]>
git.ipfire.org Git - people/ms/network.git/blob - src/inetcalc.c
1 /*#############################################################################
3 # IPFire.org - A linux based firewall #
4 # Copyright (C) 2015 IPFire Network Development Team #
6 # This program is free software: you can redistribute it and/or modify #
7 # it under the terms of the GNU General Public License as published by #
8 # the Free Software Foundation, either version 3 of the License, or #
9 # (at your option) any later version. #
11 # This program is distributed in the hope that it will be useful, #
12 # but WITHOUT ANY WARRANTY; without even the implied warranty of #
13 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the #
14 # GNU General Public License for more details. #
16 # You should have received a copy of the GNU General Public License #
17 # along with this program. If not, see <http://www.gnu.org/licenses/>. #
19 #############################################################################*/
22 #include <arpa/inet.h>
25 #include <netinet/in.h>
29 #include <sys/socket.h>
31 typedef struct ip_address
{
37 static struct in6_addr
prefix_to_bitmask(int prefix
) {
38 assert(prefix
<= 128);
40 struct in6_addr bitmask
;
42 for (int i
= 0; i
< 16; i
++)
43 bitmask
.s6_addr
[i
] = 0;
45 for (int i
= prefix
, j
= 0; i
> 0; i
-= 8, j
++) {
47 bitmask
.s6_addr
[j
] = 0xff;
49 bitmask
.s6_addr
[j
] = 0xff << (8 - i
);
55 static int bitmask_to_prefix(uint32_t bits
) {
58 // Count all ones until we find the first zero
59 while (bits
& (1 << 31)) {
64 // The remaining bits must all be zero
71 static int ip_address_parse_subnet_mask(ip_address_t
* ip
, const char* prefix
) {
74 int r
= inet_pton(AF_INET
, prefix
, &mask
.s_addr
);
78 uint32_t bits
= ntohl(mask
.s_addr
);
79 ip
->prefix
= bitmask_to_prefix(bits
);
81 return (ip
->prefix
< 0 || ip
->prefix
> 32);
84 static int ip_address_parse_prefix_cidr(ip_address_t
* ip
, const int family
, const char* prefix
) {
89 if (p
>= '0' && p
<= '9') {
91 ip
->prefix
+= p
- '0';
99 return (ip
->prefix
< 0 || ip
->prefix
> 128);
102 return (ip
->prefix
< 0 || ip
->prefix
> 32);
109 static int ip_address_parse_prefix(ip_address_t
* ip
, const int family
, const char* prefix
) {
110 int r
= ip_address_parse_prefix_cidr(ip
, family
, prefix
);
112 if (r
&& family
== AF_INET
) {
113 r
= ip_address_parse_subnet_mask(ip
, prefix
);
119 static int default_prefix(const int family
) {
132 static int ip_address_parse_simple(ip_address_t
* ip
, const int family
, const char* address
) {
133 assert(family
== AF_INET
|| family
== AF_INET6
);
135 size_t address_length
= strlen(address
);
136 char buffer
[address_length
+ 1];
137 strncpy(buffer
, address
, sizeof(buffer
));
139 // Search for a prefix or subnet mask
140 char* prefix
= strchr(buffer
, '/');
142 buffer
[prefix
- buffer
] = '\0';
146 memset(&ip
->addr
, 0, sizeof(ip
->addr
));
147 int r
= inet_pton(family
, buffer
, &ip
->addr
);
150 // If parsing the IP address failed, we will return false
154 // If the IP address could be successfully parsed, we will
155 // save the address family and return true
166 r
= ip_address_parse_prefix(ip
, family
, prefix
);
168 ip
->prefix
= default_prefix(family
);
173 static int ip_address_parse(ip_address_t
* ip
, const int family
, const char* address
) {
174 static int families
[] = { AF_INET
, AF_INET6
, 0 };
179 if (family
== AF_UNSPEC
|| family
== *f
) {
180 r
= ip_address_parse_simple(ip
, *f
, address
);
192 static int ip_address_eq(const ip_address_t
* a1
, const ip_address_t
* a2
) {
193 if (a1
->family
!= a2
->family
)
196 if (!IN6_ARE_ADDR_EQUAL(&a1
->addr
, &a2
->addr
))
199 if (a1
->prefix
!= a2
->prefix
)
205 static int ip_address_gt(const ip_address_t
* a1
, const ip_address_t
* a2
) {
206 if (a1
->family
!= a2
->family
|| a1
->prefix
!= a2
->prefix
)
209 for (unsigned int i
= 0; i
< 4; i
++) {
210 if (a1
->addr
.s6_addr
[i
] > a2
->addr
.s6_addr
[i
])
217 static int ip_address_ge(const ip_address_t
* a1
, const ip_address_t
* a2
) {
218 int r
= ip_address_eq(a1
, a2
);
222 return ip_address_gt(a1
