nftables/expr/target.go

package expr

import (
	"bytes"
	"encoding/binary"

	"github.com/google/nftables/binaryutil"
	"github.com/mdlayher/netlink"
	"golang.org/x/sys/unix"
)

// See https://git.netfilter.org/libnftnl/tree/src/expr/target.c?id=09456c720e9c00eecc08e41ac6b7c291b3821ee5#n28
const XTablesExtensionNameMaxLen = 29

// See https://git.netfilter.org/libnftnl/tree/src/expr/target.c?id=09456c720e9c00eecc08e41ac6b7c291b3821ee5#n30
type Target struct {
	Name string
	Rev  uint32
	Info []byte
}

func (e *Target) marshal(fam byte) ([]byte, error) {
	// Per https://git.netfilter.org/libnftnl/tree/src/expr/target.c?id=09456c720e9c00eecc08e41ac6b7c291b3821ee5#n38
	name := e.Name
	// limit the extension name as (some) user-space tools do and leave room for
	// trailing \x00
	if len(name) >= /* sic! */ XTablesExtensionNameMaxLen {
		name = name[:XTablesExtensionNameMaxLen-1] // leave room for trailing \x00.
	}
	attrs := []netlink.Attribute{
		{Type: unix.NFTA_TARGET_NAME, Data: []byte(name + "\x00")},
		{Type: unix.NFTA_TARGET_REV, Data: binaryutil.BigEndian.PutUint32(e.Rev)},
		{Type: unix.NFTA_TARGET_INFO, Data: e.Info},
	}

	data, err := netlink.MarshalAttributes(attrs)
	if err != nil {
		return nil, err
	}

	return netlink.MarshalAttributes([]netlink.Attribute{
		{Type: unix.NFTA_EXPR_NAME, Data: []byte("target\x00")},
		{Type: unix.NLA_F_NESTED | unix.NFTA_EXPR_DATA, Data: data},
	})
}

func (e *Target) unmarshal(fam byte, data []byte) error {
	// Per https://git.netfilter.org/libnftnl/tree/src/expr/target.c?id=09456c720e9c00eecc08e41ac6b7c291b3821ee5#n65
	ad, err := netlink.NewAttributeDecoder(data)
	if err != nil {
		return err
	}

	ad.ByteOrder = binary.BigEndian
	for ad.Next() {
		switch ad.Type() {
		case unix.NFTA_TARGET_NAME:
			// We are forgiving here, accepting any length and even missing terminating \x00.
			e.Name = string(bytes.TrimRight(ad.Bytes(), "\x00"))
		case unix.NFTA_TARGET_REV:
			e.Rev = ad.Uint32()
		case unix.NFTA_TARGET_INFO:
			e.Info = ad.Bytes()
		}
	}
	return ad.Err()
}
un/marshal Match and Target expressions (#163) 2022-05-12 10:33:22 -05:00			`package expr`

			`import (`
			`"bytes"`
			`"encoding/binary"`

			`"github.com/google/nftables/binaryutil"`
			`"github.com/mdlayher/netlink"`
			`"golang.org/x/sys/unix"`
			`)`

			`// See https://git.netfilter.org/libnftnl/tree/src/expr/target.c?id=09456c720e9c00eecc08e41ac6b7c291b3821ee5#n28`
			`const XTablesExtensionNameMaxLen = 29`

			`// See https://git.netfilter.org/libnftnl/tree/src/expr/target.c?id=09456c720e9c00eecc08e41ac6b7c291b3821ee5#n30`
			`type Target struct {`
			`Name string`
			`Rev uint32`
			`Info []byte`
			`}`

refactor: pass table family when un/marshalling expr 2022-05-14 11:45:18 -05:00			`func (e *Target) marshal(fam byte) ([]byte, error) {`
un/marshal Match and Target expressions (#163) 2022-05-12 10:33:22 -05:00			`// Per https://git.netfilter.org/libnftnl/tree/src/expr/target.c?id=09456c720e9c00eecc08e41ac6b7c291b3821ee5#n38`
			`name := e.Name`
			`// limit the extension name as (some) user-space tools do and leave room for`
			`// trailing \x00`
			`if len(name) >= /* sic! */ XTablesExtensionNameMaxLen {`
			`name = name[:XTablesExtensionNameMaxLen-1] // leave room for trailing \x00.`
			`}`
			`attrs := []netlink.Attribute{`
			`{Type: unix.NFTA_TARGET_NAME, Data: []byte(name + "\x00")},`
			`{Type: unix.NFTA_TARGET_REV, Data: binaryutil.BigEndian.PutUint32(e.Rev)},`
			`{Type: unix.NFTA_TARGET_INFO, Data: e.Info},`
			`}`

			`data, err := netlink.MarshalAttributes(attrs)`
			`if err != nil {`
			`return nil, err`
			`}`

			`return netlink.MarshalAttributes([]netlink.Attribute{`
			`{Type: unix.NFTA_EXPR_NAME, Data: []byte("target\x00")},`
			`{Type: unix.NLA_F_NESTED \| unix.NFTA_EXPR_DATA, Data: data},`
			`})`
			`}`

refactor: pass table family when un/marshalling expr 2022-05-14 11:45:18 -05:00			`func (e *Target) unmarshal(fam byte, data []byte) error {`
un/marshal Match and Target expressions (#163) 2022-05-12 10:33:22 -05:00			`// Per https://git.netfilter.org/libnftnl/tree/src/expr/target.c?id=09456c720e9c00eecc08e41ac6b7c291b3821ee5#n65`
			`ad, err := netlink.NewAttributeDecoder(data)`
			`if err != nil {`
			`return err`
			`}`

			`ad.ByteOrder = binary.BigEndian`
			`for ad.Next() {`
			`switch ad.Type() {`
			`case unix.NFTA_TARGET_NAME:`
			`// We are forgiving here, accepting any length and even missing terminating \x00.`
			`e.Name = string(bytes.TrimRight(ad.Bytes(), "\x00"))`
			`case unix.NFTA_TARGET_REV:`
			`e.Rev = ad.Uint32()`
			`case unix.NFTA_TARGET_INFO:`
			`e.Info = ad.Bytes()`
			`}`
			`}`
			`return ad.Err()`
			`}`