network.subr revision 196436 
1#
2# Copyright (c) 2003 The FreeBSD Project. All rights reserved.
3#
4# Redistribution and use in source and binary forms, with or without
5# modification, are permitted provided that the following conditions
6# are met:
7# 1. Redistributions of source code must retain the above copyright
8#    notice, this list of conditions and the following disclaimer.
9# 2. Redistributions in binary form must reproduce the above copyright
10#    notice, this list of conditions and the following disclaimer in the
11#    documentation and/or other materials provided with the distribution.
12#
13# THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
14# ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
15# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
16# ARE DISCLAIMED.  IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
17# FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
18# DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
19# OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
20# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
21# LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
22# OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
23# SUCH DAMAGE.
24#
25# $FreeBSD: head/etc/network.subr 196436 2009-08-23 05:47:19Z dougb $
26#
27
28#
29# Subroutines commonly used from network startup scripts.
30# Requires that rc.conf be loaded first.
31#
32
33# ifn_start ifn
34# Bring up and configure an interface.  If some configuration is applied
35# print the interface configuration.
36#
37ifn_start()
38{
39	local ifn cfg
40	ifn="$1"
41	cfg=1
42
43	[ -z "$ifn" ] && err 1 "ifn_start called without an interface"
44
45	ifscript_up ${ifn} && cfg=0
46	ifconfig_up ${ifn} && cfg=0
47	ipv4_up ${ifn} && cfg=0
48	ipx_up ${ifn} && cfg=0
49	childif_create ${ifn}
50
51	return $cfg
52}
53
54# ifn_start ifn
55# Shutdown and de-configure an interface.  If action is taken print the
56# interface name.
57#
58ifn_stop()
59{
60	local ifn cfg
61	ifn="$1"
62	cfg=1
63
64	[ -z "$ifn" ] && return 1
65
66	ipx_down ${ifn} && cfg=0
67	ipv4_down ${ifn} && cfg=0
68	ifconfig_down ${ifn} && cfg=0
69	ifscript_down ${ifn} && cfg=0
70	childif_destroy ${ifn}
71
72	return $cfg
73}
74
75# ifconfig_up if
76#	Evaluate ifconfig(8) arguments for interface $if and
77#	run ifconfig(8) with those arguments. It returns 0 if
78#	arguments were found and executed or 1 if the interface
79#	had no arguments.  Pseudo arguments DHCP and WPA are handled
80#	here.
81#
82ifconfig_up()
83{
84	_cfg=1
85
86	ifconfig_args=`ifconfig_getargs $1`
87	if [ -n "${ifconfig_args}" ]; then
88		ifconfig $1 ${ifconfig_args}
89		ifconfig $1 up
90		_cfg=0
91	fi
92
93	if wpaif $1; then
94		/etc/rc.d/wpa_supplicant start $1
95		_cfg=0		# XXX: not sure this should count
96	fi
97
98	if dhcpif $1; then
99		if [ $_cfg -ne 0 ] ; then
100			ifconfig $1 up
101		fi
102		if syncdhcpif $1; then
103			/etc/rc.d/dhclient start $1
104		fi
105		_cfg=0
106	fi
107
108	return $_cfg
109}
110
111# ifconfig_down if
112#	returns 1 if wpa_supplicant or dhclient was stopped or
113#	the interface exists.
114#
115ifconfig_down()
116{
117	[ -z "$1" ] && return 1
118	_cfg=1
119
120	if wpaif $1; then
121		/etc/rc.d/wpa_supplicant stop $1
122		_cfg=0
123	fi
124
125	if dhcpif $1; then
126		/etc/rc.d/dhclient stop $1
127		_cfg=0
128	fi
129
130	if ifexists $1; then
131		ifconfig $1 down
132		_cfg=0
133	fi
134
135	return $_cfg
136}
137
138# get_if_var if var [default]
139#       Return the value of the pseudo-hash corresponding to $if where
140#       $var is a string containg the sub-string "IF" which will be
141#       replaced with $if after the characters defined in _punct are
142#       replaced with '_'. If the variable is unset, replace it with
143#       $default if given.
