1*a71a9546SAutomerger Merge Worker /* Shared library add-on to ip6tables to add mobility header support. */
2*a71a9546SAutomerger Merge Worker /*
3*a71a9546SAutomerger Merge Worker * Copyright (C)2006 USAGI/WIDE Project
4*a71a9546SAutomerger Merge Worker *
5*a71a9546SAutomerger Merge Worker * This program is free software; you can redistribute it and/or modify
6*a71a9546SAutomerger Merge Worker * it under the terms of the GNU General Public License version 2 as
7*a71a9546SAutomerger Merge Worker * published by the Free Software Foundation.
8*a71a9546SAutomerger Merge Worker *
9*a71a9546SAutomerger Merge Worker * Author:
10*a71a9546SAutomerger Merge Worker * Masahide NAKAMURA @USAGI <[email protected]>
11*a71a9546SAutomerger Merge Worker *
12*a71a9546SAutomerger Merge Worker * Based on libip6t_{icmpv6,udp}.c
13*a71a9546SAutomerger Merge Worker */
14*a71a9546SAutomerger Merge Worker #include <stdint.h>
15*a71a9546SAutomerger Merge Worker #include <stdio.h>
16*a71a9546SAutomerger Merge Worker #include <string.h>
17*a71a9546SAutomerger Merge Worker #include <stdlib.h>
18*a71a9546SAutomerger Merge Worker #include <xtables.h>
19*a71a9546SAutomerger Merge Worker #include <linux/netfilter_ipv6/ip6t_mh.h>
20*a71a9546SAutomerger Merge Worker
21*a71a9546SAutomerger Merge Worker enum {
22*a71a9546SAutomerger Merge Worker O_MH_TYPE = 0,
23*a71a9546SAutomerger Merge Worker };
24*a71a9546SAutomerger Merge Worker
25*a71a9546SAutomerger Merge Worker struct mh_name {
26*a71a9546SAutomerger Merge Worker const char *name;
27*a71a9546SAutomerger Merge Worker uint8_t type;
28*a71a9546SAutomerger Merge Worker };
29*a71a9546SAutomerger Merge Worker
30*a71a9546SAutomerger Merge Worker static const struct mh_name mh_names[] = {
31*a71a9546SAutomerger Merge Worker { "binding-refresh-request", 0, },
32*a71a9546SAutomerger Merge Worker /* Alias */ { "brr", 0, },
33*a71a9546SAutomerger Merge Worker { "home-test-init", 1, },
34*a71a9546SAutomerger Merge Worker /* Alias */ { "hoti", 1, },
35*a71a9546SAutomerger Merge Worker { "careof-test-init", 2, },
36*a71a9546SAutomerger Merge Worker /* Alias */ { "coti", 2, },
37*a71a9546SAutomerger Merge Worker { "home-test", 3, },
38*a71a9546SAutomerger Merge Worker /* Alias */ { "hot", 3, },
39*a71a9546SAutomerger Merge Worker { "careof-test", 4, },
40*a71a9546SAutomerger Merge Worker /* Alias */ { "cot", 4, },
41*a71a9546SAutomerger Merge Worker { "binding-update", 5, },
42*a71a9546SAutomerger Merge Worker /* Alias */ { "bu", 5, },
43*a71a9546SAutomerger Merge Worker { "binding-acknowledgement", 6, },
44*a71a9546SAutomerger Merge Worker /* Alias */ { "ba", 6, },
45*a71a9546SAutomerger Merge Worker { "binding-error", 7, },
46*a71a9546SAutomerger Merge Worker /* Alias */ { "be", 7, },
47*a71a9546SAutomerger Merge Worker };
48*a71a9546SAutomerger Merge Worker
print_types_all(void)49*a71a9546SAutomerger Merge Worker static void print_types_all(void)
50*a71a9546SAutomerger Merge Worker {
51*a71a9546SAutomerger Merge Worker unsigned int i;
