18f03dea5SMartin Josefsson /* L3/L4 protocol support for nf_conntrack. */ 28f03dea5SMartin Josefsson 38f03dea5SMartin Josefsson /* (C) 1999-2001 Paul `Rusty' Russell 48f03dea5SMartin Josefsson * (C) 2002-2006 Netfilter Core Team <coreteam@netfilter.org> 58f03dea5SMartin Josefsson * (C) 2003,2004 USAGI/WIDE Project <http://www.linux-ipv6.org> 68f03dea5SMartin Josefsson * 78f03dea5SMartin Josefsson * This program is free software; you can redistribute it and/or modify 88f03dea5SMartin Josefsson * it under the terms of the GNU General Public License version 2 as 98f03dea5SMartin Josefsson * published by the Free Software Foundation. 108f03dea5SMartin Josefsson */ 118f03dea5SMartin Josefsson 128f03dea5SMartin Josefsson #include <linux/types.h> 138f03dea5SMartin Josefsson #include <linux/netfilter.h> 148f03dea5SMartin Josefsson #include <linux/module.h> 155a0e3ad6STejun Heo #include <linux/slab.h> 16d62f9ed4SPatrick McHardy #include <linux/mutex.h> 178f03dea5SMartin Josefsson #include <linux/vmalloc.h> 188f03dea5SMartin Josefsson #include <linux/stddef.h> 198f03dea5SMartin Josefsson #include <linux/err.h> 208f03dea5SMartin Josefsson #include <linux/percpu.h> 218f03dea5SMartin Josefsson #include <linux/notifier.h> 228f03dea5SMartin Josefsson #include <linux/kernel.h> 238f03dea5SMartin Josefsson #include <linux/netdevice.h> 24efb9a8c2SAlexey Dobriyan #include <linux/rtnetlink.h> 258f03dea5SMartin Josefsson 268f03dea5SMartin Josefsson #include <net/netfilter/nf_conntrack.h> 278f03dea5SMartin Josefsson #include <net/netfilter/nf_conntrack_l3proto.h> 28605dcad6SMartin Josefsson #include <net/netfilter/nf_conntrack_l4proto.h> 298f03dea5SMartin Josefsson #include <net/netfilter/nf_conntrack_core.h> 308f03dea5SMartin Josefsson 3142bad1daSAdrian Bunk static struct nf_conntrack_l4proto **nf_ct_protos[PF_MAX] __read_mostly; 32ae5718fbSMartin Josefsson struct nf_conntrack_l3proto *nf_ct_l3protos[AF_MAX] __read_mostly; 3313b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_ct_l3protos); 348f03dea5SMartin Josefsson 35b19caa0cSPatrick McHardy static DEFINE_MUTEX(nf_ct_proto_mutex); 36d62f9ed4SPatrick McHardy 37b19caa0cSPatrick McHardy #ifdef CONFIG_SYSCTL 38d62f9ed4SPatrick McHardy static int 39b3fd3ffeSPavel Emelyanov nf_ct_register_sysctl(struct ctl_table_header **header, struct ctl_path *path, 40d62f9ed4SPatrick McHardy struct ctl_table *table, unsigned int *users) 41d62f9ed4SPatrick McHardy { 42d62f9ed4SPatrick McHardy if (*header == NULL) { 43b3fd3ffeSPavel Emelyanov *header = register_sysctl_paths(path, table); 44d62f9ed4SPatrick McHardy if (*header == NULL) 45d62f9ed4SPatrick McHardy return -ENOMEM; 46d62f9ed4SPatrick McHardy } 47d62f9ed4SPatrick McHardy if (users != NULL) 48d62f9ed4SPatrick McHardy (*users)++; 49d62f9ed4SPatrick McHardy return 0; 