1*de1e4e89SAndroid Build Coastguard Worker /*
2*de1e4e89SAndroid Build Coastguard Worker * q_rsvp.c RSVP filter.
3*de1e4e89SAndroid Build Coastguard Worker *
4*de1e4e89SAndroid Build Coastguard Worker * This program is free software; you can redistribute it and/or
5*de1e4e89SAndroid Build Coastguard Worker * modify it under the terms of the GNU General Public License
6*de1e4e89SAndroid Build Coastguard Worker * as published by the Free Software Foundation; either version
7*de1e4e89SAndroid Build Coastguard Worker * 2 of the License, or (at your option) any later version.
8*de1e4e89SAndroid Build Coastguard Worker *
9*de1e4e89SAndroid Build Coastguard Worker * Authors: Alexey Kuznetsov, <[email protected]>
10*de1e4e89SAndroid Build Coastguard Worker *
11*de1e4e89SAndroid Build Coastguard Worker */
12*de1e4e89SAndroid Build Coastguard Worker
13*de1e4e89SAndroid Build Coastguard Worker #include <stdio.h>
14*de1e4e89SAndroid Build Coastguard Worker #include <stdlib.h>
15*de1e4e89SAndroid Build Coastguard Worker #include <unistd.h>
16*de1e4e89SAndroid Build Coastguard Worker #include <syslog.h>
17*de1e4e89SAndroid Build Coastguard Worker #include <fcntl.h>
18*de1e4e89SAndroid Build Coastguard Worker #include <sys/socket.h>
19*de1e4e89SAndroid Build Coastguard Worker #include <netinet/in.h>
20*de1e4e89SAndroid Build Coastguard Worker #include <arpa/inet.h>
21*de1e4e89SAndroid Build Coastguard Worker #include <string.h>
22*de1e4e89SAndroid Build Coastguard Worker
23*de1e4e89SAndroid Build Coastguard Worker #include "rt_names.h"
24*de1e4e89SAndroid Build Coastguard Worker #include "utils.h"
25*de1e4e89SAndroid Build Coastguard Worker #include "tc_util.h"
26*de1e4e89SAndroid Build Coastguard Worker
explain(void)27*de1e4e89SAndroid Build Coastguard Worker static void explain(void)
28*de1e4e89SAndroid Build Coastguard Worker {
29*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Usage: ... rsvp ipproto PROTOCOL session DST[/PORT | GPI ]\n");
30*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, " [ sender SRC[/PORT | GPI ] ]\n");
31*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, " [ classid CLASSID ] [ action ACTION_SPEC ]\n");
32*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, " [ tunnelid ID ] [ tunnel ID skip NUMBER ]\n");
33*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Where: GPI := { flowlabel NUMBER | spi/ah SPI | spi/esp SPI |\n");
34*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, " u{8|16|32} NUMBER mask MASK at OFFSET}\n");
35*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, " ACTION_SPEC := ... look at individual actions\n");
36*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, " FILTERID := X:Y\n");
37*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "\nNOTE: CLASSID is parsed as hexadecimal input.\n");
38*de1e4e89SAndroid Build Coastguard Worker }
39*de1e4e89SAndroid Build Coastguard Worker
get_addr_and_pi(int * argc_p,char *** argv_p,inet_prefix * addr,struct tc_rsvp_pinfo * pinfo,int dir,int family)40*de1e4e89SAndroid Build Coastguard Worker static int get_addr_and_pi(int *argc_p, char ***argv_p, inet_prefix *addr,
41*de1e4e89SAndroid Build Coastguard Worker struct tc_rsvp_pinfo *pinfo, int dir, int family)
42*de1e4e89SAndroid Build Coastguard Worker {
43*de1e4e89SAndroid Build Coastguard Worker int argc = *argc_p;
44*de1e4e89SAndroid Build Coastguard Worker char **argv = *argv_p;
45*de1e4e89SAndroid Build Coastguard Worker char *p = strchr(*argv, '/');
46*de1e4e89SAndroid Build Coastguard Worker struct tc_rsvp_gpi *pi = dir ? &pinfo->dpi : &pinfo->spi;
47*de1e4e89SAndroid Build Coastguard Worker
