1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
|
/* ip-protocols, for libreswan
*
* Copyright (C) 1998, 1999, 2000 Henry Spencer.
* Copyright (C) 1999, 2000, 2001 Richard Guy Briggs
*
* This library is free software; you can redistribute it and/or modify it
* under the terms of the GNU Library General Public License as published by
* the Free Software Foundation; either version 2 of the License, or (at your
* option) any later version. See <https://www.gnu.org/licenses/lgpl-2.1.txt>.
*
* This library is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Library General Public
* License for more details.
*
*/
#ifndef IP_PROTOCOL_H
#define IP_PROTOCOL_H
#include <stdbool.h>
#include <netinet/in.h> /* for IPPROTO_* */
#include "shunk.h"
#include "err.h"
struct jambuf;
/*
* What's being encapsulated using DST IP packets.
*
* See:
* https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml
*
* Also see ip(7) and socket(IF_INET, SOCK_RAW, protocol).
*/
struct ip_protocol {
/*
* https://www.iana.org/assignments/protocol-numbers/protocol-numbers.xhtml
*
* IPPROTO_*
*/
unsigned ipproto;
const char *description;
const char *prefix;
const char *name;
bool ipv6_extension_header;
const char *reference;
/*
* IKEv1's Protocol ID
* RFC2407 The Internet IP security Domain of Interpretation for ISAKMP 4.4.1
*/
unsigned ikev1_protocol_id;
/*
* Using this to encapsulate.
*/
const struct ip_encap *encap_esp;
/*
* When showing a selector or packet, the zero port denotes
* any port (0-65535) and should be omitted from the output.
*
* When parsing an endpoint, zero aka wild ports, aren't
* allowed.
*/
bool zero_port_is_any;
};
#if 0
typedef const struct ip_protocol *ip_protocol; /* good idea? */
#endif
#ifdef IPPROTO_COMP
#define IPCOMP_IPPROTO IPPROTO_COMP /*linux*/
#endif
#ifdef IPPROTO_IPCOMP
#define IPCOMP_IPPROTO IPPROTO_IPCOMP /*everything else*/
#endif
extern const struct ip_protocol ip_protocols[256];
#define ip_protocol_all ip_protocols[0] /* "the SA can carry all protocols" */
#define ip_protocol_icmp ip_protocols[IPPROTO_ICMP] /* Internet Control Message */
#define ip_protocol_icmpv6 ip_protocols[IPPROTO_ICMPV6] /* Internet Control Message */
#define ip_protocol_ipip ip_protocols[IPPROTO_IPIP] /* IPv4 encapsulation */
#define ip_protocol_tcp ip_protocols[IPPROTO_TCP] /* any host internal protocol */
#define ip_protocol_udp ip_protocols[IPPROTO_UDP] /* any host internal protocol */
#define ip_protocol_esp ip_protocols[IPPROTO_ESP] /* Encapsulated Security Payload */
#define ip_protocol_ah ip_protocols[IPPROTO_AH] /* Authentication Header */
#define ip_protocol_ipcomp ip_protocols[IPCOMP_IPPROTO] /* IP Payload Compression Protocol */
/* match then eat the start of prefix */
const struct ip_protocol *protocol_from_caseeat_prefix(shunk_t *prefix);
const struct ip_protocol *protocol_from_ipproto(unsigned protoid);
const struct ip_protocol *protocol_from_shunk(shunk_t protocol);
err_t ttoprotocol(shunk_t text, const struct ip_protocol **ipproto);
/* these are kind of pointless */
typedef struct {
char buf[19];
} protocol_buf;
size_t jam_protocol(struct jambuf *, const struct ip_protocol *);
const char *str_protocol(const struct ip_protocol *);
/* ex: sep='=' gives '=TCP=>' */
size_t jam_protocol_pair(struct jambuf *buf,
const struct ip_protocol *src,
char sep,
const struct ip_protocol *dst);
/* used to size other buffers */
#endif
|
