| blob | e48b2f9771e95c303cf70e6a73f94f7e1cd02235 |
1 /* $FreeBSD: src/usr.sbin/setkey/parse.y,v 1.1.2.2 2001/07/03 11:02:17 ume Exp $ */
2 /* $DragonFly: src/usr.sbin/setkey/parse.y,v 1.4 2004/03/24 18:23:46 cpressey Exp $ */
3 /* $KAME: kame/kame/kame/setkey/parse.y,v 1.36 2001/06/07 15:53:12 sakane Exp $ */
5 /*
6 * Copyright (C) 1995, 1996, 1997, 1998, and 1999 WIDE Project.
7 * All rights reserved.
8 *
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted provided that the following conditions
11 * are met:
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
14 * 2. Redistributions in binary form must reproduce the above copyright
15 * notice, this list of conditions and the following disclaimer in the
16 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the project nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
34 %{
35 #include <sys/types.h>
36 #include <sys/param.h>
37 #include <sys/socket.h>
39 #include <net/route.h>
40 #include <netinet/in.h>
41 #include <net/pfkeyv2.h>
42 #include <netkey/key_var.h>
43 #include <netinet6/ipsec.h>
44 #include <arpa/inet.h>
46 #include <string.h>
47 #include <unistd.h>
48 #include <stdio.h>
49 #include <stdlib.h>
50 #include <netdb.h>
51 #include <ctype.h>
52 #include <errno.h>
57 #define ATOX(c) \
60 u_int p_type;
61 u_int32_t p_spi;
66 u_int32_t p_reqid;
71 u_int p_policy_len;
74 /* temporary buffer */
81 extern u_int m_len;
96 %}
100 vchar_t val;
101 }
103 %token EOT
104 %token ADD GET DELETE DELETEALL FLUSH DUMP
105 %token ADDRESS PREFIX PORT PORTANY
106 %token UP_PROTO PR_ESP PR_AH PR_IPCOMP PR_TCP
107 %token F_PROTOCOL F_AUTH F_ENC F_REPLAY F_COMP F_RAWCPI
108 %token F_MODE MODE F_REQID
109 %token F_EXT EXTENSION NOCYCLICSEQ
110 %token ALG_AUTH ALG_ENC ALG_ENC_DESDERIV ALG_ENC_DES32IV ALG_COMP
111 %token F_LIFETIME_HARD F_LIFETIME_SOFT
112 %token DECSTRING QUOTEDSTRING HEXSTRING STRING ANY
113 /* SPD management */
114 %token SPDADD SPDDELETE SPDDUMP SPDFLUSH
115 %token F_POLICY PL_REQUESTS
125 %%
126 commands
128 | commands command
129 {
133 setkeymsg();
134 sendkeymsg();
135 }
136 free_buffer();
137 parse_init();
138 }
139 ;
141 command
142 : add_command
143 | get_command
144 | delete_command
145 | deleteall_command
146 | flush_command
147 | dump_command
148 | spdadd_command
149 | spddelete_command
150 | spddump_command
151 | spdflush_command
152 ;
153 /* commands concerned with management, there is in tail of this file. */
155 /* add command */
156 add_command
158 sa_selector_spec extension_spec algorithm_spec EOT
159 ;
161 /* delete */
162 delete_command
164 sa_selector_spec extension_spec
165 {
168 }
169 EOT
170 ;
172 /* deleteall command */
173 deleteall_command
177 protocol_spec
179 EOT
180 ;
182 /* get command */
183 get_command
185 sa_selector_spec extension_spec
186 {
189 }
190 EOT
191 ;
193 /* flush */
194 flush_command
196 protocol_spec EOT
197 ;
199 /* dump */
200 dump_command
202 protocol_spec EOT
203 ;
205 /* sa_selector_spec */
206 sa_selector_spec
209 protocol_spec spi
210 ;
212 protocol_spec
214 | PR_ESP
215 {
219 else
221 }
222 | PR_AH
223 {
227 else
229 }
230 | PR_IPCOMP
231 {
233 }
234 | PR_TCP
235 {
237 }
238 ;
240 spi
242 | HEXSTRING
243 {
244 caddr_t bp;
249 /* sanity check */
254 }
260 }
262 /* initialize */
268 /* XXX: endian */
272 }
273 ;
275 algorithm_spec
276 : esp_spec
277 | ah_spec
278 | ipcomp_spec
279 ;
281 esp_spec
282 : F_ENC enc_alg enc_key F_AUTH auth_alg auth_key