48*de1e4e89SAndroid Build Coastguard Worker if (p) {
49*de1e4e89SAndroid Build Coastguard Worker __u16 tmp;
50*de1e4e89SAndroid Build Coastguard Worker
51*de1e4e89SAndroid Build Coastguard Worker if (get_u16(&tmp, p+1, 0))
52*de1e4e89SAndroid Build Coastguard Worker return -1;
53*de1e4e89SAndroid Build Coastguard Worker
54*de1e4e89SAndroid Build Coastguard Worker if (dir == 0) {
55*de1e4e89SAndroid Build Coastguard Worker /* Source port: u16 at offset 0 */
56*de1e4e89SAndroid Build Coastguard Worker pi->key = htonl(((__u32)tmp)<<16);
57*de1e4e89SAndroid Build Coastguard Worker pi->mask = htonl(0xFFFF0000);
58*de1e4e89SAndroid Build Coastguard Worker } else {
59*de1e4e89SAndroid Build Coastguard Worker /* Destination port: u16 at offset 2 */
60*de1e4e89SAndroid Build Coastguard Worker pi->key = htonl(((__u32)tmp));
61*de1e4e89SAndroid Build Coastguard Worker pi->mask = htonl(0x0000FFFF);
62*de1e4e89SAndroid Build Coastguard Worker }
63*de1e4e89SAndroid Build Coastguard Worker pi->offset = 0;
64*de1e4e89SAndroid Build Coastguard Worker *p = 0;
65*de1e4e89SAndroid Build Coastguard Worker }
66*de1e4e89SAndroid Build Coastguard Worker if (get_addr_1(addr, *argv, family))
67*de1e4e89SAndroid Build Coastguard Worker return -1;
68*de1e4e89SAndroid Build Coastguard Worker if (p)
69*de1e4e89SAndroid Build Coastguard Worker *p = '/';
70*de1e4e89SAndroid Build Coastguard Worker
71*de1e4e89SAndroid Build Coastguard Worker argc--; argv++;
72*de1e4e89SAndroid Build Coastguard Worker
73*de1e4e89SAndroid Build Coastguard Worker if (pi->mask || argc <= 0)
74*de1e4e89SAndroid Build Coastguard Worker goto done;
75*de1e4e89SAndroid Build Coastguard Worker
76*de1e4e89SAndroid Build Coastguard Worker if (strcmp(*argv, "spi/ah") == 0 ||
77*de1e4e89SAndroid Build Coastguard Worker strcmp(*argv, "gpi/ah") == 0) {
78*de1e4e89SAndroid Build Coastguard Worker __u32 gpi;
79*de1e4e89SAndroid Build Coastguard Worker
80*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
81*de1e4e89SAndroid Build Coastguard Worker if (get_u32(&gpi, *argv, 0))
82*de1e4e89SAndroid Build Coastguard Worker return -1;
83*de1e4e89SAndroid Build Coastguard Worker pi->mask = htonl(0xFFFFFFFF);
84*de1e4e89SAndroid Build Coastguard Worker pi->key = htonl(gpi);
85*de1e4e89SAndroid Build Coastguard Worker pi->offset = 4;
86*de1e4e89SAndroid Build Coastguard Worker if (pinfo->protocol == 0)
87*de1e4e89SAndroid Build Coastguard Worker pinfo->protocol = IPPROTO_AH;
88*de1e4e89SAndroid Build Coastguard Worker argc--; argv++;
89*de1e4e89SAndroid Build Coastguard Worker } else if (strcmp(*argv, "spi/esp") == 0 ||
90*de1e4e89SAndroid Build Coastguard Worker strcmp(*argv, "gpi/esp") == 0) {
91*de1e4e89SAndroid Build Coastguard Worker __u32 gpi;
92*de1e4e89SAndroid Build Coastguard Worker
93*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
94*de1e4e89SAndroid Build Coastguard Worker if (get_u32(&gpi, *argv, 0))
95*de1e4e89SAndroid Build Coastguard Worker return -1;
96*de1e4e89SAndroid Build Coastguard Worker pi->mask = htonl(0xFFFFFFFF);
97*de1e4e89SAndroid Build Coastguard Worker pi->key = htonl(gpi);
98*de1e4e89SAndroid Build Coastguard Worker pi->offset = 0;
99*de1e4e89SAndroid Build Coastguard Worker if (pinfo->protocol == 0)
100*de1e4e89SAndroid Build Coastguard Worker pinfo->protocol = IPPROTO_ESP;
101*de1e4e89SAndroid Build Coastguard Worker argc--; argv++;
102*de1e4e89SAndroid Build Coastguard Worker } else if (strcmp(*argv, "flowlabel") == 0) {
103*de1e4e89SAndroid Build Coastguard Worker __u32 flabel;
104*de1e4e89SAndroid Build Coastguard Worker
