Home
last modified time | relevance | path

Searched refs:ipvs (Results 1 – 25 of 25) sorted by relevance

/linux-6.6.21/net/netfilter/ipvs/
Dip_vs_est.c75 static void ip_vs_est_calc_phase(struct netns_ipvs *ipvs);
76 static void ip_vs_est_drain_temp_list(struct netns_ipvs *ipvs);
172 struct netns_ipvs *ipvs = kd->ipvs; in ip_vs_estimation_kthread() local
179 if (!ipvs->est_chain_max) in ip_vs_estimation_kthread()
182 if (!ipvs->est_chain_max) { in ip_vs_estimation_kthread()
183 ipvs->est_calc_phase = 1; in ip_vs_estimation_kthread()
189 if (ipvs->est_calc_phase) in ip_vs_estimation_kthread()
190 ip_vs_est_calc_phase(ipvs); in ip_vs_estimation_kthread()
194 if (!id && !hlist_empty(&ipvs->est_temp_list)) in ip_vs_estimation_kthread()
195 ip_vs_est_drain_temp_list(ipvs); in ip_vs_estimation_kthread()
[all …]
Dip_vs_ctl.c93 static void update_defense_level(struct netns_ipvs *ipvs) in update_defense_level() argument
108 nomem = (availmem < ipvs->sysctl_amemthresh); in update_defense_level()
113 spin_lock(&ipvs->dropentry_lock); in update_defense_level()
114 switch (ipvs->sysctl_drop_entry) { in update_defense_level()
116 atomic_set(&ipvs->dropentry, 0); in update_defense_level()
120 atomic_set(&ipvs->dropentry, 1); in update_defense_level()
121 ipvs->sysctl_drop_entry = 2; in update_defense_level()
123 atomic_set(&ipvs->dropentry, 0); in update_defense_level()
128 atomic_set(&ipvs->dropentry, 1); in update_defense_level()
130 atomic_set(&ipvs->dropentry, 0); in update_defense_level()
[all …]
Dip_vs_sync.c199 struct netns_ipvs *ipvs; member
304 sb_dequeue(struct netns_ipvs *ipvs, struct ipvs_master_sync_state *ms) in sb_dequeue() argument
308 spin_lock_bh(&ipvs->sync_lock); in sb_dequeue()
320 spin_unlock_bh(&ipvs->sync_lock); in sb_dequeue()
329 ip_vs_sync_buff_create(struct netns_ipvs *ipvs, unsigned int len) in ip_vs_sync_buff_create() argument
337 ipvs->mcfg.sync_maxlen); in ip_vs_sync_buff_create()
345 sb->mesg->syncid = ipvs->mcfg.syncid; in ip_vs_sync_buff_create()
362 static inline void sb_queue_tail(struct netns_ipvs *ipvs, in sb_queue_tail() argument
367 spin_lock(&ipvs->sync_lock); in sb_queue_tail()
368 if (ipvs->sync_state & IP_VS_STATE_MASTER && in sb_queue_tail()
[all …]
Dip_vs_core.c125 struct netns_ipvs *ipvs = cp->ipvs; in ip_vs_in_stats() local
146 s = this_cpu_ptr(ipvs->tot_stats->s.cpustats); in ip_vs_in_stats()
161 struct netns_ipvs *ipvs = cp->ipvs; in ip_vs_out_stats() local
182 s = this_cpu_ptr(ipvs->tot_stats->s.cpustats); in ip_vs_out_stats()
196 struct netns_ipvs *ipvs = svc->ipvs; in ip_vs_conn_stats() local
211 s = this_cpu_ptr(ipvs->tot_stats->s.cpustats); in ip_vs_conn_stats()
236 ip_vs_conn_fill_param(svc->ipvs, svc->af, protocol, caddr, cport, vaddr, in ip_vs_conn_fill_param_persist()
397 ip_vs_conn_fill_param(svc->ipvs, svc->af, iph->protocol, src_addr, in ip_vs_sched_persist()
