From patchwork Tue Sep 18 14:22:41 2012
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Aft nix <aftnix@gmail.com>
X-Patchwork-Id: 184729
Return-Path: <netfilter-devel-owner@vger.kernel.org>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by ozlabs.org (Postfix) with ESMTP id 1436E2C0085
	for <incoming@patchwork.ozlabs.org>;
	Wed, 19 Sep 2012 00:23:05 +1000 (EST)
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
	id S1757957Ab2IROXD (ORCPT <rfc822;incoming@patchwork.ozlabs.org>);
	Tue, 18 Sep 2012 10:23:03 -0400
Received: from mail-pb0-f46.google.com ([209.85.160.46]:58302 "EHLO
	mail-pb0-f46.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
	with ESMTP id S1757676Ab2IROXB (ORCPT
	<rfc822;netfilter-devel@vger.kernel.org>);
	Tue, 18 Sep 2012 10:23:01 -0400
Received: by pbbrr13 with SMTP id rr13so78021pbb.19
	for <netfilter-devel@vger.kernel.org>;
	Tue, 18 Sep 2012 07:23:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=gmail.com; s=20120113;
	h=subject:from:to:content-type:date:message-id:mime-version:x-mailer
	:content-transfer-encoding;
	bh=CFiHlojwaEBT7YZAb2YLxM4yH8ucZsS+1nuVK6WaN9M=;
	b=LVJNdmOoiUf57JcF28LVDW7Md6gP2Nb7LNBUWbeuRdJMB5/FjJV4aZ4SxsOJ0KBCEq
	RAX7pE8ZEVSBt6CcYxNzQoJ9fzRDny25AZ3OOcQ0a8SXqqW7st12k7eK3k72pOeud30c
	Qq6Y9toNtlSgXPu4I17uecIksQZGqLAvsoGv1VqlwAKWLaxsBnEw2Ws9TSrN9d2Qiwbp
	PKhc6wXxSCW0UdurDdJTjgxTu6/ubY23nt5ZXEZ/9GQx9VeFi8CMl9zHnSPCcNNTCyJH
	Z9fXafLSkq1T1fmvldEfrIj+/GNKjseemMoZqdMs8kwfUyMjycU1kPtL/sIhQlSd3M+E
	waEA==
Received: by 10.66.83.8 with SMTP id m8mr375636pay.48.1347978180800;
	Tue, 18 Sep 2012 07:23:00 -0700 (PDT)
Received: from [10.0.2.15] ([103.23.169.2])
	by mx.google.com with ESMTPS id qn3sm66094pbc.6.2012.09.18.07.22.56
	(version=TLSv1/SSLv3 cipher=OTHER);
	Tue, 18 Sep 2012 07:22:58 -0700 (PDT)
Subject: [PATCH 1/2] 1) Changed to "one" ds 2) Added some consistancy checks
From: aft <aftnix@gmail.com>
To: netfilter-devel@vger.kernel.org
Date: Tue, 18 Sep 2012 20:22:41 +0600
Message-ID: <1347978161.11478.2.camel@kernel-host-rh6>
Mime-Version: 1.0
X-Mailer: Evolution 2.28.3 (2.28.3-24.el6) 
Sender: netfilter-devel-owner@vger.kernel.org
Precedence: bulk
List-ID: <netfilter-devel.vger.kernel.org>
X-Mailing-List: netfilter-devel@vger.kernel.org

Signed-off-by: Arif Hossain <aftnix@gmail.com>
---
 extensions/xt_OBSF.c |   69 ++++++++++++++++++++++++++++++-------------------
 extensions/xt_OBSF.h |    8 +-----
 2 files changed, 43 insertions(+), 34 deletions(-)

diff --git a/extensions/xt_OBSF.c b/extensions/xt_OBSF.c
index a1060a9..b997133 100644
--- a/extensions/xt_OBSF.c
+++ b/extensions/xt_OBSF.c
@@ -63,12 +63,28 @@ static unsigned int obsf_tg(struct sk_buff *skb, const struct xt_action_param *p
 		if (info->flags & XT_OBSF_ENC_DEC)
 			crypto_blkcipher_decrypt(&desc, &sg, &sg, data_len);
 	}	
-	return NF_ACCEPT;
-}
 