144get_if_var()
145{
146	if [ $# -ne 2 -a $# -ne 3 ]; then
147		err 3 'USAGE: get_if_var name var [default]'
148	fi
149
150	_if=$1
151	_punct=". - / +"
152	for _punct_c in $_punct; do
153		_if=`ltr ${_if} ${_punct_c} '_'`
154	done
155	_var=$2
156	_default=$3
157
158	prefix=${_var%%IF*}
159	suffix=${_var##*IF}
160	eval echo \${${prefix}${_if}${suffix}-${_default}}
161}
162
163# _ifconfig_getargs if
164#	Echos the arguments for the supplied interface to stdout.
165#	returns 1 if empty.  In general, ifconfig_getargs should be used
166#	outside this file.
167_ifconfig_getargs()
168{
169	_ifn=$1
170	if [ -z "$_ifn" ]; then
171		return 1
172	fi
173
174	get_if_var $_ifn ifconfig_IF "$ifconfig_DEFAULT"
175}
176
177# ifconfig_getargs if
178#	Takes the result from _ifconfig_getargs and removes pseudo
179#	args such as DHCP and WPA.
180ifconfig_getargs()
181{
182	_tmpargs=`_ifconfig_getargs $1`
183	if [ $? -eq 1 ]; then
184		return 1
185	fi
186	_args=
187
188	for _arg in $_tmpargs; do
189		case $_arg in
190		[Dd][Hh][Cc][Pp]) ;;
191		[Nn][Oo][Aa][Uu][Tt][Oo]) ;;
192		[Nn][Oo][Ss][Yy][Nn][Cc][Dd][Hh][Cc][Pp]) ;;
193		[Ss][Yy][Nn][Cc][Dd][Hh][Cc][Pp]) ;;
194		[Ww][Pp][Aa]) ;;
195		*)
196			_args="$_args $_arg"
197			;;
198		esac
199	done
200
201	echo $_args
202}
203
204# autoif
205#	Returns 0 if the interface should be automaticly configured at
206#	boot time and 1 otherwise.
207autoif()
208{
209	_tmpargs=`_ifconfig_getargs $1`
210	for _arg in $_tmpargs; do
211		case $_arg in
212		[Nn][Oo][Aa][Uu][Tt][Oo])
213			return 1
214			;;
215		esac
216	done
217	return 0
218}
219
220# dhcpif if
221#	Returns 0 if the interface is a DHCP interface and 1 otherwise.
222dhcpif()
223{
224	_tmpargs=`_ifconfig_getargs $1`
225	for _arg in $_tmpargs; do
226		case $_arg in
227		[Dd][Hh][Cc][Pp])
228			return 0
229			;;
230		[Nn][Oo][Ss][Yy][Nn][Cc][Dd][Hh][Cc][Pp])
231			return 0
232			;;
233		[Ss][Yy][Nn][Cc][Dd][Hh][Cc][Pp])
234			return 0
235			;;
236		esac
237	done
238	return 1
239}
240
241# syncdhcpif
242#	Returns 0 if the interface should be configured synchronously and
243#	1 otherwise.
244syncdhcpif()
245{
246	_tmpargs=`_ifconfig_getargs $1`
247	for _arg in $_tmpargs; do
248		case $_arg in
249		[Nn][Oo][Ss][Yy][Nn][Cc][Dd][Hh][Cc][Pp])
250			return 1
251			;;
252		[Ss][Yy][Nn][Cc][Dd][Hh][Cc][Pp])
253			return 0
254			;;
255		esac
256	done
257	if checkyesno synchronous_dhclient; then
258		return 0
259	else
260		return 1
261	fi
262}
263
264# wpaif if
265#	Returns 0 if the interface is a WPA interface and 1 otherwise.
266wpaif()
267{
268	_tmpargs=`_ifconfig_getargs $1`
269	for _arg in $_tmpargs; do
270		case $_arg in
271		[Ww][Pp][Aa])
272			return 0
273			;;
274		esac
275	done
276	return 1
277}
278
279# ipv6if if
280#	Returns 0 if the interface should be configured for IPv6 and
281#	1 otherwise.
