[mirror_iproute2.git] / tc / f_fw.c

/*
 * f_fw.c		FW filter.
 *
 *		This program is free software; you can redistribute it and/or
 *		modify it under the terms of the GNU General Public License
 *		as published by the Free Software Foundation; either version
 *		2 of the License, or (at your option) any later version.
 *
 * Authors:	Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru>
 *
 */

#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>
#include <fcntl.h>
#include <sys/socket.h>
#include <netinet/in.h>
#include <arpa/inet.h>
#include <string.h>
#include <linux/if.h> /* IFNAMSIZ */
#include "utils.h"
#include "tc_util.h"

static void explain(void)
{
	fprintf(stderr,
		"Usage: ... fw [ classid CLASSID ] [ indev DEV ] [ action ACTION_SPEC ]\n");
	fprintf(stderr,
		"       CLASSID := Push matching packets to the class identified by CLASSID with format X:Y\n");
	fprintf(stderr,
		"                  CLASSID is parsed as hexadecimal input.\n");
	fprintf(stderr,
		"       DEV := specify device for incoming device classification.\n");
	fprintf(stderr,
		"       ACTION_SPEC := Apply an action on matching packets.\n");
	fprintf(stderr,
		"       NOTE: handle is represented as HANDLE[/FWMASK].\n");
	fprintf(stderr, "             FWMASK is 0xffffffff by default.\n");
}

static int fw_parse_opt(struct filter_util *qu, char *handle, int argc, char **argv, struct nlmsghdr *n)
{
	struct tcmsg *t = NLMSG_DATA(n);
	struct rtattr *tail;
	__u32 mask = 0;
	int mask_set = 0;

	if (handle) {
		char *slash;

		if ((slash = strchr(handle, '/')) != NULL)
			*slash = '\0';
		if (get_u32(&t->tcm_handle, handle, 0)) {
			fprintf(stderr, "Illegal \"handle\"\n");
			return -1;
		}
		if (slash) {
			if (get_u32(&mask, slash+1, 0)) {
				fprintf(stderr, "Illegal \"handle\" mask\n");
				return -1;
			}
			mask_set = 1;
		}
	}

	if (argc == 0)
		return 0;

	tail = NLMSG_TAIL(n);
	addattr_l(n, 4096, TCA_OPTIONS, NULL, 0);

	if (mask_set)
		addattr32(n, MAX_MSG, TCA_FW_MASK, mask);

	while (argc > 0) {
		if (matches(*argv, "classid") == 0 ||
		    matches(*argv, "flowid") == 0) {
			unsigned int handle;

			NEXT_ARG();
			if (get_tc_classid(&handle, *argv)) {
				fprintf(stderr, "Illegal \"classid\"\n");
				return -1;
			}
			addattr_l(n, 4096, TCA_FW_CLASSID, &handle, 4);
		} else if (matches(*argv, "police") == 0) {
			NEXT_ARG();
			if (parse_police(&argc, &argv, TCA_FW_POLICE, n)) {
				fprintf(stderr, "Illegal \"police\"\n");
				return -1;
			}
			continue;
		} else if (matches(*argv, "action") == 0) {
			NEXT_ARG();
			if (parse_action(&argc, &argv, TCA_FW_ACT, n)) {
				fprintf(stderr, "Illegal fw \"action\"\n");
				return -1;
			}
			continue;
		} else if (strcmp(*argv, "indev") == 0) {
			char d[IFNAMSIZ+1] = {};

			argc--;
			argv++;
			if (argc < 1) {
				fprintf(stderr, "Illegal indev\n");
				return -1;
			}
			strncpy(d, *argv, sizeof(d) - 1);
			addattr_l(n, MAX_MSG, TCA_FW_INDEV, d, strlen(d) + 1);
		} else if (strcmp(*argv, "help") == 0) {
			explain();
			return -1;
		} else {
			fprintf(stderr, "What is \"%s\"?\n", *argv);
			explain();
			return -1;
		}
		argc--; argv++;
	}
	tail->rta_len = (void *) NLMSG_TAIL(n) - (void *) tail;
	return 0;
}

static int fw_print_opt(struct filter_util *qu, FILE *f, struct rtattr *opt, __u32 handle)
{
	struct rtattr *tb[TCA_FW_MAX+1];

	if (opt == NULL)
		return 0;

	parse_rtattr_nested(tb, TCA_FW_MAX, opt);

	if (handle || tb[TCA_FW_MASK]) {
		__u32 mark = 0, mask = 0;

