Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / iptables / 0198008d1de13037c2e809c598d51771b166cc46 / . / extensions / libip6t_hl.c
blob: 226b69c379cc70c77afacc098963ed66011df400 [file] [log] [blame]
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]1/*
2 * IPv6 Hop Limit matching module
3 * Maciej Soltysiak <solt@dns.toxicfilms.tv>
4 * Based on HW's ttl match
5 * This program is released under the terms of GNU GPL
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]6 * Cleanups by Stephane Ouellette <ouellettes@videotron.ca>
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]7 */
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]8#include <stdio.h>
Jan Engelhardt5d9678a2008-11-20 10:15:35 +0100[diff] [blame]9#include <xtables.h>
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]10#include <linux/netfilter_ipv6/ip6t_hl.h>
11
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]12enum {
13 O_HL_EQ = 0,
14 O_HL_LT,
15 O_HL_GT,
16 F_HL_EQ = 1 << O_HL_EQ,
17 F_HL_LT = 1 << O_HL_LT,
18 F_HL_GT = 1 << O_HL_GT,
19 F_ANY = F_HL_EQ | F_HL_LT | F_HL_GT,
20};
21
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]22static void hl_help(void)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]23{
24 printf(
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]25"hl match options:\n"
Jan Engelhardt96727922008-08-13 14:42:41 +0200[diff] [blame]26"[!] --hl-eq value Match hop limit value\n"
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]27" --hl-lt value Match HL < value\n"
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]28" --hl-gt value Match HL > value\n");
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]29}
30
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]31static void hl_parse(struct xt_option_call *cb)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]32{
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]33 struct ip6t_hl_info *info = cb->data;
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]34
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]35 xtables_option_parse(cb);
36 switch (cb->entry->id) {
37 case O_HL_EQ:
38 info->mode = cb->invert ? IP6T_HL_NE : IP6T_HL_EQ;
39 break;
40 case O_HL_LT:
41 info->mode = IP6T_HL_LT;
42 break;
43 case O_HL_GT:
44 info->mode = IP6T_HL_GT;
45 break;
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]46 }
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]47}
48
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]49static void hl_check(struct xt_fcheck_call *cb)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]50{
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]51 if (!(cb->xflags & F_ANY))
Jan Engelhardt1829ed42009-02-21 03:29:44 +0100[diff] [blame]52 xtables_error(PARAMETER_PROBLEM,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]53 "HL match: You must specify one of "
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]54 "`--hl-eq', `--hl-lt', `--hl-gt'");
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]55}
56
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]57static void hl_print(const void *ip, const struct xt_entry_match *match,
58 int numeric)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]59{
Jan Engelhardt69f564e2009-05-26 13:14:06 +0200[diff] [blame]60 static const char *const op[] = {
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]61 [IP6T_HL_EQ] = "==",
62 [IP6T_HL_NE] = "!=",
63 [IP6T_HL_LT] = "<",
64 [IP6T_HL_GT] = ">" };
65
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]66 const struct ip6t_hl_info *info =
67 (struct ip6t_hl_info *) match->data;
68
Jan Engelhardt73866352010-12-18 02:04:59 +0100[diff] [blame]69 printf(" HL match HL %s %u", op[info->mode], info->hop_limit);
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]70}
71
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]72static void hl_save(const void *ip, const struct xt_entry_match *match)
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]73{
Jan Engelhardtcea9f712008-12-09 15:06:20 +0100[diff] [blame]74 static const char *const op[] = {
75 [IP6T_HL_EQ] = "--hl-eq",
76 [IP6T_HL_NE] = "! --hl-eq",
77 [IP6T_HL_LT] = "--hl-lt",
78 [IP6T_HL_GT] = "--hl-gt" };
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]79
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]80 const struct ip6t_hl_info *info =
81 (struct ip6t_hl_info *) match->data;
82
Jan Engelhardt73866352010-12-18 02:04:59 +0100[diff] [blame]83 printf(" %s %u", op[info->mode], info->hop_limit);
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]84}
85
Shivani Bhardwaj01980082016-01-12 19:58:29 +0530[diff] [blame^]86static int hl_xlate(const struct xt_entry_match *match,
87 struct xt_buf *buf, int numeric)
88{
89 static const char *const op[] = {
90 [IP6T_HL_EQ] = "",
91 [IP6T_HL_NE] = "!= ",
92 [IP6T_HL_LT] = "lt ",
93 [IP6T_HL_GT] = "gt " };
94
95 const struct ip6t_hl_info *info =
96 (struct ip6t_hl_info *) match->data;
97
98 xt_buf_add(buf, "ip6 hoplimit %s%u ", op[info->mode], info->hop_limit);
99
100 return 1;
101}
102
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]103#define s struct ip6t_hl_info
104static const struct xt_option_entry hl_opts[] = {
105 {.name = "hl-lt", .id = O_HL_LT, .excl = F_ANY, .type = XTTYPE_UINT8,
106 .flags = XTOPT_PUT, XTOPT_POINTER(s, hop_limit)},
107 {.name = "hl-gt", .id = O_HL_GT, .excl = F_ANY, .type = XTTYPE_UINT8,
108 .flags = XTOPT_PUT, XTOPT_POINTER(s, hop_limit)},
109 {.name = "hl-eq", .id = O_HL_EQ, .excl = F_ANY, .type = XTTYPE_UINT8,
110 .flags = XTOPT_INVERT | XTOPT_PUT, XTOPT_POINTER(s, hop_limit)},
111 {.name = "hl", .id = O_HL_EQ, .excl = F_ANY, .type = XTTYPE_UINT8,
112 .flags = XTOPT_PUT, XTOPT_POINTER(s, hop_limit)},
113 XTOPT_TABLEEND,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]114};
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]115#undef s
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]116
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]117static struct xtables_match hl_mt6_reg = {
Stephane Ouellette46525cd2003-05-07 20:08:36 +0000[diff] [blame]118 .name = "hl",
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]119 .version = XTABLES_VERSION,
Jan Engelhardt03d99482008-11-18 12:27:54 +0100[diff] [blame]120 .family = NFPROTO_IPV6,
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]121 .size = XT_ALIGN(sizeof(struct ip6t_hl_info)),
122 .userspacesize = XT_ALIGN(sizeof(struct ip6t_hl_info)),
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]123 .help = hl_help,
Jan Engelhardt997045f2007-10-04 16:29:21 +0000[diff] [blame]124 .print = hl_print,
125 .save = hl_save,
Jan Engelhardtdba08392011-02-18 03:20:56 +0100[diff] [blame]126 .x6_parse = hl_parse,
127 .x6_fcheck = hl_check,
128 .x6_options = hl_opts,
Shivani Bhardwaj01980082016-01-12 19:58:29 +0530[diff] [blame^]129 .xlate = hl_xlate,
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]130};
131
132
133void _init(void)
134{
Jan Engelhardt8b7c64d2008-04-15 11:48:25 +0200[diff] [blame]135 xtables_register_match(&hl_mt6_reg);
Maciej Soltysiak60358d72003-01-08 09:14:20 +0000[diff] [blame]136}