Home Explore Help
Register Sign In
phyus
/
linux-vybrid_public
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

pkt_sched: ingress socket filter by mark

Allow bpf to set a filter to drop packets that dont
match a specific mark

Signed-off-by: Jamal Hadi Salim <hadi@cyberus.ca>
Signed-off-by: David S. Miller <davem@davemloft.net>
jamal 15 years ago
parent
7c734359d3
commit
7e75f93eda
2 changed files with 5 additions and 1 deletions
Split View Show Diff Stats
  1. 2 1
      include/linux/filter.h
  2. 3 0
      net/core/filter.c

+ 2 - 1
include/linux/filter.h
View File 

@@ -123,7 +123,8 @@ struct sock_fprog	/* Required for SO_ATTACH_FILTER. */
 
 #define SKF_AD_IFINDEX 	8
 
 #define SKF_AD_NLATTR	12
 
 #define SKF_AD_NLATTR_NEST	16
 
-#define SKF_AD_MAX	20
 
+#define SKF_AD_MARK 	20
 
+#define SKF_AD_MAX	24
 
 #define SKF_NET_OFF   (-0x100000)
 
 #define SKF_LL_OFF    (-0x200000)

+ 3 - 0
net/core/filter.c
View File 

@@ -303,6 +303,9 @@ load_b:
 
 		case SKF_AD_IFINDEX:
 
 			A = skb->dev->ifindex;
 
 			continue;
 
+		case SKF_AD_MARK:
 
+			A = skb->mark;
 
+			continue;
 
 		case SKF_AD_NLATTR: {
 
 			struct nlattr *nla;