From: Flavio Leitner <fbl@sysclose.org>
To: Pablo Neira Ayuso <pablo@netfilter.org>
Cc: netdev@vger.kernel.org, Joe Stringer <joe@ovn.org>,
Pravin B Shelar <pshelar@ovn.org>,
dev@openvswitch.org, netfilter-devel@vger.kernel.org
Subject: Re: [PATCH net-next 2/8] netfilter: add API to manage NAT helpers.
Date: Thu, 11 Apr 2019 15:35:35 -0300 [thread overview]
Message-ID: <20190411183534.GB21048@p50.lan> (raw)
In-Reply-To: <20190331221032.szgoqplcd7nvvia6@salvia>
On Mon, Apr 01, 2019 at 12:10:32AM +0200, Pablo Neira Ayuso wrote:
> On Tue, Mar 26, 2019 at 05:57:09PM -0300, Flavio Leitner wrote:
> > The API allows a conntrack helper to indicate its corresponding
> > NAT helper which then can be loaded and reference counted.
> >
> > Signed-off-by: Flavio Leitner <fbl@sysclose.org>
> > ---
> > include/net/netfilter/nf_conntrack_helper.h | 19 +++-
> > net/netfilter/nf_conntrack_amanda.c | 2 +
> > net/netfilter/nf_conntrack_ftp.c | 6 +-
> > net/netfilter/nf_conntrack_helper.c | 108 +++++++++++++++++++-
> > net/netfilter/nf_conntrack_irc.c | 3 +-
> > net/netfilter/nf_conntrack_sane.c | 4 +-
> > net/netfilter/nf_conntrack_sip.c | 12 ++-
> > net/netfilter/nf_conntrack_tftp.c | 6 +-
> > 8 files changed, 147 insertions(+), 13 deletions(-)
> >
> > diff --git a/include/net/netfilter/nf_conntrack_helper.h b/include/net/netfilter/nf_conntrack_helper.h
> > index e86fadf7e7c5..0d36d6bfb522 100644
> > --- a/include/net/netfilter/nf_conntrack_helper.h
> > +++ b/include/net/netfilter/nf_conntrack_helper.h
> > @@ -58,6 +58,8 @@ struct nf_conntrack_helper {
> > unsigned int queue_num;
> > /* length of userspace private data stored in nf_conn_help->data */
> > u16 data_len;
> > + /* name of NAT helper module */
> > + char nat_mod_name[NF_CT_HELPER_NAME_LEN];
> > };
> >
> > /* Must be kept in sync with the classes defined by helpers */
> > @@ -98,7 +100,8 @@ void nf_ct_helper_init(struct nf_conntrack_helper *helper,
> > enum ip_conntrack_info ctinfo),
> > int (*from_nlattr)(struct nlattr *attr,
> > struct nf_conn *ct),
> > - struct module *module);
> > + struct module *module,
> > + const char *nat_mod_name);
> >
> > int nf_conntrack_helper_register(struct nf_conntrack_helper *);
> > void nf_conntrack_helper_unregister(struct nf_conntrack_helper *);
> > @@ -157,4 +160,18 @@ nf_ct_helper_expectfn_find_by_symbol(const void *symbol);
> > extern struct hlist_head *nf_ct_helper_hash;
> > extern unsigned int nf_ct_helper_hsize;
> >
> > +struct nf_conntrack_helper_nat {
> > + struct list_head list;
> > + char name[NF_CT_HELPER_NAME_LEN];
> > + struct module *module; /* pointer to self */
> > +};
> > +
> > +void nf_ct_helper_nat_init(struct nf_conntrack_helper_nat *nat,
> > + const char *name, struct module *module);
>
> Instead of this nf_ct_helper_nat_init() runtime initializer, define
> the structure in C99 as static in the NAT helper module?
>
> Telling this because we can probably also extend this structure to
> remove the RCU hook between ct helper and nat helper at some point
> through this new definition.
Sounds good, let me try that.
> > +void nf_conntrack_helper_nat_register(struct nf_conntrack_helper_nat *nat);
>
> Shorter name suggestion:
>
> nf_nat_helper_register()
>
> > +void nf_conntrack_helper_nat_unregister(struct nf_conntrack_helper_nat *nat);
>
> nf_nat_helper_unregister()
>
> > +int nf_conntrack_helper_nat_try_module_get(const char *name, u16 l3num,
> > + u8 protonum);
>
> nf_nat_helper_try_module_get()
>
> > +void nf_conntrack_helper_nat_put(struct nf_conntrack_helper *helper);
>
> nf_nat_helper_nat_put()
Ok to all the above.
Thanks,
fbl
next prev parent reply other threads:[~2019-04-11 18:42 UTC|newest]
Thread overview: 16+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-03-26 20:57 [PATCH net-next 0/8] openvswitch: load and reference the NAT helper Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 1/8] netfilter: use macros to create module aliases Flavio Leitner
2019-03-31 22:07 ` Pablo Neira Ayuso
2019-04-11 18:33 ` Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 2/8] netfilter: add API to manage NAT helpers Flavio Leitner
2019-03-31 22:10 ` Pablo Neira Ayuso
2019-04-11 18:35 ` Flavio Leitner [this message]
2019-03-31 22:12 ` Pablo Neira Ayuso
2019-03-26 20:57 ` [PATCH net-next 3/8] netfilter: nf_nat: register amanda NAT helper Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 4/8] netfilter: nf_nat: register ftp " Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 5/8] netfilter: nf_nat: register irc " Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 6/8] netfilter: nf_nat: register sip " Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 7/8] netfilter: nf_nat: register tftp " Flavio Leitner
2019-03-26 20:57 ` [PATCH net-next 8/8] openvswitch: load and reference the " Flavio Leitner
2019-03-28 23:55 ` [PATCH net-next 0/8] " David Miller
2019-03-31 20:56 ` David Miller
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190411183534.GB21048@p50.lan \
--to=fbl@sysclose.org \
--cc=dev@openvswitch.org \
--cc=joe@ovn.org \
--cc=netdev@vger.kernel.org \
--cc=netfilter-devel@vger.kernel.org \
--cc=pablo@netfilter.org \
--cc=pshelar@ovn.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).