Release 4.11 net/netfilter/nf_conntrack_standalone.c

/* (C) 1999-2001 Paul `Rusty' Russell
 * (C) 2002-2004 Netfilter Core Team <coreteam@netfilter.org>
 * (C) 2005-2012 Patrick McHardy <kaber@trash.net>
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License version 2 as
 * published by the Free Software Foundation.
 */

#include <linux/types.h>
#include <linux/netfilter.h>
#include <linux/slab.h>
#include <linux/module.h>
#include <linux/skbuff.h>
#include <linux/proc_fs.h>
#include <linux/seq_file.h>
#include <linux/percpu.h>
#include <linux/netdevice.h>
#include <linux/security.h>
#include <net/net_namespace.h>
#ifdef CONFIG_SYSCTL
#include <linux/sysctl.h>
#endif

#include <net/netfilter/nf_conntrack.h>
#include <net/netfilter/nf_conntrack_core.h>
#include <net/netfilter/nf_conntrack_l3proto.h>
#include <net/netfilter/nf_conntrack_l4proto.h>
#include <net/netfilter/nf_conntrack_expect.h>
#include <net/netfilter/nf_conntrack_helper.h>
#include <net/netfilter/nf_conntrack_acct.h>
#include <net/netfilter/nf_conntrack_zones.h>
#include <net/netfilter/nf_conntrack_timestamp.h>
#include <linux/rculist_nulls.h>

MODULE_LICENSE("GPL");

#ifdef CONFIG_NF_CONNTRACK_PROCFS

void

print_tuple(struct seq_file *s, const struct nf_conntrack_tuple *tuple,
            const struct nf_conntrack_l3proto *l3proto,
            const struct nf_conntrack_l4proto *l4proto)
{
	l3proto->print_tuple(s, tuple);
	l4proto->print_tuple(s, tuple);
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
38
82.61%
1
25.00%
Joe Perches
3
6.52%
1
25.00%
Martin Josefsson
3
6.52%
1
25.00%
Jan Engelhardt
2
4.35%
1
25.00%
Total
46
100.00%
4
100.00%


EXPORT_SYMBOL_GPL(print_tuple);


struct ct_iter_state {
	
struct seq_net_private p;
	
struct hlist_nulls_head *hash;
	
unsigned int htable_size;
	
unsigned int bucket;
	
u_int64_t time_now;
};



static struct hlist_nulls_node *ct_get_first(struct seq_file *seq)
{
	struct ct_iter_state *st = seq->private;
	struct hlist_nulls_node *n;

	for (st->bucket = 0;
	     st->bucket < st->htable_size;
	     st->bucket++) {
		n = rcu_dereference(
			hlist_nulls_first_rcu(&st->hash[st->bucket]));
		if (!is_a_nulls(n))
			return n;
	}
	return NULL;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
54
65.85%
1
20.00%
Patrick McHardy
12
14.63%
1
20.00%
Eric Dumazet
10
12.20%
2
40.00%
Liping Zhang
6
7.32%
1
20.00%
Total
82
100.00%
5
100.00%



static struct hlist_nulls_node *ct_get_next(struct seq_file *seq,
				      struct hlist_nulls_node *head)
{
	struct ct_iter_state *st = seq->private;

	head = rcu_dereference(hlist_nulls_next_rcu(head));
	while (is_a_nulls(head)) {
		if (likely(get_nulls_value(head) == st->bucket)) {
			if (++st->bucket >= st->htable_size)
				return NULL;
		}
		head = rcu_dereference(
			hlist_nulls_first_rcu(&st->hash[st->bucket]));
	}
	return head;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
58
59.79%
1
20.00%
Eric Dumazet
27
27.84%
2
40.00%
Patrick McHardy
6
6.19%
1
20.00%
Liping Zhang
6
6.19%
1
20.00%
Total
97
100.00%
5
100.00%