, a2
);
225 static int ip_address_le(const ip_address_t
* a1
, const ip_address_t
* a2
) {
226 int r
= ip_address_eq(a1
, a2
);
230 return !ip_address_gt(a1
, a2
);
233 static int ip_address_format_string(char* buffer
, size_t size
, const ip_address_t
* ip
) {
234 assert(ip
->family
== AF_INET
|| ip
->family
== AF_INET6
);
236 const char* p
= inet_ntop(ip
->family
, &ip
->addr
.s6_addr
, buffer
, size
);
243 static void ip_address_print(const ip_address_t
* ip
) {
244 char buffer
[INET6_ADDRSTRLEN
+4];
246 int r
= ip_address_format_string(buffer
, sizeof(buffer
), ip
);
250 if (ip
->prefix
>= 0) {
251 size_t len
= strlen(buffer
);
252 snprintf(buffer
+ len
, sizeof(buffer
) - len
, "/%d", ip
->prefix
);
255 printf("%s\n", buffer
);
258 static void ip_address_get_first_address(ip_address_t
* first
, const ip_address_t
* network
) {
259 assert(network
->prefix
>= 0);
261 struct in6_addr mask
= prefix_to_bitmask(network
->prefix
);
263 first
->family
= network
->family
;
264 first
->prefix
= default_prefix(network
->family
);
266 for (int i
= 0; i
< 16; i
++)
267 first
->addr
.s6_addr
[i
] = network
->addr
.s6_addr
[i
] & mask
.s6_addr
[i
];
270 static void ip_address_get_last_address(ip_address_t
* last
, const ip_address_t
* network
) {
271 assert(network
->prefix
>= 0);
273 struct in6_addr mask
= prefix_to_bitmask(network
->prefix
);
275 last
->family
= network
->family
;
276 last
->prefix
= default_prefix(network
->family
);
278 for (int i
= 0; i
< 16; i
++)
279 last
->addr
.s6_addr
[i
] = network
->addr
.s6_addr
[i
] | ~mask
.s6_addr
[i
];
282 static void ip_address_make_network(ip_address_t
* net
, const ip_address_t
* network
) {
283 ip_address_get_first_address(net
, network
);
286 net
->prefix
= network
->prefix
;
289 static void ip_address_make_broadcast(ip_address_t
* broadcast
, const ip_address_t
* network
) {
290 assert(network
->family
== AF_INET
);
292 ip_address_get_last_address(broadcast
, network
);
295 broadcast
->prefix
= network
->prefix
;
298 static int ip_address_is_subset(const ip_address_t
* network1
, const ip_address_t
* network2
) {
304 // Get the first address of the networks
305 ip_address_get_first_address(&first1
, network1
);
306 ip_address_get_first_address(&first2
, network2
);
308 // Get the highest address in both networks
309 ip_address_get_last_address(&last1
, network1
);
310 ip_address_get_last_address(&last2
, network2
);
312 // The start address must be in the network
313 if (ip_address_ge(&first1
, &first2
) == 0 && ip_address_le(&first1
, &last2
) == 0) {
314 // The end address must be in the network, too
315 if (ip_address_ge(&last1
, &first2
) == 0 && ip_address_le(&last1
, &last2
) == 0) {
323 static int action_check(const int family
, const char* address
) {
326 int r
= ip_address_parse(&ip
, family
, address
);
330 // If the prefix is the host prefix this is a host address
331 if (ip
.prefix
== default_prefix(family
))
337 static int action_equal(const int family
, const char* addr1
, const char* addr2
) {
342 r
= ip_address_parse(&a1
, family
, addr1
);
346 r
= ip_address_parse(&a2
, family
, addr2
);
350 return ip_address_eq(&a1
, &a2
);
353 static int action_greater(const int family
, const char* addr1
, const char* addr2
) {
358 r
= ip_address_parse(&a1
, family
, addr1
);
362 r
= ip_address_parse(&a2
, family
, addr2
);
366 return ip_address_gt(&a1
, &a2
);
369 static int action_format(const int family
, const char* address
) {
372 int r
= ip_address_parse(&ip
, family
, address
);
376 ip_address_print(&ip
);
380 static int action_broadcast(const int family
, const char* address
) {
382 int r
= ip_address_parse(&ip
, family
, address
);
384 fprintf(stderr
, "Invalid IP address: %s\n", address
);
388 if (ip
.family
!= AF_INET
) {
389 fprintf(stderr
, "This is only possible for IPv4\n");
393 ip_address_t broadcast
;
394 ip_address_make_broadcast(&broadcast
, &ip
);
396 ip_address_print(&broadcast
);
400 static int action_network(const int family
, const char* address
) {
403 int r
= ip_address_parse(&ip
, family
, address
);
405 fprintf(stderr