52*a71a9546SAutomerger Merge Worker printf("Valid MH types:");
53*a71a9546SAutomerger Merge Worker
54*a71a9546SAutomerger Merge Worker for (i = 0; i < ARRAY_SIZE(mh_names); ++i) {
55*a71a9546SAutomerger Merge Worker if (i && mh_names[i].type == mh_names[i-1].type)
56*a71a9546SAutomerger Merge Worker printf(" (%s)", mh_names[i].name);
57*a71a9546SAutomerger Merge Worker else
58*a71a9546SAutomerger Merge Worker printf("\n%s", mh_names[i].name);
59*a71a9546SAutomerger Merge Worker }
60*a71a9546SAutomerger Merge Worker printf("\n");
61*a71a9546SAutomerger Merge Worker }
62*a71a9546SAutomerger Merge Worker
mh_help(void)63*a71a9546SAutomerger Merge Worker static void mh_help(void)
64*a71a9546SAutomerger Merge Worker {
65*a71a9546SAutomerger Merge Worker printf(
66*a71a9546SAutomerger Merge Worker "mh match options:\n"
67*a71a9546SAutomerger Merge Worker "[!] --mh-type type[:type] match mh type\n");
68*a71a9546SAutomerger Merge Worker print_types_all();
69*a71a9546SAutomerger Merge Worker }
70*a71a9546SAutomerger Merge Worker
mh_init(struct xt_entry_match * m)71*a71a9546SAutomerger Merge Worker static void mh_init(struct xt_entry_match *m)
72*a71a9546SAutomerger Merge Worker {
73*a71a9546SAutomerger Merge Worker struct ip6t_mh *mhinfo = (struct ip6t_mh *)m->data;
74*a71a9546SAutomerger Merge Worker
75*a71a9546SAutomerger Merge Worker mhinfo->types[1] = 0xFF;
76*a71a9546SAutomerger Merge Worker }
77*a71a9546SAutomerger Merge Worker
name_to_type(const char * name)78*a71a9546SAutomerger Merge Worker static unsigned int name_to_type(const char *name)
79*a71a9546SAutomerger Merge Worker {
80*a71a9546SAutomerger Merge Worker int namelen = strlen(name);
81*a71a9546SAutomerger Merge Worker static const unsigned int limit = ARRAY_SIZE(mh_names);
82*a71a9546SAutomerger Merge Worker unsigned int match = limit;
83*a71a9546SAutomerger Merge Worker unsigned int i;
84*a71a9546SAutomerger Merge Worker
85*a71a9546SAutomerger Merge Worker for (i = 0; i < limit; i++) {
86*a71a9546SAutomerger Merge Worker if (strncasecmp(mh_names[i].name, name, namelen) == 0) {
87*a71a9546SAutomerger Merge Worker int len = strlen(mh_names[i].name);
88*a71a9546SAutomerger Merge Worker if (match == limit || len == namelen)
89*a71a9546SAutomerger Merge Worker match = i;
90*a71a9546SAutomerger Merge Worker }
91*a71a9546SAutomerger Merge Worker }
92*a71a9546SAutomerger Merge Worker
93*a71a9546SAutomerger Merge Worker if (match != limit) {
94*a71a9546SAutomerger Merge Worker return mh_names[match].type;
95*a71a9546SAutomerger Merge Worker } else {
96*a71a9546SAutomerger Merge Worker unsigned int number;
97*a71a9546SAutomerger Merge Worker
98*a71a9546SAutomerger Merge Worker if (!xtables_strtoui(name, NULL, &number, 0, UINT8_MAX))
99*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
100*a71a9546SAutomerger Merge Worker "Invalid MH type `%s'", name);
101*a71a9546SAutomerger Merge Worker return number;
102*a71a9546SAutomerger Merge Worker }
103*a71a9546SAutomerger Merge Worker }
