/* SPDX-License-Identifier: LGPL-2.1-only */ /* * Copyright (c) 2003-2008 Thomas Graf * Copyright (c) 2007 Philip Craig * Copyright (c) 2007 Secure Computing Corporation * Copyright (c) 2008 Patrick McHardy */ /** * @ingroup nfnl * @defgroup log Log * @brief * @{ */ #include "nl-default.h" #include #include #include #include #include #include "nl-netfilter.h" #include "nl-priv-dynamic-core/cache-api.h" static struct nla_policy log_msg_policy[NFULA_MAX+1] = { [NFULA_PACKET_HDR] = { .minlen = sizeof(struct nfulnl_msg_packet_hdr) }, [NFULA_MARK] = { .type = NLA_U32 }, [NFULA_TIMESTAMP] = { .minlen = sizeof(struct nfulnl_msg_packet_timestamp) }, [NFULA_IFINDEX_INDEV] = { .type = NLA_U32 }, [NFULA_IFINDEX_OUTDEV] = { .type = NLA_U32 }, [NFULA_IFINDEX_PHYSINDEV] = { .type = NLA_U32 }, [NFULA_IFINDEX_PHYSOUTDEV] = { .type = NLA_U32 }, [NFULA_HWADDR] = { .minlen = sizeof(struct nfulnl_msg_packet_hw) }, //[NFULA_PAYLOAD] [NFULA_PREFIX] = { .type = NLA_STRING, }, [NFULA_UID] = { .type = NLA_U32 }, [NFULA_GID] = { .type = NLA_U32 }, [NFULA_SEQ] = { .type = NLA_U32 }, [NFULA_SEQ_GLOBAL] = { .type = NLA_U32 }, [NFULA_HWTYPE] = { .type = NLA_U16 }, [NFULA_HWLEN] = { .type = NLA_U16 }, [NFULA_VLAN] = { .type = NLA_NESTED }, [NFULA_CT] = { .type = NLA_NESTED }, [NFULA_CT_INFO] = { .type = NLA_U32 }, }; static struct nla_policy log_msg_vlan_policy[NFULA_VLAN_MAX+1] = { [NFULA_VLAN_PROTO] = { .type = NLA_U16 }, [NFULA_VLAN_TCI] = { .type = NLA_U16 }, }; static int nfnlmsg_log_msg_parse_vlan(struct nlattr *attr_full, struct nfnl_log_msg *msg) { struct nlattr *tb[NFULA_VLAN_MAX+1]; struct nlattr *attr; int err; err = nla_parse_nested(tb, NFULA_VLAN_MAX, attr_full, log_msg_vlan_policy); if (err < 0) return err; attr = tb[NFULA_VLAN_PROTO]; if (attr) nfnl_log_msg_set_vlan_proto(msg, nla_get_u16(attr)); attr = tb[NFULA_VLAN_TCI]; if (attr) nfnl_log_msg_set_vlan_tag(msg, ntohs(nla_get_u16(attr))); return 0; } int nfnlmsg_log_msg_parse(struct nlmsghdr *nlh, struct nfnl_log_msg **result) { struct nfnl_log_msg *msg; struct nlattr *tb[NFULA_MAX+1]; struct nlattr *attr; int err; msg = nfnl_log_msg_alloc(); if (!msg) return -NLE_NOMEM; msg->ce_msgtype = nlh->nlmsg_type; err = nlmsg_parse(nlh, sizeof(struct nfgenmsg), tb, NFULA_MAX, log_msg_policy); if (err < 0) goto errout; nfnl_log_msg_set_family(msg, nfnlmsg_family(nlh)); attr = tb[NFULA_PACKET_HDR]; if (attr) { struct nfulnl_msg_packet_hdr *hdr = nla_data(attr); if (hdr->hw_protocol) nfnl_log_msg_set_hwproto(msg, hdr->hw_protocol); nfnl_log_msg_set_hook(msg, hdr->hook); } attr = tb[NFULA_MARK]; if (attr) nfnl_log_msg_set_mark(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_TIMESTAMP]; if (attr) { struct nfulnl_msg_packet_timestamp *timestamp = nla_data(attr); struct timeval tv; tv.tv_sec = ntohll(timestamp->sec); tv.tv_usec = ntohll(timestamp->usec); nfnl_log_msg_set_timestamp(msg, &tv); } attr = tb[NFULA_IFINDEX_INDEV]; if (attr) nfnl_log_msg_set_indev(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_IFINDEX_OUTDEV]; if (attr) nfnl_log_msg_set_outdev(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_IFINDEX_PHYSINDEV]; if (attr) nfnl_log_msg_set_physindev(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_IFINDEX_PHYSOUTDEV]; if (attr) nfnl_log_msg_set_physoutdev(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_HWADDR]; if (attr) { struct nfulnl_msg_packet_hw *hw = nla_data(attr); nfnl_log_msg_set_hwaddr(msg, hw->hw_addr, ntohs(hw->hw_addrlen)); } attr = tb[NFULA_PAYLOAD]; if (attr) { err = nfnl_log_msg_set_payload(msg, nla_data(attr), nla_len(attr)); if (err < 0) goto errout; } attr = tb[NFULA_PREFIX]; if (attr) { err = nfnl_log_msg_set_prefix(msg, nla_data(attr)); if (err < 0) goto errout; } attr = tb[NFULA_UID]; if (attr) nfnl_log_msg_set_uid(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_GID]; if (attr) nfnl_log_msg_set_gid(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_SEQ]; if (attr) nfnl_log_msg_set_seq(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_SEQ_GLOBAL]; if (attr) nfnl_log_msg_set_seq_global(msg, ntohl(nla_get_u32(attr))); attr = tb[NFULA_HWTYPE]; if (attr) nfnl_log_msg_set_hwtype(msg, ntohs(nla_get_u16(attr))); attr = tb[NFULA_HWLEN]; if (attr) nfnl_log_msg_set_hwlen(msg, ntohs(nla_get_u16(attr))); attr = tb[NFULA_HWHEADER]; if (attr) nfnl_log_msg_set_hwheader(msg, nla_data(attr), nla_len(attr)); attr = tb[NFULA_VLAN]; if (attr) { err = nfnlmsg_log_msg_parse_vlan(attr, msg); if (err < 0) goto errout; } attr = tb[NFULA_CT]; if (attr) { struct nfnl_ct *ct = NULL; err = nfnlmsg_ct_parse_nested(attr, &ct); if (err < 0) goto errout; nfnl_log_msg_set_ct(msg, ct); nfnl_ct_put(ct); } attr = tb[NFULA_CT_INFO]; if (attr) nfnl_log_msg_set_ct_info(msg, ntohl(nla_get_u32(attr))); *result = msg; return 0; errout: nfnl_log_msg_put(msg); return err; } static int log_msg_parser(struct nl_cache_ops *ops, struct sockaddr_nl *who, struct nlmsghdr *nlh, struct nl_parser_param *pp) { struct nfnl_log_msg *msg; int err; if ((err = nfnlmsg_log_msg_parse(nlh, &msg)) < 0) return err; err = pp->pp_cb((struct nl_object *) msg, pp); nfnl_log_msg_put(msg); return err; } /** @} */ #define NFNLMSG_LOG_TYPE(type) NFNLMSG_TYPE(NFNL_SUBSYS_ULOG, (type)) static struct nl_cache_ops nfnl_log_msg_ops = { .co_name = "netfilter/log_msg", .co_hdrsize = NFNL_HDRLEN, .co_msgtypes = { { NFNLMSG_LOG_TYPE(NFULNL_MSG_PACKET), NL_ACT_NEW, "new" }, END_OF_MSGTYPES_LIST, }, .co_protocol = NETLINK_NETFILTER, .co_msg_parser = log_msg_parser, .co_obj_ops = &log_msg_obj_ops, }; static void _nl_init log_msg_init(void) { nl_cache_mngt_register(&nfnl_log_msg_ops); } static void _nl_exit log_msg_exit(void) { nl_cache_mngt_unregister(&nfnl_log_msg_ops); } /** @} */