in6_proto.c revision 171133 
1/*	$FreeBSD: head/sys/netinet6/in6_proto.c 171133 2007-07-01 11:41:27Z gnn $	*/
2/*	$KAME: in6_proto.c,v 1.91 2001/05/27 13:28:35 itojun Exp $	*/
3
4/*-
5 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
6 * All rights reserved.
7 *
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
10 * are met:
11 * 1. Redistributions of source code must retain the above copyright
12 *    notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 *    notice, this list of conditions and the following disclaimer in the
15 *    documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of the project nor the names of its contributors
17 *    may be used to endorse or promote products derived from this software
18 *    without specific prior written permission.
19 *
20 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED.  IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30 * SUCH DAMAGE.
31 */
32
33/*-
34 * Copyright (c) 1982, 1986, 1993
35 *	The Regents of the University of California.  All rights reserved.
36 *
37 * Redistribution and use in source and binary forms, with or without
38 * modification, are permitted provided that the following conditions
39 * are met:
40 * 1. Redistributions of source code must retain the above copyright
41 *    notice, this list of conditions and the following disclaimer.
42 * 2. Redistributions in binary form must reproduce the above copyright
43 *    notice, this list of conditions and the following disclaimer in the
44 *    documentation and/or other materials provided with the distribution.
45 * 4. Neither the name of the University nor the names of its contributors
46 *    may be used to endorse or promote products derived from this software
47 *    without specific prior written permission.
48 *
49 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
50 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
51 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
52 * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
53 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
54 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
55 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
56 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
57 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
58 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
59 * SUCH DAMAGE.
60 *
61 *	@(#)in_proto.c	8.1 (Berkeley) 6/10/93
62 */
63
64#include "opt_inet.h"
65#include "opt_inet6.h"
66#include "opt_ipsec.h"
67#include "opt_ipstealth.h"
68#include "opt_carp.h"
69#include "opt_sctp.h"
70
71#include <sys/param.h>
72#include <sys/socket.h>
73#include <sys/socketvar.h>
74#include <sys/protosw.h>
75#include <sys/kernel.h>
76#include <sys/domain.h>
77#include <sys/mbuf.h>
78#include <sys/systm.h>
79#include <sys/sysctl.h>
80
81#include <net/if.h>
82#include <net/radix.h>
83#include <net/route.h>
84
85#include <netinet/in.h>
86#include <netinet/in_systm.h>
87#include <netinet/in_var.h>
88#include <netinet/ip_encap.h>
89#include <netinet/ip.h>
90#include <netinet/ip_var.h>
91#include <netinet/ip6.h>
92#include <netinet6/ip6_var.h>
93#include <netinet/icmp6.h>
94
95#include <netinet/tcp.h>
96#include <netinet/tcp_timer.h>
97#include <netinet/tcp_var.h>
98#include <netinet/udp.h>
99#include <netinet/udp_var.h>
100#include <netinet6/tcp6_var.h>
101#include <netinet6/raw_ip6.h>
102#include <netinet6/udp6_var.h>
103#include <netinet6/pim6_var.h>
104#include <netinet6/nd6.h>
105
106#ifdef DEV_CARP
107#include <netinet/ip_carp.h>
108#endif
109
110#ifdef SCTP
111#include <netinet/in_pcb.h>
112#include <netinet/sctp_pcb.h>
113#include <netinet/sctp.h>
114#include <netinet/sctp_var.h>
115#include <netinet6/sctp6_var.h>
116#endif /* SCTP */
117
118#ifdef FAST_IPSEC
119#include <netipsec/ipsec.h>
120#include <netipsec/ipsec6.h>
121#endif /* FAST_IPSEC */
122
123#include <netinet6/ip6protosw.h>
124
125/*
126 * TCP/IP protocol family: IP6, ICMP6, UDP, TCP.
