netfilter: conntrack: simplify init/uninit of L4 protocol trackers

void nf_ct_l4proto_put(struct nf_conntrack_l4proto *p);

/* Protocol pernet registration. */

int nf_ct_l4proto_pernet_register(struct net *net,

int nf_ct_l4proto_pernet_register_one(struct net *net,

				      struct nf_conntrack_l4proto *proto);

void nf_ct_l4proto_pernet_unregister(struct net *net,

void nf_ct_l4proto_pernet_unregister_one(struct net *net,

					 struct nf_conntrack_l4proto *proto);

int nf_ct_l4proto_pernet_register(struct net *net,

				  struct nf_conntrack_l4proto *proto[],

				  unsigned int num_proto);

void nf_ct_l4proto_pernet_unregister(struct net *net,

				     struct nf_conntrack_l4proto *proto[],

				     unsigned int num_proto);

/* Protocol global registration. */

int nf_ct_l4proto_register(struct nf_conntrack_l4proto *proto);

void nf_ct_l4proto_unregister(struct nf_conntrack_l4proto *proto);

int nf_ct_l4proto_register_one(struct nf_conntrack_l4proto *proto);

void nf_ct_l4proto_unregister_one(struct nf_conntrack_l4proto *proto);

int nf_ct_l4proto_register(struct nf_conntrack_l4proto *proto[],

			   unsigned int num_proto);

void nf_ct_l4proto_unregister(struct nf_conntrack_l4proto *proto[],

			      unsigned int num_proto);

/* Generic netlink helpers */

int nf_ct_port_tuple_to_nlattr(struct sk_buff *skb,

MODULE_ALIAS("ip_conntrack");

MODULE_LICENSE("GPL");

static struct nf_conntrack_l4proto *builtin_l4proto4[] = {

	&nf_conntrack_l4proto_tcp4,

	&nf_conntrack_l4proto_udp4,

	&nf_conntrack_l4proto_icmp,

};

static int ipv4_net_init(struct net *net)

{

	int ret = 0;

	ret = nf_ct_l4proto_pernet_register(net, &nf_conntrack_l4proto_tcp4);

	if (ret < 0) {

		pr_err("nf_conntrack_tcp4: pernet registration failed\n");

		goto out_tcp;

	}

	ret = nf_ct_l4proto_pernet_register(net, &nf_conntrack_l4proto_udp4);

	if (ret < 0) {

		pr_err("nf_conntrack_udp4: pernet registration failed\n");

		goto out_udp;

	}

	ret = nf_ct_l4proto_pernet_register(net, &nf_conntrack_l4proto_icmp);

	if (ret < 0) {

		pr_err("nf_conntrack_icmp4: pernet registration failed\n");

		goto out_icmp;

	}

	ret = nf_ct_l4proto_pernet_register(net, builtin_l4proto4,

					    ARRAY_SIZE(builtin_l4proto4));

	if (ret < 0)

		return ret;

	ret = nf_ct_l3proto_pernet_register(net, &nf_conntrack_l3proto_ipv4);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv4: pernet registration failed\n");

		goto out_ipv4;

		nf_ct_l4proto_pernet_unregister(net, builtin_l4proto4,

						ARRAY_SIZE(builtin_l4proto4));

	}

	return 0;

out_ipv4:

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_icmp);

out_icmp:

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_udp4);

out_udp:

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_tcp4);

out_tcp:

	return ret;

}

static void ipv4_net_exit(struct net *net)

{

	nf_ct_l3proto_pernet_unregister(net, &nf_conntrack_l3proto_ipv4);

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_icmp);

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_udp4);

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_tcp4);

	nf_ct_l4proto_pernet_unregister(net, builtin_l4proto4,

					ARRAY_SIZE(builtin_l4proto4));

}

static struct pernet_operations ipv4_net_ops = {

		goto cleanup_pernet;

	}

	ret = nf_ct_l4proto_register(&nf_conntrack_l4proto_tcp4);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv4: can't register tcp4 proto.\n");

	ret = nf_ct_l4proto_register(builtin_l4proto4,

				     ARRAY_SIZE(builtin_l4proto4));

	if (ret < 0)

		goto cleanup_hooks;

	}

	ret = nf_ct_l4proto_register(&nf_conntrack_l4proto_udp4);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv4: can't register udp4 proto.\n");

		goto cleanup_tcp4;

	}

	ret = nf_ct_l4proto_register(&nf_conntrack_l4proto_icmp);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv4: can't register icmpv4 proto.\n");

		goto cleanup_udp4;

