Merge git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf-next

			   unsigned int target_offset,

			   unsigned int next_offset);

unsigned int *xt_alloc_entry_offsets(unsigned int size);

bool xt_find_jump_offset(const unsigned int *offsets,

			 unsigned int target, unsigned int size);

int xt_check_match(struct xt_mtchk_param *, unsigned int size, u_int8_t proto,

		   bool inv_proto);

int xt_check_target(struct xt_tgchk_param *, unsigned int size, u_int8_t proto,

#include <linux/bitops.h>

#include <linux/compiler.h>

#include <linux/atomic.h>

#include <linux/rhashtable.h>

#include <linux/netfilter/nf_conntrack_tcp.h>

#include <linux/netfilter/nf_conntrack_dccp.h>

	/* Extensions */

	struct nf_ct_ext *ext;

#if IS_ENABLED(CONFIG_NF_NAT)

	struct rhash_head	nat_bysource;

#endif

	/* Storage reserved for other modules, must be the last member */

	union nf_conntrack_proto proto;

};

}

/* It's confirmed if it is, or has been in the hash table. */

static inline int nf_ct_is_confirmed(struct nf_conn *ct)

static inline int nf_ct_is_confirmed(const struct nf_conn *ct)

{

	return test_bit(IPS_CONFIRMED_BIT, &ct->status);

}

static inline int nf_ct_is_dying(struct nf_conn *ct)

static inline int nf_ct_is_dying(const struct nf_conn *ct)

{

	return test_bit(IPS_DYING_BIT, &ct->status);

}

#define NF_CT_STAT_INC(net, count)	  __this_cpu_inc((net)->ct.stat->count)

#define NF_CT_STAT_INC_ATOMIC(net, count) this_cpu_inc((net)->ct.stat->count)

#define NF_CT_STAT_ADD_ATOMIC(net, count, v) this_cpu_add((net)->ct.stat->count, (v))

#define MODULE_ALIAS_NFCT_HELPER(helper) \

        MODULE_ALIAS("nfct-helper-" helper)

			const struct nf_conntrack_l3proto *l3proto,

			const struct nf_conntrack_l4proto *l4proto);

void nf_conntrack_get_ht(struct hlist_nulls_head **hash, unsigned int *hsize);

/* Find a connection corresponding to a tuple. */

struct nf_conntrack_tuple_hash *

nf_conntrack_find_get(struct net *net,

struct nf_ct_ext_type {

	/* Destroys relationships (can be NULL). */

	void (*destroy)(struct nf_conn *ct);

	/* Called when realloacted (can be NULL).

	   Contents has already been moved. */

	void (*move)(void *new, void *old);

	enum nf_ct_ext_id id;

struct nf_conntrack_helper *nf_conntrack_helper_try_module_get(const char *name,

							       u16 l3num,

							       u8 protonum);

void nf_ct_helper_init(struct nf_conntrack_helper *helper,

		       u16 l3num, u16 protonum, const char *name,

		       u16 default_port, u16 spec_port, u32 id,

		       const struct nf_conntrack_expect_policy *exp_pol,

		       u32 expect_class_max, u32 data_len,

		       int (*help)(struct sk_buff *skb, unsigned int protoff,

				   struct nf_conn *ct,

				   enum ip_conntrack_info ctinfo),

		       int (*from_nlattr)(struct nlattr *attr,

					  struct nf_conn *ct),

		       struct module *module);

int nf_conntrack_helper_register(struct nf_conntrack_helper *);

void nf_conntrack_helper_unregister(struct nf_conntrack_helper *);

int nf_conntrack_helpers_register(struct nf_conntrack_helper *, unsigned int);

void nf_conntrack_helpers_unregister(struct nf_conntrack_helper *,

				     unsigned int);

struct nf_conn_help *nf_ct_helper_ext_add(struct nf_conn *ct,

					  struct nf_conntrack_helper *helper,

					  gfp_t gfp);