Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / e30b7577bf1d338ca8a273bd2f881de5a41572b7 / . / net / ipv4 / netfilter / nf_conntrack_l3proto_ipv4_compat.c
blob: f0dfe92a00d66a6a58301a94b238baa5cae32fb7 [file] [log] [blame]
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]1/* ip_conntrack proc compat - based on ip_conntrack_standalone.c
2 *
3 * (C) 1999-2001 Paul `Rusty' Russell
4 * (C) 2002-2006 Netfilter Core Team <coreteam@netfilter.org>
Patrick McHardyf229f6c2013-04-06 15:24:29 +0200[diff] [blame]5 * (C) 2006-2010 Patrick McHardy <kaber@trash.net>
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]6 *
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License version 2 as
9 * published by the Free Software Foundation.
10 */
11#include <linux/types.h>
12#include <linux/proc_fs.h>
13#include <linux/seq_file.h>
14#include <linux/percpu.h>
Eric Paris1ae4de02010-10-13 16:25:00 -0400[diff] [blame]15#include <linux/security.h>
Eric W. Biederman457c4cb2007-09-12 12:01:34 +0200[diff] [blame]16#include <net/net_namespace.h>
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]17
18#include <linux/netfilter.h>
19#include <net/netfilter/nf_conntrack_core.h>
20#include <net/netfilter/nf_conntrack_l3proto.h>
21#include <net/netfilter/nf_conntrack_l4proto.h>
22#include <net/netfilter/nf_conntrack_expect.h>
Krzysztof Piotr Oledzki58401572008-07-21 10:01:34 -0700[diff] [blame]23#include <net/netfilter/nf_conntrack_acct.h>
Eric Dumazeteb733162010-11-15 18:43:59 +0100[diff] [blame]24#include <linux/rculist_nulls.h>
Paul Gortmakerbc3b2d72011-07-15 11:47:34 -0400[diff] [blame]25#include <linux/export.h>
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]26
27struct ct_iter_state {
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]28 struct seq_net_private p;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]29 unsigned int bucket;
30};
31
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]32static struct hlist_nulls_node *ct_get_first(struct seq_file *seq)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]33{
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]34 struct net *net = seq_file_net(seq);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]35 struct ct_iter_state *st = seq->private;
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]36 struct hlist_nulls_node *n;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]37
38 for (st->bucket = 0;
Patrick McHardyd696c7b2010-02-08 11:18:07 -0800[diff] [blame]39 st->bucket < net->ct.htable_size;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]40 st->bucket++) {
Eric Dumazeteb733162010-11-15 18:43:59 +0100[diff] [blame]41 n = rcu_dereference(
42 hlist_nulls_first_rcu(&net->ct.hash[st->bucket]));
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]43 if (!is_a_nulls(n))
Patrick McHardy76507f62008-01-31 04:38:38 -0800[diff] [blame]44 return n;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]45 }
46 return NULL;
47}
48
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]49static struct hlist_nulls_node *ct_get_next(struct seq_file *seq,
50 struct hlist_nulls_node *head)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]51{
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]52 struct net *net = seq_file_net(seq);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]53 struct ct_iter_state *st = seq->private;
54
Eric Dumazeteb733162010-11-15 18:43:59 +0100[diff] [blame]55 head = rcu_dereference(hlist_nulls_next_rcu(head));
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]56 while (is_a_nulls(head)) {
57 if (likely(get_nulls_value(head) == st->bucket)) {
Patrick McHardyd696c7b2010-02-08 11:18:07 -0800[diff] [blame]58 if (++st->bucket >= net->ct.htable_size)
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]59 return NULL;
60 }
Eric Dumazeteb733162010-11-15 18:43:59 +0100[diff] [blame]61 head = rcu_dereference(
62 hlist_nulls_first_rcu(&net->ct.hash[st->bucket]));
