/* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */
#ifndef _X_TABLES_H
#define _X_TABLES_H
#include <linux/const.h>
#include <linux/types.h>
#define XT_FUNCTION_MAXNAMELEN 30
#define XT_EXTENSION_MAXNAMELEN 29
#define XT_TABLE_MAXNAMELEN 32
struct xt_entry_match {
union {
struct {
__u16 match_size;
/* Used by userspace */
char name[XT_EXTENSION_MAXNAMELEN];
__u8 revision;
} user;
struct {
__u16 match_size;
/* Used inside the kernel */
struct xt_match *match;
} kernel;
/* Total length */
__u16 match_size;
} u;
unsigned char data[0];
};
struct xt_entry_target {
union {
struct {
__u16 target_size;
/* Used by userspace */
char name[XT_EXTENSION_MAXNAMELEN];
__u8 revision;
} user;
struct {
__u16 target_size;
/* Used inside the kernel */
struct xt_target *target;
} kernel;
/* Total length */
__u16 target_size;
} u;
unsigned char data[0];
};
#define XT_TARGET_INIT(__name, __size) \
{ \
.target.u.user = { \
.target_size = XT_ALIGN(__size), \
.name = __name, \
}, \
}
struct xt_standard_target {
struct xt_entry_target target;
int verdict;
};
struct xt_error_target {
struct xt_entry_target target;
char errorname[XT_FUNCTION_MAXNAMELEN];
};
/* The argument to IPT_SO_GET_REVISION_*. Returns highest revision
* kernel supports, if >= revision. */
struct xt_get_revision {
char name[XT_EXTENSION_MAXNAMELEN];
__u8 revision;
};
/* CONTINUE verdict for targets */
#define XT_CONTINUE 0xFFFFFFFF
/* For standard target */
#define XT_RETURN (-NF_REPEAT - 1)
/* this is a dummy structure to find out the alignment requirement for a struct
* containing all the fundamental data types that are used in ipt_entry,
* ip6t_entry and arpt_entry. This sucks, and it is a hack. It will be my
* personal pleasure to remove it -HW
*/
struct _xt_align {
__u8 u8;
__u16 u16;
__u32 u32;
__u64 u64;
};
#define XT_ALIGN(s) __ALIGN_KERNEL((s), __alignof__(struct _xt_align))
/* Standard return verdict, or do jump. */
#define XT_STANDARD_TARGET ""
/* Error verdict. */
#define XT_ERROR_TARGET "ERROR"
#define SET_COUNTER(c,b,p) do { (c).bcnt = (b); (c).pcnt = (p); } while(0)
#define ADD_COUNTER(c,b,p) do { (c).bcnt += (b); (c).pcnt += (p); } while(0)
struct xt_counters {
__u64 pcnt, bcnt; /* Packet and byte counters */
};
/* The argument to IPT_SO_ADD_COUNTERS. */
struct xt_counters_info {
/* Which table. */
char name[XT_TABLE_MAXNAMELEN];
unsigned int num_counters;
/* The counters (actually `number' of these). */
struct xt_counters counters[0];
};
#define XT_INV_PROTO 0x40 /* Invert the sense of PROTO. */
/* fn returns 0 to continue iteration */
#define XT_MATCH_ITERATE(type, e, fn, args...) \
({ \
unsigned int __i; \
int __ret = 0; \
struct xt_entry_match *__m; \
\
for (__i = sizeof(type); \
__i < (e)->target_offset; \
__i += __m->u.match_size) { \
__m = (void *)e + __i; \
\
__ret = fn(__m , ## args); \
if (__ret != 0) \
break; \
} \
__ret; \
})
/* fn returns 0 to continue iteration */
#define XT_ENTRY_ITERATE_CONTINUE(type, entries, size, n, fn, args...) \
({ \
unsigned int __i, __n; \
int __ret = 0; \
type *__entry; \
\
for (__i = 0, __n = 0; __i < (size); \
__i += __entry->next_offset, __n++) { \
__entry = (void *)(entries) + __i; \
if (__n < n) \
continue; \
\
__ret = fn(__entry , ## args); \
if (__ret != 0) \
break; \
} \
__ret; \
})
/* fn returns 0 to continue iteration */
#define XT_ENTRY_ITERATE(type, entries, size, fn, args...) \
XT_ENTRY_ITERATE_CONTINUE(type, entries, size, 0, fn, args)
/* pos is normally a struct ipt_entry/ip6t_entry/etc. */
#define xt_entry_foreach(pos, ehead, esize) \
for ((pos) = (typeof(pos))(ehead); \
(pos) < (typeof(pos))((char *)(ehead) + (esize)); \
(pos) = (typeof(pos))((char *)(pos) + (pos)->next_offset))
/* can only be xt_entry_match, so no use of typeof here */
#define xt_ematch_foreach(pos, entry) \
for ((pos) = (struct xt_entry_match *)entry->elems; \
(pos) < (struct xt_entry_match *)((char *)(entry) + \
