1 /* SPDX-License-Identifier: GPL-2.0-only */ <<
2 /* 1 /*
3 * Copyright (c) 2015 Nicira, Inc. 2 * Copyright (c) 2015 Nicira, Inc.
>> 3 *
>> 4 * This program is free software; you can redistribute it and/or
>> 5 * modify it under the terms of version 2 of the GNU General Public
>> 6 * License as published by the Free Software Foundation.
>> 7 *
>> 8 * This program is distributed in the hope that it will be useful, but
>> 9 * WITHOUT ANY WARRANTY; without even the implied warranty of
>> 10 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
>> 11 * General Public License for more details.
4 */ 12 */
5 13
6 #ifndef OVS_CONNTRACK_H 14 #ifndef OVS_CONNTRACK_H
7 #define OVS_CONNTRACK_H 1 15 #define OVS_CONNTRACK_H 1
8 16
9 #include "flow.h" 17 #include "flow.h"
10 18
11 struct ovs_conntrack_info; 19 struct ovs_conntrack_info;
12 struct ovs_ct_limit_info; 20 struct ovs_ct_limit_info;
13 enum ovs_key_attr; 21 enum ovs_key_attr;
14 22
15 #if IS_ENABLED(CONFIG_NF_CONNTRACK) 23 #if IS_ENABLED(CONFIG_NF_CONNTRACK)
16 int ovs_ct_init(struct net *); 24 int ovs_ct_init(struct net *);
17 void ovs_ct_exit(struct net *); 25 void ovs_ct_exit(struct net *);
18 bool ovs_ct_verify(struct net *, enum ovs_key_ 26 bool ovs_ct_verify(struct net *, enum ovs_key_attr attr);
19 int ovs_ct_copy_action(struct net *, const str 27 int ovs_ct_copy_action(struct net *, const struct nlattr *,
20 const struct sw_flow_ke 28 const struct sw_flow_key *, struct sw_flow_actions **,
21 bool log); 29 bool log);
22 int ovs_ct_action_to_attr(const struct ovs_con 30 int ovs_ct_action_to_attr(const struct ovs_conntrack_info *, struct sk_buff *);
23 31
24 int ovs_ct_execute(struct net *, struct sk_buf 32 int ovs_ct_execute(struct net *, struct sk_buff *, struct sw_flow_key *,
25 const struct ovs_conntrack_ 33 const struct ovs_conntrack_info *);
26 int ovs_ct_clear(struct sk_buff *skb, struct s 34 int ovs_ct_clear(struct sk_buff *skb, struct sw_flow_key *key);
27 35
28 void ovs_ct_fill_key(const struct sk_buff *skb !! 36 void ovs_ct_fill_key(const struct sk_buff *skb, struct sw_flow_key *key);
29 bool post_ct); <<
30 int ovs_ct_put_key(const struct sw_flow_key *s 37 int ovs_ct_put_key(const struct sw_flow_key *swkey,
31 const struct sw_flow_key *o 38 const struct sw_flow_key *output, struct sk_buff *skb);
32 void ovs_ct_free_action(const struct nlattr *a 39 void ovs_ct_free_action(const struct nlattr *a);
33 40
34 #define CT_SUPPORTED_MASK (OVS_CS_F_NEW | OVS_ 41 #define CT_SUPPORTED_MASK (OVS_CS_F_NEW | OVS_CS_F_ESTABLISHED | \
35 OVS_CS_F_RELATED | 42 OVS_CS_F_RELATED | OVS_CS_F_REPLY_DIR | \
36 OVS_CS_F_INVALID | 43 OVS_CS_F_INVALID | OVS_CS_F_TRACKED | \
37 OVS_CS_F_SRC_NAT | 44 OVS_CS_F_SRC_NAT | OVS_CS_F_DST_NAT)
38 #else 45 #else
39 #include <linux/errno.h> 46 #include <linux/errno.h>
40 47
41 static inline int ovs_ct_init(struct net *net) 48 static inline int ovs_ct_init(struct net *net) { return 0; }
42 49