50d62f9ed4SPatrick McHardy } 51d62f9ed4SPatrick McHardy 52d62f9ed4SPatrick McHardy static void 53d62f9ed4SPatrick McHardy nf_ct_unregister_sysctl(struct ctl_table_header **header, 54d62f9ed4SPatrick McHardy struct ctl_table *table, unsigned int *users) 55d62f9ed4SPatrick McHardy { 56d62f9ed4SPatrick McHardy if (users != NULL && --*users > 0) 57d62f9ed4SPatrick McHardy return; 58b3fd3ffeSPavel Emelyanov 59b3fd3ffeSPavel Emelyanov unregister_sysctl_table(*header); 60d62f9ed4SPatrick McHardy *header = NULL; 61d62f9ed4SPatrick McHardy } 62d62f9ed4SPatrick McHardy #endif 63d62f9ed4SPatrick McHardy 64605dcad6SMartin Josefsson struct nf_conntrack_l4proto * 65605dcad6SMartin Josefsson __nf_ct_l4proto_find(u_int16_t l3proto, u_int8_t l4proto) 668f03dea5SMartin Josefsson { 678f03dea5SMartin Josefsson if (unlikely(l3proto >= AF_MAX || nf_ct_protos[l3proto] == NULL)) 68605dcad6SMartin Josefsson return &nf_conntrack_l4proto_generic; 698f03dea5SMartin Josefsson 70923f4902SPatrick McHardy return rcu_dereference(nf_ct_protos[l3proto][l4proto]); 718f03dea5SMartin Josefsson } 7213b18339SPatrick McHardy EXPORT_SYMBOL_GPL(__nf_ct_l4proto_find); 738f03dea5SMartin Josefsson 748f03dea5SMartin Josefsson /* this is guaranteed to always return a valid protocol helper, since 758f03dea5SMartin Josefsson * it falls back to generic_protocol */ 768f03dea5SMartin Josefsson struct nf_conntrack_l3proto * 778f03dea5SMartin Josefsson nf_ct_l3proto_find_get(u_int16_t l3proto) 788f03dea5SMartin Josefsson { 798f03dea5SMartin Josefsson struct nf_conntrack_l3proto *p; 808f03dea5SMartin Josefsson 81923f4902SPatrick McHardy rcu_read_lock(); 828f03dea5SMartin Josefsson p = __nf_ct_l3proto_find(l3proto); 838f03dea5SMartin Josefsson if (!try_module_get(p->me)) 84605dcad6SMartin Josefsson p = &nf_conntrack_l3proto_generic; 85923f4902SPatrick McHardy rcu_read_unlock(); 868f03dea5SMartin Josefsson 878f03dea5SMartin Josefsson return p; 888f03dea5SMartin Josefsson } 8913b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_ct_l3proto_find_get); 908f03dea5SMartin Josefsson 918f03dea5SMartin Josefsson void nf_ct_l3proto_put(struct nf_conntrack_l3proto *p) 928f03dea5SMartin Josefsson { 938f03dea5SMartin Josefsson module_put(p->me); 948f03dea5SMartin Josefsson } 9513b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_ct_l3proto_put); 968f03dea5SMartin Josefsson 978f03dea5SMartin Josefsson int 988f03dea5SMartin Josefsson nf_ct_l3proto_try_module_get(unsigned short l3proto) 998f03dea5SMartin Josefsson { 1008f03dea5SMartin Josefsson int ret; 1018f03dea5SMartin Josefsson struct nf_conntrack_l3proto *p; 1028f03dea5SMartin Josefsson 1038f03dea5SMartin Josefsson retry: p = nf_ct_l3proto_find_get(l3proto); 104605dcad6SMartin Josefsson if (p == &nf_conntrack_l3proto_generic) { 1058f03dea5SMartin