-/*
- * This is a module which is used for counting packets.
- */
+/***************************************************************************
+ * This is a module which is used for counting packets. *
+ * See http://www.intra2net.com/opensource/ipt_ACCOUNT *
+ * for further information *
+ * *
+ * Copyright (C) 2004 by Intra2net AG *
+ * opensource@intra2net.com *
+ * *
+ * This program is free software; you can redistribute it and/or modify *
+ * it under the terms of the GNU General Public License *
+ * version 2 as published by the Free Software Foundation; *
+ * *
+ ***************************************************************************/
+
#include <linux/module.h>
#include <linux/skbuff.h>
#include <linux/ip.h>
#include <net/route.h>
#include <linux/netfilter_ipv4/ipt_ACCOUNT.h>
-//#if 0
+#if 0
#define DEBUGP printk
-//#else
-//#define DEBUGP(format, args...)
-//#endif
+#else
+#define DEBUGP(format, args...)
+#endif
struct ipt_account_table *ipt_account_tables = NULL;
struct ipt_account_handle *ipt_account_handles = NULL;
printk("ACCOUNT: calculated netsize: %u -> ipt_account_table depth %u\n", netsize, ipt_account_tables[i].depth);
ipt_account_tables[i].refcount++;
- if (!(ipt_account_tables[i].data = (void *)get_zeroed_page(GFP_KERNEL)))
+ if ((ipt_account_tables[i].data = (void *)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: out of memory for data of table: %s\n", name);
memset(&ipt_account_tables[i], 0, sizeof(struct ipt_account_table));
DEBUGP("ACCOUNT: Calculated SRC 16 bit network slot: %d\n", slot);
// Do we need to create a new mask_24 bucket?
- if (!mask_16->mask_24[slot] && !(mask_16->mask_24[slot] = (void *)get_zeroed_page(GFP_KERNEL)))
+ if (!mask_16->mask_24[slot] && (mask_16->mask_24[slot] = (void *)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: Can't process packet because out of memory!\n");
return;
DEBUGP("ACCOUNT: Calculated DST 16 bit network slot: %d\n", slot);
// Do we need to create a new mask_24 bucket?
- if (!mask_16->mask_24[slot] && !(mask_16->mask_24[slot] = (void *)get_zeroed_page(GFP_KERNEL)))
+ if (!mask_16->mask_24[slot] && (mask_16->mask_24[slot] = (void *)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUT: Can't process packet because out of memory!\n");
return;
DEBUGP("ACCOUNT: Calculated SRC 24 bit network slot: %d\n", slot);
// Do we need to create a new mask_24 bucket?
- if (!mask_8->mask_16[slot] && !(mask_8->mask_16[slot] = (void *)get_zeroed_page(GFP_KERNEL)))
+ if (!mask_8->mask_16[slot] && (mask_8->mask_16[slot] = (void *)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: Can't process packet because out of memory!\n");
return;
DEBUGP("ACCOUNT: Calculated DST 24 bit network slot: %d\n", slot);
// Do we need to create a new mask_24 bucket?
- if (!mask_8->mask_16[slot] && !(mask_8->mask_16[slot] = (void *)get_zeroed_page(GFP_KERNEL)))
+ if (!mask_8->mask_16[slot] && (mask_8->mask_16[slot] = (void *)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: Can't process packet because out of memory!\n");
return;
ipt_account_handles[handle].itemcount = ipt_account_tables[table_nr].itemcount;
// allocate "root" table
- if (!(ipt_account_handles[handle].data = (void*)get_zeroed_page(GFP_KERNEL)))
+ if ((ipt_account_handles[handle].data = (void*)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: out of memory for root table in ipt_account_handle_prepare_read()\n");
memset (&ipt_account_handles[handle], 0, sizeof(struct ipt_account_handle));
{
if (src_16->mask_24[b])
{
- if (!(network_16->mask_24[b] = (void*)get_zeroed_page(GFP_KERNEL)))
+ if ((network_16->mask_24[b] = (void*)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: out of memory during copy of 16 bit network in ipt_account_handle_prepare_read()\n");
ipt_account_data_free(ipt_account_handles[handle].data, depth);
{
if (src_8->mask_16[a])
{
- if (!(network_8->mask_16[a] = (void*)get_zeroed_page(GFP_KERNEL)))
+ if ((network_8->mask_16[a] = (void*)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: out of memory during copy of 24 bit network in ipt_account_handle_prepare_read()\n");
ipt_account_data_free(ipt_account_handles[handle].data, depth);
{
if (src_16->mask_24[b])
{
- if (!(network_16->mask_24[b] = (void*)get_zeroed_page(GFP_KERNEL)))
+ if ((network_16->mask_24[b] = (void*)get_zeroed_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: out of memory during copy of 16 bit network in ipt_account_handle_prepare_read()\n");
