tools include: Add headers to make tools builds more hermetic

/* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */

#ifndef _UAPI__LINUX_GENERIC_NETLINK_H

#define _UAPI__LINUX_GENERIC_NETLINK_H

#include <linux/types.h>

#include <linux/netlink.h>

#define GENL_NAMSIZ	16	/* length of family name */

#define GENL_MIN_ID	NLMSG_MIN_TYPE

#define GENL_MAX_ID	1023

struct genlmsghdr {

	__u8	cmd;

	__u8	version;

	__u16	reserved;

};

#define GENL_HDRLEN	NLMSG_ALIGN(sizeof(struct genlmsghdr))

#define GENL_ADMIN_PERM		0x01

#define GENL_CMD_CAP_DO		0x02

#define GENL_CMD_CAP_DUMP	0x04

#define GENL_CMD_CAP_HASPOL	0x08

#define GENL_UNS_ADMIN_PERM	0x10

/*

 * List of reserved static generic netlink identifiers:

 */

#define GENL_ID_CTRL		NLMSG_MIN_TYPE

#define GENL_ID_VFS_DQUOT	(NLMSG_MIN_TYPE + 1)

#define GENL_ID_PMCRAID		(NLMSG_MIN_TYPE + 2)

/* must be last reserved + 1 */

#define GENL_START_ALLOC	(NLMSG_MIN_TYPE + 3)

/**************************************************************************

 * Controller

 **************************************************************************/

enum {

	CTRL_CMD_UNSPEC,

	CTRL_CMD_NEWFAMILY,

	CTRL_CMD_DELFAMILY,

	CTRL_CMD_GETFAMILY,

	CTRL_CMD_NEWOPS,

	CTRL_CMD_DELOPS,

	CTRL_CMD_GETOPS,

	CTRL_CMD_NEWMCAST_GRP,

	CTRL_CMD_DELMCAST_GRP,

	CTRL_CMD_GETMCAST_GRP, /* unused */

	CTRL_CMD_GETPOLICY,

	__CTRL_CMD_MAX,

};

#define CTRL_CMD_MAX (__CTRL_CMD_MAX - 1)

enum {

	CTRL_ATTR_UNSPEC,

	CTRL_ATTR_FAMILY_ID,

	CTRL_ATTR_FAMILY_NAME,

	CTRL_ATTR_VERSION,

	CTRL_ATTR_HDRSIZE,

	CTRL_ATTR_MAXATTR,

	CTRL_ATTR_OPS,

	CTRL_ATTR_MCAST_GROUPS,

	CTRL_ATTR_POLICY,

	CTRL_ATTR_OP_POLICY,

	CTRL_ATTR_OP,

	__CTRL_ATTR_MAX,

};

#define CTRL_ATTR_MAX (__CTRL_ATTR_MAX - 1)

enum {

	CTRL_ATTR_OP_UNSPEC,

	CTRL_ATTR_OP_ID,

	CTRL_ATTR_OP_FLAGS,

	__CTRL_ATTR_OP_MAX,

};

#define CTRL_ATTR_OP_MAX (__CTRL_ATTR_OP_MAX - 1)

enum {

	CTRL_ATTR_MCAST_GRP_UNSPEC,

	CTRL_ATTR_MCAST_GRP_NAME,

	CTRL_ATTR_MCAST_GRP_ID,

	__CTRL_ATTR_MCAST_GRP_MAX,

};

#define CTRL_ATTR_MCAST_GRP_MAX (__CTRL_ATTR_MCAST_GRP_MAX - 1)

enum {

	CTRL_ATTR_POLICY_UNSPEC,

	CTRL_ATTR_POLICY_DO,

	CTRL_ATTR_POLICY_DUMP,

	__CTRL_ATTR_POLICY_DUMP_MAX,

	CTRL_ATTR_POLICY_DUMP_MAX = __CTRL_ATTR_POLICY_DUMP_MAX - 1

};

#define CTRL_ATTR_POLICY_MAX (__CTRL_ATTR_POLICY_DUMP_MAX - 1)