static struct hlist_nulls_node *ct_get_idx(struct seq_file *seq, loff_t pos)
{
	struct hlist_nulls_node *head = ct_get_first(seq);

	if (head)
		while (pos && (head = ct_get_next(seq, head)))
			pos--;
	return pos ? NULL : head;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
53
96.36%
1
50.00%
Eric Dumazet
2
3.64%
1
50.00%
Total
55
100.00%
2
100.00%


static void *ct_seq_start(struct seq_file *seq, loff_t *pos)
	__acquires
(RCU)
{
	struct ct_iter_state *st = seq->private;

	st->time_now = ktime_get_real_ns();
	rcu_read_lock();

	nf_conntrack_get_ht(&st->hash, &st->htable_size);
	return ct_get_idx(seq, *pos);
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
26
42.62%
1
16.67%
Pablo Neira Ayuso
15
24.59%
1
16.67%
Liping Zhang
13
21.31%
1
16.67%
Patrick McHardy
3
4.92%
1
16.67%
Stephen Hemminger
3
4.92%
1
16.67%
Eric Dumazet
1
1.64%
1
16.67%
Total
61
100.00%
6
100.00%



static void *ct_seq_next(struct seq_file *s, void *v, loff_t *pos)
{
	(*pos)++;
	return ct_get_next(s, v);
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
34
100.00%
1
100.00%
Total
34
100.00%
1
100.00%


static void ct_seq_stop(struct seq_file *s, void *v)
	__releases
(RCU)
{
	rcu_read_unlock();
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
16
72.73%
1
33.33%
Patrick McHardy
3
13.64%
1
33.33%
Stephen Hemminger
3
13.64%
1
33.33%
Total
22
100.00%
3
100.00%

#ifdef CONFIG_NF_CONNTRACK_SECMARK


static void ct_show_secctx(struct seq_file *s, const struct nf_conn *ct)
{
	int ret;
	u32 len;
	char *secctx;

	ret = security_secid_to_secctx(ct->secmark, &secctx, &len);
	if (ret)
		return;

	seq_printf(s, "secctx=%s ", secctx);

	security_release_secctx(secctx, len);
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Eric Paris
61
96.83%
1
50.00%
Steven Rostedt
2
3.17%
1
50.00%
Total
63
100.00%
2
100.00%

#else


static inline void ct_show_secctx(struct seq_file *s, const struct nf_conn *ct)
{
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Eric Paris
15
88.24%
1
50.00%
Steven Rostedt
2
11.76%
1
50.00%
Total
17
100.00%
2
100.00%

#endif

#ifdef CONFIG_NF_CONNTRACK_ZONES


static void ct_show_zone(struct seq_file *s, const struct nf_conn *ct,
			 int dir)
{
	const struct nf_conntrack_zone *zone = nf_ct_zone(ct);

	if (zone->dir != dir)
		return;
	switch (zone->dir) {
	case NF_CT_DEFAULT_ZONE_DIR:
		seq_printf(s, "zone=%u ", zone->id);
		break;
	case NF_CT_ZONE_DIR_ORIG:
		seq_printf(s, "zone-orig=%u ", zone->id);
		break;
	case NF_CT_ZONE_DIR_REPL:
		seq_printf(s, "zone-reply=%u ", zone->id);
		break;
	default:
		break;
	}
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Daniel Borkmann
95
100.00%
2
100.00%
Total
95
100.00%
2
100.00%

#else


static inline void ct_show_zone(struct seq_file *s, const struct nf_conn *ct,
				int dir)
{
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Daniel Borkmann
20
100.00%
2
100.00%
Total
20
100.00%
2
100.00%

