| blob | 77c5ad6a07781f7cc2709705c2ac2a8218b47956 |
1 /* $FreeBSD: src/usr.sbin/setkey/parse.y,v 1.1.2.2 2001/07/03 11:02:17 ume Exp $ */
2 /* $DragonFly: src/usr.sbin/setkey/parse.y,v 1.4 2004/03/24 18:23:46 cpressey Exp $ */
3 /* $KAME: kame/kame/kame/setkey/parse.y,v 1.36 2001/06/07 15:53:12 sakane Exp $ */
5 /*
6 * Copyright (C) 1995, 1996, 1997, 1998, and 1999 WIDE Project.
7 * All rights reserved.
8 *
9 * Redistribution and use in source and binary forms, with or without
10 * modification, are permitted provided that the following conditions
11 * are met:
12 * 1. Redistributions of source code must retain the above copyright
13 * notice, this list of conditions and the following disclaimer.
14 * 2. Redistributions in binary form must reproduce the above copyright
15 * notice, this list of conditions and the following disclaimer in the
16 * documentation and/or other materials provided with the distribution.
17 * 3. Neither the name of the project nor the names of its contributors
18 * may be used to endorse or promote products derived from this software
19 * without specific prior written permission.
20 *
21 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
22 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
23 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
24 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
25 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
26 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
27 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
28 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
29 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
30 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 * SUCH DAMAGE.
32 */
34 %{
35 #include <sys/types.h>
36 #include <sys/param.h>
37 #include <sys/socket.h>
39 #include <net/route.h>
40 #include <netinet/in.h>
41 #include <net/pfkeyv2.h>
42 #include <netkey/key_var.h>
43 #include <netinet6/ipsec.h>
44 #include <arpa/inet.h>
46 #include <string.h>
47 #include <unistd.h>
48 #include <stdio.h>
49 #include <netdb.h>
50 #include <ctype.h>
51 #include <errno.h>
56 #define ATOX(c) \
59 u_int p_type;
60 u_int32_t p_spi;
65 u_int32_t p_reqid;
70 u_int p_policy_len;
73 /* temporary buffer */
95 %}
99 vchar_t val;
100 }
102 %token EOT
103 %token ADD GET DELETE FLUSH DUMP
104 %token ADDRESS PREFIX PORT PORTANY
105 %token UP_PROTO PR_ESP PR_AH PR_IPCOMP
106 %token F_PROTOCOL F_AUTH F_ENC F_REPLAY F_COMP F_RAWCPI
107 %token F_MODE MODE F_REQID
108 %token F_EXT EXTENSION NOCYCLICSEQ
109 %token ALG_AUTH ALG_ENC ALG_ENC_DESDERIV ALG_ENC_DES32IV ALG_COMP
110 %token F_LIFETIME_HARD F_LIFETIME_SOFT
111 %token DECSTRING QUOTEDSTRING HEXSTRING STRING ANY
112 /* SPD management */
113 %token SPDADD SPDDELETE SPDDUMP SPDFLUSH
114 %token F_POLICY PL_REQUESTS
124 %%
125 commands
127 | commands command
128 {
132 setkeymsg();
133 sendkeymsg();
134 }
135 free_buffer();
136 parse_init();
137 }
138 ;
140 command
141 : add_command
142 | get_command
143 | delete_command
144 | deleteall_command
145 | flush_command
146 | dump_command
147 | spdadd_command
148 | spddelete_command
149 | spddump_command
150 | spdflush_command
151 ;
152 /* commands concerned with management, there is in tail of this file. */
154 /* add command */
155 add_command
157 sa_selector_spec extension_spec algorithm_spec EOT
158 ;
160 /* delete */
161 delete_command
163 sa_selector_spec extension_spec
164 {
167 }
168 EOT
169 ;
171 /* deleteall command */
172 deleteall_command
176 protocol_spec
178 EOT
179 ;
181 /* get command */
182 get_command
184 sa_selector_spec extension_spec
185 {
188 }
189 EOT
190 ;
192 /* flush */
193 flush_command
195 protocol_spec EOT
196 ;
198 /* dump */
199 dump_command
201 protocol_spec EOT
202 ;
204 /* sa_selector_spec */
205 sa_selector_spec
208 protocol_spec spi
209 ;