Josefsson ret = request_module("nf_conntrack-%d", l3proto); 1068f03dea5SMartin Josefsson if (!ret) 1078f03dea5SMartin Josefsson goto retry; 1088f03dea5SMartin Josefsson 1098f03dea5SMartin Josefsson return -EPROTOTYPE; 1108f03dea5SMartin Josefsson } 1118f03dea5SMartin Josefsson 1128f03dea5SMartin Josefsson return 0; 1138f03dea5SMartin Josefsson } 11413b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_ct_l3proto_try_module_get); 1158f03dea5SMartin Josefsson 1168f03dea5SMartin Josefsson void nf_ct_l3proto_module_put(unsigned short l3proto) 1178f03dea5SMartin Josefsson { 1188f03dea5SMartin Josefsson struct nf_conntrack_l3proto *p; 1198f03dea5SMartin Josefsson 1203b254c54SPatrick McHardy /* rcu_read_lock not necessary since the caller holds a reference, but 1213b254c54SPatrick McHardy * taken anyways to avoid lockdep warnings in __nf_ct_l3proto_find() 1223b254c54SPatrick McHardy */ 1233b254c54SPatrick McHardy rcu_read_lock(); 1248f03dea5SMartin Josefsson p = __nf_ct_l3proto_find(l3proto); 1258f03dea5SMartin Josefsson module_put(p->me); 1263b254c54SPatrick McHardy rcu_read_unlock(); 1278f03dea5SMartin Josefsson } 12813b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_ct_l3proto_module_put); 1298f03dea5SMartin Josefsson 1308f03dea5SMartin Josefsson static int kill_l3proto(struct nf_conn *i, void *data) 1318f03dea5SMartin Josefsson { 1325e8fbe2aSPatrick McHardy return nf_ct_l3num(i) == ((struct nf_conntrack_l3proto *)data)->l3proto; 1338f03dea5SMartin Josefsson } 1348f03dea5SMartin Josefsson 135605dcad6SMartin Josefsson static int kill_l4proto(struct nf_conn *i, void *data) 1368f03dea5SMartin Josefsson { 137605dcad6SMartin Josefsson struct nf_conntrack_l4proto *l4proto; 138605dcad6SMartin Josefsson l4proto = (struct nf_conntrack_l4proto *)data; 1395e8fbe2aSPatrick McHardy return nf_ct_protonum(i) == l4proto->l4proto && 1405e8fbe2aSPatrick McHardy nf_ct_l3num(i) == l4proto->l3proto; 1418f03dea5SMartin Josefsson } 1428f03dea5SMartin Josefsson 143d62f9ed4SPatrick McHardy static int nf_ct_l3proto_register_sysctl(struct nf_conntrack_l3proto *l3proto) 144d62f9ed4SPatrick McHardy { 145d62f9ed4SPatrick McHardy int err = 0; 146d62f9ed4SPatrick McHardy 147d62f9ed4SPatrick McHardy #ifdef CONFIG_SYSCTL 148d62f9ed4SPatrick McHardy if (l3proto->ctl_table != NULL) { 149d62f9ed4SPatrick McHardy err = nf_ct_register_sysctl(&l3proto->ctl_table_header, 150d62f9ed4SPatrick McHardy l3proto->ctl_table_path, 151d62f9ed4SPatrick McHardy l3proto->ctl_table, NULL); 152d62f9ed4SPatrick McHardy } 153d62f9ed4SPatrick McHardy #endif 154d62f9ed4SPatrick McHardy return err; 155d62f9ed4SPatrick McHardy } 156d62f9ed4SPatrick McHardy 157d62f9ed4SPatrick McHardy static void nf_ct_l3proto_unregister_sysctl(struct nf_conntrack_l3proto *l3proto) 158d62f9ed4SPatrick McHardy { 159d62f9ed4SPatrick McHardy #ifdef CONFIG_SYSCTL 160d62f9ed4SPatrick McHardy if (l3proto->ctl_table_header != NULL) 161d62f9ed4SPatrick McHardy nf_ct_unregister_sysctl(&l3proto->ctl_table_header, 162d62f9ed4SPatrick McHardy l3proto->ctl_table, NULL); 163d62f9ed4SPatrick McHardy #endif 164d62f9ed4SPatrick McHardy } 165d62f9ed4SPatrick McHardy 1668f03dea5SMartin Josefsson int nf_conntrack_l3proto_register(struct nf_conntrack_l3proto *proto) 1678f03dea5SMartin Josefsson { 1688f03dea5SMartin Josefsson int ret = 0; 1698f03dea5SMartin Josefsson 1700661cca9SPatrick McHardy if (proto->l3proto >= AF_MAX) 1710661cca9SPatrick McHardy return -EBUSY; 1728f03dea5SMartin Josefsson 173d0dba725SHolger Eitzenberger if (proto->tuple_to_nlattr && !proto->nlattr_tuple_size) 174d0dba725SHolger Eitzenberger return -EINVAL; 175d0dba725SHolger Eitzenberger 176b19caa0cSPatrick McHardy mutex_lock(&nf_ct_proto_mutex); 177ae5718fbSMartin Josefsson if (nf_ct_l3protos[proto->l3proto] != &nf_conntrack_l3proto_generic) { 178ae5718fbSMartin Josefsson ret = -EBUSY; 179ae5718fbSMartin Josefsson goto out_unlock; 180ae5718fbSMartin Josefsson } 181d62f9ed4SPatrick McHardy 182d62f9ed4SPatrick McHardy ret = nf_ct_l3proto_register_sysctl(proto); 183d62f9ed4SPatrick McHardy if (ret < 0) 1840661cca9SPatrick McHardy goto out_unlock; 1850661cca9SPatrick McHardy 186d0dba725SHolger Eitzenberger if (proto->nlattr_tuple_size) 187d0dba725SHolger Eitzenberger proto->nla_size = 3 * proto->nlattr_tuple_size(); 188d0dba725SHolger Eitzenberger 1890661cca9SPatrick McHardy rcu_assign_pointer(nf_ct_l3protos[proto->l3proto], proto); 190ae5718fbSMartin Josefsson 191ae5718fbSMartin Josefsson out_unlock: 192b19caa0cSPatrick McHardy mutex_unlock(&nf_ct_proto_mutex); 1938f03dea5SMartin Josefsson return ret; 1948f03dea5SMartin Josefsson } 19513b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_conntrack_l3proto_register); 1968f03dea5SMartin Josefsson 197fe3eb20cSPatrick McHardy void nf_conntrack_l3proto_unregister(struct nf_conntrack_l3proto *proto) 1988f03dea5SMartin Josefsson { 199678d6675SAlexey Dobriyan struct net *net; 200678d6675SAlexey Dobriyan 201fe3eb20cSPatrick McHardy BUG_ON(proto->l3proto >= AF_MAX); 202ae5718fbSMartin Josefsson 203b19caa0cSPatrick McHardy mutex_lock(&nf_ct_proto_mutex); 204fe3eb20cSPatrick McHardy BUG_ON(nf_ct_l3protos[proto->l3proto] != proto); 205923f4902SPatrick McHardy rcu_assign_pointer(nf_ct_l3protos[proto->l3proto], 206923f4902SPatrick McHardy &nf_conntrack_l3proto_generic); 207d62f9ed4SPatrick McHardy nf_ct_l3proto_unregister_sysctl(proto); 2080661cca9SPatrick McHardy mutex_unlock(&nf_ct_proto_mutex); 2090661cca9SPatrick McHardy 2100661cca9SPatrick McHardy synchronize_rcu(); 211d62f9ed4SPatrick McHardy 2128f03dea5SMartin Josefsson /* Remove all contrack entries