#endif

#ifdef CONFIG_NF_CONNTRACK_TIMESTAMP


static void ct_show_delta_time(struct seq_file *s, const struct nf_conn *ct)
{
	struct ct_iter_state *st = s->private;
	struct nf_conn_tstamp *tstamp;
	s64 delta_time;

	tstamp = nf_conn_tstamp_find(ct);
	if (tstamp) {
		delta_time = st->time_now - tstamp->start;
		if (delta_time > 0)
			delta_time = div_s64(delta_time, NSEC_PER_SEC);
		else
			delta_time = 0;

		seq_printf(s, "delta-time=%llu ",
			   (unsigned long long)delta_time);
	}
	return;
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Pablo Neira Ayuso
59
64.13%
1
33.33%
Patrick McHardy
30
32.61%
1
33.33%
Steven Rostedt
3
3.26%
1
33.33%
Total
92
100.00%
3
100.00%

#else

static inline void

ct_show_delta_time(struct seq_file *s, const struct nf_conn *ct)
{
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Pablo Neira Ayuso
15
88.24%
1
50.00%
Steven Rostedt
2
11.76%
1
50.00%
Total
17
100.00%
2
100.00%

#endif

/* return 0 on success, 1 in case of error */


static int ct_seq_show(struct seq_file *s, void *v)
{
	struct nf_conntrack_tuple_hash *hash = v;
	struct nf_conn *ct = nf_ct_tuplehash_to_ctrack(hash);
	const struct nf_conntrack_l3proto *l3proto;
	const struct nf_conntrack_l4proto *l4proto;
	struct net *net = seq_file_net(s);
	int ret = 0;

	NF_CT_ASSERT(ct);
	if (unlikely(!atomic_inc_not_zero(&ct->ct_general.use)))
		return 0;

	if (nf_ct_should_gc(ct)) {
		nf_ct_kill(ct);
		goto release;
	}

	/* we only want to print DIR_ORIGINAL */
	if (NF_CT_DIRECTION(hash))
		goto release;

	if (!net_eq(nf_ct_net(ct), net))
		goto release;

	l3proto = __nf_ct_l3proto_find(nf_ct_l3num(ct));
	NF_CT_ASSERT(l3proto);
	l4proto = __nf_ct_l4proto_find(nf_ct_l3num(ct), nf_ct_protonum(ct));
	NF_CT_ASSERT(l4proto);

	ret = -ENOSPC;
	seq_printf(s, "%-8s %u %-8s %u %ld ",
		   l3proto->name, nf_ct_l3num(ct),
		   l4proto->name, nf_ct_protonum(ct),
		   nf_ct_expires(ct)  / HZ);

	if (l4proto->print_conntrack)
		l4proto->print_conntrack(s, ct);

	print_tuple(s, &ct->tuplehash[IP_CT_DIR_ORIGINAL].tuple,
		    l3proto, l4proto);

	ct_show_zone(s, ct, NF_CT_ZONE_DIR_ORIG);

	if (seq_has_overflowed(s))
		goto release;

	if (seq_print_acct(s, ct, IP_CT_DIR_ORIGINAL))
		goto release;

	if (!(test_bit(IPS_SEEN_REPLY_BIT, &ct->status)))
		seq_printf(s, "[UNREPLIED] ");

	print_tuple(s, &ct->tuplehash[IP_CT_DIR_REPLY].tuple,
		    l3proto, l4proto);

	ct_show_zone(s, ct, NF_CT_ZONE_DIR_REPL);

	if (seq_print_acct(s, ct, IP_CT_DIR_REPLY))
		goto release;

	if (test_bit(IPS_ASSURED_BIT, &ct->status))
		seq_printf(s, "[ASSURED] ");

	if (seq_has_overflowed(s))
		goto release;