282ipv6if()
283{
284	if ! checkyesno ipv6_enable; then
285		return 1
286	fi
287	case "${ipv6_network_interfaces}" in
288	[Aa][Uu][Tt][Oo])
289		return 0
290		;;
291	''|[Nn][Oo][Nn][Ee])
292		return 1
293		;;
294	esac
295	for v6if in ${ipv6_network_interfaces}; do
296		if [ "${v6if}" = "${1}" ]; then
297			return 0
298		fi
299	done
300	return 1
301}
302
303# ifexists if
304#	Returns 0 if the interface exists and 1 otherwise.
305ifexists()
306{
307	ifconfig -n $1 > /dev/null 2>&1
308}
309
310# ipv4_up if
311#  add IPv4 addresses to the interface $if 
312ipv4_up()
313{
314	_if=$1
315	ifalias_up ${_if}
316	ipv4_addrs_common ${_if} alias
317}
318
319# ipv4_down if
320#  remove IPv4 addresses from the interface $if
321ipv4_down()
322{
323	_if=$1
324	_ifs="^"
325	_ret=1
326
327	ifexists ${_if} || return 1
328
329	inetList="`ifconfig ${_if} | grep 'inet ' | tr "\n" "$_ifs"`"
330
331	oldifs="$IFS"
332	IFS="$_ifs"
333	for _inet in $inetList ; do
334		# get rid of extraneous line
335		[ -z "$_inet" ] && break
336
337		_inet=`expr "$_inet" : '.*\(inet \([0-9]\{1,3\}\.\)\{3\}[0-9]\{1,3\}\).*'`
338
339		IFS="$oldifs"
340		ifconfig ${_if} ${_inet} delete
341		IFS="$_ifs"
342		_ret=0
343	done
344	IFS="$oldifs"
345
346	ifalias_down ${_if} && _ret=0
347	ipv4_addrs_common ${_if} -alias && _ret=0
348
349	return $_ret
350}
351
352# ipv4_addrs_common if action
353#   Evaluate the ifconfig_if_ipv4 arguments for interface $if
354#   and use $action to add or remove IPv4 addresses from $if.
355ipv4_addrs_common()
356{  
357	_ret=1
358	_if=$1
359	_action=$2
360    
361	# get ipv4-addresses
362	cidr_addr=`get_if_var $_if ipv4_addrs_IF`
363    
364	for _cidr in ${cidr_addr}; do
365		_ipaddr=${_cidr%%/*}
366		_netmask="/"${_cidr##*/}
367		_range=${_ipaddr##*.}
368		_ipnet=${_ipaddr%.*}
369		_iplow=${_range%-*}
370		_iphigh=${_range#*-}
371
372		# clear netmask when removing aliases
373		if [ "${_action}" = "-alias" ]; then
374			_netmask=""
375		fi
376        
377		_ipcount=${_iplow}
378		while [ "${_ipcount}" -le "${_iphigh}" ]; do
379			eval "ifconfig ${_if} ${_action} ${_ipnet}.${_ipcount}${_netmask}"
380			_ipcount=$((${_ipcount}+1))
381			_ret=0
382
383			# only the first ipaddr in a subnet need the real netmask
384			if [ "${_action}" != "-alias" ]; then
385				_netmask="/32"
386			fi
387		done
388	done
389	return $_ret
390}
391
392# ifalias_up if
393#	Configure aliases for network interface $if.
394#	It returns 0 if at least one alias was configured or
395#	1 if there were none.
396#
397ifalias_up()
398{
399	_ret=1
400	alias=0
401	while : ; do
402		ifconfig_args=`get_if_var $1 ifconfig_IF_alias${alias}`
403		if [ -n "${ifconfig_args}" ]; then
404			ifconfig $1 ${ifconfig_args} alias
405			alias=$((${alias} + 1))
406			_ret=0
407		else
408			break
409		fi
410	done
411	return $_ret
412}
413
414#ifalias_down if
415#	Remove aliases for network interface $if.
416#	It returns 0 if at least one alias was removed or
417#	1 if there were none.