	}

	ret = nf_ct_l3proto_register(&nf_conntrack_l3proto_ipv4);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv4: can't register ipv4 proto.\n");

		goto cleanup_icmpv4;

		goto cleanup_l4proto;

	}

	return ret;

 cleanup_icmpv4:

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_icmp);

 cleanup_udp4:

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_udp4);

 cleanup_tcp4:

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_tcp4);

cleanup_l4proto:

	nf_ct_l4proto_unregister(builtin_l4proto4,

				 ARRAY_SIZE(builtin_l4proto4));

 cleanup_hooks:

	nf_unregister_hooks(ipv4_conntrack_ops, ARRAY_SIZE(ipv4_conntrack_ops));

 cleanup_pernet:

{

	synchronize_net();

	nf_ct_l3proto_unregister(&nf_conntrack_l3proto_ipv4);

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_icmp);

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_udp4);

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_tcp4);

	nf_ct_l4proto_unregister(builtin_l4proto4,

				 ARRAY_SIZE(builtin_l4proto4));

	nf_unregister_hooks(ipv4_conntrack_ops, ARRAY_SIZE(ipv4_conntrack_ops));

	unregister_pernet_subsys(&ipv4_net_ops);

	nf_unregister_sockopt(&so_getorigdst);

	.owner		= THIS_MODULE,

};

static struct nf_conntrack_l4proto *builtin_l4proto6[] = {

	&nf_conntrack_l4proto_tcp6,

	&nf_conntrack_l4proto_udp6,

	&nf_conntrack_l4proto_icmpv6,

};

static int ipv6_net_init(struct net *net)

{

	int ret = 0;

	ret = nf_ct_l4proto_pernet_register(net, &nf_conntrack_l4proto_tcp6);

	if (ret < 0) {

		pr_err("nf_conntrack_tcp6: pernet registration failed\n");

		goto out;

	}

	ret = nf_ct_l4proto_pernet_register(net, &nf_conntrack_l4proto_udp6);

	if (ret < 0) {

		pr_err("nf_conntrack_udp6: pernet registration failed\n");

		goto cleanup_tcp6;

	}

	ret = nf_ct_l4proto_pernet_register(net, &nf_conntrack_l4proto_icmpv6);

	if (ret < 0) {

		pr_err("nf_conntrack_icmp6: pernet registration failed\n");

		goto cleanup_udp6;

	}

	ret = nf_ct_l4proto_pernet_register(net, builtin_l4proto6,

					    ARRAY_SIZE(builtin_l4proto6));

	if (ret < 0)

		return ret;

	ret = nf_ct_l3proto_pernet_register(net, &nf_conntrack_l3proto_ipv6);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv6: pernet registration failed.\n");

		goto cleanup_icmpv6;

		nf_ct_l4proto_pernet_unregister(net, builtin_l4proto6,

						ARRAY_SIZE(builtin_l4proto6));

	}

	return 0;

 cleanup_icmpv6:

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_icmpv6);

 cleanup_udp6:

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_udp6);

 cleanup_tcp6:

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_tcp6);

 out:

	return ret;

}

static void ipv6_net_exit(struct net *net)

{

	nf_ct_l3proto_pernet_unregister(net, &nf_conntrack_l3proto_ipv6);

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_icmpv6);

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_udp6);

	nf_ct_l4proto_pernet_unregister(net, &nf_conntrack_l4proto_tcp6);

	nf_ct_l4proto_pernet_unregister(net, builtin_l4proto6,

					ARRAY_SIZE(builtin_l4proto6));

}

static struct pernet_operations ipv6_net_ops = {

		goto cleanup_pernet;

	}

	ret = nf_ct_l4proto_register(&nf_conntrack_l4proto_tcp6);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv6: can't register tcp6 proto.\n");

	ret = nf_ct_l4proto_register(builtin_l4proto6,

				     ARRAY_SIZE(builtin_l4proto6));

	if (ret < 0)

		goto cleanup_hooks;

	}

	ret = nf_ct_l4proto_register(&nf_conntrack_l4proto_udp6);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv6: can't register udp6 proto.\n");

		goto cleanup_tcp6;

	}

	ret = nf_ct_l4proto_register(&nf_conntrack_l4proto_icmpv6);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv6: can't register icmpv6 proto.\n");

		goto cleanup_udp6;

