netfilter: Combine ipt_TTL and ip6t_HL source

Suggested by: James King <t.james.king@gmail.com> Similarly to commit c9fd49680954714473d6cbd2546d6ff120f96840, merge TTL and HL. Since HL does not depend on any IPv6-specific function, no new module dependencies would arise. With slight adjustments to the Kconfig help text. Signed-off-by: Jan Engelhardt <jengelh@medozas.de> Signed-off-by: Patrick McHardy <kaber@trash.net>
author: Jan Engelhardt <jengelh@medozas.de> 2009-02-18 12:38:40 -0500
committer: Patrick McHardy <kaber@trash.net> 2009-02-18 12:38:40 -0500
commit: 563d36eb3fb22dd04da9aa6f12e1b9ba0ac115f3 (patch)
tree: 9ff10949c9382b98756fa8da6ded257f00249b84 /net/ipv4
parent: ddc214c43a923e89741e04da2f10e3037a64e222 (diff)
3 files changed, 0 insertions, 113 deletions
diff --git a/net/ipv4/netfilter/Kconfig b/net/ipv4/netfilter/Kconfig
index 3816e1dc9295..3ad9f43b4c45 100644
--- a/net/ipv4/netfilter/Kconfig
+++ b/net/ipv4/netfilter/Kconfig
@@ -322,21 +322,6 @@ config IP_NF_TARGET_ECN
          To compile it as a module, choose M here.  If unsure, say N.
-config IP_NF_TARGET_TTL
-        tristate  'TTL target support'
-        depends on IP_NF_MANGLE
-        depends on NETFILTER_ADVANCED
-        help
-          This option adds a `TTL' target, which enables the user to modify
-          the TTL value of the IP header.
-          While it is safe to decrement/lower the TTL, this target also enables
-          functionality to increment and set the TTL value of the IP header to
-          arbitrary values.  This is EXTREMELY DANGEROUS since you can easily
-          create immortal packets that loop forever on the network.
-          To compile it as a module, choose M here.  If unsure, say N.
 # raw + specific targets
 config IP_NF_RAW
        tristate  'raw table support (required for NOTRACK/TRACE)'
diff --git a/net/ipv4/netfilter/Makefile b/net/ipv4/netfilter/Makefile
index 5f9b650d90fc..20b0c37155fb 100644
--- a/net/ipv4/netfilter/Makefile
+++ b/net/ipv4/netfilter/Makefile
@@ -61,7 +61,6 @@ obj-$(CONFIG_IP_NF_TARGET_MASQUERADE) += ipt_MASQUERADE.o
 obj-$(CONFIG_IP_NF_TARGET_NETMAP) += ipt_NETMAP.o
 obj-$(CONFIG_IP_NF_TARGET_REDIRECT) += ipt_REDIRECT.o
 obj-$(CONFIG_IP_NF_TARGET_REJECT) += ipt_REJECT.o
-obj-$(CONFIG_IP_NF_TARGET_TTL) += ipt_TTL.o
 obj-$(CONFIG_IP_NF_TARGET_ULOG) += ipt_ULOG.o
 # generic ARP tables
diff --git a/net/ipv4/netfilter/ipt_TTL.c b/net/ipv4/netfilter/ipt_TTL.c
deleted file mode 100644
index 6d76aae90cc0..000000000000
--- a/net/ipv4/netfilter/ipt_TTL.c
+++ /dev/null
@@ -1,97 +0,0 @@
-/* TTL modification target for IP tables
- * (C) 2000,2005 by Harald Welte <laforge@netfilter.org>
- *
- * This program is free software; you can redistribute it and/or modify
- * it under the terms of the GNU General Public License version 2 as
- * published by the Free Software Foundation.