491 ip_vs_conn_in_get_proto, svc->ipvs, in ip_vs_schedule()
547 ip_vs_conn_fill_param(svc->ipvs, svc->af, iph->protocol, in ip_vs_schedule()
[all …]
Dip_vs_conn.c106 static unsigned int ip_vs_conn_hashkey(struct netns_ipvs *ipvs, int af, unsigned int proto, in ip_vs_conn_hashkey() argument
114 ((size_t)ipvs>>8)) & ip_vs_conn_tab_mask; in ip_vs_conn_hashkey()
118 ((size_t)ipvs>>8)) & ip_vs_conn_tab_mask; in ip_vs_conn_hashkey()
139 return ip_vs_conn_hashkey(p->ipvs, p->af, p->protocol, addr, port); in ip_vs_conn_hashkey_param()
146 ip_vs_conn_fill_param(cp->ipvs, cp->af, cp->protocol, in ip_vs_conn_hashkey_conn()
278 cp->ipvs == p->ipvs) { in __ip_vs_conn_in_get()
313 ip_vs_conn_fill_param_proto(struct netns_ipvs *ipvs, in ip_vs_conn_fill_param_proto() argument
325 ip_vs_conn_fill_param(ipvs, af, iph->protocol, &iph->saddr, in ip_vs_conn_fill_param_proto()
328 ip_vs_conn_fill_param(ipvs, af, iph->protocol, &iph->daddr, in ip_vs_conn_fill_param_proto()
334 ip_vs_conn_in_get_proto(struct netns_ipvs *ipvs, int af, in ip_vs_conn_in_get_proto() argument
[all …]
Dip_vs_proto.c66 register_ip_vs_proto_netns(struct netns_ipvs *ipvs, struct ip_vs_protocol *pp) in register_ip_vs_proto_netns() argument
76 pd->next = ipvs->proto_data_table[hash]; in register_ip_vs_proto_netns()
77 ipvs->proto_data_table[hash] = pd; in register_ip_vs_proto_netns()
81 int ret = pp->init_netns(ipvs, pd); in register_ip_vs_proto_netns()
84 ipvs->proto_data_table[hash] = pd->next; in register_ip_vs_proto_netns()
118 unregister_ip_vs_proto_netns(struct netns_ipvs *ipvs, struct ip_vs_proto_data *pd) in unregister_ip_vs_proto_netns() argument
123 pd_p = &ipvs->proto_data_table[hash]; in unregister_ip_vs_proto_netns()
128 pd->pp->exit_netns(ipvs, pd); in unregister_ip_vs_proto_netns()
158 ip_vs_proto_data_get(struct netns_ipvs *ipvs, unsigned short proto) in ip_vs_proto_data_get() argument
163 for (pd = ipvs->proto_data_table[hash]; pd; pd = pd->next) { in ip_vs_proto_data_get()
[all …]
Dip_vs_app.c73 ip_vs_app_inc_new(struct netns_ipvs *ipvs, struct ip_vs_app *app, __u16 proto, in ip_vs_app_inc_new() argument
105 ret = pp->register_app(ipvs, inc); in ip_vs_app_inc_new()
125 ip_vs_app_inc_release(struct netns_ipvs *ipvs, struct ip_vs_app *inc) in ip_vs_app_inc_release() argument
133 pp->unregister_app(ipvs, inc); in ip_vs_app_inc_release()
173 register_ip_vs_app_inc(struct netns_ipvs *ipvs, struct ip_vs_app *app, __u16 proto, in register_ip_vs_app_inc() argument
180 result = ip_vs_app_inc_new(ipvs, app, proto, port); in register_ip_vs_app_inc()
189 struct ip_vs_app *register_ip_vs_app(struct netns_ipvs *ipvs, struct ip_vs_app *app) in register_ip_vs_app() argument
202 list_for_each_entry(a, &ipvs->app_list, a_list) { in register_ip_vs_app()
218 list_add(&a->a_list, &ipvs->app_list); in register_ip_vs_app()