#if defined(CONFIG_NF_CONNTRACK_MARK)
	seq_printf(s, "mark=%u ", ct->mark);
#endif

	ct_show_secctx(s, ct);
	ct_show_zone(s, ct, NF_CT_DEFAULT_ZONE_DIR);
	ct_show_delta_time(s, ct);

	seq_printf(s, "use=%u\n", atomic_read(&ct->ct_general.use));

	if (seq_has_overflowed(s))
		goto release;

	ret = 0;
release:
	nf_ct_put(ct);
	return ret;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
219
49.55%
1
4.55%
Eric Dumazet
55
12.44%
1
4.55%
Patrick McHardy
41
9.28%
4
18.18%
Steven Rostedt
32
7.24%
2
9.09%
Liping Zhang
26
5.88%
1
4.55%
Daniel Borkmann
21
4.75%
2
9.09%
Florian Westphal
18
4.07%
2
9.09%
Martin Josefsson
9
2.04%
1
4.55%
Pablo Neira Ayuso
7
1.58%
2
9.09%
Krzysztof Piotr Oledzki
4
0.90%
1
4.55%
James Morris
4
0.90%
1
4.55%
Jan Engelhardt
2
0.45%
1
4.55%
Joe Perches
2
0.45%
1
4.55%
David S. Miller
1
0.23%
1
4.55%
Eric Paris
1
0.23%
1
4.55%
Total
442
100.00%
22
100.00%


static const struct seq_operations ct_seq_ops = {
	.start = ct_seq_start,
	.next  = ct_seq_next,
	.stop  = ct_seq_stop,
	.show  = ct_seq_show
};



static int ct_open(struct inode *inode, struct file *file)
{
	return seq_open_net(inode, file, &ct_seq_ops,
			sizeof(struct ct_iter_state));
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
25
75.76%
1
33.33%
Pavel Emelyanov
5
15.15%
1
33.33%
Alexey Dobriyan
3
9.09%
1
33.33%
Total
33
100.00%
3
100.00%


static const struct file_operations ct_file_ops = {
	.owner   = THIS_MODULE,
	.open    = ct_open,
	.read    = seq_read,
	.llseek  = seq_lseek,
	.release = seq_release_net,
};



static void *ct_cpu_seq_start(struct seq_file *seq, loff_t *pos)
{
	struct net *net = seq_file_net(seq);
	int cpu;

	if (*pos == 0)
		return SEQ_START_TOKEN;

	for (cpu = *pos-1; cpu < nr_cpu_ids; ++cpu) {
		if (!cpu_possible(cpu))
			continue;
		*pos = cpu + 1;
		return per_cpu_ptr(net->ct.stat, cpu);
	}

	return NULL;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
71
80.68%
1
25.00%
Alexey Dobriyan
16
18.18%
2
50.00%
Rusty Russell
1
1.14%
1
25.00%
Total
88
100.00%
4
100.00%



static void *ct_cpu_seq_next(struct seq_file *seq, void *v, loff_t *pos)
{
	struct net *net = seq_file_net(seq);
	int cpu;

	for (cpu = *pos; cpu < nr_cpu_ids; ++cpu) {
		if (!cpu_possible(cpu))
			continue;
		*pos = cpu + 1;
		return per_cpu_ptr(net->ct.stat, cpu);
	}

	return NULL;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
63
78.75%
1
25.00%
Alexey Dobriyan
16
20.00%
2
50.00%
Rusty Russell
1
1.25%
1
25.00%
Total
80
100.00%
4
100.00%



static void ct_cpu_seq_stop(struct seq_file *seq, void *v)
{
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
14
100.00%
1
100.00%
Total
14
100.00%
1
100.00%



static int ct_cpu_seq_show(struct seq_file *seq, void *v)
{
	struct net *net = seq_file_net(seq);
	unsigned int nr_conntracks = atomic_read(&net->ct.count);
	const struct ip_conntrack_stat *st = v;

	if (v == SEQ_START_TOKEN) {
		seq_printf(seq, "entries  searched found new invalid ignore delete delete_list insert insert_failed drop early_drop icmp_error  expect_new expect_create expect_delete search_restart\n");
		return 0;
	}