		if (handle)
			mark = handle;
		if (tb[TCA_FW_MASK] &&
		    (mask = rta_getattr_u32(tb[TCA_FW_MASK])) != 0xFFFFFFFF)
			fprintf(f, "handle 0x%x/0x%x ", mark, mask);
		else
			fprintf(f, "handle 0x%x ", handle);
	}

	if (tb[TCA_FW_CLASSID]) {
		SPRINT_BUF(b1);
		fprintf(f, "classid %s ", sprint_tc_classid(rta_getattr_u32(tb[TCA_FW_CLASSID]), b1));
	}

	if (tb[TCA_FW_POLICE])
		tc_print_police(f, tb[TCA_FW_POLICE]);
	if (tb[TCA_FW_INDEV]) {
		struct rtattr *idev = tb[TCA_FW_INDEV];

		fprintf(f, "input dev %s ", rta_getattr_str(idev));
	}

	if (tb[TCA_FW_ACT]) {
		fprintf(f, "\n");
		tc_print_action(f, tb[TCA_FW_ACT], 0);
	}
	return 0;
}

struct filter_util fw_filter_util = {
	.id = "fw",
	.parse_fopt = fw_parse_opt,
	.print_fopt = fw_print_opt,
};
Commit	Line	Data
aba5acdf SH	1	/*
	2	* f_fw.c FW filter.
	3	*
	4	* This program is free software; you can redistribute it and/or
	5	* modify it under the terms of the GNU General Public License
	6	* as published by the Free Software Foundation; either version
	7	* 2 of the License, or (at your option) any later version.
	8	*
	9	* Authors: Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru>
	10	*
	11	*/
	12
	13	#include <stdio.h>
	14	#include <stdlib.h>
	15	#include <unistd.h>
aba5acdf SH	16	#include <fcntl.h>
	17	#include <sys/socket.h>
	18	#include <netinet/in.h>
	19	#include <arpa/inet.h>
	20	#include <string.h>
fa3a9930	21	#include <linux/if.h> /* IFNAMSIZ */
aba5acdf SH	22	#include "utils.h"
	23	#include "tc_util.h"
	24
	25	static void explain(void)
	26	{
4b5451c4 RM	27	fprintf(stderr,
	28	"Usage: ... fw [ classid CLASSID ] [ indev DEV ] [ action ACTION_SPEC ]\n");
	29	fprintf(stderr,
	30	" CLASSID := Push matching packets to the class identified by CLASSID with format X:Y\n");
	31	fprintf(stderr,
	32	" CLASSID is parsed as hexadecimal input.\n");
	33	fprintf(stderr,
	34	" DEV := specify device for incoming device classification.\n");
	35	fprintf(stderr,
	36	" ACTION_SPEC := Apply an action on matching packets.\n");
	37	fprintf(stderr,
	38	" NOTE: handle is represented as HANDLE[/FWMASK].\n");
	39	fprintf(stderr, " FWMASK is 0xffffffff by default.\n");
aba5acdf SH	40	}
aba5acdf SH	41
aba5acdf SH	42	static int fw_parse_opt(struct filter_util qu, char handle, int argc, char *argv, struct nlmsghdr n)
aba5acdf SH	43	{
aba5acdf SH	44	struct tcmsg *t = NLMSG_DATA(n);
aba5acdf SH	45	struct rtattr *tail;
c90308ff PM	46	__u32 mask = 0;
c90308ff PM	47	int mask_set = 0;
aba5acdf	48
aba5acdf	49	if (handle) {
e22b42a2	50	char *slash;
32a121cb	51
e22b42a2 FD	52	if ((slash = strchr(handle, '/')) != NULL)
e22b42a2 FD	53	*slash = '\0';
aba5acdf SH	54	if (get_u32(&t->tcm_handle, handle, 0)) {
	55	fprintf(stderr, "Illegal \"handle\"\n");
	56	return -1;
	57	}
e22b42a2 FD	58	if (slash) {
	59	if (get_u32(&mask, slash+1, 0)) {
	60	fprintf(stderr, "Illegal \"handle\" mask\n");
	61	return -1;
	62	}
c90308ff	63	mask_set = 1;
e22b42a2	64	}
aba5acdf SH	65	}
	66
	67	if (argc == 0)
	68	return 0;
	69
c90308ff PM	70	tail = NLMSG_TAIL(n);
