diff options
author | Pablo Neira Ayuso <pablo@netfilter.org> | 2012-01-15 03:24:24 +0100 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2012-01-16 14:00:38 +0100 |
commit | 14c32751713acad00c3ad01017e3464244ef709d (patch) | |
tree | ca54f21734cfac6873e4be00bf99ed64080f313b /examples |
initial import
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'examples')
-rw-r--r-- | examples/.gitignore | 3 | ||||
-rw-r--r-- | examples/Makefile.am | 12 | ||||
-rw-r--r-- | examples/nfct-helper-add.c | 75 | ||||
-rw-r--r-- | examples/nfct-helper-del.c | 68 | ||||
-rw-r--r-- | examples/nfct-helper-get.c | 81 |
5 files changed, 239 insertions, 0 deletions
diff --git a/examples/.gitignore b/examples/.gitignore new file mode 100644 index 0000000..e86b7ca --- /dev/null +++ b/examples/.gitignore @@ -0,0 +1,3 @@ +/nfct-helper-add +/nfct-helper-del +/nfct-helper-get diff --git a/examples/Makefile.am b/examples/Makefile.am new file mode 100644 index 0000000..a59edaa --- /dev/null +++ b/examples/Makefile.am @@ -0,0 +1,12 @@ +include $(top_srcdir)/Make_global.am + +check_PROGRAMS = nfct-helper-get nfct-helper-add nfct-helper-del + +nfct_helper_add_SOURCES = nfct-helper-add.c +nfct_helper_add_LDADD = ../src/libnetfilter_cthelper.la ${LIBMNL_LIBS} + +nfct_helper_del_SOURCES = nfct-helper-del.c +nfct_helper_del_LDADD = ../src/libnetfilter_cthelper.la ${LIBMNL_LIBS} + +nfct_helper_get_SOURCES = nfct-helper-get.c +nfct_helper_get_LDADD = ../src/libnetfilter_cthelper.la ${LIBMNL_LIBS} diff --git a/examples/nfct-helper-add.c b/examples/nfct-helper-add.c new file mode 100644 index 0000000..4371761 --- /dev/null +++ b/examples/nfct-helper-add.c @@ -0,0 +1,75 @@ +/* This example is in the public domain. */ +#include <stdlib.h> +#include <time.h> +#include <string.h> +#include <netinet/in.h> +#include <libmnl/libmnl.h> +#include <libnetfilter_cthelper/libnetfilter_cthelper.h> + +int main(int argc, char *argv[]) +{ + struct mnl_socket *nl; + char buf[MNL_SOCKET_BUFFER_SIZE]; + struct nlmsghdr *nlh; + uint32_t portid, seq; + struct nfct_helper *nfct_helper; + int ret; + + if (argc != 3) { + printf("Usage: %s [helper-name] [queue-num]\n", argv[0]); + exit(EXIT_FAILURE); + } + + nfct_helper = nfct_helper_alloc(); + if (nfct_helper == NULL) { + perror("OOM"); + exit(EXIT_FAILURE); + } + + nfct_helper_attr_set(nfct_helper, NFCTH_ATTR_NAME, argv[1]); + nfct_helper_attr_set_u32(nfct_helper, NFCTH_ATTR_QUEUE_NUM, atoi(argv[2])); + nfct_helper_attr_set(nfct_helper, NFCTH_ATTR_EXP_POLICY_NAME, "test"); + nfct_helper_attr_set_u16(nfct_helper, NFCTH_ATTR_PROTO_L3NUM, AF_INET); + nfct_helper_attr_set_u8(nfct_helper, NFCTH_ATTR_PROTO_L4NUM, IPPROTO_TCP); + nfct_helper_attr_set_u32(nfct_helper, NFCTH_ATTR_EXP_POLICY_TIMEOUT, 100); + nfct_helper_attr_set_u32(nfct_helper, NFCTH_ATTR_EXP_POLICY_MAX, 100); + + seq = time(NULL); + nlh = nfct_helper_nlmsg_build_hdr(buf, NFNL_MSG_CTHELPER_NEW, + NLM_F_CREATE | NLM_F_ACK, seq); + nfct_helper_nlmsg_build_payload(nlh, nfct_helper); + + nfct_helper_free(nfct_helper); + + nl = mnl_socket_open(NETLINK_NETFILTER); + if (nl == NULL) { + perror("mnl_socket_open"); + exit(EXIT_FAILURE); + } + + if (mnl_socket_bind(nl, 0, MNL_SOCKET_AUTOPID) < 0) { + perror("mnl_socket_bind"); + exit(EXIT_FAILURE); + } + portid = mnl_socket_get_portid(nl); + + if (mnl_socket_sendto(nl, nlh, nlh->nlmsg_len) < 0) { + perror("mnl_socket_send"); + exit(EXIT_FAILURE); + } + + ret = mnl_socket_recvfrom(nl, buf, sizeof(buf)); + while (ret > 0) { + ret = mnl_cb_run(buf, ret, seq, portid, NULL, NULL); + if (ret <= 0) + break; + ret = mnl_socket_recvfrom(nl, buf, sizeof(buf)); + } + if (ret == -1) { + perror("error"); + exit(EXIT_FAILURE); + } + mnl_socket_close(nl); + + return