PPTP: PPP over IPv4 (Point-to-Point Tunneling Protocol)

PPP: introduce "pptp" module which implements point-to-point tunneling protocol using pppox framework NET: introduce the "gre" module for demultiplexing GRE packets on version criteria (required to pptp and ip_gre may coexists) NET: ip_gre: update to use the "gre" module This patch introduces then pptp support to the linux kernel which dramatically speeds up pptp vpn connections and decreases cpu usage in comparison of existing user-space implementation (poptop/pptpclient). There is accel-pptp project (https://sourceforge.net/projects/accel-pptp/) to utilize this module, it contains plugin for pppd to use pptp in client-mode and modified pptpd (poptop) to build high-performance pptp NAS. There was many changes from initial submitted patch, most important are: 1. using rcu instead of read-write locks 2. using static bitmap instead of dynamically allocated 3. using vmalloc for memory allocation instead of BITS_PER_LONG + __get_free_pages 4. fixed many coding style issues Thanks to Eric Dumazet. Signed-off-by: Dmitry Kozlov <xeb@mail.ru> Signed-off-by: Eric Dumazet <eric.dumazet@gmail.com> Signed-off-by: David S. Miller <davem@davemloft.net>
author: Dmitry Kozlov <xeb@mail.ru> 2010-08-22 02:05:39 -0400
committer: David S. Miller <davem@davemloft.net> 2010-08-22 02:05:39 -0400
commit: 00959ade36acadc00e757f87060bf6e4501d545f (patch)
tree: 9bfe790d4a8b63b0e6653388da73dfd777eea8ff /net/ipv4
parent: 1003489e06c04d807c783a8958f2ccc9aed7a244 (diff)
4 files changed, 166 insertions, 7 deletions
diff --git a/net/ipv4/Kconfig b/net/ipv4/Kconfig
index 7c3a7d191249..7458bdae7e9f 100644
--- a/net/ipv4/Kconfig
+++ b/net/ipv4/Kconfig
@@ -215,8 +215,15 @@ config NET_IPIP
          be inserted in and removed from the running kernel whenever you
          want). Most people won't need this and can say N.
+config NET_IPGRE_DEMUX
+        tristate "IP: GRE demultiplexer"
+        help
+         This is helper module to demultiplex GRE packets on GRE version field criteria.
+         Required by ip_gre and pptp modules.
 config NET_IPGRE
        tristate "IP: GRE tunnels over IP"
+        depends on NET_IPGRE_DEMUX
        help
          Tunneling means encapsulating data of one protocol type within
          another protocol and sending it over a channel that understands the
diff --git a/net/ipv4/Makefile b/net/ipv4/Makefile
index 80ff87ce43aa..4978d22f9a75 100644
--- a/net/ipv4/Makefile
+++ b/net/ipv4/Makefile
@@ -20,6 +20,7 @@ obj-$(CONFIG_PROC_FS) += proc.o
 obj-$(CONFIG_IP_MULTIPLE_TABLES) += fib_rules.o
 obj-$(CONFIG_IP_MROUTE) += ipmr.o
 obj-$(CONFIG_NET_IPIP) += ipip.o
+obj-$(CONFIG_NET_IPGRE_DEMUX) += gre.o
 obj-$(CONFIG_NET_IPGRE) += ip_gre.o
 obj-$(CONFIG_SYN_COOKIES) += syncookies.o
 obj-$(CONFIG_INET_AH) += ah4.o
diff --git a/net/ipv4/gre.c b/net/ipv4/gre.c
new file mode 100644
index 000000000000..b546736da2e1
--- /dev/null
+++ b/net/ipv4/gre.c
@@ -0,0 +1,151 @@
+/*
+ *      GRE over IPv4 demultiplexer driver
+ *
+ *      Authors: Dmitry Kozlov (xeb@mail.ru)
+ *
+ *      This program is free software; you can redistribute it and/or
+ *      modify it under the terms of the GNU General Public License
+ *      as published by the Free Software Foundation; either version
+ *      2 of the License, or (at your option) any later version.
