/*
 * Copyright (C) 2012 by Darren Reed.
 *
 * See the IPFILTER.LICENCE file for details on licencing.
 *
 * $Id$
 */

#include "ipf.h"


struct  ipopt_names     secclass[] = {
        { IPSO_CLASS_RES4,      0x01,   0, "reserv-4" },
        { IPSO_CLASS_TOPS,      0x02,   0, "topsecret" },
        { IPSO_CLASS_SECR,      0x04,   0, "secret" },
        { IPSO_CLASS_RES3,      0x08,   0, "reserv-3" },
        { IPSO_CLASS_CONF,      0x10,   0, "confid" },
        { IPSO_CLASS_UNCL,      0x20,   0, "unclass" },
        { IPSO_CLASS_RES2,      0x40,   0, "reserv-2" },
        { IPSO_CLASS_RES1,      0x80,   0, "reserv-1" },
        { 0, 0, 0, NULL }       /* must be last */
};


u_char
seclevel(char *slevel)
{
        struct ipopt_names *so;

        if (slevel == NULL || *slevel == '\0')
                return (0);

        for (so = secclass; so->on_name; so++)
                if (!strcasecmp(slevel, so->on_name))
                        break;

        if (!so->on_name) {
                fprintf(stderr, "no such security level: '%s'\n", slevel);
                return (0);
        }
        return (u_char)so->on_value;
}


u_char
secbit(int class)
{
        struct ipopt_names *so;

        for (so = secclass; so->on_name; so++)
                if (so->on_value == class)
                        break;

        if (!so->on_name) {
                fprintf(stderr, "no such security class: %d.\n", class);
                return (0);
        }
        return (u_char)so->on_bit;
}