43 static inline void ovs_ct_exit(struct net *net 50 static inline void ovs_ct_exit(struct net *net) { }
44 51
45 static inline bool ovs_ct_verify(struct net *n 52 static inline bool ovs_ct_verify(struct net *net, int attr)
46 { 53 {
47 return false; 54 return false;
48 } 55 }
49 56
50 static inline int ovs_ct_copy_action(struct ne 57 static inline int ovs_ct_copy_action(struct net *net, const struct nlattr *nla,
51 const str 58 const struct sw_flow_key *key,
52 struct sw 59 struct sw_flow_actions **acts, bool log)
53 { 60 {
54 return -ENOTSUPP; 61 return -ENOTSUPP;
55 } 62 }
56 63
57 static inline int ovs_ct_action_to_attr(const 64 static inline int ovs_ct_action_to_attr(const struct ovs_conntrack_info *info,
58 struct 65 struct sk_buff *skb)
59 { 66 {
60 return -ENOTSUPP; 67 return -ENOTSUPP;
61 } 68 }
62 69
63 static inline int ovs_ct_execute(struct net *n 70 static inline int ovs_ct_execute(struct net *net, struct sk_buff *skb,
64 struct sw_flo 71 struct sw_flow_key *key,
65 const struct 72 const struct ovs_conntrack_info *info)
66 { 73 {
67 kfree_skb(skb); 74 kfree_skb(skb);
68 return -ENOTSUPP; 75 return -ENOTSUPP;
69 } 76 }
70 77
71 static inline int ovs_ct_clear(struct sk_buff 78 static inline int ovs_ct_clear(struct sk_buff *skb,
72 struct sw_flow_ 79 struct sw_flow_key *key)
73 { 80 {
74 return -ENOTSUPP; 81 return -ENOTSUPP;
75 } 82 }
76 83
77 static inline void ovs_ct_fill_key(const struc 84 static inline void ovs_ct_fill_key(const struct sk_buff *skb,
78 struct sw_f !! 85 struct sw_flow_key *key)
79 bool post_c <<
80 { 86 {
81 key->ct_state = 0; 87 key->ct_state = 0;
82 key->ct_zone = 0; 88 key->ct_zone = 0;
83 key->ct.mark = 0; 89 key->ct.mark = 0;
84 memset(&key->ct.labels, 0, sizeof(key- 90 memset(&key->ct.labels, 0, sizeof(key->ct.labels));
85 /* Clear 'ct_orig_proto' to mark the n 91 /* Clear 'ct_orig_proto' to mark the non-existence of original
86 * direction key fields. 92 * direction key fields.
87 */ 93 */
88 key->ct_orig_proto = 0; 94 key->ct_orig_proto = 0;
89 } 95 }
90 96
91 static inline int ovs_ct_put_key(const struct 97 static inline int ovs_ct_put_key(const struct sw_flow_key *swkey,
92 const struct 98 const struct sw_flow_key *output,
93 struct sk_buf 99 struct sk_buff *skb)
94 { 100 {
95 return 0; 101 return 0;
96 } 102 }
97 103
98 static inline void ovs_ct_free_action(const st 104 static inline void ovs_ct_free_action(const struct nlattr *a) { }
99 105
100 #define CT_SUPPORTED_MASK 0 106 #define CT_SUPPORTED_MASK 0
101 #endif /* CONFIG_NF_CONNTRACK */ 107 #endif /* CONFIG_NF_CONNTRACK */
102 108
103 #if IS_ENABLED(CONFIG_NETFILTER_CONNCOUNT) 109 #if IS_ENABLED(CONFIG_NETFILTER_CONNCOUNT)
104 extern struct genl_family dp_ct_limit_genl_fam 110 extern struct genl_family dp_ct_limit_genl_family;
105 #endif 111 #endif
106 #endif /* ovs_conntrack.h */ 112 #endif /* ovs_conntrack.h */
107 113
Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.