ipv4, fib: pass LOOPBACK_IFINDEX instead of 0 to flowi4_iif

author Cong Wang <cwang@twopensource.com>

Tue, 15 Apr 2014 23:25:34 +0000 (16:25 -0700)

committer Lorenzo Colitti <lorenzo@google.com>

Tue, 3 Mar 2015 03:47:11 +0000 (12:47 +0900)
author Cong Wang <cwang@twopensource.com>
Tue, 15 Apr 2014 23:25:34 +0000 (16:25 -0700)
committer Lorenzo Colitti <lorenzo@google.com>
Tue, 3 Mar 2015 03:47:11 +0000 (12:47 +0900)
diff --git a/include/net/flow.h b/include/net/flow.h

index c91e2aae3fb125c1ec704ebacd5f19cac02bdc3d..1426681f7cf38691ff268ebdd92e4b226fc8cb44 100644 (file)
--- a/include/net/flow.h
+++ b/include/net/flow.h
@@ -12,6 +12,14 @@
  #include <linux/atomic.h>
  #include <linux/uidgid.h>
  
+/*
+ * ifindex generation is per-net namespace, and loopback is
+ * always the 1st device in ns (see net_dev_init), thus any
+ * loopback device should get ifindex 1
+ */
+
+#define LOOPBACK_IFINDEX       1
+
  struct flowi_common {
         int     flowic_oif;
         int     flowic_iif;
@@ -85,7 +93,7 @@ static inline void flowi4_init_output(struct flowi4 *fl4, int oif,
                                       kuid_t uid)
  {
         fl4->flowi4_oif = oif;
-       fl4->flowi4_iif = 0;
+       fl4->flowi4_iif = LOOPBACK_IFINDEX;
         fl4->flowi4_mark = mark;
         fl4->flowi4_tos = tos;
         fl4->flowi4_scope = scope;
diff --git a/include/net/net_namespace.h b/include/net/net_namespace.h

index b176978274828206b784e7003e04c871bef582a3..b064d6dd14fba44ef4c8d48bc911bb231a671368 100644 (file)
--- a/include/net/net_namespace.h
+++ b/include/net/net_namespace.h
@@ -9,6 +9,7 @@
  #include <linux/list.h>
  #include <linux/sysctl.h>
  
+#include <net/flow.h>
  #include <net/netns/core.h>
  #include <net/netns/mib.h>
  #include <net/netns/unix.h>
@@ -120,14 +121,6 @@ struct net {
         atomic_t                rt_genid;
  };
  
-/*
- * ifindex generation is per-net namespace, and loopback is
- * always the 1st device in ns (see net_dev_init), thus any
- * loopback device should get ifindex 1
- */
-
-#define LOOPBACK_IFINDEX       1
-
  #include <linux/seq_file_net.h>
  
  /* Init's network namespace */
diff --git a/net/ipv4/fib_frontend.c b/net/ipv4/fib_frontend.c

index ffffeb448ec4b97b2ddf4f2e7d1a29bcec56cc2c..5ae6d9449847dc0169d3431fc16d6d18b9b9cfd8 100644 (file)
--- a/net/ipv4/fib_frontend.c
+++ b/net/ipv4/fib_frontend.c
@@ -250,7 +250,7 @@ static int __fib_validate_source(struct sk_buff *skb, __be32 src, __be32 dst,
         bool dev_match;
  
         fl4.flowi4_oif = 0;
-       fl4.flowi4_iif = oif;
+       fl4.flowi4_iif = oif ? : LOOPBACK_IFINDEX;
         fl4.daddr = src;
         fl4.saddr = dst;
         fl4.flowi4_tos = tos;
diff --git a/net/ipv4/fib_semantics.c b/net/ipv4/fib_semantics.c

index 8f6cb7a87cd632e061bb04be2e393f3d5582d41d..567285bb83d203c448d7046860d1aa4fb4168b49 100644 (file)
--- a/net/ipv4/fib_semantics.c
+++ b/net/ipv4/fib_semantics.c
@@ -629,6 +629,7 @@ static int fib_check_nh(struct fib_config *cfg, struct fib_info *fi,
                                 .daddr = nh->nh_gw,
                                 .flowi4_scope = cfg->fc_scope + 1,
                                 .flowi4_oif = nh->nh_oif,
+                               .flowi4_iif = LOOPBACK_IFINDEX,
                         };
  