	}

	ret = nf_ct_l3proto_register(&nf_conntrack_l3proto_ipv6);

	if (ret < 0) {

		pr_err("nf_conntrack_ipv6: can't register ipv6 proto.\n");

		goto cleanup_icmpv6;

		goto cleanup_l4proto;

	}

	return ret;

 cleanup_icmpv6:

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_icmpv6);

 cleanup_udp6:

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_udp6);

 cleanup_tcp6:

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_tcp6);

cleanup_l4proto:

	nf_ct_l4proto_unregister(builtin_l4proto6,

				 ARRAY_SIZE(builtin_l4proto6));

 cleanup_hooks:

	nf_unregister_hooks(ipv6_conntrack_ops, ARRAY_SIZE(ipv6_conntrack_ops));

 cleanup_pernet:

{

	synchronize_net();

	nf_ct_l3proto_unregister(&nf_conntrack_l3proto_ipv6);

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_tcp6);

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_udp6);

	nf_ct_l4proto_unregister(&nf_conntrack_l4proto_icmpv6);

	nf_ct_l4proto_unregister(builtin_l4proto6,

				 ARRAY_SIZE(builtin_l4proto6));

	nf_unregister_hooks(ipv6_conntrack_ops, ARRAY_SIZE(ipv6_conntrack_ops));

	unregister_pernet_subsys(&ipv6_net_ops);

	nf_unregister_sockopt(&so_getorigdst6);

/* FIXME: Allow NULL functions and sub in pointers to generic for

   them. --RR */

int nf_ct_l4proto_register(struct nf_conntrack_l4proto *l4proto)

int nf_ct_l4proto_register_one(struct nf_conntrack_l4proto *l4proto)

{

	int ret = 0;

	if (l4proto->l3proto >= PF_MAX)

		return -EBUSY;

	if ((l4proto->to_nlattr && !l4proto->nlattr_size)

		|| (l4proto->tuple_to_nlattr && !l4proto->nlattr_tuple_size))

	if ((l4proto->to_nlattr && !l4proto->nlattr_size) ||

	    (l4proto->tuple_to_nlattr && !l4proto->nlattr_tuple_size))

		return -EINVAL;

	mutex_lock(&nf_ct_proto_mutex);

		}

		for (i = 0; i < MAX_NF_CT_PROTO; i++)

			RCU_INIT_POINTER(proto_array[i], &nf_conntrack_l4proto_generic);

			RCU_INIT_POINTER(proto_array[i],

					 &nf_conntrack_l4proto_generic);

		/* Before making proto_array visible to lockless readers,

		 * we must make sure its content is committed to memory.

	mutex_unlock(&nf_ct_proto_mutex);

	return ret;

}

EXPORT_SYMBOL_GPL(nf_ct_l4proto_register);

EXPORT_SYMBOL_GPL(nf_ct_l4proto_register_one);

int nf_ct_l4proto_pernet_register(struct net *net,

int nf_ct_l4proto_pernet_register_one(struct net *net,

				      struct nf_conntrack_l4proto *l4proto)

{

	int ret = 0;

out:

	return ret;

}

EXPORT_SYMBOL_GPL(nf_ct_l4proto_pernet_register);

EXPORT_SYMBOL_GPL(nf_ct_l4proto_pernet_register_one);

void nf_ct_l4proto_unregister(struct nf_conntrack_l4proto *l4proto)

void nf_ct_l4proto_unregister_one(struct nf_conntrack_l4proto *l4proto)

{

	BUG_ON(l4proto->l3proto >= PF_MAX);

	synchronize_rcu();

}

EXPORT_SYMBOL_GPL(nf_ct_l4proto_unregister);

EXPORT_SYMBOL_GPL(nf_ct_l4proto_unregister_one);

void nf_ct_l4proto_pernet_unregister(struct net *net,

void nf_ct_l4proto_pernet_unregister_one(struct net *net,

					 struct nf_conntrack_l4proto *l4proto)

{

	struct nf_proto_net *pn = NULL;

	/* Remove all contrack entries for this protocol */

	nf_ct_iterate_cleanup(net, kill_l4proto, l4proto, 0, 0);

}

EXPORT_SYMBOL_GPL(nf_ct_l4proto_pernet_unregister_one);

int nf_ct_l4proto_register(struct nf_conntrack_l4proto *l4proto[],

			   unsigned int num_proto)

{

	int ret = -EINVAL, ver;

	unsigned int i;

	for (i = 0; i < num_proto; i++) {

		ret = nf_ct_l4proto_register_one(l4proto[i]);

		if (ret < 0)

			break;