418#
419ifalias_down()
420{
421	_ret=1
422	alias=0
423	while : ; do
424		ifconfig_args=`get_if_var $1 ifconfig_IF_alias${alias}`
425		if [ -n "${ifconfig_args}" ]; then
426			ifconfig $1 ${ifconfig_args} -alias
427			alias=$((${alias} + 1))
428			_ret=0
429		else
430			break
431		fi
432	done
433	return $_ret
434}
435
436# ifscript_up if
437#	Evaluate a startup script for the $if interface.
438#	It returns 0 if a script was found and processed or
439#	1 if no script was found.
440#
441ifscript_up()
442{
443	if [ -r /etc/start_if.$1 ]; then
444		. /etc/start_if.$1
445		return 0
446	fi
447	return 1
448}
449
450# ifscript_down if
451#	Evaluate a shutdown script for the $if interface.
452#	It returns 0 if a script was found and processed or
453#	1 if no script was found.
454#
455ifscript_down()
456{
457	if [ -r /etc/stop_if.$1 ]; then
458		. /etc/stop_if.$1
459		return 0
460	fi
461	return 1
462}
463
464# Create cloneable interfaces.
465#
466clone_up()
467{
468	_prefix=
469	_list=
470	for ifn in ${cloned_interfaces}; do
471		ifconfig ${ifn} create `get_if_var ${ifn} create_args_IF`
472		if [ $? -eq 0 ]; then
473			_list="${_list}${_prefix}${ifn}"
474			[ -z "$_prefix" ] && _prefix=' '
475		fi
476	done
477	debug "Cloned: ${_list}"
478}
479
480# Destroy cloned interfaces. Destroyed interfaces are echoed
481# to standard output.
482#
483clone_down()
484{
485	_prefix=
486	_list=
487	for ifn in ${cloned_interfaces}; do
488		ifconfig ${ifn} destroy
489		if [ $? -eq 0 ]; then
490			_list="${_list}${_prefix}${ifn}"
491			[ -z "$_prefix" ] && _prefix=' '
492		fi
493	done
494	debug "Destroyed clones: ${_list}"
495}
496
497# Create and configure child interfaces.
498# Return 0 if child interfaces are created.
499#
500childif_create()
501{
502	local cfg child child_wlans create_args debug_flags ifn i
503	cfg=1
504
505	ifn=$1
506
507	# Create wireless interfaces
508	child_wlans=`get_if_var $ifn wlans_IF`
509
510	for child in ${child_wlans}; do
511		create_args="wlandev $ifn `get_if_var $child create_args_IF`"
512		debug_flags="`get_if_var $child wlandebug_IF`"
513
514		if expr $child : 'wlan[0-9][0-9]*$' >/dev/null 2>&1; then
515			ifconfig $child create ${create_args} && cfg=0
516			if [ -n "${debug_flags}" ]; then
517				wlandebug -i $child ${debug_flags}
518			fi
519		else
520			i=`ifconfig wlan create ${create_args}`
521			if [ -n "${debug_flags}" ]; then
522				wlandebug -i $i ${debug_flags}
523			fi
524			ifconfig $i name $child && cfg=0
525		fi
526		if autoif $child; then
527			ifn_start $child
528		fi
529	done
530
531	return ${cfg}
532}
533
534# Destroy child interfaces.
535#
536childif_destroy()
537{
538	local cfg child child_wlans ifn
539
540	child_wlans="`get_if_var $ifn wlans_IF` `get_if_var $ifn vaps_IF`"
541	for child in ${child_wlans}; do
542		ifconfig $child destroy && cfg=0
543	done
544}
545
546# Create netgraph nodes.
547#
548ng_mkpeer() {
549	ngctl -f - 2> /dev/null <<EOF
550mkpeer $*
551msg dummy nodeinfo
552EOF
553}
554
555ng_create_one() {
556	ng_mkpeer $* | while read line; do
557		t=`expr "${line}" : '.* name="\([a-z]*[0-9]*\)" .*'`
558		if [ -n "${t}" ]; then
559			echo ${t}
560			return
561		fi
562	done
563}
564
565gif_up() {
566	for i in ${gif_interfaces}; do
567		peers=`get_if_var $i gifconfig_IF`
568		case ${peers} in
569		'')
570			continue
571			;;
572		*)
573			if expr $i : 'gif[0-9][0-9]*$' >/dev/null 2>&1; then
574				ifconfig $i create >/dev/null 2>&1
575			else
576				gif=`ifconfig gif create`
577				ifconfig $gif name $i
578			fi
579			ifconfig $i tunnel ${peers}
580			ifconfig $i up
581			;;
582		esac
583	done
584}
585
586# ng_fec_create ifn
587# Configure Fast EtherChannel for interface $ifn. Returns 0 if FEC
588# arguments were found and configured; returns !0 otherwise.
