Blame - extensions/libxt_mark.c - platform/external/iptables

blob: 08bc9d95872f7d32d1fa9f1aa8b87fb44dba29c5 [file] [log] [blame]

Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	1	/* Shared library add-on to iptables to add NFMARK matching support. */
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	2	#include <stdbool.h>
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	3	#include <stdio.h>
				4	#include <netdb.h>
				5	#include <string.h>
				6	#include <stdlib.h>
				7	#include <getopt.h>
				8
Yasuyuki KOZAKAI	0af771d	2007-07-24 06:53:14 +0000	[diff] [blame]	9	#include <xtables.h>
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	10	#include <linux/netfilter/xt_mark.h>
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	11
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	12	enum {
				13	F_MARK = 1 << 0,
				14	};
				15
				16	static void mark_mt_help(void)
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	17	{
				18	printf(
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	19	"mark match options:\n"
Jan Engelhardt	8b7c64d	2008-04-15 11:48:25 +0200	[diff] [blame]	20	"[!] --mark value[/mask] Match nfmark value with optional mask\n");
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	21	}
				22
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	23	static const struct option mark_mt_opts[] = {
				24	{.name = "mark", .has_arg = true, .val = '1'},
Max Kellermann	9ee386a	2008-01-29 13:48:05 +0000	[diff] [blame]	25	{ .name = NULL }
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	26	};
				27
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	28	static int mark_mt_parse(int c, char *argv, int invert, unsigned int flags,
				29	const void entry, struct xt_entry_match *match)
				30	{
				31	struct xt_mark_mtinfo1 info = (void )(*match)->data;
Jan Engelhardt	a809754	2009-01-27 17:39:01 +0100	[diff] [blame]	32	unsigned int mark, mask = UINT32_MAX;
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	33	char *end;
				34
				35	switch (c) {
				36	case '1': /* --mark */
Jan Engelhardt	a41545c	2009-01-27 21:27:19 +0100	[diff] [blame]	37	xtables_param_act(XTF_ONLY_ONCE, "mark", "--mark", *flags & F_MARK);
Jan Engelhardt	5f2922c	2009-01-27 18:43:01 +0100	[diff] [blame]	38	if (!xtables_strtoui(optarg, &end, &mark, 0, UINT32_MAX))
Jan Engelhardt	a41545c	2009-01-27 21:27:19 +0100	[diff] [blame]	39	xtables_param_act(XTF_BAD_VALUE, "mark", "--mark", optarg);
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	40	if (*end == '/')
Jan Engelhardt	5f2922c	2009-01-27 18:43:01 +0100	[diff] [blame]	41	if (!xtables_strtoui(end + 1, &end, &mask, 0, UINT32_MAX))
Jan Engelhardt	a41545c	2009-01-27 21:27:19 +0100	[diff] [blame]	42	xtables_param_act(XTF_BAD_VALUE, "mark", "--mark", optarg);
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	43	if (*end != '\0')
Jan Engelhardt	a41545c	2009-01-27 21:27:19 +0100	[diff] [blame]	44	xtables_param_act(XTF_BAD_VALUE, "mark", "--mark", optarg);
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	45
				46	if (invert)
				47	info->invert = true;
				48	info->mark = mark;
				49	info->mask = mask;
				50	*flags \|= F_MARK;
				51	return true;
				52	}
				53	return false;
				54	}
				55
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	56	static int
Jan Engelhardt	181dead	2007-10-04 16:27:07 +0000	[diff] [blame]	57	mark_parse(int c, char *argv, int invert, unsigned int flags,
				58	const void entry, struct xt_entry_match *match)
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	59	{
Yasuyuki KOZAKAI	0af771d	2007-07-24 06:53:14 +0000	[diff] [blame]	60	struct xt_mark_info markinfo = (struct xt_mark_info )(*match)->data;
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	61
				62	switch (c) {
				63	char *end;
				64	case '1':
Harald Welte	b77f1da	2002-03-14 11:35:58 +0000	[diff] [blame]	65	check_inverse(optarg, &invert, &optind, 0);
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	66	markinfo->mark = strtoul(optarg, &end, 0);
				67	if (*end == '/') {
				68	markinfo->mask = strtoul(end+1, &end, 0);
				69	} else
				70	markinfo->mask = 0xffffffff;
				71	if (*end != '\0' \|\| end == optarg)
				72	exit_error(PARAMETER_PROBLEM, "Bad MARK value `%s'", optarg);
				73	if (invert)
				74	markinfo->invert = 1;
				75	*flags = 1;
				76	break;
				77
				78	default:
				79	return 0;
				80	}
				81	return 1;
				82	}
				83
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	84	static void print_mark(unsigned int mark, unsigned int mask)
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	85	{
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	86	if (mask != 0xffffffffU)
				87	printf("0x%x/0x%x ", mark, mask);
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	88	else
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	89	printf("0x%x ", mark);
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	90	}
				91
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	92	static void mark_mt_check(unsigned int flags)