104*a71a9546SAutomerger Merge Worker
parse_mh_types(const char * mhtype,uint8_t * types)105*a71a9546SAutomerger Merge Worker static void parse_mh_types(const char *mhtype, uint8_t *types)
106*a71a9546SAutomerger Merge Worker {
107*a71a9546SAutomerger Merge Worker char *buffer;
108*a71a9546SAutomerger Merge Worker char *cp;
109*a71a9546SAutomerger Merge Worker
110*a71a9546SAutomerger Merge Worker buffer = xtables_strdup(mhtype);
111*a71a9546SAutomerger Merge Worker if ((cp = strchr(buffer, ':')) == NULL)
112*a71a9546SAutomerger Merge Worker types[0] = types[1] = name_to_type(buffer);
113*a71a9546SAutomerger Merge Worker else {
114*a71a9546SAutomerger Merge Worker *cp = '\0';
115*a71a9546SAutomerger Merge Worker cp++;
116*a71a9546SAutomerger Merge Worker
117*a71a9546SAutomerger Merge Worker types[0] = buffer[0] ? name_to_type(buffer) : 0;
118*a71a9546SAutomerger Merge Worker types[1] = cp[0] ? name_to_type(cp) : 0xFF;
119*a71a9546SAutomerger Merge Worker
120*a71a9546SAutomerger Merge Worker if (types[0] > types[1])
121*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
122*a71a9546SAutomerger Merge Worker "Invalid MH type range (min > max)");
123*a71a9546SAutomerger Merge Worker }
124*a71a9546SAutomerger Merge Worker free(buffer);
125*a71a9546SAutomerger Merge Worker }
126*a71a9546SAutomerger Merge Worker
mh_parse(struct xt_option_call * cb)127*a71a9546SAutomerger Merge Worker static void mh_parse(struct xt_option_call *cb)
128*a71a9546SAutomerger Merge Worker {
129*a71a9546SAutomerger Merge Worker struct ip6t_mh *mhinfo = cb->data;
130*a71a9546SAutomerger Merge Worker
131*a71a9546SAutomerger Merge Worker xtables_option_parse(cb);
132*a71a9546SAutomerger Merge Worker parse_mh_types(cb->arg, mhinfo->types);
133*a71a9546SAutomerger Merge Worker if (cb->invert)
134*a71a9546SAutomerger Merge Worker mhinfo->invflags |= IP6T_MH_INV_TYPE;
135*a71a9546SAutomerger Merge Worker }
136*a71a9546SAutomerger Merge Worker
type_to_name(uint8_t type)137*a71a9546SAutomerger Merge Worker static const char *type_to_name(uint8_t type)
138*a71a9546SAutomerger Merge Worker {
139*a71a9546SAutomerger Merge Worker unsigned int i;
140*a71a9546SAutomerger Merge Worker
141*a71a9546SAutomerger Merge Worker for (i = 0; i < ARRAY_SIZE(mh_names); ++i)
142*a71a9546SAutomerger Merge Worker if (mh_names[i].type == type)
143*a71a9546SAutomerger Merge Worker return mh_names[i].name;
144*a71a9546SAutomerger Merge Worker
145*a71a9546SAutomerger Merge Worker return NULL;
146*a71a9546SAutomerger Merge Worker }
147*a71a9546SAutomerger Merge Worker
print_type(uint8_t type,int numeric)148*a71a9546SAutomerger Merge Worker static void print_type(uint8_t type, int numeric)
149*a71a9546SAutomerger Merge Worker {
150*a71a9546SAutomerger Merge Worker const char *name;
151*a71a9546SAutomerger Merge Worker if (numeric || !(name = type_to_name(type)))
152*a71a9546SAutomerger Merge Worker printf("%u", type);
153*a71a9546SAutomerger Merge Worker else
154*a71a9546SAutomerger Merge Worker printf("%s", name);