	71	addattr_l(n, 4096, TCA_OPTIONS, NULL, 0);
	72
	73	if (mask_set)
	74	addattr32(n, MAX_MSG, TCA_FW_MASK, mask);
	75
aba5acdf SH	76	while (argc > 0) {
	77	if (matches(*argv, "classid") == 0 \|\|
	78	matches(*argv, "flowid") == 0) {
32a121cb SH	79	unsigned int handle;
32a121cb SH	80
aba5acdf SH	81	NEXT_ARG();
	82	if (get_tc_classid(&handle, *argv)) {
	83	fprintf(stderr, "Illegal \"classid\"\n");
	84	return -1;
	85	}
	86	addattr_l(n, 4096, TCA_FW_CLASSID, &handle, 4);
	87	} else if (matches(*argv, "police") == 0) {
	88	NEXT_ARG();
	89	if (parse_police(&argc, &argv, TCA_FW_POLICE, n)) {
	90	fprintf(stderr, "Illegal \"police\"\n");
	91	return -1;
	92	}
	93	continue;
fa3a9930 SH	94	} else if (matches(*argv, "action") == 0) {
	95	NEXT_ARG();
	96	if (parse_action(&argc, &argv, TCA_FW_ACT, n)) {
	97	fprintf(stderr, "Illegal fw \"action\"\n");
	98	return -1;
	99	}
	100	continue;
	101	} else if (strcmp(*argv, "indev") == 0) {
d17b136f	102	char d[IFNAMSIZ+1] = {};
32a121cb	103
fa3a9930 SH	104	argc--;
	105	argv++;
	106	if (argc < 1) {
	107	fprintf(stderr, "Illegal indev\n");
	108	return -1;
	109	}
32a121cb	110	strncpy(d, *argv, sizeof(d) - 1);
fa3a9930	111	addattr_l(n, MAX_MSG, TCA_FW_INDEV, d, strlen(d) + 1);
aba5acdf SH	112	} else if (strcmp(*argv, "help") == 0) {
	113	explain();
	114	return -1;
	115	} else {
	116	fprintf(stderr, "What is \"%s\"?\n", *argv);
	117	explain();
	118	return -1;
	119	}
	120	argc--; argv++;
	121	}
034102f2	122	tail->rta_len = (void ) NLMSG_TAIL(n) - (void ) tail;
aba5acdf SH	123	return 0;
	124	}
	125
	126	static int fw_print_opt(struct filter_util qu, FILE f, struct rtattr *opt, __u32 handle)
	127	{
	128	struct rtattr *tb[TCA_FW_MAX+1];
	129
	130	if (opt == NULL)
	131	return 0;
	132
021ed13f	133	parse_rtattr_nested(tb, TCA_FW_MAX, opt);
aba5acdf	134
e22b42a2 FD	135	if (handle \|\| tb[TCA_FW_MASK]) {
e22b42a2 FD	136	__u32 mark = 0, mask = 0;
32a121cb SH	137
32a121cb SH	138	if (handle)
e22b42a2	139	mark = handle;
32a121cb	140	if (tb[TCA_FW_MASK] &&
ff24746c	141	(mask = rta_getattr_u32(tb[TCA_FW_MASK])) != 0xFFFFFFFF)
e22b42a2 FD	142	fprintf(f, "handle 0x%x/0x%x ", mark, mask);
	143	else
	144	fprintf(f, "handle 0x%x ", handle);
	145	}
aba5acdf SH	146
	147	if (tb[TCA_FW_CLASSID]) {
	148	SPRINT_BUF(b1);
ff24746c	149	fprintf(f, "classid %s ", sprint_tc_classid(rta_getattr_u32(tb[TCA_FW_CLASSID]), b1));
aba5acdf SH	150	}
	151
	152	if (tb[TCA_FW_POLICE])
	153	tc_print_police(f, tb[TCA_FW_POLICE]);
fa3a9930 SH	154	if (tb[TCA_FW_INDEV]) {
fa3a9930 SH	155	struct rtattr *idev = tb[TCA_FW_INDEV];
32a121cb SH	156
32a121cb SH	157	fprintf(f, "input dev %s ", rta_getattr_str(idev));
fa3a9930	158	}
ae665a52	159
fa3a9930 SH	160	if (tb[TCA_FW_ACT]) {
fa3a9930 SH	161	fprintf(f, "\n");
9e713525	162	tc_print_action(f, tb[TCA_FW_ACT], 0);
fa3a9930	163	}
aba5acdf SH	164	return 0;
	165	}
	166
6b7dff17 SH	167	struct filter_util fw_filter_util = {
	168	.id = "fw",
	169	.parse_fopt = fw_parse_opt,
	170	.print_fopt = fw_print_opt,
aba5acdf	171	};