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	93	{
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	94	if (flags == 0)
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	95	exit_error(PARAMETER_PROBLEM,
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	96	"mark match: The --mark option is required");
				97	}
				98
				99	static void
				100	mark_mt_print(const void ip, const struct xt_entry_match match, int numeric)
				101	{
				102	const struct xt_mark_mtinfo1 info = (const void )match->data;
				103
				104	printf("mark match ");
				105	if (info->invert)
				106	printf("!");
				107	print_mark(info->mark, info->mask);
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	108	}
				109
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	110	static void
Jan Engelhardt	181dead	2007-10-04 16:27:07 +0000	[diff] [blame]	111	mark_print(const void ip, const struct xt_entry_match match, int numeric)
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	112	{
Yasuyuki KOZAKAI	0af771d	2007-07-24 06:53:14 +0000	[diff] [blame]	113	struct xt_mark_info info = (struct xt_mark_info )match->data;
Harald Welte	42479cc	2002-09-20 15:25:13 +0000	[diff] [blame]	114
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	115	printf("MARK match ");
Harald Welte	42479cc	2002-09-20 15:25:13 +0000	[diff] [blame]	116
				117	if (info->invert)
				118	printf("!");
				119
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	120	print_mark(info->mark, info->mask);
				121	}
				122
				123	static void mark_mt_save(const void ip, const struct xt_entry_match match)
				124	{
				125	const struct xt_mark_mtinfo1 info = (const void )match->data;
				126
				127	if (info->invert)
Pablo Sebastian Greco	3cc6fc3	2008-09-29 08:51:32 +0200	[diff] [blame]	128	printf("! ");
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	129
				130	printf("--mark ");
				131	print_mark(info->mark, info->mask);
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	132	}
				133
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	134	static void
Jan Engelhardt	181dead	2007-10-04 16:27:07 +0000	[diff] [blame]	135	mark_save(const void ip, const struct xt_entry_match match)
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	136	{
Yasuyuki KOZAKAI	0af771d	2007-07-24 06:53:14 +0000	[diff] [blame]	137	struct xt_mark_info info = (struct xt_mark_info )match->data;
Harald Welte	42479cc	2002-09-20 15:25:13 +0000	[diff] [blame]	138
				139	if (info->invert)
				140	printf("! ");
				141
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	142	printf("--mark ");
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	143	print_mark(info->mark, info->mask);
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	144	}
				145
Jan Engelhardt	181dead	2007-10-04 16:27:07 +0000	[diff] [blame]	146	static struct xtables_match mark_match = {
Jan Engelhardt	23545c2	2008-02-14 04:23:04 +0100	[diff] [blame]	147	.family = AF_UNSPEC,
Yasuyuki KOZAKAI	de9d244	2007-07-24 06:55:05 +0000	[diff] [blame]	148	.name = "mark",
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	149	.revision = 0,
Jan Engelhardt	8b7c64d	2008-04-15 11:48:25 +0200	[diff] [blame]	150	.version = XTABLES_VERSION,
Yasuyuki KOZAKAI	de9d244	2007-07-24 06:55:05 +0000	[diff] [blame]	151	.size = XT_ALIGN(sizeof(struct xt_mark_info)),
				152	.userspacesize = XT_ALIGN(sizeof(struct xt_mark_info)),
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	153	.help = mark_mt_help,
Jan Engelhardt	181dead	2007-10-04 16:27:07 +0000	[diff] [blame]	154	.parse = mark_parse,
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	155	.final_check = mark_mt_check,
Jan Engelhardt	181dead	2007-10-04 16:27:07 +0000	[diff] [blame]	156	.print = mark_print,
				157	.save = mark_save,
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	158	.extra_opts = mark_mt_opts,
				159	};
				160
				161	static struct xtables_match mark_mt_reg = {
Jan Engelhardt	8b7c64d	2008-04-15 11:48:25 +0200	[diff] [blame]	162	.version = XTABLES_VERSION,
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	163	.name = "mark",
				164	.revision = 1,
Jan Engelhardt	23545c2	2008-02-14 04:23:04 +0100	[diff] [blame]	165	.family = AF_UNSPEC,
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	166	.size = XT_ALIGN(sizeof(struct xt_mark_mtinfo1)),
				167	.userspacesize = XT_ALIGN(sizeof(struct xt_mark_mtinfo1)),
				168	.help = mark_mt_help,
				169	.parse = mark_mt_parse,
				170	.final_check = mark_mt_check,
				171	.print = mark_mt_print,
				172	.save = mark_mt_save,
				173	.extra_opts = mark_mt_opts,
Yasuyuki KOZAKAI	de9d244	2007-07-24 06:55:05 +0000	[diff] [blame]	174	};
				175
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	176	void _init(void)
				177	{
Jan Engelhardt	181dead	2007-10-04 16:27:07 +0000	[diff] [blame]	178	xtables_register_match(&mark_match);
Jan Engelhardt	d95d92f	2008-01-20 13:41:22 +0000	[diff] [blame]	179	xtables_register_match(&mark_mt_reg);
Marc Boucher	e6869a8	2000-03-20 06:03:29 +0000	[diff] [blame]	180	}