1*a71a9546SAutomerger Merge Worker /* Shared library add-on to iptables to add CLUSTERIP target support.
2*a71a9546SAutomerger Merge Worker * (C) 2003 by Harald Welte <[email protected]>
3*a71a9546SAutomerger Merge Worker *
4*a71a9546SAutomerger Merge Worker * Development of this code was funded by SuSE AG, http://www.suse.com/
5*a71a9546SAutomerger Merge Worker */
6*a71a9546SAutomerger Merge Worker #include <stdbool.h>
7*a71a9546SAutomerger Merge Worker #include <stdio.h>
8*a71a9546SAutomerger Merge Worker #include <string.h>
9*a71a9546SAutomerger Merge Worker #include <stdlib.h>
10*a71a9546SAutomerger Merge Worker #include <getopt.h>
11*a71a9546SAutomerger Merge Worker #include <stddef.h>
12*a71a9546SAutomerger Merge Worker
13*a71a9546SAutomerger Merge Worker #if defined(__GLIBC__) && __GLIBC__ == 2
14*a71a9546SAutomerger Merge Worker #include <net/ethernet.h>
15*a71a9546SAutomerger Merge Worker #else
16*a71a9546SAutomerger Merge Worker #include <linux/if_ether.h>
17*a71a9546SAutomerger Merge Worker #endif
18*a71a9546SAutomerger Merge Worker
19*a71a9546SAutomerger Merge Worker #include <xtables.h>
20*a71a9546SAutomerger Merge Worker #include <linux/netfilter_ipv4/ipt_CLUSTERIP.h>
21*a71a9546SAutomerger Merge Worker
22*a71a9546SAutomerger Merge Worker enum {
23*a71a9546SAutomerger Merge Worker O_NEW = 0,
24*a71a9546SAutomerger Merge Worker O_HASHMODE,
25*a71a9546SAutomerger Merge Worker O_CLUSTERMAC,
26*a71a9546SAutomerger Merge Worker O_TOTAL_NODES,
27*a71a9546SAutomerger Merge Worker O_LOCAL_NODE,
28*a71a9546SAutomerger Merge Worker O_HASH_INIT,
29*a71a9546SAutomerger Merge Worker F_NEW = 1 << O_NEW,
30*a71a9546SAutomerger Merge Worker F_HASHMODE = 1 << O_HASHMODE,
31*a71a9546SAutomerger Merge Worker F_CLUSTERMAC = 1 << O_CLUSTERMAC,
32*a71a9546SAutomerger Merge Worker F_TOTAL_NODES = 1 << O_TOTAL_NODES,
33*a71a9546SAutomerger Merge Worker F_LOCAL_NODE = 1 << O_LOCAL_NODE,
34*a71a9546SAutomerger Merge Worker F_FULL = F_NEW | F_HASHMODE | F_CLUSTERMAC |
35*a71a9546SAutomerger Merge Worker F_TOTAL_NODES | F_LOCAL_NODE,
36*a71a9546SAutomerger Merge Worker };
37*a71a9546SAutomerger Merge Worker
CLUSTERIP_help(void)38*a71a9546SAutomerger Merge Worker static void CLUSTERIP_help(void)
39*a71a9546SAutomerger Merge Worker {
40*a71a9546SAutomerger Merge Worker printf(
41*a71a9546SAutomerger Merge Worker "CLUSTERIP target options:\n"
42*a71a9546SAutomerger Merge Worker " --new Create a new ClusterIP\n"
43*a71a9546SAutomerger Merge Worker " --hashmode <mode> Specify hashing mode\n"
44*a71a9546SAutomerger Merge Worker " sourceip\n"
45*a71a9546SAutomerger Merge Worker " sourceip-sourceport\n"
46*a71a9546SAutomerger Merge Worker " sourceip-sourceport-destport\n"
47*a71a9546SAutomerger Merge Worker " --clustermac <mac> Set clusterIP MAC address\n"
48*a71a9546SAutomerger Merge Worker " --total-nodes <num> Set number of total nodes in cluster\n"
49*a71a9546SAutomerger Merge Worker " --local-node <num> Set the local node number\n"
50*a71a9546SAutomerger Merge Worker " --hash-init <num> Set init value of the Jenkins hash\n");
51*a71a9546SAutomerger Merge Worker }
52*a71a9546SAutomerger Merge Worker
53*a71a9546SAutomerger Merge Worker #define s struct ipt_clusterip_tgt_info