, "Invalid IP address: %s\n", address
);
409 ip_address_t network
;
410 ip_address_make_network(&network
, &ip
);
412 ip_address_print(&network
);
416 static int action_prefix(const int family
, const char* addr1
, const char* addr2
) {
419 ip_address_t network
;
420 r
= ip_address_parse(&network
, family
, addr1
);
424 ip_address_t broadcast
;
425 r
= ip_address_parse(&broadcast
, family
, addr2
);
429 r
= ip_address_gt(&broadcast
, &network
);
433 struct in6_addr netmask
;
434 for (int i
= 0; i
< 16; i
++)
435 netmask
.s6_addr
[i
] = network
.addr
.s6_addr
[i
] ^ broadcast
.addr
.s6_addr
[i
];
437 uint32_t mask
= netmask
.s6_addr
[0] << 24 | netmask
.s6_addr
[1] << 16 |
438 netmask
.s6_addr
[2] << 8 | netmask
.s6_addr
[3];
440 int prefix
= bitmask_to_prefix(~mask
);
444 printf("%d\n", prefix
);
448 static int action_subset(const int family
, const char* address1
, const char* address2
) {
450 ip_address_t network1
;
451 ip_address_t network2
;
453 // Parse both networks and/or IP addresses
454 r
= ip_address_parse(&network1
, family
, address1
);
458 r
= ip_address_parse(&network2
, family
, address2
);
462 if (network1
.family
!= network2
.family
) {
463 fprintf(stderr
, "Address family of both arguments must match\n");
467 return ip_address_is_subset(&network1
, &network2
);
482 static void set_action(int* action
, int what
) {
483 if (*action
!= AC_UNSPEC
) {
484 printf("Another action has already been selected\n");
491 static struct option long_options
[] = {
492 {"broadcast", no_argument
, 0, 'b'},
493 {"check", no_argument
, 0, 'c'},
494 {"equal", no_argument
, 0, 'e'},
495 {"format", no_argument
, 0, 'f'},
496 {"greater", no_argument
, 0, 'g'},
497 {"ipv4-only", no_argument
, 0, '4'},
498 {"ipv6-only", no_argument
, 0, '6'},
499 {"network", no_argument
, 0, 'n'},
500 {"prefix", no_argument
, 0, 'p'},
501 {"subset", no_argument
, 0, 's'},
502 {"verbose", no_argument
, 0, 'v'},
506 int main(int argc
, char** argv
) {
507 int option_index
= 0;
508 int required_arguments
= 0;
511 int action
= AC_UNSPEC
;
512 int family
= AF_UNSPEC
;
515 int c
= getopt_long(argc
, argv
, "46bcefgnpsv", long_options
, &option_index
);
521 if (long_options
[option_index
].flag
!= 0)
524 printf("option: %s", long_options
[option_index
].name
);
526 printf(" with arg %s", optarg
);
539 set_action(&action
, AC_BROADCAST
);
540 required_arguments
= 1;
544 set_action(&action
, AC_CHECK
);
545 required_arguments
= 1;
549 set_action(&action
, AC_EQUAL
);
550 required_arguments
= 2;
554 set_action(&action
, AC_FORMAT
);
555 required_arguments
= 1;
559 set_action(&action
, AC_GREATER
);
560 required_arguments
= 2;
564 set_action(&action
, AC_NETWORK
);
565 required_arguments
= 1;
569 set_action(&action
, AC_PREFIX
);
570 required_arguments
= 2;
574 set_action(&action
, AC_SUBSET
);
575 required_arguments
= 2;
595 if (argc
!= required_arguments
) {
596 fprintf(stderr
, "Invalid number of arguments. Got %d, required %d.\n",
597 argc
, required_arguments
);
601 if (verbose
&& family
!= AF_UNSPEC
)
602 printf("Address family = %d\n", family
);
608 printf("No action specified\n");
613 r
= action_broadcast(family
, argv
[0]);
617 r
= action_check(family
, argv
[0]);
621 printf("%s is a valid IP address\n", argv
[0]);
623 printf("%s is not a valid IP address\n", argv
[0]);
628 r
= action_equal(family
, argv
[0], argv
[1]);
632 printf("%s equals %s\n", argv
[0], argv
[1]);
634 printf("Invalid IP address provided\n");
636 printf("%s does not equal %s\n", argv
[0], argv
[1]);
641 r
= action_format(family
, argv
[0]);
644 printf("Invalid IP address given\n");
649 r
= action_greater(family
, argv
[0], argv
[1]);
653 printf("%s is greater than %s\n", argv
[0], argv
[1]);
655 printf("Invalid IP address provided\n");
657 printf("%s is not greater than %s\n", argv
[0], argv
[1]);
662 r
= action_network(family
, argv
[0]);
666 r
= action_subset(family
, argv
[0], argv
[1]);
670 printf("%s is a subset of %s\n", argv
[0], argv
[1]);
672 printf("%s is not a subset of %s\n", argv
[0], argv
[1]);
678 r
= action_prefix(family
, argv
[0], argv
[1]);