	seq_printf(seq, "%08x  %08x %08x %08x %08x %08x %08x %08x "
			"%08x %08x %08x %08x %08x  %08x %08x %08x %08x\n",
		   nr_conntracks,
		   0,
		   st->found,
		   0,
		   st->invalid,
		   st->ignore,
		   0,
		   0,
		   st->insert,
		   st->insert_failed,
		   st->drop,
		   st->early_drop,
		   st->error,

		   st->expect_new,
		   st->expect_create,
		   st->expect_delete,
		   st->search_restart
		);
	return 0;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
108
80.60%
1
16.67%
Alexey Dobriyan
15
11.19%
2
33.33%
Jesper Dangaard Brouer
6
4.48%
1
16.67%
Florian Westphal
4
2.99%
1
16.67%
Jan Engelhardt
1
0.75%
1
16.67%
Total
134
100.00%
6
100.00%


static const struct seq_operations ct_cpu_seq_ops = {
	.start	= ct_cpu_seq_start,
	.next	= ct_cpu_seq_next,
	.stop	= ct_cpu_seq_stop,
	.show	= ct_cpu_seq_show,
};



static int ct_cpu_seq_open(struct inode *inode, struct file *file)
{
	return seq_open_net(inode, file, &ct_cpu_seq_ops,
			    sizeof(struct seq_net_private));
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
24
72.73%
1
50.00%
Alexey Dobriyan
9
27.27%
1
50.00%
Total
33
100.00%
2
100.00%


static const struct file_operations ct_cpu_seq_fops = {
	.owner	 = THIS_MODULE,
	.open	 = ct_cpu_seq_open,
	.read	 = seq_read,
	.llseek	 = seq_lseek,
	.release = seq_release_net,
};



static int nf_conntrack_standalone_init_proc(struct net *net)
{
	struct proc_dir_entry *pde;
	kuid_t root_uid;
	kgid_t root_gid;

	pde = proc_create("nf_conntrack", 0440, net->proc_net, &ct_file_ops);
	if (!pde)
		goto out_nf_conntrack;

	root_uid = make_kuid(net->user_ns, 0);
	root_gid = make_kgid(net->user_ns, 0);
	if (uid_valid(root_uid) && gid_valid(root_gid))
		proc_set_user(pde, root_uid, root_gid);

	pde = proc_create("nf_conntrack", S_IRUGO, net->proc_net_stat,
			  &ct_cpu_seq_fops);
	if (!pde)
		goto out_stat_nf_conntrack;
	return 0;

out_stat_nf_conntrack:
	remove_proc_entry("nf_conntrack", net->proc_net);
out_nf_conntrack:
	return -ENOMEM;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
70
52.63%
2
33.33%
Philip Whineray
49
36.84%
1
16.67%
Gao Feng
10
7.52%
2
33.33%
Denis V. Lunev
4
3.01%
1
16.67%
Total
133
100.00%
6
100.00%



static void nf_conntrack_standalone_fini_proc(struct net *net)
{
	remove_proc_entry("nf_conntrack", net->proc_net_stat);
	remove_proc_entry("nf_conntrack", net->proc_net);
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
24
82.76%
2
66.67%
Gao Feng
5
17.24%
1
33.33%
Total
29
100.00%
3
100.00%

#else


static int nf_conntrack_standalone_init_proc(struct net *net)
{
	return 0;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
14
100.00%
2
100.00%
Total
14
100.00%
2
100.00%



static void nf_conntrack_standalone_fini_proc(struct net *net)
{
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
10
100.00%
2
100.00%
Total
10
100.00%
2
100.00%

#endif /* CONFIG_NF_CONNTRACK_PROCFS */

/* Sysctl support */

#ifdef CONFIG_SYSCTL
/* Log invalid packets of a given protocol */

static int log_invalid_proto_min __read_mostly;

static int log_invalid_proto_max __read_mostly = 255;