211 protocol_spec
213 | PR_ESP
214 {
218 else
220 }
221 | PR_AH
222 {
226 else
228 }
229 | PR_IPCOMP
230 {
232 }
233 ;
235 spi
237 | HEXSTRING
238 {
239 caddr_t bp;
244 /* sanity check */
249 }
255 }
257 /* initialize */
263 /* XXX: endian */
267 }
268 ;
270 algorithm_spec
271 : esp_spec
272 | ah_spec
273 | ipcomp_spec
274 ;
276 esp_spec
277 : F_ENC enc_alg enc_key F_AUTH auth_alg auth_key
278 | F_ENC enc_alg enc_key
279 ;
281 ah_spec
282 : F_AUTH auth_alg auth_key
283 ;
285 ipcomp_spec
289 ;
291 enc_alg
293 | ALG_ENC_DESDERIV
294 {
299 }
301 }
302 | ALG_ENC_DES32IV
303 {
308 }
310 }
311 ;
313 enc_key
315 {
319 }
320 }
321 | key_string
322 {
327 p_alg_enc,
331 }
332 }
333 ;
335 auth_alg
337 ;
339 auth_key
341 {
345 }
346 }
347 | key_string
348 {
353 p_alg_auth,
357 }
358 }
359 ;
361 key_string
362 : QUOTEDSTRING
363 {
365 /* free pp_key later */
366 }
367 | HEXSTRING
368 {
369 caddr_t bp;
376 }
383 }
386 }
387 ;
389 extension_spec
391 | extension_spec extension
392 ;
394 extension
400 | F_REPLAY DECSTRING
401 {
406 }
408 }
411 ;
413 /* definition about command for SPD management */
414 /* spdadd */
415 spdadd_command
416 : SPDADD
417 {
420 }
421 sp_selector_spec policy_spec EOT
422 ;
424 spddelete_command:
425 SPDDELETE
426 {
429 }
430 sp_selector_spec policy_spec EOT
431 ;
433 spddump_command:
434 SPDDUMP
435 {
438 }
439 EOT
440 ;
442 spdflush_command:
443 SPDFLUSH
444 {
447 }
448 EOT
449 ;
451 /* sp_selector_spec */
452 sp_selector_spec
455 port
456 {
458 case AF_INET:
461 break;
462 #ifdef INET6
463 case AF_INET6:
466 break;
467 #endif
468 default:
470 }
471 }
474 port
475 {
477 case AF_INET:
480 break;
481 #ifdef INET6
482 case AF_INET6:
485 break;
486 #endif
487 default:
489 }
490 }
491 upper_spec
492 {
493 /* XXX is it something userland should check? */
494 #if 0
496 case IPPROTO_ICMP:
497 case IPPROTO_ICMPV6:
502 }
510 }
511 break;
512 default:
513 break;
514 }
515 #endif
516 }
517 ;
519 ipaddress
520 : ADDRESS
521 {
528 }
532 goto end;
533 }
536 end:
539 }
540 ;
542 prefix
545 ;
547 port
551 ;
553 upper_spec
557 | STRING
558 {
564 else {
573 }
574 }
576 }
577 ;
579 policy_spec
580 : F_POLICY policy_requests
581 {
588 }
593 }
594 ;
596 policy_requests
598 ;
600 %%
602 int
604 {
619 case SADB_FLUSH:
620 case SADB_DUMP:
621 break;
623 case SADB_ADD:
624 /* set encryption algorithm, if present. */
628 m_key.sadb_key_len =
638 }
640 /* set authentication algorithm, if present. */
644 m_key.sadb_key_len =
654 }
656 /* set lifetime for HARD */
670 }
672 /* set lifetime for SOFT */
686 }
687 /* FALLTHROUGH */
689 case SADB_DELETE:
690 case SADB_GET:
691 {
695 u_int len;
719 }
721 /* set src */
722 m_addr.sadb_address_len =
728 case AF_INET:
729 m_addr.sadb_address_prefixlen =
731 break;
732 #ifdef INET6
733 case AF_INET6:
734 m_addr.sadb_address_prefixlen =
736 break;
737 #endif
738 default:
741 }
748 /* set dst */
749 m_addr.sadb_address_len =
755 case AF_INET:
756 m_addr.sadb_address_prefixlen =
758 break;
759 #ifdef INET6
760 case AF_INET6:
761 m_addr.sadb_address_prefixlen =
763 break;
764 #endif
765 default:
768 }
774 }
775 break;
777 /* for SPD management */
778 case SADB_X_SPDFLUSH:
779 case SADB_X_SPDDUMP:
780 break;
782 case SADB_X_SPDADD:
783 case SADB_X_SPDDELETE:
784 {
786 u_int8_t plen;
793 /* set src */
794 m_addr.sadb_address_len =
800 case AF_INET:
802 break;
803 #ifdef INET6
804 case AF_INET6:
806 break;
807 #endif
808 default:
811 }
812 m_addr.sadb_address_prefixlen =
820 /* set dst */
821 m_addr.sadb_address_len =
827 case AF_INET:
829 break;
830 #ifdef INET6
831 case AF_INET6:
833 break;
834 #endif
835 default:
838 }
839 m_addr.sadb_address_prefixlen =
846 }
847 break;
848 }
853 }
857 {
868 return NULL;
869 }
872 }
873 return res;
874 }
876 static int
878 {
885 }
887 void
889 {
915 return;
916 }
918 void
920 {
926 return;
927 }