首頁 探索 說明
註冊 登入
phyus
/
linux-vybrid_public
8
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: 744ea922c9
分支列表 標籤列表
linux-vybrid_pu...
/
net
/
xfrm
/
xfrm_output.c

xfrm_output.c 2.0 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. /*
    2. 

  2.  * xfrm_output.c - Common IPsec encapsulation code.
    3. 

  3.  *
    4. 

  4.  * Copyright (c) 2007 Herbert Xu <herbert@gondor.apana.org.au>
    5. 

  5.  *
    6. 

  6.  * This program is free software; you can redistribute it and/or
    7. 

  7.  * modify it under the terms of the GNU General Public License
    8. 

  8.  * as published by the Free Software Foundation; either version
    9. 

  9.  * 2 of the License, or (at your option) any later version.
    10. 

  10.  */
    11. 

  11. 

  12. #include <linux/errno.h>
    13. 

  13. #include <linux/module.h>
    14. 

  14. #include <linux/netdevice.h>
    15. 

  15. #include <linux/skbuff.h>
    16. 

  16. #include <linux/spinlock.h>
    17. 

  17. #include <net/dst.h>
    18. 

  18. #include <net/xfrm.h>
    19. 

  19. 

  20. static int xfrm_state_check_space(struct xfrm_state *x, struct sk_buff *skb)
    21. 

  21. {
    22. 

  22. 	int nhead = x->props.header_len + LL_RESERVED_SPACE(skb->dst->dev)
    23. 

  23. 		- skb_headroom(skb);
    24. 

  24. 

  25. 	if (nhead > 0)
    26. 

  26. 		return pskb_expand_head(skb, nhead, 0, GFP_ATOMIC);
    27. 

  27. 

  28. 	/* Check tail too... */
    29. 

  29. 	return 0;
    30. 

  30. }
    31. 

  31. 

  32. static int xfrm_state_check(struct xfrm_state *x, struct sk_buff *skb)
    33. 

  33. {
    34. 

  34. 	int err = xfrm_state_check_expire(x);
    35. 

  35. 	if (err < 0)
    36. 

  36. 		goto err;
    37. 

  37. 	err = xfrm_state_check_space(x, skb);
    38. 

  38. err:
    39. 

  39. 	return err;
    40. 

  40. }
    41. 

  41. 

  42. int xfrm_output(struct sk_buff *skb)
    43. 

  43. {
    44. 

  44. 	struct dst_entry *dst = skb->dst;
    45. 

  45. 	struct xfrm_state *x = dst->xfrm;
    46. 

  46. 	int err;
    47. 

  47. 

  48. 	if (skb->ip_summed == CHECKSUM_PARTIAL) {
    49. 

  49. 		err = skb_checksum_help(skb);
    50. 

  50. 		if (err)
    51. 

  51. 			goto error_nolock;
    52. 

  52. 	}
    53. 

  53. 

  54. 	do {
    55. 

  55. 		spin_lock_bh(&x->lock);
    56. 

  56. 		err = xfrm_state_check(x, skb);
    57. 

  57. 		if (err)
    58. 

  58. 			goto error;
    59. 

  59. 

  60. 		if (x->type->flags & XFRM_TYPE_REPLAY_PROT) {
    61. 

  61. 			XFRM_SKB_CB(skb)->seq = ++x->replay.oseq;
    62. 

  62. 			if (xfrm_aevent_is_on())
    63. 

  63. 				xfrm_replay_notify(x, XFRM_REPLAY_UPDATE);
    64. 

  64. 		}
    65. 

  65. 

  66. 		err = x->mode->output(x, skb);
    67. 

  67. 		if (err)
    68. 

  68. 			goto error;
    69. 

  69. 

  70. 		x->curlft.bytes += skb->len;
    71. 

  71. 		x->curlft.packets++;
    72. 

  72. 

  73. 		spin_unlock_bh(&x->lock);
    74. 

  74. 

  75. 		err = x->type->output(x, skb);
    76. 

  76. 		if (err)
    77. 

  77. 			goto error_nolock;
    78. 

  78. 

  79. 		if (!(skb->dst = dst_pop(dst))) {
    80. 

  80. 			err = -EHOSTUNREACH;
    81. 

  81. 			goto error_nolock;
    82. 

  82. 		}
    83. 

  83. 		dst = skb->dst;
    84. 

  84. 		x = dst->xfrm;
    85. 

  85. 	} while (x && (x->props.mode != XFRM_MODE_TUNNEL));
    86. 

  86. 

  87. 	err = 0;
    88. 

  88. 

  89. error_nolock:
    90. 

  90. 	return err;
    91. 

  91. error:
    92. 

  92. 	spin_unlock_bh(&x->lock);
    93. 

  93. 	goto error_nolock;
    94. 

  94. }
    95. 

  95. EXPORT_SYMBOL_GPL(xfrm_output);
    96.