Skip to content
Navigation Menu
Toggle navigation
Sign in
In this repository
All GitHub Enterprise
↵
Jump to
↵
No suggested jump to results
In this repository
All GitHub Enterprise
↵
Jump to
↵
In this organization
All GitHub Enterprise
↵
Jump to
↵
In this repository
All GitHub Enterprise
↵
Jump to
↵
Sign in
Reseting focus
You signed in with another tab or window.
Reload
to refresh your session.
You signed out in another tab or window.
Reload
to refresh your session.
You switched accounts on another tab or window.
Reload
to refresh your session.
Dismiss alert
{{ message }}
mariux64
/
linux
Public
Notifications
You must be signed in to change notification settings
Fork
0
Star
0
Code
Issues
2
Pull requests
0
Actions
Projects
0
Wiki
Security
Insights
Additional navigation options
Code
Issues
Pull requests
Actions
Projects
Wiki
Security
Insights
Files
678aa8e
Documentation
arch
block
crypto
drivers
fs
include
init
ipc
kernel
lib
mm
net
802
8021q
9p
appletalk
atm
ax25
bluetooth
bridge
core
Makefile
datagram.c
dev.c
dev_mcast.c
dst.c
ethtool.c
fib_rules.c
filter.c
flow.c
gen_estimator.c
gen_stats.c
iovec.c
kmap_skb.h
link_watch.c
neighbour.c
net-sysfs.c
net_namespace.c
netevent.c
netpoll.c
pktgen.c
request_sock.c
rtnetlink.c
scm.c
skbuff.c
sock.c
stream.c
sysctl_net_core.c
user_dma.c
utils.c
dccp
decnet
econet
ethernet
ieee80211
ipv4
ipv6
ipx
irda
iucv
key
lapb
llc
mac80211
netfilter
netlabel
netlink
netrom
packet
rfkill
rose
rxrpc
sched
sctp
sunrpc
tipc
unix
wanrouter
wireless
x25
xfrm
Kconfig
Makefile
TUNABLE
compat.c
nonet.c
socket.c
sysctl_net.c
scripts
security
sound
usr
.gitignore
.mailmap
COPYING
CREDITS
Kbuild
MAINTAINERS
Makefile
README
REPORTING-BUGS
Breadcrumbs
linux
/
net
/
core
/
net_namespace.c
Blame
Blame
Latest commit
History
History
294 lines (255 loc) · 7.02 KB
Breadcrumbs
linux
/
net
/
core
/
net_namespace.c
Top
File metadata and controls
Code
Blame
294 lines (255 loc) · 7.02 KB
Raw
#include <linux/workqueue.h> #include <linux/rtnetlink.h> #include <linux/cache.h> #include <linux/slab.h> #include <linux/list.h> #include <linux/delay.h> #include <net/net_namespace.h> /* * Our network namespace constructor/destructor lists */ static LIST_HEAD(pernet_list); static struct list_head *first_device = &pernet_list; static DEFINE_MUTEX(net_mutex); static DEFINE_MUTEX(net_list_mutex); LIST_HEAD(net_namespace_list); static struct kmem_cache *net_cachep; struct net init_net; EXPORT_SYMBOL_GPL(init_net); void net_lock(void) { mutex_lock(&net_list_mutex); } void net_unlock(void) { mutex_unlock(&net_list_mutex); } #if 0 static struct net *net_alloc(void) { return kmem_cache_alloc(net_cachep, GFP_KERNEL); } #endif static void net_free(struct net *net) { if (!net) return; if (unlikely(atomic_read(&net->use_count) != 0)) { printk(KERN_EMERG "network namespace not free! Usage: %d\n", atomic_read(&net->use_count)); return; } kmem_cache_free(net_cachep, net); } static void cleanup_net(struct work_struct *work) { struct pernet_operations *ops; struct list_head *ptr; struct net *net; net = container_of(work, struct net, work); mutex_lock(&net_mutex); /* Don't let anyone else find us. */ net_lock(); list_del(&net->list); net_unlock(); /* Run all of the network namespace exit methods */ list_for_each_prev(ptr, &pernet_list) { ops = list_entry(ptr, struct pernet_operations, list); if (ops->exit) ops->exit(net); } mutex_unlock(&net_mutex); /* Ensure there are no outstanding rcu callbacks using this * network namespace. */ rcu_barrier(); /* Finally it is safe to free my network namespace structure */ net_free(net); } void __put_net(struct net *net) { /* Cleanup the network namespace in process context */ INIT_WORK(&net->work, cleanup_net); schedule_work(&net->work); } EXPORT_SYMBOL_GPL(__put_net); /* * setup_net runs the initializers for the network namespace object. */ static int setup_net(struct net *net) { /* Must be called with net_mutex held */ struct pernet_operations *ops; struct list_head *ptr; int error; memset(net, 0, sizeof(struct net)); atomic_set(&net->count, 1); atomic_set(&net->use_count, 0); error = 0; list_for_each(ptr, &pernet_list) { ops = list_entry(ptr, struct pernet_operations, list); if (ops->init) { error = ops->init(net); if (error < 0) goto out_undo; } } out: return error; out_undo: /* Walk through the list backwards calling the exit functions * for the pernet modules whose init functions did not fail. */ for (ptr = ptr->prev; ptr != &pernet_list; ptr = ptr->prev) { ops = list_entry(ptr, struct pernet_operations, list); if (ops->exit) ops->exit(net); } goto out; } static int __init net_ns_init(void) { int err; printk(KERN_INFO "net_namespace: %zd bytes\n", sizeof(struct net)); net_cachep = kmem_cache_create("net_namespace", sizeof(struct net), SMP_CACHE_BYTES, SLAB_PANIC, NULL); mutex_lock(&net_mutex); err = setup_net(&init_net); net_lock(); list_add_tail(&init_net.list, &net_namespace_list); net_unlock(); mutex_unlock(&net_mutex); if (err) panic("Could not setup the initial network namespace"); return 0; } pure_initcall(net_ns_init); static int register_pernet_operations(struct list_head *list, struct pernet_operations *ops) { struct net *net, *undo_net; int error; error = 0; list_add_tail(&ops->list, list); for_each_net(net) { if (ops->init) { error = ops->init(net); if (error) goto out_undo; } } out: return error; out_undo: /* If I have an error cleanup all namespaces I initialized */ list_del(&ops->list); for_each_net(undo_net) { if (undo_net == net) goto undone; if (ops->exit) ops->exit(undo_net); } undone: goto out; } static void unregister_pernet_operations(struct pernet_operations *ops) { struct net *net; list_del(&ops->list); for_each_net(net) if (ops->exit) ops->exit(net); } /** * register_pernet_subsys - register a network namespace subsystem * @ops: pernet operations structure for the subsystem * * Register a subsystem which has init and exit functions * that are called when network namespaces are created and * destroyed respectively. * * When registered all network namespace init functions are * called for every existing network namespace. Allowing kernel * modules to have a race free view of the set of network namespaces. * * When a new network namespace is created all of the init * methods are called in the order in which they were registered. * * When a network namespace is destroyed all of the exit methods * are called in the reverse of the order with which they were * registered. */ int register_pernet_subsys(struct pernet_operations *ops) { int error; mutex_lock(&net_mutex); error = register_pernet_operations(first_device, ops); mutex_unlock(&net_mutex); return error; } EXPORT_SYMBOL_GPL(register_pernet_subsys); /** * unregister_pernet_subsys - unregister a network namespace subsystem * @ops: pernet operations structure to manipulate * * Remove the pernet operations structure from the list to be * used when network namespaces are created or destoryed. In * addition run the exit method for all existing network * namespaces. */ void unregister_pernet_subsys(struct pernet_operations *module) { mutex_lock(&net_mutex); unregister_pernet_operations(module); mutex_unlock(&net_mutex); } EXPORT_SYMBOL_GPL(unregister_pernet_subsys); /** * register_pernet_device - register a network namespace device * @ops: pernet operations structure for the subsystem * * Register a device which has init and exit functions * that are called when network namespaces are created and * destroyed respectively. * * When registered all network namespace init functions are * called for every existing network namespace. Allowing kernel * modules to have a race free view of the set of network namespaces. * * When a new network namespace is created all of the init * methods are called in the order in which they were registered. * * When a network namespace is destroyed all of the exit methods * are called in the reverse of the order with which they were * registered. */ int register_pernet_device(struct pernet_operations *ops) { int error; mutex_lock(&net_mutex); error = register_pernet_operations(&pernet_list, ops); if (!error && (first_device == &pernet_list)) first_device = &ops->list; mutex_unlock(&net_mutex); return error; } EXPORT_SYMBOL_GPL(register_pernet_device); /** * unregister_pernet_device - unregister a network namespace netdevice * @ops: pernet operations structure to manipulate * * Remove the pernet operations structure from the list to be * used when network namespaces are created or destoryed. In * addition run the exit method for all existing network * namespaces. */ void unregister_pernet_device(struct pernet_operations *ops) { mutex_lock(&net_mutex); if (&ops->list == first_device) first_device = first_device->next; unregister_pernet_operations(ops); mutex_unlock(&net_mutex); } EXPORT_SYMBOL_GPL(unregister_pernet_device);
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
You can’t perform that action at this time.