X-Git-Url: http://git.rohieb.name/openwrt.git/blobdiff_plain/2a22bd5e7eb971021bceda16e50c38a098fc737f..f5de7192504330724d9cf5615775b22b486f42f8:/target/linux/generic-2.6/patches-2.6.26/150-netfilter_imq.patch diff --git a/target/linux/generic-2.6/patches-2.6.26/150-netfilter_imq.patch b/target/linux/generic-2.6/patches-2.6.26/150-netfilter_imq.patch index e5db1d821..ba9a93c13 100644 --- a/target/linux/generic-2.6/patches-2.6.26/150-netfilter_imq.patch +++ b/target/linux/generic-2.6/patches-2.6.26/150-netfilter_imq.patch @@ -1,6 +1,6 @@ --- /dev/null +++ b/drivers/net/imq.c -@@ -0,0 +1,410 @@ +@@ -0,0 +1,474 @@ +/* + * Pseudo-driver for the intermediate queue device. + * @@ -24,8 +24,8 @@ + * of IMQ again: http://www.linuximq.net + * + * -+ * 2004/06/30 - New version of IMQ patch to kernels <=2.6.7 including -+ * the following changes: ++ * 2004/06/30 - New version of IMQ patch to kernels <=2.6.7 ++ * including the following changes: + * + * - Correction of ipv6 support "+"s issue (Hasso Tepper) + * - Correction of imq_init_devs() issue that resulted in @@ -49,6 +49,15 @@ + * Kevin Shanahan, Richard Lucassen, Valery Dachev (hopefully + * I didn't forget anybody). I apologize again for my lack of time. + * ++ * ++ * 2008/06/17 - 2.6.25 - Changed imq.c to use qdisc_run() instead ++ * of qdisc_restart() and moved qdisc_run() to tasklet to avoid ++ * recursive locking. New initialization routines to fix 'rmmod' not ++ * working anymore. Used code from ifb.c. (Jussi Kivilinna) ++ * ++ * Also, many thanks to pablo Sebastian Greco for making the initial ++ * patch and to those who helped the testing. ++ * + * More info at: http://www.linuximq.net/ (Andre Correa) + */ + @@ -61,14 +70,17 @@ +#include +#include +#include -+#if defined(CONFIG_IPV6) || defined (CONFIG_IPV6_MODULE) ++#if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE) + #include +#endif +#include +#include +#include + -+extern int qdisc_restart1(struct net_device *dev); ++struct imq_private { ++ struct tasklet_struct tasklet; ++ int tasklet_pending; ++}; + +static nf_hookfn imq_nf_hook; + @@ -96,7 +108,7 @@ +#endif +}; + -+#if defined(CONFIG_IPV6) || defined (CONFIG_IPV6_MODULE) ++#if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE) +static struct nf_hook_ops imq_ingress_ipv6 = { + .hook = imq_nf_hook, + .owner = THIS_MODULE, @@ -125,36 +137,34 @@ +#if defined(CONFIG_IMQ_NUM_DEVS) +static unsigned int numdevs = CONFIG_IMQ_NUM_DEVS; +#else -+static unsigned int numdevs = 16; ++static unsigned int numdevs = IMQ_MAX_DEVS; +#endif + -+static struct net_device *imq_devs; ++static struct net_device *imq_devs_cache[IMQ_MAX_DEVS]; + +static struct net_device_stats *imq_get_stats(struct net_device *dev) +{ -+ return (struct net_device_stats *)dev->priv; ++ return &dev->stats; +} + +/* called for packets kfree'd in qdiscs at places other than enqueue */ +static void imq_skb_destructor(struct sk_buff *skb) +{ -+ struct nf_queue_entry *info = skb->nf_queue_entry; -+ -+ if (info) { -+ if (info->indev) -+ dev_put(info->indev); -+ if (info->outdev) -+ dev_put(info->outdev); -+ kfree(info); ++ struct nf_queue_entry *entry = skb->nf_queue_entry; ++ ++ if (entry) { ++ if (entry->indev) ++ dev_put(entry->indev); ++ if (entry->outdev) ++ dev_put(entry->outdev); ++ kfree(entry); + } +} + +static int imq_dev_xmit(struct sk_buff *skb, struct net_device *dev) +{ -+ struct net_device_stats *stats = (struct net_device_stats*) dev->priv; -+ -+ stats->tx_bytes += skb->len; -+ stats->tx_packets++; ++ dev->stats.tx_bytes += skb->len; ++ dev->stats.tx_packets++; + + skb->imq_flags = 0; + skb->destructor = NULL; @@ -164,58 +174,70 @@ + return 0; +} + -+static int imq_nf_queue(struct nf_queue_entry *info, unsigned queue_num) ++static int imq_nf_queue(struct nf_queue_entry *entry, unsigned queue_num) +{ + struct net_device *dev; -+ struct net_device_stats *stats; ++ struct imq_private *priv; + struct sk_buff *skb2 = NULL; + struct Qdisc *q; -+ unsigned int index = info->skb->imq_flags&IMQ_F_IFMASK; ++ unsigned int index = entry->skb->imq_flags & IMQ_F_IFMASK; + int ret = -1; + + if (index > numdevs) + return -1; + -+ dev = imq_devs + index; ++ /* check for imq device by index from cache */ ++ dev = imq_devs_cache[index]; ++ if (!dev) { ++ char buf[8]; ++ ++ /* get device by name and cache result */ ++ snprintf(buf, sizeof(buf), "imq%d", index); ++ dev = dev_get_by_name(&init_net, buf); ++ if (!dev) { ++ /* not found ?!*/ ++ BUG(); ++ return -1; ++ } ++ ++ imq_devs_cache[index] = dev; ++ } ++ ++ priv = netdev_priv(dev); + if (!(dev->flags & IFF_UP)) { -+ info->skb->imq_flags = 0; -+ nf_reinject(info, NF_ACCEPT); ++ entry->skb->imq_flags = 0; ++ nf_reinject(entry, NF_ACCEPT); + return 0; + } + dev->last_rx = jiffies; + -+ if (info->skb->destructor) { -+ skb2 = info->skb; -+ info->skb = skb_clone(info->skb, GFP_ATOMIC); -+ if (!info->skb) ++ if (entry->skb->destructor) { ++ skb2 = entry->skb; ++ entry->skb = skb_clone(entry->skb, GFP_ATOMIC); ++ if (!entry->skb) + return -1; + } -+ info->skb->nf_queue_entry = info; ++ entry->skb->nf_queue_entry = entry; + -+ stats = (struct net_device_stats *)dev->priv; -+ stats->rx_bytes+= info->skb->len; -+ stats->rx_packets++; ++ dev->stats.rx_bytes += entry->skb->len; ++ dev->stats.rx_packets++; + + spin_lock_bh(&dev->queue_lock); + q = dev->qdisc; + if (q->enqueue) { -+ q->enqueue(skb_get(info->skb), q); -+ if (skb_shared(info->skb)) { -+ info->skb->destructor = imq_skb_destructor; -+ kfree_skb(info->skb); ++ q->enqueue(skb_get(entry->skb), q); ++ if (skb_shared(entry->skb)) { ++ entry->skb->destructor = imq_skb_destructor; ++ kfree_skb(entry->skb); + ret = 0; + } + } -+ if (spin_is_locked(&dev->_xmit_lock)) -+ netif_schedule(dev); -+ else -+ while (!netif_queue_stopped(dev) && qdisc_restart1(dev) < 0) -+ /* NOTHING */; -+ ++ if (!test_and_set_bit(1, &priv->tasklet_pending)) ++ tasklet_schedule(&priv->tasklet); + spin_unlock_bh(&dev->queue_lock); + + if (skb2) -+ kfree_skb(ret ? info->skb : skb2); ++ kfree_skb(ret ? entry->skb : skb2); + + return ret; +} @@ -225,6 +247,17 @@ + .outfn = imq_nf_queue, +}; + ++static void qdisc_run_tasklet(unsigned long arg) ++{ ++ struct net_device *dev = (struct net_device *)arg; ++ struct imq_private *priv = netdev_priv(dev); ++ ++ spin_lock(&dev->queue_lock); ++ qdisc_run(dev); ++ clear_bit(1, &priv->tasklet_pending); ++ spin_unlock(&dev->queue_lock); ++} ++ +static unsigned int imq_nf_hook(unsigned int hook, struct sk_buff *pskb, + const struct net_device *indev, + const struct net_device *outdev, @@ -236,30 +269,77 @@ + return NF_ACCEPT; +} + ++static int imq_close(struct net_device *dev) ++{ ++ struct imq_private *priv = netdev_priv(dev); ++ ++ tasklet_kill(&priv->tasklet); ++ netif_stop_queue(dev); ++ ++ return 0; ++} ++ ++static int imq_open(struct net_device *dev) ++{ ++ struct imq_private *priv = netdev_priv(dev); ++ ++ tasklet_init(&priv->tasklet, qdisc_run_tasklet, (unsigned long)dev); ++ netif_start_queue(dev); ++ ++ return 0; ++} ++ ++static void imq_setup(struct net_device *dev) ++{ ++ dev->hard_start_xmit = imq_dev_xmit; ++ dev->open = imq_open; ++ dev->get_stats = imq_get_stats; ++ dev->stop = imq_close; ++ dev->type = ARPHRD_VOID; ++ dev->mtu = 16000; ++ dev->tx_queue_len = 11000; ++ dev->flags = IFF_NOARP; ++} ++ ++static struct rtnl_link_ops imq_link_ops __read_mostly = { ++ .kind = "imq", ++ .priv_size = sizeof(struct imq_private), ++ .setup = imq_setup, ++}; + +static int __init imq_init_hooks(void) +{ + int err; + + err = nf_register_queue_handler(PF_INET, &nfqh); -+ if (err > 0) ++ if (err) + goto err1; -+ if ((err = nf_register_hook(&imq_ingress_ipv4))) ++ ++ err = nf_register_hook(&imq_ingress_ipv4); ++ if (err) + goto err2; -+ if ((err = nf_register_hook(&imq_egress_ipv4))) ++ ++ err = nf_register_hook(&imq_egress_ipv4); ++ if (err) + goto err3; -+#if defined(CONFIG_IPV6) || defined (CONFIG_IPV6_MODULE) -+ if ((err = nf_register_queue_handler(PF_INET6, &nfqh))) ++ ++#if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE) ++ err = nf_register_queue_handler(PF_INET6, &nfqh); ++ if (err) + goto err4; -+ if ((err = nf_register_hook(&imq_ingress_ipv6))) ++ ++ err = nf_register_hook(&imq_ingress_ipv6); ++ if (err) + goto err5; -+ if ((err = nf_register_hook(&imq_egress_ipv6))) ++ ++ err = nf_register_hook(&imq_egress_ipv6); ++ if (err) + goto err6; +#endif + + return 0; + -+#if defined(CONFIG_IPV6) || defined (CONFIG_IPV6_MODULE) ++#if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE) +err6: + nf_unregister_hook(&imq_ingress_ipv6); +err5: @@ -275,43 +355,33 @@ + return err; +} + -+static void __exit imq_unhook(void) ++static int __init imq_init_one(int index) +{ -+#if defined(CONFIG_IPV6) || defined (CONFIG_IPV6_MODULE) -+ nf_unregister_hook(&imq_ingress_ipv6); -+ nf_unregister_hook(&imq_egress_ipv6); -+ nf_unregister_queue_handler(PF_INET6, &nfqh); -+#endif -+ nf_unregister_hook(&imq_ingress_ipv4); -+ nf_unregister_hook(&imq_egress_ipv4); -+ nf_unregister_queue_handler(PF_INET, &nfqh); -+} ++ struct net_device *dev; ++ int ret; + -+static int __init imq_dev_init(struct net_device *dev) -+{ -+ dev->hard_start_xmit = imq_dev_xmit; -+ dev->type = ARPHRD_VOID; -+ dev->mtu = 16000; -+ dev->tx_queue_len = 11000; -+ dev->flags = IFF_NOARP; -+ dev->priv = kzalloc(sizeof(struct net_device_stats), GFP_KERNEL); -+ if (dev->priv == NULL) ++ dev = alloc_netdev(sizeof(struct imq_private), "imq%d", imq_setup); ++ if (!dev) + return -ENOMEM; -+ dev->get_stats = imq_get_stats; + -+ return 0; -+} ++ ret = dev_alloc_name(dev, dev->name); ++ if (ret < 0) ++ goto fail; + -+static void imq_dev_uninit(struct net_device *dev) -+{ -+ kfree(dev->priv); ++ dev->rtnl_link_ops = &imq_link_ops; ++ ret = register_netdevice(dev); ++ if (ret < 0) ++ goto fail; ++ ++ return 0; ++fail: ++ free_netdev(dev); ++ return ret; +} + -+static int __init imq_init_devs(struct net *net) ++static int __init imq_init_devs(void) +{ -+ struct net_device *dev; -+ int i,j; -+ j = numdevs; ++ int err, i; + + if (!numdevs || numdevs > IMQ_MAX_DEVS) { + printk(KERN_ERR "IMQ: numdevs has to be betweed 1 and %u\n", @@ -319,54 +389,36 @@ + return -EINVAL; + } + -+ imq_devs = kzalloc(sizeof(struct net_device) * numdevs, GFP_KERNEL); -+ if (!imq_devs) -+ return -ENOMEM; -+ -+ /* we start counting at zero */ -+ numdevs--; ++ rtnl_lock(); ++ err = __rtnl_link_register(&imq_link_ops); + -+ for (i = 0, dev = imq_devs; i <= numdevs; i++, dev++) { -+ strcpy(dev->name, "imq%d"); -+ dev->init = imq_dev_init; -+ dev->uninit = imq_dev_uninit; -+ dev->nd_net = net; ++ for (i = 0; i < numdevs && !err; i++) ++ err = imq_init_one(i); + -+ if (register_netdev(dev) < 0) -+ goto err_register; ++ if (err) { ++ __rtnl_link_unregister(&imq_link_ops); ++ memset(imq_devs_cache, 0, sizeof(imq_devs_cache)); + } -+ printk(KERN_INFO "IMQ starting with %u devices...\n", j); -+ return 0; -+ -+err_register: -+ for (; i; i--) -+ unregister_netdev(--dev); -+ kfree(imq_devs); -+ return -EIO; -+} -+ -+static void imq_cleanup_devs(void) -+{ -+ int i; -+ struct net_device *dev = imq_devs; ++ rtnl_unlock(); + -+ for (i = 0; i <= numdevs; i++) -+ unregister_netdev(dev++); -+ -+ kfree(imq_devs); ++ return err; +} + -+static __net_init int imq_init_module(struct net *net) ++static int __init imq_init_module(void) +{ + int err; + -+ if ((err = imq_init_devs(net))) { ++ err = imq_init_devs(); ++ if (err) { + printk(KERN_ERR "IMQ: Error trying imq_init_devs(net)\n"); + return err; + } -+ if ((err = imq_init_hooks())) { ++ ++ err = imq_init_hooks(); ++ if (err) { + printk(KERN_ERR "IMQ: Error trying imq_init_hooks()\n"); -+ imq_cleanup_devs(); ++ rtnl_link_unregister(&imq_link_ops); ++ memset(imq_devs_cache, 0, sizeof(imq_devs_cache)); + return err; + } + @@ -386,31 +438,43 @@ + return 0; +} + -+static __net_exit void imq_exit_module(struct net *net) ++static void __exit imq_unhook(void) +{ -+ imq_unhook(); -+ imq_cleanup_devs(); -+ printk(KERN_INFO "IMQ driver unloaded successfully.\n"); ++#if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE) ++ nf_unregister_hook(&imq_ingress_ipv6); ++ nf_unregister_hook(&imq_egress_ipv6); ++ nf_unregister_queue_handler(PF_INET6, &nfqh); ++#endif ++ nf_unregister_hook(&imq_ingress_ipv4); ++ nf_unregister_hook(&imq_egress_ipv4); ++ nf_unregister_queue_handler(PF_INET, &nfqh); +} + -+static struct pernet_operations __net_initdata imq_net_ops = { -+ .init = imq_init_module, -+ .exit = imq_exit_module, -+}; -+ -+static int __init imq_init(void) ++static void __exit imq_cleanup_devs(void) +{ -+ return register_pernet_device(&imq_net_ops); ++ rtnl_link_unregister(&imq_link_ops); ++ memset(imq_devs_cache, 0, sizeof(imq_devs_cache)); +} + -+module_init(imq_init); -+//module_exit(imq_cleanup_module); ++static void __exit imq_exit_module(void) ++{ ++ imq_unhook(); ++ imq_cleanup_devs(); ++ printk(KERN_INFO "IMQ driver unloaded successfully.