X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;ds=sidebyside;f=extensions%2Flibipt_connmark.c;h=5bb249127646fe011fdebe512e45919813900216;hb=6afea0b41dfbc3824956d11d960ad80097218feb;hp=8f81f02b0800a5fc563f7144e126c23acdd69a78;hpb=f7b70cf9e00324b89b02de213bcd0dde7044d035;p=iptables.git diff --git a/extensions/libipt_connmark.c b/extensions/libipt_connmark.c index 8f81f02..5bb2491 100644 --- a/extensions/libipt_connmark.c +++ b/extensions/libipt_connmark.c @@ -1,4 +1,24 @@ -/* Shared library add-on to iptables to add CONNMARK matching support. */ +/* Shared library add-on to iptables to add connmark matching support. + * + * (C) 2002,2004 MARA Systems AB + * by Henrik Nordstrom + * + * Version 1.1 + * + * This program is free software; you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation; either version 2 of the License, or + * (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA + */ #include #include #include @@ -6,7 +26,7 @@ #include #include -#include +#include "../include/linux/netfilter_ipv4/ipt_connmark.h" /* Function which prints out usage message. */ static void @@ -46,11 +66,17 @@ parse(int c, char **argv, int invert, unsigned int *flags, char *end; case '1': check_inverse(optarg, &invert, &optind, 0); +#ifdef KERNEL_64_USERSPACE_32 + markinfo->mark = strtoull(optarg, &end, 0); + markinfo->mask = ~0ULL; + if (*end == '/') + markinfo->mask = strtoull(end+1, &end, 0); +#else markinfo->mark = strtoul(optarg, &end, 0); - if (*end == '/') { + markinfo->mask = ~0UL; + if (*end == '/') markinfo->mask = strtoul(end+1, &end, 0); - } else - markinfo->mask = 0xffffffff; +#endif if (*end != '\0' || end == optarg) exit_error(PARAMETER_PROBLEM, "Bad MARK value `%s'", optarg); if (invert) @@ -64,14 +90,25 @@ parse(int c, char **argv, int invert, unsigned int *flags, return 1; } +#ifdef KERNEL_64_USERSPACE_32 +static void +print_mark(unsigned long long mark, unsigned long long mask, int numeric) +{ + if(mask != ~0ULL) + printf("0x%llx/0x%llx ", mark, mask); + else + printf("0x%llx ", mark); +} +#else static void print_mark(unsigned long mark, unsigned long mask, int numeric) { - if(mask != 0xffffffff) + if(mask != ~0UL) printf("0x%lx/0x%lx ", mark, mask); else printf("0x%lx ", mark); } +#endif /* Final check; must have specified --mark. */ static void @@ -96,7 +133,7 @@ print(const struct ipt_ip *ip, print_mark(info->mark, info->mask, numeric); } -/* Saves the union ipt_matchinfo in parsable form to stdout. */ +/* Saves the matchinfo in parsable form to stdout. */ static void save(const struct ipt_ip *ip, const struct ipt_entry_match *match) { @@ -109,23 +146,21 @@ save(const struct ipt_ip *ip, const struct ipt_entry_match *match) print_mark(info->mark, info->mask, 0); } -static -struct iptables_match mark -= { NULL, - "connmark", - IPTABLES_VERSION, - IPT_ALIGN(sizeof(struct ipt_connmark_info)), - IPT_ALIGN(sizeof(struct ipt_connmark_info)), - &help, - &init, - &parse, - &final_check, - &print, - &save, - opts +static struct iptables_match connmark_match = { + .name = "connmark", + .version = IPTABLES_VERSION, + .size = IPT_ALIGN(sizeof(struct ipt_connmark_info)), + .userspacesize = IPT_ALIGN(sizeof(struct ipt_connmark_info)), + .help = &help, + .init = &init, + .parse = &parse, + .final_check = &final_check, + .print = &print, + .save = &save, + .extra_opts = opts }; void _init(void) { - register_match(&mark); + register_match(&connmark_match); }