#endif /* _UAPI__LINUX_GENERIC_NETLINK_H */

/* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */

#ifndef _UAPI__LINUX_IF_ADDR_H

#define _UAPI__LINUX_IF_ADDR_H

#include <linux/types.h>

#include <linux/netlink.h>

struct ifaddrmsg {

	__u8		ifa_family;

	__u8		ifa_prefixlen;	/* The prefix length		*/

	__u8		ifa_flags;	/* Flags			*/

	__u8		ifa_scope;	/* Address scope		*/

	__u32		ifa_index;	/* Link index			*/

};

/*

 * Important comment:

 * IFA_ADDRESS is prefix address, rather than local interface address.

 * It makes no difference for normally configured broadcast interfaces,

 * but for point-to-point IFA_ADDRESS is DESTINATION address,

 * local address is supplied in IFA_LOCAL attribute.

 *

 * IFA_FLAGS is a u32 attribute that extends the u8 field ifa_flags.

 * If present, the value from struct ifaddrmsg will be ignored.

 */

enum {

	IFA_UNSPEC,

	IFA_ADDRESS,

	IFA_LOCAL,

	IFA_LABEL,

	IFA_BROADCAST,

	IFA_ANYCAST,

	IFA_CACHEINFO,

	IFA_MULTICAST,

	IFA_FLAGS,

	IFA_RT_PRIORITY,	/* u32, priority/metric for prefix route */

	IFA_TARGET_NETNSID,

	IFA_PROTO,		/* u8, address protocol */

	__IFA_MAX,

};

#define IFA_MAX (__IFA_MAX - 1)

/* ifa_flags */

#define IFA_F_SECONDARY		0x01

#define IFA_F_TEMPORARY		IFA_F_SECONDARY

#define	IFA_F_NODAD		0x02

#define IFA_F_OPTIMISTIC	0x04

#define IFA_F_DADFAILED		0x08

#define	IFA_F_HOMEADDRESS	0x10

#define IFA_F_DEPRECATED	0x20

#define IFA_F_TENTATIVE		0x40

#define IFA_F_PERMANENT		0x80

#define IFA_F_MANAGETEMPADDR	0x100

#define IFA_F_NOPREFIXROUTE	0x200

#define IFA_F_MCAUTOJOIN	0x400

#define IFA_F_STABLE_PRIVACY	0x800

struct ifa_cacheinfo {

	__u32	ifa_prefered;

	__u32	ifa_valid;

	__u32	cstamp; /* created timestamp, hundredths of seconds */

	__u32	tstamp; /* updated timestamp, hundredths of seconds */

};

/* backwards compatibility for userspace */

#ifndef __KERNEL__

#define IFA_RTA(r)  ((struct rtattr*)(((char*)(r)) + NLMSG_ALIGN(sizeof(struct ifaddrmsg))))

#define IFA_PAYLOAD(n) NLMSG_PAYLOAD(n,sizeof(struct ifaddrmsg))

#endif

/* ifa_proto */

#define IFAPROT_UNSPEC		0

#define IFAPROT_KERNEL_LO	1	/* loopback */

#define IFAPROT_KERNEL_RA	2	/* set by kernel from router announcement */

#define IFAPROT_KERNEL_LL	3	/* link-local set by kernel */

#endif

/* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */

#ifndef _UAPI__LINUX_NEIGHBOUR_H

#define _UAPI__LINUX_NEIGHBOUR_H

#include <linux/types.h>

#include <linux/netlink.h>

struct ndmsg {

	__u8		ndm_family;

	__u8		ndm_pad1;

	__u16		ndm_pad2;

	__s32		ndm_ifindex;

	__u16		ndm_state;

	__u8		ndm_flags;

	__u8		ndm_type;

};

enum {

	NDA_UNSPEC,

	NDA_DST,

	NDA_LLADDR,

	NDA_CACHEINFO,

	NDA_PROBES,

	NDA_VLAN,

	NDA_PORT,

	NDA_VNI,

	NDA_IFINDEX,

	NDA_MASTER,

	NDA_LINK_NETNSID,

	NDA_SRC_VNI,

	NDA_PROTOCOL,  /* Originator of entry */

	NDA_NH_ID,

	NDA_FDB_EXT_ATTRS,

	NDA_FLAGS_EXT,

	NDA_NDM_STATE_MASK,

	NDA_NDM_FLAGS_MASK,

	__NDA_MAX

};

