[deliverable/linux.git] / net / netfilter / xt_MARK.c

/* This is a module which is used for setting the NFMARK field of an skb. */

/* (C) 1999-2001 Marc Boucher <marc@mbsi.ca>
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License version 2 as
 * published by the Free Software Foundation.
 */

#include <linux/module.h>
#include <linux/skbuff.h>
#include <linux/ip.h>
#include <net/checksum.h>

#include <linux/netfilter/x_tables.h>
#include <linux/netfilter/xt_MARK.h>

MODULE_LICENSE("GPL");
MODULE_AUTHOR("Marc Boucher <marc@mbsi.ca>");
MODULE_DESCRIPTION("ip[6]tables MARK modification module");
MODULE_ALIAS("ipt_MARK");
MODULE_ALIAS("ip6t_MARK");

static unsigned int
mark_tg_v0(struct sk_buff *skb, const struct net_device *in,
           const struct net_device *out, unsigned int hooknum,
           const struct xt_target *target, const void *targinfo)
{
	const struct xt_mark_target_info *markinfo = targinfo;

	skb->mark = markinfo->mark;
	return XT_CONTINUE;
}

static unsigned int
mark_tg(struct sk_buff *skb, const struct net_device *in,
        const struct net_device *out, unsigned int hooknum,
        const struct xt_target *target, const void *targinfo)
{
	const struct xt_mark_target_info_v1 *markinfo = targinfo;
	int mark = 0;

	switch (markinfo->mode) {
	case XT_MARK_SET:
		mark = markinfo->mark;
		break;

	case XT_MARK_AND:
		mark = skb->mark & markinfo->mark;
		break;

	case XT_MARK_OR:
		mark = skb->mark | markinfo->mark;
		break;
	}

	skb->mark = mark;
	return XT_CONTINUE;
}

static bool
mark_tg_check_v0(const char *tablename, const void *entry,
                 const struct xt_target *target, void *targinfo,
                 unsigned int hook_mask)
{
	const struct xt_mark_target_info *markinfo = targinfo;

	if (markinfo->mark > 0xffffffff) {
		printk(KERN_WARNING "MARK: Only supports 32bit wide mark\n");
		return false;
	}
	return true;
}

static bool
mark_tg_check(const char *tablename, const void *entry,
              const struct xt_target *target, void *targinfo,
              unsigned int hook_mask)
{
	const struct xt_mark_target_info_v1 *markinfo = targinfo;

	if (markinfo->mode != XT_MARK_SET
	    && markinfo->mode != XT_MARK_AND
	    && markinfo->mode != XT_MARK_OR) {
		printk(KERN_WARNING "MARK: unknown mode %u\n",
		       markinfo->mode);
		return false;
	}
	if (markinfo->mark > 0xffffffff) {
		printk(KERN_WARNING "MARK: Only supports 32bit wide mark\n");
		return false;
	}
	return true;
}

#ifdef CONFIG_COMPAT
struct compat_xt_mark_target_info_v1 {
	compat_ulong_t	mark;
	u_int8_t	mode;
	u_int8_t	__pad1;
	u_int16_t	__pad2;
};

static void mark_tg_compat_from_user(void *dst, void *src)
{
	const struct compat_xt_mark_target_info_v1 *cm = src;
	struct xt_mark_target_info_v1 m = {
		.mark	= cm->mark,
		.mode	= cm->mode,
	};
	memcpy(dst, &m, sizeof(m));
}

static int mark_tg_compat_to_user(void __user *dst, void *src)
{
	const struct xt_mark_target_info_v1 *m = src;
	struct compat_xt_mark_target_info_v1 cm = {
		.mark	= m->mark,
		.mode	= m->mode,
	};
	return copy_to_user(dst, &cm, sizeof(cm)) ? -EFAULT : 0;
}
#endif /* CONFIG_COMPAT */

static struct xt_target mark_tg_reg[] __read_mostly = {
	{
		.name		= "MARK",
		.family		= AF_INET,
		.revision	= 0,
		.checkentry	= mark_tg_check_v0,
		.target		= mark_tg_v0,
		.targetsize	= sizeof(struct xt_mark_target_info),
		.table		= "mangle",
		.me		= THIS_MODULE,
	},
	{
		.name		= "MARK",
		.family		= AF_INET,
		.revision	= 1,
		.checkentry	= mark_tg_check,
		.target		= mark_tg,
		.targetsize	= sizeof(struct xt_mark_target_info_v1),
#ifdef CONFIG_COMPAT
		.compatsize	= sizeof(struct compat_xt_mark_target_info_v1),
		.compat_from_user = mark_tg_compat_from_user,
		.compat_to_user	= mark_tg_compat_to_user,
#endif
		.table		= "mangle",
		.me		= THIS_MODULE,
	},
	{
		.name		= "MARK",
		.family		= AF_INET6,
		.revision	= 0,
		.checkentry	= mark_tg_check_v0,
		.target		= mark_tg_v0,
		.targetsize	= sizeof(struct xt_mark_target_info),
		.table		= "mangle",
		.me		= THIS_MODULE,
	},
	{
		.name		= "MARK",
		.family		= AF_INET6,
		.revision	= 1,
		.checkentry	= mark_tg_check,
		.target		= mark_tg,
		.targetsize	= sizeof(struct xt_mark_target_info_v1),
#ifdef CONFIG_COMPAT
		.compatsize	= sizeof(struct compat_xt_mark_target_info_v1),
		.compat_from_user = mark_tg_compat_from_user,
		.compat_to_user	= mark_tg_compat_to_user,
#endif
		.table		= "mangle",
		.me		= THIS_MODULE,
	},
};

