npf.c revision 1.38.2.1
1 1.1 rmind /*- 2 1.15 rmind * Copyright (c) 2009-2013 The NetBSD Foundation, Inc. 3 1.1 rmind * All rights reserved. 4 1.1 rmind * 5 1.1 rmind * This material is based upon work partially supported by The 6 1.1 rmind * NetBSD Foundation under a contract with Mindaugas Rasiukevicius. 7 1.1 rmind * 8 1.1 rmind * Redistribution and use in source and binary forms, with or without 9 1.1 rmind * modification, are permitted provided that the following conditions 10 1.1 rmind * are met: 11 1.1 rmind * 1. Redistributions of source code must retain the above copyright 12 1.1 rmind * notice, this list of conditions and the following disclaimer. 13 1.1 rmind * 2. Redistributions in binary form must reproduce the above copyright 14 1.1 rmind * notice, this list of conditions and the following disclaimer in the 15 1.1 rmind * documentation and/or other materials provided with the distribution. 16 1.1 rmind * 17 1.1 rmind * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 18 1.1 rmind * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 19 1.1 rmind * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 20 1.1 rmind * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 21 1.1 rmind * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 22 1.1 rmind * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 23 1.1 rmind * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 24 1.1 rmind * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 25 1.1 rmind * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 26 1.1 rmind * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 27 1.1 rmind * POSSIBILITY OF SUCH DAMAGE. 28 1.1 rmind */ 29 1.1 rmind 30 1.1 rmind /* 31 1.1 rmind * NPF main: dynamic load/initialisation and unload routines. 32 1.1 rmind */ 33 1.1 rmind 34 1.33 christos #ifdef _KERNEL 35 1.1 rmind #include <sys/cdefs.h> 36 1.38.2.1 martin __KERNEL_RCSID(0, "$NetBSD: npf.c,v 1.38.2.1 2019/08/07 08:28:37 martin Exp $"); 37 1.1 rmind 38 1.1 rmind #include <sys/param.h> 39 1.1 rmind #include <sys/types.h> 40 1.1 rmind 41 1.1 rmind #include <sys/conf.h> 42 1.2 rmind #include <sys/kmem.h> 43 1.2 rmind #include <sys/percpu.h> 44 1.33 christos #endif 45 1.1 rmind 46 1.1 rmind #include "npf_impl.h" 47 1.20 rmind #include "npf_conn.h" 48 1.1 rmind 49 1.36 rmind static __read_mostly npf_t * npf_kernel_ctx = NULL; 50 1.23 christos 51 1.33 christos __dso_public int 52 1.33 christos npf_sysinit(unsigned nworkers) 53 1.1 rmind { 54 1.17 rmind npf_bpf_sysinit(); 55 1.2 rmind npf_tableset_sysinit(); 56 1.1 rmind npf_nat_sysinit(); 57 1.33 christos return npf_worker_sysinit(nworkers); 58 1.1 rmind } 59 1.1 rmind 60 1.33 christos __dso_public void 61 1.33 christos npf_sysfini(void) 62 1.1 rmind { 63 1.33 christos npf_worker_sysfini(); 64 1.1 rmind npf_nat_sysfini(); 65 1.1 rmind npf_tableset_sysfini(); 66 1.17 rmind npf_bpf_sysfini(); 67 1.1 rmind } 68 1.1 rmind 69 1.33 christos __dso_public npf_t * 70 1.33 christos npf_create(int flags, const npf_mbufops_t *mbufops, const npf_ifops_t *ifops) 71 1.1 rmind { 72 1.33 christos npf_t *npf; 73 1.1 rmind 74 1.33 christos npf = kmem_zalloc(sizeof(npf_t), KM_SLEEP); 75 1.33 christos npf->qsbr = pserialize_create(); 76 1.33 christos npf->stats_percpu = percpu_alloc(NPF_STATS_SIZE); 77 1.33 christos npf->mbufops = mbufops; 78 1.33 christos 79 1.38 rmind npf_param_init(npf); 80 1.38 rmind npf_state_sysinit(npf); 81 1.33 christos npf_ifmap_init(npf, ifops); 82 1.38.2.1 martin npf_conn_init(npf); 83 1.38 rmind npf_portmap_init(npf); 84 1.33 christos npf_alg_init(npf); 85 1.33 christos npf_ext_init(npf); 86 1.33 christos 87 1.33 christos /* Load an empty configuration. */ 88 1.33 christos npf_config_init(npf); 89 1.38.2.1 martin 90 1.38.2.1 martin if ((flags & NPF_NO_GC) == 0) { 91 1.38.2.1 martin npf_worker_register(npf, npf_conn_worker); 92 1.38.2.1 martin } 93 1.33 christos return npf; 94 1.33 christos } 95 1.33 christos 96 1.33 christos __dso_public void 97 1.33 christos npf_destroy(npf_t *npf) 98 1.33 christos { 99 1.33 christos /* 100 1.33 christos * Destroy the current configuration. Note: at this point all 101 1.33 christos * handlers must be deactivated; we will drain any processing. 