105*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
106*de1e4e89SAndroid Build Coastguard Worker if (get_u32(&flabel, *argv, 0))
107*de1e4e89SAndroid Build Coastguard Worker return -1;
108*de1e4e89SAndroid Build Coastguard Worker if (family != AF_INET6)
109*de1e4e89SAndroid Build Coastguard Worker return -1;
110*de1e4e89SAndroid Build Coastguard Worker pi->mask = htonl(0x000FFFFF);
111*de1e4e89SAndroid Build Coastguard Worker pi->key = htonl(flabel) & pi->mask;
112*de1e4e89SAndroid Build Coastguard Worker pi->offset = -40;
113*de1e4e89SAndroid Build Coastguard Worker argc--; argv++;
114*de1e4e89SAndroid Build Coastguard Worker } else if (strcmp(*argv, "u32") == 0 ||
115*de1e4e89SAndroid Build Coastguard Worker strcmp(*argv, "u16") == 0 ||
116*de1e4e89SAndroid Build Coastguard Worker strcmp(*argv, "u8") == 0) {
117*de1e4e89SAndroid Build Coastguard Worker int sz = 1;
118*de1e4e89SAndroid Build Coastguard Worker __u32 tmp;
119*de1e4e89SAndroid Build Coastguard Worker __u32 mask = 0xff;
120*de1e4e89SAndroid Build Coastguard Worker
121*de1e4e89SAndroid Build Coastguard Worker if (strcmp(*argv, "u32") == 0) {
122*de1e4e89SAndroid Build Coastguard Worker sz = 4;
123*de1e4e89SAndroid Build Coastguard Worker mask = 0xffff;
124*de1e4e89SAndroid Build Coastguard Worker } else if (strcmp(*argv, "u16") == 0) {
125*de1e4e89SAndroid Build Coastguard Worker mask = 0xffffffff;
126*de1e4e89SAndroid Build Coastguard Worker sz = 2;
127*de1e4e89SAndroid Build Coastguard Worker }
128*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
129*de1e4e89SAndroid Build Coastguard Worker if (get_u32(&tmp, *argv, 0))
130*de1e4e89SAndroid Build Coastguard Worker return -1;
131*de1e4e89SAndroid Build Coastguard Worker argc--; argv++;
132*de1e4e89SAndroid Build Coastguard Worker if (strcmp(*argv, "mask") == 0) {
133*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
134*de1e4e89SAndroid Build Coastguard Worker if (get_u32(&mask, *argv, 16))
135*de1e4e89SAndroid Build Coastguard Worker return -1;
136*de1e4e89SAndroid Build Coastguard Worker argc--; argv++;
137*de1e4e89SAndroid Build Coastguard Worker }
138*de1e4e89SAndroid Build Coastguard Worker if (strcmp(*argv, "at") == 0) {
139*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
140*de1e4e89SAndroid Build Coastguard Worker if (get_integer(&pi->offset, *argv, 0))
141*de1e4e89SAndroid Build Coastguard Worker return -1;
142*de1e4e89SAndroid Build Coastguard Worker argc--; argv++;
143*de1e4e89SAndroid Build Coastguard Worker }
144*de1e4e89SAndroid Build Coastguard Worker if (sz == 1) {
145*de1e4e89SAndroid Build Coastguard Worker if ((pi->offset & 3) == 0) {
146*de1e4e89SAndroid Build Coastguard Worker mask <<= 24;
147*de1e4e89SAndroid Build Coastguard Worker tmp <<= 24;
148*de1e4e89SAndroid Build Coastguard Worker } else if ((pi->offset & 3) == 1) {
149*de1e4e89SAndroid Build Coastguard Worker mask <<= 16;
150*de1e4e89SAndroid Build Coastguard Worker tmp <<= 16;
151*de1e4e89SAndroid Build Coastguard Worker } else if ((pi->offset & 3) == 3) {
152*de1e4e89SAndroid Build Coastguard Worker mask <<= 8;
153*de1e4e89SAndroid Build Coastguard Worker tmp <<= 8;
154*de1e4e89SAndroid Build Coastguard Worker }
155*de1e4e89SAndroid Build Coastguard Worker } else if (sz == 2) {
156*de1e4e89SAndroid Build Coastguard Worker if ((pi->offset & 3) == 0) {
157*de1e4e89SAndroid Build Coastguard Worker mask <<= 16;
158*de1e4e89SAndroid Build Coastguard Worker tmp <<= 16;
159*de1e4e89SAndroid Build Coastguard Worker }
160*de1e4e89SAndroid Build Coastguard Worker }
161*de1e4e89SAndroid Build Coastguard Worker pi->offset &= ~3;