static int __init mark_tg_init(void)
{
	return xt_register_targets(mark_tg_reg, ARRAY_SIZE(mark_tg_reg));
}

static void __exit mark_tg_exit(void)
{
	xt_unregister_targets(mark_tg_reg, ARRAY_SIZE(mark_tg_reg));
}

module_init(mark_tg_init);
module_exit(mark_tg_exit);
Commit	Line	Data
1da177e4 LT	1	/* This is a module which is used for setting the NFMARK field of an skb. */
	2
	3	/* (C) 1999-2001 Marc Boucher <marc@mbsi.ca>
	4	*
	5	* This program is free software; you can redistribute it and/or modify
	6	* it under the terms of the GNU General Public License version 2 as
	7	* published by the Free Software Foundation.
	8	*/
	9
	10	#include <linux/module.h>
	11	#include <linux/skbuff.h>
	12	#include <linux/ip.h>
	13	#include <net/checksum.h>
	14
2e4e6a17 HW	15	#include <linux/netfilter/x_tables.h>
2e4e6a17 HW	16	#include <linux/netfilter/xt_MARK.h>
1da177e4 LT	17
	18	MODULE_LICENSE("GPL");
	19	MODULE_AUTHOR("Marc Boucher <marc@mbsi.ca>");
2e4e6a17 HW	20	MODULE_DESCRIPTION("ip[6]tables MARK modification module");
	21	MODULE_ALIAS("ipt_MARK");
	22	MODULE_ALIAS("ip6t_MARK");
1da177e4 LT	23
1da177e4 LT	24	static unsigned int
d3c5ee6d JE	25	mark_tg_v0(struct sk_buff skb, const struct net_device in,
	26	const struct net_device *out, unsigned int hooknum,
	27	const struct xt_target target, const void targinfo)
1da177e4	28	{
2e4e6a17	29	const struct xt_mark_target_info *markinfo = targinfo;
1da177e4	30
3db05fea	31	skb->mark = markinfo->mark;
2e4e6a17	32	return XT_CONTINUE;
1da177e4 LT	33	}
	34
	35	static unsigned int
d3c5ee6d JE	36	mark_tg(struct sk_buff skb, const struct net_device in,
	37	const struct net_device *out, unsigned int hooknum,
	38	const struct xt_target target, const void targinfo)
1da177e4	39	{
2e4e6a17	40	const struct xt_mark_target_info_v1 *markinfo = targinfo;
1da177e4 LT	41	int mark = 0;
	42
	43	switch (markinfo->mode) {
2e4e6a17	44	case XT_MARK_SET:
1da177e4 LT	45	mark = markinfo->mark;
1da177e4 LT	46	break;
601e68e1	47
2e4e6a17	48	case XT_MARK_AND:
3db05fea	49	mark = skb->mark & markinfo->mark;
1da177e4	50	break;
601e68e1	51
2e4e6a17	52	case XT_MARK_OR:
3db05fea	53	mark = skb->mark \| markinfo->mark;
1da177e4 LT	54	break;
	55	}
	56
3db05fea	57	skb->mark = mark;
2e4e6a17	58	return XT_CONTINUE;
1da177e4 LT	59	}
1da177e4 LT	60
e1931b78	61	static bool
d3c5ee6d JE	62	mark_tg_check_v0(const char tablename, const void entry,
	63	const struct xt_target target, void targinfo,
	64	unsigned int hook_mask)
1da177e4	65	{
a47362a2	66	const struct xt_mark_target_info *markinfo = targinfo;
bf3a46aa	67
bf3a46aa HW	68	if (markinfo->mark > 0xffffffff) {
bf3a46aa HW	69	printk(KERN_WARNING "MARK: Only supports 32bit wide mark\n");
e1931b78	70	return false;
bf3a46aa	71	}
e1931b78	72	return true;
1da177e4 LT	73	}
1da177e4 LT	74
e1931b78	75	static bool
d3c5ee6d JE	76	mark_tg_check(const char tablename, const void entry,
	77	const struct xt_target target, void targinfo,
	78	unsigned int hook_mask)
1da177e4	79	{
a47362a2	80	const struct xt_mark_target_info_v1 *markinfo = targinfo;
1da177e4	81
2e4e6a17 HW	82	if (markinfo->mode != XT_MARK_SET
	83	&& markinfo->mode != XT_MARK_AND
	84	&& markinfo->mode != XT_MARK_OR) {
1da177e4 LT	85	printk(KERN_WARNING "MARK: unknown mode %u\n",
1da177e4 LT	86	markinfo->mode);
