1/*
2 *	xt_mark - Netfilter module to match NFMARK value
3 *
4 *	(C) 1999-2001 Marc Boucher <marc@mbsi.ca>
5 *	Copyright © CC Computer Consultants GmbH, 2007 - 2008
6 *	Jan Engelhardt <jengelh@medozas.de>
7 *
8 *	This program is free software; you can redistribute it and/or modify
9 *	it under the terms of the GNU General Public License version 2 as
10 *	published by the Free Software Foundation.
11 */
12
13#include <linux/module.h>
14#include <linux/skbuff.h>
15
16#include <linux/netfilter/xt_mark.h>
17#include <linux/netfilter/x_tables.h>
18
19MODULE_LICENSE("GPL");
20MODULE_AUTHOR("Marc Boucher <marc@mbsi.ca>");
21MODULE_DESCRIPTION("Xtables: packet mark operations");
22MODULE_ALIAS("ipt_mark");
23MODULE_ALIAS("ip6t_mark");
24MODULE_ALIAS("ipt_MARK");
25MODULE_ALIAS("ip6t_MARK");
26
27static unsigned int
28mark_tg(struct sk_buff *skb, const struct xt_action_param *par)
29{
30	const struct xt_mark_tginfo2 *info = par->targinfo;
31
32	skb->mark = (skb->mark & ~info->mask) ^ info->mark;
33	return XT_CONTINUE;
34}
35
36static bool
37mark_mt(const struct sk_buff *skb, struct xt_action_param *par)
38{
39	const struct xt_mark_mtinfo1 *info = par->matchinfo;
40
41	return ((skb->mark & info->mask) == info->mark) ^ info->invert;
42}
43
44static struct xt_target mark_tg_reg __read_mostly = {
45	.name           = "MARK",
46	.revision       = 2,
47	.family         = NFPROTO_UNSPEC,
48	.target         = mark_tg,
49	.targetsize     = sizeof(struct xt_mark_tginfo2),
50	.me             = THIS_MODULE,
51};
52
53static struct xt_match mark_mt_reg __read_mostly = {
54	.name           = "mark",
55	.revision       = 1,
56	.family         = NFPROTO_UNSPEC,
57	.match          = mark_mt,
58	.matchsize      = sizeof(struct xt_mark_mtinfo1),
59	.me             = THIS_MODULE,
60};
61
62static int __init mark_mt_init(void)
63{
64	int ret;
65
66	ret = xt_register_target(&mark_tg_reg);
67	if (ret < 0)
68		return ret;
69	ret = xt_register_match(&mark_mt_reg);
70	if (ret < 0) {
71		xt_unregister_target(&mark_tg_reg);
72		return ret;
73	}
74	return 0;
75}
76
77static void __exit mark_mt_exit(void)
78{
79	xt_unregister_match(&mark_mt_reg);
80	xt_unregister_target(&mark_tg_reg);
81}
82
83module_init(mark_mt_init);
84module_exit(mark_mt_exit);
85