Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.9 / fc1e2c8ea85e109acf09e74789e9b852f6eed251 / . / include / net / netfilter / br_netfilter.h
blob: e8d1448425a717facd1a6cfb71d72a9dfacc3ed7 [file] [log] [blame]
Pablo Neira Ayuso4b7fd5d2014-10-02 11:13:21 +0200[diff] [blame]1#ifndef _BR_NETFILTER_H_
2#define _BR_NETFILTER_H_
3
Pablo Neira Ayuso230ac492015-06-16 14:07:03 +0200[diff] [blame]4#include "../../../net/bridge/br_private.h"
5
6static inline struct nf_bridge_info *nf_bridge_alloc(struct sk_buff *skb)
7{
8 skb->nf_bridge = kzalloc(sizeof(struct nf_bridge_info), GFP_ATOMIC);
9
10 if (likely(skb->nf_bridge))
11 atomic_set(&(skb->nf_bridge->use), 1);
12
13 return skb->nf_bridge;
14}
15
16void nf_bridge_update_protocol(struct sk_buff *skb);
17
18static inline struct nf_bridge_info *
19nf_bridge_info_get(const struct sk_buff *skb)
20{
21 return skb->nf_bridge;
22}
23
24unsigned int nf_bridge_encap_header_len(const struct sk_buff *skb);
25
26static inline void nf_bridge_push_encap_header(struct sk_buff *skb)
27{
28 unsigned int len = nf_bridge_encap_header_len(skb);
29
30 skb_push(skb, len);
31 skb->network_header -= len;
32}
33
Eric W. Biederman0c4b51f2015-09-15 20:04:18 -0500[diff] [blame]34int br_nf_pre_routing_finish_bridge(struct net *net, struct sock *sk, struct sk_buff *skb);
Pablo Neira Ayuso230ac492015-06-16 14:07:03 +0200[diff] [blame]35
36static inline struct rtable *bridge_parent_rtable(const struct net_device *dev)
37{
38 struct net_bridge_port *port;
39
40 port = br_port_get_rcu(dev);
41 return port ? &port->br->fake_rtable : NULL;
42}
43
44struct net_device *setup_pre_routing(struct sk_buff *skb);
Pablo Neira Ayuso4b7fd5d2014-10-02 11:13:21 +0200[diff] [blame]45void br_netfilter_enable(void);
46
Pablo Neira Ayuso230ac492015-06-16 14:07:03 +0200[diff] [blame]47#if IS_ENABLED(CONFIG_IPV6)
Eric W. Biedermanc1444c62015-09-25 16:52:51 -0500[diff] [blame]48int br_validate_ipv6(struct net *net, struct sk_buff *skb);
Eric W. Biederman06198b32015-09-18 14:33:06 -0500[diff] [blame]49unsigned int br_nf_pre_routing_ipv6(void *priv,
Pablo Neira Ayuso230ac492015-06-16 14:07:03 +0200[diff] [blame]50 struct sk_buff *skb,
51 const struct nf_hook_state *state);
52#else
Eric W. Biedermanc1444c62015-09-25 16:52:51 -0500[diff] [blame]53static inline int br_validate_ipv6(struct net *net, struct sk_buff *skb)
Pablo Neira Ayuso230ac492015-06-16 14:07:03 +0200[diff] [blame]54{
55 return -1;
56}
57
58static inline unsigned int
59br_nf_pre_routing_ipv6(const struct nf_hook_ops *ops, struct sk_buff *skb,
60 const struct nf_hook_state *state)
61{
Bernhard Thaler18e1db62015-08-13 08:58:15 +0200[diff] [blame]62 return NF_ACCEPT;
Pablo Neira Ayuso230ac492015-06-16 14:07:03 +0200[diff] [blame]63}
64#endif
65
Pablo Neira Ayuso4b7fd5d2014-10-02 11:13:21 +0200[diff] [blame]66#endif /* _BR_NETFILTER_H_ */