1
2
3
4
5
6
7
8
9
10
11
12
13
14
15#include <linux/module.h>
16#include <linux/spinlock.h>
17#include <linux/netfilter/x_tables.h>
18#include <linux/netfilter_bridge/ebtables.h>
19#include <linux/netfilter_bridge/ebt_nflog.h>
20#include <net/netfilter/nf_log.h>
21
22static unsigned int
23ebt_nflog_tg(struct sk_buff *skb, const struct xt_action_param *par)
24{
25 const struct ebt_nflog_info *info = par->targinfo;
26 struct nf_loginfo li;
27
28 li.type = NF_LOG_TYPE_ULOG;
29 li.u.ulog.copy_len = info->len;
30 li.u.ulog.group = info->group;
31 li.u.ulog.qthreshold = info->threshold;
32
33 nf_log_packet(PF_BRIDGE, par->hooknum, skb, par->in, par->out,
34 &li, "%s", info->prefix);
35 return EBT_CONTINUE;
36}
37
38static int ebt_nflog_tg_check(const struct xt_tgchk_param *par)
39{
40 struct ebt_nflog_info *info = par->targinfo;
41
42 if (info->flags & ~EBT_NFLOG_MASK)
43 return -EINVAL;
44 info->prefix[EBT_NFLOG_PREFIX_SIZE - 1] = '\0';
45 return 0;
46}
47
48static struct xt_target ebt_nflog_tg_reg __read_mostly = {
49 .name = "nflog",
50 .revision = 0,
51 .family = NFPROTO_BRIDGE,
52 .target = ebt_nflog_tg,
53 .checkentry = ebt_nflog_tg_check,
54 .targetsize = sizeof(struct ebt_nflog_info),
55 .me = THIS_MODULE,
56};
57
58static int __init ebt_nflog_init(void)
59{
60 return xt_register_target(&ebt_nflog_tg_reg);
61}
62
63static void __exit ebt_nflog_fini(void)
64{
65 xt_unregister_target(&ebt_nflog_tg_reg);
66}
67
68module_init(ebt_nflog_init);
69module_exit(ebt_nflog_fini);
70MODULE_LICENSE("GPL");
71MODULE_AUTHOR("Peter Warasin <peter@endian.com>");
72MODULE_DESCRIPTION("ebtables NFLOG netfilter logging module");
73