diff options
author | Sebastian Huber <sebastian.huber@embedded-brains.de> | 2018-08-21 10:42:25 +0200 |
---|---|---|
committer | Sebastian Huber <sebastian.huber@embedded-brains.de> | 2018-08-24 09:09:51 +0200 |
commit | 63084c1988e3c8c0858fd747485f250a2160f434 (patch) | |
tree | 466a6ccbdc5469fc497a49f3b94fe5448b3b7765 /freebsd/sys/netinet6 | |
parent | Update rtems-bsd-kernel-namespace.h (diff) | |
download | rtems-libbsd-63084c1988e3c8c0858fd747485f250a2160f434.tar.bz2 |
IPFW(4): Remove FreeBSD import
This firewall was not ported to RTEMS and is just dead code which may
make trouble during FreeBSD baseline updates. It also increased the
compile-time of the library for nothing.
Update #3472.
Diffstat (limited to 'freebsd/sys/netinet6')
-rw-r--r-- | freebsd/sys/netinet6/ip_fw_nat64.h | 154 | ||||
-rw-r--r-- | freebsd/sys/netinet6/ip_fw_nptv6.h | 51 |
2 files changed, 0 insertions, 205 deletions
diff --git a/freebsd/sys/netinet6/ip_fw_nat64.h b/freebsd/sys/netinet6/ip_fw_nat64.h deleted file mode 100644 index a5c38b2a..00000000 --- a/freebsd/sys/netinet6/ip_fw_nat64.h +++ /dev/null @@ -1,154 +0,0 @@ -/*- - * Copyright (c) 2015 Yandex LLC - * Copyright (c) 2015 Alexander V. Chernikov <melifaro@FreeBSD.org> - * Copyright (c) 2016 Andrey V. Elsukov <ae@FreeBSD.org> - * All rights reserved. - * - * Redistribution and use in source and binary forms, with or without - * modification, are permitted provided that the following conditions - * are met: - * - * 1. Redistributions of source code must retain the above copyright - * notice, this list of conditions and the following disclaimer. - * 2. Redistributions in binary form must reproduce the above copyright - * notice, this list of conditions and the following disclaimer in the - * documentation and/or other materials provided with the distribution. - * - * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR - * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES - * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. - * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, - * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT - * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, - * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY - * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT - * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF - * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. - * - * $FreeBSD$ - */ - -#ifndef _NETINET6_IP_FW_NAT64_H_ -#define _NETINET6_IP_FW_NAT64_H_ - -struct ipfw_nat64stl_stats { - uint64_t opcnt64; /* 6to4 of packets translated */ - uint64_t opcnt46; /* 4to6 of packets translated */ - uint64_t ofrags; /* number of fragments generated */ - uint64_t ifrags; /* number of fragments received */ - uint64_t oerrors; /* number of output errors */ - uint64_t noroute4; - uint64_t noroute6; - uint64_t noproto; /* Protocol not supported */ - uint64_t nomem; /* mbuf allocation filed */ - uint64_t dropped; /* dropped due to some errors */ -}; - -struct ipfw_nat64lsn_stats { - uint64_t opcnt64; /* 6to4 of packets translated */ - uint64_t opcnt46; /* 4to6 of packets translated */ - uint64_t ofrags; /* number of fragments generated */ - uint64_t ifrags; /* number of fragments received */ - uint64_t oerrors; /* number of output errors */ - uint64_t noroute4; - uint64_t noroute6; - uint64_t noproto; /* Protocol not supported */ - uint64_t nomem; /* mbuf allocation filed */ - uint64_t dropped; /* dropped due to some errors */ - - uint64_t nomatch4; /* No addr/port match */ - uint64_t jcalls; /* Number of job handler calls */ - uint64_t jrequests; /* Number of job requests */ - uint64_t jhostsreq; /* Number of job host requests */ - uint64_t jportreq; /* Number of portgroup requests */ - uint64_t jhostfails; /* Number of failed host allocs */ - uint64_t jportfails; /* Number of failed portgroup allocs */ - uint64_t jreinjected; /* Number of packets reinjected to q */ - uint64_t jmaxlen; /* Max queue length reached */ - uint64_t jnomem; /* No memory to alloc queue item */ - - uint64_t screated; /* Number of states created */ - uint64_t sdeleted; /* Number of states deleted */ - uint64_t spgcreated; /* Number of portgroups created */ - uint64_t spgdeleted; /* Number of portgroups deleted */ - uint64_t hostcount; /* Number of hosts */ - uint64_t tcpchunks; /* Number of TCP chunks */ - uint64_t udpchunks; /* Number of UDP chunks */ - uint64_t icmpchunks; /* Number of ICMP chunks */ - - uint64_t _reserved[4]; -}; - -#define NAT64_LOG 0x0001 /* Enable logging via BPF */ - -typedef struct _ipfw_nat64stl_cfg { - char name[64]; /* NAT name */ - ipfw_obj_ntlv ntlv6; /* object name tlv */ - ipfw_obj_ntlv