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]63 }
64 return head;
65}
66
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]67static struct hlist_nulls_node *ct_get_idx(struct seq_file *seq, loff_t pos)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]68{
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]69 struct hlist_nulls_node *head = ct_get_first(seq);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]70
71 if (head)
72 while (pos && (head = ct_get_next(seq, head)))
73 pos--;
74 return pos ? NULL : head;
75}
76
77static void *ct_seq_start(struct seq_file *seq, loff_t *pos)
Patrick McHardy76507f62008-01-31 04:38:38 -0800[diff] [blame]78 __acquires(RCU)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]79{
Patrick McHardy76507f62008-01-31 04:38:38 -0800[diff] [blame]80 rcu_read_lock();
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]81 return ct_get_idx(seq, *pos);
82}
83
84static void *ct_seq_next(struct seq_file *s, void *v, loff_t *pos)
85{
86 (*pos)++;
87 return ct_get_next(s, v);
88}
89
90static void ct_seq_stop(struct seq_file *s, void *v)
Patrick McHardy76507f62008-01-31 04:38:38 -0800[diff] [blame]91 __releases(RCU)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]92{
Patrick McHardy76507f62008-01-31 04:38:38 -0800[diff] [blame]93 rcu_read_unlock();
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]94}
95
Eric Paris1ae4de02010-10-13 16:25:00 -0400[diff] [blame]96#ifdef CONFIG_NF_CONNTRACK_SECMARK
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]97static void ct_show_secctx(struct seq_file *s, const struct nf_conn *ct)
Eric Paris1ae4de02010-10-13 16:25:00 -0400[diff] [blame]98{
99 int ret;
100 u32 len;
101 char *secctx;
102
103 ret = security_secid_to_secctx(ct->secmark, &secctx, &len);
104 if (ret)
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]105 return;
Eric Paris1ae4de02010-10-13 16:25:00 -0400[diff] [blame]106
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]107 seq_printf(s, "secctx=%s ", secctx);
Eric Paris1ae4de02010-10-13 16:25:00 -0400[diff] [blame]108
109 security_release_secctx(secctx, len);
Eric Paris1ae4de02010-10-13 16:25:00 -0400[diff] [blame]110}
111#else
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]112static inline void ct_show_secctx(struct seq_file *s, const struct nf_conn *ct)
Eric Paris1ae4de02010-10-13 16:25:00 -0400[diff] [blame]113{
Eric Paris1ae4de02010-10-13 16:25:00 -0400[diff] [blame]114}
115#endif
116
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]117static int ct_seq_show(struct seq_file *s, void *v)
118{
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]119 struct nf_conntrack_tuple_hash *hash = v;
120 struct nf_conn *ct = nf_ct_tuplehash_to_ctrack(hash);
Jan Engelhardt32948582008-01-31 04:53:24 -0800[diff] [blame]121 const struct nf_conntrack_l3proto *l3proto;
122 const struct nf_conntrack_l4proto *l4proto;
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]123 int ret = 0;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]124
125 NF_CT_ASSERT(ct);
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]126 if (unlikely(!atomic_inc_not_zero(&ct->ct_general.use)))
127 return 0;
128
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]129
130 /* we only want to print DIR_ORIGINAL */
131 if (NF_CT_DIRECTION(hash))
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]132 goto release;
Patrick McHardy5e8fbe22008-04-14 11:15:52 +0200[diff] [blame]133 if (nf_ct_l3num(ct) != AF_INET)
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]134 goto release;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]135
Patrick McHardy5e8fbe22008-04-14 11:15:52 +0200[diff] [blame]136 l3proto = __nf_ct_l3proto_find(nf_ct_l3num(ct));
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]137 NF_CT_ASSERT(l3proto);
Patrick McHardy5e8fbe22008-04-14 11:15:52 +0200[diff] [blame]138 l4proto = __nf_ct_l4proto_find(nf_ct_l3num(ct), nf_ct_protonum(ct));
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]139 NF_CT_ASSERT(l4proto);