127 */
128
129extern	struct domain inet6domain;
130static	struct pr_usrreqs nousrreqs;
131
132#define PR_LISTEN	0
133#define PR_ABRTACPTDIS	0
134
135struct ip6protosw inet6sw[] = {
136{
137	.pr_type =		0,
138	.pr_domain =		&inet6domain,
139	.pr_protocol =		IPPROTO_IPV6,
140	.pr_init =		ip6_init,
141	.pr_slowtimo =		frag6_slowtimo,
142	.pr_drain =		frag6_drain,
143	.pr_usrreqs =		&nousrreqs,
144},
145{
146	.pr_type =		SOCK_DGRAM,
147	.pr_domain =		&inet6domain,
148	.pr_protocol =		IPPROTO_UDP,
149	.pr_flags =		PR_ATOMIC|PR_ADDR,
150	.pr_input =		udp6_input,
151	.pr_ctlinput =		udp6_ctlinput,
152	.pr_ctloutput =		ip6_ctloutput,
153	.pr_usrreqs =		&udp6_usrreqs,
154},
155{
156	.pr_type =		SOCK_STREAM,
157	.pr_domain =		&inet6domain,
158	.pr_protocol =		IPPROTO_TCP,
159	.pr_flags =		PR_CONNREQUIRED|PR_WANTRCVD|PR_LISTEN,
160	.pr_input =		tcp6_input,
161	.pr_ctlinput =		tcp6_ctlinput,
162	.pr_ctloutput =		tcp_ctloutput,
163#ifndef INET	/* don't call initialization and timeout routines twice */
164	.pr_init =		tcp_init,
165	.pr_fasttimo =		tcp_fasttimo,
166	.pr_slowtimo =		tcp_slowtimo,
167#endif
168	.pr_drain =		tcp_drain,
169	.pr_usrreqs =		&tcp6_usrreqs,
170},
171#ifdef SCTP
172{
173	.pr_type = 	SOCK_DGRAM,
174	.pr_domain =  	&inet6domain,
175        .pr_protocol = 	IPPROTO_SCTP,
176        .pr_flags = 	PR_WANTRCVD,
177        .pr_input = 	sctp6_input,
178        .pr_ctlinput =  sctp6_ctlinput,
179        .pr_ctloutput = sctp_ctloutput,
180        .pr_drain = 	sctp_drain,
181        .pr_usrreqs = 	&sctp6_usrreqs
182},
183{
184	.pr_type = 	SOCK_SEQPACKET,
185	.pr_domain =  	&inet6domain,
186        .pr_protocol = 	IPPROTO_SCTP,
187        .pr_flags = 	PR_WANTRCVD,
188        .pr_input = 	sctp6_input,
189        .pr_ctlinput =  sctp6_ctlinput,
190        .pr_ctloutput = sctp_ctloutput,
191        .pr_drain = 	sctp_drain,
192        .pr_usrreqs = 	&sctp6_usrreqs
193},
194
195{
196	.pr_type = 	SOCK_STREAM,
197	.pr_domain =  	&inet6domain,
198        .pr_protocol = 	IPPROTO_SCTP,
199        .pr_flags = 	PR_WANTRCVD,
200        .pr_input = 	sctp6_input,
201        .pr_ctlinput =  sctp6_ctlinput,
202        .pr_ctloutput = sctp_ctloutput,
203        .pr_drain = 	sctp_drain,
204        .pr_usrreqs = 	&sctp6_usrreqs
205},
206#endif /* SCTP */
207{
208	.pr_type =		SOCK_RAW,
209	.pr_domain =		&inet6domain,
210	.pr_protocol =		IPPROTO_RAW,
211	.pr_flags =		PR_ATOMIC|PR_ADDR,
212	.pr_input =		rip6_input,
213	.pr_output =		rip6_output,
214	.pr_ctlinput =		rip6_ctlinput,
215	.pr_ctloutput =		rip6_ctloutput,
216	.pr_usrreqs =		&rip6_usrreqs
217},
218{
219	.pr_type =		SOCK_RAW,