589ng_fec_create() {
590	 local req_iface iface bogus
591	 req_iface="$1"
592
593	 ngctl shutdown ${req_iface}: > /dev/null 2>&1
594
595	 bogus=""
596	 while true; do
597		 iface=`ng_create_one fec dummy fec`
598		 if [ -z "${iface}" ]; then
599			 exit 2
600		 fi
601		 if [ "${iface}" = "${req_iface}" ]; then
602			 break
603		 fi
604		 bogus="${bogus} ${iface}"
605	 done
606
607	 for iface in ${bogus}; do
608		 ngctl shutdown ${iface}:
609	 done
610}
611
612fec_up() {
613	for i in ${fec_interfaces}; do
614		ng_fec_create $i
615		for j in `get_if_var $i fecconfig_IF`; do
616			case ${j} in
617			'')
618				continue
619				;;
620			*)
621				ngctl msg ${i}: add_iface "\"${j}\""
622				;;
623			esac
624		done
625	done
626}
627
628#
629# ipx_up ifn
630# Configure any IPX addresses for interface $ifn. Returns 0 if IPX
631# arguments were found and configured; returns 1 otherwise.
632#
633ipx_up()
634{
635	ifn="$1"
636	ifconfig_args=`get_if_var $ifn ifconfig_IF_ipx`
637	if [ -n "${ifconfig_args}" ]; then
638		ifconfig ${ifn} ${ifconfig_args}
639		return 0
640	fi
641	return 1
642}
643
644# ipx_down ifn
645#	Remove IPX addresses for interface $ifn. Returns 0 if IPX
646#	addresses were found and unconfigured. It returns 1, otherwise.
647#
648ipx_down()
649{
650	[ -z "$1" ] && return 1
651	_ifs="^"
652	_ret=1
653
654	ifexists $1 || return 1
655
656	ipxList="`ifconfig $1 | grep 'ipx ' | tr "\n" "$_ifs"`"
657
658	oldifs="$IFS"
659	IFS="$_ifs"
660	for _ipx in $ipxList ; do
661		# get rid of extraneous line
662		[ -z "$_ipx" ] && break
663
664		_ipx=`expr "$_ipx" : '.*\(ipx [0-9a-h]\{1,8\}H*\.[0-9a-h]\{1,12\}\).*'`
665
666		IFS="$oldifs"
667		ifconfig $1 ${_ipx} delete
668		IFS="$_ifs"
669		_ret=0
670	done
671	IFS="$oldifs"
672
673	return $_ret
674}
675
676# ifnet_rename
677#	Rename all requested interfaces.
678#
679ifnet_rename()
680{
681
682	_ifn_list="`ifconfig -l`"
683	[ -z "$_ifn_list" ] && return 0
684	for _if in ${_ifn_list} ; do
685		_ifname=`get_if_var $_if ifconfig_IF_name`
686		if [ ! -z "$_ifname" ]; then
687			ifconfig $_if name $_ifname
688		fi
689	done
690	return 0
691}
692
693#
694# list_net_interfaces type
695#	List all network interfaces. The type of interface returned
696#	can be controlled by the type argument. The type
697#	argument can be any of the following:
698#		nodhcp - all interfaces, excluding DHCP configured interfaces
699#		dhcp   - list only DHCP configured interfaces
700#	If no argument is specified all network interfaces are output.
701#	Note that the list will include cloned interfaces if applicable.
702#	Cloned interfaces must already exist to have a chance to appear
703#	in the list if ${network_interfaces} is set to `auto'.
704#
705list_net_interfaces()
706{
707	type=$1
708
709	# Get a list of ALL the interfaces and make lo0 first if it's there.
