Gitiles
Code Review Sign In
gerrit-public.fairphone.software / fp2-dev / platform / external / iptables / 51651b64fffc58d4f58d005fa7dc0d9669147c57 / . / extensions / libip6t_hl.c
blob: ff76b74d024d2f1ff7f9f75ef0c98c827567d78b [file] [log] [blame]
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]1/*
2 * IPv6 Hop Limit matching module
3 * Maciej Soltysiak <solt@dns.toxicfilms.tv>
4 * Based on HW's ttl match
5 * This program is released under the terms of GNU GPL
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]6 * Cleanups by Stephane Ouellette <ouellettes@videotron.ca>
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]7 */
8
9#include <stdio.h>
10#include <stdlib.h>
11#include <string.h>
12#include <getopt.h>
Jan Engelhardt5d9678a2008-11-20 10:15:35 +0100[diff] [blame]13#include <xtables.h>
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]14
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]15#include <linux/netfilter_ipv6/ip6t_hl.h>
16
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]17static void hl_help(void)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]18{
19 printf(
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]20"hl match options:\n"
Jan Engelhardt96727922008-08-13 14:42:41 +0200[diff] [blame]21"[!] --hl-eq value Match hop limit value\n"
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]22" --hl-lt value Match HL < value\n"
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]23" --hl-gt value Match HL > value\n");
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]24}
25
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]26static int hl_parse(int c, char **argv, int invert, unsigned int *flags,
27 const void *entry, struct xt_entry_match **match)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]28{
29 struct ip6t_hl_info *info = (struct ip6t_hl_info *) (*match)->data;
30 u_int8_t value;
31
Jan Engelhardt0f16c722009-01-30 04:55:38 +0100[diff] [blame]32 xtables_check_inverse(optarg, &invert, &optind, 0);
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]33 value = atoi(argv[optind-1]);
34
35 if (*flags)
Jan Engelhardt1829ed42009-02-21 03:29:44 +0100[diff] [blame]36 xtables_error(PARAMETER_PROBLEM,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]37 "Can't specify HL option twice");
38
39 if (!optarg)
Jan Engelhardt1829ed42009-02-21 03:29:44 +0100[diff] [blame]40 xtables_error(PARAMETER_PROBLEM,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]41 "hl: You must specify a value");
42 switch (c) {
43 case '2':
44 if (invert)
45 info->mode = IP6T_HL_NE;
46 else
47 info->mode = IP6T_HL_EQ;
48
49 /* is 0 allowed? */
50 info->hop_limit = value;
51 *flags = 1;
52
53 break;
54 case '3':
55 if (invert)
Jan Engelhardt1829ed42009-02-21 03:29:44 +0100[diff] [blame]56 xtables_error(PARAMETER_PROBLEM,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]57 "hl: unexpected `!'");
58
59 info->mode = IP6T_HL_LT;
60 info->hop_limit = value;
61 *flags = 1;
62
63 break;
64 case '4':
65 if (invert)
Jan Engelhardt1829ed42009-02-21 03:29:44 +0100[diff] [blame]66 xtables_error(PARAMETER_PROBLEM,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]67 "hl: unexpected `!'");
68
69 info->mode = IP6T_HL_GT;
70 info->hop_limit = value;
71 *flags = 1;
72
73 break;
74 default:
75 return 0;
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]76 }
77
78 return 1;
79}
80
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]81static void hl_check(unsigned int flags)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]82{
83 if (!flags)
Jan Engelhardt1829ed42009-02-21 03:29:44 +0100[diff] [blame]84 xtables_error(PARAMETER_PROBLEM,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]85 "HL match: You must specify one of "
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]86 "`--hl-eq', `--hl-lt', `--hl-gt'");
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]87}
88
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]89static void hl_print(const void *ip, const struct xt_entry_match *match,
90 int numeric)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]91{
Jan Engelhardt69f564e2009-05-26 13:14:06 +0200[diff] [blame]92 static const char *const op[] = {
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]93 [IP6T_HL_EQ] = "==",
94 [IP6T_HL_NE] = "!=",
95 [IP6T_HL_LT] = "<",
96 [IP6T_HL_GT] = ">" };
97
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]98 const struct ip6t_hl_info *info =
99 (struct ip6t_hl_info *) match->data;
100
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]101 printf("HL match HL %s %u ", op[info->mode], info->hop_limit);
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]102}
103
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]104static void hl_save(const void *ip, const struct xt_entry_match *match)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]105{
Jan Engelhardtcea9f712008-12-09 15:06:20 +0100[diff] [blame]106 static const char *const op[] = {
107 [IP6T_HL_EQ] = "--hl-eq",
108 [IP6T_HL_NE] = "! --hl-eq",
109 [IP6T_HL_LT] = "--hl-lt",
110 [IP6T_HL_GT] = "--hl-gt" };
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]111
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]112 const struct ip6t_hl_info *info =
113 (struct ip6t_hl_info *) match->data;
114
Jan Engelhardtcea9f712008-12-09 15:06:20 +0100[diff] [blame]115 printf("%s %u ", op[info->mode], info->hop_limit);
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]116}
117
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]118static const struct option hl_opts[] = {
Patrick McHardy500f4832007-09-08 15:59:04 +0000[diff] [blame]119 { .name = "hl", .has_arg = 1, .val = '2' },
120 { .name = "hl-eq", .has_arg = 1, .val = '2' },
121 { .name = "hl-lt", .has_arg = 1, .val = '3' },
122 { .name = "hl-gt", .has_arg = 1, .val = '4' },
Max Kellermann9ee386a2008-01-29 13:48:05 +0000[diff] [blame]123 { .name = NULL }
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]124};
125
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]126static struct xtables_match hl_mt6_reg = {
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]127 .name = "hl",
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]128 .version = XTABLES_VERSION,
Jan Engelhardt03d99482008-11-18 12:27:54 +0100[diff] [blame]129 .family = NFPROTO_IPV6,
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]130 .size = XT_ALIGN(sizeof(struct ip6t_hl_info)),
131 .userspacesize = XT_ALIGN(sizeof(struct ip6t_hl_info)),
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]132 .help = hl_help,
133 .parse = hl_parse,
134 .final_check = hl_check,
135 .print = hl_print,
136 .save = hl_save,
137 .extra_opts = hl_opts,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]138};
139
140
141void _init(void)
142{
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]143 xtables_register_match(&hl_mt6_reg);
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]144}