Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / 5b095d98928fdb9e3b75be20a54b7a6cbf6ca9ad / . / net / netfilter / xt_MARK.c
blob: 67574bcfb8ac8016e65d211ce6126806a157f229 [file] [log] [blame]
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]1/*
2 * xt_MARK - Netfilter module to modify the NFMARK field of an skb
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]3 *
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]4 * (C) 1999-2001 Marc Boucher <marc@mbsi.ca>
5 * Copyright © CC Computer Consultants GmbH, 2007 - 2008
6 * Jan Engelhardt <jengelh@computergmbh.de>
7 *
8 * This program is free software; you can redistribute it and/or modify
9 * it under the terms of the GNU General Public License version 2 as
10 * published by the Free Software Foundation.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]11 */
12
13#include <linux/module.h>
14#include <linux/skbuff.h>
15#include <linux/ip.h>
16#include <net/checksum.h>
17
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]18#include <linux/netfilter/x_tables.h>
19#include <linux/netfilter/xt_MARK.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]20
21MODULE_LICENSE("GPL");
22MODULE_AUTHOR("Marc Boucher <marc@mbsi.ca>");
Jan Engelhardt2ae15b62008-01-14 23:42:28 -0800[diff] [blame]23MODULE_DESCRIPTION("Xtables: packet mark modification");
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]24MODULE_ALIAS("ipt_MARK");
25MODULE_ALIAS("ip6t_MARK");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]26
27static unsigned int
Jan Engelhardt7eb35582008-10-08 11:35:19 +0200[diff] [blame]28mark_tg_v0(struct sk_buff *skb, const struct xt_target_param *par)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]29{
Jan Engelhardt7eb35582008-10-08 11:35:19 +0200[diff] [blame]30 const struct xt_mark_target_info *markinfo = par->targinfo;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]31
Herbert Xu3db05fe2007-10-15 00:53:15 -0700[diff] [blame]32 skb->mark = markinfo->mark;
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]33 return XT_CONTINUE;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]34}
35
36static unsigned int
Jan Engelhardt7eb35582008-10-08 11:35:19 +0200[diff] [blame]37mark_tg_v1(struct sk_buff *skb, const struct xt_target_param *par)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]38{
Jan Engelhardt7eb35582008-10-08 11:35:19 +0200[diff] [blame]39 const struct xt_mark_target_info_v1 *markinfo = par->targinfo;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]40 int mark = 0;
41
42 switch (markinfo->mode) {
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]43 case XT_MARK_SET:
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]44 mark = markinfo->mark;
45 break;
YOSHIFUJI Hideaki601e68e2007-02-12 11:15:49 -0800[diff] [blame]46
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]47 case XT_MARK_AND:
Herbert Xu3db05fe2007-10-15 00:53:15 -0700[diff] [blame]48 mark = skb->mark & markinfo->mark;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]49 break;
YOSHIFUJI Hideaki601e68e2007-02-12 11:15:49 -0800[diff] [blame]50
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]51 case XT_MARK_OR:
Herbert Xu3db05fe2007-10-15 00:53:15 -0700[diff] [blame]52 mark = skb->mark | markinfo->mark;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]53 break;
54 }
55
Herbert Xu3db05fe2007-10-15 00:53:15 -0700[diff] [blame]56 skb->mark = mark;
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]57 return XT_CONTINUE;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]58}
59
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]60static unsigned int
Jan Engelhardt7eb35582008-10-08 11:35:19 +0200[diff] [blame]61mark_tg(struct sk_buff *skb, const struct xt_target_param *par)
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]62{