220	.pr_domain =		&inet6domain,
221	.pr_protocol =		IPPROTO_ICMPV6,
222	.pr_flags =		PR_ATOMIC|PR_ADDR|PR_LASTHDR,
223	.pr_input =		icmp6_input,
224	.pr_output =		rip6_output,
225	.pr_ctlinput =		rip6_ctlinput,
226	.pr_ctloutput =		rip6_ctloutput,
227	.pr_init =		icmp6_init,
228	.pr_fasttimo =		icmp6_fasttimo,
229	.pr_usrreqs =		&rip6_usrreqs
230},
231{
232	.pr_type =		SOCK_RAW,
233	.pr_domain =		&inet6domain,
234	.pr_protocol =		IPPROTO_DSTOPTS,
235	.pr_flags =		PR_ATOMIC|PR_ADDR,
236	.pr_input =		dest6_input,
237	.pr_usrreqs =		&nousrreqs
238},
239{
240	.pr_type =		SOCK_RAW,
241	.pr_domain =		&inet6domain,
242	.pr_protocol =		IPPROTO_ROUTING,
243	.pr_flags =		PR_ATOMIC|PR_ADDR,
244	.pr_input =		route6_input,
245	.pr_usrreqs =		&nousrreqs
246},
247{
248	.pr_type =		SOCK_RAW,
249	.pr_domain =		&inet6domain,
250	.pr_protocol =		IPPROTO_FRAGMENT,
251	.pr_flags =		PR_ATOMIC|PR_ADDR,
252	.pr_input =		frag6_input,
253	.pr_usrreqs =		&nousrreqs
254},
255#ifdef FAST_IPSEC
256{
257	.pr_type =		SOCK_RAW,
258	.pr_domain =		&inet6domain,
259	.pr_protocol =		IPPROTO_AH,
260	.pr_flags =		PR_ATOMIC|PR_ADDR,
261	.pr_input =		ipsec6_common_input,
262	.pr_usrreqs =		&nousrreqs,
263},
264{
265	.pr_type =		SOCK_RAW,
266	.pr_domain =		&inet6domain,
267	.pr_protocol =		IPPROTO_ESP,
268	.pr_flags =		PR_ATOMIC|PR_ADDR,
269        .pr_input =		ipsec6_common_input,
270	.pr_ctlinput =		esp6_ctlinput,
271	.pr_usrreqs =		&nousrreqs,
272},
273{
274	.pr_type =		SOCK_RAW,
275	.pr_domain =		&inet6domain,
276	.pr_protocol =		IPPROTO_IPCOMP,
277	.pr_flags =		PR_ATOMIC|PR_ADDR,
278        .pr_input =		ipsec6_common_input,
279	.pr_usrreqs =		&nousrreqs,
280},
281#endif /* FAST_IPSEC */
282#ifdef INET
283{
284	.pr_type =		SOCK_RAW,
285	.pr_domain =		&inet6domain,
286	.pr_protocol =		IPPROTO_IPV4,
287	.pr_flags =		PR_ATOMIC|PR_ADDR|PR_LASTHDR,
288	.pr_input =		encap6_input,
289	.pr_output =		rip6_output,
290	.pr_ctloutput =		rip6_ctloutput,
291	.pr_init =		encap_init,
292	.pr_usrreqs =		&rip6_usrreqs
293},
294#endif /* INET */
295{
296	.pr_type =		SOCK_RAW,
297	.pr_domain =		&inet6domain,
298	.pr_protocol =		IPPROTO_IPV6,
299	.pr_flags =		PR_ATOMIC|PR_ADDR|PR_LASTHDR,
300	.pr_input =		encap6_input,
301	.pr_output =		rip6_output,
302	.pr_ctloutput =		rip6_ctloutput,
303	.pr_init =		encap_init,
304	.pr_usrreqs =		&rip6_usrreqs
305},
306{
307	.pr_type =		SOCK_RAW,
308	.pr_domain =		&inet6domain,
309	.pr_protocol =		IPPROTO_PIM,
310	.pr_flags =		PR_ATOMIC|PR_ADDR|PR_LASTHDR,
311	.pr_input =		encap6_input,
312	.pr_output =		rip6_output,
313	.pr_ctloutput =		rip6_ctloutput,
314	.pr_usrreqs =		&rip6_usrreqs
