10Sstevel@tonic-gate /* 20Sstevel@tonic-gate * Copyright (C) 2002 by Darren Reed. 30Sstevel@tonic-gate * 40Sstevel@tonic-gate * See the IPFILTER.LICENCE file for details on licencing. 50Sstevel@tonic-gate * 6*2393Syz155240 * $Id: load_hash.c,v 1.11.2.2 2005/02/01 02:44:05 darrenr Exp $ 7637Sml37995 * 8*2393Syz155240 * Copyright 2006 Sun Microsystems, Inc. All rights reserved. 9637Sml37995 * Use is subject to license terms. 100Sstevel@tonic-gate */ 110Sstevel@tonic-gate 12637Sml37995 #pragma ident "%Z%%M% %I% %E% SMI" 13637Sml37995 140Sstevel@tonic-gate #include <fcntl.h> 150Sstevel@tonic-gate #include <sys/ioctl.h> 160Sstevel@tonic-gate #include "ipf.h" 170Sstevel@tonic-gate #include "netinet/ip_lookup.h" 180Sstevel@tonic-gate #include "netinet/ip_htable.h" 190Sstevel@tonic-gate 200Sstevel@tonic-gate static int hashfd = -1; 210Sstevel@tonic-gate 220Sstevel@tonic-gate 230Sstevel@tonic-gate int load_hash(iphp, list, iocfunc) 240Sstevel@tonic-gate iphtable_t *iphp; 250Sstevel@tonic-gate iphtent_t *list; 260Sstevel@tonic-gate ioctlfunc_t iocfunc; 270Sstevel@tonic-gate { 280Sstevel@tonic-gate iplookupop_t op; 290Sstevel@tonic-gate iphtable_t iph; 300Sstevel@tonic-gate iphtent_t *a; 310Sstevel@tonic-gate size_t size; 320Sstevel@tonic-gate int n; 330Sstevel@tonic-gate 340Sstevel@tonic-gate if ((hashfd == -1) && ((opts & OPT_DONOTHING) == 0)) 350Sstevel@tonic-gate hashfd = open(IPLOOKUP_NAME, O_RDWR); 360Sstevel@tonic-gate if ((hashfd == -1) && ((opts & OPT_DONOTHING) == 0)) 370Sstevel@tonic-gate return -1; 380Sstevel@tonic-gate 390Sstevel@tonic-gate for (n = 0, a = list; a != NULL; a = a->ipe_next) 400Sstevel@tonic-gate n++; 410Sstevel@tonic-gate 420Sstevel@tonic-gate op.iplo_arg = 0; 430Sstevel@tonic-gate op.iplo_type = IPLT_HASH; 440Sstevel@tonic-gate op.iplo_unit = iphp->iph_unit; 450Sstevel@tonic-gate strncpy(op.iplo_name, iphp->iph_name, sizeof(op.iplo_name)); 460Sstevel@tonic-gate if (*op.iplo_name == '\0') 470Sstevel@tonic-gate op.iplo_arg = IPHASH_ANON; 480Sstevel@tonic-gate op.iplo_size = sizeof(iph); 490Sstevel@tonic-gate op.iplo_struct = &iph; 500Sstevel@tonic-gate iph.iph_unit = iphp->iph_unit; 510Sstevel@tonic-gate iph.iph_type = iphp->iph_type; 520Sstevel@tonic-gate strncpy(iph.iph_name, iphp->iph_name, sizeof(iph.iph_name)); 530Sstevel@tonic-gate iph.iph_flags = iphp->iph_flags; 54*2393Syz155240 if (n <= 0) 55*2393Syz155240 n = 1; 560Sstevel@tonic-gate if (iphp->iph_size == 0) 570Sstevel@tonic-gate size = n * 2 - 1; 580Sstevel@tonic-gate else 590Sstevel@tonic-gate size = iphp->iph_size; 60*2393Syz155240 if ((list == NULL) && (size == 1)) { 61*2393Syz155240 