710	#
711	case ${network_interfaces} in
712	[Aa][Uu][Tt][Oo])
713		_prefix=''
714		_autolist="`ifconfig -l`"
715		_lo=
716		for _if in ${_autolist} ; do
717			if autoif $_if; then
718				if [ "$_if" = "lo0" ]; then
719					_lo="lo0 "
720				else
721					_tmplist="${_tmplist}${_prefix}${_if}"
722					[ -z "$_prefix" ] && _prefix=' '
723				fi
724			fi
725		done
726		_tmplist="${_lo}${_tmplist}"
727		;;
728	*)
729		_tmplist="${network_interfaces} ${cloned_interfaces}"
730		;;
731	esac
732
733	if [ -z "$type" ]; then
734		echo $_tmplist
735		return 0
736	fi
737
738	# Separate out dhcp and non-dhcp interfaces
739	#
740	_aprefix=
741	_bprefix=
742	for _if in ${_tmplist} ; do
743		if dhcpif $_if; then
744			_dhcplist="${_dhcplist}${_aprefix}${_if}"
745			[ -z "$_aprefix" ] && _aprefix=' '
746		elif [ -n "`_ifconfig_getargs $_if`" ]; then
747			_nodhcplist="${_nodhcplist}${_bprefix}${_if}"
748			[ -z "$_bprefix" ] && _bprefix=' '
749		fi
750	done
751
752	case "$type" in
753	nodhcp)
754		echo $_nodhcplist
755		;;
756	dhcp)
757		echo $_dhcplist
758		;;
759	esac
760	return 0
761}
762
763# get_default_if -address_family
764#	Get the interface of the default route for the given address family.
765#	The -address_family argument must be suitable passing to route(8).
766#
767get_default_if()
768{
769	routeget="`route -n get $1 default 2>/dev/null`"
770	oldifs="$IFS"
771	IFS="
772"
773	defif=
774	for line in $routeget ; do
775		case $line in
776		*interface:*)
777			defif=${line##*: }
778			;;
779		esac
780	done
781	IFS=${oldifs}
782
783	echo $defif
784}
785
786hexdigit()
787{
788	if [ $1 -lt 10 ]; then
789		echo $1
790	else
791		case $1 in
792		10)	echo a ;;
793		11)	echo b ;;
794		12)	echo c ;;
795		13)	echo d ;;
796		14)	echo e ;;
797		15)	echo f ;;
798		esac
799	fi
800}
801
802hexprint()
803{
804	val=$1
805	str=''
806
807	dig=`hexdigit $((${val} & 15))`
808	str=${dig}${str}
809	val=$((${val} >> 4))
810	while [ ${val} -gt 0 ]; do
811		dig=`hexdigit $((${val} & 15))`
812		str=${dig}${str}
813		val=$((${val} >> 4))
814	done
815
816	echo ${str}
817}
818
819is_wired_interface()
820{
821	local media
822
823	case `ifconfig $1 2>/dev/null` in
824	*media:?Ethernet*) media=Ethernet ;;
825	esac
826
827	test "$media" = "Ethernet"
828}
829
830# Setup the interfaces for IPv6
831network6_interface_setup()
832{
833	interfaces=$*
834	rtsol_interfaces=''
835	case ${ipv6_gateway_enable} in
836	[Yy][Ee][Ss])
837		rtsol_available=no
838		;;
839	*)
840		rtsol_available=yes
841		;;
842	esac
843	for i in $interfaces; do
844		rtsol_interface=yes
845		prefix=`get_if_var $i ipv6_prefix_IF`
846		if [ -n "${prefix}" ]; then
847			rtsol_available=no
848			rtsol_interface=no
849			laddr=`network6_getladdr $i`
850			hostid=`expr "${laddr}" : 'fe80::\(.*\)%\(.*\)'`
851			for j in ${prefix}; do
852				address=$j\:${hostid}
853				ifconfig $i inet6 ${address} prefixlen 64 alias
854
855				case ${ipv6_gateway_enable} in
856				[Yy][Ee][Ss])
857					# subnet-router anycast address
858					# (rfc2373)
859					ifconfig $i inet6 $j:: prefixlen 64 \