- *
- */
-#include <linux/module.h>
-#include <linux/skbuff.h>
-#include <linux/ip.h>
-#include <net/checksum.h>
-#include <linux/netfilter/x_tables.h>
-#include <linux/netfilter_ipv4/ipt_TTL.h>
-MODULE_AUTHOR("Harald Welte <laforge@netfilter.org>");
-MODULE_DESCRIPTION("Xtables: IPv4 TTL field modification target");
-MODULE_LICENSE("GPL");
-static unsigned int
-ttl_tg(struct sk_buff *skb, const struct xt_target_param *par)
-{
-        struct iphdr *iph;
-        const struct ipt_TTL_info *info = par->targinfo;
-        int new_ttl;
-        if (!skb_make_writable(skb, skb->len))
-                return NF_DROP;
-        iph = ip_hdr(skb);
-        switch (info->mode) {
-                case IPT_TTL_SET:
-                        new_ttl = info->ttl;
-                        break;
-                case IPT_TTL_INC:
-                        new_ttl = iph->ttl + info->ttl;
-                        if (new_ttl > 255)
-                                new_ttl = 255;
-                        break;
-                case IPT_TTL_DEC:
-                        new_ttl = iph->ttl - info->ttl;
-                        if (new_ttl < 0)
-                                new_ttl = 0;
-                        break;
-                default:
-                        new_ttl = iph->ttl;
-                        break;
-        }
-        if (new_ttl != iph->ttl) {
-                csum_replace2(&iph->check, htons(iph->ttl << 8),
-                                           htons(new_ttl << 8));
-                iph->ttl = new_ttl;
-        }
-        return XT_CONTINUE;
-}
-static bool ttl_tg_check(const struct xt_tgchk_param *par)
-{
-        const struct ipt_TTL_info *info = par->targinfo;
-        if (info->mode > IPT_TTL_MAXMODE) {
-                printk(KERN_WARNING "ipt_TTL: invalid or unknown Mode %u\n",
-                        info->mode);
-                return false;
-        }
-        if (info->mode != IPT_TTL_SET && info->ttl == 0)
-                return false;
-        return true;
-}
-static struct xt_target ttl_tg_reg __read_mostly = {
-        .name           = "TTL",
-        .family         = NFPROTO_IPV4,
-        .target         = ttl_tg,
-        .targetsize     = sizeof(struct ipt_TTL_info),
-        .table          = "mangle",
-        .checkentry     = ttl_tg_check,
-        .me             = THIS_MODULE,
-};
-static int __init ttl_tg_init(void)
-{
-        return xt_register_target(&ttl_tg_reg);
-}
-static void __exit ttl_tg_exit(void)
-{
-        xt_unregister_target(&ttl_tg_reg);
-}
-module_init(ttl_tg_init);
-module_exit(ttl_tg_exit);
author	Jan Engelhardt <jengelh@medozas.de>	2009-02-18 12:38:40 -0500
committer	Patrick McHardy <kaber@trash.net>	2009-02-18 12:38:40 -0500
commit	563d36eb3fb22dd04da9aa6f12e1b9ba0ac115f3 (patch)
tree	9ff10949c9382b98756fa8da6ded257f00249b84 /net/ipv4
parent	ddc214c43a923e89741e04da2f10e3037a64e222 (diff)

diff --git a/net/ipv4/netfilter/Kconfig b/net/ipv4/netfilter/Kconfig index 3816e1dc9295..3ad9f43b4c45 100644 --- a/net/ipv4/netfilter/Kconfig +++ b/net/ipv4/netfilter/Kconfig
@@ -322,21 +322,6 @@ config IP_NF_TARGET_ECN
322		322
323	To compile it as a module, choose M here. If unsure, say N.	323	To compile it as a module, choose M here. If unsure, say N.
324		324
325	config IP_NF_TARGET_TTL
326	tristate 'TTL target support'
327	depends on IP_NF_MANGLE
328	depends on NETFILTER_ADVANCED
329	help
330	This option adds a `TTL' target, which enables the user to modify
331	the TTL value of the IP header.
332
333	While it is safe to decrement/lower the TTL, this target also enables
334	functionality to increment and set the TTL value of the IP header to
335	arbitrary values. This is EXTREMELY DANGEROUS since you can easily
336	create immortal packets that loop forever on the network.