fprintf(stderr, 62*2393Syz155240 "WARNING: empty hash table %s, recommend setting %s\n", 63*2393Syz155240 iphp->iph_name, "size to match expected use"); 64*2393Syz155240 } 650Sstevel@tonic-gate iph.iph_size = size; 660Sstevel@tonic-gate iph.iph_seed = iphp->iph_seed; 670Sstevel@tonic-gate iph.iph_table = NULL; 680Sstevel@tonic-gate iph.iph_ref = 0; 690Sstevel@tonic-gate 70*2393Syz155240 if ((opts & OPT_REMOVE) == 0) { 71*2393Syz155240 if ((*iocfunc)(hashfd, SIOCLOOKUPADDTABLE, &op)) 72*2393Syz155240 if ((opts & OPT_DONOTHING) == 0) { 73*2393Syz155240 perror("load_hash:SIOCLOOKUPADDTABLE"); 74*2393Syz155240 return -1; 75*2393Syz155240 } 76*2393Syz155240 } 770Sstevel@tonic-gate 780Sstevel@tonic-gate strncpy(op.iplo_name, iph.iph_name, sizeof(op.iplo_name)); 790Sstevel@tonic-gate strncpy(iphp->iph_name, iph.iph_name, sizeof(op.iplo_name)); 800Sstevel@tonic-gate 810Sstevel@tonic-gate if (opts & OPT_VERBOSE) { 820Sstevel@tonic-gate for (a = list; a != NULL; a = a->ipe_next) { 83637Sml37995 if (a->ipe_family == AF_INET) { 84637Sml37995 a->ipe_addr.in4_addr = ntohl(a->ipe_addr.in4_addr); 85637Sml37995 a->ipe_mask.in4_addr = ntohl(a->ipe_mask.in4_addr); 86637Sml37995 } 870Sstevel@tonic-gate } 880Sstevel@tonic-gate iph.iph_table = calloc(size, sizeof(*iph.iph_table)); 890Sstevel@tonic-gate if (iph.iph_table == NULL) { 900Sstevel@tonic-gate perror("calloc(size, sizeof(*iph.iph_table))"); 910Sstevel@tonic-gate return -1; 920Sstevel@tonic-gate } 930Sstevel@tonic-gate iph.iph_table[0] = list; 94*2393Syz155240 printhash(&iph, bcopywrap, iph.iph_name, opts); 950Sstevel@tonic-gate free(iph.iph_table); 960Sstevel@tonic-gate 970Sstevel@tonic-gate for (a = list; a != NULL; a = a->ipe_next) { 98637Sml37995 if (a->ipe_family == AF_INET) { 99637Sml37995 a->ipe_addr.in4_addr = htonl(a->ipe_addr.in4_addr); 100637Sml37995 a->ipe_mask.in4_addr = htonl(a->ipe_mask.in4_addr); 101637Sml37995 } 1020Sstevel@tonic-gate } 1030Sstevel@tonic-gate } 1040Sstevel@tonic-gate 1050Sstevel@tonic-gate if (opts & OPT_DEBUG) 1060Sstevel@tonic-gate printf("Hash %s:\n", iph.iph_name); 1070Sstevel@tonic-gate 1080Sstevel@tonic-gate for (a = list; a != NULL; a = a->ipe_next) 1090Sstevel@tonic-gate load_hashnode(iphp->iph_unit, iph.iph_name, a, iocfunc); 1100Sstevel@tonic-gate 111*2393Syz155240 if ((opts & OPT_REMOVE) != 0) { 112*2393Syz155240 if ((*iocfunc)(hashfd, SIOCLOOKUPDELTABLE, &op)) 113*2393Syz155240 if ((opts & OPT_DONOTHING) == 0) { 114*2393Syz155240 perror("load_hash:SIOCLOOKUPDELTABLE"); 115*2393Syz155240 return -1; 116*2393Syz155240 } 117*2393Syz155240 } 1180Sstevel@tonic-gate return 0; 1190Sstevel@tonic-gate } 120