← Back to branch summary

~ubuntu-branches/ubuntu/trusty/conntrack/trusty-proposed

« back to all changes in this revision

Viewing changes to src/cache_iterators.c

  • Committer: Bazaar Package Importer
  • Author(s): Alexander Wirt, Max Kellermann
  • Date: 2008-04-14 23:09:22 UTC
  • mfrom: (1.1.1 upstream)
  • Revision ID: james.westby@ubuntu.com-20080414230922-9xoi1gl38tc8lyng
Tags: 1:0.9.6-4
[ Max Kellermann ]
fix compilation on SPARC (printf argument mismatch)

Show diffs side-by-side

added added

removed removed

Lines of Context:
src/cache_iterators.c
 
1
/*
 
2
 * (C) 2006-2007 by Pablo Neira Ayuso <pablo@netfilter.org>
 
3
 * 
 
4
 * This program is free software; you can redistribute it and/or modify
 
5
 * it under the terms of the GNU General Public License as published by
 
6
 * the Free Software Foundation; either version 2 of the License, or
 
7
 * (at your option) any later version.
 
8
 *
 
9
 * This program is distributed in the hope that it will be useful,
 
10
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 
11
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 
12
 * GNU General Public License for more details.
 
13
 *
 
14
 * You should have received a copy of the GNU General Public License
 
15
 * along with this program; if not, write to the Free Software
 
16
 * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
 
17
 */
 
18
 
 
19
#include "cache.h"
 
20
#include "hash.h"
 
21
#include "log.h"
 
22
#include "conntrackd.h"
 
23
#include "netlink.h"
 
24
#include "us-conntrack.h"
 
25
 
 
26
#include <libnetfilter_conntrack/libnetfilter_conntrack.h>
 
27
#include <errno.h>
 
28
#include <string.h>
 
29
 
 
30
struct __dump_container {
 
31
        int fd;
 
32
        int type;
 
33
};
 
34
 
 
35
static int do_dump(void *data1, void *data2)
 
36
{
 
37
        char buf[1024];
 
38
        int size;
 
39
        struct __dump_container *container = data1;
 
40
        struct us_conntrack *u = data2;
 
41
        char *data = u->data;
 
42
        unsigned i;
 
43
 
 
44
        memset(buf, 0, sizeof(buf));
 
45
        size = nfct_snprintf(buf, 
 
46
                             sizeof(buf), 
 
47
                             u->ct, 
 
48
                             NFCT_T_UNKNOWN, 
 
49
                             container->type,
 
50
                             0);
 
51
 
 
52
        for (i = 0; i < u->cache->num_features; i++) {
 
53
                if (u->cache->features[i]->dump) {
 
54
                        size += u->cache->features[i]->dump(u, 
 
55
                                                            data, 
 
56
                                                            buf+size,
 
57
                                                            container->type);
 
58
                        data += u->cache->features[i]->size;
 
59
                }
 
60
        }
 
61
        size += sprintf(buf+size, "\n");
 
62
        if (send(container->fd, buf, size, 0) == -1) {
 
63
                if (errno != EPIPE)
 
64
                        return -1;
 
65
        }
 
66
 
 
67
        return 0;
 
68
}
 
69
 
 
70
void cache_dump(struct cache *c, int fd, int type)
 
71
{
 
72
        struct __dump_container tmp = {
 
73
                .fd     = fd,
 
74
                .type   = type
 
75
        };
 
76
 
 
77
        hashtable_iterate(c->h, (void *) &tmp, do_dump);
 
78
}
 
79
 
 
80
/* no need to clone, called from child process */
 
81
static int do_commit(void *data1, void *data2)
 
82
{
 
83
        int ret;
 
84
        struct cache *c = data1;
 
85
        struct us_conntrack *u = data2;
 
86
        struct nf_conntrack *ct = u->ct;
 
87
 
 
88
        /* 
 
89
         * Set a reduced timeout for candidate-to-be-committed
 
90
         * conntracks that live in the external cache
 
91
         */
 
92
        nfct_set_attr_u32(ct, ATTR_TIMEOUT, CONFIG(commit_timeout));
 
93
 
 
94
        ret = nl_create_conntrack(ct);
 
95
        if (ret == -1) {
 
96
                switch(errno) {
 
97
                        case EEXIST:
 
98
                                c->commit_exist++;
 
99
                                break;
 
100
                        default:
 
101
                                c->commit_fail++;
 
102
                                break;
 
103
                }
 
104
        } else {
 
105
                c->commit_ok++;
 
106
        }
 
107
 
 
108
        /* keep iterating even if we have found errors */
 
109
        return 0;
 
110
}
 
111
 
 
112
void cache_commit(struct cache *c)
 
113
{
 
114
        unsigned int commit_ok = c->commit_ok;
 
115
        unsigned int commit_exist = c->commit_exist;
 
116
        unsigned int commit_fail = c->commit_fail;
 
117
 
 
118
        hashtable_iterate(c->h, c, do_commit);
 
119
 
 
120
        /* calculate new entries committed */
 
121
        commit_ok = c->commit_ok - commit_ok;
 
122
        commit_fail = c->commit_fail - commit_fail;
 
123
        commit_exist = c->commit_exist - commit_exist;
 
124
 
 
125
        /* log results */
 
126
        dlog(LOG_NOTICE, "Committed %u new entries", commit_ok);
 
127
 
 
128
        if (commit_exist)
 
129
                dlog(LOG_NOTICE, "%u entries ignored, "
 
130
                                 "already exist", commit_exist);
 
131
        if (commit_fail)
 
132
                dlog(LOG_NOTICE, "%u entries can't be "
 
133
                                 "committed", commit_fail);
 
134
}
 
135
 
 
136
static int do_flush(void *data1, void *data2)
 
137
{
 
138
        struct cache *c = data1;
 
139
        struct us_conntrack *u = data2;
 
140
 
 
141
        cache_del(c, u->ct);
 
142
 
 
143
        return 0;
 
144
}
 
145
 
 
146
void cache_flush(struct cache *c)
 
147
{
 
148
        hashtable_iterate(c->h, c, do_flush);
 
149
        c->flush++;
 
150
}