2006-10-03 23:47:05 -07:00
/*
* xfrm4_mode_beet . c - BEET mode encapsulation for IPv4 .
*
* Copyright ( c ) 2006 Diego Beltrami < diego . beltrami @ gmail . com >
* Miika Komu < miika @ iki . fi >
* Herbert Xu < herbert @ gondor . apana . org . au >
* Abhinav Pathak < abhinav . pathak @ hiit . fi >
* Jeff Ahrenholz < ahrenholz @ gmail . com >
*/
# include <linux/init.h>
# include <linux/kernel.h>
# include <linux/module.h>
# include <linux/skbuff.h>
# include <linux/stringify.h>
# include <net/dst.h>
# include <net/ip.h>
# include <net/xfrm.h>
/* Add encapsulation header.
*
* The top IP header will be constructed per draft - nikander - esp - beet - mode - 06. txt .
*/
static int xfrm4_beet_output ( struct xfrm_state * x , struct sk_buff * skb )
{
2007-10-10 15:44:44 -07:00
struct ip_beet_phdr * ph ;
2007-04-05 16:04:04 -07:00
struct iphdr * iph , * top_iph ;
2006-10-03 23:47:05 -07:00
int hdrlen , optlen ;
2007-04-20 22:47:35 -07:00
iph = ip_hdr ( skb ) ;
2006-10-03 23:47:05 -07:00
hdrlen = 0 ;
optlen = iph - > ihl * 4 - sizeof ( * iph ) ;
if ( unlikely ( optlen ) )
hdrlen + = IPV4_BEET_PHMAXLEN - ( optlen & 4 ) ;
2007-10-10 15:44:06 -07:00
skb_set_network_header ( skb , IPV4_BEET_PHMAXLEN - x - > props . header_len -
hdrlen ) ;
2007-10-10 15:44:44 -07:00
skb - > mac_header = skb - > network_header +
offsetof ( struct iphdr , protocol ) ;
skb - > transport_header = skb - > network_header + sizeof ( * iph ) ;
ph = ( struct ip_beet_phdr * ) __skb_pull ( skb , sizeof ( * iph ) - hdrlen ) ;
2006-10-03 23:47:05 -07:00
2007-10-10 15:44:44 -07:00
top_iph = ip_hdr ( skb ) ;
2007-04-05 15:54:02 -07:00
memmove ( top_iph , iph , sizeof ( * iph ) ) ;
2006-10-03 23:47:05 -07:00
if ( unlikely ( optlen ) ) {
BUG_ON ( optlen < 0 ) ;
ph - > padlen = 4 - ( optlen & 4 ) ;
2007-04-23 22:39:02 -07:00
ph - > hdrlen = optlen / 8 ;
2006-10-03 23:47:05 -07:00
ph - > nexthdr = top_iph - > protocol ;
2007-04-05 15:54:39 -07:00
if ( ph - > padlen )
memset ( ph + 1 , IPOPT_NOP , ph - > padlen ) ;
2006-10-03 23:47:05 -07:00
top_iph - > protocol = IPPROTO_BEETPH ;
top_iph - > ihl = sizeof ( struct iphdr ) / 4 ;
}
top_iph - > saddr = x - > props . saddr . a4 ;
top_iph - > daddr = x - > id . daddr . a4 ;
return 0 ;
}
static int xfrm4_beet_input ( struct xfrm_state * x , struct sk_buff * skb )
{
2007-04-20 22:47:35 -07:00
struct iphdr * iph = ip_hdr ( skb ) ;
2006-10-03 23:47:05 -07:00
int phlen = 0 ;
int optlen = 0 ;
2007-04-05 16:04:04 -07:00
u8 ph_nexthdr = 0 ;
2006-10-03 23:47:05 -07:00
int err = - EINVAL ;
if ( unlikely ( iph - > protocol = = IPPROTO_BEETPH ) ) {
2007-04-05 16:03:33 -07:00
struct ip_beet_phdr * ph ;
2006-10-03 23:47:05 -07:00
if ( ! pskb_may_pull ( skb , sizeof ( * ph ) ) )
goto out ;
2007-04-25 18:02:22 -07:00
ph = ( struct ip_beet_phdr * ) ( ipip_hdr ( skb ) + 1 ) ;
2006-10-03 23:47:05 -07:00
2007-04-05 15:59:41 -07:00
phlen = sizeof ( * ph ) + ph - > padlen ;
2007-04-23 22:39:02 -07:00
optlen = ph - > hdrlen * 8 + ( IPV4_BEET_PHMAXLEN - phlen ) ;
2006-10-03 23:47:05 -07:00
if ( optlen < 0 | | optlen & 3 | | optlen > 250 )
goto out ;
2007-04-05 15:59:41 -07:00
if ( ! pskb_may_pull ( skb , phlen + optlen ) )
2006-10-03 23:47:05 -07:00
goto out ;
2007-04-05 16:03:33 -07:00
skb - > len - = phlen + optlen ;
2006-10-03 23:47:05 -07:00
ph_nexthdr = ph - > nexthdr ;
}
2007-04-25 18:02:22 -07:00
skb_set_network_header ( skb , phlen - sizeof ( * iph ) ) ;
2007-04-10 20:50:43 -07:00
memmove ( skb_network_header ( skb ) , iph , sizeof ( * iph ) ) ;
2007-04-25 18:02:22 -07:00
skb_set_transport_header ( skb , phlen + optlen ) ;
2007-04-19 19:55:44 -07:00
skb - > data = skb_transport_header ( skb ) ;
2006-10-03 23:47:05 -07:00
2007-04-20 22:47:35 -07:00
iph = ip_hdr ( skb ) ;
2006-10-03 23:47:05 -07:00
iph - > ihl = ( sizeof ( * iph ) + optlen ) / 4 ;
2007-04-05 15:59:41 -07:00
iph - > tot_len = htons ( skb - > len + iph - > ihl * 4 ) ;
2006-10-03 23:47:05 -07:00
iph - > daddr = x - > sel . daddr . a4 ;
iph - > saddr = x - > sel . saddr . a4 ;
if ( ph_nexthdr )
iph - > protocol = ph_nexthdr ;
iph - > check = 0 ;
2007-04-10 20:50:43 -07:00
iph - > check = ip_fast_csum ( skb_network_header ( skb ) , iph - > ihl ) ;
2006-10-03 23:47:05 -07:00
err = 0 ;
out :
return err ;
}
static struct xfrm_mode xfrm4_beet_mode = {
. input = xfrm4_beet_input ,
. output = xfrm4_beet_output ,
. owner = THIS_MODULE ,
. encap = XFRM_MODE_BEET ,
} ;
static int __init xfrm4_beet_init ( void )
{
return xfrm_register_mode ( & xfrm4_beet_mode , AF_INET ) ;
}
static void __exit xfrm4_beet_exit ( void )
{
int err ;
err = xfrm_unregister_mode ( & xfrm4_beet_mode , AF_INET ) ;
BUG_ON ( err ) ;
}
module_init ( xfrm4_beet_init ) ;
module_exit ( xfrm4_beet_exit ) ;
MODULE_LICENSE ( " GPL " ) ;
MODULE_ALIAS_XFRM_MODE ( AF_INET , XFRM_MODE_BEET ) ;