[netfilter-cvslog] r7420 - trunk/conntrack-tools/extensions
pablo at netfilter.org
pablo at netfilter.org
Tue Mar 25 15:38:51 CET 2008
Author: pablo at netfilter.org
Date: 2008-03-25 15:38:51 +0100 (Tue, 25 Mar 2008)
New Revision: 7420
Added:
trunk/conntrack-tools/extensions/libct_proto_icmpv6.c
Log:
add missing libct_proto_icmpv6.c
Added: trunk/conntrack-tools/extensions/libct_proto_icmpv6.c
===================================================================
--- trunk/conntrack-tools/extensions/libct_proto_icmpv6.c (rev 0)
+++ trunk/conntrack-tools/extensions/libct_proto_icmpv6.c 2008-03-25 14:38:51 UTC (rev 7420)
@@ -0,0 +1,129 @@
+/*
+ * (C) 2008 by Krzysztof Piotr Oledzki <ole at ans.pl>
+ *
+ * Based on libct_proto_icmp.c:
+ * (C) 2005-2007 by Pablo Neira Ayuso <pablo at netfilter.org>
+ * 2005 by Harald Welte <laforge at netfilter.org>
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2 of the License, or
+ * (at your option) any later version.
+ *
+ */
+
+#include "conntrack.h"
+
+#include <stdio.h>
+#include <getopt.h>
+#include <stdlib.h>
+#include <netinet/in.h> /* For htons */
+#include <netinet/icmp6.h>
+#include <libnetfilter_conntrack/libnetfilter_conntrack.h>
+#include <libnetfilter_conntrack/libnetfilter_conntrack_icmp.h>
+
+static struct option opts[] = {
+ { "icmpv6-type", 1, 0, '1' },
+ { "icmpv6-code", 1, 0, '2' },
+ { "icmpv6-id", 1, 0, '3' },
+ { 0, 0, 0, 0 },
+};
+
+#define ICMPV6_NUMBER_OF_OPT 4
+
+static const char *icmpv6_optflags[ICMPV6_NUMBER_OF_OPT] = {
+ "icmpv6-type", "icmpv6-code", "icmpv6-id"
+};
+
+static char icmpv6_commands_v_options[NUMBER_OF_CMD][ICMPV6_NUMBER_OF_OPT] =
+/* Well, it's better than "Re: Maradona vs Pele" */
+{
+ /* 1 2 3 */
+/*CT_LIST*/ {2,2,2},
+/*CT_CREATE*/ {1,1,2},
+/*CT_UPDATE*/ {1,1,2},
+/*CT_DELETE*/ {1,1,2},
+/*CT_GET*/ {1,1,2},
+/*CT_FLUSH*/ {0,0,0},
+/*CT_EVENT*/ {2,2,2},
+/*CT_VERSION*/ {0,0,0},
+/*CT_HELP*/ {0,0,0},
+/*EXP_LIST*/ {0,0,0},
+/*EXP_CREATE*/ {0,0,0},
+/*EXP_DELETE*/ {0,0,0},
+/*EXP_GET*/ {0,0,0},
+/*EXP_FLUSH*/ {0,0,0},
+/*EXP_EVENT*/ {0,0,0},
+};
+
+static void help(void)
+{
+ fprintf(stdout, " --icmpv6-type\t\t\ticmpv6 type\n");
+ fprintf(stdout, " --icmpv6-code\t\t\ticmpv6 code\n");
+ fprintf(stdout, " --icmpv6-id\t\t\ticmpv6 id\n");
+}
+
+static int parse(char c,
+ struct nf_conntrack *ct,
+ struct nf_conntrack *exptuple,
+ struct nf_conntrack *mask,
+ unsigned int *flags)
+{
+ switch(c) {
+ case '1':
+ if (!optarg)
+ break;
+
+ nfct_set_attr_u8(ct,
+ ATTR_ICMP_TYPE,
+ atoi(optarg));
+ *flags |= ICMP_TYPE;
+ break;
+
+ case '2':
+ if (!optarg)
+ break;
+
+ nfct_set_attr_u8(ct,
+ ATTR_ICMP_CODE,
+ atoi(optarg));
+ *flags |= ICMP_CODE;
+ break;
+
+ case '3':
+ if (!optarg)
+ break;
+
+ nfct_set_attr_u16(ct,
+ ATTR_ICMP_ID,
+ htons(atoi(optarg)));
+ *flags |= ICMP_ID;
+ break;
+ }
+ return 1;
+}
+
+static void final_check(unsigned int flags,
+ unsigned int cmd,
+ struct nf_conntrack *ct)
+{
+ generic_opt_check(flags,
+ ICMPV6_NUMBER_OF_OPT,
+ icmpv6_commands_v_options[cmd],
+ icmpv6_optflags);
+}
+
+static struct ctproto_handler icmpv6 = {
+ .name = "icmpv6",
+ .protonum = IPPROTO_ICMPV6,
+ .parse_opts = parse,
+ .final_check = final_check,
+ .help = help,
+ .opts = opts,
+ .version = VERSION,
+};
+
+void register_icmpv6(void)
+{
+ register_proto(&icmpv6);
+}
More information about the netfilter-cvslog
mailing list