[NETFILTER]: nf_conntrack: don't use nfct in skb if conntrack is disabled

			struct nf_info *info,

			unsigned int verdict);

extern void (*ip_ct_attach)(struct sk_buff *, struct sk_buff *);

extern void nf_ct_attach(struct sk_buff *, struct sk_buff *);

/* FIXME: Before cache is ever used, this must be implemented for real. */

extern void nf_invalidate_cache(int pf);

{

	return 1;

}

static inline void nf_ct_attach(struct sk_buff *new, struct sk_buff *skb) {}

struct flowi;

static inline void

nf_nat_decode_session(struct sk_buff *skb, struct flowi *fl, int family) {}

#endif /*CONFIG_NETFILTER*/

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

extern void (*ip_ct_attach)(struct sk_buff *, struct sk_buff *);

extern void nf_ct_attach(struct sk_buff *, struct sk_buff *);

#else

static inline void nf_ct_attach(struct sk_buff *new, struct sk_buff *skb) {}

#endif

#endif /*__KERNEL__*/

#endif /*__LINUX_NETFILTER_H*/

struct net_device;

#ifdef CONFIG_NETFILTER

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

struct nf_conntrack {

	atomic_t use;

	void (*destroy)(struct nf_conntrack *);

};

#endif

#ifdef CONFIG_BRIDGE_NETFILTER

struct nf_bridge_info {

};

#endif

#endif

struct sk_buff_head {

	/* These two members must be first. */

	struct sk_buff	*next;

	__be16			protocol;

	void			(*destructor)(struct sk_buff *skb);

#ifdef CONFIG_NETFILTER

	struct nf_conntrack	*nfct;

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

	struct nf_conntrack	*nfct;

	struct sk_buff		*nfct_reasm;

#endif

#ifdef CONFIG_BRIDGE_NETFILTER

	struct nf_bridge_info	*nf_bridge;

#endif

#endif /* CONFIG_NETFILTER */

#ifdef CONFIG_NET_SCHED

	__u16			tc_index;	/* traffic control index */

#ifdef CONFIG_NET_CLS_ACT

		__skb_checksum_complete(skb);

}

#ifdef CONFIG_NETFILTER

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

static inline void nf_conntrack_put(struct nf_conntrack *nfct)

{

	if (nfct && atomic_dec_and_test(&nfct->use))

	if (nfct)

		atomic_inc(&nfct->use);

}

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

static inline void nf_conntrack_get_reasm(struct sk_buff *skb)

{

	if (skb)

#endif /* CONFIG_BRIDGE_NETFILTER */

static inline void nf_reset(struct sk_buff *skb)

{

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

	nf_conntrack_put(skb->nfct);

	skb->nfct = NULL;

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

	nf_conntrack_put_reasm(skb->nfct_reasm);

	skb->nfct_reasm = NULL;

#endif

/* Note: This doesn't put any conntrack and bridge info in dst. */

static inline void __nf_copy(struct sk_buff *dst, const struct sk_buff *src)

{

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

	dst->nfct = src->nfct;

	nf_conntrack_get(src->nfct);

	dst->nfctinfo = src->nfctinfo;

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

	dst->nfct_reasm = src->nfct_reasm;

	nf_conntrack_get_reasm(src->nfct_reasm);

#endif

static inline void nf_copy(struct sk_buff *dst, const struct sk_buff *src)

{

	nf_conntrack_put(dst->nfct);

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

	nf_conntrack_put(dst->nfct);

	nf_conntrack_put_reasm(dst->nfct_reasm);

#endif

#ifdef CONFIG_BRIDGE_NETFILTER

	__nf_copy(dst, src);

}

#else /* CONFIG_NETFILTER */

static inline void nf_reset(struct sk_buff *skb) {}

static inline void __nf_copy(struct sk_buff *dst, const struct sk_buff *src) {}

static inline void nf_copy(struct sk_buff *dst, const struct sk_buff *src) {}

#endif /* CONFIG_NETFILTER */

#ifdef CONFIG_NETWORK_SECMARK

static inline void skb_copy_secmark(struct sk_buff *to, const struct sk_buff *from)

{

		WARN_ON(in_irq());

		skb->destructor(skb);

	}

#ifdef CONFIG_NETFILTER

	nf_conntrack_put(skb->nfct);

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

	nf_conntrack_put(skb->nfct);

	nf_conntrack_put_reasm(skb->nfct_reasm);

#endif

#ifdef CONFIG_BRIDGE_NETFILTER

	nf_bridge_put(skb->nf_bridge);

#endif

#endif

/* XXX: IS this still necessary? - JHS */

#ifdef CONFIG_NET_SCHED

	skb->tc_index = 0;

}

EXPORT_SYMBOL(nf_proto_csum_replace4);

#if defined(CONFIG_NF_CONNTRACK) || defined(CONFIG_NF_CONNTRACK_MODULE)

/* This does not belong here, but locally generated errors need it if connection

   tracking in use: without this, connection may not be in hash table, and hence

   manufactured ICMP or RST packets will not be associated with it. */

	}

}

EXPORT_SYMBOL(nf_ct_attach);

#endif

#ifdef CONFIG_PROC_FS

struct proc_dir_entry *proc_net_netfilter;