315},
316#ifdef DEV_CARP
317{
318	.pr_type =		SOCK_RAW,
319	.pr_domain =		&inet6domain,
320	.pr_protocol =		IPPROTO_CARP,
321	.pr_flags =		PR_ATOMIC|PR_ADDR,
322	.pr_input =		carp6_input,
323	.pr_output =		rip6_output,
324	.pr_ctloutput =		rip6_ctloutput,
325	.pr_usrreqs =		&rip6_usrreqs
326},
327#endif /* DEV_CARP */
328/* raw wildcard */
329{
330	.pr_type =		SOCK_RAW,
331	.pr_domain =		&inet6domain,
332	.pr_flags =		PR_ATOMIC|PR_ADDR,
333	.pr_input =		rip6_input,
334	.pr_output =		rip6_output,
335	.pr_ctloutput =		rip6_ctloutput,
336	.pr_usrreqs =		&rip6_usrreqs
337},
338};
339
340extern int in6_inithead __P((void **, int));
341
342struct domain inet6domain = {
343	.dom_family =		AF_INET6,
344	.dom_name =		"internet6",
345	.dom_protosw =		(struct protosw *)inet6sw,
346	.dom_protoswNPROTOSW =	(struct protosw *)
347				&inet6sw[sizeof(inet6sw)/sizeof(inet6sw[0])],
348	.dom_rtattach =		in6_inithead,
349	.dom_rtoffset =		offsetof(struct sockaddr_in6, sin6_addr) << 3,
350	.dom_maxrtkey =		sizeof(struct sockaddr_in6),
351	.dom_ifattach =		in6_domifattach,
352	.dom_ifdetach =		in6_domifdetach
353};
354
355DOMAIN_SET(inet6);
356
357/*
358 * Internet configuration info
359 */
360#ifndef	IPV6FORWARDING
361#ifdef GATEWAY6
362#define	IPV6FORWARDING	1	/* forward IP6 packets not for us */
363#else
364#define	IPV6FORWARDING	0	/* don't forward IP6 packets not for us */
365#endif /* GATEWAY6 */
366#endif /* !IPV6FORWARDING */
367
368#ifndef	IPV6_SENDREDIRECTS
369#define	IPV6_SENDREDIRECTS	1
370#endif
371
372int	ip6_forwarding = IPV6FORWARDING;	/* act as router? */
373int	ip6_sendredirects = IPV6_SENDREDIRECTS;
374int	ip6_defhlim = IPV6_DEFHLIM;
375int	ip6_defmcasthlim = IPV6_DEFAULT_MULTICAST_HOPS;
376int	ip6_accept_rtadv = 0;	/* "IPV6FORWARDING ? 0 : 1" is dangerous */
377int	ip6_maxfragpackets;	/* initialized in frag6.c:frag6_init() */
378int	ip6_maxfrags;	/* initialized in frag6.c:frag6_init() */
379int	ip6_log_interval = 5;
380int	ip6_hdrnestlimit = 15;	/* How many header options will we process? */
381int	ip6_dad_count = 1;	/* DupAddrDetectionTransmits */
382int	ip6_auto_flowlabel = 1;
383int	ip6_gif_hlim = 0;
384int	ip6_use_deprecated = 1;	/* allow deprecated addr (RFC2462 5.5.4) */
385int	ip6_rr_prune = 5;	/* router renumbering prefix
386				 * walk list every 5 sec. */
387int	ip6_mcast_pmtu = 0;	/* enable pMTU discovery for multicast? */
388int	ip6_v6only = 1;
389
390int	ip6_keepfaith = 0;
391time_t	ip6_log_time = (time_t)0L;
392#ifdef IPSTEALTH
393int	ip6stealth = 0;
394#endif
395
396/* icmp6 */
397/*
398 * BSDI4 defines these variables in in_proto.c...