860						alias anycast
861					;;
862				esac
863			done
864		fi
865		ipv6_ifconfig=`get_if_var $i ipv6_ifconfig_IF`
866		if [ -n "${ipv6_ifconfig}" ]; then
867			rtsol_available=no
868			rtsol_interface=no
869			ifconfig $i inet6 ${ipv6_ifconfig} alias
870		fi
871
872		# Wireless NIC cards are virtualized through the wlan interface
873		if ! is_wired_interface ${i}; then
874			case "${i}" in
875			wlan*)	rtsol_available=yes ;;
876			*)	rtsol_available=no ;;
877			esac
878		fi
879
880		if [ ${rtsol_available} = yes -a ${rtsol_interface} = yes ]
881		then
882			case ${i} in
883			lo0|gif[0-9]*|stf[0-9]*|faith[0-9]*|lp[0-9]*|sl[0-9]*|tun[0-9]*|pflog[0-9]*|pfsync[0-9]*)
884				;;
885			*)
886				rtsol_interfaces="${rtsol_interfaces} ${i}"
887				;;
888			esac
889		else
890			ifconfig $i inet6
891		fi
892	done
893
894	if [ ${rtsol_available} = yes -a -n "${rtsol_interfaces}" ]; then
895		# Act as endhost - automatically configured.
896		# You can configure only single interface, as
897		# specification assumes that autoconfigured host has
898		# single interface only.
899		sysctl net.inet6.ip6.accept_rtadv=1
900		set ${rtsol_interfaces}
901		ifconfig $1 up
902		rtsol ${rtsol_flags} $1
903	fi
904
905	for i in $interfaces; do
906		alias=0
907		while : ; do
908			ipv6_ifconfig=`get_if_var $i ipv6_ifconfig_IF_alias${alias}`
909			if [ -z "${ipv6_ifconfig}" ]; then
910				break;
911			fi
912			ifconfig $i inet6 ${ipv6_ifconfig} alias
913			alias=$((${alias} + 1))
914		done
915	done
916}
917
918# Setup IPv6 to IPv4 mapping
919network6_stf_setup()
920{
921	case ${stf_interface_ipv4addr} in
922	[Nn][Oo] | '')
923		;;
924	*)
925		# assign IPv6 addr and interface route for 6to4 interface
926		stf_prefixlen=$((16+${stf_interface_ipv4plen:-0}))
927		OIFS="$IFS"
928		IFS=".$IFS"
929		set ${stf_interface_ipv4addr}
930		IFS="$OIFS"
931		hexfrag1=`hexprint $(($1*256 + $2))`
932		hexfrag2=`hexprint $(($3*256 + $4))`
933		ipv4_in_hexformat="${hexfrag1}:${hexfrag2}"
934		case ${stf_interface_ipv6_ifid} in
935		[Aa][Uu][Tt][Oo] | '')
936			for i in ${ipv6_network_interfaces}; do
937				laddr=`network6_getladdr ${i}`
938				case ${laddr} in
939				'')
940					;;
941				*)
942					break
943					;;
944				esac
945			done
946			stf_interface_ipv6_ifid=`expr "${laddr}" : \
947						      'fe80::\(.*\)%\(.*\)'`
948			case ${stf_interface_ipv6_ifid} in
949			'')
950				stf_interface_ipv6_ifid=0:0:0:1
951				;;
952			esac
953			;;
954		esac
955		ifconfig stf0 create >/dev/null 2>&1
956		ifconfig stf0 inet6 2002:${ipv4_in_hexformat}:${stf_interface_ipv6_slaid:-0}:${stf_interface_ipv6_ifid} \
957			prefixlen ${stf_prefixlen}
958		# disallow packets to malicious 6to4 prefix
959		route add -inet6 2002:e000:: -prefixlen 20 ::1 -reject
960		route add -inet6 2002:7f00:: -prefixlen 24 ::1 -reject
961		route add -inet6 2002:0000:: -prefixlen 24 ::1 -reject
962		route add -inet6 2002:ff00:: -prefixlen 24 ::1 -reject
963		;;
964	esac
965}
966
967# Setup static routes
968network6_static_routes_setup()
969{
970	# Set up any static routes.