162*de1e4e89SAndroid Build Coastguard Worker pi->mask = htonl(mask);
163*de1e4e89SAndroid Build Coastguard Worker pi->key = htonl(tmp) & pi->mask;
164*de1e4e89SAndroid Build Coastguard Worker }
165*de1e4e89SAndroid Build Coastguard Worker
166*de1e4e89SAndroid Build Coastguard Worker done:
167*de1e4e89SAndroid Build Coastguard Worker *argc_p = argc;
168*de1e4e89SAndroid Build Coastguard Worker *argv_p = argv;
169*de1e4e89SAndroid Build Coastguard Worker return 0;
170*de1e4e89SAndroid Build Coastguard Worker }
171*de1e4e89SAndroid Build Coastguard Worker
172*de1e4e89SAndroid Build Coastguard Worker
rsvp_parse_opt(struct filter_util * qu,char * handle,int argc,char ** argv,struct nlmsghdr * n)173*de1e4e89SAndroid Build Coastguard Worker static int rsvp_parse_opt(struct filter_util *qu, char *handle, int argc, char **argv, struct nlmsghdr *n)
174*de1e4e89SAndroid Build Coastguard Worker {
175*de1e4e89SAndroid Build Coastguard Worker int family = strcmp(qu->id, "rsvp") == 0 ? AF_INET : AF_INET6;
176*de1e4e89SAndroid Build Coastguard Worker struct tc_rsvp_pinfo pinfo = {};
177*de1e4e89SAndroid Build Coastguard Worker struct tcmsg *t = NLMSG_DATA(n);
178*de1e4e89SAndroid Build Coastguard Worker int pinfo_ok = 0;
179*de1e4e89SAndroid Build Coastguard Worker struct rtattr *tail;
180*de1e4e89SAndroid Build Coastguard Worker
181*de1e4e89SAndroid Build Coastguard Worker if (handle) {
182*de1e4e89SAndroid Build Coastguard Worker if (get_u32(&t->tcm_handle, handle, 0)) {
183*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"handle\"\n");
184*de1e4e89SAndroid Build Coastguard Worker return -1;
185*de1e4e89SAndroid Build Coastguard Worker }
186*de1e4e89SAndroid Build Coastguard Worker }
187*de1e4e89SAndroid Build Coastguard Worker
188*de1e4e89SAndroid Build Coastguard Worker if (argc == 0)
189*de1e4e89SAndroid Build Coastguard Worker return 0;
190*de1e4e89SAndroid Build Coastguard Worker
191*de1e4e89SAndroid Build Coastguard Worker tail = NLMSG_TAIL(n);
192*de1e4e89SAndroid Build Coastguard Worker addattr_l(n, 4096, TCA_OPTIONS, NULL, 0);
193*de1e4e89SAndroid Build Coastguard Worker
194*de1e4e89SAndroid Build Coastguard Worker while (argc > 0) {
195*de1e4e89SAndroid Build Coastguard Worker if (matches(*argv, "session") == 0) {
196*de1e4e89SAndroid Build Coastguard Worker inet_prefix addr;
197*de1e4e89SAndroid Build Coastguard Worker
198*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
199*de1e4e89SAndroid Build Coastguard Worker if (get_addr_and_pi(&argc, &argv, &addr, &pinfo, 1, family)) {
200*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"session\"\n");
201*de1e4e89SAndroid Build Coastguard Worker return -1;
202*de1e4e89SAndroid Build Coastguard Worker }
203*de1e4e89SAndroid Build Coastguard Worker addattr_l(n, 4096, TCA_RSVP_DST, &addr.data, addr.bytelen);
204*de1e4e89SAndroid Build Coastguard Worker if (pinfo.dpi.mask || pinfo.protocol)
205*de1e4e89SAndroid Build Coastguard Worker pinfo_ok++;
206*de1e4e89SAndroid Build Coastguard Worker continue;
207*de1e4e89SAndroid Build Coastguard Worker } else if (matches(*argv, "sender") == 0 ||
208*de1e4e89SAndroid Build Coastguard Worker matches(*argv, "flowspec") == 0) {
209*de1e4e89SAndroid Build Coastguard Worker inet_prefix addr;
210*de1e4e89SAndroid Build Coastguard Worker
211*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
212*de1e4e89SAndroid Build Coastguard Worker if (get_addr_and_pi(&argc, &argv, &addr, &pinfo, 0, family)) {
213*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"sender\"\n");
214*de1e4e89SAndroid Build Coastguard Worker return -1;
215*de1e4e89SAndroid Build Coastguard Worker }
