2006-10-04 10:47:05 +04:00
/*
* xfrm4_mode_beet . c - BEET mode encapsulation for IPv4 .
*
* Copyright ( c ) 2006 Diego Beltrami < diego . beltrami @ gmail . com >
* Miika Komu < miika @ iki . fi >
* Herbert Xu < herbert @ gondor . apana . org . au >
* Abhinav Pathak < abhinav . pathak @ hiit . fi >
* Jeff Ahrenholz < ahrenholz @ gmail . com >
*/
# include <linux/init.h>
# include <linux/kernel.h>
# include <linux/module.h>
# include <linux/skbuff.h>
# include <linux/stringify.h>
# include <net/dst.h>
# include <net/ip.h>
# include <net/xfrm.h>
2007-11-14 08:41:28 +03:00
static void xfrm4_beet_make_header ( struct sk_buff * skb )
{
struct iphdr * iph = ip_hdr ( skb ) ;
iph - > ihl = 5 ;
iph - > version = 4 ;
iph - > protocol = XFRM_MODE_SKB_CB ( skb ) - > protocol ;
iph - > tos = XFRM_MODE_SKB_CB ( skb ) - > tos ;
iph - > id = XFRM_MODE_SKB_CB ( skb ) - > id ;
iph - > frag_off = XFRM_MODE_SKB_CB ( skb ) - > frag_off ;
iph - > ttl = XFRM_MODE_SKB_CB ( skb ) - > ttl ;
}
2006-10-04 10:47:05 +04:00
/* Add encapsulation header.
*
* The top IP header will be constructed per draft - nikander - esp - beet - mode - 06. txt .
*/
static int xfrm4_beet_output ( struct xfrm_state * x , struct sk_buff * skb )
{
2007-10-11 02:44:44 +04:00
struct ip_beet_phdr * ph ;
2008-03-27 02:51:09 +03:00
struct iphdr * top_iph ;
2006-10-04 10:47:05 +04:00
int hdrlen , optlen ;
hdrlen = 0 ;
2008-03-27 02:51:09 +03:00
optlen = XFRM_MODE_SKB_CB ( skb ) - > optlen ;
2006-10-04 10:47:05 +04:00
if ( unlikely ( optlen ) )
hdrlen + = IPV4_BEET_PHMAXLEN - ( optlen & 4 ) ;
2008-08-06 13:39:30 +04:00
skb_set_network_header ( skb , - x - > props . header_len -
hdrlen + ( XFRM_MODE_SKB_CB ( skb ) - > ihl - sizeof ( * top_iph ) ) ) ;
if ( x - > sel . family ! = AF_INET6 )
skb - > network_header + = IPV4_BEET_PHMAXLEN ;
2007-10-11 02:44:44 +04:00
skb - > mac_header = skb - > network_header +
offsetof ( struct iphdr , protocol ) ;
2008-03-27 02:51:09 +03:00
skb - > transport_header = skb - > network_header + sizeof ( * top_iph ) ;
2007-10-11 02:44:44 +04:00
2007-11-14 08:41:28 +03:00
xfrm4_beet_make_header ( skb ) ;
2008-03-27 02:51:09 +03:00
ph = ( struct ip_beet_phdr * )
__skb_pull ( skb , XFRM_MODE_SKB_CB ( skb ) - > ihl - hdrlen ) ;
2006-10-04 10:47:05 +04:00
2007-10-11 02:44:44 +04:00
top_iph = ip_hdr ( skb ) ;
2007-11-14 08:40:52 +03:00
2006-10-04 10:47:05 +04:00
if ( unlikely ( optlen ) ) {
BUG_ON ( optlen < 0 ) ;
ph - > padlen = 4 - ( optlen & 4 ) ;
2007-04-24 09:39:02 +04:00
ph - > hdrlen = optlen / 8 ;
2006-10-04 10:47:05 +04:00
ph - > nexthdr = top_iph - > protocol ;
2007-04-06 02:54:39 +04:00
if ( ph - > padlen )
memset ( ph + 1 , IPOPT_NOP , ph - > padlen ) ;
2006-10-04 10:47:05 +04:00
top_iph - > protocol = IPPROTO_BEETPH ;