140
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]141 ret = -ENOSPC;
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]142 seq_printf(s, "%-8s %u %ld ",
143 l4proto->name, nf_ct_protonum(ct),
144 timer_pending(&ct->timeout)
145 ? (long)(ct->timeout.expires - jiffies)/HZ : 0);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]146
Steven Rostedt (Red Hat)37246a52014-10-27 16:02:47 -0400[diff] [blame]147 if (l4proto->print_conntrack)
148 l4proto->print_conntrack(s, ct);
149
150 if (seq_has_overflowed(s))
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]151 goto release;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]152
Joe Perches824f1fb2014-09-29 16:08:22 -0700[diff] [blame]153 print_tuple(s, &ct->tuplehash[IP_CT_DIR_ORIGINAL].tuple,
154 l3proto, l4proto);
155
156 if (seq_has_overflowed(s))
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]157 goto release;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]158
Krzysztof Piotr Oledzki58401572008-07-21 10:01:34 -0700[diff] [blame]159 if (seq_print_acct(s, ct, IP_CT_DIR_ORIGINAL))
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]160 goto release;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]161
162 if (!(test_bit(IPS_SEEN_REPLY_BIT, &ct->status)))
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]163 seq_printf(s, "[UNREPLIED] ");
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]164
Joe Perches824f1fb2014-09-29 16:08:22 -0700[diff] [blame]165 print_tuple(s, &ct->tuplehash[IP_CT_DIR_REPLY].tuple,
166 l3proto, l4proto);
167
168 if (seq_has_overflowed(s))
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]169 goto release;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]170
Krzysztof Piotr Oledzki58401572008-07-21 10:01:34 -0700[diff] [blame]171 if (seq_print_acct(s, ct, IP_CT_DIR_REPLY))
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]172 goto release;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]173
174 if (test_bit(IPS_ASSURED_BIT, &ct->status))
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]175 seq_printf(s, "[ASSURED] ");
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]176
177#ifdef CONFIG_NF_CONNTRACK_MARK
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]178 seq_printf(s, "mark=%u ", ct->mark);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]179#endif
180
Steven Rostedt (Red Hat)e71456a2014-10-27 17:43:45 -0400[diff] [blame]181 ct_show_secctx(s, ct);
182
183 seq_printf(s, "use=%u\n", atomic_read(&ct->ct_general.use));
184
185 if (seq_has_overflowed(s))
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]186 goto release;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]187
Eric Dumazetea781f12009-03-25 21:05:46 +0100[diff] [blame]188 ret = 0;
189release:
190 nf_ct_put(ct);
191 return ret;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]192}
193
Philippe De Muyter56b3d972007-07-10 23:07:31 -0700[diff] [blame]194static const struct seq_operations ct_seq_ops = {
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]195 .start = ct_seq_start,
196 .next = ct_seq_next,
197 .stop = ct_seq_stop,
198 .show = ct_seq_show
199};
200
201static int ct_open(struct inode *inode, struct file *file)
202{
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]203 return seq_open_net(inode, file, &ct_seq_ops,
204 sizeof(struct ct_iter_state));
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]205}
206
Arjan van de Ven9a321442007-02-12 00:55:35 -0800[diff] [blame]207static const struct file_operations ct_file_ops = {
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]208 .owner = THIS_MODULE,
209 .open = ct_open,
210 .read = seq_read,
211 .llseek = seq_lseek,
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]212 .release = seq_release_net,
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]213};
214
215/* expects */
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]216struct ct_expect_iter_state {
