251 lines
4.7 KiB
C
251 lines
4.7 KiB
C
/*
|
|
* lib/route/cls/fw.c fw classifier
|
|
*
|
|
* This library is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
* License as published by the Free Software Foundation version 2.1
|
|
* of the License.
|
|
*
|
|
* Copyright (c) 2003-2006 Thomas Graf <tgraf@suug.ch>
|
|
* Copyright (c) 2006 Petr Gotthard <petr.gotthard@siemens.com>
|
|
* Copyright (c) 2006 Siemens AG Oesterreich
|
|
*/
|
|
|
|
/**
|
|
* @ingroup cls_api
|
|
* @defgroup fw Firewall Classifier
|
|
*
|
|
* @{
|
|
*/
|
|
|
|
#include <netlink-local.h>
|
|
#include <netlink-tc.h>
|
|
#include <netlink/netlink.h>
|
|
#include <netlink/route/classifier.h>
|
|
#include <netlink/route/classifier-modules.h>
|
|
#include <netlink/route/cls/fw.h>
|
|
|
|
/** @cond SKIP */
|
|
#define FW_ATTR_CLASSID 0x001
|
|
#define FW_ATTR_ACTION 0x002
|
|
#define FW_ATTR_POLICE 0x004
|
|
#define FW_ATTR_INDEV 0x008
|
|
/** @endcond */
|
|
|
|
static inline struct rtnl_fw *fw_cls(struct rtnl_cls *cls)
|
|
{
|
|
return (struct rtnl_fw *) cls->c_subdata;
|
|
}
|
|
|
|
static inline struct rtnl_fw *fw_alloc(struct rtnl_cls *cls)
|
|
{
|
|
if (!cls->c_subdata)
|
|
cls->c_subdata = calloc(1, sizeof(struct rtnl_fw));
|
|
|
|
return fw_cls(cls);
|
|
}
|
|
|
|
static struct nla_policy fw_policy[TCA_FW_MAX+1] = {
|
|
[TCA_FW_CLASSID] = { .type = NLA_U32 },
|
|
[TCA_FW_INDEV] = { .type = NLA_STRING,
|
|
.maxlen = IFNAMSIZ },
|
|
};
|
|
|
|
static int fw_msg_parser(struct rtnl_cls *cls)
|
|
{
|
|
int err;
|
|
struct nlattr *tb[TCA_FW_MAX + 1];
|
|
struct rtnl_fw *f;
|
|
|
|
err = tca_parse(tb, TCA_FW_MAX, (struct rtnl_tca *) cls, fw_policy);
|
|
if (err < 0)
|
|
return err;
|
|
|
|
f = fw_alloc(cls);
|
|
if (!f)
|
|
goto errout_nomem;
|
|
|
|
if (tb[TCA_FW_CLASSID]) {
|
|
f->cf_classid = nla_get_u32(tb[TCA_FW_CLASSID]);
|
|
f->cf_mask |= FW_ATTR_CLASSID;
|
|
}
|
|
|
|
if (tb[TCA_FW_ACT]) {
|
|
f->cf_act = nla_get_data(tb[TCA_FW_ACT]);
|
|
if (!f->cf_act)
|
|
goto errout_nomem;
|
|
f->cf_mask |= FW_ATTR_ACTION;
|
|
}
|
|
|
|
if (tb[TCA_FW_POLICE]) {
|
|
f->cf_police = nla_get_data(tb[TCA_FW_POLICE]);
|
|
if (!f->cf_police)
|
|
goto errout_nomem;
|
|
f->cf_mask |= FW_ATTR_POLICE;
|
|
}
|
|
|
|
if (tb[TCA_FW_INDEV]) {
|
|
nla_strlcpy(f->cf_indev, tb[TCA_FW_INDEV], IFNAMSIZ);
|
|
f->cf_mask |= FW_ATTR_INDEV;
|
|
}
|
|
|
|
return 0;
|
|
|
|
errout_nomem:
|
|
err = nl_errno(ENOMEM);
|
|
|
|
return err;
|
|
}
|
|
|
|
static void fw_free_data(struct rtnl_cls *cls)
|
|
{
|
|
struct rtnl_fw *f = fw_cls(cls);
|
|
|
|
if (!f)
|
|
return;
|
|
|
|
nl_data_free(f->cf_act);
|
|
nl_data_free(f->cf_police);
|
|
|
|
free(cls->c_subdata);
|
|
}
|
|
|
|
static int fw_clone(struct rtnl_cls *_dst, struct rtnl_cls *_src)
|
|
{
|
|