\n"); ++} ++ ++module_init(imq_init_module); ++module_exit(imq_exit_module); + +module_param(numdevs, int, 0); -+MODULE_PARM_DESC(numdevs, "number of IMQ devices (how many imq* devices will be created)"); ++MODULE_PARM_DESC(numdevs, "number of IMQ devices (how many imq* devices will " ++ "be created)"); +MODULE_AUTHOR("http://www.linuximq.net"); -+MODULE_DESCRIPTION("Pseudo-driver for the intermediate queue device. See http://www.linuximq.net/ for more information."); ++MODULE_DESCRIPTION("Pseudo-driver for the intermediate queue device. See " ++ "http://www.linuximq.net/ for more information."); +MODULE_LICENSE("GPL"); ++MODULE_ALIAS_RTNL_LINK("imq"); ++ --- a/drivers/net/Kconfig +++ b/drivers/net/Kconfig @@ -117,6 +117,129 @@ @@ -436,7 +500,7 @@ +choice + prompt "IMQ behavior (PRE/POSTROUTING)" + depends on IMQ -+ default IMQ_BEHAVIOR_BB ++ default IMQ_BEHAVIOR_AB + help + + This settings defines how IMQ behaves in respect to its @@ -545,7 +609,7 @@ select CRC32 --- a/drivers/net/Makefile +++ b/drivers/net/Makefile -@@ -143,6 +143,7 @@ +@@ -142,6 +142,7 @@ obj-$(CONFIG_XEN_NETDEV_FRONTEND) += xen-netfront.o obj-$(CONFIG_DUMMY) += dummy.o @@ -589,7 +653,7 @@ +#endif /* _IP6T_IMQ_H */ --- a/include/linux/skbuff.h +++ b/include/linux/skbuff.h -@@ -296,6 +296,10 @@ +@@ -300,6 +300,10 @@ struct nf_conntrack *nfct; struct sk_buff *nfct_reasm; #endif @@ -600,7 +664,7 @@ #ifdef CONFIG_BRIDGE_NETFILTER struct nf_bridge_info *nf_bridge; #endif -@@ -1736,6 +1740,10 @@ +@@ -1633,6 +1637,10 @@ dst->nfct_reasm = src->nfct_reasm; nf_conntrack_get_reasm(src->nfct_reasm); #endif @@ -623,7 +687,7 @@ #include #include #include -@@ -1537,7 +1540,11 @@ +@@ -1569,7 +1572,11 @@ int dev_hard_start_xmit(struct sk_buff *skb, struct net_device *dev) { if (likely(!skb->next)) { @@ -655,7 +719,7 @@ + const struct xt_target *target, + const void *targinfo) +{ -+ struct ipt_imq_info *mr = (struct ipt_imq_info*)targinfo; ++ struct ipt_imq_info *mr = (struct ipt_imq_info *)targinfo; + + pskb->imq_flags = mr->todev | IMQ_F_ENQUEUE; + @@ -670,7 +734,7 @@ +{ + struct ipt_imq_info *mr; + -+ mr = (struct ipt_imq_info*)targinfo; ++ mr = (struct ipt_imq_info *)targinfo; + + if (mr->todev > IMQ_MAX_DEVS) { + printk(KERN_WARNING @@ -730,7 +794,7 @@ depends on IP_NF_FILTER --- a/net/ipv4/netfilter/Makefile +++ b/net/ipv4/netfilter/Makefile -@@ -55,6 +55,7 @@ +@@ -58,6 +58,7 @@ obj-$(CONFIG_IP_NF_TARGET_CLUSTERIP) += ipt_CLUSTERIP.o obj-$(CONFIG_IP_NF_TARGET_ECN) += ipt_ECN.o obj-$(CONFIG_IP_NF_TARGET_LOG) += ipt_LOG.o @@ -757,7 +821,7 @@ + const struct xt_target *target, + const void *targinfo) +{ -+ struct ip6t_imq_info *mr = (struct ip6t_imq_info*)targinfo; ++ struct ip6t_imq_info *mr = (struct ip6t_imq_info *)targinfo; + + pskb->imq_flags = mr->todev | IMQ_F_ENQUEUE; + @@ -772,7 +836,7 @@ +{ + struct ip6t_imq_info *mr; + -+ mr = (struct ip6t_imq_info*)targinfo; ++ mr = (struct ip6t_imq_info *)targinfo; + + if (mr->todev > IMQ_MAX_DEVS) { + printk(KERN_WARNING @@ -840,16 +904,11 @@ --- a/net/sched/sch_generic.c +++ b/net/sched/sch_generic.c -@@ -182,6 +182,12 @@ - return ret; +@@ -203,6 +203,7 @@ + + clear_bit(__LINK_STATE_QDISC_RUNNING, &dev->state); } ++EXPORT_SYMBOL(__qdisc_run); -+int qdisc_restart1(struct net_device *dev) -+{ -+ return qdisc_restart(dev); -+} -+EXPORT_SYMBOL(qdisc_restart1); -+ - void __qdisc_run(struct net_device *dev) + static void dev_watchdog(unsigned long arg) { - unsigned long start_time = jiffies;