP_TCB_UNLOCK(stcb);
171943Srrs						error = EINVAL;
171943Srrs						break;
171943Srrs					}
221249Stuexen				} else
221249Stuexen#endif
221249Stuexen#ifdef INET6
221249Stuexen				if (sa->sa_family == AF_INET6) {
171943Srrs					struct sockaddr_in6 *sin6;
171943Srrs
171943Srrs					sin6 = (struct sockaddr_in6 *)sa;
171943Srrs					if (!IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
171943Srrs						SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171943Srrs						SCTP_TCB_UNLOCK(stcb);
171943Srrs						error = EINVAL;
171943Srrs						break;
171943Srrs					}
221249Stuexen				} else
221249Stuexen#endif
221249Stuexen				{
171943Srrs					error = EAFNOSUPPORT;
171943Srrs					SCTP_TCB_UNLOCK(stcb);
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
171943Srrs					break;
171943Srrs				}
171943Srrs			}
170056Srrs			/* sanity checks */
170056Srrs			if ((paddrp->spp_flags & SPP_HB_ENABLE) && (paddrp->spp_flags & SPP_HB_DISABLE)) {
170056Srrs				if (stcb)
170056Srrs					SCTP_TCB_UNLOCK(stcb);
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
170056Srrs				return (EINVAL);
170056Srrs			}
170056Srrs			if ((paddrp->spp_flags & SPP_PMTUD_ENABLE) && (paddrp->spp_flags & SPP_PMTUD_DISABLE)) {
170056Srrs				if (stcb)
170056Srrs					SCTP_TCB_UNLOCK(stcb);
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
170056Srrs				return (EINVAL);
170056Srrs			}
163953Srrs			if (stcb) {
163953Srrs				/************************TCB SPECIFIC SET ******************/
163953Srrs				/*
163953Srrs				 * do we change the timer for HB, we run
163953Srrs				 * only one?
163953Srrs				 */
170056Srrs				int ovh = 0;
170056Srrs
170056Srrs				if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) {
170056Srrs					ovh = SCTP_MED_OVERHEAD;
170056Srrs				} else {
170056Srrs					ovh = SCTP_MED_V4_OVERHEAD;
170056Srrs				}
170056Srrs
163953Srrs				if (paddrp->spp_hbinterval)
163953Srrs					stcb->asoc.heart_beat_delay = paddrp->spp_hbinterval;
163953Srrs				else if (paddrp->spp_flags & SPP_HB_TIME_IS_ZERO)
163953Srrs					stcb->asoc.heart_beat_delay = 0;
163953Srrs
163953Srrs				/* network sets ? */
163953Srrs				if (net) {
163953Srrs					/************************NET SPECIFIC SET ******************/
163953Srrs					if (paddrp->spp_flags & SPP_HB_DEMAND) {
163953Srrs						/* on demand HB */
171440Srrs						if (sctp_send_hb(stcb, 1, net) < 0) {
171440Srrs							/* asoc destroyed */
171943Srrs							SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171440Srrs							error = EINVAL;
171440Srrs							break;
171440Srrs						}
163953Srrs					}
163953Srrs					if (paddrp->spp_flags & SPP_HB_DISABLE) {
163953Srrs						net->dest_state |= SCTP_ADDR_NOHB;
163953Srrs					}
163953Srrs					if (paddrp->spp_flags & SPP_HB_ENABLE) {
163953Srrs						net->dest_state &= ~SCTP_ADDR_NOHB;
163953Srrs					}
170056Srrs					if ((paddrp->spp_flags & SPP_PMTUD_DISABLE) && (paddrp->spp_pathmtu >= SCTP_SMALLEST_PMTU)) {
165647Srrs						if (SCTP_OS_TIMER_PENDING(&net->pmtu_timer.timer)) {
165220Srrs							sctp_timer_stop(SCTP_TIMER_TYPE_PATHMTURAISE, inp, stcb, net,
165220Srrs							    SCTP_FROM_SCTP_USRREQ + SCTP_LOC_10);
163953Srrs						}
163953Srrs						if (paddrp->spp_pathmtu > SCTP_DEFAULT_MINSEGMENT) {
170056Srrs							net->mtu = paddrp->spp_pathmtu + ovh;
169352Srrs							if (net->mtu < stcb->asoc.smallest_mtu) {
167695Srrs								sctp_pathmtu_adjustment(inp, stcb, net, net->mtu);
169352Srrs							}
163953Srrs						}
163953Srrs					}
163953Srrs					if (paddrp->spp_flags & SPP_PMTUD_ENABLE) {
165647Srrs						if (SCTP_OS_TIMER_PENDING(&net->pmtu_timer.timer)) {
163953Srrs							sctp_timer_start(SCTP_TIMER_TYPE_PATHMTURAISE, inp, stcb, net);
163953Srrs						}
163953Srrs					}
163953Srrs					if (paddrp->spp_pathmaxrxt)
163953Srrs						net->failure_threshold = paddrp->spp_pathmaxrxt;
167598Srrs#ifdef INET
163953Srrs					if (paddrp->spp_flags & SPP_IPV4_TOS) {
163953Srrs						if (net->ro._l_addr.sin.sin_family == AF_INET) {
163953Srrs							net->tos_flowlabel = paddrp->spp_ipv4_tos & 0x000000fc;
163953Srrs						}
163953Srrs					}
163953Srrs#endif
167598Srrs#ifdef INET6
163953Srrs					if (paddrp->spp_flags & SPP_IPV6_FLOWLABEL) {
163953Srrs						if (net->ro._l_addr.sin6.sin6_family == AF_INET6) {
163953Srrs							net->tos_flowlabel = paddrp->spp_ipv6_flowlabel;
163953Srrs						}
163953Srrs					}
163953Srrs#endif
163953Srrs				} else {
163953Srrs					/************************ASSOC ONLY -- NO NET SPECIFIC SET ******************/
163953Srrs					if (paddrp->spp_pathmaxrxt)
163953Srrs						stcb->asoc.def_net_failure = paddrp->spp_pathmaxrxt;
163953Srrs
163953Srrs					if (paddrp->spp_flags & SPP_HB_ENABLE) {
163953Srrs						/* Turn back on the timer */
163953Srrs						stcb->asoc.hb_is_disabled = 0;
163953Srrs						sctp_timer_start(SCTP_TIMER_TYPE_HEARTBEAT, inp, stcb, net);
163953Srrs					}
170056Srrs					if ((paddrp->spp_flags & SPP_PMTUD_DISABLE) && (paddrp->spp_pathmtu >= SCTP_SMALLEST_PMTU)) {
170056Srrs						TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
170056Srrs							if (SCTP_OS_TIMER_PENDING(&net->pmtu_timer.timer)) {
170056Srrs								sctp_timer_stop(SCTP_TIMER_TYPE_PATHMTURAISE, inp, stcb, net,
170056Srrs								    SCTP_FROM_SCTP_USRREQ + SCTP_LOC_10);
170056Srrs							}
170056Srrs							if (paddrp->spp_pathmtu > SCTP_DEFAULT_MINSEGMENT) {
170056Srrs								net->mtu = paddrp->spp_pathmtu + ovh;
170056Srrs								if (net->mtu < stcb->asoc.smallest_mtu) {
170056Srrs									sctp_pathmtu_adjustment(inp, stcb, net, net->mtu);
170056Srrs								}
170056Srrs							}
170056Srrs						}
170056Srrs					}
170056Srrs					if (paddrp->spp_flags & SPP_PMTUD_ENABLE) {
170056Srrs						TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
170056Srrs							if (SCTP_OS_TIMER_PENDING(&net->pmtu_timer.timer)) {
170056Srrs								sctp_timer_start(SCTP_TIMER_TYPE_PATHMTURAISE, inp, stcb, net);
170056Srrs							}
170056Srrs						}
170056Srrs					}
163953Srrs					if (paddrp->spp_flags & SPP_HB_DISABLE) {
163953Srrs						int cnt_of_unconf = 0;
163953Srrs						struct sctp_nets *lnet;
163953Srrs