54*a71a9546SAutomerger Merge Worker static const struct xt_option_entry CLUSTERIP_opts[] = {
55*a71a9546SAutomerger Merge Worker {.name = "new", .id = O_NEW, .type = XTTYPE_NONE},
56*a71a9546SAutomerger Merge Worker {.name = "hashmode", .id = O_HASHMODE, .type = XTTYPE_STRING,
57*a71a9546SAutomerger Merge Worker .also = O_NEW},
58*a71a9546SAutomerger Merge Worker {.name = "clustermac", .id = O_CLUSTERMAC, .type = XTTYPE_ETHERMAC,
59*a71a9546SAutomerger Merge Worker .also = O_NEW, .flags = XTOPT_PUT, XTOPT_POINTER(s, clustermac)},
60*a71a9546SAutomerger Merge Worker {.name = "total-nodes", .id = O_TOTAL_NODES, .type = XTTYPE_UINT16,
61*a71a9546SAutomerger Merge Worker .flags = XTOPT_PUT, XTOPT_POINTER(s, num_total_nodes),
62*a71a9546SAutomerger Merge Worker .also = O_NEW, .max = CLUSTERIP_MAX_NODES},
63*a71a9546SAutomerger Merge Worker {.name = "local-node", .id = O_LOCAL_NODE, .type = XTTYPE_UINT16,
64*a71a9546SAutomerger Merge Worker .flags = XTOPT_PUT, XTOPT_POINTER(s, local_nodes[0]),
65*a71a9546SAutomerger Merge Worker .also = O_NEW, .max = CLUSTERIP_MAX_NODES},
66*a71a9546SAutomerger Merge Worker {.name = "hash-init", .id = O_HASH_INIT, .type = XTTYPE_UINT32,
67*a71a9546SAutomerger Merge Worker .flags = XTOPT_PUT, XTOPT_POINTER(s, hash_initval),
68*a71a9546SAutomerger Merge Worker .also = O_NEW, .max = UINT_MAX},
69*a71a9546SAutomerger Merge Worker XTOPT_TABLEEND,
70*a71a9546SAutomerger Merge Worker };
71*a71a9546SAutomerger Merge Worker #undef s
72*a71a9546SAutomerger Merge Worker
CLUSTERIP_parse(struct xt_option_call * cb)73*a71a9546SAutomerger Merge Worker static void CLUSTERIP_parse(struct xt_option_call *cb)
74*a71a9546SAutomerger Merge Worker {
75*a71a9546SAutomerger Merge Worker struct ipt_clusterip_tgt_info *cipinfo = cb->data;
76*a71a9546SAutomerger Merge Worker
77*a71a9546SAutomerger Merge Worker xtables_option_parse(cb);
78*a71a9546SAutomerger Merge Worker switch (cb->entry->id) {
79*a71a9546SAutomerger Merge Worker case O_NEW:
80*a71a9546SAutomerger Merge Worker cipinfo->flags |= CLUSTERIP_FLAG_NEW;
81*a71a9546SAutomerger Merge Worker break;
82*a71a9546SAutomerger Merge Worker case O_HASHMODE:
83*a71a9546SAutomerger Merge Worker if (strcmp(cb->arg, "sourceip") == 0)
84*a71a9546SAutomerger Merge Worker cipinfo->hash_mode = CLUSTERIP_HASHMODE_SIP;
85*a71a9546SAutomerger Merge Worker else if (strcmp(cb->arg, "sourceip-sourceport") == 0)
86*a71a9546SAutomerger Merge Worker cipinfo->hash_mode = CLUSTERIP_HASHMODE_SIP_SPT;
87*a71a9546SAutomerger Merge Worker else if (strcmp(cb->arg, "sourceip-sourceport-destport") == 0)
88*a71a9546SAutomerger Merge Worker cipinfo->hash_mode = CLUSTERIP_HASHMODE_SIP_SPT_DPT;
89*a71a9546SAutomerger Merge Worker else
90*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
91*a71a9546SAutomerger Merge Worker "Unknown hashmode \"%s\"", cb->arg);
92*a71a9546SAutomerger Merge Worker break;
93*a71a9546SAutomerger Merge Worker case O_CLUSTERMAC:
94*a71a9546SAutomerger Merge Worker if (!(cipinfo->clustermac[0] & 0x01))
95*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
96*a71a9546SAutomerger Merge Worker "MAC has to be a multicast ethernet address");