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]217 struct seq_net_private p;
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]218 unsigned int bucket;
219};
220
221static struct hlist_node *ct_expect_get_first(struct seq_file *seq)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]222{
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]223 struct net *net = seq_file_net(seq);
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]224 struct ct_expect_iter_state *st = seq->private;
Patrick McHardy7d0742d2008-01-31 04:38:19 -0800[diff] [blame]225 struct hlist_node *n;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]226
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]227 for (st->bucket = 0; st->bucket < nf_ct_expect_hsize; st->bucket++) {
Eric Dumazeteb733162010-11-15 18:43:59 +0100[diff] [blame]228 n = rcu_dereference(
229 hlist_first_rcu(&net->ct.expect_hash[st->bucket]));
Patrick McHardy7d0742d2008-01-31 04:38:19 -0800[diff] [blame]230 if (n)
231 return n;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]232 }
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]233 return NULL;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]234}
235
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]236static struct hlist_node *ct_expect_get_next(struct seq_file *seq,
237 struct hlist_node *head)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]238{
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]239 struct net *net = seq_file_net(seq);
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]240 struct ct_expect_iter_state *st = seq->private;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]241
Eric Dumazeteb733162010-11-15 18:43:59 +0100[diff] [blame]242 head = rcu_dereference(hlist_next_rcu(head));
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]243 while (head == NULL) {
244 if (++st->bucket >= nf_ct_expect_hsize)
245 return NULL;
Eric Dumazeteb733162010-11-15 18:43:59 +0100[diff] [blame]246 head = rcu_dereference(
247 hlist_first_rcu(&net->ct.expect_hash[st->bucket]));
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]248 }
249 return head;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]250}
251
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]252static struct hlist_node *ct_expect_get_idx(struct seq_file *seq, loff_t pos)
253{
254 struct hlist_node *head = ct_expect_get_first(seq);
255
256 if (head)
257 while (pos && (head = ct_expect_get_next(seq, head)))
258 pos--;
259 return pos ? NULL : head;
260}
261
262static void *exp_seq_start(struct seq_file *seq, loff_t *pos)
Patrick McHardy76507f62008-01-31 04:38:38 -0800[diff] [blame]263 __acquires(RCU)
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]264{
Patrick McHardy7d0742d2008-01-31 04:38:19 -0800[diff] [blame]265 rcu_read_lock();
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]266 return ct_expect_get_idx(seq, *pos);
267}
268
269static void *exp_seq_next(struct seq_file *seq, void *v, loff_t *pos)
270{
271 (*pos)++;
272 return ct_expect_get_next(seq, v);
273}
274
275static void exp_seq_stop(struct seq_file *seq, void *v)
Patrick McHardy76507f62008-01-31 04:38:38 -0800[diff] [blame]276 __releases(RCU)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]277{
Patrick McHardy7d0742d2008-01-31 04:38:19 -0800[diff] [blame]278 rcu_read_unlock();
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]279}
280
281static int exp_seq_show(struct seq_file *s, void *v)
282{
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]283 struct nf_conntrack_expect *exp;
Jan Engelhardt32948582008-01-31 04:53:24 -0800[diff] [blame]284 const struct hlist_node *n = v;
Patrick McHardy5d08ad42007-07-07 22:34:07 -0700[diff] [blame]285
286 exp = hlist_entry(n, struct nf_conntrack_expect, hnode);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]287
288 if (exp->tuple.src.l3num != AF_INET)
289 return 0;
290
291 if (exp->timeout.function)
292 seq_printf(s, "%ld ", timer_pending(&exp->timeout)
