1 /* (C) 1999-2001 Paul `Rusty' Russell
2 * (C) 2002-2004 Netfilter Core Team <coreteam@netfilter.org>
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License version 2 as
6 * published by the Free Software Foundation.
8 * 16 Dec 2003: Yasuyuki Kozakai @USAGI <yasuyuki.kozakai@toshiba.co.jp>
9 * - enable working with L3 protocol independent connection tracking.
11 * Derived from net/ipv4/netfilter/ip_conntrack_proto_generic.c
14 #include <linux/types.h>
15 #include <linux/sched.h>
16 #include <linux/timer.h>
17 #include <linux/netfilter.h>
18 #include <net/netfilter/nf_conntrack_l4proto.h>
20 static unsigned int nf_ct_generic_timeout __read_mostly
= 600*HZ
;
22 static int generic_pkt_to_tuple(const struct sk_buff
*skb
,
24 struct nf_conntrack_tuple
*tuple
)
32 static int generic_invert_tuple(struct nf_conntrack_tuple
*tuple
,
33 const struct nf_conntrack_tuple
*orig
)
41 /* Print out the per-protocol part of the tuple. */
42 static int generic_print_tuple(struct seq_file
*s
,
43 const struct nf_conntrack_tuple
*tuple
)
48 /* Print out the private part of the conntrack. */
49 static int generic_print_conntrack(struct seq_file
*s
,
50 const struct nf_conn
*state
)
55 /* Returns verdict for packet, or -1 for invalid. */
56 static int packet(struct nf_conn
*conntrack
,
57 const struct sk_buff
*skb
,
59 enum ip_conntrack_info ctinfo
,
63 nf_ct_refresh_acct(conntrack
, ctinfo
, skb
, nf_ct_generic_timeout
);
67 /* Called when a new connection for this protocol found. */
68 static int new(struct nf_conn
*conntrack
, const struct sk_buff
*skb
,
75 static struct ctl_table_header
*generic_sysctl_header
;
76 static struct ctl_table generic_sysctl_table
[] = {
78 .ctl_name
= NET_NF_CONNTRACK_GENERIC_TIMEOUT
,
79 .procname
= "nf_conntrack_generic_timeout",
80 .data
= &nf_ct_generic_timeout
,
81 .maxlen
= sizeof(unsigned int),
83 .proc_handler
= &proc_dointvec_jiffies
,
89 #ifdef CONFIG_NF_CONNTRACK_PROC_COMPAT
90 static struct ctl_table generic_compat_sysctl_table
[] = {
92 .ctl_name
= NET_IPV4_NF_CONNTRACK_GENERIC_TIMEOUT
,
93 .procname
= "ip_conntrack_generic_timeout",
94 .data
= &nf_ct_generic_timeout
,
95 .maxlen
= sizeof(unsigned int),
97 .proc_handler
= &proc_dointvec_jiffies
,
103 #endif /* CONFIG_NF_CONNTRACK_PROC_COMPAT */
104 #endif /* CONFIG_SYSCTL */
106 struct nf_conntrack_l4proto nf_conntrack_l4proto_generic
=
108 .l3proto
= PF_UNSPEC
,
111 .pkt_to_tuple
= generic_pkt_to_tuple
,
112 .invert_tuple
= generic_invert_tuple
,
113 .print_tuple
= generic_print_tuple
,
114 .print_conntrack
= generic_print_conntrack
,
118 .ctl_table_header
= &generic_sysctl_header
,
119 .ctl_table
= generic_sysctl_table
,
120 #ifdef CONFIG_NF_CONNTRACK_PROC_COMPAT
121 .ctl_compat_table
= generic_compat_sysctl_table
,