Blame - extensions/libipt_ULOG.c - fp2-dev/platform/external/iptables

blob: cc65bba973e37939a817e74d3cf43017a0a572f2 [file] [log] [blame]

Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	1	/* Shared library add-on to iptables to add ULOG support.
				2	*
Harald Welte	d3beea3	2001-01-31 07:30:19 +0000	[diff] [blame]	3	* (C) 2000 by Harald Welte <laforge@gnumonks.org>
				4	*
				5	* multipart netlink support based on ideas by Sebastian Zander
				6	* <zander@fokus.gmd.de>
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	7	*
				8	* This software is released under the terms of GNU GPL
				9	*
Harald Welte	d3beea3	2001-01-31 07:30:19 +0000	[diff] [blame]	10	* libipt_ULOG.c,v 1.7 2001/01/30 11:55:02 laforge Exp
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	11	*/
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	12	#include <stdio.h>
				13	#include <netdb.h>
				14	#include <string.h>
				15	#include <stdlib.h>
				16	#include <syslog.h>
				17	#include <getopt.h>
				18	#include <iptables.h>
				19	#include <linux/netfilter_ipv4/ip_tables.h>
Martin Josefsson	1eb0081	2004-05-26 15:58:07 +0000	[diff] [blame]	20	/* For 64bit kernel / 32bit userspace */
				21	#include "../include/linux/netfilter_ipv4/ipt_ULOG.h"
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	22
				23
				24	void print_groups(unsigned int gmask)
				25	{
				26	int b;
				27	unsigned int test;
				28
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	29	for (b = 31; b >= 0; b--) {
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	30	test = (1 << b);
				31	if (gmask & test)
				32	printf("%d ", b + 1);
				33	}
				34	}
				35
				36	/* Function which prints out usage message. */
				37	static void help(void)
				38	{
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	39	printf("ULOG v%s options:\n"
Marc Boucher	4454094	2000-09-12 01:39:41 +0000	[diff] [blame]	40	" --ulog-nlgroup nlgroup NETLINK group used for logging\n"
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	41	" --ulog-cprange size Bytes of each packet to be passed\n"
Harald Welte	d3beea3	2001-01-31 07:30:19 +0000	[diff] [blame]	42	" --ulog-qthreshold Threshold of in-kernel queue\n"
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	43	" --ulog-prefix prefix Prefix log messages with this prefix.\n\n",
Harald Welte	80fe35d	2002-05-29 13:08:15 +0000	[diff] [blame]	44	IPTABLES_VERSION);
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	45	}
				46
Jan Engelhardt	661f112	2007-07-30 14:46:51 +0000	[diff] [blame]	47	static const struct option opts[] = {
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	48	{"ulog-nlgroup", 1, 0, '!'},
				49	{"ulog-prefix", 1, 0, '#'},
				50	{"ulog-cprange", 1, 0, 'A'},
Harald Welte	d3beea3	2001-01-31 07:30:19 +0000	[diff] [blame]	51	{"ulog-qthreshold", 1, 0, 'B'},
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	52	{0}
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	53	};
				54
				55	/* Initialize the target. */
Yasuyuki KOZAKAI	193df8e	2007-07-24 05:57:28 +0000	[diff] [blame]	56	static void init(struct xt_entry_target t, unsigned int nfcache)
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	57	{
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	58	struct ipt_ulog_info loginfo = (struct ipt_ulog_info ) t->data;
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	59
				60	loginfo->nl_group = ULOG_DEFAULT_NLGROUP;
Harald Welte	d3beea3	2001-01-31 07:30:19 +0000	[diff] [blame]	61	loginfo->qthreshold = ULOG_DEFAULT_QTHRESHOLD;
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	62
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	63	}
				64
				65	#define IPT_LOG_OPT_NLGROUP 0x01
				66	#define IPT_LOG_OPT_PREFIX 0x02
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	67	#define IPT_LOG_OPT_CPRANGE 0x04