#define NDA_MAX (__NDA_MAX - 1)

/*

 *	Neighbor Cache Entry Flags

 */

#define NTF_USE		(1 << 0)

#define NTF_SELF	(1 << 1)

#define NTF_MASTER	(1 << 2)

#define NTF_PROXY	(1 << 3)	/* == ATF_PUBL */

#define NTF_EXT_LEARNED	(1 << 4)

#define NTF_OFFLOADED   (1 << 5)

#define NTF_STICKY	(1 << 6)

#define NTF_ROUTER	(1 << 7)

/* Extended flags under NDA_FLAGS_EXT: */

#define NTF_EXT_MANAGED		(1 << 0)

#define NTF_EXT_LOCKED		(1 << 1)

#define NTF_EXT_EXT_VALIDATED	(1 << 2)

/*

 *	Neighbor Cache Entry States.

 */

#define NUD_INCOMPLETE	0x01

#define NUD_REACHABLE	0x02

#define NUD_STALE	0x04

#define NUD_DELAY	0x08

#define NUD_PROBE	0x10

#define NUD_FAILED	0x20

/* Dummy states */

#define NUD_NOARP	0x40

#define NUD_PERMANENT	0x80

#define NUD_NONE	0x00

/* NUD_NOARP & NUD_PERMANENT are pseudostates, they never change and make no

 * address resolution or NUD.

 *

 * NUD_PERMANENT also cannot be deleted by garbage collectors. This holds true

 * for dynamic entries with NTF_EXT_LEARNED flag as well. However, upon carrier

 * down event, NUD_PERMANENT entries are not flushed whereas NTF_EXT_LEARNED

 * flagged entries explicitly are (which is also consistent with the routing

 * subsystem).

 *

 * When NTF_EXT_LEARNED is set for a bridge fdb entry the different cache entry

 * states don't make sense and thus are ignored. Such entries don't age and

 * can roam.

 *

 * NTF_EXT_MANAGED flagged neigbor entries are managed by the kernel on behalf

 * of a user space control plane, and automatically refreshed so that (if

 * possible) they remain in NUD_REACHABLE state.

 *

 * NTF_EXT_LOCKED flagged bridge FDB entries are entries generated by the

 * bridge in response to a host trying to communicate via a locked bridge port

 * with MAB enabled. Their purpose is to notify user space that a host requires

 * authentication.

 *

 * NTF_EXT_EXT_VALIDATED flagged neighbor entries were externally validated by

 * a user space control plane. The kernel will not remove or invalidate them,

 * but it can probe them and notify user space when they become reachable.

 */

struct nda_cacheinfo {

	__u32		ndm_confirmed;

	__u32		ndm_used;

	__u32		ndm_updated;

	__u32		ndm_refcnt;

};

/*****************************************************************

 *		Neighbour tables specific messages.

 *

 * To retrieve the neighbour tables send RTM_GETNEIGHTBL with the

 * NLM_F_DUMP flag set. Every neighbour table configuration is

 * spread over multiple messages to avoid running into message

 * size limits on systems with many interfaces. The first message

 * in the sequence transports all not device specific data such as

 * statistics, configuration, and the default parameter set.

 * This message is followed by 0..n messages carrying device

 * specific parameter sets.

 * Although the ordering should be sufficient, NDTA_NAME can be

 * used to identify sequences. The initial message can be identified

 * by checking for NDTA_CONFIG. The device specific messages do

 * not contain this TLV but have NDTPA_IFINDEX set to the

 * corresponding interface index.