216*de1e4e89SAndroid Build Coastguard Worker addattr_l(n, 4096, TCA_RSVP_SRC, &addr.data, addr.bytelen);
217*de1e4e89SAndroid Build Coastguard Worker if (pinfo.spi.mask || pinfo.protocol)
218*de1e4e89SAndroid Build Coastguard Worker pinfo_ok++;
219*de1e4e89SAndroid Build Coastguard Worker continue;
220*de1e4e89SAndroid Build Coastguard Worker } else if (matches("ipproto", *argv) == 0) {
221*de1e4e89SAndroid Build Coastguard Worker int num;
222*de1e4e89SAndroid Build Coastguard Worker
223*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
224*de1e4e89SAndroid Build Coastguard Worker num = inet_proto_a2n(*argv);
225*de1e4e89SAndroid Build Coastguard Worker if (num < 0) {
226*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"ipproto\"\n");
227*de1e4e89SAndroid Build Coastguard Worker return -1;
228*de1e4e89SAndroid Build Coastguard Worker }
229*de1e4e89SAndroid Build Coastguard Worker pinfo.protocol = num;
230*de1e4e89SAndroid Build Coastguard Worker pinfo_ok++;
231*de1e4e89SAndroid Build Coastguard Worker } else if (matches(*argv, "classid") == 0 ||
232*de1e4e89SAndroid Build Coastguard Worker strcmp(*argv, "flowid") == 0) {
233*de1e4e89SAndroid Build Coastguard Worker unsigned int handle;
234*de1e4e89SAndroid Build Coastguard Worker
235*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
236*de1e4e89SAndroid Build Coastguard Worker if (get_tc_classid(&handle, *argv)) {
237*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"classid\"\n");
238*de1e4e89SAndroid Build Coastguard Worker return -1;
239*de1e4e89SAndroid Build Coastguard Worker }
240*de1e4e89SAndroid Build Coastguard Worker addattr_l(n, 4096, TCA_RSVP_CLASSID, &handle, 4);
241*de1e4e89SAndroid Build Coastguard Worker } else if (strcmp(*argv, "tunnelid") == 0) {
242*de1e4e89SAndroid Build Coastguard Worker unsigned int tid;
243*de1e4e89SAndroid Build Coastguard Worker
244*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
245*de1e4e89SAndroid Build Coastguard Worker if (get_unsigned(&tid, *argv, 0)) {
246*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"tunnelid\"\n");
247*de1e4e89SAndroid Build Coastguard Worker return -1;
248*de1e4e89SAndroid Build Coastguard Worker }
249*de1e4e89SAndroid Build Coastguard Worker pinfo.tunnelid = tid;
250*de1e4e89SAndroid Build Coastguard Worker pinfo_ok++;
251*de1e4e89SAndroid Build Coastguard Worker } else if (strcmp(*argv, "tunnel") == 0) {
252*de1e4e89SAndroid Build Coastguard Worker unsigned int tid;
253*de1e4e89SAndroid Build Coastguard Worker
254*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
255*de1e4e89SAndroid Build Coastguard Worker if (get_unsigned(&tid, *argv, 0)) {
256*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"tunnel\"\n");
257*de1e4e89SAndroid Build Coastguard Worker return -1;
258*de1e4e89SAndroid Build Coastguard Worker }
259*de1e4e89SAndroid Build Coastguard Worker addattr_l(n, 4096, TCA_RSVP_CLASSID, &tid, 4);
260*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
261*de1e4e89SAndroid Build Coastguard Worker if (strcmp(*argv, "skip") == 0) {
262*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
263*de1e4e89SAndroid Build Coastguard Worker }
264*de1e4e89SAndroid Build Coastguard Worker if (get_unsigned(&tid, *argv, 0)) {
265*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"skip\"\n");
266*de1e4e89SAndroid Build Coastguard Worker return -1;
267*de1e4e89SAndroid Build Coastguard Worker }
268*de1e4e89SAndroid Build Coastguard Worker pinfo.tunnelhdr = tid;
269*de1e4e89SAndroid Build Coastguard Worker pinfo_ok++;
270*de1e4e89SAndroid Build Coastguard Worker } else if (matches(*argv, "action") == 0) {
