Blame - extensions/libxt_TCPOPTSTRIP.c - platform/external/iptables

blob: 6897857317b6cbe2473fa336b25a0caf297c69dc [file] [log] [blame]

Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	1	/*
				2	* Shared library add-on to iptables to add TCPOPTSTRIP target support.
				3	* Copyright (c) 2007 Sven Schnelle <svens@bitebene.org>
				4	* Copyright © CC Computer Consultants GmbH, 2007
				5	* Jan Engelhardt <jengelh@computergmbh.de>
				6	*/
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	7	#include <stdio.h>
				8	#include <string.h>
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	9	#include <xtables.h>
Jan Engelhardt	ef18e81	2008-08-04 12:47:48 +0200	[diff] [blame]	10	#include <netinet/tcp.h>
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	11	#include <linux/netfilter/xt_TCPOPTSTRIP.h>
				12	#ifndef TCPOPT_MD5SIG
				13	# define TCPOPT_MD5SIG 19
				14	#endif
				15
				16	enum {
Jan Engelhardt	693420f	2011-03-02 22:57:52 +0100	[diff] [blame]	17	O_STRIP_OPTION = 0,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	18	};
				19
				20	struct tcp_optionmap {
				21	const char name, desc;
Jan Engelhardt	7a236f4	2008-03-03 12:30:41 +0100	[diff] [blame]	22	const unsigned int option;
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	23	};
				24
Jan Engelhardt	693420f	2011-03-02 22:57:52 +0100	[diff] [blame]	25	static const struct xt_option_entry tcpoptstrip_tg_opts[] = {
				26	{.name = "strip-options", .id = O_STRIP_OPTION, .type = XTTYPE_STRING},
				27	XTOPT_TABLEEND,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	28	};
				29
				30	static const struct tcp_optionmap tcp_optionmap[] = {
				31	{"wscale", "Window scale", TCPOPT_WINDOW},
				32	{"mss", "Maximum Segment Size", TCPOPT_MAXSEG},
				33	{"sack-permitted", "SACK permitted", TCPOPT_SACK_PERMITTED},
				34	{"sack", "Selective ACK", TCPOPT_SACK},
				35	{"timestamp", "Timestamp", TCPOPT_TIMESTAMP},
				36	{"md5", "MD5 signature", TCPOPT_MD5SIG},
Jan Engelhardt	104fb31	2011-05-07 04:01:25 +0200	[diff] [blame]	37	{NULL},
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	38	};
				39
				40	static void tcpoptstrip_tg_help(void)
				41	{
				42	const struct tcp_optionmap *w;
				43
				44	printf(
				45	"TCPOPTSTRIP target options:\n"
				46	" --strip-options value strip specified TCP options denoted by value\n"
				47	" (separated by comma) from TCP header\n"
				48	" Instead of the numeric value, you can also use the following names:\n"
				49	);
				50
				51	for (w = tcp_optionmap; w->name != NULL; ++w)
				52	printf(" %-14s strip \"%s\" option\n", w->name, w->desc);
				53	}
				54
Jan Engelhardt	693420f	2011-03-02 22:57:52 +0100	[diff] [blame]	55	static void
				56	parse_list(struct xt_tcpoptstrip_target_info info, const char arg)
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	57	{
				58	unsigned int option;
				59	char *p;
				60	int i;
				61
				62	while (true) {
				63	p = strchr(arg, ',');
				64	if (p != NULL)
				65	*p = '\0';
				66
				67	option = 0;
				68	for (i = 0; tcp_optionmap[i].name != NULL; ++i)
				69	if (strcmp(tcp_optionmap[i].name, arg) == 0) {
				70	option = tcp_optionmap[i].option;
				71	break;
				72	}
				73
Jan Engelhardt	5f2922c	2009-01-27 18:43:01 +0100	[diff] [blame]	74	if (option == 0 &&
				75	!xtables_strtoui(arg, NULL, &option, 0, UINT8_MAX))
Jan Engelhardt	1829ed4	2009-02-21 03:29:44 +0100	[diff] [blame]	76	xtables_error(PARAMETER_PROBLEM,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	77	"Bad TCP option value \"%s\"", arg);
				78
				79	if (option < 2)
Jan Engelhardt	1829ed4	2009-02-21 03:29:44 +0100	[diff] [blame]	80	xtables_error(PARAMETER_PROBLEM,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	81	"Option value may not be 0 or 1");