Harald Welte	d3beea3	2001-01-31 07:30:19 +0000	[diff] [blame]	68	#define IPT_LOG_OPT_QTHRESHOLD 0x08
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	69
				70	/* Function which parses command options; returns true if it
				71	ate an option */
				72	static int parse(int c, char *argv, int invert, unsigned int flags,
Yasuyuki KOZAKAI	c0a9ab9	2007-07-24 06:02:05 +0000	[diff] [blame]	73	const void *entry,
Yasuyuki KOZAKAI	193df8e	2007-07-24 05:57:28 +0000	[diff] [blame]	74	struct xt_entry_target **target)
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	75	{
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	76	struct ipt_ulog_info *loginfo =
				77	(struct ipt_ulog_info ) (target)->data;
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	78	int group_d;
				79
				80	switch (c) {
				81	case '!':
				82	if (*flags & IPT_LOG_OPT_NLGROUP)
				83	exit_error(PARAMETER_PROBLEM,
				84	"Can't specify --ulog-nlgroup twice");
				85
Harald Welte	b77f1da	2002-03-14 11:35:58 +0000	[diff] [blame]	86	if (check_inverse(optarg, &invert, NULL, 0))
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	87	exit_error(PARAMETER_PROBLEM,
				88	"Unexpected `!' after --ulog-nlgroup");
				89	group_d = atoi(optarg);
				90	if (group_d > 32 \|\| group_d < 1)
				91	exit_error(PARAMETER_PROBLEM,
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	92	"--ulog-nlgroup has to be between 1 and 32");
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	93
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	94	loginfo->nl_group = (1 << (group_d - 1));
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	95
				96	*flags \|= IPT_LOG_OPT_NLGROUP;
				97	break;
				98
				99	case '#':
				100	if (*flags & IPT_LOG_OPT_PREFIX)
				101	exit_error(PARAMETER_PROBLEM,
				102	"Can't specify --ulog-prefix twice");
				103
Harald Welte	b77f1da	2002-03-14 11:35:58 +0000	[diff] [blame]	104	if (check_inverse(optarg, &invert, NULL, 0))
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	105	exit_error(PARAMETER_PROBLEM,
				106	"Unexpected `!' after --ulog-prefix");
				107
				108	if (strlen(optarg) > sizeof(loginfo->prefix) - 1)
				109	exit_error(PARAMETER_PROBLEM,
				110	"Maximum prefix length %u for --ulog-prefix",
Martin Josefsson	a28d495	2004-05-26 16:04:48 +0000	[diff] [blame]	111	(unsigned int)sizeof(loginfo->prefix) - 1);
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	112
Mike Frysinger	ed26b7b	2006-10-10 06:18:40 +0000	[diff] [blame]	113	if (strlen(optarg) == 0)
				114	exit_error(PARAMETER_PROBLEM,
				115	"No prefix specified for --ulog-prefix");
				116
				117	if (strlen(optarg) != strlen(strtok(optarg, "\n")))
				118	exit_error(PARAMETER_PROBLEM,
				119	"Newlines not allowed in --ulog-prefix");
				120
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	121	strcpy(loginfo->prefix, optarg);
				122	*flags \|= IPT_LOG_OPT_PREFIX;
				123	break;
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	124	case 'A':
				125	if (*flags & IPT_LOG_OPT_CPRANGE)
				126	exit_error(PARAMETER_PROBLEM,
				127	"Can't specify --ulog-cprange twice");
				128	if (atoi(optarg) < 0)
				129	exit_error(PARAMETER_PROBLEM,
				130	"Negative copy range?");
				131	loginfo->copy_range = atoi(optarg);
				132	*flags \|= IPT_LOG_OPT_CPRANGE;
				133	break;
Harald Welte	d3beea3	2001-01-31 07:30:19 +0000	[diff] [blame]	134	case 'B':
				135	if (*flags & IPT_LOG_OPT_QTHRESHOLD)
				136	exit_error(PARAMETER_PROBLEM,
				137	"Can't specify --ulog-qthreshold twice");
				138	if (atoi(optarg) < 1)
				139	exit_error(PARAMETER_PROBLEM,
				140	"Negative or zero queue threshold ?");
				141	if (atoi(optarg) > ULOG_MAX_QLEN)
				142	exit_error(PARAMETER_PROBLEM,
				143	"Maximum queue length exceeded");
				144	loginfo->qthreshold = atoi(optarg);