163953Srrs						stcb->asoc.hb_is_disabled = 1;
163953Srrs						TAILQ_FOREACH(lnet, &stcb->asoc.nets, sctp_next) {
163953Srrs							if (lnet->dest_state & SCTP_ADDR_UNCONFIRMED) {
163953Srrs								cnt_of_unconf++;
163953Srrs							}
163953Srrs						}
163953Srrs						/*
163953Srrs						 * stop the timer ONLY if we
163953Srrs						 * have no unconfirmed
163953Srrs						 * addresses
163953Srrs						 */
163953Srrs						if (cnt_of_unconf == 0) {
170056Srrs							TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
170056Srrs								sctp_timer_stop(SCTP_TIMER_TYPE_HEARTBEAT, inp, stcb, net,
170056Srrs								    SCTP_FROM_SCTP_USRREQ + SCTP_LOC_11);
170056Srrs							}
163953Srrs						}
163953Srrs					}
163953Srrs					if (paddrp->spp_flags & SPP_HB_ENABLE) {
163953Srrs						/* start up the timer. */
170056Srrs						TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
170056Srrs							sctp_timer_start(SCTP_TIMER_TYPE_HEARTBEAT, inp, stcb, net);
170056Srrs						}
163953Srrs					}
167598Srrs#ifdef INET
163953Srrs					if (paddrp->spp_flags & SPP_IPV4_TOS)
163953Srrs						stcb->asoc.default_tos = paddrp->spp_ipv4_tos & 0x000000fc;
163953Srrs#endif
167598Srrs#ifdef INET6
163953Srrs					if (paddrp->spp_flags & SPP_IPV6_FLOWLABEL)
163953Srrs						stcb->asoc.default_flowlabel = paddrp->spp_ipv6_flowlabel;
163953Srrs#endif
163953Srrs
163953Srrs				}
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				/************************NO TCB, SET TO default stuff ******************/
163953Srrs				SCTP_INP_WLOCK(inp);
163953Srrs				/*
163953Srrs				 * For the TOS/FLOWLABEL stuff you set it
163953Srrs				 * with the options on the socket
163953Srrs				 */
163953Srrs				if (paddrp->spp_pathmaxrxt) {
163953Srrs					inp->sctp_ep.def_net_failure = paddrp->spp_pathmaxrxt;
163953Srrs				}
170056Srrs				if (paddrp->spp_flags & SPP_HB_TIME_IS_ZERO)
170056Srrs					inp->sctp_ep.sctp_timeoutticks[SCTP_TIMER_HEARTBEAT] = 0;
171477Srrs				else if (paddrp->spp_hbinterval) {
171477Srrs					if (paddrp->spp_hbinterval > SCTP_MAX_HB_INTERVAL)
171477Srrs						paddrp->spp_hbinterval = SCTP_MAX_HB_INTERVAL;
170056Srrs					inp->sctp_ep.sctp_timeoutticks[SCTP_TIMER_HEARTBEAT] = MSEC_TO_TICKS(paddrp->spp_hbinterval);
171477Srrs				}
163953Srrs				if (paddrp->spp_flags & SPP_HB_ENABLE) {
163953Srrs					sctp_feature_off(inp, SCTP_PCB_FLAGS_DONOT_HEARTBEAT);
170056Srrs
163953Srrs				} else if (paddrp->spp_flags & SPP_HB_DISABLE) {
163953Srrs					sctp_feature_on(inp, SCTP_PCB_FLAGS_DONOT_HEARTBEAT);
163953Srrs				}
163953Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_RTOINFO:
163953Srrs		{
163953Srrs			struct sctp_rtoinfo *srto;
169655Srrs			uint32_t new_init, new_min, new_max;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(srto, optval, struct sctp_rtoinfo, optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, srto->srto_assoc_id);
166675Srrs
166675Srrs			if (stcb) {
167598Srrs				if (srto->srto_initial)
169655Srrs					new_init = srto->srto_initial;
169655Srrs				else
169655Srrs					new_init = stcb->asoc.initial_rto;
167598Srrs				if (srto->srto_max)
169655Srrs					new_max = srto->srto_max;
169655Srrs				else
169655Srrs					new_max = stcb->asoc.maxrto;
167598Srrs				if (srto->srto_min)
169655Srrs					new_min = srto->srto_min;
169655Srrs				else
169655Srrs					new_min = stcb->asoc.minrto;
169655Srrs				if ((new_min <= new_init) && (new_init <= new_max)) {
169655Srrs					stcb->asoc.initial_rto = new_init;
169655Srrs					stcb->asoc.maxrto = new_max;
169655Srrs					stcb->asoc.minrto = new_min;
169655Srrs				} else {
179783Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
179783Srrs					error = EINVAL;
169655Srrs				}
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
163953Srrs				SCTP_INP_WLOCK(inp);
167598Srrs				if (srto->srto_initial)
169655Srrs					new_init = srto->srto_initial;
169655Srrs				else
169655Srrs					new_init = inp->sctp_ep.initial_rto;
167598Srrs				if (srto->srto_max)
169655Srrs					new_max = srto->srto_max;
169655Srrs				else
169655Srrs					new_max = inp->sctp_ep.sctp_maxrto;
167598Srrs				if (srto->srto_min)
169655Srrs					new_min = srto->srto_min;
169655Srrs				else
169655Srrs					new_min = inp->sctp_ep.sctp_minrto;
169655Srrs				if ((new_min <= new_init) && (new_init <= new_max)) {
169655Srrs					inp->sctp_ep.initial_rto = new_init;
169655Srrs					inp->sctp_ep.sctp_maxrto = new_max;
169655Srrs					inp->sctp_ep.sctp_minrto = new_min;
169655Srrs				} else {
179783Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
179783Srrs					error = EINVAL;
169655Srrs				}
163953Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_ASSOCINFO:
163953Srrs		{
163953Srrs			struct sctp_assocparams *sasoc;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sasoc, optval, struct sctp_assocparams, optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, sasoc->sasoc_assoc_id);
171477Srrs			if (sasoc->sasoc_cookie_life) {
171477Srrs				/* boundary check the cookie life */
171477Srrs				if (sasoc->sasoc_cookie_life < 1000)
171477Srrs					sasoc->sasoc_cookie_life = 1000;
171477Srrs				if (sasoc->sasoc_cookie_life > SCTP_MAX_COOKIE_LIFE) {
171477Srrs					sasoc->sasoc_cookie_life = SCTP_MAX_COOKIE_LIFE;
171477Srrs				}
171477Srrs			}
163953Srrs			if (stcb) {
163953Srrs				if (sasoc->sasoc_asocmaxrxt)
163953Srrs					stcb->asoc.max_send_times = sasoc->sasoc_asocmaxrxt;
163953Srrs				sasoc->sasoc_number_peer_destinations = stcb->asoc.numnets;
163953Srrs				sasoc->sasoc_peer_rwnd = 0;
163953Srrs				sasoc->sasoc_local_rwnd = 0;
170056Srrs				if (sasoc->sasoc_cookie_life) {
171572Srrs					stcb->asoc.cookie_life = MSEC_TO_TICKS(sasoc->sasoc_cookie_life);
167598Srrs				}
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs			} else {
163953Srrs				SCTP_INP_WLOCK(inp);
163953Srrs				if (sasoc->sasoc_asocmaxrxt)
163953Srrs					inp->sctp_ep.max_send_times = sasoc->sasoc_asocmaxrxt;
163953Srrs				sasoc->sasoc_number_peer_destinations = 0;
163953Srrs				sasoc->sasoc_peer_rwnd = 0;
163953Srrs				sasoc->sasoc_local_rwnd = 0;
170056Srrs				if (sasoc->sasoc_cookie_life) {