ntlv4; /* object name tlv */ - struct in6_addr prefix6; /* NAT64 prefix */ - uint8_t plen6; /* Prefix length */ - uint8_t set; /* Named instance set [0..31] */ - uint8_t spare[2]; - uint32_t flags; -} ipfw_nat64stl_cfg; - -/* - * NAT64LSN default configuration values - */ -#define NAT64LSN_MAX_PORTS 2048 /* Max number of ports per host */ -#define NAT64LSN_JMAXLEN 2048 /* Max outstanding requests. */ -#define NAT64LSN_TCP_SYN_AGE 10 /* State's TTL after SYN received. */ -#define NAT64LSN_TCP_EST_AGE (2 * 3600) /* TTL for established connection */ -#define NAT64LSN_TCP_FIN_AGE 180 /* State's TTL after FIN/RST received */ -#define NAT64LSN_UDP_AGE 120 /* TTL for UDP states */ -#define NAT64LSN_ICMP_AGE 60 /* TTL for ICMP states */ -#define NAT64LSN_HOST_AGE 3600 /* TTL for stale host entry */ -#define NAT64LSN_PG_AGE 900 /* TTL for stale ports groups */ - -typedef struct _ipfw_nat64lsn_cfg { - char name[64]; /* NAT name */ - uint32_t flags; - uint32_t max_ports; /* Max ports per client */ - uint32_t agg_prefix_len; /* Prefix length to count */ - uint32_t agg_prefix_max; /* Max hosts per agg prefix */ - struct in_addr prefix4; - uint16_t plen4; /* Prefix length */ - uint16_t plen6; /* Prefix length */ - struct in6_addr prefix6; /* NAT64 prefix */ - uint32_t jmaxlen; /* Max jobqueue length */ - uint16_t min_port; /* Min port group # to use */ - uint16_t max_port; /* Max port group # to use */ - uint16_t nh_delete_delay;/* Stale host delete delay */ - uint16_t pg_delete_delay;/* Stale portgroup delete delay */ - uint16_t st_syn_ttl; /* TCP syn expire */ - uint16_t st_close_ttl; /* TCP fin expire */ - uint16_t st_estab_ttl; /* TCP established expire */ - uint16_t st_udp_ttl; /* UDP expire */ - uint16_t st_icmp_ttl; /* ICMP expire */ - uint8_t set; /* Named instance set [0..31] */ - uint8_t spare; -} ipfw_nat64lsn_cfg; - -typedef struct _ipfw_nat64lsn_state { - struct in_addr daddr; /* Remote IPv4 address */ - uint16_t dport; /* Remote destination port */ - uint16_t aport; /* Local alias port */ - uint16_t sport; /* Source port */ - uint8_t flags; /* State flags */ - uint8_t spare[3]; - uint16_t idle; /* Last used time */ -} ipfw_nat64lsn_state; - -typedef struct _ipfw_nat64lsn_stg { - uint64_t next_idx; /* next state index */ - struct in_addr alias4; /* IPv4 alias address */ - uint8_t proto; /* protocol */ - uint8_t flags; - uint16_t spare; - struct in6_addr host6; /* Bound IPv6 host */ - uint32_t count; /* Number of states */ - uint32_t spare2; -} ipfw_nat64lsn_stg; - -#endif /* _NETINET6_IP_FW_NAT64_H_ */ - diff --git a/freebsd/sys/netinet6/ip_fw_nptv6.h b/freebsd/sys/netinet6/ip_fw_nptv6.h deleted file mode 100644 index e2357eff..00000000 --- a/freebsd/sys/netinet6/ip_fw_nptv6.h +++ /dev/null @@ -1,51 +0,0 @@ -/*- - * Copyright (c) 2016 Yandex LLC - * Copyright (c) 2016 Andrey V. Elsukov <ae@FreeBSD.org> - * All rights reserved. - * - * Redistribution and use in source and binary forms, with or without - * modification, are permitted provided that the following conditions - * are met: - * - * 1. Redistributions of source code must retain the above copyright - * notice, this list of conditions and the following disclaimer. - * 2. Redistributions in binary form must reproduce the above copyright - * notice, this list of conditions and the following disclaimer in the - * documentation and/or other materials provided with the distribution. - * - * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR - * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES - * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. - * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, - * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT - * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, - * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY - * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT - * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF - * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. - * - * $FreeBSD$ - */ - -#ifndef _NETINET6_IP_FW_NPTV6_H_ -#define _NETINET6_IP_FW_NPTV6_H_ - -struct ipfw_nptv6_stats { - uint64_t in2ex; /* Int->Ext packets translated */ - uint64_t ex2in; /* Ext->Int packets translated */ - uint64_t dropped; /* dropped due to some errors */ - uint64_t reserved[5]; -}; - -typedef struct _ipfw_nptv6_cfg { - char name[64]; /* NPTv6 instance name */ - struct in6_addr internal; /* NPTv6 internal prefix */ - struct in6_addr external; /* NPTv6 external prefix */ - uint8_t plen; /* Prefix length */ - uint8_t set; /* Named instance set [0..31] */ - uint8_t spare[2]; - uint32_t flags; -} ipfw_nptv6_cfg; - -#endif /* _NETINET6_IP_FW_NPTV6_H_ */ - |