From: Flavio Leitner <fbl@sysclose.org>
To: Pablo Neira Ayuso <pablo@netfilter.org>
Cc: netdev@vger.kernel.org, Joe Stringer <joe@ovn.org>,
Pravin B Shelar <pshelar@ovn.org>,
dev@openvswitch.org, netfilter-devel@vger.kernel.org
Subject: Re: [PATCH net-next 2/8] netfilter: add API to manage NAT helpers.
Date: Thu, 11 Apr 2019 15:35:35 -0300 [thread overview]
Message-ID: <20190411183534.GB21048@p50.lan> (raw)
In-Reply-To: <20190331221032.szgoqplcd7nvvia6@salvia>
On Mon, Apr 01, 2019 at 12:10:32AM +0200, Pablo Neira Ayuso wrote:
> On Tue, Mar 26, 2019 at 05:57:09PM -0300, Flavio Leitner wrote:
> > The API allows a conntrack helper to indicate its corresponding
> > NAT helper which then can be loaded and reference counted.
> >
> > Signed-off-by: Flavio Leitner <fbl@sysclose.org>
> > ---
> > include/net/netfilter/nf_conntrack_helper.h | 19 +++-
> > net/netfilter/nf_conntrack_amanda.c | 2 +
> > net/netfilter/nf_conntrack_ftp.c | 6 +-
> > net/netfilter/nf_conntrack_helper.c | 108 +++++++++++++++++++-
> > net/netfilter/nf_conntrack_irc.c | 3 +-
> > net/netfilter/nf_conntrack_sane.c | 4 +-
> > net/netfilter/nf_conntrack_sip.c | 12 ++-
> > net/netfilter/nf_conntrack_tftp.c | 6 +-
> > 8 files changed, 147 insertions(+), 13 deletions(-)
> >
> > diff --git a/include/net/netfilter/nf_conntrack_helper.h b/include/net/netfilter/nf_conntrack_helper.h
> > index e86fadf7e7c5..0d36d6bfb522 100644
> > --- a/include/net/netfilter/nf_conntrack_helper.h
> > +++ b/include/net/netfilter/nf_conntrack_helper.h
> > @@ -58,6 +58,8 @@ struct nf_conntrack_helper {
> > unsigned int queue_num;
> > /* length of userspace private data stored in nf_conn_help->data */
> > u16 data_len;
> > + /* name of NAT helper module */
> > + char nat_mod_name[NF_CT_HELPER_NAME_LEN];
> > };
> >
> > /* Must be kept in sync with the classes defined by helpers */
> > @@ -98,7 +100,8 @@ void nf_ct_helper_init(struct nf_conntrack_helper *helper,
> > enum ip_conntrack_info ctinfo),
> > int (*from_nlattr)(struct nlattr *attr,
> > struct nf_conn *ct),
> > - struct module *module);
> > + struct module *module,
> > + const char *nat_mod_name);
> >
> > int nf_conntrack_helper_register(struct nf_conntrack_helper *);
> > void nf_conntrack_helper_unregister(struct nf_conntrack_helper *);
> > @@ -157,4 +160,18 @@ nf_ct_helper_expectfn_find_by_symbol(const void *symbol);
> > extern struct hlist_head *nf_ct_helper_hash;
> > extern unsigned int nf_ct_helper_hsize;
> >
> > +struct nf_conntrack_helper_nat {
> > + struct list_head list;
> > + char name[NF_CT_HELPER_NAME_LEN];
> > + struct module *module; /* pointer to self */
> > +};
> > +
> > +void nf_ct_helper_nat_init(struct nf_conntrack_helper_nat *nat,
> > + const char *name, struct module *module);
>
> Instead of this nf_ct_helper_nat_init() runtime initializer, define
> the structure in C99 as static in the NAT helper module?
>
> Telling this because we can probably also extend this structure to
> remove the RCU hook between ct helper and nat helper at some point
> through this new definition.
Sounds good, let me try that.
> > +void nf_conntrack_helper_nat_register(struct nf_conntrack_helper_nat *nat);
>
> Shorter name suggestion:
>
> nf_nat_helper_register()
>
> > +void nf_conntrack_helper_nat_unregister(struct nf_conntrack_helper_nat *nat);
>
> nf_nat_helper_unregister()
>
> > +int nf_conntrack_helper_nat_try_module_get(const char *name, u16 l3num,
> > + u8 protonum);
>
> nf_nat_helper_try_module_get()
>
> > +void nf_conntrack_helper_nat_put(struct nf_conntrack_helper *helper);
>
> nf_nat_helper_nat_put()
Ok to all the above.
Thanks,
fbl
next prev parent reply other threads:[~2019-04-11 18:42 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-03-26 20:57 [PATCH net-next 0/8] openvswitch: load and reference the NAT helper Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 1/8] netfilter: use macros to create module aliases Flavio Leitner
2019-03-31 22:07 ` Pablo Neira Ayuso
2019-04-11 18:33 ` Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 2/8] netfilter: add API to manage NAT helpers Flavio Leitner
2019-03-31 22:10 ` Pablo Neira Ayuso
2019-04-11 18:35 ` Flavio Leitner [this message]
2019-03-31 22:12 ` Pablo Neira Ayuso
2019-03-26 20:57 ` [PATCH net-next 3/8] netfilter: nf_nat: register amanda NAT helper Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 4/8] netfilter: nf_nat: register ftp " Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 5/8] netfilter: nf_nat: register irc " Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 6/8] netfilter: nf_nat: register sip " Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 7/8] netfilter: nf_nat: register tftp " Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 8/8] openvswitch: load and reference the " Flavio Leitner
2019-03-28 23:55 ` [PATCH net-next 0/8] " David Miller
2019-03-31 20:56 ` David Miller
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190411183534.GB21048@p50.lan \
--to=fbl@sysclose.org \
--cc=dev@openvswitch.org \
--cc=joe@ovn.org \
--cc=netdev@vger.kernel.org \
--cc=netfilter-devel@vger.kernel.org \
--cc=pablo@netfilter.org \
--cc=pshelar@ovn.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.