From mboxrd@z Thu Jan 1 00:00:00 1970 From: Alex Williamson Subject: [PATCH 5/7] qemu:virtio-net: Enable filtering based on MAC, promisc, broadcast and allmulti Date: Fri, 16 Jan 2009 14:10:20 -0700 Message-ID: <20090116211020.16725.2766.stgit@kvm.aw> References: <20090116210954.16725.44321.stgit@kvm.aw> Mime-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Cc: qemu-devel@nongnu.org, markmc@redhat.com To: kvm@vger.kernel.org Return-path: Received: from g5t0006.atlanta.hp.com ([15.192.0.43]:4355 "EHLO g5t0006.atlanta.hp.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1761905AbZAPVMO (ORCPT ); Fri, 16 Jan 2009 16:12:14 -0500 In-Reply-To: <20090116210954.16725.44321.stgit@kvm.aw> Sender: kvm-owner@vger.kernel.org List-ID: Make use of the new RX_MODE control virtqueue class by dropping packets the guest doesn't want to see. Signed-off-by: Alex Williamson --- qemu/hw/virtio-net.c | 22 ++++++++++++++++++++++ 1 files changed, 22 insertions(+), 0 deletions(-) diff --git a/qemu/hw/virtio-net.c b/qemu/hw/virtio-net.c index d34c299..bb5348a 100644 --- a/qemu/hw/virtio-net.c +++ b/qemu/hw/virtio-net.c @@ -293,6 +293,25 @@ static int receive_header(VirtIONet *n, struct iovec *iov, int iovcnt, return offset; } +static int receive_filter(VirtIONet *n, const uint8_t *buf, int size) +{ + static uint8_t bcast[] = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff}; + + if (n->promisc) + return 1; + + if ((buf[0] & 1) && n->allmulti) + return 1; + + if (!memcmp(buf, bcast, sizeof(bcast))) + return 1; + + if (!memcmp(buf, n->mac, ETH_ALEN)) + return 1; + + return 0; +} + static void virtio_net_receive(void *opaque, const uint8_t *buf, int size) { VirtIONet *n = opaque; @@ -302,6 +321,9 @@ static void virtio_net_receive(void *opaque, const uint8_t *buf, int size) if (!do_virtio_net_can_receive(n, size)) return; + if (!receive_filter(n, buf, size)) + return; + /* hdr_len refers to the header we supply to the guest */ hdr_len = n->mergeable_rx_bufs ? sizeof(struct virtio_net_hdr_mrg_rxbuf) : sizeof(struct virtio_net_hdr);