~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~

TOMOYO Linux Cross Reference
Linux/net/ipv6/netfilter/nft_chain_nat_ipv6.c

Version: ~ [ linux-6.3-rc3 ] ~ [ linux-6.2.7 ] ~ [ linux-6.1.20 ] ~ [ linux-6.0.19 ] ~ [ linux-5.19.17 ] ~ [ linux-5.18.19 ] ~ [ linux-5.17.15 ] ~ [ linux-5.16.20 ] ~ [ linux-5.15.103 ] ~ [ linux-5.14.21 ] ~ [ linux-5.13.19 ] ~ [ linux-5.12.19 ] ~ [ linux-5.11.22 ] ~ [ linux-5.10.175 ] ~ [ linux-5.9.16 ] ~ [ linux-5.8.18 ] ~ [ linux-5.7.19 ] ~ [ linux-5.6.19 ] ~ [ linux-5.5.19 ] ~ [ linux-5.4.237 ] ~ [ linux-5.3.18 ] ~ [ linux-5.2.21 ] ~ [ linux-5.1.21 ] ~ [ linux-5.0.21 ] ~ [ linux-4.20.17 ] ~ [ linux-4.19.278 ] ~ [ linux-4.18.20 ] ~ [ linux-4.17.19 ] ~ [ linux-4.16.18 ] ~ [ linux-4.15.18 ] ~ [ linux-4.14.310 ] ~ [ linux-4.13.16 ] ~ [ linux-4.12.14 ] ~ [ linux-4.11.12 ] ~ [ linux-4.10.17 ] ~ [ linux-4.9.337 ] ~ [ linux-4.8.17 ] ~ [ linux-4.7.10 ] ~ [ linux-4.6.7 ] ~ [ linux-4.5.7 ] ~ [ linux-4.4.302 ] ~ [ linux-3.10.108 ] ~ [ linux-2.6.32.71 ] ~ [ linux-2.6.0 ] ~ [ linux-2.4.37.11 ] ~ [ unix-v6-master ] ~ [ ccs-tools-1.8.9 ] ~ [ policy-sample ] ~
Architecture: ~ [ i386 ] ~ [ alpha ] ~ [ m68k ] ~ [ mips ] ~ [ ppc ] ~ [ sparc ] ~ [ sparc64 ] ~ 
  1 /*
  2  * Copyright (c) 2011 Patrick McHardy <kaber@trash.net>
  3  * Copyright (c) 2012 Intel Corporation
  4  *
  5  * This program is free software; you can redistribute it and/or modify it
  6  * under the terms and conditions of the GNU General Public License,
  7  * version 2, as published by the Free Software Foundation.
  8  *
  9  */
 10 
 11 #include <linux/module.h>
 12 #include <linux/init.h>
 13 #include <linux/list.h>
 14 #include <linux/skbuff.h>
 15 #include <linux/ip.h>
 16 #include <linux/netfilter.h>
 17 #include <linux/netfilter_ipv6.h>
 18 #include <linux/netfilter/nf_tables.h>
 19 #include <net/netfilter/nf_conntrack.h>
 20 #include <net/netfilter/nf_nat.h>
 21 #include <net/netfilter/nf_nat_core.h>
 22 #include <net/netfilter/nf_tables.h>
 23 #include <net/netfilter/nf_tables_ipv6.h>
 24 #include <net/netfilter/nf_nat_l3proto.h>
 25 #include <net/ipv6.h>
 26 
 27 static unsigned int nft_nat_do_chain(void *priv,
 28                                      struct sk_buff *skb,
 29                                      const struct nf_hook_state *state,
 30                                      struct nf_conn *ct)
 31 {
 32         struct nft_pktinfo pkt;
 33 
 34         nft_set_pktinfo_ipv6(&pkt, skb, state);
 35 
 36         return nft_do_chain(&pkt, priv);
 37 }
 38 
 39 static unsigned int nft_nat_ipv6_fn(void *priv,
 40                                     struct sk_buff *skb,
 41                                     const struct nf_hook_state *state)
 42 {
 43         return nf_nat_ipv6_fn(priv, skb, state, nft_nat_do_chain);
 44 }
 45 
 46 static unsigned int nft_nat_ipv6_in(void *priv,
 47                                     struct sk_buff *skb,
 48                                     const struct nf_hook_state *state)
 49 {
 50         return nf_nat_ipv6_in(priv, skb, state, nft_nat_do_chain);
 51 }
 52 
 53 static unsigned int nft_nat_ipv6_out(void *priv,
 54                                      struct sk_buff *skb,
 55                                      const struct nf_hook_state *state)
 56 {
 57         return nf_nat_ipv6_out(priv, skb, state, nft_nat_do_chain);
 58 }
 59 
 60 static unsigned int nft_nat_ipv6_local_fn(void *priv,
 61                                           struct sk_buff *skb,
 62                                           const struct nf_hook_state *state)
 63 {
 64         return nf_nat_ipv6_local_fn(priv, skb, state, nft_nat_do_chain);
 65 }
 66 
 67 static const struct nf_chain_type nft_chain_nat_ipv6 = {
 68         .name           = "nat",
 69         .type           = NFT_CHAIN_T_NAT,
 70         .family         = NFPROTO_IPV6,
 71         .owner          = THIS_MODULE,
 72         .hook_mask      = (1 << NF_INET_PRE_ROUTING) |
 73                           (1 << NF_INET_POST_ROUTING) |
 74                           (1 << NF_INET_LOCAL_OUT) |
 75                           (1 << NF_INET_LOCAL_IN),
 76         .hooks          = {
 77                 [NF_INET_PRE_ROUTING]   = nft_nat_ipv6_in,
 78                 [NF_INET_POST_ROUTING]  = nft_nat_ipv6_out,
 79                 [NF_INET_LOCAL_OUT]     = nft_nat_ipv6_local_fn,
 80                 [NF_INET_LOCAL_IN]      = nft_nat_ipv6_fn,
 81         },
 82 };
 83 
 84 static int __init nft_chain_nat_ipv6_init(void)
 85 {
 86         int err;
 87 
 88         err = nft_register_chain_type(&nft_chain_nat_ipv6);
 89         if (err < 0)
 90                 return err;
 91 
 92         return 0;
 93 }
 94 
 95 static void __exit nft_chain_nat_ipv6_exit(void)
 96 {
 97         nft_unregister_chain_type(&nft_chain_nat_ipv6);
 98 }
 99 
100 module_init(nft_chain_nat_ipv6_init);
101 module_exit(nft_chain_nat_ipv6_exit);
102 
103 MODULE_LICENSE("GPL");
104 MODULE_AUTHOR("Tomasz Bursztyka <tomasz.bursztyka@linux.intel.com>");
105 MODULE_ALIAS_NFT_CHAIN(AF_INET6, "nat");
106
~ [ source navigation ] ~ [ diff markup ] ~ [ identifier search ] ~
kernel.org | git.kernel.org | LWN.net | Project Home | Wiki (Japanese) | Wiki (English) | SVN repository | Mail admin

Linux® is a registered trademark of Linus Torvalds in the United States and other countries.
TOMOYO® is a registered trademark of NTT DATA CORPORATION.

osdn.jp