232 void unregister_ip_vs_app(struct netns_ipvs *ipvs, struct ip_vs_app *app) in unregister_ip_vs_app() argument
[all …]
Dip_vs_proto_ah_esp.c40 ah_esp_conn_fill_param_proto(struct netns_ipvs *ipvs, int af, in ah_esp_conn_fill_param_proto() argument
45 ip_vs_conn_fill_param(ipvs, af, IPPROTO_UDP, in ah_esp_conn_fill_param_proto()
49 ip_vs_conn_fill_param(ipvs, af, IPPROTO_UDP, in ah_esp_conn_fill_param_proto()
55 ah_esp_conn_in_get(struct netns_ipvs *ipvs, int af, const struct sk_buff *skb, in ah_esp_conn_in_get() argument
61 ah_esp_conn_fill_param_proto(ipvs, af, iph, &p); in ah_esp_conn_in_get()
81 ah_esp_conn_out_get(struct netns_ipvs *ipvs, int af, const struct sk_buff *skb, in ah_esp_conn_out_get() argument
87 ah_esp_conn_fill_param_proto(ipvs, af, iph, &p); in ah_esp_conn_out_get()
103 ah_esp_conn_schedule(struct netns_ipvs *ipvs, int af, struct sk_buff *skb, in ah_esp_conn_schedule() argument
Dip_vs_lblc.c250 return svc->ipvs->sysctl_lblc_expiration; in sysctl_lblc_expiration()
552 struct netns_ipvs *ipvs = net_ipvs(net); in __ip_vs_lblc_init() local
555 if (!ipvs) in __ip_vs_lblc_init()
559 ipvs->lblc_ctl_table = kmemdup(vs_vars_table, in __ip_vs_lblc_init()
562 if (ipvs->lblc_ctl_table == NULL) in __ip_vs_lblc_init()
567 ipvs->lblc_ctl_table[0].procname = NULL; in __ip_vs_lblc_init()
572 ipvs->lblc_ctl_table = vs_vars_table; in __ip_vs_lblc_init()
573 ipvs->sysctl_lblc_expiration = DEFAULT_EXPIRATION; in __ip_vs_lblc_init()
574 ipvs->lblc_ctl_table[0].data = &ipvs->sysctl_lblc_expiration; in __ip_vs_lblc_init()
576 ipvs->lblc_ctl_header = register_net_sysctl_sz(net, "net/ipv4/vs", in __ip_vs_lblc_init()
[all …]
Dip_vs_proto_udp.c31 udp_conn_schedule(struct netns_ipvs *ipvs, int af, struct sk_buff *skb, in udp_conn_schedule() argument
56 svc = ip_vs_service_find(ipvs, af, skb->mark, iph->protocol, in udp_conn_schedule()
59 svc = ip_vs_service_find(ipvs, af, skb->mark, iph->protocol, in udp_conn_schedule()
65 if (ip_vs_todrop(ipvs)) { in udp_conn_schedule()
361 static int udp_register_app(struct netns_ipvs *ipvs, struct ip_vs_app *inc) in udp_register_app() argument
367 struct ip_vs_proto_data *pd = ip_vs_proto_data_get(ipvs, IPPROTO_UDP); in udp_register_app()
371 list_for_each_entry(i, &ipvs->udp_apps[hash], p_list) { in udp_register_app()
377 list_add_rcu(&inc->p_list, &ipvs->udp_apps[hash]); in udp_register_app()
386 udp_unregister_app(struct netns_ipvs *ipvs, struct ip_vs_app *inc) in udp_unregister_app() argument
388 struct ip_vs_proto_data *pd = ip_vs_proto_data_get(ipvs, IPPROTO_UDP); in udp_unregister_app()
[all …]
Dip_vs_lblcr.c415 return svc->ipvs->sysctl_lblcr_expiration; in sysctl_lblcr_expiration()
738 struct netns_ipvs *ipvs = net_ipvs(net); in __ip_vs_lblcr_init() local
741 if (!ipvs) in __ip_vs_lblcr_init()
745 ipvs->lblcr_ctl_table = kmemdup(vs_vars_table, in __ip_vs_lblcr_init()