102 1.33 christos */ 103 1.33 christos npf_config_fini(npf); 104 1.1 rmind 105 1.33 christos /* Finally, safe to destroy the subsystems. */ 106 1.33 christos npf_ext_fini(npf); 107 1.33 christos npf_alg_fini(npf); 108 1.38 rmind npf_portmap_fini(npf); 109 1.33 christos npf_conn_fini(npf); 110 1.33 christos npf_ifmap_fini(npf); 111 1.38 rmind npf_state_sysfini(npf); 112 1.38 rmind npf_param_fini(npf); 113 1.1 rmind 114 1.33 christos pserialize_destroy(npf->qsbr); 115 1.33 christos percpu_free(npf->stats_percpu, NPF_STATS_SIZE); 116 1.33 christos kmem_free(npf, sizeof(npf_t)); 117 1.1 rmind } 118 1.1 rmind 119 1.33 christos __dso_public int 120 1.36 rmind npf_load(npf_t *npf, void *config_ref, npf_error_t *err) 121 1.1 rmind { 122 1.36 rmind return npfctl_load(npf, 0, config_ref); 123 1.1 rmind } 124 1.1 rmind 125 1.33 christos __dso_public void 126 1.33 christos npf_gc(npf_t *npf) 127 1.1 rmind { 128 1.33 christos npf_conn_worker(npf); 129 1.1 rmind } 130 1.1 rmind 131 1.33 christos __dso_public void 132 1.33 christos npf_thread_register(npf_t *npf) 133 1.1 rmind { 134 1.33 christos pserialize_register(npf->qsbr); 135 1.1 rmind } 136 1.1 rmind 137 1.36 rmind __dso_public void 138 1.36 rmind npf_thread_unregister(npf_t *npf) 139 1.36 rmind { 140 1.36 rmind pserialize_perform(npf->qsbr); 141 1.36 rmind pserialize_unregister(npf->qsbr); 142 1.36 rmind } 143 1.36 rmind 144 1.33 christos void 145 1.33 christos npf_setkernctx(npf_t *npf) 146 1.1 rmind { 147 1.33 christos npf_kernel_ctx = npf; 148 1.1 rmind } 149 1.2 rmind 150 1.33 christos npf_t * 151 1.33 christos npf_getkernctx(void) 152 1.13 rmind { 153 1.33 christos return npf_kernel_ctx; 154 1.13 rmind } 155 1.13 rmind 156 1.2 rmind /* 157 1.2 rmind * NPF statistics interface. 158 1.2 rmind */ 159 1.2 rmind 160 1.2 rmind void 161 1.33 christos npf_stats_inc(npf_t *npf, npf_stats_t st) 162 1.2 rmind { 163 1.33 christos uint64_t *stats = percpu_getref(npf->stats_percpu); 164 1.2 rmind stats[st]++; 165 1.33 christos percpu_putref(npf->stats_percpu); 166 1.2 rmind } 167 1.2 rmind 168 1.2 rmind void 169 1.33 christos npf_stats_dec(npf_t *npf, npf_stats_t st) 170 1.2 rmind { 171 1.33 christos uint64_t *stats = percpu_getref(npf->stats_percpu); 172 1.2 rmind stats[st]--; 173 1.33 christos percpu_putref(npf->stats_percpu); 174 1.2 rmind } 175 1.2 rmind 176 1.2 rmind static void 177 1.2 rmind npf_stats_collect(void *mem, void *arg, struct cpu_info *ci) 178 1.2 rmind { 179 1.2 rmind uint64_t *percpu_stats = mem, *full_stats = arg; 180 1.2 rmind 181 1.33 christos for (unsigned i = 0; i < NPF_STATS_COUNT; i++) { 182 1.2 rmind full_stats[i] += percpu_stats[i]; 183 1.2 rmind } 184 1.2 rmind } 185 1.2 rmind 186 1.38 rmind static void 187 1.38 rmind npf_stats_clear_cb(void *mem, void *arg, struct cpu_info *ci) 188 1.38 rmind { 189 1.38 rmind uint64_t *percpu_stats = mem; 190 1.38 rmind 191 1.38 rmind for (unsigned i = 0; i < NPF_STATS_COUNT; i++) { 192 1.38 rmind percpu_stats[i] = 0; 193 1.38 rmind } 194 1.38 rmind } 195 1.38 rmind 196 1.2 rmind /* 197 1.33 christos * npf_stats: export collected statistics. 198 1.2 rmind */ 199 1.38 rmind 200 1.33 christos __dso_public void 201 1.33 christos npf_stats(npf_t *npf, uint64_t *buf) 202 1.2 rmind { 203 1.33 christos memset(buf, 0, NPF_STATS_SIZE); 204 1.33 christos percpu_foreach(npf->stats_percpu, npf_stats_collect, buf); 205 1.2 rmind } 206 1.38 rmind 207 1.38 rmind __dso_public void 208 1.38 rmind npf_stats_clear(npf_t *npf) 209 1.38 rmind { 210 1.38 rmind percpu_foreach(npf->stats_percpu, npf_stats_clear_cb, NULL); 211 1.38 rmind } 212
Indexes created Tue Oct 21 07:10:13 GMT 2025