Avoid beyond bounds copy while caching ACL
[zen-stable.git] / include / net / netfilter / nf_log.h
blobe991bd0a27afcaa87c4afcb5622188b9b5070f30
1 #ifndef _NF_LOG_H
2 #define _NF_LOG_H
4 #include <linux/netfilter.h>
6 /* those NF_LOG_* defines and struct nf_loginfo are legacy definitios that will
7 * disappear once iptables is replaced with pkttables. Please DO NOT use them
8 * for any new code! */
9 #define NF_LOG_TCPSEQ 0x01 /* Log TCP sequence numbers */
10 #define NF_LOG_TCPOPT 0x02 /* Log TCP options */
11 #define NF_LOG_IPOPT 0x04 /* Log IP options */
12 #define NF_LOG_UID 0x08 /* Log UID owning local socket */
13 #define NF_LOG_MASK 0x0f
15 #define NF_LOG_TYPE_LOG 0x01
16 #define NF_LOG_TYPE_ULOG 0x02
18 struct nf_loginfo {
19 u_int8_t type;
20 union {
21 struct {
22 u_int32_t copy_len;
23 u_int16_t group;
24 u_int16_t qthreshold;
25 } ulog;
26 struct {
27 u_int8_t level;
28 u_int8_t logflags;
29 } log;
30 } u;
33 typedef void nf_logfn(u_int8_t pf,
34 unsigned int hooknum,
35 const struct sk_buff *skb,
36 const struct net_device *in,
37 const struct net_device *out,
38 const struct nf_loginfo *li,
39 const char *prefix);
41 struct nf_logger {
42 struct module *me;
43 nf_logfn *logfn;
44 char *name;
45 struct list_head list[NFPROTO_NUMPROTO];
48 /* Function to register/unregister log function. */
49 int nf_log_register(u_int8_t pf, struct nf_logger *logger);
50 void nf_log_unregister(struct nf_logger *logger);
52 int nf_log_bind_pf(u_int8_t pf, const struct nf_logger *logger);
53 void nf_log_unbind_pf(u_int8_t pf);
55 /* Calls the registered backend logging function */
56 __printf(7, 8)
57 void nf_log_packet(u_int8_t pf,
58 unsigned int hooknum,
59 const struct sk_buff *skb,
60 const struct net_device *in,
61 const struct net_device *out,
62 const struct nf_loginfo *li,
63 const char *fmt, ...);
65 #endif /* _NF_LOG_H */