xref: /linux/net/openvswitch/conntrack.h (revision ca853314e78b0a65c20b6a889a23c31f918d4aa2)
1 /* SPDX-License-Identifier: GPL-2.0-only */
2 /*
3  * Copyright (c) 2015 Nicira, Inc.
4  */
5 
6 #ifndef OVS_CONNTRACK_H
7 #define OVS_CONNTRACK_H 1
8 
9 #include "flow.h"
10 
11 struct ovs_conntrack_info;
12 struct ovs_ct_limit_info;
13 enum ovs_key_attr;
14 
15 #if IS_ENABLED(CONFIG_NF_CONNTRACK)
16 int ovs_ct_init(struct net *);
17 void ovs_ct_exit(struct net *);
18 bool ovs_ct_verify(struct net *, enum ovs_key_attr attr);
19 int ovs_ct_copy_action(struct net *, const struct nlattr *,
20 		       const struct sw_flow_key *, struct sw_flow_actions **,
21 		       bool log);
22 int ovs_ct_action_to_attr(const struct ovs_conntrack_info *, struct sk_buff *);
23 
24 int ovs_ct_execute(struct net *, struct sk_buff *, struct sw_flow_key *,
25 		   const struct ovs_conntrack_info *);
26 int ovs_ct_clear(struct sk_buff *skb, struct sw_flow_key *key);
27 
28 void ovs_ct_fill_key(const struct sk_buff *skb, struct sw_flow_key *key);
29 int ovs_ct_put_key(const struct sw_flow_key *swkey,
30 		   const struct sw_flow_key *output, struct sk_buff *skb);
31 void ovs_ct_free_action(const struct nlattr *a);
32 
33 #define CT_SUPPORTED_MASK (OVS_CS_F_NEW | OVS_CS_F_ESTABLISHED | \
34 			   OVS_CS_F_RELATED | OVS_CS_F_REPLY_DIR | \
35 			   OVS_CS_F_INVALID | OVS_CS_F_TRACKED | \
36 			   OVS_CS_F_SRC_NAT | OVS_CS_F_DST_NAT)
37 #else
38 #include <linux/errno.h>
39 
40 static inline int ovs_ct_init(struct net *net) { return 0; }
41 
42 static inline void ovs_ct_exit(struct net *net) { }
43 
44 static inline bool ovs_ct_verify(struct net *net, int attr)
45 {
46 	return false;
47 }
48 
49 static inline int ovs_ct_copy_action(struct net *net, const struct nlattr *nla,
50 				     const struct sw_flow_key *key,
51 				     struct sw_flow_actions **acts, bool log)
52 {
53 	return -ENOTSUPP;
54 }
55 
56 static inline int ovs_ct_action_to_attr(const struct ovs_conntrack_info *info,
57 					struct sk_buff *skb)
58 {
59 	return -ENOTSUPP;
60 }
61 
62 static inline int ovs_ct_execute(struct net *net, struct sk_buff *skb,
63 				 struct sw_flow_key *key,
64 				 const struct ovs_conntrack_info *info)
65 {
66 	kfree_skb(skb);
67 	return -ENOTSUPP;
68 }
69 
70 static inline int ovs_ct_clear(struct sk_buff *skb,
71 			       struct sw_flow_key *key)
72 {
73 	return -ENOTSUPP;
74 }
75 
76 static inline void ovs_ct_fill_key(const struct sk_buff *skb,
77 				   struct sw_flow_key *key)
78 {
79 	key->ct_state = 0;
80 	key->ct_zone = 0;
81 	key->ct.mark = 0;
82 	memset(&key->ct.labels, 0, sizeof(key->ct.labels));
83 	/* Clear 'ct_orig_proto' to mark the non-existence of original
84 	 * direction key fields.
85 	 */
86 	key->ct_orig_proto = 0;
87 }
88 
89 static inline int ovs_ct_put_key(const struct sw_flow_key *swkey,
90 				 const struct sw_flow_key *output,
91 				 struct sk_buff *skb)
92 {
93 	return 0;
94 }
95 
96 static inline void ovs_ct_free_action(const struct nlattr *a) { }
97 
98 #define CT_SUPPORTED_MASK 0
99 #endif /* CONFIG_NF_CONNTRACK */
100 
101 #if IS_ENABLED(CONFIG_NETFILTER_CONNCOUNT)
102 extern struct genl_family dp_ct_limit_genl_family;
103 #endif
104 #endif /* ovs_conntrack.h */
105