	}

	if (i != num_proto) {

		ver = l4proto[i]->l3proto == PF_INET6 ? 6 : 4;

		pr_err("nf_conntrack_ipv%d: can't register %s%d proto.\n",

		       ver, l4proto[i]->name, ver);

		nf_ct_l4proto_unregister(l4proto, i);

	}

	return ret;

}

EXPORT_SYMBOL_GPL(nf_ct_l4proto_register);

int nf_ct_l4proto_pernet_register(struct net *net,

				  struct nf_conntrack_l4proto *l4proto[],

				  unsigned int num_proto)

{

	int ret = -EINVAL;

	unsigned int i;

	for (i = 0; i < num_proto; i++) {

		ret = nf_ct_l4proto_pernet_register_one(net, l4proto[i]);

		if (ret < 0)

			break;

	}

	if (i != num_proto) {

		pr_err("nf_conntrack_%s%d: pernet registration failed\n",

		       l4proto[i]->name,

		       l4proto[i]->l3proto == PF_INET6 ? 6 : 4);

		nf_ct_l4proto_pernet_unregister(net, l4proto, i);

	}

	return ret;

}

EXPORT_SYMBOL_GPL(nf_ct_l4proto_pernet_register);

void nf_ct_l4proto_unregister(struct nf_conntrack_l4proto *l4proto[],

			      unsigned int num_proto)

{

	while (num_proto-- != 0)

		nf_ct_l4proto_unregister_one(l4proto[num_proto]);

}

EXPORT_SYMBOL_GPL(nf_ct_l4proto_unregister);

void nf_ct_l4proto_pernet_unregister(struct net *net,

				     struct nf_conntrack_l4proto *l4proto[],

				     unsigned int num_proto)

{

	while (num_proto-- != 0)

		nf_ct_l4proto_pernet_unregister_one(net, l4proto[num_proto]);

}

EXPORT_SYMBOL_GPL(nf_ct_l4proto_pernet_unregister);

int nf_conntrack_proto_pernet_init(struct net *net)

	.init_net		= dccp_init_net,

};

static struct nf_conntrack_l4proto *dccp_proto[] = {

	&dccp_proto4,

	&dccp_proto6,

};

static __net_init int dccp_net_init(struct net *net)

{

	int ret = 0;

	ret = nf_ct_l4proto_pernet_register(net, &dccp_proto4);

	if (ret < 0) {

		pr_err("nf_conntrack_dccp4: pernet registration failed.\n");

		goto out;

	}

	ret = nf_ct_l4proto_pernet_register(net, &dccp_proto6);

	if (ret < 0) {

		pr_err("nf_conntrack_dccp6: pernet registration failed.\n");

		goto cleanup_dccp4;

	}

	return 0;

cleanup_dccp4:

	nf_ct_l4proto_pernet_unregister(net, &dccp_proto4);

out:

	return ret;

	return nf_ct_l4proto_pernet_register(net, dccp_proto,

					     ARRAY_SIZE(dccp_proto));

}

static __net_exit void dccp_net_exit(struct net *net)

{

	nf_ct_l4proto_pernet_unregister(net, &dccp_proto6);

	nf_ct_l4proto_pernet_unregister(net, &dccp_proto4);

	nf_ct_l4proto_pernet_unregister(net, dccp_proto,

					ARRAY_SIZE(dccp_proto));

}

static struct pernet_operations dccp_net_ops = {

	ret = register_pernet_subsys(&dccp_net_ops);

	if (ret < 0)

		goto out_pernet;

	ret = nf_ct_l4proto_register(&dccp_proto4);

	if (ret < 0)

		goto out_dccp4;

	ret = nf_ct_l4proto_register(&dccp_proto6);

		return ret;

	ret = nf_ct_l4proto_register(dccp_proto, ARRAY_SIZE(dccp_proto));

	if (ret < 0)

		goto out_dccp6;

	return 0;

out_dccp6:

	nf_ct_l4proto_unregister(&dccp_proto4);

out_dccp4:

		unregister_pernet_subsys(&dccp_net_ops);

out_pernet:

	return ret;

}

static void __exit nf_conntrack_proto_dccp_fini(void)

{

	nf_ct_l4proto_unregister(&dccp_proto6);

	nf_ct_l4proto_unregister(&dccp_proto4);

	nf_ct_l4proto_unregister(dccp_proto, ARRAY_SIZE(dccp_proto));

	unregister_pernet_subsys(&dccp_net_ops);

}