169655Srrs					inp->sctp_ep.def_cookie_life = MSEC_TO_TICKS(sasoc->sasoc_cookie_life);
167598Srrs				}
163953Srrs				SCTP_INP_WUNLOCK(inp);
163953Srrs			}
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_INITMSG:
163953Srrs		{
163953Srrs			struct sctp_initmsg *sinit;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sinit, optval, struct sctp_initmsg, optsize);
163953Srrs			SCTP_INP_WLOCK(inp);
163953Srrs			if (sinit->sinit_num_ostreams)
163953Srrs				inp->sctp_ep.pre_open_stream_count = sinit->sinit_num_ostreams;
163953Srrs
163953Srrs			if (sinit->sinit_max_instreams)
163953Srrs				inp->sctp_ep.max_open_streams_intome = sinit->sinit_max_instreams;
163953Srrs
163953Srrs			if (sinit->sinit_max_attempts)
163953Srrs				inp->sctp_ep.max_init_times = sinit->sinit_max_attempts;
163953Srrs
167598Srrs			if (sinit->sinit_max_init_timeo)
163953Srrs				inp->sctp_ep.initial_init_rto_max = sinit->sinit_max_init_timeo;
163953Srrs			SCTP_INP_WUNLOCK(inp);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_PRIMARY_ADDR:
163953Srrs		{
163953Srrs			struct sctp_setprim *spa;
163953Srrs			struct sctp_nets *net, *lnet;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(spa, optval, struct sctp_setprim, optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, spa->ssp_assoc_id);
163953Srrs
166675Srrs			net = NULL;
166675Srrs			if (stcb) {
166675Srrs				net = sctp_findnet(stcb, (struct sockaddr *)&spa->ssp_addr);
166675Srrs			} else {
166675Srrs				/*
166675Srrs				 * We increment here since
166675Srrs				 * sctp_findassociation_ep_addr() wil do a
166675Srrs				 * decrement if it finds the stcb as long as
166675Srrs				 * the locked tcb (last argument) is NOT a
166675Srrs				 * TCB.. aka NULL.
166675Srrs				 */
163953Srrs				SCTP_INP_INCR_REF(inp);
163953Srrs				stcb = sctp_findassociation_ep_addr(&inp,
163953Srrs				    (struct sockaddr *)&spa->ssp_addr,
163953Srrs				    &net, NULL, NULL);
163953Srrs				if (stcb == NULL) {
163953Srrs					SCTP_INP_DECR_REF(inp);
163953Srrs				}
163953Srrs			}
166675Srrs
166675Srrs			if ((stcb) && (net)) {
166675Srrs				if ((net != stcb->asoc.primary_destination) &&
166675Srrs				    (!(net->dest_state & SCTP_ADDR_UNCONFIRMED))) {
166675Srrs					/* Ok we need to set it */
166675Srrs					lnet = stcb->asoc.primary_destination;
166675Srrs					if (sctp_set_primary_addr(stcb, (struct sockaddr *)NULL, net) == 0) {
166675Srrs						if (net->dest_state & SCTP_ADDR_SWITCH_PRIMARY) {
166675Srrs							net->dest_state |= SCTP_ADDR_DOUBLE_SWITCH;
166675Srrs						}
166675Srrs						net->dest_state |= SCTP_ADDR_SWITCH_PRIMARY;
163953Srrs					}
163953Srrs				}
166675Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
166675Srrs				error = EINVAL;
163953Srrs			}
166675Srrs			if (stcb) {
166675Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			}
163953Srrs		}
163953Srrs		break;
167598Srrs	case SCTP_SET_DYNAMIC_PRIMARY:
167598Srrs		{
167598Srrs			union sctp_sockstore *ss;
163953Srrs
170587Srwatson			error = priv_check(curthread,
170587Srwatson			    PRIV_NETINET_RESERVEDPORT);
167598Srrs			if (error)
167598Srrs				break;
167598Srrs
167598Srrs			SCTP_CHECK_AND_CAST(ss, optval, union sctp_sockstore, optsize);
167598Srrs			/* SUPER USER CHECK? */
167598Srrs			error = sctp_dynamic_set_primary(&ss->sa, vrf_id);
167598Srrs		}
167598Srrs		break;
163953Srrs	case SCTP_SET_PEER_PRIMARY_ADDR:
163953Srrs		{
163953Srrs			struct sctp_setpeerprim *sspp;
163953Srrs
166675Srrs			SCTP_CHECK_AND_CAST(sspp, optval, struct sctp_setpeerprim, optsize);
166675Srrs			SCTP_FIND_STCB(inp, stcb, sspp->sspp_assoc_id);
169208Srrs			if (stcb != NULL) {
170056Srrs				struct sctp_ifa *ifa;
170056Srrs
170056Srrs				ifa = sctp_find_ifa_by_addr((struct sockaddr *)&sspp->sspp_addr,
172091Srrs				    stcb->asoc.vrf_id, SCTP_ADDR_NOT_LOCKED);
170056Srrs				if (ifa == NULL) {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
166675Srrs					error = EINVAL;
170056Srrs					goto out_of_it;
166675Srrs				}
170056Srrs				if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) == 0) {
170056Srrs					/*
170056Srrs					 * Must validate the ifa found is in
170056Srrs					 * our ep
170056Srrs					 */
170056Srrs					struct sctp_laddr *laddr;
170056Srrs					int found = 0;
170056Srrs
170056Srrs					LIST_FOREACH(laddr, &inp->sctp_addr_list, sctp_nxt_addr) {
170056Srrs						if (laddr->ifa == NULL) {
170056Srrs							SCTPDBG(SCTP_DEBUG_OUTPUT1, "%s: NULL ifa\n",
170056Srrs							    __FUNCTION__);
170056Srrs							continue;
170056Srrs						}
170056Srrs						if (laddr->ifa == ifa) {
170056Srrs							found = 1;
170056Srrs							break;
170056Srrs						}
170056Srrs					}
170056Srrs					if (!found) {
171943Srrs						SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
170056Srrs						error = EINVAL;
170056Srrs						goto out_of_it;
170056Srrs					}
170056Srrs				}
170056Srrs				if (sctp_set_primary_ip_address_sa(stcb,
170056Srrs				    (struct sockaddr *)&sspp->sspp_addr) != 0) {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
170056Srrs					error = EINVAL;
170056Srrs				}
170056Srrs		out_of_it:
169208Srrs				SCTP_TCB_UNLOCK(stcb);
166675Srrs			} else {
171943Srrs				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs				error = EINVAL;
163953Srrs			}
169208Srrs
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_BINDX_ADD_ADDR:
163953Srrs		{
163953Srrs			struct sctp_getaddresses *addrs;
171531Srrs			size_t sz;
171477Srrs			struct thread *td;
163953Srrs
171477Srrs			td = (struct thread *)p;
170606Srrs			SCTP_CHECK_AND_CAST(addrs, optval, struct sctp_getaddresses,
170606Srrs			    optsize);
221249Stuexen#ifdef INET
171477Srrs			if (addrs->addr->sa_family == AF_INET) {
171477Srrs				sz = sizeof(struct sctp_getaddresses) - sizeof(struct sockaddr) + sizeof(struct sockaddr_in);
171477Srrs				if (optsize < sz) {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171477Srrs					error = EINVAL;
171477Srrs					break;
171477Srrs				}
188590Srrs				if (td != NULL && (error = prison_local_ip4(td->td_ucred, &(((struct sockaddr_in *)(addrs->addr))->sin_addr)))) {