/* size the user *wants to set */

static unsigned int nf_conntrack_htable_size_user __read_mostly;

extern unsigned int nf_conntrack_default_on;

unsigned int nf_conntrack_default_on __read_mostly = 1;


static int

nf_conntrack_hash_sysctl(struct ctl_table *table, int write,
			 void __user *buffer, size_t *lenp, loff_t *ppos)
{
	int ret;

	ret = proc_dointvec(table, write, buffer, lenp, ppos);
	if (ret < 0 || !write)
		return ret;

	/* update ret, we might not be able to satisfy request */
	ret = nf_conntrack_hash_resize(nf_conntrack_htable_size_user);

	/* update it to the actual value used by conntrack */
	nf_conntrack_htable_size_user = nf_conntrack_htable_size;
	return ret;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Florian Westphal
73
100.00%
1
100.00%
Total
73
100.00%
1
100.00%


static struct ctl_table_header *nf_ct_netfilter_header;


static struct ctl_table nf_ct_sysctl_table[] = {
	{
		.procname	= "nf_conntrack_max",
		.data		= &nf_conntrack_max,
		.maxlen		= sizeof(int),
		.mode		= 0644,
		.proc_handler	= proc_dointvec,
        },
	{
		.procname	= "nf_conntrack_count",
		.data		= &init_net.ct.count,
		.maxlen		= sizeof(int),
		.mode		= 0444,
		.proc_handler	= proc_dointvec,
        },
	{
		.procname       = "nf_conntrack_buckets",
		.data           = &nf_conntrack_htable_size_user,
		.maxlen         = sizeof(unsigned int),
		.mode           = 0644,
		.proc_handler   = nf_conntrack_hash_sysctl,
        },
	{
		.procname	= "nf_conntrack_checksum",
		.data		= &init_net.ct.sysctl_checksum,
		.maxlen		= sizeof(unsigned int),
		.mode		= 0644,
		.proc_handler	= proc_dointvec,
        },
	{
		.procname	= "nf_conntrack_log_invalid",
		.data		= &init_net.ct.sysctl_log_invalid,
		.maxlen		= sizeof(unsigned int),
		.mode		= 0644,
		.proc_handler	= proc_dointvec_minmax,
		.extra1		= &log_invalid_proto_min,
		.extra2		= &log_invalid_proto_max,
        },
	{
		.procname	= "nf_conntrack_expect_max",
		.data		= &nf_ct_expect_max,
		.maxlen		= sizeof(int),
		.mode		= 0644,
		.proc_handler	= proc_dointvec,
        },
	{
		.procname	= "nf_conntrack_default_on",
		.data		= &nf_conntrack_default_on,
		.maxlen		= sizeof(unsigned int),
		.mode		= 0644,
		.proc_handler	= proc_dointvec,
        },
	{ }
};


static struct ctl_table nf_ct_netfilter_table[] = {
	{
		.procname	= "nf_conntrack_max",
		.data		= &nf_conntrack_max,
		.maxlen		= sizeof(int),
		.mode		= 0644,
		.proc_handler	= proc_dointvec,
        },
	{ }
};



static int nf_conntrack_standalone_init_sysctl(struct net *net)
{
	struct ctl_table *table;

	table = kmemdup(nf_ct_sysctl_table, sizeof(nf_ct_sysctl_table),
			GFP_KERNEL);
	if (!table)
		goto out_kmemdup;

	table[1].data = &net->ct.count;
	table[3].data = &net->ct.sysctl_checksum;
	table[4].data = &net->ct.sysctl_log_invalid;