399 * XXX: what if we don't define INET? Should we define pmtu6_expire
400 * or so? (jinmei@kame.net 19990310)
401 */
402int pmtu_expire = 60*10;
403int pmtu_probe = 60*2;
404
405/* raw IP6 parameters */
406/*
407 * Nominal space allocated to a raw ip socket.
408 */
409#define	RIPV6SNDQ	8192
410#define	RIPV6RCVQ	8192
411
412u_long	rip6_sendspace = RIPV6SNDQ;
413u_long	rip6_recvspace = RIPV6RCVQ;
414
415/* ICMPV6 parameters */
416int	icmp6_rediraccept = 1;		/* accept and process redirects */
417int	icmp6_redirtimeout = 10 * 60;	/* 10 minutes */
418int	icmp6errppslim = 100;		/* 100pps */
419/* control how to respond to NI queries */
420int	icmp6_nodeinfo = (ICMP6_NODEINFO_FQDNOK|ICMP6_NODEINFO_NODEADDROK);
421
422/* UDP on IP6 parameters */
423int	udp6_sendspace = 9216;		/* really max datagram size */
424int	udp6_recvspace = 40 * (1024 + sizeof(struct sockaddr_in6));
425					/* 40 1K datagrams */
426
427/*
428 * sysctl related items.
429 */
430SYSCTL_NODE(_net,	PF_INET6,	inet6,	CTLFLAG_RW,	0,
431	"Internet6 Family");
432
433/* net.inet6 */
434SYSCTL_NODE(_net_inet6,	IPPROTO_IPV6,	ip6,	CTLFLAG_RW, 0,	"IP6");
435SYSCTL_NODE(_net_inet6,	IPPROTO_ICMPV6,	icmp6,	CTLFLAG_RW, 0,	"ICMP6");
436SYSCTL_NODE(_net_inet6,	IPPROTO_UDP,	udp6,	CTLFLAG_RW, 0,	"UDP6");
437SYSCTL_NODE(_net_inet6,	IPPROTO_TCP,	tcp6,	CTLFLAG_RW, 0,	"TCP6");
438#ifdef SCTP
439SYSCTL_NODE(_net_inet6,	IPPROTO_SCTP,	sctp6,	CTLFLAG_RW, 0,	"SCTP6");
440#endif
441#ifdef FAST_IPSEC
442SYSCTL_NODE(_net_inet6,	IPPROTO_ESP,	ipsec6,	CTLFLAG_RW, 0,	"IPSEC6");
443#endif /* FAST_IPSEC */
444
445/* net.inet6.ip6 */
446static int
447sysctl_ip6_temppltime(SYSCTL_HANDLER_ARGS)
448{
449	int error = 0;
450	int old;
451
452	error = SYSCTL_OUT(req, arg1, sizeof(int));
453	if (error || !req->newptr)
454		return (error);
455	old = ip6_temp_preferred_lifetime;
456	error = SYSCTL_IN(req, arg1, sizeof(int));
457	if (ip6_temp_preferred_lifetime <
458	    ip6_desync_factor + ip6_temp_regen_advance) {
459		ip6_temp_preferred_lifetime = old;
460		return (EINVAL);
461	}
462	return (error);
463}
464
465static int
466sysctl_ip6_tempvltime(SYSCTL_HANDLER_ARGS)
467{
468	int error = 0;
469	int old;
470
471	error = SYSCTL_OUT(req, arg1, sizeof(int));
472	if (error || !req->newptr)
473		return (error);
474	old = ip6_temp_valid_lifetime;
475	error = SYSCTL_IN(req, arg1, sizeof(int));