271*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
272*de1e4e89SAndroid Build Coastguard Worker if (parse_action(&argc, &argv, TCA_RSVP_ACT, n)) {
273*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"action\"\n");
274*de1e4e89SAndroid Build Coastguard Worker return -1;
275*de1e4e89SAndroid Build Coastguard Worker }
276*de1e4e89SAndroid Build Coastguard Worker continue;
277*de1e4e89SAndroid Build Coastguard Worker } else if (matches(*argv, "police") == 0) {
278*de1e4e89SAndroid Build Coastguard Worker NEXT_ARG();
279*de1e4e89SAndroid Build Coastguard Worker if (parse_police(&argc, &argv, TCA_RSVP_POLICE, n)) {
280*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "Illegal \"police\"\n");
281*de1e4e89SAndroid Build Coastguard Worker return -1;
282*de1e4e89SAndroid Build Coastguard Worker }
283*de1e4e89SAndroid Build Coastguard Worker continue;
284*de1e4e89SAndroid Build Coastguard Worker } else if (strcmp(*argv, "help") == 0) {
285*de1e4e89SAndroid Build Coastguard Worker explain();
286*de1e4e89SAndroid Build Coastguard Worker return -1;
287*de1e4e89SAndroid Build Coastguard Worker } else {
288*de1e4e89SAndroid Build Coastguard Worker fprintf(stderr, "What is \"%s\"?\n", *argv);
289*de1e4e89SAndroid Build Coastguard Worker explain();
290*de1e4e89SAndroid Build Coastguard Worker return -1;
291*de1e4e89SAndroid Build Coastguard Worker }
292*de1e4e89SAndroid Build Coastguard Worker argc--; argv++;
293*de1e4e89SAndroid Build Coastguard Worker }
294*de1e4e89SAndroid Build Coastguard Worker
295*de1e4e89SAndroid Build Coastguard Worker if (pinfo_ok)
296*de1e4e89SAndroid Build Coastguard Worker addattr_l(n, 4096, TCA_RSVP_PINFO, &pinfo, sizeof(pinfo));
297*de1e4e89SAndroid Build Coastguard Worker tail->rta_len = (void *) NLMSG_TAIL(n) - (void *) tail;
298*de1e4e89SAndroid Build Coastguard Worker return 0;
299*de1e4e89SAndroid Build Coastguard Worker }
300*de1e4e89SAndroid Build Coastguard Worker
sprint_spi(struct tc_rsvp_gpi * pi,int dir,char * buf)301*de1e4e89SAndroid Build Coastguard Worker static char *sprint_spi(struct tc_rsvp_gpi *pi, int dir, char *buf)
302*de1e4e89SAndroid Build Coastguard Worker {
303*de1e4e89SAndroid Build Coastguard Worker if (pi->offset == 0) {
304*de1e4e89SAndroid Build Coastguard Worker if (dir && pi->mask == htonl(0xFFFF)) {
305*de1e4e89SAndroid Build Coastguard Worker snprintf(buf, SPRINT_BSIZE-1, "/%d", htonl(pi->key));
306*de1e4e89SAndroid Build Coastguard Worker return buf;
307*de1e4e89SAndroid Build Coastguard Worker }
308*de1e4e89SAndroid Build Coastguard Worker if (!dir && pi->mask == htonl(0xFFFF0000)) {
309*de1e4e89SAndroid Build Coastguard Worker snprintf(buf, SPRINT_BSIZE-1, "/%d", htonl(pi->key)>>16);
310*de1e4e89SAndroid Build Coastguard Worker return buf;
311*de1e4e89SAndroid Build Coastguard Worker }
312*de1e4e89SAndroid Build Coastguard Worker if (pi->mask == htonl(0xFFFFFFFF)) {
313*de1e4e89SAndroid Build Coastguard Worker snprintf(buf, SPRINT_BSIZE-1, " spi/esp 0x%08x", htonl(pi->key));
314*de1e4e89SAndroid Build Coastguard Worker return buf;
315*de1e4e89SAndroid Build Coastguard Worker }
316*de1e4e89SAndroid Build Coastguard Worker } else if (pi->offset == 4 && pi->mask == htonl(0xFFFFFFFF)) {
317*de1e4e89SAndroid Build Coastguard Worker snprintf(buf, SPRINT_BSIZE-1, " spi/ah 0x%08x", htonl(pi->key));
318*de1e4e89SAndroid Build Coastguard Worker return buf;
319*de1e4e89SAndroid Build Coastguard Worker } else if (pi->offset == -40 && pi->mask == htonl(0x000FFFFF)) {
320*de1e4e89SAndroid Build Coastguard Worker snprintf(buf, SPRINT_BSIZE-1, " flowlabel 0x%05x", htonl(pi->key));