	/* Don't export sysctls to unprivileged users */
	if (net->user_ns != &init_user_ns)
		table[0].procname = NULL;

	if (!net_eq(&init_net, net))
		table[2].mode = 0444;

	net->ct.sysctl_header = register_net_sysctl(net, "net/netfilter", table);
	if (!net->ct.sysctl_header)
		goto out_unregister_netfilter;

	return 0;

out_unregister_netfilter:
	kfree(table);
out_kmemdup:
	return -ENOMEM;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
104
64.20%
4
50.00%
Eric W. Biedermann
21
12.96%
2
25.00%
Florian Westphal
20
12.35%
1
12.50%
Krzysztof Piotr Oledzki
17
10.49%
1
12.50%
Total
162
100.00%
8
100.00%



static void nf_conntrack_standalone_fini_sysctl(struct net *net)
{
	struct ctl_table *table;

	table = net->ct.sysctl_header->ctl_table_arg;
	unregister_net_sysctl_table(net->ct.sysctl_header);
	kfree(table);
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
39
97.50%
2
66.67%
Krzysztof Piotr Oledzki
1
2.50%
1
33.33%
Total
40
100.00%
3
100.00%

#else


static int nf_conntrack_standalone_init_sysctl(struct net *net)
{
	return 0;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
14
100.00%
2
100.00%
Total
14
100.00%
2
100.00%



static void nf_conntrack_standalone_fini_sysctl(struct net *net)
{
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
10
100.00%
2
100.00%
Total
10
100.00%
2
100.00%

#endif /* CONFIG_SYSCTL */



static int nf_conntrack_pernet_init(struct net *net)
{
	int ret;

	ret = nf_conntrack_init_net(net);
	if (ret < 0)
		goto out_init;

	ret = nf_conntrack_standalone_init_proc(net);
	if (ret < 0)
		goto out_proc;

	net->ct.sysctl_checksum = 1;
	net->ct.sysctl_log_invalid = 0;
	ret = nf_conntrack_standalone_init_sysctl(net);
	if (ret < 0)
		goto out_sysctl;

	return 0;

out_sysctl:
	nf_conntrack_standalone_fini_proc(net);
out_proc:
	nf_conntrack_cleanup_net(net);
out_init:
	return ret;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
97
97.00%
5
83.33%
Gao Feng
3
3.00%
1
16.67%
Total
100
100.00%
6
100.00%



static void nf_conntrack_pernet_exit(struct list_head *net_exit_list)
{
	struct net *net;

	list_for_each_entry(net, net_exit_list, exit_list) {
		nf_conntrack_standalone_fini_sysctl(net);
		nf_conntrack_standalone_fini_proc(net);
	}
	nf_conntrack_cleanup_net_list(net_exit_list);
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Alexey Dobriyan
22
53.66%
3
60.00%
Vladimir Davydov
18
43.90%
1
20.00%
Gao Feng
1
2.44%
1
20.00%
Total
41
100.00%
5
100.00%


static struct pernet_operations nf_conntrack_net_ops = {
	.init		= nf_conntrack_pernet_init,
	.exit_batch	= nf_conntrack_pernet_exit,
};



static int __init nf_conntrack_standalone_init(void)
{
	int ret = nf_conntrack_init_start();
	if (ret < 0)
		goto out_start;

	BUILD_BUG_ON(SKB_NFCT_PTRMASK != NFCT_PTRMASK);
	BUILD_BUG_ON(NFCT_INFOMASK <= IP_CT_NUMBER);

#ifdef CONFIG_SYSCTL
	nf_ct_netfilter_header =
		register_net_sysctl(&init_net, "net", nf_ct_netfilter_table);
	if (!nf_ct_netfilter_header) {
		pr_err("nf_conntrack: can't register to sysctl.\n");
		ret = -ENOMEM;
		goto out_sysctl;
	}

	nf_conntrack_htable_size_user = nf_conntrack_htable_size;
#endif

	ret = register_pernet_subsys(&nf_conntrack_net_ops);
	if (ret < 0)
		goto out_pernet;

	nf_conntrack_init_end();
	return 0;