				82
				83	if (tcpoptstrip_test_bit(info->strip_bmap, option))
Jan Engelhardt	1829ed4	2009-02-21 03:29:44 +0100	[diff] [blame]	84	xtables_error(PARAMETER_PROBLEM,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	85	"Option \"%s\" already specified", arg);
				86
				87	tcpoptstrip_set_bit(info->strip_bmap, option);
				88	if (p == NULL)
				89	break;
				90	arg = p + 1;
				91	}
				92	}
				93
Jan Engelhardt	693420f	2011-03-02 22:57:52 +0100	[diff] [blame]	94	static void tcpoptstrip_tg_parse(struct xt_option_call *cb)
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	95	{
Jan Engelhardt	693420f	2011-03-02 22:57:52 +0100	[diff] [blame]	96	struct xt_tcpoptstrip_target_info *info = cb->data;
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	97
Jan Engelhardt	693420f	2011-03-02 22:57:52 +0100	[diff] [blame]	98	xtables_option_parse(cb);
				99	parse_list(info, cb->arg);
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	100	}
				101
				102	static void
				103	tcpoptstrip_print_list(const struct xt_tcpoptstrip_target_info *info,
				104	bool numeric)
				105	{
				106	unsigned int i, j;
				107	const char *name;
				108	bool first = true;
				109
				110	for (i = 0; i < 256; ++i) {
				111	if (!tcpoptstrip_test_bit(info->strip_bmap, i))
				112	continue;
				113	if (!first)
				114	printf(",");
				115
				116	first = false;
				117	name = NULL;
				118	if (!numeric)
				119	for (j = 0; tcp_optionmap[j].name != NULL; ++j)
				120	if (tcp_optionmap[j].option == i)
				121	name = tcp_optionmap[j].name;
				122
				123	if (name != NULL)
				124	printf("%s", name);
				125	else
				126	printf("%u", i);
				127	}
				128	}
				129
				130	static void
				131	tcpoptstrip_tg_print(const void ip, const struct xt_entry_target target,
				132	int numeric)
				133	{
				134	const struct xt_tcpoptstrip_target_info *info =
				135	(const void *)target->data;
				136
Jan Engelhardt	7386635	2010-12-18 02:04:59 +0100	[diff] [blame]	137	printf(" TCPOPTSTRIP options ");
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	138	tcpoptstrip_print_list(info, numeric);
				139	}
				140
				141	static void
				142	tcpoptstrip_tg_save(const void ip, const struct xt_entry_target target)
				143	{
				144	const struct xt_tcpoptstrip_target_info *info =
				145	(const void *)target->data;
				146
Jan Engelhardt	7386635	2010-12-18 02:04:59 +0100	[diff] [blame]	147	printf(" --strip-options ");
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	148	tcpoptstrip_print_list(info, true);
				149	}
				150
				151	static struct xtables_target tcpoptstrip_tg_reg = {
Jan Engelhardt	8b7c64d	2008-04-15 11:48:25 +0200	[diff] [blame]	152	.version = XTABLES_VERSION,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	153	.name = "TCPOPTSTRIP",
Jan Engelhardt	c5e8573	2009-06-12 20:55:44 +0200	[diff] [blame]	154	.family = NFPROTO_UNSPEC,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	155	.size = XT_ALIGN(sizeof(struct xt_tcpoptstrip_target_info)),
				156	.userspacesize = XT_ALIGN(sizeof(struct xt_tcpoptstrip_target_info)),
				157	.help = tcpoptstrip_tg_help,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	158	.print = tcpoptstrip_tg_print,
				159	.save = tcpoptstrip_tg_save,
Jan Engelhardt	693420f	2011-03-02 22:57:52 +0100	[diff] [blame]	160	.x6_parse = tcpoptstrip_tg_parse,
				161	.x6_options = tcpoptstrip_tg_opts,
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	162	};
				163
				164	void _init(void)
				165	{
				166	xtables_register_target(&tcpoptstrip_tg_reg);
Sven Schnelle	aef4c1e	2008-01-20 13:45:16 +0000	[diff] [blame]	167	}