321*de1e4e89SAndroid Build Coastguard Worker return buf;
322*de1e4e89SAndroid Build Coastguard Worker }
323*de1e4e89SAndroid Build Coastguard Worker snprintf(buf, SPRINT_BSIZE-1, " u32 0x%08x mask %08x at %d",
324*de1e4e89SAndroid Build Coastguard Worker htonl(pi->key), htonl(pi->mask), pi->offset);
325*de1e4e89SAndroid Build Coastguard Worker return buf;
326*de1e4e89SAndroid Build Coastguard Worker }
327*de1e4e89SAndroid Build Coastguard Worker
rsvp_print_opt(struct filter_util * qu,FILE * f,struct rtattr * opt,__u32 handle)328*de1e4e89SAndroid Build Coastguard Worker static int rsvp_print_opt(struct filter_util *qu, FILE *f, struct rtattr *opt, __u32 handle)
329*de1e4e89SAndroid Build Coastguard Worker {
330*de1e4e89SAndroid Build Coastguard Worker int family = strcmp(qu->id, "rsvp") == 0 ? AF_INET : AF_INET6;
331*de1e4e89SAndroid Build Coastguard Worker struct rtattr *tb[TCA_RSVP_MAX+1];
332*de1e4e89SAndroid Build Coastguard Worker struct tc_rsvp_pinfo *pinfo = NULL;
333*de1e4e89SAndroid Build Coastguard Worker
334*de1e4e89SAndroid Build Coastguard Worker if (opt == NULL)
335*de1e4e89SAndroid Build Coastguard Worker return 0;
336*de1e4e89SAndroid Build Coastguard Worker
337*de1e4e89SAndroid Build Coastguard Worker parse_rtattr_nested(tb, TCA_RSVP_MAX, opt);
338*de1e4e89SAndroid Build Coastguard Worker
339*de1e4e89SAndroid Build Coastguard Worker if (handle)
340*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "fh 0x%08x ", handle);
341*de1e4e89SAndroid Build Coastguard Worker
342*de1e4e89SAndroid Build Coastguard Worker if (tb[TCA_RSVP_PINFO]) {
343*de1e4e89SAndroid Build Coastguard Worker if (RTA_PAYLOAD(tb[TCA_RSVP_PINFO]) < sizeof(*pinfo))
344*de1e4e89SAndroid Build Coastguard Worker return -1;
345*de1e4e89SAndroid Build Coastguard Worker
346*de1e4e89SAndroid Build Coastguard Worker pinfo = RTA_DATA(tb[TCA_RSVP_PINFO]);
347*de1e4e89SAndroid Build Coastguard Worker }
348*de1e4e89SAndroid Build Coastguard Worker
349*de1e4e89SAndroid Build Coastguard Worker if (tb[TCA_RSVP_CLASSID]) {
350*de1e4e89SAndroid Build Coastguard Worker SPRINT_BUF(b1);
351*de1e4e89SAndroid Build Coastguard Worker if (!pinfo || pinfo->tunnelhdr == 0)
352*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "flowid %s ", sprint_tc_classid(rta_getattr_u32(tb[TCA_RSVP_CLASSID]), b1));
353*de1e4e89SAndroid Build Coastguard Worker else
354*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "tunnel %d skip %d ", rta_getattr_u32(tb[TCA_RSVP_CLASSID]), pinfo->tunnelhdr);
355*de1e4e89SAndroid Build Coastguard Worker } else if (pinfo && pinfo->tunnelhdr)
356*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "tunnel [BAD] skip %d ", pinfo->tunnelhdr);
357*de1e4e89SAndroid Build Coastguard Worker
358*de1e4e89SAndroid Build Coastguard Worker if (tb[TCA_RSVP_DST]) {
359*de1e4e89SAndroid Build Coastguard Worker char buf[128];
360*de1e4e89SAndroid Build Coastguard Worker
361*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "session ");
362*de1e4e89SAndroid Build Coastguard Worker if (inet_ntop(family, RTA_DATA(tb[TCA_RSVP_DST]), buf, sizeof(buf)) == 0)
363*de1e4e89SAndroid Build Coastguard Worker fprintf(f, " [INVALID DADDR] ");
364*de1e4e89SAndroid Build Coastguard Worker else
365*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "%s", buf);
366*de1e4e89SAndroid Build Coastguard Worker if (pinfo && pinfo->dpi.mask) {
367*de1e4e89SAndroid Build Coastguard Worker SPRINT_BUF(b2);
368*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "%s ", sprint_spi(&pinfo->dpi, 1, b2));
369*de1e4e89SAndroid Build Coastguard Worker } else
