kernel: Add option to control DS field behavior
[strongswan.git] / src / libstrongswan / ipsec / ipsec_types.c
1 /*
2 * Copyright (C) 2012-2013 Tobias Brunner
3 * HSR Hochschule fuer Technik Rapperswil
4 *
5 * This program is free software; you can redistribute it and/or modify it
6 * under the terms of the GNU General Public License as published by the
7 * Free Software Foundation; either version 2 of the License, or (at your
8 * option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
9 *
10 * This program is distributed in the hope that it will be useful, but
11 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
12 * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
13 * for more details.
14 */
15
16 #include "ipsec_types.h"
17
18 ENUM(ipsec_mode_names, MODE_TRANSPORT, MODE_DROP,
19 "TRANSPORT",
20 "TUNNEL",
21 "BEET",
22 "PASS",
23 "DROP"
24 );
25
26 ENUM(policy_dir_names, POLICY_IN, POLICY_FWD,
27 "in",
28 "out",
29 "fwd"
30 );
31
32 ENUM(ipcomp_transform_names, IPCOMP_NONE, IPCOMP_LZJH,
33 "IPCOMP_NONE",
34 "IPCOMP_OUI",
35 "IPCOMP_DEFLATE",
36 "IPCOMP_LZS",
37 "IPCOMP_LZJH"
38 );
39
40 ENUM(hw_offload_names, HW_OFFLOAD_NO, HW_OFFLOAD_AUTO,
41 "no",
42 "yes",
43 "auto",
44 );
45
46 ENUM(dscp_copy_names, DSCP_COPY_OUT_ONLY, DSCP_COPY_NO,
47 "out",
48 "in",
49 "yes",
50 "no",
51 );
52
53 /*
54 * See header
55 */
56 bool ipsec_sa_cfg_equals(ipsec_sa_cfg_t *a, ipsec_sa_cfg_t *b)
57 {
58 return a->mode == b->mode &&
59 a->reqid == b->reqid &&
60 a->policy_count == b->policy_count &&
61 a->esp.use == b->esp.use &&
62 a->esp.spi == b->esp.spi &&
63 a->ah.use == b->ah.use &&
64 a->ah.spi == b->ah.spi &&
65 a->ipcomp.transform == b->ipcomp.transform &&
66 a->ipcomp.cpi == b->ipcomp.cpi;
67 }
68
69 /*
70 * See header
71 */
72 bool mark_from_string(const char *value, mark_t *mark)
73 {
74 char *endptr;
75
76 if (!value)
77 {
78 return FALSE;
79 }
80 if (strcasepfx(value, "%unique"))
81 {
82 endptr = (char*)value + strlen("%unique");
83 if (strcasepfx(endptr, "-dir"))
84 {
85 mark->value = MARK_UNIQUE_DIR;
86 endptr += strlen("-dir");
87 }
88 else if (!*endptr || *endptr == '/')
89 {
90 mark->value = MARK_UNIQUE;
91 }
92 else
93 {
94 DBG1(DBG_APP, "invalid mark value: %s", value);
95 return FALSE;
96 }
97 }
98 else
99 {
100 mark->value = strtoul(value, &endptr, 0);
101 }
102 if (*endptr)
103 {
104 if (*endptr != '/')
105 {
106 DBG1(DBG_APP, "invalid mark value: %s", value);
107 return FALSE;
108 }
109 mark->mask = strtoul(endptr+1, &endptr, 0);
110 if (*endptr)
111 {
112 DBG1(DBG_LIB, "invalid mark mask: %s", endptr);
113 return FALSE;
114 }
115 }
116 else
117 {
118 mark->mask = 0xffffffff;
119 }
120 if (!MARK_IS_UNIQUE(mark->value))
121 {
122 /* apply the mask to ensure the value is in range */
123 mark->value &= mark->mask;
124 }
125 return TRUE;
126 }