mirror of
https://github.com/torvalds/linux
synced 2024-07-22 19:21:07 +00:00
a2225e0250
Currently, the sysctl net.netfilter.nf_hooks_lwtunnel depends on the
nf_conntrack module, but the nf_conntrack module is not always loaded.
Therefore, accessing net.netfilter.nf_hooks_lwtunnel may have an error.
Move sysctl nf_hooks_lwtunnel into the netfilter core.
Fixes: 7a3f5b0de3 ("netfilter: add netfilter hooks to SRv6 data plane")
Suggested-by: Pablo Neira Ayuso <pablo@netfilter.org>
Signed-off-by: Jianguo Wu <wujianguo@chinatelecom.cn>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
38 lines
998 B
C
38 lines
998 B
C
/* SPDX-License-Identifier: GPL-2.0 */
|
|
#ifndef __NETNS_NETFILTER_H
|
|
#define __NETNS_NETFILTER_H
|
|
|
|
#include <linux/netfilter_defs.h>
|
|
|
|
struct proc_dir_entry;
|
|
struct nf_logger;
|
|
struct nf_queue_handler;
|
|
|
|
struct netns_nf {
|
|
#if defined CONFIG_PROC_FS
|
|
struct proc_dir_entry *proc_netfilter;
|
|
#endif
|
|
const struct nf_logger __rcu *nf_loggers[NFPROTO_NUMPROTO];
|
|
#ifdef CONFIG_SYSCTL
|
|
struct ctl_table_header *nf_log_dir_header;
|
|
#ifdef CONFIG_LWTUNNEL
|
|
struct ctl_table_header *nf_lwtnl_dir_header;
|
|
#endif
|
|
#endif
|
|
struct nf_hook_entries __rcu *hooks_ipv4[NF_INET_NUMHOOKS];
|
|
struct nf_hook_entries __rcu *hooks_ipv6[NF_INET_NUMHOOKS];
|
|
#ifdef CONFIG_NETFILTER_FAMILY_ARP
|
|
struct nf_hook_entries __rcu *hooks_arp[NF_ARP_NUMHOOKS];
|
|
#endif
|
|
#ifdef CONFIG_NETFILTER_FAMILY_BRIDGE
|
|
struct nf_hook_entries __rcu *hooks_bridge[NF_INET_NUMHOOKS];
|
|
#endif
|
|
#if IS_ENABLED(CONFIG_NF_DEFRAG_IPV4)
|
|
unsigned int defrag_ipv4_users;
|
|
#endif
|
|
#if IS_ENABLED(CONFIG_NF_DEFRAG_IPV6)
|
|
unsigned int defrag_ipv6_users;
|
|
#endif
|
|
};
|
|
#endif
|