370*de1e4e89SAndroid Build Coastguard Worker fprintf(f, " ");
371*de1e4e89SAndroid Build Coastguard Worker } else {
372*de1e4e89SAndroid Build Coastguard Worker if (pinfo && pinfo->dpi.mask) {
373*de1e4e89SAndroid Build Coastguard Worker SPRINT_BUF(b2);
374*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "session [NONE]%s ", sprint_spi(&pinfo->dpi, 1, b2));
375*de1e4e89SAndroid Build Coastguard Worker } else
376*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "session NONE ");
377*de1e4e89SAndroid Build Coastguard Worker }
378*de1e4e89SAndroid Build Coastguard Worker
379*de1e4e89SAndroid Build Coastguard Worker if (pinfo && pinfo->protocol) {
380*de1e4e89SAndroid Build Coastguard Worker SPRINT_BUF(b1);
381*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "ipproto %s ", inet_proto_n2a(pinfo->protocol, b1, sizeof(b1)));
382*de1e4e89SAndroid Build Coastguard Worker }
383*de1e4e89SAndroid Build Coastguard Worker if (pinfo && pinfo->tunnelid)
384*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "tunnelid %d ", pinfo->tunnelid);
385*de1e4e89SAndroid Build Coastguard Worker if (tb[TCA_RSVP_SRC]) {
386*de1e4e89SAndroid Build Coastguard Worker char buf[128];
387*de1e4e89SAndroid Build Coastguard Worker
388*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "sender ");
389*de1e4e89SAndroid Build Coastguard Worker if (inet_ntop(family, RTA_DATA(tb[TCA_RSVP_SRC]), buf, sizeof(buf)) == 0) {
390*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "[BAD]");
391*de1e4e89SAndroid Build Coastguard Worker } else {
392*de1e4e89SAndroid Build Coastguard Worker fprintf(f, " %s", buf);
393*de1e4e89SAndroid Build Coastguard Worker }
394*de1e4e89SAndroid Build Coastguard Worker if (pinfo && pinfo->spi.mask) {
395*de1e4e89SAndroid Build Coastguard Worker SPRINT_BUF(b2);
396*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "%s ", sprint_spi(&pinfo->spi, 0, b2));
397*de1e4e89SAndroid Build Coastguard Worker } else
398*de1e4e89SAndroid Build Coastguard Worker fprintf(f, " ");
399*de1e4e89SAndroid Build Coastguard Worker } else if (pinfo && pinfo->spi.mask) {
400*de1e4e89SAndroid Build Coastguard Worker SPRINT_BUF(b2);
401*de1e4e89SAndroid Build Coastguard Worker fprintf(f, "sender [NONE]%s ", sprint_spi(&pinfo->spi, 0, b2));
402*de1e4e89SAndroid Build Coastguard Worker }
403*de1e4e89SAndroid Build Coastguard Worker
404*de1e4e89SAndroid Build Coastguard Worker if (tb[TCA_RSVP_ACT]) {
405*de1e4e89SAndroid Build Coastguard Worker tc_print_action(f, tb[TCA_RSVP_ACT], 0);
406*de1e4e89SAndroid Build Coastguard Worker }
407*de1e4e89SAndroid Build Coastguard Worker if (tb[TCA_RSVP_POLICE])
408*de1e4e89SAndroid Build Coastguard Worker tc_print_police(f, tb[TCA_RSVP_POLICE]);
409*de1e4e89SAndroid Build Coastguard Worker return 0;
410*de1e4e89SAndroid Build Coastguard Worker }
411*de1e4e89SAndroid Build Coastguard Worker
412*de1e4e89SAndroid Build Coastguard Worker struct filter_util rsvp_filter_util = {
413*de1e4e89SAndroid Build Coastguard Worker .id = "rsvp",
414*de1e4e89SAndroid Build Coastguard Worker .parse_fopt = rsvp_parse_opt,
415*de1e4e89SAndroid Build Coastguard Worker .print_fopt = rsvp_print_opt,
416*de1e4e89SAndroid Build Coastguard Worker };
417*de1e4e89SAndroid Build Coastguard Worker
418*de1e4e89SAndroid Build Coastguard Worker struct filter_util rsvp6_filter_util = {
419*de1e4e89SAndroid Build Coastguard Worker .id = "rsvp6",
420*de1e4e89SAndroid Build Coastguard Worker .parse_fopt = rsvp_parse_opt,
421*de1e4e89SAndroid Build Coastguard Worker .print_fopt = rsvp_print_opt,
422*de1e4e89SAndroid Build Coastguard Worker };
423