summaryrefslogblamecommitdiffstats
path: root/net/ipv4/netfilter/ipt_TTL.c
blob: 64be31c22ba9eb4aac423865fc640e835cca86fb (plain) (tree) 
5f2c3b910744 ^














6709dbbb1978 ^

5f2c3b910744 ^






e905a9edab7f ^

c49867347404 ^



fe1cb10873b4 ^

5f2c3b910744 ^



5f2c3b910744 ^



























43bc0ca7eadc ^


5f2c3b910744 ^

5f2c3b910744 ^


6709dbbb1978 ^

5f2c3b910744 ^



2e4e6a17af35 ^

c49867347404 ^

5f2c3b910744 ^

5f2c3b910744 ^




5f2c3b910744 ^

e905a9edab7f ^

5f2c3b910744 ^



5f2c3b910744 ^


5f2c3b910744 ^



6709dbbb1978 ^

5f2c3b910744 ^

6709dbbb1978 ^

e905a9edab7f ^

1d5cd90976fa ^


e905a9edab7f ^

5f2c3b910744 ^



65b4b4e81a50 ^

5f2c3b910744 ^

6709dbbb1978 ^

5f2c3b910744 ^


65b4b4e81a50 ^

5f2c3b910744 ^

6709dbbb1978 ^

5f2c3b910744 ^


65b4b4e81a50 ^


1
2
3
4
5
6
7
8
9
10
11
12
13
14

15

16
17
18
19
20
21

22

23
24
25

26

27
28
29

30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56

57
58

59

60
61

62

63
64
65

66

67

68

69
70
71
72

73

74

75
76
77

78
79

80
81
82

83

84

85

86

87
88

89

90
91
92

93

94

95

96
97

98

99

100

101
102

103
104














                                                                       
                                     





                                                        
                   


                                                                         
                                    


                                                   


























                                                       

                                                                   
                                   

         
                           


                                                    
                              
                                               
                               



                                             
                                           
                                                                            


                                    

                                                            


                 
                                   
                                
                                  
                                         

                                                      
                                             


                                      
                                    
 
                                            

 
                                     
 
                                       

 

                          
/* TTL modification target for IP tables
 * (C) 2000,2005 by Harald Welte <laforge@netfilter.org>
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License version 2 as
 * published by the Free Software Foundation.
 *
 */

#include <linux/module.h>
#include <linux/skbuff.h>
#include <linux/ip.h>
#include <net/checksum.h>

#include <linux/netfilter/x_tables.h>
#include <linux/netfilter_ipv4/ipt_TTL.h>

MODULE_AUTHOR("Harald Welte <laforge@netfilter.org>");
MODULE_DESCRIPTION("IP tables TTL modification module");
MODULE_LICENSE("GPL");

static unsigned int
ipt_ttl_target(struct sk_buff **pskb,
	       const struct net_device *in, const struct net_device *out,
	       unsigned int hooknum, const struct xt_target *target,
	       const void *targinfo)
{
	struct iphdr *iph;
	const struct ipt_TTL_info *info = targinfo;
	int new_ttl;

	if (!skb_make_writable(pskb, (*pskb)->len))
		return NF_DROP;

	iph = (*pskb)->nh.iph;

	switch (info->mode) {
		case IPT_TTL_SET:
			new_ttl = info->ttl;
			break;
		case IPT_TTL_INC:
			new_ttl = iph->ttl + info->ttl;
			if (new_ttl > 255)
				new_ttl = 255;
			break;
		case IPT_TTL_DEC:
			new_ttl = iph->ttl - info->ttl;
			if (new_ttl < 0)
				new_ttl = 0;
			break;
		default:
			new_ttl = iph->ttl;
			break;
	}

	if (new_ttl != iph->ttl) {
		nf_csum_replace2(&iph->check, htons(iph->ttl << 8),
					      htons(new_ttl << 8));
		iph->ttl = new_ttl;
	}

	return XT_CONTINUE;
}

static int ipt_ttl_checkentry(const char *tablename,
		const void *e,
		const struct xt_target *target,
		void *targinfo,
		unsigned int hook_mask)
{
	struct ipt_TTL_info *info = targinfo;

	if (info->mode > IPT_TTL_MAXMODE) {
		printk(KERN_WARNING "ipt_TTL: invalid or unknown Mode %u\n",
			info->mode);
		return 0;
	}
	if ((info->mode != IPT_TTL_SET) && (info->ttl == 0))
		return 0;
	return 1;
}

static struct xt_target ipt_TTL = {
	.name 		= "TTL",
	.family		= AF_INET,
	.target 	= ipt_ttl_target,
	.targetsize	= sizeof(struct ipt_TTL_info),
	.table		= "mangle",
	.checkentry 	= ipt_ttl_checkentry,
	.me 		= THIS_MODULE,
};

static int __init ipt_ttl_init(void)
{
	return xt_register_target(&ipt_TTL);
}

static void __exit ipt_ttl_fini(void)
{
	xt_unregister_target(&ipt_TTL);
}

module_init(ipt_ttl_init);
module_exit(ipt_ttl_fini);
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2024-07-16 04:53:48 +0200