- 28 Jan, 2008 3 commits
-
-
Denis V. Lunev authored
fib_rules_ops contains operations and the list of configured rules. ops will become per/namespace soon, so we need them to be known in the default_pref callback. Acked-by:
Benjamin Thery <benjamin.thery@bull.net> Acked-by:
Daniel Lezcano <dlezcano@fr.ibm.com> Signed-off-by:
Denis V. Lunev <den@openvz.org> Signed-off-by:
David S. Miller <davem@davemloft.net>
-
Denis V. Lunev authored
The patch extends the different fib rules API in order to pass the network namespace pointer. That will allow to access the different tables from a namespace relative object. As usual, the pointer to the init_net variable is passed as parameter so we don't break the network. Acked-by:
-
Daniel Lezcano authored
When the fib_rules initialization finished, no return code is provided so there is no way to know, for the caller, if the initialization has been successful or has failed. This patch fix that. Signed-off-by:
-
- 11 Nov, 2007 1 commit
-
-
Denis V. Lunev authored
This patch fixes a small memory leak. Default fib rules can be deleted by the user if the rule does not carry FIB_RULE_PERMANENT flag, f.e. by ip rule flush Such a rule will not be freed as the ref-counter has 2 on start and becomes clearly unreachable after removal. Signed-off-by:
Alexey Kuznetsov <kuznet@ms2.inr.ac.ru> Signed-off-by:
-
- 10 Oct, 2007 1 commit
-
-
Denis V. Lunev authored
This patch slightly cleanups FIB rules framework. rules_list as a pointer on struct fib_rules_ops is useless. It is always assigned with a static per/subsystem list in IPv4, IPv6 and DecNet. Signed-off-by:
-
- 07 Jun, 2007 1 commit
-
-
Patrick McHardy authored
Signed-off-by:
Patrick McHardy <kaber@trash.net> Signed-off-by:
-
- 26 Apr, 2007 3 commits
-
-
YOSHIFUJI Hideaki authored
When looking up route for destination with rules with source address restrictions, we may need to find a source address for the traffic if not given. Based on patch from Noriaki TAKAMIYA <takamiya@po.ntts.co.jp>. Signed-off-by:
YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> Signed-off-by:
-
Thomas Graf authored
Implements a unified, protocol independant rules dumping function which is capable of both, dumping a specific protocol family or all of them. This speeds up dumping as less lookups are required. Signed-off-by:
Thomas Graf <tgraf@suug.ch> Signed-off-by:
-
Thomas Graf authored
Signed-off-by:
-
- 25 Mar, 2007 1 commit
-
-
Thomas Graf authored
Based upon a patch from Patrick McHardy. The fib_rules netlink attribute policy introduced in 2.6.19 broke userspace compatibilty. When specifying a rule with "from all" or "to all", iproute adds a zero byte long netlink attribute, but the policy requires all addresses to have a size equal to sizeof(struct in_addr)/sizeof(struct in6_addr), resulting in a validation error. Check attribute length of FRA_SRC/FRA_DST in the generic framework by letting the family specific rules implementation provide the length of an address. Report an error if address length is non zero but no address attribute is provided. Fix actual bug by checking address length for non-zero instead of relying on availability of attribute. Signed-off-by:
-
- 03 Dec, 2006 6 commits
-
-
Thomas Graf authored
Noticed by Al Viro: (frh->tos & ~IPV6_FLOWINFO_MASK)) where IPV6_FLOWINFO_MASK is htonl(0xfffffff) and frh->tos is u8, which makes no sense here... Signed-off-by: -
Thomas Graf authored
Account for the netlink message header size directly in nlmsg_new() instead of relying on the caller calculate it correctly. Replaces error handling of message construction functions when constructing notifications with bug traps since a failure implies a bug in calculating the size of the skb. Signed-off-by:
Paul Moore <paul.moore@hp.com> Signed-off-by:
-
YOSHIFUJI Hideaki authored
Signed-off-by: -
Thomas Graf authored
Move the attribute policy for the non-specific attributes into net/fib_rules.h and include it in the respective protocols. Signed-off-by:
-
Thomas Graf authored
Move mark selector currently implemented per protocol into the protocol independant part. Signed-off-by:
-
Thomas Graf authored
Now that all protocols have been made aware of the mark field it can be moved out of the union thus simplyfing its usage. The config options in the IPv4/IPv6/DECnet subsystems to enable respectively disable mark based routing only obfuscate the code with ifdefs, the cost for the additional comparison in the flow key is insignificant, and most distributions have all these options enabled by default anyway. Therefore it makes sense to remove the config options and enable mark based routing by default. Signed-off-by:
-
- 16 Oct, 2006 1 commit
-
-
Thomas Graf authored
Fixes rt6_lookup() to provide the source address in the flow and sets RT6_LOOKUP_F_HAS_SADDR whenever it is present in the flow. Avoids unnecessary prefix comparisons by checking for a prefix length first. Fixes the rule logic to not match packets if a source selector has been specified but no source address is available. Thanks to Kim Nordlund <kim.nordlund@nokia.com> for working on this patch with me. Signed-off-by:
Ville Nuorvala <vnuorval@tcs.hut.fi> Signed-off-by:
-
- 04 Oct, 2006 1 commit
-
-
Dave Jones authored
kbuild explicitly includes this at build time. Signed-off-by:Dave Jones <davej@redhat.com>
-
- 22 Sep, 2006 13 commits
-
-
Thomas Graf authored
Converts existing NLA_STRING attributes to use the new validation features, saving a couple of temporary buffers. Signed-off-by:
-
Patrick McHardy authored
Fix mark comparison, also dump the mask to userspace when the mask is zero, but the mark is not (in which case the mark is dumped, so the mask is needed to make sense of it). Signed-off-by:
-
YOSHIFUJI Hideaki authored
Add support for fwmark masks. A mask of 0xFFFFFFFF is used when a mark value != 0 is sent without a mask. Based on patch for net/ipv4/fib_rules.c by Patrick McHardy <kaber@trash.net>. Signed-off-by:
-
YOSHIFUJI Hideaki authored
It should not be RTA_MAX+1 but FRA_MAX+1. Signed-off-by:
-
YOSHIFUJI Hideaki authored
- Add missing nla_policy entry. - type of fwmark is u32, not u8. Signed-off-by:
-
YOSHIFUJI Hideaki authored
Based on patch by Jean Lorchat <lorchat@sfc.wide.ad.jp>. Signed-off-by: -
YOSHIFUJI Hideaki authored
Signed-off-by: -
YOSHIFUJI Hideaki authored
Unify RT6_F_xxx and RT6_SELECT_F_xxx flags into RT6_LOOKUP_F_xxx flags, and put them into ip6_route.h Signed-off-by:
-
Patrick McHardy authored
Introduce RTA_TABLE route attribute and FRA_TABLE routing rule attribute to hold 32 bit routing table IDs. Usespace compatibility is provided by continuing to accept and send the rtm_table field, but because of its limited size it can only carry the low 8 bits of the table ID. This implies that if larger IDs are used, _all_ userspace programs using them need to use RTA_TABLE. Signed-off-by:
-
Ville Nuorvala authored
The callers of fib6_rule_lookup don't expect it to return NULL, therefore it must return ip6_null_entry whenever fib_rule_lookup fails. Signed-off-by:
-
Adrian Bunk authored
This patch makes needlessly global code static. Signed-off-by:
Adrian Bunk <bunk@stusta.de> Signed-off-by:
-
Patrick McHardy authored
When the lookup in a table returns ip6_null_entry the policy routing lookup returns it instead of continuing in the next table, which effectively means it only searches the local table. Signed-off-by:
-
Thomas Graf authored
Adds support for policy routing rules including a new local table for routes with a local destination. Signed-off-by:
-
