| blob | 3fa012e7948baa2eecb8182bbe76b865ab3643d8 |
1 /*
2 * Copyright (c) 1999 - 2003
3 * NetGroup, Politecnico di Torino (Italy)
4 * All rights reserved.
5 *
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
8 * are met:
9 *
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * 3. Neither the name of the Politecnico di Torino nor the names of its
16 * contributors may be used to endorse or promote products derived from
17 * this software without specific prior written permission.
18 *
19 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
20 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
21 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
22 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
23 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
24 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
25 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
26 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
27 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
28 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
29 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
30 *
31 *
32 * @(#)bpf.c 7.5 (Berkeley) 7/15/91
33 */
36 /** @ingroup NPF
37 * @{
38 */
40 /** @defgroup win_bpf win_bpf.c
41 * XXX todo.
42 * @{
43 */
45 #if !(defined(lint) || defined(KERNEL))
47 "@(#) $Header: /usr/cvsroot_private/winpcap/Packet9x/VXD/win_bpf_filter.c,v 1.5 2005/12/02 22:31:26 gianlucav Exp $ (LBL)";
48 #endif
50 #ifndef WIN32
51 #include <sys/param.h>
52 #include <sys/time.h>
53 #else
54 #include <winsock2.h>
55 #endif
56 #include <sys/types.h>
59 #define int32 bpf_int32
60 #define u_int32 bpf_u_int32
63 #ifndef LBL_ALIGN
64 #if defined(sparc) || defined(mips) || defined(ibm032) || \
65 defined(__alpha) || defined(__hpux)
66 #define LBL_ALIGN
67 #endif
68 #endif
70 #ifndef LBL_ALIGN
71 #ifndef WIN32
72 #include <netinet/in.h>
73 #endif
75 #define EXTRACT_SHORT(p)\
76 ((u_short)\
77 ((u_short)*((u_char *)p+0)<<8|\
78 (u_short)*((u_char *)p+1)<<0))
79 #define EXTRACT_LONG(p)\
80 ((u_int32)*((u_char *)p+0)<<24|\
81 (u_int32)*((u_char *)p+1)<<16|\
82 (u_int32)*((u_char *)p+2)<<8|\
83 (u_int32)*((u_char *)p+3)<<0)
84 #endif
86 /*
87 * Execute the filter program starting at pc on the packet p
88 * wirelen is the length of the original packet
89 * buflen is the amount of data present
90 */
94 u_int wirelen;
96 {
102 /*
103 * No filter means accept all.
104 */
127 }
135 }
143 }
159 }
167 }
175 }
183 }
324 }
325 }
326 }
329 /*
330 * Execute the filter program starting at pc on the packet whose header is
331 * pointed by p and whose data is pointed by pd.
332 * headersize is the size of the the header
333 * wirelen is the length of the original packet
334 * buflen is the amount of data present
335 */
342 u_int wirelen;
344 {
350 /*
351 * No filter means accept all.
352 */
375 }
383 }
389 }
395 }
404 }
410 }
419 }
438 }
446 }
452 }
458 }
467 }
473 }
482 }
493 }
637 }
638 }
639 }
642 /*
643 * Return true if the 'fcode' is a valid filter program.
644 * The constraints are that each jump be forward and to a valid
645 * code, that memory accesses are within valid ranges (to the
646 * extent that this can be checked statically; loads of packet
647 * data have to be, and are, also checked at run time), and that
648 * the code terminates with either an accept or reject.
649 *
650 * The kernel needs to be able to verify an application's filter code.
651 * Otherwise, a bogus program could easily crash the system.
652 */
653 int
657 {
667 /*
668 * Check that memory operations use valid addresses.
669 */
687 }
705 /*
706 * Check for constant division by 0.
707 */
712 }
715 /*
716 * Check that jumps are within the code block,
717 * and that unconditional branches don't go
718 * backwards as a result of an overflow.
719 * Unconditional branches have a 32-bit offset,
720 * so they could overflow; we check to make
721 * sure they don't. Conditional branches have
722 * an 8-bit offset, and the from address is <=
723 * BPF_MAXINSNS, and we assume that BPF_MAXINSNS
724 * is sufficiently small that adding 255 to it
725 * won't overflow.
726 *
727 * We know that len is <= BPF_MAXINSNS, and we
728 * assume that BPF_MAXINSNS is < the maximum size
729 * of a u_int, so that i + 1 doesn't overflow.
730 */
746 }
755 }
756 }
758 }