-static unsigned int obsf_tg_v1(struct sk_buff *skb, const struct xt_action_param *par)
-{
-	printk("inside obsf_tg_v1");
+	if (info->flags & XT_OBSF_PAD_STATIC) {
+		if (info->flags & XT_OBSF_PAD_ADD) {
+			/* Add flase bytes */
+		}
+
+		if (info->flags & XT_OBSF_PAD_REM) {
+			/* Remove false bytes */
+		}
+	}
+
+	if (info->flags & XT_OBSF_PAD_RANDOM) {
+		if (info->flags & XT_OBSF_PAD_ADD) {
+					/* Add flase bytes */
+		}
+
+		if (info->flags & XT_OBSF_PAD_REM) {
+					/* Remove false bytes */
+		}
+	}
+
+
 	return NF_ACCEPT;
 }
 
@@ -90,12 +106,26 @@ static int obsf_tg_check(const struct xt_tgchk_param *par)
 			get_random_bytes(&priv->iv, 4);
 
 			info->priv = priv;
-			/* flag consistency check */
-
-			return 0;
 	}
 
+	/* flags consistency */
+
+	if ((info->flags & XT_OBSF_ENC_ARC4) && (info->flags & XT_OBSF_ENC_AES))
+		return -EINVAL;
+
+	if ((info->flags & XT_OBSF_ENC_ENC) && (info->flags & XT_OBSF_ENC_DEC))
+		return -EINVAL;
+
+	if ((info->flags & XT_OBSF_PAD_STATIC) && (info->flags & XT_OBSF_PAD_RANDOM))
+		return -EINVAL;
+
+	if ((info->flags & XT_OBSF_PAD_ADD) & (info->flags & XT_OBSF_PAD_REM))
+		return -EINVAL;
+
+	return 0;
+
 	/* failover */
+
 	fail:
 	if (priv) {
 		if (priv->tfm)
@@ -107,40 +137,25 @@ static int obsf_tg_check(const struct xt_tgchk_param *par)
 
 }
 
-static int obsf_tg_check_v1(const struct xt_tgchk_param *par)
-{
-	printk("inside obsf_tg_check_v1");
-	return 0;
-}
 
-static struct xt_target obsf_tg_reg[] __read_mostly = {
-	{
+static struct xt_target obsf_tg_reg __read_mostly = {
+
 		.name = "OBSF",
 		.family = NFPROTO_UNSPEC,
 		.target = obsf_tg,
 		.checkentry = obsf_tg_check,
 		.targetsize = sizeof(struct xt_OBSF_tginfo),
 		.me = THIS_MODULE,
-	},
-	{
-		.name = "OBSF",
-		.revision = 1,
-		.family = NFPROTO_UNSPEC,
-		.target = obsf_tg_v1,
-		.targetsize = sizeof(struct xt_OBSF_tginfo_v1),
-		.checkentry = obsf_tg_check_v1,
-		.me = THIS_MODULE,
-	},
 };
 
 static int __init obsf_tg_init(void)
 {
-	return xt_register_targets(obsf_tg_reg, ARRAY_SIZE(obsf_tg_reg));
+	return xt_register_target(&obsf_tg_reg);
 }
 
 static void __exit obsf_tg_exit(void)
 {
-	xt_unregister_targets(obsf_tg_reg, ARRAY_SIZE(obsf_tg_reg));
+	xt_unregister_target(&obsf_tg_reg);
 }
 
 module_init(obsf_tg_init);
diff --git a/extensions/xt_OBSF.h b/extensions/xt_OBSF.h
index cef781f..9d68c72 100644
--- a/extensions/xt_OBSF.h
+++ b/extensions/xt_OBSF.h
@@ -13,14 +13,8 @@ enum {
 	XT_OBSF_PAD_REM = 1 << 7
 };
 
-struct xt_OBSF_tginfo {
-	__u8 flags;
-	__u8 key[XT_OBSF_MAX_KEY_LEN];
-	__u8 key_len;
-	struct xt_obsf_priv *priv;
-};
 
-struct xt_OBSF_tginfo_v1 {
+struct xt_OBSF_tginfo{
 	__u8 flags;
 	__u8 key[XT_OBSF_MAX_KEY_LEN];
 	__u8 key_len;