netfilter: ebtables: Simplify the arguments to ebt_do_table (97b59c3a) · Commits · e / devices / android_kernel_teracube_emerald

include/linux/netfilter_bridge/ebtables.h

+3 −3

Original line number	Original line	Diff line number	Diff line
	@@ -111,8 +111,8 @@ struct ebt_table {
	extern struct ebt_table ebt_register_table(struct net net,		extern struct ebt_table ebt_register_table(struct net net,
	const struct ebt_table *table);		const struct ebt_table *table);
	extern void ebt_unregister_table(struct net net, struct ebt_table table);		extern void ebt_unregister_table(struct net net, struct ebt_table table);
	extern unsigned int ebt_do_table(unsigned int hook, struct sk_buff *skb,		extern unsigned int ebt_do_table(struct sk_buff *skb,
	const struct net_device in, const struct net_device out,		const struct nf_hook_state *state,
	struct ebt_table *table);		struct ebt_table *table);

	/* Used in the kernel match() functions */		/* Used in the kernel match() functions */

+6 −2

Original line number	Original line	Diff line number	Diff line
	@@ -50,10 +50,14 @@ static const struct ebt_table broute_table = {

	static int ebt_broute(struct sk_buff *skb)		static int ebt_broute(struct sk_buff *skb)
	{		{
			struct nf_hook_state state;
	int ret;		int ret;

	ret = ebt_do_table(NF_BR_BROUTING, skb, skb->dev, NULL,		nf_hook_state_init(&state, NULL, NF_BR_BROUTING, INT_MIN,
	dev_net(skb->dev)->xt.broute_table);		NFPROTO_BRIDGE, skb->dev, NULL, NULL,
			dev_net(skb->dev), NULL);

			ret = ebt_do_table(skb, &state, state.net->xt.broute_table);
	if (ret == NF_DROP)		if (ret == NF_DROP)
	return 1; /* route it */		return 1; /* route it */
	return 0; /* bridge it */		return 0; /* bridge it */

+2 −4

Original line number	Original line	Diff line number	Diff line
	@@ -60,16 +60,14 @@ static unsigned int
	ebt_in_hook(const struct nf_hook_ops ops, struct sk_buff skb,		ebt_in_hook(const struct nf_hook_ops ops, struct sk_buff skb,
	const struct nf_hook_state *state)		const struct nf_hook_state *state)
	{		{
	return ebt_do_table(ops->hooknum, skb, state->in, state->out,		return ebt_do_table(skb, state, state->net->xt.frame_filter);
	state->net->xt.frame_filter);
	}		}

	static unsigned int		static unsigned int
	ebt_out_hook(const struct nf_hook_ops ops, struct sk_buff skb,		ebt_out_hook(const struct nf_hook_ops ops, struct sk_buff skb,
	const struct nf_hook_state *state)		const struct nf_hook_state *state)
	{		{
	return ebt_do_table(ops->hooknum, skb, state->in, state->out,		return ebt_do_table(skb, state, state->net->xt.frame_filter);
	state->net->xt.frame_filter);
	}		}

	static struct nf_hook_ops ebt_ops_filter[] __read_mostly = {		static struct nf_hook_ops ebt_ops_filter[] __read_mostly = {

+2 −4

Original line number	Original line	Diff line number	Diff line
	@@ -60,16 +60,14 @@ static unsigned int
	ebt_nat_in(const struct nf_hook_ops ops, struct sk_buff skb,		ebt_nat_in(const struct nf_hook_ops ops, struct sk_buff skb,
	const struct nf_hook_state *state)		const struct nf_hook_state *state)
	{		{
	return ebt_do_table(ops->hooknum, skb, state->in, state->out,		return ebt_do_table(skb, state, state->net->xt.frame_nat);
	state->net->xt.frame_nat);
	}		}

	static unsigned int		static unsigned int
	ebt_nat_out(const struct nf_hook_ops ops, struct sk_buff skb,		ebt_nat_out(const struct nf_hook_ops ops, struct sk_buff skb,
	const struct nf_hook_state *state)		const struct nf_hook_state *state)
	{		{
	return ebt_do_table(ops->hooknum, skb, state->in, state->out,		return ebt_do_table(skb, state, state->net->xt.frame_nat);
	state->net->xt.frame_nat);
	}		}

	static struct nf_hook_ops ebt_ops_nat[] __read_mostly = {		static struct nf_hook_ops ebt_ops_nat[] __read_mostly = {

+7 −6

Original line number	Original line	Diff line number	Diff line
	@@ -183,10 +183,11 @@ struct ebt_entry ebt_next_entry(const struct ebt_entry entry)
	}		}

	/* Do some firewalling */		/* Do some firewalling */
	unsigned int ebt_do_table (unsigned int hook, struct sk_buff *skb,		unsigned int ebt_do_table(struct sk_buff *skb,
	const struct net_device in, const struct net_device out,		const struct nf_hook_state *state,
	struct ebt_table *table)		struct ebt_table *table)
	{		{
			unsigned int hook = state->hook;
	int i, nentries;		int i, nentries;
	struct ebt_entry *point;		struct ebt_entry *point;
	struct ebt_counter counter_base, cb_base;		struct ebt_counter counter_base, cb_base;
	@@ -199,8 +200,8 @@ unsigned int ebt_do_table (unsigned int hook, struct sk_buff *skb,
	struct xt_action_param acpar;		struct xt_action_param acpar;

	acpar.family = NFPROTO_BRIDGE;		acpar.family = NFPROTO_BRIDGE;
	acpar.in = in;		acpar.in = state->in;
	acpar.out = out;		acpar.out = state->out;
	acpar.hotdrop = false;		acpar.hotdrop = false;
	acpar.hooknum = hook;		acpar.hooknum = hook;

	@@ -220,7 +221,7 @@ unsigned int ebt_do_table (unsigned int hook, struct sk_buff *skb,
	base = private->entries;		base = private->entries;
	i = 0;		i = 0;
	while (i < nentries) {		while (i < nentries) {
	if (ebt_basic_match(point, skb, in, out))		if (ebt_basic_match(point, skb, state->in, state->out))
	goto letscontinue;		goto letscontinue;

	if (EBT_MATCH_ITERATE(point, ebt_do_match, skb, &acpar) != 0)		if (EBT_MATCH_ITERATE(point, ebt_do_match, skb, &acpar) != 0)