e1931b78	87	return false;
1da177e4	88	}
bf3a46aa HW	89	if (markinfo->mark > 0xffffffff) {
bf3a46aa HW	90	printk(KERN_WARNING "MARK: Only supports 32bit wide mark\n");
e1931b78	91	return false;
bf3a46aa	92	}
e1931b78	93	return true;
1da177e4 LT	94	}
1da177e4 LT	95
be7263b7 PM	96	#ifdef CONFIG_COMPAT
	97	struct compat_xt_mark_target_info_v1 {
	98	compat_ulong_t mark;
	99	u_int8_t mode;
	100	u_int8_t __pad1;
	101	u_int16_t __pad2;
	102	};
	103
d3c5ee6d	104	static void mark_tg_compat_from_user(void dst, void src)
be7263b7	105	{
a47362a2	106	const struct compat_xt_mark_target_info_v1 *cm = src;
be7263b7 PM	107	struct xt_mark_target_info_v1 m = {
	108	.mark = cm->mark,
	109	.mode = cm->mode,
	110	};
	111	memcpy(dst, &m, sizeof(m));
	112	}
	113
d3c5ee6d	114	static int mark_tg_compat_to_user(void __user dst, void src)
be7263b7	115	{
a47362a2	116	const struct xt_mark_target_info_v1 *m = src;
be7263b7 PM	117	struct compat_xt_mark_target_info_v1 cm = {
	118	.mark = m->mark,
	119	.mode = m->mode,
	120	};
	121	return copy_to_user(dst, &cm, sizeof(cm)) ? -EFAULT : 0;
	122	}
	123	#endif /* CONFIG_COMPAT */
	124
d3c5ee6d	125	static struct xt_target mark_tg_reg[] __read_mostly = {
4470bbc7 PM	126	{
	127	.name = "MARK",
	128	.family = AF_INET,
	129	.revision = 0,
d3c5ee6d JE	130	.checkentry = mark_tg_check_v0,
d3c5ee6d JE	131	.target = mark_tg_v0,
4470bbc7 PM	132	.targetsize = sizeof(struct xt_mark_target_info),
	133	.table = "mangle",
	134	.me = THIS_MODULE,
	135	},
	136	{
	137	.name = "MARK",
	138	.family = AF_INET,
	139	.revision = 1,
d3c5ee6d JE	140	.checkentry = mark_tg_check,
d3c5ee6d JE	141	.target = mark_tg,
4470bbc7	142	.targetsize = sizeof(struct xt_mark_target_info_v1),
be7263b7 PM	143	#ifdef CONFIG_COMPAT
be7263b7 PM	144	.compatsize = sizeof(struct compat_xt_mark_target_info_v1),
d3c5ee6d JE	145	.compat_from_user = mark_tg_compat_from_user,
d3c5ee6d JE	146	.compat_to_user = mark_tg_compat_to_user,
be7263b7	147	#endif
4470bbc7 PM	148	.table = "mangle",
	149	.me = THIS_MODULE,
	150	},
	151	{
	152	.name = "MARK",
	153	.family = AF_INET6,
	154	.revision = 0,
d3c5ee6d JE	155	.checkentry = mark_tg_check_v0,
d3c5ee6d JE	156	.target = mark_tg_v0,
4470bbc7 PM	157	.targetsize = sizeof(struct xt_mark_target_info),
	158	.table = "mangle",
	159	.me = THIS_MODULE,
	160	},
311af5cb PM	161	{
	162	.name = "MARK",
	163	.family = AF_INET6,
	164	.revision = 1,
	165	.checkentry = mark_tg_check,
	166	.target = mark_tg,
	167	.targetsize = sizeof(struct xt_mark_target_info_v1),
	168	#ifdef CONFIG_COMPAT
	169	.compatsize = sizeof(struct compat_xt_mark_target_info_v1),
	170	.compat_from_user = mark_tg_compat_from_user,
	171	.compat_to_user = mark_tg_compat_to_user,
	172	#endif
	173	.table = "mangle",
	174	.me = THIS_MODULE,
	175	},
2e4e6a17 HW	176	};
2e4e6a17 HW	177
d3c5ee6d	178	static int __init mark_tg_init(void)
1da177e4	179	{
d3c5ee6d	180	return xt_register_targets(mark_tg_reg, ARRAY_SIZE(mark_tg_reg));
1da177e4 LT	181	}
1da177e4 LT	182
d3c5ee6d	183	static void __exit mark_tg_exit(void)
1da177e4	184	{
d3c5ee6d	185	xt_unregister_targets(mark_tg_reg, ARRAY_SIZE(mark_tg_reg));
1da177e4 LT	186	}
1da177e4 LT	187
d3c5ee6d JE	188	module_init(mark_tg_init);
d3c5ee6d JE	189	module_exit(mark_tg_exit);