#ifndef _NFNETLINK_QUEUE_H
#define _NFNETLINK_QUEUE_H
#include <linux/types.h>
#include <linux/netfilter/nfnetlink.h>
enum nfqnl_msg_types {
NFQNL_MSG_PACKET,
NFQNL_MSG_VERDICT,
NFQNL_MSG_CONFIG,
NFQNL_MSG_VERDICT_BATCH,
NFQNL_MSG_MAX
};
struct nfqnl_msg_packet_hdr {
__be32 packet_id;
__be16 hw_protocol;
__u8 hook;
} __attribute__ ((packed));
struct nfqnl_msg_packet_hw {
__be16 hw_addrlen;
__u16 _pad;
__u8 hw_addr[8];
};
struct nfqnl_msg_packet_timestamp {
__aligned_be64 sec;
__aligned_be64 usec;
};
enum nfqnl_vlan_attr {
NFQA_VLAN_UNSPEC,
NFQA_VLAN_PROTO,
NFQA_VLAN_TCI,
__NFQA_VLAN_MAX,
};
#define NFQA_VLAN_MAX (__NFQA_VLAN_MAX - 1)
enum nfqnl_attr_type {
NFQA_UNSPEC,
NFQA_PACKET_HDR,
NFQA_VERDICT_HDR,
NFQA_MARK,
NFQA_TIMESTAMP,
NFQA_IFINDEX_INDEV,
NFQA_IFINDEX_OUTDEV,
NFQA_IFINDEX_PHYSINDEV,
NFQA_IFINDEX_PHYSOUTDEV,
NFQA_HWADDR,
NFQA_PAYLOAD,
NFQA_CT,
NFQA_CT_INFO,
NFQA_CAP_LEN,
NFQA_SKB_INFO,
NFQA_EXP,
NFQA_UID,
NFQA_GID,
NFQA_SECCTX,
NFQA_VLAN,
NFQA_L2HDR,
NFQA_PRIORITY,
NFQA_CGROUP_CLASSID,
__NFQA_MAX
};
#define NFQA_MAX (__NFQA_MAX - 1)
struct nfqnl_msg_verdict_hdr {
__be32 verdict;
__be32 id;
};
enum nfqnl_msg_config_cmds {
NFQNL_CFG_CMD_NONE,
NFQNL_CFG_CMD_BIND,
NFQNL_CFG_CMD_UNBIND,
NFQNL_CFG_CMD_PF_BIND,
NFQNL_CFG_CMD_PF_UNBIND,
};
struct nfqnl_msg_config_cmd {
__u8 command;
__u8 _pad;
__be16 pf;
};
enum nfqnl_config_mode {
NFQNL_COPY_NONE,
NFQNL_COPY_META,
NFQNL_COPY_PACKET,
};
struct nfqnl_msg_config_params {
__be32 copy_range;
__u8 copy_mode;
} __attribute__ ((packed));
enum nfqnl_attr_config {
NFQA_CFG_UNSPEC,
NFQA_CFG_CMD,
NFQA_CFG_PARAMS,
NFQA_CFG_QUEUE_MAXLEN,
NFQA_CFG_MASK,
NFQA_CFG_FLAGS,
__NFQA_CFG_MAX
};
#define NFQA_CFG_MAX (__NFQA_CFG_MAX-1)
#define NFQA_CFG_F_FAIL_OPEN (1 << 0)
#define NFQA_CFG_F_CONNTRACK (1 << 1)
#define NFQA_CFG_F_GSO (1 << 2)
#define NFQA_CFG_F_UID_GID (1 << 3)
#define NFQA_CFG_F_SECCTX (1 << 4)
#define NFQA_CFG_F_MAX (1 << 5)
#define NFQA_SKB_CSUMNOTREADY (1 << 0)
#define NFQA_SKB_GSO (1 << 1)
#define NFQA_SKB_CSUM_NOTVERIFIED (1 << 2)
#endif /* _NFNETLINK_QUEUE_H */