]>
Commit | Line | Data |
---|---|---|
d62ddc21 AD |
1 | #ifndef __NETNS_XFRM_H |
2 | #define __NETNS_XFRM_H | |
3 | ||
9d4139c7 | 4 | #include <linux/list.h> |
50a30657 | 5 | #include <linux/wait.h> |
63082733 | 6 | #include <linux/workqueue.h> |
8b18f8ea | 7 | #include <linux/xfrm.h> |
d7c7544c | 8 | #include <net/dst_ops.h> |
ca925cf1 | 9 | #include <net/flowcache.h> |
9d4139c7 | 10 | |
b27aeadb AD |
11 | struct ctl_table_header; |
12 | ||
a35f6c5d AD |
13 | struct xfrm_policy_hash { |
14 | struct hlist_head *table; | |
15 | unsigned int hmask; | |
b58555f1 CG |
16 | u8 dbits4; |
17 | u8 sbits4; | |
18 | u8 dbits6; | |
19 | u8 sbits6; | |
a35f6c5d AD |
20 | }; |
21 | ||
880a6fab CG |
22 | struct xfrm_policy_hthresh { |
23 | struct work_struct work; | |
24 | seqlock_t lock; | |
25 | u8 lbits4; | |
26 | u8 rbits4; | |
27 | u8 lbits6; | |
28 | u8 rbits6; | |
29 | }; | |
30 | ||
d62ddc21 | 31 | struct netns_xfrm { |
9d4139c7 | 32 | struct list_head state_all; |
73d189dc AD |
33 | /* |
34 | * Hash table to find appropriate SA towards given target (endpoint of | |
35 | * tunnel or destination of transport mode) allowed by selector. | |
36 | * | |
37 | * Main use is finding SA after policy selected tunnel or transport | |
38 | * mode. Also, it can be used by ah/esp icmp error handler to find | |
39 | * offending SA. | |
40 | */ | |
41 | struct hlist_head *state_bydst; | |
d320bbb3 | 42 | struct hlist_head *state_bysrc; |
b754a4fd | 43 | struct hlist_head *state_byspi; |
529983ec | 44 | unsigned int state_hmask; |
0bf7c5b0 | 45 | unsigned int state_num; |
63082733 | 46 | struct work_struct state_hash_work; |
b8a0ae20 | 47 | struct hlist_head state_gc_list; |
c7837144 | 48 | struct work_struct state_gc_work; |
50a30657 | 49 | |
adfcf0b2 | 50 | struct list_head policy_all; |
93b851c1 | 51 | struct hlist_head *policy_byidx; |
8100bea7 | 52 | unsigned int policy_idx_hmask; |
8b18f8ea | 53 | struct hlist_head policy_inexact[XFRM_POLICY_MAX * 2]; |
a35f6c5d | 54 | struct xfrm_policy_hash policy_bydst[XFRM_POLICY_MAX * 2]; |
dc2caba7 | 55 | unsigned int policy_count[XFRM_POLICY_MAX * 2]; |
66caf628 | 56 | struct work_struct policy_hash_work; |
880a6fab | 57 | struct xfrm_policy_hthresh policy_hthresh; |
a6483b79 | 58 | |
d7c7544c | 59 | |
a6483b79 | 60 | struct sock *nlsk; |
d79d792e | 61 | struct sock *nlsk_stash; |
b27aeadb AD |
62 | |
63 | u32 sysctl_aevent_etime; | |
64 | u32 sysctl_aevent_rseqth; | |
65 | int sysctl_larval_drop; | |
66 | u32 sysctl_acq_expires; | |
67 | #ifdef CONFIG_SYSCTL | |
68 | struct ctl_table_header *sysctl_hdr; | |
69 | #endif | |
8e602ce2 ED |
70 | |
71 | struct dst_ops xfrm4_dst_ops; | |
dfd56b8b | 72 | #if IS_ENABLED(CONFIG_IPV6) |
8e602ce2 ED |
73 | struct dst_ops xfrm6_dst_ops; |
74 | #endif | |
283bc9f3 | 75 | spinlock_t xfrm_state_lock; |
283bc9f3 FD |
76 | rwlock_t xfrm_policy_lock; |
77 | struct mutex xfrm_cfg_mutex; | |
ca925cf1 FD |
78 | |
79 | /* flow cache part */ | |
80 | struct flow_cache flow_cache_global; | |
ca925cf1 FD |
81 | atomic_t flow_cache_genid; |
82 | struct list_head flow_cache_gc_list; | |
83 | spinlock_t flow_cache_gc_lock; | |
84 | struct work_struct flow_cache_gc_work; | |
85 | struct work_struct flow_cache_flush_work; | |
86 | struct mutex flow_flush_sem; | |
d62ddc21 AD |
87 | }; |
88 | ||
89 | #endif |