Home Explore Help
Sign In
ichrin
/
kernel_samsung_msm8974
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: TEST
Branches Tags
kernel_samsu...
/
net
/
core
/
flow_dissector.c

flow_dissector.c 3.1 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147 
  1. #include <linux/skbuff.h>
    2. 

  2. #include <linux/export.h>
    3. 

  3. #include <linux/ip.h>
    4. 

  4. #include <linux/ipv6.h>
    5. 

  5. #include <linux/if_vlan.h>
    6. 

  6. #include <net/ip.h>
    7. 

  7. #include <linux/if_tunnel.h>
    8. 

  8. #include <linux/if_pppox.h>
    9. 

  9. #include <linux/ppp_defs.h>
    10. 

  10. #include <net/flow_keys.h>
    11. 

  11. 

  12. /* copy saddr & daddr, possibly using 64bit load/store
    13. 

  13.  * Equivalent to :	flow->src = iph->saddr;
    14. 

  14.  *			flow->dst = iph->daddr;
    15. 

  15.  */
    16. 

  16. static void iph_to_flow_copy_addrs(struct flow_keys *flow, const struct iphdr *iph)
    17. 

  17. {
    18. 

  18. 	BUILD_BUG_ON(offsetof(typeof(*flow), dst) !=
    19. 

  19. 		     offsetof(typeof(*flow), src) + sizeof(flow->src));
    20. 

  20. 	memcpy(&flow->src, &iph->saddr, sizeof(flow->src) + sizeof(flow->dst));
    21. 

  21. }
    22. 

  22. 

  23. bool skb_flow_dissect(const struct sk_buff *skb, struct flow_keys *flow)
    24. 

  24. {
    25. 

  25. 	int poff, nhoff = skb_network_offset(skb);
    26. 

  26. 	u8 ip_proto;
    27. 

  27. 	__be16 proto = skb->protocol;
    28. 

  28. 

  29. 	memset(flow, 0, sizeof(*flow));
    30. 

  30. 

  31. again:
    32. 

  32. 	switch (proto) {
    33. 

  33. 	case __constant_htons(ETH_P_IP): {
    34. 

  34. 		const struct iphdr *iph;
    35. 

  35. 		struct iphdr _iph;
    36. 

  36. ip:
    37. 

  37. 		iph = skb_header_pointer(skb, nhoff, sizeof(_iph), &_iph);
    38. 

  38. 

  39. 		/* CVE-2013-4348 issue : make sure iph->ihl is not zero ... */
    40. 

  40. 		if (!iph || iph->ihl < 5)
    41. 

  41. 			return false;
    42. 

  42. 

  43. 		if (ip_is_fragment(iph))
    44. 

  44. 			ip_proto = 0;
    45. 

  45. 		else
    46. 

  46. 			ip_proto = iph->protocol;
    47. 

  47. 		iph_to_flow_copy_addrs(flow, iph);
    48. 

  48. 		nhoff += iph->ihl * 4;
    49. 

  49. 		break;
    50. 

  50. 	}
    51. 

  51. 	case __constant_htons(ETH_P_IPV6): {
    52. 

  52. 		const struct ipv6hdr *iph;
    53. 

  53. 		struct ipv6hdr _iph;
    54. 

  54. ipv6:
    55. 

  55. 		iph = skb_header_pointer(skb, nhoff, sizeof(_iph), &_iph);
    56. 

  56. 		if (!iph)
    57. 

  57. 			return false;
    58. 

  58. 

  59. 		ip_proto = iph->nexthdr;
    60. 

  60. 		flow->src = iph->saddr.s6_addr32[3];
    61. 

  61. 		flow->dst = iph->daddr.s6_addr32[3];
    62. 

  62. 		nhoff += sizeof(struct ipv6hdr);
    63. 

  63. 		break;
    64. 

  64. 	}
    65. 

  65. 	case __constant_htons(ETH_P_8021Q): {
    66. 

  66. 		const struct vlan_hdr *vlan;
    67. 