155*a71a9546SAutomerger Merge Worker }
156*a71a9546SAutomerger Merge Worker
print_types(uint8_t min,uint8_t max,int invert,int numeric)157*a71a9546SAutomerger Merge Worker static void print_types(uint8_t min, uint8_t max, int invert, int numeric)
158*a71a9546SAutomerger Merge Worker {
159*a71a9546SAutomerger Merge Worker const char *inv = invert ? "!" : "";
160*a71a9546SAutomerger Merge Worker
161*a71a9546SAutomerger Merge Worker if (min != 0 || max != 0xFF || invert) {
162*a71a9546SAutomerger Merge Worker printf(" ");
163*a71a9546SAutomerger Merge Worker if (min == max) {
164*a71a9546SAutomerger Merge Worker printf("%s", inv);
165*a71a9546SAutomerger Merge Worker print_type(min, numeric);
166*a71a9546SAutomerger Merge Worker } else {
167*a71a9546SAutomerger Merge Worker printf("%s", inv);
168*a71a9546SAutomerger Merge Worker print_type(min, numeric);
169*a71a9546SAutomerger Merge Worker printf(":");
170*a71a9546SAutomerger Merge Worker print_type(max, numeric);
171*a71a9546SAutomerger Merge Worker }
172*a71a9546SAutomerger Merge Worker }
173*a71a9546SAutomerger Merge Worker }
174*a71a9546SAutomerger Merge Worker
mh_print(const void * ip,const struct xt_entry_match * match,int numeric)175*a71a9546SAutomerger Merge Worker static void mh_print(const void *ip, const struct xt_entry_match *match,
176*a71a9546SAutomerger Merge Worker int numeric)
177*a71a9546SAutomerger Merge Worker {
178*a71a9546SAutomerger Merge Worker const struct ip6t_mh *mhinfo = (struct ip6t_mh *)match->data;
179*a71a9546SAutomerger Merge Worker
180*a71a9546SAutomerger Merge Worker printf(" mh");
181*a71a9546SAutomerger Merge Worker print_types(mhinfo->types[0], mhinfo->types[1],
182*a71a9546SAutomerger Merge Worker mhinfo->invflags & IP6T_MH_INV_TYPE,
183*a71a9546SAutomerger Merge Worker numeric);
184*a71a9546SAutomerger Merge Worker if (mhinfo->invflags & ~IP6T_MH_INV_MASK)
185*a71a9546SAutomerger Merge Worker printf(" Unknown invflags: 0x%X",
186*a71a9546SAutomerger Merge Worker mhinfo->invflags & ~IP6T_MH_INV_MASK);
187*a71a9546SAutomerger Merge Worker }
188*a71a9546SAutomerger Merge Worker
mh_save(const void * ip,const struct xt_entry_match * match)189*a71a9546SAutomerger Merge Worker static void mh_save(const void *ip, const struct xt_entry_match *match)
190*a71a9546SAutomerger Merge Worker {
191*a71a9546SAutomerger Merge Worker const struct ip6t_mh *mhinfo = (struct ip6t_mh *)match->data;
192*a71a9546SAutomerger Merge Worker
193*a71a9546SAutomerger Merge Worker if (mhinfo->types[0] == 0 && mhinfo->types[1] == 0xFF)
194*a71a9546SAutomerger Merge Worker return;
195*a71a9546SAutomerger Merge Worker
196*a71a9546SAutomerger Merge Worker if (mhinfo->invflags & IP6T_MH_INV_TYPE)
197*a71a9546SAutomerger Merge Worker printf(" !");
198*a71a9546SAutomerger Merge Worker
199*a71a9546SAutomerger Merge Worker if (mhinfo->types[0] != mhinfo->types[1])
200*a71a9546SAutomerger Merge Worker printf(" --mh-type %u:%u", mhinfo->types[0], mhinfo->types[1]);