				145	*flags \|= IPT_LOG_OPT_QTHRESHOLD;
				146	break;
Patrick McHardy	e556800	2005-05-02 20:37:39 +0000	[diff] [blame]	147	default:
				148	return 0;
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	149	}
				150	return 1;
				151	}
				152
				153	/* Final check; nothing. */
				154	static void final_check(unsigned int flags)
				155	{
				156	}
				157
				158	/* Saves the union ipt_targinfo in parsable form to stdout. */
Yasuyuki KOZAKAI	c0a9ab9	2007-07-24 06:02:05 +0000	[diff] [blame]	159	static void save(const void *ip,
Yasuyuki KOZAKAI	193df8e	2007-07-24 05:57:28 +0000	[diff] [blame]	160	const struct xt_entry_target *target)
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	161	{
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	162	const struct ipt_ulog_info *loginfo
				163	= (const struct ipt_ulog_info *) target->data;
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	164
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	165	if (strcmp(loginfo->prefix, "") != 0)
Jimmy Hedman	b05758a	2002-09-15 11:31:28 +0000	[diff] [blame]	166	printf("--ulog-prefix \"%s\" ", loginfo->prefix);
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	167
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	168	if (loginfo->nl_group != ULOG_DEFAULT_NLGROUP) {
				169	printf("--ulog-nlgroup ");
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	170	print_groups(loginfo->nl_group);
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	171	}
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	172	if (loginfo->copy_range)
Martin Josefsson	a28d495	2004-05-26 16:04:48 +0000	[diff] [blame]	173	printf("--ulog-cprange %u ", (unsigned int)loginfo->copy_range);
Harald Welte	d3beea3	2001-01-31 07:30:19 +0000	[diff] [blame]	174
				175	if (loginfo->qthreshold != ULOG_DEFAULT_QTHRESHOLD)
Martin Josefsson	a28d495	2004-05-26 16:04:48 +0000	[diff] [blame]	176	printf("--ulog-qthreshold %u ", (unsigned int)loginfo->qthreshold);
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	177	}
				178
				179	/* Prints out the targinfo. */
				180	static void
Yasuyuki KOZAKAI	c0a9ab9	2007-07-24 06:02:05 +0000	[diff] [blame]	181	print(const void *ip,
Yasuyuki KOZAKAI	193df8e	2007-07-24 05:57:28 +0000	[diff] [blame]	182	const struct xt_entry_target *target, int numeric)
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	183	{
				184	const struct ipt_ulog_info *loginfo
Harald Welte	015dffb	2000-07-31 23:38:14 +0000	[diff] [blame]	185	= (const struct ipt_ulog_info *) target->data;
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	186
				187	printf("ULOG ");
Martin Josefsson	a28d495	2004-05-26 16:04:48 +0000	[diff] [blame]	188	printf("copy_range %u nlgroup ", (unsigned int)loginfo->copy_range);
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	189	print_groups(loginfo->nl_group);
				190	if (strcmp(loginfo->prefix, "") != 0)
				191	printf("prefix `%s' ", loginfo->prefix);
Martin Josefsson	a28d495	2004-05-26 16:04:48 +0000	[diff] [blame]	192	printf("queue_threshold %u ", (unsigned int)loginfo->qthreshold);
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	193	}
				194
Pablo Neira	8caee8b	2004-12-28 13:11:59 +0000	[diff] [blame]	195	static struct iptables_target ulog = {
Pablo Neira	8caee8b	2004-12-28 13:11:59 +0000	[diff] [blame]	196	.name = "ULOG",
				197	.version = IPTABLES_VERSION,
				198	.size = IPT_ALIGN(sizeof(struct ipt_ulog_info)),
				199	.userspacesize = IPT_ALIGN(sizeof(struct ipt_ulog_info)),
				200	.help = &help,
				201	.init = &init,
				202	.parse = &parse,
				203	.final_check = &final_check,
				204	.print = &print,
				205	.save = &save,
				206	.extra_opts = opts
Harald Welte	c5bdb40	2000-07-31 14:24:57 +0000	[diff] [blame]	207	};
				208
				209	void _init(void)
				210	{
				211	register_target(&ulog);
				212	}