476	if (ip6_temp_valid_lifetime < ip6_temp_preferred_lifetime) {
477		ip6_temp_preferred_lifetime = old;
478		return (EINVAL);
479	}
480	return (error);
481}
482
483SYSCTL_INT(_net_inet6_ip6, IPV6CTL_FORWARDING,
484	forwarding, CTLFLAG_RW, 	&ip6_forwarding,	0, "");
485SYSCTL_INT(_net_inet6_ip6, IPV6CTL_SENDREDIRECTS,
486	redirect, CTLFLAG_RW,		&ip6_sendredirects,	0, "");
487SYSCTL_INT(_net_inet6_ip6, IPV6CTL_DEFHLIM,
488	hlim, CTLFLAG_RW,		&ip6_defhlim,	0, "");
489SYSCTL_STRUCT(_net_inet6_ip6, IPV6CTL_STATS, stats, CTLFLAG_RD,
490	&ip6stat, ip6stat, "");
491SYSCTL_INT(_net_inet6_ip6, IPV6CTL_MAXFRAGPACKETS,
492	maxfragpackets, CTLFLAG_RW,	&ip6_maxfragpackets,	0, "");
493SYSCTL_INT(_net_inet6_ip6, IPV6CTL_ACCEPT_RTADV,
494	accept_rtadv, CTLFLAG_RW,	&ip6_accept_rtadv,	0, "");
495SYSCTL_INT(_net_inet6_ip6, IPV6CTL_KEEPFAITH,
496	keepfaith, CTLFLAG_RW,		&ip6_keepfaith,	0, "");
497SYSCTL_INT(_net_inet6_ip6, IPV6CTL_LOG_INTERVAL,
498	log_interval, CTLFLAG_RW,	&ip6_log_interval,	0, "");
499SYSCTL_INT(_net_inet6_ip6, IPV6CTL_HDRNESTLIMIT,
500	hdrnestlimit, CTLFLAG_RW,	&ip6_hdrnestlimit,	0, "");
501SYSCTL_INT(_net_inet6_ip6, IPV6CTL_DAD_COUNT,
502	dad_count, CTLFLAG_RW,	&ip6_dad_count,	0, "");
503SYSCTL_INT(_net_inet6_ip6, IPV6CTL_AUTO_FLOWLABEL,
504	auto_flowlabel, CTLFLAG_RW,	&ip6_auto_flowlabel,	0, "");
505SYSCTL_INT(_net_inet6_ip6, IPV6CTL_DEFMCASTHLIM,
506	defmcasthlim, CTLFLAG_RW,	&ip6_defmcasthlim,	0, "");
507SYSCTL_INT(_net_inet6_ip6, IPV6CTL_GIF_HLIM,
508	gifhlim, CTLFLAG_RW,	&ip6_gif_hlim,			0, "");
509SYSCTL_STRING(_net_inet6_ip6, IPV6CTL_KAME_VERSION,
510	kame_version, CTLFLAG_RD,	__KAME_VERSION,		0, "");
511SYSCTL_INT(_net_inet6_ip6, IPV6CTL_USE_DEPRECATED,
512	use_deprecated, CTLFLAG_RW,	&ip6_use_deprecated,	0, "");
513SYSCTL_INT(_net_inet6_ip6, IPV6CTL_RR_PRUNE,
514	rr_prune, CTLFLAG_RW,	&ip6_rr_prune,			0, "");
515SYSCTL_INT(_net_inet6_ip6, IPV6CTL_USETEMPADDR,
516	use_tempaddr, CTLFLAG_RW, &ip6_use_tempaddr,		0, "");
517SYSCTL_OID(_net_inet6_ip6, IPV6CTL_TEMPPLTIME, temppltime,
518	   CTLTYPE_INT|CTLFLAG_RW, &ip6_temp_preferred_lifetime, 0,
519	   sysctl_ip6_temppltime, "I", "");
520SYSCTL_OID(_net_inet6_ip6, IPV6CTL_TEMPVLTIME, tempvltime,
521	   CTLTYPE_INT|CTLFLAG_RW, &ip6_temp_valid_lifetime, 0,
522	   sysctl_ip6_tempvltime, "I", "");
523SYSCTL_INT(_net_inet6_ip6, IPV6CTL_V6ONLY,
524	v6only,	CTLFLAG_RW,	&ip6_v6only,			0, "");