188590Srrs					SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, error);
185435Sbz					break;
171477Srrs				}
221249Stuexen			} else
221249Stuexen#endif
185435Sbz#ifdef INET6
221249Stuexen			if (addrs->addr->sa_family == AF_INET6) {
171477Srrs				sz = sizeof(struct sctp_getaddresses) - sizeof(struct sockaddr) + sizeof(struct sockaddr_in6);
171477Srrs				if (optsize < sz) {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171477Srrs					error = EINVAL;
171477Srrs					break;
171477Srrs				}
188590Srrs				if (td != NULL && (error = prison_local_ip6(td->td_ucred, &(((struct sockaddr_in6 *)(addrs->addr))->sin6_addr),
188590Srrs				    (SCTP_IPV6_V6ONLY(inp) != 0))) != 0) {
188590Srrs					SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, error);
185435Sbz					break;
185435Sbz				}
221249Stuexen			} else
185435Sbz#endif
221249Stuexen			{
185435Sbz				error = EAFNOSUPPORT;
185435Sbz				break;
171477Srrs			}
170606Srrs			sctp_bindx_add_address(so, inp, addrs->addr,
170606Srrs			    addrs->sget_assoc_id, vrf_id,
170606Srrs			    &error, p);
163953Srrs		}
163953Srrs		break;
163953Srrs	case SCTP_BINDX_REM_ADDR:
163953Srrs		{
163953Srrs			struct sctp_getaddresses *addrs;
171531Srrs			size_t sz;
171477Srrs			struct thread *td;
163953Srrs
171477Srrs			td = (struct thread *)p;
185435Sbz
166675Srrs			SCTP_CHECK_AND_CAST(addrs, optval, struct sctp_getaddresses, optsize);
221249Stuexen#ifdef INET
171477Srrs			if (addrs->addr->sa_family == AF_INET) {
171477Srrs				sz = sizeof(struct sctp_getaddresses) - sizeof(struct sockaddr) + sizeof(struct sockaddr_in);
171477Srrs				if (optsize < sz) {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171477Srrs					error = EINVAL;
171477Srrs					break;
171477Srrs				}
188590Srrs				if (td != NULL && (error = prison_local_ip4(td->td_ucred, &(((struct sockaddr_in *)(addrs->addr))->sin_addr)))) {
188590Srrs					SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, error);
185435Sbz					break;
171477Srrs				}
221249Stuexen			} else
221249Stuexen#endif
185435Sbz#ifdef INET6
221249Stuexen			if (addrs->addr->sa_family == AF_INET6) {
171477Srrs				sz = sizeof(struct sctp_getaddresses) - sizeof(struct sockaddr) + sizeof(struct sockaddr_in6);
171477Srrs				if (optsize < sz) {
171943Srrs					SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
171477Srrs					error = EINVAL;
171477Srrs					break;
171477Srrs				}
188590Srrs				if (td != NULL && (error = prison_local_ip6(td->td_ucred, &(((struct sockaddr_in6 *)(addrs->addr))->sin6_addr),
188590Srrs				    (SCTP_IPV6_V6ONLY(inp) != 0))) != 0) {
188590Srrs					SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, error);
185435Sbz					break;
185435Sbz				}
221249Stuexen			} else
185435Sbz#endif
221249Stuexen			{
185435Sbz				error = EAFNOSUPPORT;
185435Sbz				break;
171477Srrs			}
170606Srrs			sctp_bindx_delete_address(so, inp, addrs->addr,
170606Srrs			    addrs->sget_assoc_id, vrf_id,
170606Srrs			    &error);
163953Srrs		}
163953Srrs		break;
163953Srrs	default:
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOPROTOOPT);
163953Srrs		error = ENOPROTOOPT;
163953Srrs		break;
163953Srrs	}			/* end switch (opt) */
163953Srrs	return (error);
163953Srrs}
163953Srrs
163953Srrsint
163953Srrssctp_ctloutput(struct socket *so, struct sockopt *sopt)
163953Srrs{
166675Srrs	void *optval = NULL;
166675Srrs	size_t optsize = 0;
163953Srrs	struct sctp_inpcb *inp;
166675Srrs	void *p;
166675Srrs	int error = 0;
163953Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (inp == 0) {
163953Srrs		/* I made the same as TCP since we are not setup? */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return (ECONNRESET);
163953Srrs	}
163953Srrs	if (sopt->sopt_level != IPPROTO_SCTP) {
163953Srrs		/* wrong proto level... send back up to IP */
163953Srrs#ifdef INET6
163953Srrs		if (INP_CHECK_SOCKAF(so, AF_INET6))
163953Srrs			error = ip6_ctloutput(so, sopt);
221249Stuexen#endif				/* INET6 */
221249Stuexen#if defined(INET) && defined (INET6)
163953Srrs		else
221249Stuexen#endif
221249Stuexen#ifdef INET
163953Srrs			error = ip_ctloutput(so, sopt);
221249Stuexen#endif
163953Srrs		return (error);
163953Srrs	}
166675Srrs	optsize = sopt->sopt_valsize;
166675Srrs	if (optsize) {
170091Srrs		SCTP_MALLOC(optval, void *, optsize, SCTP_M_SOCKOPT);
166675Srrs		if (optval == NULL) {
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOBUFS);
163953Srrs			return (ENOBUFS);
163953Srrs		}
166675Srrs		error = sooptcopyin(sopt, optval, optsize, optsize);
163953Srrs		if (error) {
170091Srrs			SCTP_FREE(optval, SCTP_M_SOCKOPT);
163953Srrs			goto out;
163953Srrs		}
163953Srrs	}
166675Srrs	p = (void *)sopt->sopt_td;
163953Srrs	if (sopt->sopt_dir == SOPT_SET) {
166675Srrs		error = sctp_setopt(so, sopt->sopt_name, optval, optsize, p);
163953Srrs	} else if (sopt->sopt_dir == SOPT_GET) {
166675Srrs		error = sctp_getopt(so, sopt->sopt_name, optval, &optsize, p);
163953Srrs	} else {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		error = EINVAL;
163953Srrs	}
166675Srrs	if ((error == 0) && (optval != NULL)) {
166675Srrs		error = sooptcopyout(sopt, optval, optsize);
170091Srrs		SCTP_FREE(optval, SCTP_M_SOCKOPT);
166675Srrs	} else if (optval != NULL) {
170091Srrs		SCTP_FREE(optval, SCTP_M_SOCKOPT);
163953Srrs	}
163953Srrsout:
163953Srrs	return (error);
163953Srrs}
163953Srrs
221249Stuexen#ifdef INET
163953Srrsstatic int
163953Srrssctp_connect(struct socket *so, struct sockaddr *addr, struct thread *p)
163953Srrs{
163953Srrs	int error = 0;
163953Srrs	int create_lock_on = 0;
167598Srrs	uint32_t vrf_id;
163953Srrs	struct sctp_inpcb *inp;
163953Srrs	struct sctp_tcb *stcb = NULL;
163953Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (inp == 0) {
163953Srrs		/* I made the same as TCP since we are not setup? */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return (ECONNRESET);
163953Srrs	}
171943Srrs	if (addr == NULL) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
170056Srrs		return EINVAL;
171943Srrs	}
221249Stuexen	switch (addr->sa_family) {
185435Sbz#ifdef INET6
221249Stuexen	case AF_INET6:
221249Stuexen		{
221249Stuexen			struct sockaddr_in6 *sin6p;
185694Srrs
221249Stuexen			if (addr->sa_len != sizeof(struct sockaddr_in6)) {
221249Stuexen				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
221249Stuexen				return (EINVAL);
221249Stuexen			}
221249Stuexen			sin6p = (struct sockaddr_in6 *)addr;
221249Stuexen			if (p != NULL && (error = prison_remote_ip6(p->td_ucred, &sin6p->sin6_addr)) != 0) {
221249Stuexen				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
221249Stuexen				return (error);
221249Stuexen			}
221249Stuexen			break;
185435Sbz		}
185435Sbz#endif
221249Stuexen#ifdef INET
221249Stuexen	case AF_INET:
221249Stuexen		{
221249Stuexen			struct sockaddr_in *sinp;
185694Srrs
221249Stuexen			if (addr->sa_len != sizeof(struct sockaddr_in)) {
221249Stuexen				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
221249Stuexen				return (EINVAL);
221249Stuexen			}
221249Stuexen			sinp = (struct sockaddr_in *)addr;
221249Stuexen			if (p != NULL && (error = prison_remote_ip4(p->td_ucred, &sinp->sin_addr)) != 0) {
221249Stuexen				SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, error);
221249Stuexen				return (error);
221249Stuexen			}
221249Stuexen			break;
185435Sbz		}
221249Stuexen#endif
221249Stuexen	default:
185435Sbz		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EAFNOSUPPORT);
185435Sbz		return (EAFNOSUPPORT);
170056Srrs	}
178202Srrs	SCTP_INP_INCR_REF(inp);
163953Srrs	SCTP_ASOC_CREATE_LOCK(inp);
163953Srrs	create_lock_on = 1;
163953Srrs
178202Srrs
163953Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_SOCKET_ALLGONE) ||
163953Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_SOCKET_GONE)) {
163953Srrs		/* Should I really unlock ? */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EFAULT);
163953Srrs		error = EFAULT;
163953Srrs		goto out_now;
163953Srrs	}
163953Srrs#ifdef INET6
163953Srrs	if (((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0) &&
163953Srrs	    (addr->sa_family == AF_INET6)) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		error = EINVAL;
163953Srrs		goto out_now;
163953Srrs	}
163953Srrs#endif				/* INET6 */
163953Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_UNBOUND) ==
163953Srrs	    SCTP_PCB_FLAGS_UNBOUND) {
163953Srrs		/* Bind a ephemeral port */
171572Srrs		error = sctp_inpcb_bind(so, NULL, NULL, p);
163953Srrs		if (error) {
163953Srrs			goto out_now;
163953Srrs		}
163953Srrs	}
163953Srrs	/* Now do we connect? */
181054Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_IN_TCPPOOL) &&
181054Srrs	    (sctp_is_feature_off(inp, SCTP_PCB_FLAGS_PORTREUSE))) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		error = EINVAL;
163953Srrs		goto out_now;
163953Srrs	}
163953Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) &&
163953Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED)) {
163953Srrs		/* We are already connected AND the TCP model */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, stcb, NULL, SCTP_FROM_SCTP_USRREQ, EADDRINUSE);
163953Srrs		error = EADDRINUSE;
163953Srrs		goto out_now;
163953Srrs	}
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED) {
163953Srrs		SCTP_INP_RLOCK(inp);
163953Srrs		stcb = LIST_FIRST(&inp->sctp_asoc_list);
163953Srrs		SCTP_INP_RUNLOCK(inp);
163953Srrs	} else {
163953Srrs		/*
166675Srrs		 * We increment here since sctp_findassociation_ep_addr()
181054Srrs		 * will do a decrement if it finds the stcb as long as the
166675Srrs		 * locked tcb (last argument) is NOT a TCB.. aka NULL.
163953Srrs		 */
163953Srrs		SCTP_INP_INCR_REF(inp);
163953Srrs		stcb = sctp_findassociation_ep_addr(&inp, addr, NULL, NULL, NULL);
163953Srrs		if (stcb == NULL) {
163953Srrs			SCTP_INP_DECR_REF(inp);
168299Srrs		} else {
178202Srrs			SCTP_TCB_UNLOCK(stcb);
163953Srrs		}
163953Srrs	}
163953Srrs	if (stcb != NULL) {
163953Srrs		/* Already have or am bring up an association */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EALREADY);
163953Srrs		error = EALREADY;
163953Srrs		goto out_now;
163953Srrs	}
168299Srrs	vrf_id = inp->def_vrf_id;
163953Srrs	/* We are GOOD to go */
206137Stuexen	stcb = sctp_aloc_assoc(inp, addr, &error, 0, vrf_id, p);
163953Srrs	if (stcb == NULL) {
163953Srrs		/* Gak! no memory */
167598Srrs		goto out_now;
163953Srrs	}
163953Srrs	if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) {
163953Srrs		stcb->sctp_ep->sctp_flags |= SCTP_PCB_FLAGS_CONNECTED;
163953Srrs		/* Set the connected flag so we can queue data */
204096Stuexen		SOCKBUF_LOCK(&so->so_rcv);
204096Stuexen		so->so_rcv.sb_state &= ~SBS_CANTRCVMORE;
204096Stuexen		SOCKBUF_UNLOCK(&so->so_rcv);
204096Stuexen		SOCKBUF_LOCK(&so->so_snd);
204096Stuexen		so->so_snd.sb_state &= ~SBS_CANTSENDMORE;
204096Stuexen		SOCKBUF_UNLOCK(&so->so_snd);
204096Stuexen		SOCK_LOCK(so);
204096Stuexen		so->so_state &= ~SS_ISDISCONNECTING;
204096Stuexen		SOCK_UNLOCK(so);
163953Srrs		soisconnecting(so);
163953Srrs	}
171943Srrs	SCTP_SET_STATE(&stcb->asoc, SCTP_STATE_COOKIE_WAIT);
169378Srrs	(void)SCTP_GETTIME_TIMEVAL(&stcb->asoc.time_entered);
163953Srrs
163953Srrs	/* initialize authentication parameters for the assoc */
163953Srrs	sctp_initialize_auth_params(inp, stcb);
163953Srrs
172090Srrs	sctp_send_initiate(inp, stcb, SCTP_SO_LOCKED);
168299Srrs	SCTP_TCB_UNLOCK(stcb);
163953Srrsout_now:
169420Srrs	if (create_lock_on) {
163953Srrs		SCTP_ASOC_CREATE_UNLOCK(inp);
169420Srrs	}
163953Srrs	SCTP_INP_DECR_REF(inp);
163953Srrs	return error;
163953Srrs}
163953Srrs
221249Stuexen#endif
221249Stuexen
163953Srrsint
163953Srrssctp_listen(struct socket *so, int backlog, struct thread *p)
163953Srrs{
163953Srrs	/*
163953Srrs	 * Note this module depends on the protocol processing being called
163953Srrs	 * AFTER any socket level flags and backlog are applied to the
163953Srrs	 * socket. The traditional way that the socket flags are applied is
163953Srrs	 * AFTER protocol processing. We have made a change to the
163953Srrs	 * sys/kern/uipc_socket.c module to reverse this but this MUST be in
163953Srrs	 * place if the socket API for SCTP is to work properly.