out_pernet:
#ifdef CONFIG_SYSCTL
	unregister_net_sysctl_table(nf_ct_netfilter_header);
out_sysctl:
#endif
	nf_conntrack_cleanup_end();
out_start:
	return ret;
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Gao Feng
69
55.65%
1
11.11%
Florian Westphal
18
14.52%
2
22.22%
Pablo Neira Ayuso
17
13.71%
1
11.11%
Yasuyuki Kozakai
9
7.26%
1
11.11%
Wei Yongjun
5
4.03%
1
11.11%
Alexey Dobriyan
5
4.03%
2
22.22%
Andrew Morton
1
0.81%
1
11.11%
Total
124
100.00%
9
100.00%



static void __exit nf_conntrack_standalone_fini(void)
{
	nf_conntrack_cleanup_start();
	unregister_pernet_subsys(&nf_conntrack_net_ops);
#ifdef CONFIG_SYSCTL
	unregister_net_sysctl_table(nf_ct_netfilter_header);
#endif
	nf_conntrack_cleanup_end();
}

Contributors
Person
Tokens
Prop
Commits
CommitProp
Gao Feng
8
25.81%
1
14.29%
Pablo Neira Ayuso
8
25.81%
2
28.57%
Yasuyuki Kozakai
8
25.81%
1
14.29%
Alexey Dobriyan
5
16.13%
1
14.29%
Andrew Morton
1
3.23%
1
14.29%
Patrick McHardy
1
3.23%
1
14.29%
Total
31
100.00%
7
100.00%


module_init(nf_conntrack_standalone_init);

module_exit(nf_conntrack_standalone_fini);

/* Some modules need us, but don't depend directly on any symbol.
   They should call this. */


void need_conntrack(void)
{
}
Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
5
83.33%
1
50.00%
Harald Welte
1
16.67%
1
50.00%
Total
6
100.00%
2
100.00%


EXPORT_SYMBOL_GPL(need_conntrack);
Overall Contributors
Person
Tokens
Prop
Commits
CommitProp
Yasuyuki Kozakai
1210
41.06%
1
1.35%
Alexey Dobriyan
512
17.37%
9
12.16%
Florian Westphal
189
6.41%
6
8.11%
Patrick McHardy
171
5.80%
13
17.57%
Daniel Borkmann
143
4.85%
2
2.70%
Pablo Neira Ayuso
136
4.61%
4
5.41%
Eric Dumazet
98
3.33%
3
4.05%
Gao Feng
98
3.33%
3
4.05%
Eric Paris
87
2.95%
1
1.35%
Liping Zhang
60
2.04%
2
2.70%
Philip Whineray
49
1.66%
1
1.35%
Steven Rostedt
41
1.39%
2
2.70%
Krzysztof Piotr Oledzki
31
1.05%
2
2.70%
Eric W. Biedermann
26
0.88%
4
5.41%
Vladimir Davydov
19
0.64%
1
1.35%
Martin Josefsson
18
0.61%
3
4.05%
Joe Perches
7
0.24%
2
2.70%
Jan Engelhardt
7
0.24%
2
2.70%
Jesper Dangaard Brouer
6
0.20%
1
1.35%
Stephen Hemminger
6
0.20%
1
1.35%
Wei Yongjun
5
0.17%
1
1.35%
Pavel Emelyanov
5
0.17%
1
1.35%
Denis V. Lunev
4
0.14%
1
1.35%
James Morris
4
0.14%
1
1.35%
Andrew Morton
4
0.14%
1
1.35%
Tejun Heo
3
0.10%
1
1.35%
Arjan van de Ven
2
0.07%
1
1.35%
Rusty Russell
2
0.07%
1
1.35%
Philippe De Muyter
2
0.07%
1
1.35%
David S. Miller
1
0.03%
1
1.35%
Harald Welte
1
0.03%
1
1.35%
Total
2947
100.00%
74
100.00%
Directory: net/netfilter

Information contained on this website is for historical information purposes only and does not indicate or represent copyright ownership.