ipt_account_data_free(ipt_account_handles[handle].data, depth);
ret = ipt_account_handle_free(handle.handle_nr);
spin_unlock_bh(&ipt_account_userspace_lock);
break;
+ case IPT_SO_SET_ACCOUNT_HANDLE_FREE_ALL:
+ {
+ unsigned int i;
+ spin_lock_bh(&ipt_account_userspace_lock);
+ for (i = 0; i < ACCOUNT_MAX_HANDLES; i++)
+ ipt_account_handle_free(i);
+ spin_unlock_bh(&ipt_account_userspace_lock);
+ ret = 0;
+ break;
+ }
default:
printk("ACCOUNT: ipt_account_set_ctl: unknown request %i\n", cmd);
}
{
printk("ACCOUNT: ipt_account_get_ctl: not enough space (%u < %u) to store data from IPT_SO_GET_ACCOUNT_GET_DATA\n",
*len, ipt_account_handles[handle.handle_nr].itemcount*sizeof(struct ipt_account_handle_ip));
+ ret = -ENOMEM;
break;
}
ret = 0;
break;
-
+ case IPT_SO_GET_ACCOUNT_GET_HANDLE_USAGE:
+ {
+ if (*len < sizeof(struct ipt_account_handle_sockopt))
+ {
+ printk("ACCOUNT: ipt_account_get_ctl: wrong data size (%u != %u) for IPT_SO_GET_ACCOUNT_GET_HANDLE_USAGE\n",
+ *len, sizeof(struct ipt_account_handle_sockopt));
+ break;
+ }
+
+ // Find out how many handles are in use
+ unsigned int i;
+ handle.itemcount = 0;
+ spin_lock_bh(&ipt_account_userspace_lock);
+ for (i = 0; i < ACCOUNT_MAX_HANDLES; i++)
+ if (ipt_account_handles[i].data)
+ handle.itemcount++;
+ spin_unlock_bh(&ipt_account_userspace_lock);
+
+ if (copy_to_user(user, &handle, sizeof(struct ipt_account_handle_sockopt)))
+ {
+ printk("ACCOUNT: ipt_account_set_ctl: copy_to_user failed for IPT_SO_GET_ACCOUNT_GET_HANDLE_USAGE\n");
+ break;
+ }
+ ret = 0;
+ break;
+ }
+ case IPT_SO_GET_ACCOUNT_GET_TABLE_NAMES:
+ {
+ spin_lock_bh(&ipt_account_lock);
+
+ // Determine size of table names
+ unsigned int size = 0, i;
+ for (i = 0; i < ACCOUNT_MAX_TABLES; i++)
+ {
+ if (ipt_account_tables[i].name[0] != 0)
+ size += strlen (ipt_account_tables[i].name) + 1;
+ }
+ size += 1; // Terminating NULL character
+
+ if (*len < size)
+ {
+ spin_unlock_bh(&ipt_account_lock);
+ printk("ACCOUNT: ipt_account_get_ctl: not enough space (%u < %u) to store table names\n", *len, size);
+ ret = -ENOMEM;
+ break;
+ }
+ // Copy table names to userspace
+ char *tnames = user;
+ for (i = 0; i < ACCOUNT_MAX_TABLES; i++)
+ {
+ if (ipt_account_tables[i].name[0] != 0)
+ {
+ int len = strlen (ipt_account_tables[i].name) + 1;
+ copy_to_user(tnames, ipt_account_tables[i].name, len); // copy string + terminating zero
+ tnames += len;
+ }
+ }
+ // Append terminating zero
+ i = 0;
+ copy_to_user(tnames, &i, 1);
+ spin_unlock_bh(&ipt_account_lock);
+ ret = 0;
+ break;
+ }
default:
printk("ACCOUNT: ipt_account_get_ctl: unknown request %i\n", cmd);
}
return -EINVAL;
}
- if (!(ipt_account_tables = kmalloc(ACCOUNT_MAX_TABLES*sizeof(struct ipt_account_table), GFP_KERNEL)))
+ if ((ipt_account_tables = kmalloc(ACCOUNT_MAX_TABLES*sizeof(struct ipt_account_table), GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: Out of memory allocating account_tables structure");
return -EINVAL;
}
memset(ipt_account_tables, 0, ACCOUNT_MAX_TABLES*sizeof(struct ipt_account_table));
- if (!(ipt_account_handles = kmalloc(ACCOUNT_MAX_HANDLES*sizeof(struct ipt_account_handle), GFP_KERNEL)))
+ if ((ipt_account_handles = kmalloc(ACCOUNT_MAX_HANDLES*sizeof(struct ipt_account_handle), GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: Out of memory allocating account_handles structure");
kfree (ipt_account_tables);
if ((ipt_account_tmpbuf = (void*)__get_free_page(GFP_KERNEL)) == NULL)
{
printk("ACCOUNT: Out of memory for temporary buffer page\n");
- kfree (ipt_account_tables);
- kfree (ipt_account_handles);
+ kfree(ipt_account_tables);
+ kfree(ipt_account_handles);
ipt_account_tables = NULL;
ipt_account_handles = NULL;
return -EINVAL;
{
printk("ACCOUNT: Can't register sockopts. Aborting\n");
- kfree (ipt_account_tables);
- ipt_account_tables = NULL;
+ kfree(ipt_account_tables);
kfree(ipt_account_handles);
+ free_page((unsigned long)ipt_account_tmpbuf);
+ ipt_account_tables = NULL;
ipt_account_handles = NULL;
+ ipt_account_tmpbuf = NULL;
return -EINVAL;
}
nf_unregister_sockopt(&ipt_account_sockopts);
kfree(ipt_account_tables);
- ipt_account_tables = NULL;
-
kfree(ipt_account_handles);
+ free_page((unsigned long)ipt_account_tmpbuf);
+
+ ipt_account_tables = NULL;
ipt_account_handles = NULL;
+ ipt_account_tmpbuf = NULL;
}
module_init(init);
git://developer.intra2net.com / ipt_ACCOUNT / blobdiff