748 if (ipvs->lblcr_ctl_table == NULL) in __ip_vs_lblcr_init()
753 ipvs->lblcr_ctl_table[0].procname = NULL; in __ip_vs_lblcr_init()
757 ipvs->lblcr_ctl_table = vs_vars_table; in __ip_vs_lblcr_init()
758 ipvs->sysctl_lblcr_expiration = DEFAULT_EXPIRATION; in __ip_vs_lblcr_init()
759 ipvs->lblcr_ctl_table[0].data = &ipvs->sysctl_lblcr_expiration; in __ip_vs_lblcr_init()
761 ipvs->lblcr_ctl_header = register_net_sysctl_sz(net, "net/ipv4/vs", in __ip_vs_lblcr_init()
[all …]
Dip_vs_proto_sctp.c16 sctp_conn_schedule(struct netns_ipvs *ipvs, int af, struct sk_buff *skb, in sctp_conn_schedule() argument
33 !(sysctl_sloppy_sctp(ipvs) || in sctp_conn_schedule()
50 svc = ip_vs_service_find(ipvs, af, skb->mark, iph->protocol, in sctp_conn_schedule()
53 svc = ip_vs_service_find(ipvs, af, skb->mark, iph->protocol, in sctp_conn_schedule()
58 if (ip_vs_todrop(ipvs)) { in sctp_conn_schedule()
488 static int sctp_register_app(struct netns_ipvs *ipvs, struct ip_vs_app *inc) in sctp_register_app() argument
494 struct ip_vs_proto_data *pd = ip_vs_proto_data_get(ipvs, IPPROTO_SCTP); in sctp_register_app()
498 list_for_each_entry(i, &ipvs->sctp_apps[hash], p_list) { in sctp_register_app()
504 list_add_rcu(&inc->p_list, &ipvs->sctp_apps[hash]); in sctp_register_app()
511 static void sctp_unregister_app(struct netns_ipvs *ipvs, struct ip_vs_app *inc) in sctp_unregister_app() argument
[all …]
Dip_vs_proto_tcp.c35 tcp_conn_schedule(struct netns_ipvs *ipvs, int af, struct sk_buff *skb, in tcp_conn_schedule() argument
51 if (th->rst || !(sysctl_sloppy_tcp(ipvs) || th->syn)) in tcp_conn_schedule()
68 svc = ip_vs_service_find(ipvs, af, skb->mark, iph->protocol, in tcp_conn_schedule()
71 svc = ip_vs_service_find(ipvs, af, skb->mark, iph->protocol, in tcp_conn_schedule()
77 if (ip_vs_todrop(ipvs)) { in tcp_conn_schedule()
616 static int tcp_register_app(struct netns_ipvs *ipvs, struct ip_vs_app *inc) in tcp_register_app() argument
622 struct ip_vs_proto_data *pd = ip_vs_proto_data_get(ipvs, IPPROTO_TCP); in tcp_register_app()
626 list_for_each_entry(i, &ipvs->tcp_apps[hash], p_list) { in tcp_register_app()
632 list_add_rcu(&inc->p_list, &ipvs->tcp_apps[hash]); in tcp_register_app()
641 tcp_unregister_app(struct netns_ipvs *ipvs, struct ip_vs_app *inc) in tcp_unregister_app() argument
[all …]
Dip_vs_ftp.c320 ip_vs_conn_fill_param(cp->ipvs, cp->af, in ip_vs_ftp_out()
328 ip_vs_conn_fill_param(cp->ipvs, in ip_vs_ftp_out()
531 ip_vs_conn_fill_param(cp->ipvs, cp->af, in ip_vs_ftp_in()
579 struct netns_ipvs *ipvs = net_ipvs(net); in __ip_vs_ftp_init() local
581 if (!ipvs) in __ip_vs_ftp_init()
584 app = register_ip_vs_app(ipvs, &ip_vs_ftp); in __ip_vs_ftp_init()
591 ret = register_ip_vs_app_inc(ipvs, app, app->protocol, ports[i]); in __ip_vs_ftp_init()
598 unregister_ip_vs_app(ipvs, &ip_vs_ftp); in __ip_vs_ftp_init()