  67. 		struct vlan_hdr _vlan;
    68. 

  68. 

  69. 		vlan = skb_header_pointer(skb, nhoff, sizeof(_vlan), &_vlan);
    70. 

  70. 		if (!vlan)
    71. 

  71. 			return false;
    72. 

  72. 

  73. 		proto = vlan->h_vlan_encapsulated_proto;
    74. 

  74. 		nhoff += sizeof(*vlan);
    75. 

  75. 		goto again;
    76. 

  76. 	}
    77. 

  77. 	case __constant_htons(ETH_P_PPP_SES): {
    78. 

  78. 		struct {
    79. 

  79. 			struct pppoe_hdr hdr;
    80. 

  80. 			__be16 proto;
    81. 

  81. 		} *hdr, _hdr;
    82. 

  82. 		hdr = skb_header_pointer(skb, nhoff, sizeof(_hdr), &_hdr);
    83. 

  83. 		if (!hdr)
    84. 

  84. 			return false;
    85. 

  85. 		proto = hdr->proto;
    86. 

  86. 		nhoff += PPPOE_SES_HLEN;
    87. 

  87. 		switch (proto) {
    88. 

  88. 		case __constant_htons(PPP_IP):
    89. 

  89. 			goto ip;
    90. 

  90. 		case __constant_htons(PPP_IPV6):
    91. 

  91. 			goto ipv6;
    92. 

  92. 		default:
    93. 

  93. 			return false;
    94. 

  94. 		}
    95. 

  95. 	}
    96. 

  96. 	default:
    97. 

  97. 		return false;
    98. 

  98. 	}
    99. 

  99. 

  100. 	switch (ip_proto) {
    101. 

  101. 	case IPPROTO_GRE: {
    102. 

  102. 		struct gre_hdr {
    103. 

  103. 			__be16 flags;
    104. 

  104. 			__be16 proto;
    105. 

  105. 		} *hdr, _hdr;
    106. 

  106. 

  107. 		hdr = skb_header_pointer(skb, nhoff, sizeof(_hdr), &_hdr);
    108. 

  108. 		if (!hdr)
    109. 

  109. 			return false;
    110. 

  110. 		/*
    111. 

  111. 		 * Only look inside GRE if version zero and no
    112. 

  112. 		 * routing
    113. 

  113. 		 */
    114. 

  114. 		if (!(hdr->flags & (GRE_VERSION|GRE_ROUTING))) {
    115. 

  115. 			proto = hdr->proto;
    116. 

  116. 			nhoff += 4;
    117. 

  117. 			if (hdr->flags & GRE_CSUM)
    118. 

  118. 				nhoff += 4;
    119. 

  119. 			if (hdr->flags & GRE_KEY)
    120. 

  120. 				nhoff += 4;
    121. 

  121. 			if (hdr->flags & GRE_SEQ)
    122. 

  122. 				nhoff += 4;
    123. 

  123. 			goto again;
    124. 

  124. 		}
    125. 

  125. 		break;
    126. 

  126. 	}
    127. 

  127. 	case IPPROTO_IPIP:
    128. 

  128. 		goto again;
    129. 

  129. 	default:
    130. 

  130. 		break;
    131. 

  131. 	}
    132. 

  132. 

  133. 	flow->ip_proto = ip_proto;
    134. 

  134. 	poff = proto_ports_offset(ip_proto);
    135. 

  135. 	if (poff >= 0) {
    136. 

  136. 		__be32 *ports, _ports;
    137. 

  137. 

  138. 		ports = skb_header_pointer(skb, nhoff + poff,
    139. 

  139. 					   sizeof(_ports), &_ports);
    140. 

  140. 		if (ports)
    141. 

  141. 			flow->ports = *ports;
    142. 

  142. 	}
    143. 

  143. 

  144. 	return true;
    145. 

  145. }
    146. 

  146. EXPORT_SYMBOL(skb_flow_dissect);
    147. 

  147.