 *

 * To change neighbour table attributes, send RTM_SETNEIGHTBL

 * with NDTA_NAME set. Changeable attribute include NDTA_THRESH[1-3],

 * NDTA_GC_INTERVAL, and all TLVs in NDTA_PARMS unless marked

 * otherwise. Device specific parameter sets can be changed by

 * setting NDTPA_IFINDEX to the interface index of the corresponding

 * device.

 ****/

struct ndt_stats {

	__u64		ndts_allocs;

	__u64		ndts_destroys;

	__u64		ndts_hash_grows;

	__u64		ndts_res_failed;

	__u64		ndts_lookups;

	__u64		ndts_hits;

	__u64		ndts_rcv_probes_mcast;

	__u64		ndts_rcv_probes_ucast;

	__u64		ndts_periodic_gc_runs;

	__u64		ndts_forced_gc_runs;

	__u64		ndts_table_fulls;

};

enum {

	NDTPA_UNSPEC,

	NDTPA_IFINDEX,			/* u32, unchangeable */

	NDTPA_REFCNT,			/* u32, read-only */

	NDTPA_REACHABLE_TIME,		/* u64, read-only, msecs */

	NDTPA_BASE_REACHABLE_TIME,	/* u64, msecs */

	NDTPA_RETRANS_TIME,		/* u64, msecs */

	NDTPA_GC_STALETIME,		/* u64, msecs */

	NDTPA_DELAY_PROBE_TIME,		/* u64, msecs */

	NDTPA_QUEUE_LEN,		/* u32 */

	NDTPA_APP_PROBES,		/* u32 */

	NDTPA_UCAST_PROBES,		/* u32 */

	NDTPA_MCAST_PROBES,		/* u32 */

	NDTPA_ANYCAST_DELAY,		/* u64, msecs */

	NDTPA_PROXY_DELAY,		/* u64, msecs */

	NDTPA_PROXY_QLEN,		/* u32 */

	NDTPA_LOCKTIME,			/* u64, msecs */

	NDTPA_QUEUE_LENBYTES,		/* u32 */

	NDTPA_MCAST_REPROBES,		/* u32 */

	NDTPA_PAD,

	NDTPA_INTERVAL_PROBE_TIME_MS,	/* u64, msecs */

	__NDTPA_MAX

};

#define NDTPA_MAX (__NDTPA_MAX - 1)

struct ndtmsg {

	__u8		ndtm_family;

	__u8		ndtm_pad1;

	__u16		ndtm_pad2;

};

struct ndt_config {

	__u16		ndtc_key_len;

	__u16		ndtc_entry_size;

	__u32		ndtc_entries;

	__u32		ndtc_last_flush;	/* delta to now in msecs */

	__u32		ndtc_last_rand;		/* delta to now in msecs */

	__u32		ndtc_hash_rnd;

	__u32		ndtc_hash_mask;

	__u32		ndtc_hash_chain_gc;

	__u32		ndtc_proxy_qlen;

};

enum {

	NDTA_UNSPEC,

	NDTA_NAME,			/* char *, unchangeable */

	NDTA_THRESH1,			/* u32 */

	NDTA_THRESH2,			/* u32 */

	NDTA_THRESH3,			/* u32 */

	NDTA_CONFIG,			/* struct ndt_config, read-only */

	NDTA_PARMS,			/* nested TLV NDTPA_* */

	NDTA_STATS,			/* struct ndt_stats, read-only */

	NDTA_GC_INTERVAL,		/* u64, msecs */

	NDTA_PAD,

	__NDTA_MAX

};

#define NDTA_MAX (__NDTA_MAX - 1)

 /* FDB activity notification bits used in NFEA_ACTIVITY_NOTIFY:

  * - FDB_NOTIFY_BIT - notify on activity/expire for any entry

  * - FDB_NOTIFY_INACTIVE_BIT - mark as inactive to avoid multiple notifications

  */

enum {

	FDB_NOTIFY_BIT		= (1 << 0),

	FDB_NOTIFY_INACTIVE_BIT	= (1 << 1)

};

/* embedded into NDA_FDB_EXT_ATTRS:

 * [NDA_FDB_EXT_ATTRS] = {

 *     [NFEA_ACTIVITY_NOTIFY]

 *     ...