for this protocol */ 213efb9a8c2SAlexey Dobriyan rtnl_lock(); 214678d6675SAlexey Dobriyan for_each_net(net) 215678d6675SAlexey Dobriyan nf_ct_iterate_cleanup(net, kill_l3proto, proto); 216efb9a8c2SAlexey Dobriyan rtnl_unlock(); 2178f03dea5SMartin Josefsson } 21813b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_conntrack_l3proto_unregister); 2198f03dea5SMartin Josefsson 220d62f9ed4SPatrick McHardy static int nf_ct_l4proto_register_sysctl(struct nf_conntrack_l4proto *l4proto) 221d62f9ed4SPatrick McHardy { 222d62f9ed4SPatrick McHardy int err = 0; 223d62f9ed4SPatrick McHardy 224d62f9ed4SPatrick McHardy #ifdef CONFIG_SYSCTL 225d62f9ed4SPatrick McHardy if (l4proto->ctl_table != NULL) { 226d62f9ed4SPatrick McHardy err = nf_ct_register_sysctl(l4proto->ctl_table_header, 227d62f9ed4SPatrick McHardy nf_net_netfilter_sysctl_path, 228d62f9ed4SPatrick McHardy l4proto->ctl_table, 229d62f9ed4SPatrick McHardy l4proto->ctl_table_users); 230a999e683SPatrick McHardy if (err < 0) 231a999e683SPatrick McHardy goto out; 232d62f9ed4SPatrick McHardy } 233a999e683SPatrick McHardy #ifdef CONFIG_NF_CONNTRACK_PROC_COMPAT 234a999e683SPatrick McHardy if (l4proto->ctl_compat_table != NULL) { 235a999e683SPatrick McHardy err = nf_ct_register_sysctl(&l4proto->ctl_compat_table_header, 236a999e683SPatrick McHardy nf_net_ipv4_netfilter_sysctl_path, 237a999e683SPatrick McHardy l4proto->ctl_compat_table, NULL); 238a999e683SPatrick McHardy if (err == 0) 239a999e683SPatrick McHardy goto out; 240a999e683SPatrick McHardy nf_ct_unregister_sysctl(l4proto->ctl_table_header, 241a999e683SPatrick McHardy l4proto->ctl_table, 242a999e683SPatrick McHardy l4proto->ctl_table_users); 243a999e683SPatrick McHardy } 244a999e683SPatrick McHardy #endif /* CONFIG_NF_CONNTRACK_PROC_COMPAT */ 245a999e683SPatrick McHardy out: 246933a41e7SPatrick McHardy #endif /* CONFIG_SYSCTL */ 247d62f9ed4SPatrick McHardy return err; 248d62f9ed4SPatrick McHardy } 249d62f9ed4SPatrick McHardy 250d62f9ed4SPatrick McHardy static void nf_ct_l4proto_unregister_sysctl(struct nf_conntrack_l4proto *l4proto) 251d62f9ed4SPatrick McHardy { 252d62f9ed4SPatrick McHardy #ifdef CONFIG_SYSCTL 253d62f9ed4SPatrick McHardy if (l4proto->ctl_table_header != NULL && 254d62f9ed4SPatrick McHardy *l4proto->ctl_table_header != NULL) 255d62f9ed4SPatrick McHardy nf_ct_unregister_sysctl(l4proto->ctl_table_header, 256d62f9ed4SPatrick McHardy l4proto->ctl_table, 257d62f9ed4SPatrick McHardy l4proto->ctl_table_users); 258a999e683SPatrick McHardy #ifdef CONFIG_NF_CONNTRACK_PROC_COMPAT 259a999e683SPatrick McHardy if (l4proto->ctl_compat_table_header != NULL) 260a999e683SPatrick McHardy nf_ct_unregister_sysctl(&l4proto->ctl_compat_table_header, 261a999e683SPatrick McHardy l4proto->ctl_compat_table, NULL); 262a999e683SPatrick McHardy #endif /* CONFIG_NF_CONNTRACK_PROC_COMPAT */ 263933a41e7SPatrick McHardy #endif /* CONFIG_SYSCTL */ 264d62f9ed4SPatrick McHardy } 265d62f9ed4SPatrick McHardy 2668f03dea5SMartin Josefsson /* FIXME: Allow NULL functions and sub in pointers to generic for 2678f03dea5SMartin Josefsson them. --RR */ 268605dcad6SMartin Josefsson int nf_conntrack_l4proto_register(struct nf_conntrack_l4proto *l4proto) 2698f03dea5SMartin Josefsson { 2708f03dea5SMartin Josefsson int ret = 0; 2718f03dea5SMartin Josefsson 2720661cca9SPatrick McHardy if (l4proto->l3proto >= PF_MAX) 2730661cca9SPatrick McHardy return -EBUSY; 274ae5718fbSMartin Josefsson 275d0dba725SHolger Eitzenberger if ((l4proto->to_nlattr && !l4proto->nlattr_size) 276d0dba725SHolger Eitzenberger || (l4proto->tuple_to_nlattr && !l4proto->nlattr_tuple_size)) 277d0dba725SHolger Eitzenberger return -EINVAL; 278d0dba725SHolger Eitzenberger 279b19caa0cSPatrick McHardy mutex_lock(&nf_ct_proto_mutex); 280c6a1e615SPatrick McHardy if (!nf_ct_protos[l4proto->l3proto]) { 2818f03dea5SMartin Josefsson /* l3proto may be loaded latter. */ 282605dcad6SMartin Josefsson struct nf_conntrack_l4proto **proto_array; 2838f03dea5SMartin Josefsson int i; 2848f03dea5SMartin Josefsson 285c6a1e615SPatrick McHardy proto_array = kmalloc(MAX_NF_CT_PROTO * 286605dcad6SMartin Josefsson sizeof(struct nf_conntrack_l4proto *), 2878f03dea5SMartin Josefsson GFP_KERNEL); 2888f03dea5SMartin Josefsson if (proto_array == NULL) { 2898f03dea5SMartin Josefsson ret = -ENOMEM; 290b19caa0cSPatrick McHardy goto out_unlock; 2918f03dea5SMartin Josefsson } 292c6a1e615SPatrick McHardy 2938f03dea5SMartin Josefsson for (i = 0; i < MAX_NF_CT_PROTO; i++) 294605dcad6SMartin Josefsson proto_array[i] = &nf_conntrack_l4proto_generic; 295605dcad6SMartin Josefsson nf_ct_protos[l4proto->l3proto] = proto_array; 296c6a1e615SPatrick McHardy } else if (nf_ct_protos[l4proto->l3proto][l4proto->l4proto] != 297c6a1e615SPatrick McHardy &nf_conntrack_l4proto_generic) { 298c6a1e615SPatrick McHardy ret = -EBUSY; 299c6a1e615SPatrick McHardy goto out_unlock; 3008f03dea5SMartin Josefsson } 3018f03dea5SMartin Josefsson 302d62f9ed4SPatrick McHardy ret = nf_ct_l4proto_register_sysctl(l4proto); 303d62f9ed4SPatrick McHardy if (ret < 0) 3040661cca9SPatrick McHardy goto out_unlock; 3050661cca9SPatrick McHardy 306d0dba725SHolger Eitzenberger l4proto->nla_size = 0; 307d0dba725SHolger Eitzenberger if (l4proto->nlattr_size) 308d0dba725SHolger Eitzenberger l4proto->nla_size += l4proto->nlattr_size(); 309d0dba725SHolger Eitzenberger if (l4proto->nlattr_tuple_size) 310d0dba725SHolger Eitzenberger l4proto->nla_size += 3 * l4proto->nlattr_tuple_size(); 311d0dba725SHolger Eitzenberger 312c6a1e615SPatrick McHardy rcu_assign_pointer(nf_ct_protos[l4proto->l3proto][l4proto->l4proto], 313c6a1e615SPatrick McHardy