Jan Engelhardt7eb35582008-10-08 11:35:19 +0200[diff] [blame]63 const struct xt_mark_tginfo2 *info = par->targinfo;
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]64
65 skb->mark = (skb->mark & ~info->mask) ^ info->mark;
66 return XT_CONTINUE;
67}
68
Jan Engelhardtaf5d6dc2008-10-08 11:35:19 +0200[diff] [blame]69static bool mark_tg_check_v0(const struct xt_tgchk_param *par)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]70{
Jan Engelhardtaf5d6dc2008-10-08 11:35:19 +0200[diff] [blame]71 const struct xt_mark_target_info *markinfo = par->targinfo;
Harald Weltebf3a46a2005-08-09 19:22:01 -0700[diff] [blame]72
Harald Weltebf3a46a2005-08-09 19:22:01 -0700[diff] [blame]73 if (markinfo->mark > 0xffffffff) {
74 printk(KERN_WARNING "MARK: Only supports 32bit wide mark\n");
Jan Engelhardte1931b72007-07-07 22:16:26 -0700[diff] [blame]75 return false;
Harald Weltebf3a46a2005-08-09 19:22:01 -0700[diff] [blame]76 }
Jan Engelhardte1931b72007-07-07 22:16:26 -0700[diff] [blame]77 return true;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]78}
79
Jan Engelhardtaf5d6dc2008-10-08 11:35:19 +0200[diff] [blame]80static bool mark_tg_check_v1(const struct xt_tgchk_param *par)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]81{
Jan Engelhardtaf5d6dc2008-10-08 11:35:19 +0200[diff] [blame]82 const struct xt_mark_target_info_v1 *markinfo = par->targinfo;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]83
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]84 if (markinfo->mode != XT_MARK_SET
85 && markinfo->mode != XT_MARK_AND
86 && markinfo->mode != XT_MARK_OR) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]87 printk(KERN_WARNING "MARK: unknown mode %u\n",
88 markinfo->mode);
Jan Engelhardte1931b72007-07-07 22:16:26 -0700[diff] [blame]89 return false;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]90 }
Harald Weltebf3a46a2005-08-09 19:22:01 -0700[diff] [blame]91 if (markinfo->mark > 0xffffffff) {
92 printk(KERN_WARNING "MARK: Only supports 32bit wide mark\n");
Jan Engelhardte1931b72007-07-07 22:16:26 -0700[diff] [blame]93 return false;
Harald Weltebf3a46a2005-08-09 19:22:01 -0700[diff] [blame]94 }
Jan Engelhardte1931b72007-07-07 22:16:26 -0700[diff] [blame]95 return true;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]96}
97
Patrick McHardybe7263b72006-09-20 12:06:10 -0700[diff] [blame]98#ifdef CONFIG_COMPAT
Patrick McHardy1fe57232007-12-17 21:51:33 -0800[diff] [blame]99struct compat_xt_mark_target_info {
100 compat_ulong_t mark;
101};
102
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]103static void mark_tg_compat_from_user_v0(void *dst, void *src)
Patrick McHardy1fe57232007-12-17 21:51:33 -0800[diff] [blame]104{
105 const struct compat_xt_mark_target_info *cm = src;
106 struct xt_mark_target_info m = {
107 .mark = cm->mark,
108 };
109 memcpy(dst, &m, sizeof(m));
110}
111
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]112static int mark_tg_compat_to_user_v0(void __user *dst, void *src)
Patrick McHardy1fe57232007-12-17 21:51:33 -0800[diff] [blame]113{
114 const struct xt_mark_target_info *m = src;
115 struct compat_xt_mark_target_info cm = {
116 .mark = m->mark,
117 };
118 return copy_to_user(dst, &cm, sizeof(cm)) ? -EFAULT : 0;
119}
120
Patrick McHardybe7263b72006-09-20 12:06:10 -0700[diff] [blame]121struct compat_xt_mark_target_info_v1 {
122 compat_ulong_t mark;
123 u_int8_t mode;
124 u_int8_t __pad1;
125 u_int16_t __pad2;
126};
127
Patrick McHardy1fe57232007-12-17 21:51:33 -0800[diff] [blame]128static void mark_tg_compat_from_user_v1(void *dst, void *src)
Patrick McHardybe7263b72006-09-20 12:06:10 -0700[diff] [blame]129{
Jan Engelhardta47362a2007-07-07 22:16:55 -0700[diff] [blame]130 const struct compat_xt_mark_target_info_v1 *cm = src;
Patrick McHardybe7263b72006-09-20 12:06:10 -0700[diff] [blame]131 struct xt_mark_target_info_v1 m = {