EXIT_SUCCESS; +} diff --git a/examples/nfct-helper-del.c b/examples/nfct-helper-del.c new file mode 100644 index 0000000..a176055 --- /dev/null +++ b/examples/nfct-helper-del.c @@ -0,0 +1,68 @@ +/* This example is in the public domain. */ +#include <stdlib.h> +#include <time.h> +#include <string.h> +#include <libmnl/libmnl.h> +#include <libnetfilter_cthelper/libnetfilter_cthelper.h> + +int main(int argc, char *argv[]) +{ + struct mnl_socket *nl; + char buf[MNL_SOCKET_BUFFER_SIZE]; + struct nlmsghdr *nlh; + uint32_t portid, seq; + struct nfct_helper *nfct_helper; + int ret; + + if (argc != 2) { + fprintf(stderr, "Usage: %s [name]\n", argv[0]); + exit(EXIT_FAILURE); + } + + nfct_helper = nfct_helper_alloc(); + if (nfct_helper == NULL) { + perror("OOM"); + exit(EXIT_FAILURE); + } + + nfct_helper_attr_set(nfct_helper, NFCTH_ATTR_NAME, argv[1]); + + seq = time(NULL); + nlh = nfct_helper_nlmsg_build_hdr(buf, NFNL_MSG_CTHELPER_DEL, + NLM_F_ACK, seq); + nfct_helper_nlmsg_build_payload(nlh, nfct_helper); + + nfct_helper_free(nfct_helper); + + nl = mnl_socket_open(NETLINK_NETFILTER); + if (nl == NULL) { + perror("mnl_socket_open"); + exit(EXIT_FAILURE); + } + + if (mnl_socket_bind(nl, 0, MNL_SOCKET_AUTOPID) < 0) { + perror("mnl_socket_bind"); + exit(EXIT_FAILURE); + } + portid = mnl_socket_get_portid(nl); + + if (mnl_socket_sendto(nl, nlh, nlh->nlmsg_len) < 0) { + perror("mnl_socket_send"); + exit(EXIT_FAILURE); + } + + ret = mnl_socket_recvfrom(nl, buf, sizeof(buf)); + while (ret > 0) { + ret = mnl_cb_run(buf, ret, seq, portid, NULL, NULL); + if (ret <= 0) + break; + ret = mnl_socket_recvfrom(nl, buf, sizeof(buf)); + } + if (ret == -1) { + perror("error"); + exit(EXIT_FAILURE); + } + mnl_socket_close(nl); + + return EXIT_SUCCESS; +} diff --git a/examples/nfct-helper-get.c b/examples/nfct-helper-get.c new file mode 100644 index 0000000..634062a --- /dev/null +++ b/examples/nfct-helper-get.c @@ -0,0 +1,81 @@ +/* This example is in the public domain. */ +#include <stdlib.h> +#include <string.h> +#include <time.h> +#include <libmnl/libmnl.h> +#include <libnetfilter_cthelper/libnetfilter_cthelper.h> + +static int nfct_helper_cb(const struct nlmsghdr *nlh, void *data) +{ + struct nfct_helper *nfct_helper; + char buf[4096]; + + nfct_helper = nfct_helper_alloc(); + if (nfct_helper == NULL) { + perror("OOM"); + goto err; + } + + if (nfct_helper_nlmsg_parse_payload(nlh, nfct_helper) < 0) { + perror("nfct_helper_parse_nl_msg"); + goto err_free; + } + + nfct_helper_snprintf(buf, sizeof(buf), nfct_helper, 0); + printf("%s\n", buf); + +err_free: + nfct_helper_free(nfct_helper); +err: + return MNL_CB_OK; +} + +int main(int argc, char *argv[]) +{ + struct mnl_socket *nl; + char buf[MNL_SOCKET_BUFFER_SIZE]; + struct nlmsghdr *nlh; + uint32_t portid, seq; + int ret, full = 1; + + if (argc != 1) { + fprintf(stderr, "Usage: %s\n", argv[0]); + exit(EXIT_FAILURE); + } + + seq = time(NULL); + nlh = nfct_helper_nlmsg_build_hdr(buf, NFNL_MSG_CTHELPER_GET, + NLM_F_DUMP, seq); + + nl = mnl_socket_open(NETLINK_NETFILTER); + if (nl == NULL) { + perror("mnl_socket_open"); + exit(EXIT_FAILURE); + } + + if (mnl_socket_bind(nl, 0, MNL_SOCKET_AUTOPID) < 0) { + perror("mnl_socket_bind"); + exit(EXIT_FAILURE); + } + portid = mnl_socket_get_portid(nl); + + if (mnl_socket_sendto(nl, nlh, nlh->nlmsg_len) < 0) { + perror("mnl_socket_send"); + exit(EXIT_FAILURE); + } + + ret = mnl_socket_recvfrom(nl, buf, sizeof(buf)); + while (ret > 0) { + ret = mnl_cb_run(buf, ret, seq, portid, nfct_helper_cb, &full); + if (ret <= 0) + break; + ret = mnl_socket_recvfrom(nl, buf, sizeof(buf)); + } + if (ret == -1) { + perror("error"); + exit(EXIT_FAILURE); + } + mnl_socket_close(nl); + + return EXIT_SUCCESS; +} |