163953Srrs	 */
163953Srrs
163953Srrs	int error = 0;
163953Srrs	struct sctp_inpcb *inp;
163953Srrs
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (inp == 0) {
163953Srrs		/* I made the same as TCP since we are not setup? */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return (ECONNRESET);
163953Srrs	}
181054Srrs	if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_PORTREUSE)) {
181054Srrs		/* See if we have a listener */
181054Srrs		struct sctp_inpcb *tinp;
181054Srrs		union sctp_sockstore store, *sp;
181054Srrs
181054Srrs		sp = &store;
181054Srrs		if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) == 0) {
181054Srrs			/* not bound all */
181054Srrs			struct sctp_laddr *laddr;
181054Srrs
181054Srrs			LIST_FOREACH(laddr, &inp->sctp_addr_list, sctp_nxt_addr) {
181054Srrs				memcpy(&store, &laddr->ifa->address, sizeof(store));
221249Stuexen				switch (sp->sa.sa_family) {
221249Stuexen#ifdef INET
221249Stuexen				case AF_INET:
221249Stuexen					sp->sin.sin_port = inp->sctp_lport;
221249Stuexen					break;
221249Stuexen#endif
221249Stuexen#ifdef INET6
221249Stuexen				case AF_INET6:
221249Stuexen					sp->sin6.sin6_port = inp->sctp_lport;
221249Stuexen					break;
221249Stuexen#endif
221249Stuexen				default:
221249Stuexen					break;
221249Stuexen				}
181054Srrs				tinp = sctp_pcb_findep(&sp->sa, 0, 0, inp->def_vrf_id);
181054Srrs				if (tinp && (tinp != inp) &&
181054Srrs				    ((tinp->sctp_flags & SCTP_PCB_FLAGS_SOCKET_ALLGONE) == 0) &&
181054Srrs				    ((tinp->sctp_flags & SCTP_PCB_FLAGS_SOCKET_GONE) == 0) &&
181054Srrs				    (tinp->sctp_socket->so_qlimit)) {
181054Srrs					/*
181054Srrs					 * we have a listener already and
181054Srrs					 * its not this inp.
181054Srrs					 */
181054Srrs					SCTP_INP_DECR_REF(tinp);
181054Srrs					return (EADDRINUSE);
181054Srrs				} else if (tinp) {
181054Srrs					SCTP_INP_DECR_REF(tinp);
181054Srrs				}
181054Srrs			}
181054Srrs		} else {
181054Srrs			/* Setup a local addr bound all */
181054Srrs			memset(&store, 0, sizeof(store));
221249Stuexen			switch (sp->sa.sa_family) {
221249Stuexen#ifdef INET
221249Stuexen			case AF_INET:
221249Stuexen				store.sin.sin_port = inp->sctp_lport;
221249Stuexen				break;
221249Stuexen#endif
181054Srrs#ifdef INET6
221249Stuexen			case AF_INET6:
221249Stuexen				sp->sin6.sin6_port = inp->sctp_lport;
221249Stuexen				break;
221249Stuexen#endif
221249Stuexen			default:
221249Stuexen				break;
221249Stuexen			}
221249Stuexen#ifdef INET6
181054Srrs			if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) {
181054Srrs				store.sa.sa_family = AF_INET6;
181054Srrs				store.sa.sa_len = sizeof(struct sockaddr_in6);
181054Srrs			}
181054Srrs#endif
221249Stuexen#ifdef INET
181054Srrs			if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0) {
181054Srrs				store.sa.sa_family = AF_INET;
181054Srrs				store.sa.sa_len = sizeof(struct sockaddr_in);
181054Srrs			}
221249Stuexen#endif
181054Srrs			tinp = sctp_pcb_findep(&sp->sa, 0, 0, inp->def_vrf_id);
181054Srrs			if (tinp && (tinp != inp) &&
181054Srrs			    ((tinp->sctp_flags & SCTP_PCB_FLAGS_SOCKET_ALLGONE) == 0) &&
181054Srrs			    ((tinp->sctp_flags & SCTP_PCB_FLAGS_SOCKET_GONE) == 0) &&
181054Srrs			    (tinp->sctp_socket->so_qlimit)) {
181054Srrs				/*
181054Srrs				 * we have a listener already and its not
181054Srrs				 * this inp.
181054Srrs				 */
181054Srrs				SCTP_INP_DECR_REF(tinp);
181054Srrs				return (EADDRINUSE);
181054Srrs			} else if (tinp) {
181054Srrs				SCTP_INP_DECR_REF(inp);
181054Srrs			}
181054Srrs		}
181054Srrs	}
163953Srrs	SCTP_INP_RLOCK(inp);
163953Srrs#ifdef SCTP_LOCK_LOGGING
179783Srrs	if (SCTP_BASE_SYSCTL(sctp_logging_level) & SCTP_LOCK_LOGGING_ENABLE) {
170744Srrs		sctp_log_lock(inp, (struct sctp_tcb *)NULL, SCTP_LOG_LOCK_SOCK);
170744Srrs	}
163953Srrs#endif
163953Srrs	SOCK_LOCK(so);
163953Srrs	error = solisten_proto_check(so);
163953Srrs	if (error) {
163953Srrs		SOCK_UNLOCK(so);
169208Srrs		SCTP_INP_RUNLOCK(inp);
163953Srrs		return (error);
163953Srrs	}
181054Srrs	if ((sctp_is_feature_on(inp, SCTP_PCB_FLAGS_PORTREUSE)) &&
181054Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_IN_TCPPOOL)) {
181054Srrs		/*
181054Srrs		 * The unlucky case - We are in the tcp pool with this guy.
181054Srrs		 * - Someone else is in the main inp slot. - We must move
181054Srrs		 * this guy (the listener) to the main slot - We must then
181054Srrs		 * move the guy that was listener to the TCP Pool.
