Eric Lee / smarc-fsl-linux-kernel

Blame view

net/netfilter/xt_quota.c 1.9 KB

62b774348 Patrick McHardy [NETFILTER]: x_ta...	1 2 3 4 5 6	/* * netfilter module to enforce network quotas * * Sam Johnston <samj@samj.net> */ #include <linux/skbuff.h>
5a0e3ad6a Tejun Heo include cleanup: ...	7	#include <linux/slab.h>
62b774348 Patrick McHardy [NETFILTER]: x_ta...	8 9 10 11	#include <linux/spinlock.h> #include <linux/netfilter/x_tables.h> #include <linux/netfilter/xt_quota.h>
3a9a231d9 Paul Gortmaker net: Fix files ex...	12	#include <linux/module.h>
62b774348 Patrick McHardy [NETFILTER]: x_ta...	13
acc738fec Jan Engelhardt netfilter: xtable...	14	struct xt_quota_priv {
b0c81aa56 Changli Gao netfilter: xt_quo...	15 16	spinlock_t lock; uint64_t quota;
acc738fec Jan Engelhardt netfilter: xtable...	17	};
62b774348 Patrick McHardy [NETFILTER]: x_ta...	18 19	MODULE_LICENSE("GPL"); MODULE_AUTHOR("Sam Johnston <samj@samj.net>");
2ae15b64e Jan Engelhardt [NETFILTER]: Upda...	20	MODULE_DESCRIPTION("Xtables: countdown quota match");
b22b9004f Patrick McHardy [NETFILTER]: xt_q...	21 22	MODULE_ALIAS("ipt_quota"); MODULE_ALIAS("ip6t_quota");
62b774348 Patrick McHardy [NETFILTER]: x_ta...	23
1d93a9cba Jan Engelhardt [NETFILTER]: x_ta...	24	static bool
62fc80510 Jan Engelhardt netfilter: xtable...	25	quota_mt(const struct sk_buff skb, struct xt_action_param par)
62b774348 Patrick McHardy [NETFILTER]: x_ta...	26	{
acc738fec Jan Engelhardt netfilter: xtable...	27 28	struct xt_quota_info q = (void )par->matchinfo; struct xt_quota_priv *priv = q->master;
1d93a9cba Jan Engelhardt [NETFILTER]: x_ta...	29	bool ret = q->flags & XT_QUOTA_INVERT;
62b774348 Patrick McHardy [NETFILTER]: x_ta...	30
b0c81aa56 Changli Gao netfilter: xt_quo...	31	spin_lock_bh(&priv->lock);
acc738fec Jan Engelhardt netfilter: xtable...	32 33	if (priv->quota >= skb->len) { priv->quota -= skb->len;
1d93a9cba Jan Engelhardt [NETFILTER]: x_ta...	34	ret = !ret;
62b774348 Patrick McHardy [NETFILTER]: x_ta...	35	} else {
601e68e10 YOSHIFUJI Hideaki [NETFILTER]: Fix ...	36	/* we do not allow even small packets from now on */
acc738fec Jan Engelhardt netfilter: xtable...	37	priv->quota = 0;
62b774348 Patrick McHardy [NETFILTER]: x_ta...	38	}
b0c81aa56 Changli Gao netfilter: xt_quo...	39	spin_unlock_bh(&priv->lock);
62b774348 Patrick McHardy [NETFILTER]: x_ta...	40 41 42	return ret; }
b0f38452f Jan Engelhardt netfilter: xtable...	43	static int quota_mt_check(const struct xt_mtchk_param *par)
62b774348 Patrick McHardy [NETFILTER]: x_ta...	44	{
9b4fce7a3 Jan Engelhardt netfilter: xtable...	45	struct xt_quota_info *q = par->matchinfo;
62b774348 Patrick McHardy [NETFILTER]: x_ta...	46 47	if (q->flags & ~XT_QUOTA_MASK)
bd414ee60 Jan Engelhardt netfilter: xtable...	48	return -EINVAL;
acc738fec Jan Engelhardt netfilter: xtable...	49 50 51	q->master = kmalloc(sizeof(*q->master), GFP_KERNEL); if (q->master == NULL)
4a5a5c73b Jan Engelhardt netfilter: xtable...	52	return -ENOMEM;
acc738fec Jan Engelhardt netfilter: xtable...	53
b0c81aa56 Changli Gao netfilter: xt_quo...	54	spin_lock_init(&q->master->lock);
6d62182fe Jan Engelhardt netfilter: xt_quo...	55	q->master->quota = q->quota;
bd414ee60 Jan Engelhardt netfilter: xtable...	56	return 0;
62b774348 Patrick McHardy [NETFILTER]: x_ta...	57	}
acc738fec Jan Engelhardt netfilter: xtable...	58 59 60 61 62 63	static void quota_mt_destroy(const struct xt_mtdtor_param par) { const struct xt_quota_info q = par->matchinfo; kfree(q->master); }
55b69e910 Jan Engelhardt netfilter: implem...	64 65 66 67 68 69	static struct xt_match quota_mt_reg __read_mostly = { .name = "quota", .revision = 0, .family = NFPROTO_UNSPEC, .match = quota_mt, .checkentry = quota_mt_check,
acc738fec Jan Engelhardt netfilter: xtable...	70	.destroy = quota_mt_destroy,
55b69e910 Jan Engelhardt netfilter: implem...	71 72	.matchsize = sizeof(struct xt_quota_info), .me = THIS_MODULE,
62b774348 Patrick McHardy [NETFILTER]: x_ta...	73	};
d3c5ee6d5 Jan Engelhardt [NETFILTER]: x_ta...	74	static int __init quota_mt_init(void)
62b774348 Patrick McHardy [NETFILTER]: x_ta...	75	{
55b69e910 Jan Engelhardt netfilter: implem...	76	return xt_register_match(&quota_mt_reg);
62b774348 Patrick McHardy [NETFILTER]: x_ta...	77	}
d3c5ee6d5 Jan Engelhardt [NETFILTER]: x_ta...	78	static void __exit quota_mt_exit(void)
62b774348 Patrick McHardy [NETFILTER]: x_ta...	79	{
55b69e910 Jan Engelhardt netfilter: implem...	80	xt_unregister_match(&quota_mt_reg);
62b774348 Patrick McHardy [NETFILTER]: x_ta...	81	}
d3c5ee6d5 Jan Engelhardt [NETFILTER]: x_ta...	82 83	module_init(quota_mt_init); module_exit(quota_mt_exit);