netfilter: nat: switch to new rhlist interface

author Florian Westphal <fw@strlen.de>

Wed, 16 Nov 2016 14:13:36 +0000 (15:13 +0100)

committer Pablo Neira Ayuso <pablo@netfilter.org>

Thu, 24 Nov 2016 13:43:34 +0000 (14:43 +0100)
author Florian Westphal <fw@strlen.de>
Wed, 16 Nov 2016 14:13:36 +0000 (15:13 +0100)
committer Pablo Neira Ayuso <pablo@netfilter.org>
Thu, 24 Nov 2016 13:43:34 +0000 (14:43 +0100)
diff --git a/include/net/netfilter/nf_conntrack.h b/include/net/netfilter/nf_conntrack.h

index 50418052a520f396e8ae550160ca81e51ad89857..dc143ada97623cab7d536b52c617f1b1804939ca 100644 (file)
--- a/include/net/netfilter/nf_conntrack.h
+++ b/include/net/netfilter/nf_conntrack.h
@@ -118,7 +118,7 @@ struct nf_conn {
         struct nf_ct_ext *ext;
  
  #if IS_ENABLED(CONFIG_NF_NAT)
-       struct rhash_head       nat_bysource;
+       struct rhlist_head nat_bysource;
  #endif
         /* Storage reserved for other modules, must be the last member */
         union nf_conntrack_proto proto;
diff --git a/net/netfilter/nf_nat_core.c b/net/netfilter/nf_nat_core.c

index c632429706eb88a8ec5c4151cb74add330905466..5b9c884a452e8305e9d3ff0a420887bd7f5e4dd2 100644 (file)
--- a/net/netfilter/nf_nat_core.c
+++ b/net/netfilter/nf_nat_core.c
@@ -42,7 +42,7 @@ struct nf_nat_conn_key {
         const struct nf_conntrack_zone *zone;
  };
  
-static struct rhashtable nf_nat_bysource_table;
+static struct rhltable nf_nat_bysource_table;
  
  inline const struct nf_nat_l3proto *
  __nf_nat_l3proto_find(u8 family)
@@ -207,7 +207,6 @@ static struct rhashtable_params nf_nat_bysource_params = {
         .obj_cmpfn = nf_nat_bysource_cmp,
         .nelem_hint = 256,
         .min_size = 1024,
-       .nulls_base = (1U << RHT_BASE_SHIFT),
  };
  
  /* Only called for SRC manip */
@@ -226,12 +225,15 @@ find_appropriate_src(struct net *net,
                 .tuple = tuple,
                 .zone = zone
         };
+       struct rhlist_head *hl;
  
-       ct = rhashtable_lookup_fast(&nf_nat_bysource_table, &key,
-                                   nf_nat_bysource_params);
-       if (!ct)
+       hl = rhltable_lookup(&nf_nat_bysource_table, &key,
+                            nf_nat_bysource_params);
+       if (!hl)
                 return 0;
  
+       ct = container_of(hl, typeof(*ct), nat_bysource);
+
         nf_ct_invert_tuplepr(result,
                              &ct->tuplehash[IP_CT_DIR_REPLY].tuple);
         result->dst = tuple->dst;
@@ -449,11 +451,17 @@ nf_nat_setup_info(struct nf_conn *ct,
         }
  
         if (maniptype == NF_NAT_MANIP_SRC) {
+               struct nf_nat_conn_key key = {
+                       .net = nf_ct_net(ct),
+                       .tuple = &ct->tuplehash[IP_CT_DIR_ORIGINAL].tuple,
+                       .zone = nf_ct_zone(ct),
+               };
                 int err;
  
-               err = rhashtable_insert_fast(&nf_nat_bysource_table,
-                                            &ct->nat_bysource,
-                                            nf_nat_bysource_params);
+               err = rhltable_insert_key(&nf_nat_bysource_table,
+                                         &key,
+                                         &ct->nat_bysource,
+                                         nf_nat_bysource_params);
                 if (err)
                         return NF_DROP;
         }
@@ -570,8 +578,8 @@ static int nf_nat_proto_clean(struct nf_conn *ct, void *data)
          * will delete entry from already-freed table.
          */
         ct->status &= ~IPS_NAT_DONE_MASK;
-       rhashtable_remove_fast(&nf_nat_bysource_table, &ct->nat_bysource,
-                              nf_nat_bysource_params);
+       rhltable_remove(&nf_nat_bysource_table, &ct->nat_bysource,
+                       nf_nat_bysource_params);
  
         /* don't delete conntrack.  Although that would make things a lot
          * simpler, we'd end up flushing all conntracks on nat rmmod.
@@ -701,8 +709,8 @@ static void nf_nat_cleanup_conntrack(struct nf_conn *ct)
         if (!nat)
                 return;
  
-       rhashtable_remove_fast(&nf_nat_bysource_table, &ct->nat_bysource,
-                              nf_nat_bysource_params);
+       rhltable_remove(&nf_nat_bysource_table, &ct->nat_bysource,
+                       nf_nat_bysource_params);
  }
  
  static struct nf_ct_ext_type nat_extend __read_mostly = {
@@ -837,13 +845,13 @@ static int __init nf_nat_init(void)
  {
         int ret;
  
-       ret = rhashtable_init(&nf_nat_bysource_table, &nf_nat_bysource_params);
+       ret = rhltable_init(&nf_nat_bysource_table, &nf_nat_bysource_params);
         if (ret)
                 return ret;
  
         ret = nf_ct_extend_register(&nat_extend);
         if (ret < 0) {
-               rhashtable_destroy(&nf_nat_bysource_table);
+               rhltable_destroy(&nf_nat_bysource_table);
                 printk(KERN_ERR "nf_nat_core: Unable to register extension\n");
                 return ret;
         }
@@ -867,7 +875,7 @@ static int __init nf_nat_init(void)
         return 0;
  
   cleanup_extend:
-       rhashtable_destroy(&nf_nat_bysource_table);
+       rhltable_destroy(&nf_nat_bysource_table);
         nf_ct_extend_unregister(&nat_extend);
         return ret;
  }
@@ -886,7 +894,7 @@ static void __exit nf_nat_cleanup(void)
         for (i = 0; i < NFPROTO_NUMPROTO; i++)
                 kfree(nf_nat_l4protos[i]);
  
-       rhashtable_destroy(&nf_nat_bysource_table);
+       rhltable_destroy(&nf_nat_bysource_table);
  }
  
  MODULE_LICENSE("GPL");
author	Florian Westphal <fw@strlen.de>
	Wed, 16 Nov 2016 14:13:36 +0000 (15:13 +0100)
committer	Pablo Neira Ayuso <pablo@netfilter.org>
	Thu, 24 Nov 2016 13:43:34 +0000 (14:43 +0100)
include/net/netfilter/nf_conntrack.h		patch \| blob \| blame \| history
net/netfilter/nf_nat_core.c		patch \| blob \| blame \| history