# **** License ****
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2 as
# published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful, but
# WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
# General Public License for more details.
#
# This code was originally developed by Vyatta, Inc.
# Portions created by Vyatta are Copyright (C) 2008 Vyatta, Inc.
# All Rights Reserved.
# **** End License ****

package Vyatta::Qos::Match;
require Vyatta::Config;
use Vyatta::Qos::Util qw(getIfIndex getDsfield getProtocol);

use strict;
use warnings;

sub new {
    my ( $that, $config ) = @_;
    my $self = {};
    my $class = ref($that) || $that;
    my $ptype;

    bless $self, $class;

    foreach my $proto (qw(ip ipv6 ether)) {
        next unless $config->exists($proto);

        my %fields;

        if ( $proto eq 'ether' ) {
            $fields{protocol} =
              getProtocol( $config->returnValue("ether protocol") );
            $fields{src} = $config->returnValue("ether source");
            $fields{dst} = $config->returnValue("ether destination");
        } else {
            $fields{dsfield} =
              getDsfield( $config->returnValue("$proto dscp") );
            $fields{protocol} =
              getProtocol( $config->returnValue("$proto protocol") );
            $fields{src}   = $config->returnValue("$proto source address");
            $fields{dst}   = $config->returnValue("$proto destination address");
            $fields{sport} = $config->returnValue("$proto source port");
            $fields{dport} = $config->returnValue("$proto destination port");
        }

        $self->{$proto} = \%fields;

	my $other = $ptype;
	die "Can not match on both $proto and $other protocol in same match\n"
	    if $other;
	$ptype = $other;
    }

    my $vif = $config->returnValue("vif");
    $self->{_vif} = $vif;

    my $iif = $config->returnValue("interface");
    $self->{_indev} = getIfIndex($iif);

    my $fwmark = $config->returnValue("mark");
    $self->{_fwmark} = $fwmark;

    if ($ptype) {
	die "Can not combine protocol and firewall mark match\n"
	    if ($fwmark);
	die "Can not combine protocol and vlan tag match\n"
	    if ($vif);
	die "Can not combine protocol and interface match\n"
	    if ($iif);
    }

    return $self;
}

sub filter {
    my ( $self, $dev, $parent, $classid, $prio, $dsmark, $police ) = @_;

    # empty match
    return unless %{$self};

    # Special case for when dsmarking is used with ds matching
    # original dscp is saved in tc_index
    if ($dsmark) {
        foreach my $ipver (qw(ip ipv6)) {
            my $ip = $self->{$ipver};
            next unless $ip && $$ip{dsfield};

            printf "filter add dev %s parent %x: protocol %s prio $prio",
	    	$dev, $parent, $ipver;
            printf " handle %s tcindex classid %x:%x\n",
		$$ip{dsfield},  $parent, $classid;

	    $prio += 1;
	}
        return;
    }

    foreach my $proto (qw(ip ipv6 ether)) {
        my $p = $self->{$proto};
        next unless $p;

	printf "filter add dev %s parent %x: prio %d", $dev, $parent, $prio;
	if ($proto eq 'ether') {
	    my $type = $$p{protocol};
	    $type = 'all' unless $type;

	    if (defined($$p{src}) || defined($$p{dest})) {
		print " protocol $type u32";
		print " match ether src $$p{src}"                if $$p{src};
		print " match ether dst $$p{dst}"                if $$p{dst};
	    } else {
		# u32 requires some options to work but basic works
		print " protocol $type basic";
	    }
	} else {
	    print " protocol all u32";

	    # workaround inconsistent usage in tc u32 match
	    my $sel = $proto;
	    if ($proto eq 'ipv6') {
		$sel = 'ip6';
		printf " match u16 0x%x 0x0ff0 at 0", hex($$p{dsfield}) << 4,
		    if $$p{dsfield};
	    } else {
		print " match $sel dsfield $$p{dsfield} 0xff" if $$p{dsfield};
	    }
	    print " match $sel protocol $$p{protocol} 0xff" if $$p{protocol};

	    print " match $sel src $$p{src}"                if $$p{src};
	    print " match $sel sport $$p{sport} 0xffff"     if $$p{sport};
	    print " match $sel dst $$p{dst}"                if $$p{dst};
	    print " match $sel dport $$p{dport} 0xffff"     if $$p{dport};
	}

	print " $police" if $police;
	printf " flowid %x:%x\n", $parent, $classid;
	return;
    }

    my $fwmark = $self->{_fwmark};
    my $indev = $self->{_indev};
    my $vif   = $self->{_vif};
    if ( defined($vif) || defined($indev) ) {
        printf "filter add dev %s parent %x: prio %d", $dev, $parent, $prio;
        print " protocol all basic";
        print " match meta\(rt_iif eq $indev\)"        if $indev;
        print " match meta\(vlan mask 0xfff eq $vif\)" if $vif;
	print " match meta\(fwmark eq $fwmark\)"      if $fwmark;

	print " $police" if $police;
	printf " flowid %x:%x\n", $parent, $classid;
    } elsif ( $fwmark ) {
	printf "filter add dev %s parent %x: prio %d", $dev, $parent, $prio;
	printf  " protocol all handle %d fw", $fwmark;
	print " $police" if $police;
	printf " flowid %x:%x\n", $parent, $classid;
    }
}

1;