337
338	To compile it as a module, choose M here. If unsure, say N.
339
340	# raw + specific targets	325	# raw + specific targets
341	config IP_NF_RAW	326	config IP_NF_RAW
342	tristate 'raw table support (required for NOTRACK/TRACE)'	327	tristate 'raw table support (required for NOTRACK/TRACE)'


diff --git a/net/ipv4/netfilter/Makefile b/net/ipv4/netfilter/Makefile index 5f9b650d90fc..20b0c37155fb 100644 --- a/net/ipv4/netfilter/Makefile +++ b/net/ipv4/netfilter/Makefile
@@ -61,7 +61,6 @@ obj-$(CONFIG_IP_NF_TARGET_MASQUERADE) += ipt_MASQUERADE.o
61	obj-$(CONFIG_IP_NF_TARGET_NETMAP) += ipt_NETMAP.o	61	obj-$(CONFIG_IP_NF_TARGET_NETMAP) += ipt_NETMAP.o
62	obj-$(CONFIG_IP_NF_TARGET_REDIRECT) += ipt_REDIRECT.o	62	obj-$(CONFIG_IP_NF_TARGET_REDIRECT) += ipt_REDIRECT.o
63	obj-$(CONFIG_IP_NF_TARGET_REJECT) += ipt_REJECT.o	63	obj-$(CONFIG_IP_NF_TARGET_REJECT) += ipt_REJECT.o
64	obj-$(CONFIG_IP_NF_TARGET_TTL) += ipt_TTL.o
65	obj-$(CONFIG_IP_NF_TARGET_ULOG) += ipt_ULOG.o	64	obj-$(CONFIG_IP_NF_TARGET_ULOG) += ipt_ULOG.o
66		65
67	# generic ARP tables	66	# generic ARP tables


diff --git a/net/ipv4/netfilter/ipt_TTL.c b/net/ipv4/netfilter/ipt_TTL.c deleted file mode 100644 index 6d76aae90cc0..000000000000 --- a/net/ipv4/netfilter/ipt_TTL.c +++ /dev/null
@@ -1,97 +0,0 @@
1	/* TTL modification target for IP tables
2	* (C) 2000,2005 by Harald Welte <laforge@netfilter.org>
3	*
4	* This program is free software; you can redistribute it and/or modify
5	* it under the terms of the GNU General Public License version 2 as
6	* published by the Free Software Foundation.
7	*
8	*/
9
10	#include <linux/module.h>
11	#include <linux/skbuff.h>
12	#include <linux/ip.h>
13	#include <net/checksum.h>
14
15	#include <linux/netfilter/x_tables.h>
16	#include <linux/netfilter_ipv4/ipt_TTL.h>
17
18	MODULE_AUTHOR("Harald Welte <laforge@netfilter.org>");
19	MODULE_DESCRIPTION("Xtables: IPv4 TTL field modification target");
20	MODULE_LICENSE("GPL");
21
22	static unsigned int
23	ttl_tg(struct sk_buff skb, const struct xt_target_param par)
24	{
25	struct iphdr *iph;
26	const struct ipt_TTL_info *info = par->targinfo;
27	int new_ttl;
28
29	if (!skb_make_writable(skb, skb->len))
30	return NF_DROP;
31
32	iph = ip_hdr(skb);
33
34	switch (info->mode) {
35	case IPT_TTL_SET:
36	new_ttl = info->ttl;
37	break;
38	case IPT_TTL_INC:
39	new_ttl = iph->ttl + info->ttl;
40	if (new_ttl > 255)
41	new_ttl = 255;
42	break;
43	case IPT_TTL_DEC:
44	new_ttl = iph->ttl - info->ttl;
45	if (new_ttl < 0)
46	new_ttl = 0;
47	break;
48	default:
49	new_ttl = iph->ttl;
50	break;
51	}
52
53	if (new_ttl != iph->ttl) {
54	csum_replace2(&iph->check, htons(iph->ttl << 8),
55	htons(new_ttl << 8));
56	iph->ttl = new_ttl;
57	}
58
59	return XT_CONTINUE;
60	}
61
62	static bool ttl_tg_check(const struct xt_tgchk_param *par)
63	{
64	const struct ipt_TTL_info *info = par->targinfo;
65
66	if (info->mode > IPT_TTL_MAXMODE) {
67	printk(KERN_WARNING "ipt_TTL: invalid or unknown Mode %u\n",
68	info->mode);
69	return false;
70	}
71	if (info->mode != IPT_TTL_SET && info->ttl == 0)
72	return false;
73	return true;
74	}
75
76	static struct xt_target ttl_tg_reg __read_mostly = {
77	.name = "TTL",
78	.family = NFPROTO_IPV4,
79	.target = ttl_tg,
80	.targetsize = sizeof(struct ipt_TTL_info),
81	.table = "mangle",
82	.checkentry = ttl_tg_check,
83	.me = THIS_MODULE,
84	};
85
86	static int __init ttl_tg_init(void)
87	{
88	return xt_register_target(&ttl_tg_reg);
89	}
90
91	static void __exit ttl_tg_exit(void)
92	{
93	xt_unregister_target(&ttl_tg_reg);
94	}
95
96	module_init(ttl_tg_init);
97	module_exit(ttl_tg_exit);