525TUNABLE_INT("net.inet6.ip6.auto_linklocal", &ip6_auto_linklocal);
526SYSCTL_INT(_net_inet6_ip6, IPV6CTL_AUTO_LINKLOCAL,
527	auto_linklocal, CTLFLAG_RW, &ip6_auto_linklocal,	0, "");
528SYSCTL_STRUCT(_net_inet6_ip6, IPV6CTL_RIP6STATS, rip6stats, CTLFLAG_RD,
529	&rip6stat, rip6stat, "");
530SYSCTL_INT(_net_inet6_ip6, IPV6CTL_PREFER_TEMPADDR,
531	prefer_tempaddr, CTLFLAG_RW, &ip6_prefer_tempaddr,	0, "");
532SYSCTL_INT(_net_inet6_ip6, IPV6CTL_USE_DEFAULTZONE,
533	use_defaultzone, CTLFLAG_RW, &ip6_use_defzone,		0,"");
534SYSCTL_INT(_net_inet6_ip6, IPV6CTL_MAXFRAGS,
535	maxfrags, CTLFLAG_RW,		&ip6_maxfrags,	0, "");
536SYSCTL_INT(_net_inet6_ip6, IPV6CTL_MCAST_PMTU,
537	mcast_pmtu, CTLFLAG_RW, 	&ip6_mcast_pmtu,	0, "");
538#ifdef IPSTEALTH
539SYSCTL_INT(_net_inet6_ip6, IPV6CTL_STEALTH, stealth, CTLFLAG_RW,
540	&ip6stealth, 0, "");
541#endif
542
543/* net.inet6.icmp6 */
544SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_REDIRACCEPT,
545	rediraccept, CTLFLAG_RW,	&icmp6_rediraccept,	0, "");
546SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_REDIRTIMEOUT,
547	redirtimeout, CTLFLAG_RW,	&icmp6_redirtimeout,	0, "");
548SYSCTL_STRUCT(_net_inet6_icmp6, ICMPV6CTL_STATS, stats, CTLFLAG_RD,
549	&icmp6stat, icmp6stat, "");
550SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_ND6_PRUNE,
551	nd6_prune, CTLFLAG_RW,		&nd6_prune,	0, "");
552SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_ND6_DELAY,
553	nd6_delay, CTLFLAG_RW,		&nd6_delay,	0, "");
554SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_ND6_UMAXTRIES,
555	nd6_umaxtries, CTLFLAG_RW,	&nd6_umaxtries,	0, "");
556SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_ND6_MMAXTRIES,
557	nd6_mmaxtries, CTLFLAG_RW,	&nd6_mmaxtries,	0, "");
558SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_ND6_USELOOPBACK,
559	nd6_useloopback, CTLFLAG_RW,	&nd6_useloopback, 0, "");
560SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_NODEINFO,
561	nodeinfo, CTLFLAG_RW,	&icmp6_nodeinfo,	0, "");
562SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_ERRPPSLIMIT,
563	errppslimit, CTLFLAG_RW,	&icmp6errppslim,	0, "");
564SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_ND6_MAXNUDHINT,
565	nd6_maxnudhint, CTLFLAG_RW,	&nd6_maxnudhint, 0, "");
566SYSCTL_INT(_net_inet6_icmp6, ICMPV6CTL_ND6_DEBUG,
567	nd6_debug, CTLFLAG_RW,	&nd6_debug,		0, "");
568