-connection_t *route_mac(connection_t *source, vpn_packet_t *packet)
-{
- subnet_t *subnet;
-cp
- /* Learn source address */
-
- learn_mac(source, (mac_t *)(&packet->data[0]));
-
- /* Lookup destination address */
-
- subnet = lookup_subnet_mac((mac_t *)(&packet->data[6]));
-
- if(!subnet)
- {
- if(debug_lvl >= DEBUG_TRAFFIC)
- {
- syslog(LOG_WARNING, _("Cannot route packet: unknown destination address %x:%x:%x:%x:%x:%x"),
- packet->data[6],
- packet->data[7],
- packet->data[8],
- packet->data[9],
- packet->data[10],
- packet->data[11]);
- }
- return NULL;
- }
-cp
- return subnet->owner;
-}
-
-connection_t *route_ipv4(vpn_packet_t *packet)
-{
- ipv4_t dest;
- subnet_t *subnet;
-cp
- dest = ntohl(*((unsigned long*)(&packet->data[30])));
-
- subnet = lookup_subnet_ipv4(&dest);
-
- if(!subnet)
- {
- if(debug_lvl >= DEBUG_TRAFFIC)
- {
- syslog(LOG_WARNING, _("Cannot route packet: unknown destination address %d.%d.%d.%d"),
- packet->data[30], packet->data[31], packet->data[32], packet->data[33]);
- }
-
- return NULL;
- }
-cp
- return subnet->owner;
-}
-
-connection_t *route_ipv6(vpn_packet_t *packet)
-{
-cp
- if(debug_lvl > DEBUG_NOTHING)
- {
- syslog(LOG_WARNING, _("Cannot route packet: IPv6 routing not yet implemented"));
- }
-cp
- return NULL;
-}
-
-void route_outgoing(vpn_packet_t *packet)
-{
- unsigned short int type;
- avl_node_t *node;
- connection_t *cl;
-cp
- /* FIXME: multicast? */
-
- switch(routing_mode)
- {
- case RMODE_ROUTER:
- type = ntohs(*((unsigned short*)(&packet->data[12])));
- switch(type)
- {
- case 0x0800:
- cl = route_ipv4(packet);
- break;
- case 0x86DD:
- cl = route_ipv6(packet);
- break;
- default:
- if(debug_lvl >= DEBUG_TRAFFIC)
- {
- syslog(LOG_WARNING, _("Cannot route packet: unknown type %hx"), type);
- }
- return;
- }
- if(cl)
- send_packet(cl, packet);
- break;
-
- case RMODE_SWITCH:
- cl = route_mac(myself, packet);
- if(cl)
- send_packet(cl, packet);
- break;
-
- case RMODE_HUB:
- for(node = connection_tree->head; node; node = node->next)
- {
- cl = (connection_t *)node->data;
- if(cl->status.active)
- send_packet(cl, packet);
- }
- break;
- }
+static bool checklength(node_t *source, vpn_packet_t *packet, length_t length) {
+ if(packet->len < length) {
+ logger(DEBUG_TRAFFIC, LOG_WARNING, "Got too short packet from %s (%s)", source->name, source->hostname);
+ return false;
+ } else
+ return true;