Gitiles
Code Review Sign In
gerrit.opencord.org / quagga / e070452d981f58d60d79d7b4b38c93fb034c49b3 / . / zebra / ipforward_sysctl.c
blob: 57ed18578559ff275be2b39697073523e76a1e76 [file] [log] [blame]
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]1/* IP forward control by sysctl function.
2 * Copyright (C) 1997, 1999 Kunihiro Ishiguro
3 *
4 * This file is part of GNU Zebra.
5 *
6 * GNU Zebra is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the
8 * Free Software Foundation; either version 2, or (at your option) any
9 * later version.
10 *
11 * GNU Zebra is distributed in the hope that it will be useful, but
12 * WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 * General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License
17 * along with GNU Zebra; see the file COPYING. If not, write to the Free
18 * Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA
19 * 02111-1307, USA.
20 */
21
22#include <zebra.h>
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]23#include "privs.h"
paula1ac18c2005-06-28 17:17:12 +0000[diff] [blame]24#include "zebra/ipforward.h"
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]25
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]26#include "log.h"
27
28#define MIB_SIZ 4
29
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]30extern struct zebra_privs_t zserv_privs;
31
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]32/* IPv4 forwarding control MIB. */
33int mib[MIB_SIZ] =
34{
35 CTL_NET,
36 PF_INET,
37 IPPROTO_IP,
38 IPCTL_FORWARDING
39};
40
41int
paula1ac18c2005-06-28 17:17:12 +0000[diff] [blame]42ipforward (void)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]43{
gdta5ea6872004-08-26 13:24:00 +0000[diff] [blame]44 size_t len;
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]45 int ipforwarding = 0;
46
47 len = sizeof ipforwarding;
48 if (sysctl (mib, MIB_SIZ, &ipforwarding, &len, 0, 0) < 0)
49 {
50 zlog_warn ("Can't get ipforwarding value");
51 return -1;
52 }
53 return ipforwarding;
54}
55
56int
paula1ac18c2005-06-28 17:17:12 +0000[diff] [blame]57ipforward_on (void)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]58{
gdta5ea6872004-08-26 13:24:00 +0000[diff] [blame]59 size_t len;
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]60 int ipforwarding = 1;
61
62 len = sizeof ipforwarding;
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]63 if (zserv_privs.change(ZPRIVS_RAISE))
64 zlog (NULL, LOG_ERR, "Can't raise privileges");
65 if (sysctl (mib, MIB_SIZ, NULL, NULL, &ipforwarding, len) < 0)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]66 {
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]67 if (zserv_privs.change(ZPRIVS_LOWER))
68 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]69 zlog_warn ("Can't set ipforwarding on");
70 return -1;
71 }
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]72 if (zserv_privs.change(ZPRIVS_LOWER))
73 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]74 return ipforwarding;
75}
76
77int
paula1ac18c2005-06-28 17:17:12 +0000[diff] [blame]78ipforward_off (void)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]79{
gdta5ea6872004-08-26 13:24:00 +0000[diff] [blame]80 size_t len;
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]81 int ipforwarding = 0;
82
83 len = sizeof ipforwarding;
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]84 if (zserv_privs.change(ZPRIVS_RAISE))
85 zlog (NULL, LOG_ERR, "Can't raise privileges");
86 if (sysctl (mib, MIB_SIZ, NULL, NULL, &ipforwarding, len) < 0)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]87 {
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]88 if (zserv_privs.change(ZPRIVS_LOWER))
89 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]90 zlog_warn ("Can't set ipforwarding on");
91 return -1;
92 }
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]93 if (zserv_privs.change(ZPRIVS_LOWER))
94 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]95 return ipforwarding;
96}
97
98#ifdef HAVE_IPV6
99
100/* IPv6 forwarding control MIB. */
101int mib_ipv6[MIB_SIZ] =
102{
103 CTL_NET,
104 PF_INET6,
David Lamparter6d6df302014-06-28 21:12:37 +0200[diff] [blame]105#if defined(KAME)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]106 IPPROTO_IPV6,
107 IPV6CTL_FORWARDING
108#else /* NOT KAME */
109 IPPROTO_IP,
110 IP6CTL_FORWARDING
111#endif /* KAME */
112};
113
114int
paula1ac18c2005-06-28 17:17:12 +0000[diff] [blame]115ipforward_ipv6 (void)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]116{
gdta5ea6872004-08-26 13:24:00 +0000[diff] [blame]117 size_t len;
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]118 int ip6forwarding = 0;
119
120 len = sizeof ip6forwarding;
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]121 if (zserv_privs.change(ZPRIVS_RAISE))
122 zlog (NULL, LOG_ERR, "Can't raise privileges");
123 if (sysctl (mib_ipv6, MIB_SIZ, &ip6forwarding, &len, 0, 0) < 0)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]124 {
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]125 if (zserv_privs.change(ZPRIVS_LOWER))
126 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]127 zlog_warn ("can't get ip6forwarding value");
128 return -1;
129 }
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]130 if (zserv_privs.change(ZPRIVS_LOWER))
131 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]132 return ip6forwarding;
133}
134
135int
paula1ac18c2005-06-28 17:17:12 +0000[diff] [blame]136ipforward_ipv6_on (void)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]137{
gdta5ea6872004-08-26 13:24:00 +0000[diff] [blame]138 size_t len;
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]139 int ip6forwarding = 1;
140
141 len = sizeof ip6forwarding;
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]142 if (zserv_privs.change(ZPRIVS_RAISE))
143 zlog (NULL, LOG_ERR, "Can't raise privileges");
144 if (sysctl (mib_ipv6, MIB_SIZ, NULL, NULL, &ip6forwarding, len) < 0)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]145 {
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]146 if (zserv_privs.change(ZPRIVS_LOWER))
147 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]148 zlog_warn ("can't get ip6forwarding value");
149 return -1;
150 }
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]151 if (zserv_privs.change(ZPRIVS_LOWER))
152 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]153 return ip6forwarding;
154}
155
156int
paula1ac18c2005-06-28 17:17:12 +0000[diff] [blame]157ipforward_ipv6_off (void)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]158{
gdta5ea6872004-08-26 13:24:00 +0000[diff] [blame]159 size_t len;
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]160 int ip6forwarding = 0;
161
162 len = sizeof ip6forwarding;
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]163 if (zserv_privs.change(ZPRIVS_RAISE))
164 zlog (NULL, LOG_ERR, "Can't raise privileges");
165 if (sysctl (mib_ipv6, MIB_SIZ, NULL, NULL, &ip6forwarding, len) < 0)
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]166 {
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]167 if (zserv_privs.change(ZPRIVS_LOWER))
168 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]169 zlog_warn ("can't get ip6forwarding value");
170 return -1;
171 }
pauledd7c242003-06-04 13:59:38 +0000[diff] [blame]172 if (zserv_privs.change(ZPRIVS_LOWER))
173 zlog (NULL, LOG_ERR, "Can't lower privileges");
paul718e3742002-12-13 20:15:29 +0000[diff] [blame]174 return ip6forwarding;
175}
176#endif /* HAVE_IPV6 */