606 struct netns_ipvs *ipvs = net_ipvs(net); in __ip_vs_ftp_exit() local
608 if (!ipvs) in __ip_vs_ftp_exit()
[all …]
Dip_vs_xmit.c214 static inline bool ensure_mtu_is_adequate(struct netns_ipvs *ipvs, int skb_af, in ensure_mtu_is_adequate() argument
221 struct net *net = ipvs->net; in ensure_mtu_is_adequate()
239 if ((rt_mode & IP_VS_RT_MODE_TUNNEL) && !sysctl_pmtu_disc(ipvs)) in ensure_mtu_is_adequate()
256 static inline bool decrement_ttl(struct netns_ipvs *ipvs, in decrement_ttl() argument
260 struct net *net = ipvs->net; in decrement_ttl()
307 __ip_vs_get_out_rt(struct netns_ipvs *ipvs, int skb_af, struct sk_buff *skb, in __ip_vs_get_out_rt() argument
312 struct net *net = ipvs->net; in __ip_vs_get_out_rt()
377 if (!decrement_ttl(ipvs, skb_af, skb)) in __ip_vs_get_out_rt()
406 if (!ensure_mtu_is_adequate(ipvs, skb_af, rt_mode, ipvsh, skb, mtu)) in __ip_vs_get_out_rt()
469 __ip_vs_get_out_rt_v6(struct netns_ipvs *ipvs, int skb_af, struct sk_buff *skb, in __ip_vs_get_out_rt_v6() argument
[all …]
Dip_vs_nfct.c262 h = nf_conntrack_find_get(cp->ipvs->net, &nf_ct_zone_dflt, &tuple); in ip_vs_conn_drop_conntrack()
/linux-6.6.21/include/net/
Dip_vs.h40 return net->ipvs; in net_ipvs()
453 struct netns_ipvs *ipvs; member
487 int (*init_netns)(struct netns_ipvs *ipvs, struct ip_vs_proto_data *pd);
489 void (*exit_netns)(struct netns_ipvs *ipvs, struct ip_vs_proto_data *pd);
491 int (*conn_schedule)(struct netns_ipvs *ipvs,
498 (*conn_in_get)(struct netns_ipvs *ipvs,
504 (*conn_out_get)(struct netns_ipvs *ipvs,
521 int (*register_app)(struct netns_ipvs *ipvs, struct ip_vs_app *inc);
523 void (*unregister_app)(struct netns_ipvs *ipvs, struct ip_vs_app *inc);
545 struct ip_vs_proto_data *ip_vs_proto_data_get(struct netns_ipvs *ipvs,
[all …]
Dnet_namespace.h172 struct netns_ipvs *ipvs; member
/linux-6.6.21/net/netfilter/
Dxt_ipvs.c52 struct netns_ipvs *ipvs = net_ipvs(xt_net(par)); in ipvs_mt() local
90 cp = pp->conn_out_get(ipvs, family, skb, &iph); in ipvs_mt()
DMakefile234 obj-$(CONFIG_IP_VS) += ipvs/
DKconfig1387 tristate '"ipvs" match support'
1668 source "net/netfilter/ipvs/Kconfig"
/linux-6.6.21/tools/testing/selftests/netfilter/
DMakefile5 conntrack_icmp_related.sh nft_flowtable.sh ipvs.sh \
/linux-6.6.21/Documentation/networking/
Dipvs-sysctl.rst35 Controls how ipvs will deal with connections that are detected
190 If set, ipvs will set the ipvs_property on all packets which are of
193 packets that have been tunneled to the ipvs host (i.e. to prevent
194 ipvs routing loops when ipvs is also acting as a real server).
Dindex.rst68 ipvs-sysctl
/linux-6.6.21/
DMAINTAINERS11045 T: git git://git.kernel.org/pub/scm/linux/kernel/git/horms/ipvs-next.git
11046 T: git git://git.kernel.org/pub/scm/linux/kernel/git/horms/ipvs.git
11047 F: Documentation/networking/ipvs-sysctl.rst
11050 F: net/netfilter/ipvs/