293 ? (long)(exp->timeout.expires - jiffies)/HZ : 0);
294 else
295 seq_printf(s, "- ");
296
297 seq_printf(s, "proto=%u ", exp->tuple.dst.protonum);
298
299 print_tuple(s, &exp->tuple,
300 __nf_ct_l3proto_find(exp->tuple.src.l3num),
301 __nf_ct_l4proto_find(exp->tuple.src.l3num,
YOSHIFUJI Hideakie905a9e2007-02-09 23:24:47 +0900[diff] [blame]302 exp->tuple.dst.protonum));
Joe Perches1ca9e412015-03-16 11:25:17 -0700[diff] [blame]303 seq_putc(s, '\n');
304
305 return 0;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]306}
307
Philippe De Muyter56b3d972007-07-10 23:07:31 -0700[diff] [blame]308static const struct seq_operations exp_seq_ops = {
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]309 .start = exp_seq_start,
310 .next = exp_seq_next,
311 .stop = exp_seq_stop,
312 .show = exp_seq_show
313};
314
315static int exp_open(struct inode *inode, struct file *file)
316{
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]317 return seq_open_net(inode, file, &exp_seq_ops,
318 sizeof(struct ct_expect_iter_state));
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]319}
320
Arjan van de Ven9a321442007-02-12 00:55:35 -0800[diff] [blame]321static const struct file_operations ip_exp_file_ops = {
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]322 .owner = THIS_MODULE,
323 .open = exp_open,
324 .read = seq_read,
325 .llseek = seq_lseek,
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]326 .release = seq_release_net,
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]327};
328
329static void *ct_cpu_seq_start(struct seq_file *seq, loff_t *pos)
330{
Alexey Dobriyan8e9df802008-10-08 11:35:08 +0200[diff] [blame]331 struct net *net = seq_file_net(seq);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]332 int cpu;
333
334 if (*pos == 0)
335 return SEQ_START_TOKEN;
336
Rusty Russell0f23174a2008-12-29 12:23:42 +0000[diff] [blame]337 for (cpu = *pos-1; cpu < nr_cpu_ids; ++cpu) {
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]338 if (!cpu_possible(cpu))
339 continue;
340 *pos = cpu+1;
Alexey Dobriyan8e9df802008-10-08 11:35:08 +0200[diff] [blame]341 return per_cpu_ptr(net->ct.stat, cpu);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]342 }
343
344 return NULL;
345}
346
347static void *ct_cpu_seq_next(struct seq_file *seq, void *v, loff_t *pos)
348{
Alexey Dobriyan8e9df802008-10-08 11:35:08 +0200[diff] [blame]349 struct net *net = seq_file_net(seq);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]350 int cpu;
351
Rusty Russell0f23174a2008-12-29 12:23:42 +0000[diff] [blame]352 for (cpu = *pos; cpu < nr_cpu_ids; ++cpu) {
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]353 if (!cpu_possible(cpu))
354 continue;
355 *pos = cpu+1;
Alexey Dobriyan8e9df802008-10-08 11:35:08 +0200[diff] [blame]356 return per_cpu_ptr(net->ct.stat, cpu);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]357 }
358
359 return NULL;
360}
361
362static void ct_cpu_seq_stop(struct seq_file *seq, void *v)
363{
364}
365
366static int ct_cpu_seq_show(struct seq_file *seq, void *v)
367{
Alexey Dobriyan8e9df802008-10-08 11:35:08 +0200[diff] [blame]368 struct net *net = seq_file_net(seq);
369 unsigned int nr_conntracks = atomic_read(&net->ct.count);
Jan Engelhardt32948582008-01-31 04:53:24 -0800[diff] [blame]370 const struct ip_conntrack_stat *st = v;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]371
372 if (v == SEQ_START_TOKEN) {
Jesper Dangaard Broueraf740b22010-04-23 12:34:56 +0200[diff] [blame]373 seq_printf(seq, "entries searched found new invalid ignore delete delete_list insert insert_failed drop early_drop icmp_error expect_new expect_create expect_delete search_restart\n");
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]374 return 0;
375 }
376
377 seq_printf(seq, "%08x %08x %08x %08x %08x %08x %08x %08x "
Jesper Dangaard Broueraf740b22010-04-23 12:34:56 +0200[diff] [blame]378 "%08x %08x %08x %08x %08x %08x %08x %08x %08x\n",