181054Srrs		 */
181054Srrs		if (sctp_swap_inpcb_for_listen(inp)) {
181054Srrs			goto in_use;
181054Srrs		}
181054Srrs	}
163953Srrs	if ((inp->sctp_flags & SCTP_PCB_FLAGS_TCPTYPE) &&
163953Srrs	    (inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED)) {
163953Srrs		/* We are already connected AND the TCP model */
181054Srrsin_use:
163953Srrs		SCTP_INP_RUNLOCK(inp);
163953Srrs		SOCK_UNLOCK(so);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EADDRINUSE);
163953Srrs		return (EADDRINUSE);
163953Srrs	}
181054Srrs	SCTP_INP_RUNLOCK(inp);
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_UNBOUND) {
163953Srrs		/* We must do a bind. */
166675Srrs		SOCK_UNLOCK(so);
171572Srrs		if ((error = sctp_inpcb_bind(so, NULL, NULL, p))) {
163953Srrs			/* bind error, probably perm */
163953Srrs			return (error);
163953Srrs		}
166675Srrs		SOCK_LOCK(so);
163953Srrs	}
163953Srrs	/* It appears for 7.0 and on, we must always call this. */
163953Srrs	solisten_proto(so, backlog);
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_UDPTYPE) {
163953Srrs		/* remove the ACCEPTCONN flag for one-to-many sockets */
163953Srrs		so->so_options &= ~SO_ACCEPTCONN;
163953Srrs	}
163953Srrs	if (backlog == 0) {
163953Srrs		/* turning off listen */
163953Srrs		so->so_options &= ~SO_ACCEPTCONN;
163953Srrs	}
163953Srrs	SOCK_UNLOCK(so);
163953Srrs	return (error);
163953Srrs}
163953Srrs
163953Srrsstatic int sctp_defered_wakeup_cnt = 0;
163953Srrs
163953Srrsint
163953Srrssctp_accept(struct socket *so, struct sockaddr **addr)
163953Srrs{
163953Srrs	struct sctp_tcb *stcb;
163953Srrs	struct sctp_inpcb *inp;
163953Srrs	union sctp_sockstore store;
163953Srrs
178251Srrs#ifdef INET6
163953Srrs	int error;
163953Srrs
178251Srrs#endif
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs
163953Srrs	if (inp == 0) {
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return (ECONNRESET);
163953Srrs	}
163953Srrs	SCTP_INP_RLOCK(inp);
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_UDPTYPE) {
168299Srrs		SCTP_INP_RUNLOCK(inp);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EOPNOTSUPP);
171943Srrs		return (EOPNOTSUPP);
163953Srrs	}
163953Srrs	if (so->so_state & SS_ISDISCONNECTED) {
163953Srrs		SCTP_INP_RUNLOCK(inp);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ECONNABORTED);
163953Srrs		return (ECONNABORTED);
163953Srrs	}
163953Srrs	stcb = LIST_FIRST(&inp->sctp_asoc_list);
163953Srrs	if (stcb == NULL) {
163953Srrs		SCTP_INP_RUNLOCK(inp);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return (ECONNRESET);
163953Srrs	}
163953Srrs	SCTP_TCB_LOCK(stcb);
163953Srrs	SCTP_INP_RUNLOCK(inp);
163953Srrs	store = stcb->asoc.primary_destination->ro._l_addr;
207924Srrs	stcb->asoc.state &= ~SCTP_STATE_IN_ACCEPT_QUEUE;
163953Srrs	SCTP_TCB_UNLOCK(stcb);
178251Srrs	switch (store.sa.sa_family) {
221249Stuexen#ifdef INET
178251Srrs	case AF_INET:
178251Srrs		{
178251Srrs			struct sockaddr_in *sin;
163953Srrs
178251Srrs			SCTP_MALLOC_SONAME(sin, struct sockaddr_in *, sizeof *sin);
208863Srrs			if (sin == NULL)
208863Srrs				return (ENOMEM);
178251Srrs			sin->sin_family = AF_INET;
178251Srrs			sin->sin_len = sizeof(*sin);
178251Srrs			sin->sin_port = ((struct sockaddr_in *)&store)->sin_port;
178251Srrs			sin->sin_addr = ((struct sockaddr_in *)&store)->sin_addr;
178251Srrs			*addr = (struct sockaddr *)sin;
178251Srrs			break;
178251Srrs		}
221249Stuexen#endif
178251Srrs#ifdef INET6
178251Srrs	case AF_INET6:
178251Srrs		{
178251Srrs			struct sockaddr_in6 *sin6;
163953Srrs
178251Srrs			SCTP_MALLOC_SONAME(sin6, struct sockaddr_in6 *, sizeof *sin6);
208863Srrs			if (sin6 == NULL)
208863Srrs				return (ENOMEM);
178251Srrs			sin6->sin6_family = AF_INET6;
178251Srrs			sin6->sin6_len = sizeof(*sin6);
178251Srrs			sin6->sin6_port = ((struct sockaddr_in6 *)&store)->sin6_port;
163953Srrs
178251Srrs			sin6->sin6_addr = ((struct sockaddr_in6 *)&store)->sin6_addr;
178251Srrs			if ((error = sa6_recoverscope(sin6)) != 0) {
178251Srrs				SCTP_FREE_SONAME(sin6);
178251Srrs				return (error);
178251Srrs			}
178251Srrs			*addr = (struct sockaddr *)sin6;
178251Srrs			break;
164085Srrs		}
178251Srrs#endif
178251Srrs	default:
178251Srrs		/* TSNH */
178251Srrs		break;
163953Srrs	}
163953Srrs	/* Wake any delayed sleep action */
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_DONT_WAKE) {
166086Srrs		SCTP_INP_WLOCK(inp);
163953Srrs		inp->sctp_flags &= ~SCTP_PCB_FLAGS_DONT_WAKE;
163953Srrs		if (inp->sctp_flags & SCTP_PCB_FLAGS_WAKEOUTPUT) {
163953Srrs			inp->sctp_flags &= ~SCTP_PCB_FLAGS_WAKEOUTPUT;
166086Srrs			SCTP_INP_WUNLOCK(inp);
163953Srrs			SOCKBUF_LOCK(&inp->sctp_socket->so_snd);
163953Srrs			if (sowriteable(inp->sctp_socket)) {
163953Srrs				sowwakeup_locked(inp->sctp_socket);
163953Srrs			} else {
163953Srrs				SOCKBUF_UNLOCK(&inp->sctp_socket->so_snd);
163953Srrs			}
166086Srrs			SCTP_INP_WLOCK(inp);
163953Srrs		}
163953Srrs		if (inp->sctp_flags & SCTP_PCB_FLAGS_WAKEINPUT) {
163953Srrs			inp->sctp_flags &= ~SCTP_PCB_FLAGS_WAKEINPUT;
166086Srrs			SCTP_INP_WUNLOCK(inp);
163953Srrs			SOCKBUF_LOCK(&inp->sctp_socket->so_rcv);
163953Srrs			if (soreadable(inp->sctp_socket)) {
163953Srrs				sctp_defered_wakeup_cnt++;
163953Srrs				sorwakeup_locked(inp->sctp_socket);
163953Srrs			} else {
163953Srrs				SOCKBUF_UNLOCK(&inp->sctp_socket->so_rcv);
163953Srrs			}
166086Srrs			SCTP_INP_WLOCK(inp);
163953Srrs		}
166086Srrs		SCTP_INP_WUNLOCK(inp);
163953Srrs	}
207924Srrs	if (stcb->asoc.state & SCTP_STATE_ABOUT_TO_BE_FREED) {
207924Srrs		SCTP_TCB_LOCK(stcb);
207924Srrs		sctp_free_assoc(inp, stcb, SCTP_NORMAL_PROC, SCTP_FROM_SCTP_USRREQ + SCTP_LOC_7);
207924Srrs	}
163953Srrs	return (0);
163953Srrs}
163953Srrs
221249Stuexen#ifdef INET
163953Srrsint
163953Srrssctp_ingetaddr(struct socket *so, struct sockaddr **addr)
163953Srrs{
163953Srrs	struct sockaddr_in *sin;
167598Srrs	uint32_t vrf_id;
163953Srrs	struct sctp_inpcb *inp;
167695Srrs	struct sctp_ifa *sctp_ifa;
163953Srrs
163953Srrs	/*
163953Srrs	 * Do the malloc first in case it blocks.
