xref: /linux-6.15/include/linux/netfilter_ipv6.h (revision 66dfdff0) 
1 /* IPv6-specific defines for netfilter.
2  * (C)1998 Rusty Russell -- This code is GPL.
3  * (C)1999 David Jeffery
4  *   this header was blatantly ripped from netfilter_ipv4.h
5  *   it's amazing what adding a bunch of 6s can do =8^)
6  */
7 #ifndef __LINUX_IP6_NETFILTER_H
8 #define __LINUX_IP6_NETFILTER_H
9 
10 #include <uapi/linux/netfilter_ipv6.h>
11 
12 /* Extra routing may needed on local out, as the QUEUE target never returns
13  * control to the table.
14  */
15 struct ip6_rt_info {
16 	struct in6_addr daddr;
17 	struct in6_addr saddr;
18 	u_int32_t mark;
19 };
20 
21 struct nf_queue_entry;
22 
23 /*
24  * Hook functions for ipv6 to allow xt_* modules to be built-in even
25  * if IPv6 is a module.
26  */
27 struct nf_ipv6_ops {
28 	int (*chk_addr)(struct net *net, const struct in6_addr *addr,
29 			const struct net_device *dev, int strict);
30 	void (*route_input)(struct sk_buff *skb);
31 	int (*fragment)(struct net *net, struct sock *sk, struct sk_buff *skb,
32 			int (*output)(struct net *, struct sock *, struct sk_buff *));
33 	__sum16 (*checksum)(struct sk_buff *skb, unsigned int hook,
34 			    unsigned int dataoff, u_int8_t protocol);
35 	__sum16 (*checksum_partial)(struct sk_buff *skb, unsigned int hook,
36 				    unsigned int dataoff, unsigned int len,
37 				    u_int8_t protocol);
38 	int (*route)(struct net *net, struct dst_entry **dst, struct flowi *fl,
39 		     bool strict);
40 	int (*reroute)(struct sk_buff *skb, const struct nf_queue_entry *entry);
41 };
42 
43 #ifdef CONFIG_NETFILTER
44 int ip6_route_me_harder(struct net *net, struct sk_buff *skb);
45 __sum16 nf_ip6_checksum(struct sk_buff *skb, unsigned int hook,
46 			unsigned int dataoff, u_int8_t protocol);
47 
48 int ipv6_netfilter_init(void);
49 void ipv6_netfilter_fini(void);
50 
51 extern const struct nf_ipv6_ops __rcu *nf_ipv6_ops;
52 static inline const struct nf_ipv6_ops *nf_get_ipv6_ops(void)
53 {
54 	return rcu_dereference(nf_ipv6_ops);
55 }
56 
57 #else /* CONFIG_NETFILTER */
58 static inline int ipv6_netfilter_init(void) { return 0; }
59 static inline void ipv6_netfilter_fini(void) { return; }
60 static inline const struct nf_ipv6_ops *nf_get_ipv6_ops(void) { return NULL; }
61 #endif /* CONFIG_NETFILTER */
62 
63 #endif /*__LINUX_IP6_NETFILTER_H*/
64