283 | F_ENC enc_alg enc_key
284 ;
286 ah_spec
287 : F_AUTH auth_alg auth_key
288 ;
290 ipcomp_spec
294 ;
296 enc_alg
298 | ALG_ENC_DESDERIV
299 {
304 }
306 }
307 | ALG_ENC_DES32IV
308 {
313 }
315 }
316 ;
318 enc_key
320 {
324 }
325 }
326 | key_string
327 {
332 p_alg_enc,
336 }
337 }
338 ;
340 auth_alg
342 ;
344 auth_key
346 {
350 }
351 }
352 | key_string
353 {
362 p_alg_auth,
366 }
367 }
368 ;
370 key_string
371 : QUOTEDSTRING
372 {
374 /* free pp_key later */
375 }
376 | HEXSTRING
377 {
378 caddr_t bp;
385 }
392 }
395 }
396 ;
398 extension_spec
400 | extension_spec extension
401 ;
403 extension
409 | F_REPLAY DECSTRING
410 {
415 }
417 }
420 ;
422 /* definition about command for SPD management */
423 /* spdadd */
424 spdadd_command
425 : SPDADD
426 {
429 }
430 sp_selector_spec policy_spec EOT
431 ;
433 spddelete_command:
434 SPDDELETE
435 {
438 }
439 sp_selector_spec policy_spec EOT
440 ;
442 spddump_command:
443 SPDDUMP
444 {
447 }
448 EOT
449 ;
451 spdflush_command:
452 SPDFLUSH
453 {
456 }
457 EOT
458 ;
460 /* sp_selector_spec */
461 sp_selector_spec
464 port
465 {
467 case AF_INET:
470 break;
471 #ifdef INET6
472 case AF_INET6:
475 break;
476 #endif
477 default:
479 }
480 }
483 port
484 {
486 case AF_INET:
489 break;
490 #ifdef INET6
491 case AF_INET6:
494 break;
495 #endif
496 default:
498 }
499 }
500 upper_spec
501 {
502 /* XXX is it something userland should check? */
503 #if 0
505 case IPPROTO_ICMP:
506 case IPPROTO_ICMPV6:
511 }
519 }
520 break;
521 default:
522 break;
523 }
524 #endif
525 }
526 ;
528 ipaddress
529 : ADDRESS
530 {
537 }
541 goto end;
542 }
545 end:
548 }
549 ;
551 prefix
554 ;
556 port
560 ;
562 upper_spec
566 | STRING
567 {
573 else {
582 }
583 }
585 }
586 ;
588 policy_spec
589 : F_POLICY policy_requests
590 {
597 }
602 }
603 ;
605 policy_requests
607 ;
609 %%
611 int
613 {
628 case SADB_FLUSH:
629 case SADB_DUMP:
630 break;
632 case SADB_ADD:
633 /* set encryption algorithm, if present. */
637 m_key.sadb_key_len =
647 }
649 /* set authentication algorithm, if present. */
653 m_key.sadb_key_len =
663 }
665 /* set lifetime for HARD */
679 }
681 /* set lifetime for SOFT */
695 }
696 /* FALLTHROUGH */
698 case SADB_DELETE:
699 case SADB_GET:
700 {
704 u_int len;
728 }
730 /* set src */
731 m_addr.sadb_address_len =
737 case AF_INET:
738 m_addr.sadb_address_prefixlen =
740 break;
741 #ifdef INET6
742 case AF_INET6:
743 m_addr.sadb_address_prefixlen =
745 break;
746 #endif
747 default:
750 }
757 /* set dst */
758 m_addr.sadb_address_len =
764 case AF_INET:
765 m_addr.sadb_address_prefixlen =
767 break;
768 #ifdef INET6
769 case AF_INET6:
770 m_addr.sadb_address_prefixlen =
772 break;
773 #endif
774 default:
777 }
783 }
784 break;
786 /* for SPD management */
787 case SADB_X_SPDFLUSH:
788 case SADB_X_SPDDUMP:
789 break;
791 case SADB_X_SPDADD:
792 case SADB_X_SPDDELETE:
793 {
795 u_int8_t plen;
802 /* set src */
803 m_addr.sadb_address_len =
809 case AF_INET:
811 break;
812 #ifdef INET6
813 case AF_INET6:
815 break;
816 #endif
817 default:
820 }
821 m_addr.sadb_address_prefixlen =
829 /* set dst */
830 m_addr.sadb_address_len =
836 case AF_INET:
838 break;
839 #ifdef INET6
840 case AF_INET6:
842 break;
843 #endif
844 default:
847 }
848 m_addr.sadb_address_prefixlen =
855 }
856 break;
857 }
862 }
866 {
877 return NULL;
878 }
881 }
882 return res;
883 }
885 static int
887 {
894 }
896 void
898 {
924 return;
925 }
927 void
929 {
935 return;
936 }