l4proto); 3148f03dea5SMartin Josefsson 3158f03dea5SMartin Josefsson out_unlock: 316b19caa0cSPatrick McHardy mutex_unlock(&nf_ct_proto_mutex); 3178f03dea5SMartin Josefsson return ret; 3188f03dea5SMartin Josefsson } 31913b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_conntrack_l4proto_register); 3208f03dea5SMartin Josefsson 321fe3eb20cSPatrick McHardy void nf_conntrack_l4proto_unregister(struct nf_conntrack_l4proto *l4proto) 3228f03dea5SMartin Josefsson { 323678d6675SAlexey Dobriyan struct net *net; 324678d6675SAlexey Dobriyan 325fe3eb20cSPatrick McHardy BUG_ON(l4proto->l3proto >= PF_MAX); 326ae5718fbSMartin Josefsson 327b19caa0cSPatrick McHardy mutex_lock(&nf_ct_proto_mutex); 328fe3eb20cSPatrick McHardy BUG_ON(nf_ct_protos[l4proto->l3proto][l4proto->l4proto] != l4proto); 329923f4902SPatrick McHardy rcu_assign_pointer(nf_ct_protos[l4proto->l3proto][l4proto->l4proto], 330923f4902SPatrick McHardy &nf_conntrack_l4proto_generic); 331d62f9ed4SPatrick McHardy nf_ct_l4proto_unregister_sysctl(l4proto); 3320661cca9SPatrick McHardy mutex_unlock(&nf_ct_proto_mutex); 3330661cca9SPatrick McHardy 3340661cca9SPatrick McHardy synchronize_rcu(); 335d62f9ed4SPatrick McHardy 3368f03dea5SMartin Josefsson /* Remove all contrack entries for this protocol */ 337efb9a8c2SAlexey Dobriyan rtnl_lock(); 338678d6675SAlexey Dobriyan for_each_net(net) 339678d6675SAlexey Dobriyan nf_ct_iterate_cleanup(net, kill_l4proto, l4proto); 340efb9a8c2SAlexey Dobriyan rtnl_unlock(); 3418f03dea5SMartin Josefsson } 34213b18339SPatrick McHardy EXPORT_SYMBOL_GPL(nf_conntrack_l4proto_unregister); 343ac5357ebSPatrick McHardy 344ac5357ebSPatrick McHardy int nf_conntrack_proto_init(void) 345ac5357ebSPatrick McHardy { 346ac5357ebSPatrick McHardy unsigned int i; 347ac5357ebSPatrick McHardy int err; 348ac5357ebSPatrick McHardy 349ac5357ebSPatrick McHardy err = nf_ct_l4proto_register_sysctl(&nf_conntrack_l4proto_generic); 350ac5357ebSPatrick McHardy if (err < 0) 351ac5357ebSPatrick McHardy return err; 352ac5357ebSPatrick McHardy 353ac5357ebSPatrick McHardy for (i = 0; i < AF_MAX; i++) 354ac5357ebSPatrick McHardy rcu_assign_pointer(nf_ct_l3protos[i], 355ac5357ebSPatrick McHardy &nf_conntrack_l3proto_generic); 356ac5357ebSPatrick McHardy return 0; 357ac5357ebSPatrick McHardy } 358ac5357ebSPatrick McHardy 359ac5357ebSPatrick McHardy void nf_conntrack_proto_fini(void) 360ac5357ebSPatrick McHardy { 361ac5357ebSPatrick McHardy unsigned int i; 362ac5357ebSPatrick McHardy 363ac5357ebSPatrick McHardy nf_ct_l4proto_unregister_sysctl(&nf_conntrack_l4proto_generic); 364ac5357ebSPatrick McHardy 365ac5357ebSPatrick McHardy /* free l3proto protocol tables */ 366ac5357ebSPatrick McHardy for (i = 0; i < PF_MAX; i++) 367ac5357ebSPatrick McHardy kfree(nf_ct_protos[i]); 368ac5357ebSPatrick McHardy } 369