ebt_nflog.c revision 18219d3f7d6a5bc43825a41e0763158efbdb80d3 
1e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin/*
2e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin * ebt_nflog
3e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *
4e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *	Author:
5e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *	Peter Warasin <peter@endian.com>
6e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *
7e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *  February, 2008
8e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *
9e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin * Based on:
10e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *  xt_NFLOG.c, (C) 2006 by Patrick McHardy <kaber@trash.net>
11e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *  ebt_ulog.c, (C) 2004 by Bart De Schuymer <bdschuym@pandora.be>
12e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin *
13e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin */
14e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
15e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin#include <linux/module.h>
16e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin#include <linux/spinlock.h>
1718219d3f7d6a5bc43825a41e0763158efbdb80d3Jan Engelhardt#include <linux/netfilter/x_tables.h>
18e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin#include <linux/netfilter_bridge/ebtables.h>
19e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin#include <linux/netfilter_bridge/ebt_nflog.h>
20e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin#include <net/netfilter/nf_log.h>
21e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
22e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasinstatic void ebt_nflog(const struct sk_buff *skb,
23e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin		      unsigned int hooknr,
24e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin		      const struct net_device *in,
25e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin		      const struct net_device *out,
26e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin		      const void *data, unsigned int datalen)
27e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin{
28e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	struct ebt_nflog_info *info = (struct ebt_nflog_info *)data;
29e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	struct nf_loginfo li;
30e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
31e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	li.type = NF_LOG_TYPE_ULOG;
32e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	li.u.ulog.copy_len = info->len;
33e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	li.u.ulog.group = info->group;
34e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	li.u.ulog.qthreshold = info->threshold;
35e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
36e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	nf_log_packet(PF_BRIDGE, hooknr, skb, in, out, &li, "%s", info->prefix);
37e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin}
38e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
39e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasinstatic int ebt_nflog_check(const char *tablename,
40e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin			   unsigned int hookmask,
41e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin			   const struct ebt_entry *e,
42e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin			   void *data, unsigned int datalen)
43e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin{
44e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	struct ebt_nflog_info *info = (struct ebt_nflog_info *)data;
45e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
46e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	if (info->flags & ~EBT_NFLOG_MASK)
47e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin		return -EINVAL;
48e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	info->prefix[EBT_NFLOG_PREFIX_SIZE - 1] = '\0';
49e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	return 0;
50e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin}
51e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
52e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasinstatic struct ebt_watcher nflog __read_mostly = {
53e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	.name = EBT_NFLOG_WATCHER,
54e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	.watcher = ebt_nflog,
55e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	.check = ebt_nflog_check,
5618219d3f7d6a5bc43825a41e0763158efbdb80d3Jan Engelhardt	.targetsize = XT_ALIGN(sizeof(struct ebt_nflog_info)),
57e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	.me = THIS_MODULE,
58e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin};
59e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
60e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasinstatic int __init ebt_nflog_init(void)
61e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin{
62e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	return ebt_register_watcher(&nflog);
63e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin}
64e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
65e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasinstatic void __exit ebt_nflog_fini(void)
66e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin{
67e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin	ebt_unregister_watcher(&nflog);
68e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin}
69e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasin
70e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasinmodule_init(ebt_nflog_init);
71e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter Warasinmodule_exit(ebt_nflog_fini);
72e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter WarasinMODULE_LICENSE("GPL");
73e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter WarasinMODULE_AUTHOR("Peter Warasin <peter@endian.com>");
74e7bfd0a1a6c8f82977253dab19be9d9979c1ec1bPeter WarasinMODULE_DESCRIPTION("ebtables NFLOG netfilter logging module");
75