[deliverable/linux.git] / net / ipv6 / netfilter / ip6table_raw.c

/*
 * IPv6 raw table, a port of the IPv4 raw table to IPv6
 *
 * Copyright (C) 2003 Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
 */
#include <linux/module.h>
#include <linux/netfilter_ipv6/ip6_tables.h>

#define RAW_VALID_HOOKS ((1 << NF_INET_PRE_ROUTING) | (1 << NF_INET_LOCAL_OUT))

static const struct xt_table packet_raw = {
	.name = "raw",
	.valid_hooks = RAW_VALID_HOOKS,
	.me = THIS_MODULE,
	.af = NFPROTO_IPV6,
	.priority = NF_IP6_PRI_FIRST,
};

/* The work comes in here from netfilter.c. */
static unsigned int
ip6table_raw_hook(unsigned int hook, struct sk_buff *skb,
		  const struct net_device *in, const struct net_device *out,
		  int (*okfn)(struct sk_buff *))
{
	const struct net *net = dev_net((in != NULL) ? in : out);

	return ip6t_do_table(skb, hook, in, out, net->ipv6.ip6table_raw);
}

static struct nf_hook_ops *rawtable_ops __read_mostly;

static int __net_init ip6table_raw_net_init(struct net *net)
{
	struct ip6t_replace *repl;

	repl = ip6t_alloc_initial_table(&packet_raw);
	if (repl == NULL)
		return -ENOMEM;
	net->ipv6.ip6table_raw =
		ip6t_register_table(net, &packet_raw, repl);
	kfree(repl);
	if (IS_ERR(net->ipv6.ip6table_raw))
		return PTR_ERR(net->ipv6.ip6table_raw);
	return 0;
}

static void __net_exit ip6table_raw_net_exit(struct net *net)
{
	ip6t_unregister_table(net, net->ipv6.ip6table_raw);
}

static struct pernet_operations ip6table_raw_net_ops = {
	.init = ip6table_raw_net_init,
	.exit = ip6table_raw_net_exit,
};

static int __init ip6table_raw_init(void)
{
	int ret;

	ret = register_pernet_subsys(&ip6table_raw_net_ops);
	if (ret < 0)
		return ret;

	/* Register hooks */
	rawtable_ops = xt_hook_link(&packet_raw, ip6table_raw_hook);
	if (IS_ERR(rawtable_ops)) {
		ret = PTR_ERR(rawtable_ops);
		goto cleanup_table;
	}

	return ret;

 cleanup_table:
	unregister_pernet_subsys(&ip6table_raw_net_ops);
	return ret;
}

static void __exit ip6table_raw_fini(void)
{
	xt_hook_unlink(&packet_raw, rawtable_ops);
	unregister_pernet_subsys(&ip6table_raw_net_ops);
}

module_init(ip6table_raw_init);
module_exit(ip6table_raw_fini);
MODULE_LICENSE("GPL");
Commit	Line	Data
1da177e4 LT	1	/*
	2	* IPv6 raw table, a port of the IPv4 raw table to IPv6
	3	*
	4	* Copyright (C) 2003 Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
	5	*/
	6	#include <linux/module.h>
	7	#include <linux/netfilter_ipv6/ip6_tables.h>
	8
6e23ae2a	9	#define RAW_VALID_HOOKS ((1 << NF_INET_PRE_ROUTING) \| (1 << NF_INET_LOCAL_OUT))
1da177e4	10
35aad0ff	11	static const struct xt_table packet_raw = {
1ab1457c YH	12	.name = "raw",
1ab1457c YH	13	.valid_hooks = RAW_VALID_HOOKS,
2e4e6a17	14	.me = THIS_MODULE,
f88e6a8a	15	.af = NFPROTO_IPV6,
2b95efe7	16	.priority = NF_IP6_PRI_FIRST,
1da177e4 LT	17	};
	18
	19	/* The work comes in here from netfilter.c. */
	20	static unsigned int
737535c5 JE	21	ip6table_raw_hook(unsigned int hook, struct sk_buff *skb,
	22	const struct net_device in, const struct net_device out,
	23	int (okfn)(struct sk_buff ))
1da177e4	24	{
2b21e051	25	const struct net *net = dev_net((in != NULL) ? in : out);
1339dd91	26
2b21e051	27	return ip6t_do_table(skb, hook, in, out, net->ipv6.ip6table_raw);
1da177e4 LT	28	}
1da177e4 LT	29
2b95efe7	30	static struct nf_hook_ops *rawtable_ops __read_mostly;
1da177e4	31
8280aa61 AD	32	static int __net_init ip6table_raw_net_init(struct net *net)
8280aa61 AD	33	{
e3eaa991 JE	34	struct ip6t_replace *repl;
	35
	36	repl = ip6t_alloc_initial_table(&packet_raw);
	37	if (repl == NULL)
	38	return -ENOMEM;
8280aa61	39	net->ipv6.ip6table_raw =
e3eaa991 JE	40	ip6t_register_table(net, &packet_raw, repl);
e3eaa991 JE	41	kfree(repl);
8280aa61 AD	42	if (IS_ERR(net->ipv6.ip6table_raw))
	43	return PTR_ERR(net->ipv6.ip6table_raw);
	44	return 0;
	45	}
	46
	47	static void __net_exit ip6table_raw_net_exit(struct net *net)
	48	{
f54e9367	49	ip6t_unregister_table(net, net->ipv6.ip6table_raw);
8280aa61 AD	50	}
	51
	52	static struct pernet_operations ip6table_raw_net_ops = {
	53	.init = ip6table_raw_net_init,
	54	.exit = ip6table_raw_net_exit,
	55	};
	56
65b4b4e8	57	static int __init ip6table_raw_init(void)
1da177e4 LT	58	{
	59	int ret;
	60
8280aa61 AD	61	ret = register_pernet_subsys(&ip6table_raw_net_ops);
	62	if (ret < 0)
	63	return ret;
1da177e4 LT	64
1da177e4 LT	65	/* Register hooks */
2b95efe7 JE	66	rawtable_ops = xt_hook_link(&packet_raw, ip6table_raw_hook);
	67	if (IS_ERR(rawtable_ops)) {
	68	ret = PTR_ERR(rawtable_ops);
1da177e4	69	goto cleanup_table;
2b95efe7	70	}
1da177e4	71
1da177e4 LT	72	return ret;
1da177e4 LT	73
1da177e4	74	cleanup_table:
8280aa61	75	unregister_pernet_subsys(&ip6table_raw_net_ops);
1da177e4 LT	76	return ret;
	77	}
	78
65b4b4e8	79	static void __exit ip6table_raw_fini(void)
1da177e4	80	{
2b95efe7	81	xt_hook_unlink(&packet_raw, rawtable_ops);
8280aa61	82	unregister_pernet_subsys(&ip6table_raw_net_ops);
1da177e4 LT	83	}
1da177e4 LT	84
65b4b4e8 AM	85	module_init(ip6table_raw_init);
65b4b4e8 AM	86	module_exit(ip6table_raw_fini);
1da177e4	87	MODULE_LICENSE("GPL");