(entry)->target_offset); \
(pos) = (struct xt_entry_match *)((char *)(pos) + \
(pos)->u.match_size))
#endif /* _X_TABLES_H */
| Name | Type | Size | Permission | Actions |
|---|---|---|---|---|
| ipset | Folder | 0755 |
|
|
| nf_conntrack_common.h | File | 4.15 KB | 0644 |
|
| nf_conntrack_ftp.h | File | 438 B | 0644 |
|
| nf_conntrack_sctp.h | File | 576 B | 0644 |
|
| nf_conntrack_tcp.h | File | 1.3 KB | 0644 |
|
| nf_conntrack_tuple_common.h | File | 896 B | 0644 |
|
| nf_log.h | File | 538 B | 0644 |
|
| nf_nat.h | File | 1.19 KB | 0644 |
|
| nf_tables.h | File | 39.23 KB | 0644 |
|
| nf_tables_compat.h | File | 731 B | 0644 |
|
| nfnetlink.h | File | 2.37 KB | 0644 |
|
| nfnetlink_acct.h | File | 900 B | 0644 |
|
| nfnetlink_compat.h | File | 2.39 KB | 0644 |
|
| nfnetlink_conntrack.h | File | 5.57 KB | 0644 |
|
| nfnetlink_cthelper.h | File | 1.18 KB | 0644 |
|
| nfnetlink_cttimeout.h | File | 2.86 KB | 0644 |
|
| nfnetlink_log.h | File | 2.73 KB | 0644 |
|
| nfnetlink_queue.h | File | 3.42 KB | 0644 |
|
| x_tables.h | File | 4.36 KB | 0644 |
|
| xt_AUDIT.h | File | 718 B | 0644 |
|
| xt_CHECKSUM.h | File | 563 B | 0644 |
|
| xt_CLASSIFY.h | File | 217 B | 0644 |
|
| xt_CONNMARK.h | File | 199 B | 0644 |
|
| xt_CONNSECMARK.h | File | 301 B | 0644 |
|
| xt_CT.h | File | 853 B | 0644 |
|
| xt_DSCP.h | File | 697 B | 0644 |
|
| xt_HMARK.h | File | 933 B | 0644 |
|
| xt_IDLETIMER.h | File | 1.36 KB | 0644 |
|
| xt_LED.h | File | 470 B | 0644 |
|
| xt_LOG.h | File | 642 B | 0644 |
|
| xt_MARK.h | File | 184 B | 0644 |
|
| xt_NFLOG.h | File | 556 B | 0644 |
|
| xt_NFQUEUE.h | File | 779 B | 0644 |
|
| xt_RATEEST.h | File | 390 B | 0644 |
|
| xt_SECMARK.h | File | 648 B | 0644 |
|
| xt_SYNPROXY.h | File | 419 B | 0644 |
|
| xt_TCPMSS.h | File | 235 B | 0644 |
|
| xt_TCPOPTSTRIP.h | File | 407 B | 0644 |
|
| xt_TEE.h | File | 333 B | 0644 |
|
| xt_TPROXY.h | File | 575 B | 0644 |
|
| xt_addrtype.h | File | 1.06 KB | 0644 |
|
| xt_bpf.h | File | 935 B | 0644 |
|
| xt_cgroup.h | File | 740 B | 0644 |
|
| xt_cluster.h | File | 374 B | 0644 |
|
| xt_comment.h | File | 230 B | 0644 |
|
| xt_connbytes.h | File | 577 B | 0644 |
|
| xt_connlabel.h | File | 280 B | 0644 |
|
| xt_connlimit.h | File | 575 B | 0644 |
|
| xt_connmark.h | File | 755 B | 0644 |
|
| xt_conntrack.h | File | 2.5 KB | 0644 |
|
| xt_cpu.h | File | 199 B | 0644 |
|
| xt_dccp.h | File | 483 B | 0644 |
|
| xt_devgroup.h | File | 429 B | 0644 |
|
| xt_dscp.h | File | 701 B | 0644 |
|
| xt_ecn.h | File | 736 B | 0644 |
|
| xt_esp.h | File | 418 B | 0644 |
|
| xt_hashlimit.h | File | 3.18 KB | 0644 |
|
| xt_helper.h | File | 188 B | 0644 |
|
| xt_ipcomp.h | File | 485 B | 0644 |
|
| xt_iprange.h | File | 581 B | 0644 |
|
| xt_ipvs.h | File | 680 B | 0644 |
|
| xt_l2tp.h | File | 739 B | 0644 |
|
| xt_length.h | File | 221 B | 0644 |
|
| xt_limit.h | File | 673 B | 0644 |
|
| xt_mac.h | File | 227 B | 0644 |
|
| xt_mark.h | File | 260 B | 0644 |
|
| xt_multiport.h | File | 721 B | 0644 |
|
| xt_nfacct.h | File | 421 B | 0644 |
|
| xt_osf.h | File | 3.31 KB | 0644 |
|
| xt_owner.h | File | 369 B | 0644 |
|
| xt_physdev.h | File | 553 B | 0644 |
|
| xt_pkttype.h | File | 188 B | 0644 |
|
| xt_policy.h | File | 1022 B | 0644 |
|
| xt_quota.h | File | 400 B | 0644 |
|
| xt_rateest.h | File | 859 B | 0644 |
|
| xt_realm.h | File | 220 B | 0644 |
|
| xt_recent.h | File | 1.03 KB | 0644 |
|
| xt_rpfilter.h | File | 320 B | 0644 |
|
| xt_sctp.h | File | 2.27 KB | 0644 |
|
| xt_set.h | File | 1.78 KB | 0644 |
|
| xt_socket.h | File | 640 B | 0644 |
|
| xt_state.h | File | 331 B | 0644 |
|
| xt_statistic.h | File | 716 B | 0644 |
|
| xt_string.h | File | 664 B | 0644 |
|
| xt_tcpmss.h | File | 253 B | 0644 |
|
| xt_tcpudp.h | File | 1.22 KB | 0644 |
|
| xt_time.h | File | 730 B | 0644 |
|
| xt_u32.h | File | 752 B | 0644 |
|