132 .mark = cm->mark,
133 .mode = cm->mode,
134 };
135 memcpy(dst, &m, sizeof(m));
136}
137
Patrick McHardy1fe57232007-12-17 21:51:33 -0800[diff] [blame]138static int mark_tg_compat_to_user_v1(void __user *dst, void *src)
Patrick McHardybe7263b72006-09-20 12:06:10 -0700[diff] [blame]139{
Jan Engelhardta47362a2007-07-07 22:16:55 -0700[diff] [blame]140 const struct xt_mark_target_info_v1 *m = src;
Patrick McHardybe7263b72006-09-20 12:06:10 -0700[diff] [blame]141 struct compat_xt_mark_target_info_v1 cm = {
142 .mark = m->mark,
143 .mode = m->mode,
144 };
145 return copy_to_user(dst, &cm, sizeof(cm)) ? -EFAULT : 0;
146}
147#endif /* CONFIG_COMPAT */
148
Jan Engelhardtd3c5ee62007-12-04 23:24:03 -0800[diff] [blame]149static struct xt_target mark_tg_reg[] __read_mostly = {
Patrick McHardy4470bbc2006-08-22 00:34:04 -0700[diff] [blame]150 {
151 .name = "MARK",
Jan Engelhardtab4f21e2008-10-08 11:35:20 +0200[diff] [blame]152 .family = NFPROTO_UNSPEC,
Patrick McHardy4470bbc2006-08-22 00:34:04 -0700[diff] [blame]153 .revision = 0,
Jan Engelhardtd3c5ee62007-12-04 23:24:03 -0800[diff] [blame]154 .checkentry = mark_tg_check_v0,
155 .target = mark_tg_v0,
Patrick McHardy4470bbc2006-08-22 00:34:04 -0700[diff] [blame]156 .targetsize = sizeof(struct xt_mark_target_info),
Patrick McHardy1fe57232007-12-17 21:51:33 -0800[diff] [blame]157#ifdef CONFIG_COMPAT
158 .compatsize = sizeof(struct compat_xt_mark_target_info),
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]159 .compat_from_user = mark_tg_compat_from_user_v0,
160 .compat_to_user = mark_tg_compat_to_user_v0,
Patrick McHardy1fe57232007-12-17 21:51:33 -0800[diff] [blame]161#endif
Patrick McHardy4470bbc2006-08-22 00:34:04 -0700[diff] [blame]162 .table = "mangle",
163 .me = THIS_MODULE,
164 },
165 {
166 .name = "MARK",
Jan Engelhardtab4f21e2008-10-08 11:35:20 +0200[diff] [blame]167 .family = NFPROTO_UNSPEC,
Patrick McHardy311af5c2007-12-17 21:51:14 -0800[diff] [blame]168 .revision = 1,
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]169 .checkentry = mark_tg_check_v1,
170 .target = mark_tg_v1,
Patrick McHardy311af5c2007-12-17 21:51:14 -0800[diff] [blame]171 .targetsize = sizeof(struct xt_mark_target_info_v1),
172#ifdef CONFIG_COMPAT
173 .compatsize = sizeof(struct compat_xt_mark_target_info_v1),
Patrick McHardy1fe57232007-12-17 21:51:33 -0800[diff] [blame]174 .compat_from_user = mark_tg_compat_from_user_v1,
175 .compat_to_user = mark_tg_compat_to_user_v1,
Patrick McHardy311af5c2007-12-17 21:51:14 -0800[diff] [blame]176#endif
177 .table = "mangle",
178 .me = THIS_MODULE,
179 },
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]180 {
181 .name = "MARK",
182 .revision = 2,
Jan Engelhardt55b69e92008-10-08 11:35:01 +0200[diff] [blame]183 .family = NFPROTO_UNSPEC,
Jan Engelhardte0a812a2008-01-14 23:38:52 -0800[diff] [blame]184 .target = mark_tg,
185 .targetsize = sizeof(struct xt_mark_tginfo2),
186 .me = THIS_MODULE,
187 },
Harald Welte2e4e6a12006-01-12 13:30:04 -0800[diff] [blame]188};
189
Jan Engelhardtd3c5ee62007-12-04 23:24:03 -0800[diff] [blame]190static int __init mark_tg_init(void)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]191{
Jan Engelhardtd3c5ee62007-12-04 23:24:03 -0800[diff] [blame]192 return xt_register_targets(mark_tg_reg, ARRAY_SIZE(mark_tg_reg));
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]193}
194
Jan Engelhardtd3c5ee62007-12-04 23:24:03 -0800[diff] [blame]195static void __exit mark_tg_exit(void)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]196{
Jan Engelhardtd3c5ee62007-12-04 23:24:03 -0800[diff] [blame]197 xt_unregister_targets(mark_tg_reg, ARRAY_SIZE(mark_tg_reg));
Linus Torvalds1da177e2005-04-16 15:20:36 -0700[diff] [blame]198}
199
Jan Engelhardtd3c5ee62007-12-04 23:24:03 -0800[diff] [blame]200module_init(mark_tg_init);
201module_exit(mark_tg_exit);