                         /* It is not necessary, but requires a bit of thinking */
diff --git a/net/ipv4/ipmr.c b/net/ipv4/ipmr.c

index 9d9610ae78553895e9f6ccb0ea8260fa4a66ac17..2c538ec7d3eabe0ee5e8f46f457759c9a302ff4f 100644 (file)
--- a/net/ipv4/ipmr.c
+++ b/net/ipv4/ipmr.c
@@ -451,7 +451,7 @@ static netdev_tx_t reg_vif_xmit(struct sk_buff *skb, struct net_device *dev)
         struct mr_table *mrt;
         struct flowi4 fl4 = {
                 .flowi4_oif     = dev->ifindex,
-               .flowi4_iif     = skb->skb_iif,
+               .flowi4_iif     = skb->skb_iif ? : LOOPBACK_IFINDEX,
                 .flowi4_mark    = skb->mark,
         };
         int err;
diff --git a/net/ipv4/netfilter/ipt_rpfilter.c b/net/ipv4/netfilter/ipt_rpfilter.c

index c49dcd0284a06c6bb4b4e6787af5888289ba50f3..4bfaedf9b34e5248aa6f8133e2c3bb0e555062e9 100644 (file)
--- a/net/ipv4/netfilter/ipt_rpfilter.c
+++ b/net/ipv4/netfilter/ipt_rpfilter.c
@@ -89,11 +89,8 @@ static bool rpfilter_mt(const struct sk_buff *skb, struct xt_action_param *par)
         if (ipv4_is_multicast(iph->daddr)) {
                 if (ipv4_is_zeronet(iph->saddr))
                         return ipv4_is_local_multicast(iph->daddr) ^ invert;
-               flow.flowi4_iif = 0;
-       } else {
-               flow.flowi4_iif = LOOPBACK_IFINDEX;
         }
-
+       flow.flowi4_iif = LOOPBACK_IFINDEX;
         flow.daddr = iph->saddr;
         flow.saddr = rpfilter_get_saddr(iph->daddr);
         flow.flowi4_oif = 0;
diff --git a/net/ipv6/ip6mr.c b/net/ipv6/ip6mr.c

index 241fb8ad9fcf28e2982f32e23ff9b7403ceef24a..7a3bd3b26c38c757b2f26cb803c3b818bf8fb4c4 100644 (file)
--- a/net/ipv6/ip6mr.c
+++ b/net/ipv6/ip6mr.c
@@ -693,7 +693,7 @@ static netdev_tx_t reg_vif_xmit(struct sk_buff *skb,
         struct mr6_table *mrt;
         struct flowi6 fl6 = {
                 .flowi6_oif     = dev->ifindex,
-               .flowi6_iif     = skb->skb_iif,
+               .flowi6_iif     = skb->skb_iif ? : LOOPBACK_IFINDEX,
                 .flowi6_mark    = skb->mark,
         };
         int err;
author	Cong Wang <cwang@twopensource.com>
	Tue, 15 Apr 2014 23:25:34 +0000 (16:25 -0700)
committer	Lorenzo Colitti <lorenzo@google.com>
	Tue, 3 Mar 2015 03:47:11 +0000 (12:47 +0900)
include/net/flow.h		patch \| blob \| history
include/net/net_namespace.h		patch \| blob \| history
net/ipv4/fib_frontend.c		patch \| blob \| history
net/ipv4/fib_semantics.c		patch \| blob \| history
net/ipv4/ipmr.c		patch \| blob \| history
net/ipv4/netfilter/ipt_rpfilter.c		patch \| blob \| history
net/ipv6/ip6mr.c		patch \| blob \| history