[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Qemu-devel] [PATCH v9 06/10] netfilter: add an API to pass the packet t
From: |
Yang Hongyang |
Subject: |
[Qemu-devel] [PATCH v9 06/10] netfilter: add an API to pass the packet to next filter |
Date: |
Tue, 1 Sep 2015 17:06:19 +0800 |
add an API qemu_netfilter_pass_to_next() to pass the packet
to next filter.
Signed-off-by: Yang Hongyang <address@hidden>
Reviewed-by: Thomas Huth <address@hidden>
---
v9: fix a bug when curr filter chain is all
v5: fold params to NetPacket struct
---
include/net/filter.h | 3 +++
net/filter.c | 55 ++++++++++++++++++++++++++++++++++++++++++++++++++++
2 files changed, 58 insertions(+)
diff --git a/include/net/filter.h b/include/net/filter.h
index 083083b..d1aafbe 100644
--- a/include/net/filter.h
+++ b/include/net/filter.h
@@ -56,4 +56,7 @@ NetFilterState *qemu_new_net_filter(NetFilterInfo *info,
void qemu_del_net_filter(NetFilterState *nf);
void netfilter_add(QemuOpts *opts, Error **errp);
+/* pass the packet to the next filter */
+ssize_t qemu_netfilter_pass_to_next(NetFilterState *nf, NetPacket *packet);
+
#endif /* QEMU_NET_FILTER_H */
diff --git a/net/filter.c b/net/filter.c
index 904e5c7..53bb8c4 100644
--- a/net/filter.c
+++ b/net/filter.c
@@ -14,11 +14,13 @@
#include "qapi/dealloc-visitor.h"
#include "qemu/config-file.h"
#include "qmp-commands.h"
+#include "qemu/iov.h"
#include "net/filter.h"
#include "net/net.h"
#include "net/vhost_net.h"
#include "filters.h"
+#include "net/queue.h"
static QTAILQ_HEAD(, NetFilterState) net_filters;
@@ -131,6 +133,59 @@ void qmp_netfilter_del(const char *id, Error **errp)
qemu_del_net_filter(nf);
}
+ssize_t qemu_netfilter_pass_to_next(NetFilterState *nf, NetPacket *packet)
+{
+ int ret = 0;
+ int chain;
+ NetFilterState *next = QTAILQ_NEXT(nf, next);
+ struct iovec iov = {
+ .iov_base = (void *)packet->data,
+ .iov_len = packet->size
+ };
+
+ if (!packet->sender || !packet->sender->peer) {
+ /* no receiver, or sender been deleted, no need to pass it further */
+ goto out;
+ }
+
+ if (nf->chain == NET_FILTER_ALL) {
+ if (packet->sender == nf->netdev) {
+ /* This packet is sent by netdev itself */
+ chain = NET_FILTER_OUT;
+ } else {
+ chain = NET_FILTER_IN;
+ }
+ } else {
+ chain = nf->chain;
+ }
+
+ while (next) {
+ if (next->chain == chain || next->chain == NET_FILTER_ALL) {
+ ret = next->info->receive_iov(next, packet->sender, packet->flags,
+ &iov, 1, packet->sent_cb);
+ if (ret) {
+ return ret;
+ }
+ }
+ next = QTAILQ_NEXT(next, next);
+ }
+
+ /*
+ * We have gone through all filters, pass it to receiver.
+ * Do the valid check again incase sender or receiver been
+ * deleted while we go through filters.
+ */
+ if (packet->sender && packet->sender->peer) {
+ return qemu_net_queue_send_iov(packet->sender->peer->incoming_queue,
+ packet->sender, packet->flags,
+ &iov, 1, packet->sent_cb);
+ }
+
+out:
+ /* no receiver, or sender been deleted */
+ return packet->size;
+}
+
typedef int (NetFilterInit)(const NetFilter *netfilter,
const char *name, int chain,
NetClientState *netdev, Error **errp);
--
1.9.1
- [Qemu-devel] [PATCH v9 00/10] Add a netfilter object and netbuffer filter, Yang Hongyang, 2015/09/01
- [Qemu-devel] [PATCH v9 06/10] netfilter: add an API to pass the packet to next filter,
Yang Hongyang <=
- [Qemu-devel] [PATCH v9 04/10] netfilter: hook packets before net queue send, Yang Hongyang, 2015/09/01
- [Qemu-devel] [PATCH v9 02/10] init/cleanup of netfilter object, Yang Hongyang, 2015/09/01
- [Qemu-devel] [PATCH v9 08/10] net/queue: export qemu_net_queue_append_iov, Yang Hongyang, 2015/09/01
- [Qemu-devel] [PATCH v9 03/10] netfilter: add netfilter_{add|del} commands, Yang Hongyang, 2015/09/01
- [Qemu-devel] [PATCH v9 09/10] netfilter: add a netbuffer filter, Yang Hongyang, 2015/09/01
- [Qemu-devel] [PATCH v9 05/10] move out net queue structs define, Yang Hongyang, 2015/09/01