net/netfilter/nf_internals.h

0001 /* SPDX-License-Identifier: GPL-2.0 */
0002 #ifndef _NF_INTERNALS_H
0003 #define _NF_INTERNALS_H
0004
0005 #include <linux/list.h>
0006 #include <linux/skbuff.h>
0007 #include <linux/netdevice.h>
0008
0009 /* nf_conntrack_netlink.c: applied on tuple filters */
0010 #define CTA_FILTER_F_CTA_IP_SRC         (1 << 0)
0011 #define CTA_FILTER_F_CTA_IP_DST         (1 << 1)
0012 #define CTA_FILTER_F_CTA_TUPLE_ZONE     (1 << 2)
0013 #define CTA_FILTER_F_CTA_PROTO_NUM      (1 << 3)
0014 #define CTA_FILTER_F_CTA_PROTO_SRC_PORT     (1 << 4)
0015 #define CTA_FILTER_F_CTA_PROTO_DST_PORT     (1 << 5)
0016 #define CTA_FILTER_F_CTA_PROTO_ICMP_TYPE    (1 << 6)
0017 #define CTA_FILTER_F_CTA_PROTO_ICMP_CODE    (1 << 7)
0018 #define CTA_FILTER_F_CTA_PROTO_ICMP_ID      (1 << 8)
0019 #define CTA_FILTER_F_CTA_PROTO_ICMPV6_TYPE  (1 << 9)
0020 #define CTA_FILTER_F_CTA_PROTO_ICMPV6_CODE  (1 << 10)
0021 #define CTA_FILTER_F_CTA_PROTO_ICMPV6_ID    (1 << 11)
0022 #define CTA_FILTER_F_MAX            (1 << 12)
0023 #define CTA_FILTER_F_ALL            (CTA_FILTER_F_MAX-1)
0024 #define CTA_FILTER_FLAG(ctattr) CTA_FILTER_F_ ## ctattr
0025
0026 /* nf_queue.c */
0027 void nf_queue_nf_hook_drop(struct net *net);
0028
0029 /* nf_log.c */
0030 int __init netfilter_log_init(void);
0031
0032 /* core.c */
0033 void nf_hook_entries_delete_raw(struct nf_hook_entries __rcu **pp,
0034                 const struct nf_hook_ops *reg);
0035 int nf_hook_entries_insert_raw(struct nf_hook_entries __rcu **pp,
0036                 const struct nf_hook_ops *reg);
0037 #endif