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]379 nr_conntracks,
380 st->searched,
381 st->found,
382 st->new,
383 st->invalid,
384 st->ignore,
385 st->delete,
386 st->delete_list,
387 st->insert,
388 st->insert_failed,
389 st->drop,
390 st->early_drop,
391 st->error,
392
393 st->expect_new,
394 st->expect_create,
Jesper Dangaard Broueraf740b22010-04-23 12:34:56 +0200[diff] [blame]395 st->expect_delete,
396 st->search_restart
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]397 );
398 return 0;
399}
400
Philippe De Muyter56b3d972007-07-10 23:07:31 -0700[diff] [blame]401static const struct seq_operations ct_cpu_seq_ops = {
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]402 .start = ct_cpu_seq_start,
403 .next = ct_cpu_seq_next,
404 .stop = ct_cpu_seq_stop,
405 .show = ct_cpu_seq_show,
406};
407
408static int ct_cpu_seq_open(struct inode *inode, struct file *file)
409{
Alexey Dobriyan8e9df802008-10-08 11:35:08 +0200[diff] [blame]410 return seq_open_net(inode, file, &ct_cpu_seq_ops,
411 sizeof(struct seq_net_private));
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]412}
413
Arjan van de Ven9a321442007-02-12 00:55:35 -0800[diff] [blame]414static const struct file_operations ct_cpu_seq_fops = {
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]415 .owner = THIS_MODULE,
416 .open = ct_cpu_seq_open,
417 .read = seq_read,
418 .llseek = seq_lseek,
Alexey Dobriyan8e9df802008-10-08 11:35:08 +0200[diff] [blame]419 .release = seq_release_net,
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]420};
421
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]422static int __net_init ip_conntrack_net_init(struct net *net)
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]423{
424 struct proc_dir_entry *proc, *proc_exp, *proc_stat;
425
Gao fengd4beaa62013-02-18 01:34:54 +0000[diff] [blame]426 proc = proc_create("ip_conntrack", 0440, net->proc_net, &ct_file_ops);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]427 if (!proc)
428 goto err1;
429
Gao fengd4beaa62013-02-18 01:34:54 +0000[diff] [blame]430 proc_exp = proc_create("ip_conntrack_expect", 0440, net->proc_net,
431 &ip_exp_file_ops);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]432 if (!proc_exp)
433 goto err2;
434
Denis V. Lunev8eeee8b2008-03-27 16:55:53 -0700[diff] [blame]435 proc_stat = proc_create("ip_conntrack", S_IRUGO,
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]436 net->proc_net_stat, &ct_cpu_seq_fops);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]437 if (!proc_stat)
438 goto err3;
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]439 return 0;
440
441err3:
Gao fengece31ff2013-02-18 01:34:56 +0000[diff] [blame]442 remove_proc_entry("ip_conntrack_expect", net->proc_net);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]443err2:
Gao fengece31ff2013-02-18 01:34:56 +0000[diff] [blame]444 remove_proc_entry("ip_conntrack", net->proc_net);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]445err1:
446 return -ENOMEM;
447}
448
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]449static void __net_exit ip_conntrack_net_exit(struct net *net)
450{
451 remove_proc_entry("ip_conntrack", net->proc_net_stat);
Gao fengece31ff2013-02-18 01:34:56 +0000[diff] [blame]452 remove_proc_entry("ip_conntrack_expect", net->proc_net);
453 remove_proc_entry("ip_conntrack", net->proc_net);
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]454}
455
456static struct pernet_operations ip_conntrack_net_ops = {
457 .init = ip_conntrack_net_init,
458 .exit = ip_conntrack_net_exit,
459};
460
461int __init nf_conntrack_ipv4_compat_init(void)
462{
463 return register_pernet_subsys(&ip_conntrack_net_ops);
464}
465
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]466void __exit nf_conntrack_ipv4_compat_fini(void)
467{
Alexey Dobriyan5e6b2992008-10-08 11:35:06 +0200[diff] [blame]468 unregister_pernet_subsys(&ip_conntrack_net_ops);
Patrick McHardye4bd8bc2006-11-29 02:35:22 +0100[diff] [blame]469}