97*a71a9546SAutomerger Merge Worker break;
98*a71a9546SAutomerger Merge Worker case O_LOCAL_NODE:
99*a71a9546SAutomerger Merge Worker cipinfo->num_local_nodes = 1;
100*a71a9546SAutomerger Merge Worker break;
101*a71a9546SAutomerger Merge Worker }
102*a71a9546SAutomerger Merge Worker }
103*a71a9546SAutomerger Merge Worker
CLUSTERIP_check(struct xt_fcheck_call * cb)104*a71a9546SAutomerger Merge Worker static void CLUSTERIP_check(struct xt_fcheck_call *cb)
105*a71a9546SAutomerger Merge Worker {
106*a71a9546SAutomerger Merge Worker if (cb->xflags == 0)
107*a71a9546SAutomerger Merge Worker return;
108*a71a9546SAutomerger Merge Worker if ((cb->xflags & F_FULL) == F_FULL)
109*a71a9546SAutomerger Merge Worker return;
110*a71a9546SAutomerger Merge Worker
111*a71a9546SAutomerger Merge Worker xtables_error(PARAMETER_PROBLEM,
112*a71a9546SAutomerger Merge Worker "CLUSTERIP target: Invalid parameter combination");
113*a71a9546SAutomerger Merge Worker }
114*a71a9546SAutomerger Merge Worker
hashmode2str(enum clusterip_hashmode mode)115*a71a9546SAutomerger Merge Worker static const char *hashmode2str(enum clusterip_hashmode mode)
116*a71a9546SAutomerger Merge Worker {
117*a71a9546SAutomerger Merge Worker const char *retstr;
118*a71a9546SAutomerger Merge Worker switch (mode) {
119*a71a9546SAutomerger Merge Worker case CLUSTERIP_HASHMODE_SIP:
120*a71a9546SAutomerger Merge Worker retstr = "sourceip";
121*a71a9546SAutomerger Merge Worker break;
122*a71a9546SAutomerger Merge Worker case CLUSTERIP_HASHMODE_SIP_SPT:
123*a71a9546SAutomerger Merge Worker retstr = "sourceip-sourceport";
124*a71a9546SAutomerger Merge Worker break;
125*a71a9546SAutomerger Merge Worker case CLUSTERIP_HASHMODE_SIP_SPT_DPT:
126*a71a9546SAutomerger Merge Worker retstr = "sourceip-sourceport-destport";
127*a71a9546SAutomerger Merge Worker break;
128*a71a9546SAutomerger Merge Worker default:
129*a71a9546SAutomerger Merge Worker retstr = "unknown-error";
130*a71a9546SAutomerger Merge Worker break;
131*a71a9546SAutomerger Merge Worker }
132*a71a9546SAutomerger Merge Worker return retstr;
133*a71a9546SAutomerger Merge Worker }
134*a71a9546SAutomerger Merge Worker
mac2str(const uint8_t mac[ETH_ALEN])135*a71a9546SAutomerger Merge Worker static const char *mac2str(const uint8_t mac[ETH_ALEN])
136*a71a9546SAutomerger Merge Worker {
137*a71a9546SAutomerger Merge Worker static char buf[ETH_ALEN*3];
138*a71a9546SAutomerger Merge Worker sprintf(buf, "%02X:%02X:%02X:%02X:%02X:%02X",
139*a71a9546SAutomerger Merge Worker mac[0], mac[1], mac[2], mac[3], mac[4], mac[5]);
140*a71a9546SAutomerger Merge Worker return buf;
141*a71a9546SAutomerger Merge Worker }
142*a71a9546SAutomerger Merge Worker
CLUSTERIP_print(const void * ip,const struct xt_entry_target * target,int numeric)143*a71a9546SAutomerger Merge Worker static void CLUSTERIP_print(const void *ip,
144*a71a9546SAutomerger Merge Worker const struct xt_entry_target *target, int numeric)
145*a71a9546SAutomerger Merge Worker {
146*a71a9546SAutomerger Merge Worker const struct ipt_clusterip_tgt_info *cipinfo =
147*a71a9546SAutomerger Merge Worker (const struct ipt_clusterip_tgt_info *)target->data;
148*a71a9546SAutomerger Merge Worker
