1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
|
/*
* (C) 2011 by Pablo Neira Ayuso <pablo@netfilter.org>
* (C) 2011 by Intra2Net AG <http://www.intra2net.com>
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License version 2 (or
* any later at your option) as published by the Free Software Foundation.
*/
#include <stdbool.h>
#include <stdlib.h>
#include <stdio.h>
#include <string.h>
#include <getopt.h>
#include <xtables.h>
#include <linux/netfilter/x_tables.h>
#include <linux/netfilter/xt_nfacct.h>
enum {
O_NAME = 0,
};
#define s struct xt_nfacct_match_info
static const struct xt_option_entry nfacct_opts[] = {
{.name = "nfacct-name", .id = O_NAME, .type = XTTYPE_STRING,
.min = 1, .flags = XTOPT_MAND|XTOPT_PUT, XTOPT_POINTER(s, name)},
XTOPT_TABLEEND,
};
#undef s
static void nfacct_help(void)
{
printf("nfacct match options:\n"
" --nfacct-name STRING Name of accouting area\n");
}
static void nfacct_parse(struct xt_option_call *cb)
{
xtables_option_parse(cb);
switch (cb->entry->id) {
case O_NAME:
if (strchr(cb->arg, '\n') != NULL)
xtables_error(PARAMETER_PROBLEM,
"Newlines not allowed in --nfacct-name");
break;
}
}
static void
nfacct_print_name(const struct xt_nfacct_match_info *info, char *name)
{
printf(" %snfacct-name ", name);
xtables_save_string(info->name);
}
static void nfacct_print(const void *ip, const struct xt_entry_match *match,
int numeric)
{
const struct xt_nfacct_match_info *info =
(struct xt_nfacct_match_info *)match->data;
nfacct_print_name(info, "");
}
static void nfacct_save(const void *ip, const struct xt_entry_match *match)
{
const struct xt_nfacct_match_info *info =
(struct xt_nfacct_match_info *)match->data;
nfacct_print_name(info, "--");
}
static struct xtables_match nfacct_matches[] = {
{
.family = NFPROTO_UNSPEC,
.revision = 0,
.name = "nfacct",
.version = XTABLES_VERSION,
.size = XT_ALIGN(sizeof(struct xt_nfacct_match_info)),
.userspacesize = offsetof(struct xt_nfacct_match_info, nfacct),
.help = nfacct_help,
.x6_parse = nfacct_parse,
.print = nfacct_print,
.save = nfacct_save,
.x6_options = nfacct_opts,
},
{
.family = NFPROTO_UNSPEC,
.revision = 1,
.name = "nfacct",
.version = XTABLES_VERSION,
.size = XT_ALIGN(sizeof(struct xt_nfacct_match_info_v1)),
.userspacesize = offsetof(struct xt_nfacct_match_info_v1, nfacct),
.help = nfacct_help,
.x6_parse = nfacct_parse,
.print = nfacct_print,
.save = nfacct_save,
.x6_options = nfacct_opts,
},
};
void _init(void)
{
xtables_register_matches(nfacct_matches, ARRAY_SIZE(nfacct_matches));
}
|