971	case ${ipv6_defaultrouter} in
972	[Nn][Oo] | '')
973		;;
974	*)
975		ipv6_static_routes="default ${ipv6_static_routes}"
976		ipv6_route_default="default ${ipv6_defaultrouter}"
977		;;
978	esac
979	case ${ipv6_static_routes} in
980	[Nn][Oo] | '')
981		;;
982	*)
983		for i in ${ipv6_static_routes}; do
984			ipv6_route_args=`get_if_var $i ipv6_route_IF`
985			route add -inet6 ${ipv6_route_args}
986		done
987		;;
988	esac
989}
990
991# Setup faith
992network6_faith_setup()
993{
994	case ${ipv6_faith_prefix} in
995	[Nn][Oo] | '')
996		;;
997	*)
998		sysctl net.inet6.ip6.keepfaith=1
999		ifconfig faith0 create >/dev/null 2>&1
1000		ifconfig faith0 up
1001		for prefix in ${ipv6_faith_prefix}; do
1002			prefixlen=`expr "${prefix}" : ".*/\(.*\)"`
1003			case ${prefixlen} in
1004			'')
1005				prefixlen=96
1006				;;
1007			*)
1008				prefix=`expr "${prefix}" : \
1009					     "\(.*\)/${prefixlen}"`
1010				;;
1011			esac
1012			route add -inet6 ${prefix} -prefixlen ${prefixlen} ::1
1013			route change -inet6 ${prefix} -prefixlen ${prefixlen} \
1014				-ifp faith0
1015		done
1016		;;
1017	esac
1018}
1019
1020# Install the "default interface" to kernel, which will be used
1021# as the default route when there's no router.
1022network6_default_interface_setup()
1023{
1024	# Choose IPv6 default interface if it is not clearly specified.
1025	case ${ipv6_default_interface} in
1026	'')
1027		for i in ${ipv6_network_interfaces}; do
1028			case $i in
1029			lo0|faith[0-9]*)
1030				continue
1031				;;
1032			esac
1033			laddr=`network6_getladdr $i exclude_tentative`
1034			case ${laddr} in
1035			'')
1036				;;
1037			*)
1038				ipv6_default_interface=$i
1039				break
1040				;;
1041			esac
1042		done
1043		;;
1044	esac
1045
1046	# Disallow unicast packets without outgoing scope identifiers,
1047	# or route such packets to a "default" interface, if it is specified.
1048	route add -inet6 fe80:: -prefixlen 10 ::1 -reject
1049	case ${ipv6_default_interface} in
1050	[Nn][Oo] | '')
1051		route add -inet6 ff02:: -prefixlen 16 ::1 -reject
1052		;;
1053	*)
1054		laddr=`network6_getladdr ${ipv6_default_interface}`
1055		route add -inet6 ff02:: ${laddr} -prefixlen 16 -interface \
1056			-cloning
1057
1058		# Disable installing the default interface with the
1059		# case net.inet6.ip6.forwarding=0 and
1060		# net.inet6.ip6.accept_rtadv=0, due to avoid conflict
1061		# between the default router list and the manual
1062		# configured default route.
1063		case ${ipv6_gateway_enable} in
1064		[Yy][Ee][Ss])
1065			;;
1066		*)
1067			if [ `sysctl -n net.inet6.ip6.accept_rtadv` -eq 1 ]
1068			then
1069				ndp -I ${ipv6_default_interface}
1070			fi
1071			;;
1072		esac
1073		;;
1074	esac
1075}
1076
1077network6_getladdr()
1078{
1079	ifconfig $1 2>/dev/null | while read proto addr rest; do
1080		case ${proto} in
1081		inet6)
1082			case ${addr} in
1083			fe80::*)
1084				if [ -z "$2" ]; then
1085					echo ${addr}
1086					return
1087				fi
1088				case ${rest} in
1089				*tentative*)
1090					continue
1091					;;
1092				*)
1093					echo ${addr}
1094					return
1095				esac
1096			esac
1097		esac
1098	done
1099}
1100