163953Srrs	 */
163953Srrs	SCTP_MALLOC_SONAME(sin, struct sockaddr_in *, sizeof *sin);
208863Srrs	if (sin == NULL)
208863Srrs		return (ENOMEM);
163953Srrs	sin->sin_family = AF_INET;
163953Srrs	sin->sin_len = sizeof(*sin);
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (!inp) {
163953Srrs		SCTP_FREE_SONAME(sin);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return ECONNRESET;
163953Srrs	}
163953Srrs	SCTP_INP_RLOCK(inp);
163953Srrs	sin->sin_port = inp->sctp_lport;
163953Srrs	if (inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
163953Srrs		if (inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED) {
163953Srrs			struct sctp_tcb *stcb;
163953Srrs			struct sockaddr_in *sin_a;
163953Srrs			struct sctp_nets *net;
163953Srrs			int fnd;
163953Srrs
163953Srrs			stcb = LIST_FIRST(&inp->sctp_asoc_list);
163953Srrs			if (stcb == NULL) {
163953Srrs				goto notConn;
163953Srrs			}
163953Srrs			fnd = 0;
163953Srrs			sin_a = NULL;
163953Srrs			SCTP_TCB_LOCK(stcb);
163953Srrs			TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
163953Srrs				sin_a = (struct sockaddr_in *)&net->ro._l_addr;
164085Srrs				if (sin_a == NULL)
164085Srrs					/* this will make coverity happy */
164085Srrs					continue;
164085Srrs
163953Srrs				if (sin_a->sin_family == AF_INET) {
163953Srrs					fnd = 1;
163953Srrs					break;
163953Srrs				}
163953Srrs			}
163953Srrs			if ((!fnd) || (sin_a == NULL)) {
163953Srrs				/* punt */
163953Srrs				SCTP_TCB_UNLOCK(stcb);
163953Srrs				goto notConn;
163953Srrs			}
168299Srrs			vrf_id = inp->def_vrf_id;
167598Srrs			sctp_ifa = sctp_source_address_selection(inp,
167598Srrs			    stcb,
168299Srrs			    (sctp_route_t *) & net->ro,
167598Srrs			    net, 0, vrf_id);
167598Srrs			if (sctp_ifa) {
167598Srrs				sin->sin_addr = sctp_ifa->address.sin.sin_addr;
167598Srrs				sctp_free_ifa(sctp_ifa);
167598Srrs			}
163953Srrs			SCTP_TCB_UNLOCK(stcb);
163953Srrs		} else {
163953Srrs			/* For the bound all case you get back 0 */
163953Srrs	notConn:
163953Srrs			sin->sin_addr.s_addr = 0;
163953Srrs		}
163953Srrs
163953Srrs	} else {
163953Srrs		/* Take the first IPv4 address in the list */
163953Srrs		struct sctp_laddr *laddr;
163953Srrs		int fnd = 0;
163953Srrs
163953Srrs		LIST_FOREACH(laddr, &inp->sctp_addr_list, sctp_nxt_addr) {
167598Srrs			if (laddr->ifa->address.sa.sa_family == AF_INET) {
163953Srrs				struct sockaddr_in *sin_a;
163953Srrs
167598Srrs				sin_a = (struct sockaddr_in *)&laddr->ifa->address.sa;
163953Srrs				sin->sin_addr = sin_a->sin_addr;
163953Srrs				fnd = 1;
163953Srrs				break;
163953Srrs			}
163953Srrs		}
163953Srrs		if (!fnd) {
163953Srrs			SCTP_FREE_SONAME(sin);
163953Srrs			SCTP_INP_RUNLOCK(inp);
171943Srrs			SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT);
163953Srrs			return ENOENT;
163953Srrs		}
163953Srrs	}
163953Srrs	SCTP_INP_RUNLOCK(inp);
163953Srrs	(*addr) = (struct sockaddr *)sin;
163953Srrs	return (0);
163953Srrs}
163953Srrs
163953Srrsint
163953Srrssctp_peeraddr(struct socket *so, struct sockaddr **addr)
163953Srrs{
163953Srrs	struct sockaddr_in *sin = (struct sockaddr_in *)*addr;
166086Srrs	int fnd;
163953Srrs	struct sockaddr_in *sin_a;
163953Srrs	struct sctp_inpcb *inp;
163953Srrs	struct sctp_tcb *stcb;
163953Srrs	struct sctp_nets *net;
163953Srrs
163953Srrs	/* Do the malloc first in case it blocks. */
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if ((inp == NULL) ||
163953Srrs	    ((inp->sctp_flags & SCTP_PCB_FLAGS_CONNECTED) == 0)) {
163953Srrs		/* UDP type and listeners will drop out here */
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOTCONN);
163953Srrs		return (ENOTCONN);
163953Srrs	}
163953Srrs	SCTP_MALLOC_SONAME(sin, struct sockaddr_in *, sizeof *sin);
208863Srrs	if (sin == NULL)
208863Srrs		return (ENOMEM);
163953Srrs	sin->sin_family = AF_INET;
163953Srrs	sin->sin_len = sizeof(*sin);
163953Srrs
163953Srrs	/* We must recapture incase we blocked */
163953Srrs	inp = (struct sctp_inpcb *)so->so_pcb;
163953Srrs	if (!inp) {
163953Srrs		SCTP_FREE_SONAME(sin);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return ECONNRESET;
163953Srrs	}
163953Srrs	SCTP_INP_RLOCK(inp);
163953Srrs	stcb = LIST_FIRST(&inp->sctp_asoc_list);
169420Srrs	if (stcb) {
163953Srrs		SCTP_TCB_LOCK(stcb);
169420Srrs	}
163953Srrs	SCTP_INP_RUNLOCK(inp);
163953Srrs	if (stcb == NULL) {
163953Srrs		SCTP_FREE_SONAME(sin);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, EINVAL);
163953Srrs		return ECONNRESET;
163953Srrs	}
163953Srrs	fnd = 0;
163953Srrs	TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
163953Srrs		sin_a = (struct sockaddr_in *)&net->ro._l_addr;
163953Srrs		if (sin_a->sin_family == AF_INET) {
163953Srrs			fnd = 1;
163953Srrs			sin->sin_port = stcb->rport;
163953Srrs			sin->sin_addr = sin_a->sin_addr;
163953Srrs			break;
163953Srrs		}
163953Srrs	}
163953Srrs	SCTP_TCB_UNLOCK(stcb);
163953Srrs	if (!fnd) {
163953Srrs		/* No IPv4 address */
163953Srrs		SCTP_FREE_SONAME(sin);
171943Srrs		SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_USRREQ, ENOENT);
163953Srrs		return ENOENT;
163953Srrs	}
163953Srrs	(*addr) = (struct sockaddr *)sin;
163953Srrs	return (0);
163953Srrs}
163953Srrs
221249Stuexen#ifdef INET
163953Srrsstruct pr_usrreqs sctp_usrreqs = {
163953Srrs	.pru_abort = sctp_abort,
163953Srrs	.pru_accept = sctp_accept,
163953Srrs	.pru_attach = sctp_attach,
163953Srrs	.pru_bind = sctp_bind,
163953Srrs	.pru_connect = sctp_connect,
163953Srrs	.pru_control = in_control,
163953Srrs	.pru_close = sctp_close,
163953Srrs	.pru_detach = sctp_close,
163953Srrs	.pru_sopoll = sopoll_generic,
178202Srrs	.pru_flush = sctp_flush,
163953Srrs	.pru_disconnect = sctp_disconnect,
163953Srrs	.pru_listen = sctp_listen,
163953Srrs	.pru_peeraddr = sctp_peeraddr,
163953Srrs	.pru_send = sctp_sendm,
163953Srrs	.pru_shutdown = sctp_shutdown,
163953Srrs	.pru_sockaddr = sctp_ingetaddr,
163953Srrs	.pru_sosend = sctp_sosend,
163953Srrs	.pru_soreceive = sctp_soreceive
163953Srrs};
221249Stuexen
221249Stuexen#endif
221249Stuexen#endif