201*a71a9546SAutomerger Merge Worker else
202*a71a9546SAutomerger Merge Worker printf(" --mh-type %u", mhinfo->types[0]);
203*a71a9546SAutomerger Merge Worker }
204*a71a9546SAutomerger Merge Worker
mh_xlate(struct xt_xlate * xl,const struct xt_xlate_mt_params * params)205*a71a9546SAutomerger Merge Worker static int mh_xlate(struct xt_xlate *xl,
206*a71a9546SAutomerger Merge Worker const struct xt_xlate_mt_params *params)
207*a71a9546SAutomerger Merge Worker {
208*a71a9546SAutomerger Merge Worker const struct ip6t_mh *mhinfo = (struct ip6t_mh *)params->match->data;
209*a71a9546SAutomerger Merge Worker
210*a71a9546SAutomerger Merge Worker if (mhinfo->types[0] == 0 && mhinfo->types[1] == 0xff)
211*a71a9546SAutomerger Merge Worker return 1;
212*a71a9546SAutomerger Merge Worker
213*a71a9546SAutomerger Merge Worker if (mhinfo->types[0] != mhinfo->types[1])
214*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "mh type %s%u-%u",
215*a71a9546SAutomerger Merge Worker mhinfo->invflags & IP6T_MH_INV_TYPE ? "!= " : "",
216*a71a9546SAutomerger Merge Worker mhinfo->types[0], mhinfo->types[1]);
217*a71a9546SAutomerger Merge Worker else
218*a71a9546SAutomerger Merge Worker xt_xlate_add(xl, "mh type %s%u",
219*a71a9546SAutomerger Merge Worker mhinfo->invflags & IP6T_MH_INV_TYPE ? "!= " : "",
220*a71a9546SAutomerger Merge Worker mhinfo->types[0]);
221*a71a9546SAutomerger Merge Worker
222*a71a9546SAutomerger Merge Worker return 1;
223*a71a9546SAutomerger Merge Worker }
224*a71a9546SAutomerger Merge Worker
225*a71a9546SAutomerger Merge Worker static const struct xt_option_entry mh_opts[] = {
226*a71a9546SAutomerger Merge Worker {.name = "mh-type", .id = O_MH_TYPE, .type = XTTYPE_STRING,
227*a71a9546SAutomerger Merge Worker .flags = XTOPT_INVERT},
228*a71a9546SAutomerger Merge Worker XTOPT_TABLEEND,
229*a71a9546SAutomerger Merge Worker };
230*a71a9546SAutomerger Merge Worker
231*a71a9546SAutomerger Merge Worker static struct xtables_match mh_mt6_reg = {
232*a71a9546SAutomerger Merge Worker .name = "mh",
233*a71a9546SAutomerger Merge Worker .version = XTABLES_VERSION,
234*a71a9546SAutomerger Merge Worker .family = NFPROTO_IPV6,
235*a71a9546SAutomerger Merge Worker .size = XT_ALIGN(sizeof(struct ip6t_mh)),
236*a71a9546SAutomerger Merge Worker .userspacesize = XT_ALIGN(sizeof(struct ip6t_mh)),
237*a71a9546SAutomerger Merge Worker .help = mh_help,
238*a71a9546SAutomerger Merge Worker .init = mh_init,
239*a71a9546SAutomerger Merge Worker .x6_parse = mh_parse,
240*a71a9546SAutomerger Merge Worker .print = mh_print,
241*a71a9546SAutomerger Merge Worker .save = mh_save,
242*a71a9546SAutomerger Merge Worker .x6_options = mh_opts,
243*a71a9546SAutomerger Merge Worker .xlate = mh_xlate,
244*a71a9546SAutomerger Merge Worker };
245*a71a9546SAutomerger Merge Worker
_init(void)246*a71a9546SAutomerger Merge Worker void _init(void)
247*a71a9546SAutomerger Merge Worker {
248*a71a9546SAutomerger Merge Worker xtables_register_match(&mh_mt6_reg);
249*a71a9546SAutomerger Merge Worker }
250