149*a71a9546SAutomerger Merge Worker if (!(cipinfo->flags & CLUSTERIP_FLAG_NEW)) {
150*a71a9546SAutomerger Merge Worker printf(" CLUSTERIP");
151*a71a9546SAutomerger Merge Worker return;
152*a71a9546SAutomerger Merge Worker }
153*a71a9546SAutomerger Merge Worker
154*a71a9546SAutomerger Merge Worker printf(" CLUSTERIP hashmode=%s clustermac=%s total_nodes=%u local_node=%u hash_init=%u",
155*a71a9546SAutomerger Merge Worker hashmode2str(cipinfo->hash_mode),
156*a71a9546SAutomerger Merge Worker mac2str(cipinfo->clustermac),
157*a71a9546SAutomerger Merge Worker cipinfo->num_total_nodes,
158*a71a9546SAutomerger Merge Worker cipinfo->local_nodes[0],
159*a71a9546SAutomerger Merge Worker cipinfo->hash_initval);
160*a71a9546SAutomerger Merge Worker }
161*a71a9546SAutomerger Merge Worker
CLUSTERIP_save(const void * ip,const struct xt_entry_target * target)162*a71a9546SAutomerger Merge Worker static void CLUSTERIP_save(const void *ip, const struct xt_entry_target *target)
163*a71a9546SAutomerger Merge Worker {
164*a71a9546SAutomerger Merge Worker const struct ipt_clusterip_tgt_info *cipinfo =
165*a71a9546SAutomerger Merge Worker (const struct ipt_clusterip_tgt_info *)target->data;
166*a71a9546SAutomerger Merge Worker
167*a71a9546SAutomerger Merge Worker /* if this is not a new entry, we don't need to save target
168*a71a9546SAutomerger Merge Worker * parameters */
169*a71a9546SAutomerger Merge Worker if (!(cipinfo->flags & CLUSTERIP_FLAG_NEW))
170*a71a9546SAutomerger Merge Worker return;
171*a71a9546SAutomerger Merge Worker
172*a71a9546SAutomerger Merge Worker printf(" --new --hashmode %s --clustermac %s --total-nodes %d --local-node %d --hash-init %u",
173*a71a9546SAutomerger Merge Worker hashmode2str(cipinfo->hash_mode),
174*a71a9546SAutomerger Merge Worker mac2str(cipinfo->clustermac),
175*a71a9546SAutomerger Merge Worker cipinfo->num_total_nodes,
176*a71a9546SAutomerger Merge Worker cipinfo->local_nodes[0],
177*a71a9546SAutomerger Merge Worker cipinfo->hash_initval);
178*a71a9546SAutomerger Merge Worker }
179*a71a9546SAutomerger Merge Worker
180*a71a9546SAutomerger Merge Worker static struct xtables_target clusterip_tg_reg = {
181*a71a9546SAutomerger Merge Worker .name = "CLUSTERIP",
182*a71a9546SAutomerger Merge Worker .version = XTABLES_VERSION,
183*a71a9546SAutomerger Merge Worker .family = NFPROTO_IPV4,
184*a71a9546SAutomerger Merge Worker .size = XT_ALIGN(sizeof(struct ipt_clusterip_tgt_info)),
185*a71a9546SAutomerger Merge Worker .userspacesize = offsetof(struct ipt_clusterip_tgt_info, config),
186*a71a9546SAutomerger Merge Worker .help = CLUSTERIP_help,
187*a71a9546SAutomerger Merge Worker .x6_parse = CLUSTERIP_parse,
188*a71a9546SAutomerger Merge Worker .x6_fcheck = CLUSTERIP_check,
189*a71a9546SAutomerger Merge Worker .print = CLUSTERIP_print,
190*a71a9546SAutomerger Merge Worker .save = CLUSTERIP_save,
191*a71a9546SAutomerger Merge Worker .x6_options = CLUSTERIP_opts,
192*a71a9546SAutomerger Merge Worker };
193*a71a9546SAutomerger Merge Worker
_init(void)194*a71a9546SAutomerger Merge Worker void _init(void)
195*a71a9546SAutomerger Merge Worker {
196*a71a9546SAutomerger Merge Worker xtables_register_target(&clusterip_tg_reg);
197*a71a9546SAutomerger Merge Worker }
198