 * }

 */

enum {

	NFEA_UNSPEC,

	NFEA_ACTIVITY_NOTIFY,

	NFEA_DONT_REFRESH,

	__NFEA_MAX

};

#define NFEA_MAX (__NFEA_MAX - 1)

#endif

/* SPDX-License-Identifier: GPL-2.0 WITH Linux-syscall-note */

#ifndef _UAPI__LINUX_NETFILTER_H

#define _UAPI__LINUX_NETFILTER_H

#include <linux/types.h>

#include <linux/compiler.h>

#include <linux/in.h>

#include <linux/in6.h>

/* Responses from hook functions. */

#define NF_DROP 0

#define NF_ACCEPT 1

#define NF_STOLEN 2

#define NF_QUEUE 3

#define NF_REPEAT 4

#define NF_STOP 5	/* Deprecated, for userspace nf_queue compatibility. */

#define NF_MAX_VERDICT NF_STOP

/* we overload the higher bits for encoding auxiliary data such as the queue

 * number or errno values. Not nice, but better than additional function

 * arguments. */

#define NF_VERDICT_MASK 0x000000ff

/* extra verdict flags have mask 0x0000ff00 */

#define NF_VERDICT_FLAG_QUEUE_BYPASS	0x00008000

/* queue number (NF_QUEUE) or errno (NF_DROP) */

#define NF_VERDICT_QMASK 0xffff0000

#define NF_VERDICT_QBITS 16

#define NF_QUEUE_NR(x) ((((x) << 16) & NF_VERDICT_QMASK) | NF_QUEUE)

#define NF_DROP_ERR(x) (((-x) << 16) | NF_DROP)

/* only for userspace compatibility */

#ifndef __KERNEL__

/* NF_VERDICT_BITS should be 8 now, but userspace might break if this changes */

#define NF_VERDICT_BITS 16

#endif

enum nf_inet_hooks {

	NF_INET_PRE_ROUTING,

	NF_INET_LOCAL_IN,

	NF_INET_FORWARD,

	NF_INET_LOCAL_OUT,

	NF_INET_POST_ROUTING,

	NF_INET_NUMHOOKS,

	NF_INET_INGRESS = NF_INET_NUMHOOKS,

};

enum nf_dev_hooks {

	NF_NETDEV_INGRESS,

	NF_NETDEV_EGRESS,

	NF_NETDEV_NUMHOOKS

};

enum {

	NFPROTO_UNSPEC =  0,

	NFPROTO_INET   =  1,

	NFPROTO_IPV4   =  2,

	NFPROTO_ARP    =  3,

	NFPROTO_NETDEV =  5,

	NFPROTO_BRIDGE =  7,

	NFPROTO_IPV6   = 10,

#ifndef __KERNEL__ /* no longer supported by kernel */

	NFPROTO_DECNET = 12,

#endif

	NFPROTO_NUMPROTO,

};

union nf_inet_addr {

	__u32		all[4];

	__be32		ip;

	__be32		ip6[4];

	struct in_addr	in;

	struct in6_addr	in6;

};

#endif /* _UAPI__LINUX_NETFILTER_H */

/* SPDX-License-Identifier: GPL-1.0+ WITH Linux-syscall-note */

#ifndef __LINUX_ARP_NETFILTER_H

#define __LINUX_ARP_NETFILTER_H

/* ARP-specific defines for netfilter.

 * (C)2002 Rusty Russell IBM -- This code is GPL.

 */

#include <linux/netfilter.h>

/* There is no PF_ARP. */

#define NF_ARP		0

/* ARP Hooks */

#define NF_ARP_IN	0

#define NF_ARP_OUT	1

#define NF_ARP_FORWARD	2

#ifndef __KERNEL__

#define NF_ARP_NUMHOOKS	3

#endif

#endif /* __LINUX_ARP_NETFILTER_H */