top_iph - > ihl = sizeof ( struct iphdr ) / 4 ;
}
top_iph - > saddr = x - > props . saddr . a4 ;
top_iph - > daddr = x - > id . daddr . a4 ;
return 0 ;
}
static int xfrm4_beet_input ( struct xfrm_state * x , struct sk_buff * skb )
{
2007-11-14 08:41:28 +03:00
struct iphdr * iph ;
2006-10-04 10:47:05 +04:00
int optlen = 0 ;
int err = - EINVAL ;
2007-11-14 08:41:28 +03:00
if ( unlikely ( XFRM_MODE_SKB_CB ( skb ) - > protocol = = IPPROTO_BEETPH ) ) {
2007-04-06 03:03:33 +04:00
struct ip_beet_phdr * ph ;
2007-11-14 08:41:28 +03:00
int phlen ;
2006-10-04 10:47:05 +04:00
if ( ! pskb_may_pull ( skb , sizeof ( * ph ) ) )
goto out ;
2007-11-14 08:41:28 +03:00
ph = ( struct ip_beet_phdr * ) skb - > data ;
2006-10-04 10:47:05 +04:00
2007-04-06 02:59:41 +04:00
phlen = sizeof ( * ph ) + ph - > padlen ;
2007-04-24 09:39:02 +04:00
optlen = ph - > hdrlen * 8 + ( IPV4_BEET_PHMAXLEN - phlen ) ;
2006-10-04 10:47:05 +04:00
if ( optlen < 0 | | optlen & 3 | | optlen > 250 )
goto out ;
2007-11-14 08:41:28 +03:00
XFRM_MODE_SKB_CB ( skb ) - > protocol = ph - > nexthdr ;
2006-10-04 10:47:05 +04:00
2008-02-05 13:51:39 +03:00
if ( ! pskb_may_pull ( skb , phlen ) )
2007-11-14 08:41:28 +03:00
goto out ;
__skb_pull ( skb , phlen ) ;
2006-10-04 10:47:05 +04:00
}
2007-11-14 08:41:28 +03:00
skb_push ( skb , sizeof ( * iph ) ) ;
skb_reset_network_header ( skb ) ;
memmove ( skb - > data - skb - > mac_len , skb_mac_header ( skb ) ,
skb - > mac_len ) ;
skb_set_mac_header ( skb , - skb - > mac_len ) ;
xfrm4_beet_make_header ( skb ) ;
2006-10-04 10:47:05 +04:00
2007-04-21 09:47:35 +04:00
iph = ip_hdr ( skb ) ;
2007-11-14 08:41:28 +03:00
iph - > ihl + = optlen / 4 ;
iph - > tot_len = htons ( skb - > len ) ;
2006-10-04 10:47:05 +04:00
iph - > daddr = x - > sel . daddr . a4 ;
iph - > saddr = x - > sel . saddr . a4 ;
iph - > check = 0 ;
2007-04-11 07:50:43 +04:00
iph - > check = ip_fast_csum ( skb_network_header ( skb ) , iph - > ihl ) ;
2006-10-04 10:47:05 +04:00
err = 0 ;
out :
return err ;
}
static struct xfrm_mode xfrm4_beet_mode = {
2007-11-14 08:41:28 +03:00
. input2 = xfrm4_beet_input ,
. input = xfrm_prepare_input ,
2007-11-14 08:40:52 +03:00
. output2 = xfrm4_beet_output ,
. output = xfrm4_prepare_output ,
2006-10-04 10:47:05 +04:00
. owner = THIS_MODULE ,
. encap = XFRM_MODE_BEET ,
2007-10-18 08:31:50 +04:00
. flags = XFRM_MODE_FLAG_TUNNEL ,
2006-10-04 10:47:05 +04:00
} ;
static int __init xfrm4_beet_init ( void )
{
return xfrm_register_mode ( & xfrm4_beet_mode , AF_INET ) ;
}
static void __exit xfrm4_beet_exit ( void )
{
int err ;
err = xfrm_unregister_mode ( & xfrm4_beet_mode , AF_INET ) ;
BUG_ON ( err ) ;
}
module_init ( xfrm4_beet_init ) ;
module_exit ( xfrm4_beet_exit ) ;
MODULE_LICENSE ( " GPL " ) ;
MODULE_ALIAS_XFRM_MODE ( AF_INET , XFRM_MODE_BEET ) ;