struct rtnl_fw *dst, *src = fw_cls(_src);
|
|
|
|
if (!src)
|
|
return 0;
|
|
|
|
dst = fw_alloc(_dst);
|
|
if (!dst)
|
|
return nl_errno(ENOMEM);
|
|
|
|
if (src->cf_act)
|
|
if (!(dst->cf_act = nl_data_clone(src->cf_act)))
|
|
goto errout;
|
|
|
|
if (src->cf_police)
|
|
if (!(dst->cf_police = nl_data_clone(src->cf_police)))
|
|
goto errout;
|
|
|
|
return 0;
|
|
errout:
|
|
return nl_get_errno();
|
|
}
|
|
|
|
static int fw_dump_brief(struct rtnl_cls *cls, struct nl_dump_params *p,
|
|
int line)
|
|
{
|
|
struct rtnl_fw *f = fw_cls(cls);
|
|
char buf[32];
|
|
|
|
if (!f)
|
|
goto ignore;
|
|
|
|
if (f->cf_mask & FW_ATTR_CLASSID)
|
|
dp_dump(p, " target %s",
|
|
rtnl_tc_handle2str(f->cf_classid, buf, sizeof(buf)));
|
|
|
|
ignore:
|
|
return line;
|
|
}
|
|
|
|
static int fw_dump_full(struct rtnl_cls *cls, struct nl_dump_params *p,
|
|
int line)
|
|
{
|
|
struct rtnl_fw *f = fw_cls(cls);
|
|
|
|
if (!f)
|
|
goto ignore;
|
|
|
|
if (f->cf_mask & FW_ATTR_INDEV)
|
|
dp_dump(p, "indev %s ", f->cf_indev);
|
|
|
|
ignore:
|
|
return line;
|
|
}
|
|
|
|
static int fw_dump_stats(struct rtnl_cls *cls, struct nl_dump_params *p,
|
|
int line)
|
|
{
|
|
struct rtnl_fw *f = fw_cls(cls);
|
|
|
|
if (!f)
|
|
goto ignore;
|
|
|
|
ignore:
|
|
return line;
|
|
}
|
|
|
|
static struct nl_msg *fw_get_opts(struct rtnl_cls *cls)
|
|
{
|
|
struct rtnl_fw *f;
|
|
struct nl_msg *msg;
|
|
|
|
f = fw_cls(cls);
|
|
if (!f)
|
|
return NULL;
|
|
|
|
msg = nlmsg_alloc();
|
|
if (!msg)
|
|
return NULL;
|
|
|
|
if (f->cf_mask & FW_ATTR_CLASSID)
|
|
nla_put_u32(msg, TCA_FW_CLASSID, f->cf_classid);
|
|
|
|
if (f->cf_mask & FW_ATTR_ACTION)
|
|
nla_put_data(msg, TCA_FW_ACT, f->cf_act);
|
|
|
|
if (f->cf_mask & FW_ATTR_POLICE)
|
|
nla_put_data(msg, TCA_FW_POLICE, f->cf_police);
|
|
|
|
if (f->cf_mask & FW_ATTR_INDEV)
|
|
nla_put_string(msg, TCA_FW_INDEV, f->cf_indev);
|
|
|
|
return msg;
|
|
}
|
|
|
|
/**
|
|
* @name Attribute Modifications
|
|
* @{
|
|
*/
|
|
|
|
int rtnl_fw_set_classid(struct rtnl_cls *cls, uint32_t classid)
|
|
{
|
|
struct rtnl_fw *f;
|
|
|
|
f = fw_alloc(cls);
|
|
if (!f)
|
|
return nl_errno(ENOMEM);
|
|
|
|
f->cf_classid = classid;
|
|
f->cf_mask |= FW_ATTR_CLASSID;
|
|
|
|
return 0;
|
|
}
|
|
|
|
/** @} */
|
|
|
|
static struct rtnl_cls_ops fw_ops = {
|
|
.co_kind = "fw",
|
|
.co_msg_parser = fw_msg_parser,
|
|
.co_free_data = fw_free_data,
|
|
.co_clone = fw_clone,
|
|
.co_get_opts = fw_get_opts,
|
|
.co_dump[NL_DUMP_BRIEF] = fw_dump_brief,
|
|
.co_dump[NL_DUMP_FULL] = fw_dump_full,
|
|
.co_dump[NL_DUMP_STATS] = fw_dump_stats,
|
|
};
|
|
|
|
static void __init fw_init(void)
|
|
{
|
|
rtnl_cls_register(&fw_ops);
|
|
}
|
|
|
|
static void __exit fw_exit(void)
|
|
{
|
|
rtnl_cls_unregister(&fw_ops);
|
|
}
|
|
|
|
/** @} */
|