+ *
+ */
+#include <linux/module.h>
+#include <linux/kernel.h>
+#include <linux/kmod.h>
+#include <linux/skbuff.h>
+#include <linux/in.h>
+#include <linux/netdevice.h>
+#include <linux/version.h>
+#include <linux/spinlock.h>
+#include <net/protocol.h>
+#include <net/gre.h>
+const struct gre_protocol *gre_proto[GREPROTO_MAX] __read_mostly;
+static DEFINE_SPINLOCK(gre_proto_lock);
+int gre_add_protocol(const struct gre_protocol *proto, u8 version)
+{
+        if (version >= GREPROTO_MAX)
+                goto err_out;
+        spin_lock(&gre_proto_lock);
+        if (gre_proto[version])
+                goto err_out_unlock;
+        rcu_assign_pointer(gre_proto[version], proto);
+        spin_unlock(&gre_proto_lock);
+        return 0;
+err_out_unlock:
+        spin_unlock(&gre_proto_lock);
+err_out:
+        return -1;
+}
+EXPORT_SYMBOL_GPL(gre_add_protocol);
+int gre_del_protocol(const struct gre_protocol *proto, u8 version)
+{
+        if (version >= GREPROTO_MAX)
+                goto err_out;
+        spin_lock(&gre_proto_lock);
+        if (gre_proto[version] != proto)
+                goto err_out_unlock;
+        rcu_assign_pointer(gre_proto[version], NULL);
+        spin_unlock(&gre_proto_lock);
+        synchronize_rcu();
+        return 0;
+err_out_unlock:
+        spin_unlock(&gre_proto_lock);
+err_out:
+        return -1;
+}
+EXPORT_SYMBOL_GPL(gre_del_protocol);
+static int gre_rcv(struct sk_buff *skb)
+{
+        const struct gre_protocol *proto;
+        u8 ver;
+        int ret;
+        if (!pskb_may_pull(skb, 12))
+                goto drop;
+        ver = skb->data[1]&0x7f;
+        if (ver >= GREPROTO_MAX)
+                goto drop;
+        rcu_read_lock();
+        proto = rcu_dereference(gre_proto[ver]);
+        if (!proto || !proto->handler)
+                goto drop_unlock;
+        ret = proto->handler(skb);
+        rcu_read_unlock();
+        return ret;
+drop_unlock:
+        rcu_read_unlock();
+drop:
+        kfree_skb(skb);
+        return NET_RX_DROP;
+}
+static void gre_err(struct sk_buff *skb, u32 info)
+{
+        const struct gre_protocol *proto;
+        u8 ver;
+        if (!pskb_may_pull(skb, 12))
+                goto drop;
+        ver = skb->data[1]&0x7f;
+        if (ver >= GREPROTO_MAX)
+                goto drop;
+        rcu_read_lock();
+        proto = rcu_dereference(gre_proto[ver]);
+        if (!proto || !proto->err_handler)
+                goto drop_unlock;
+        proto->err_handler(skb, info);
+        rcu_read_unlock();
+        return;
+drop_unlock:
+        rcu_read_unlock();
+drop:
+        kfree_skb(skb);
+}
+static const struct net_protocol net_gre_protocol = {
+        .handler     = gre_rcv,
+        .err_handler = gre_err,
+        .netns_ok    = 1,
+};
+static int __init gre_init(void)
+{
+        pr_info("GRE over IPv4 demultiplexor driver");
+        if (inet_add_protocol(&net_gre_protocol, IPPROTO_GRE) < 0) {
+                pr_err("gre: can't add protocol\n");
+                return -EAGAIN;
+        }
+        return 0;
+}
+static void __exit gre_exit(void)
+{
+        inet_del_protocol(&net_gre_protocol, IPPROTO_GRE);
+}
+module_init(gre_init);
+module_exit(gre_exit);
+MODULE_DESCRIPTION("GRE over IPv4 demultiplexer driver");
+MODULE_AUTHOR("D. Kozlov (xeb@mail.ru)");
+MODULE_LICENSE("GPL");
diff --git a/net/ipv4/ip_gre.c b/net/ipv4/ip_gre.c
index 945b20a5ad50..85176895495a 100644
--- a/net/ipv4/ip_gre.c
+++ b/net/ipv4/ip_gre.c
@@ -44,6 +44,7 @@
 #include <net/net_namespace.h>
 #include <net/netns/generic.h>
 #include <net/rtnetlink.h>
+#include <net/gre.h>
 #ifdef CONFIG_IPV6
 #include <net/ipv6.h>
@@ -1278,10 +1279,9 @@ static void ipgre_fb_tunnel_init(struct net_device *dev)
 }
-static const struct net_protocol ipgre_protocol = {
+static const struct gre_protocol ipgre_protocol = {
-        .handler        =       ipgre_rcv,
+        .handler     = ipgre_rcv,
-        .err_handler    =       ipgre_err,
+        .err_handler = ipgre_err,
-        .netns_ok       =       1,
 };
 static void ipgre_destroy_tunnels(struct ipgre_net *ign, struct list_head *head)
@@ -1663,7 +1663,7 @@ static int __init ipgre_init(void)
        if (err < 0)
                return err;
-        err = inet_add_protocol(&ipgre_protocol, IPPROTO_GRE);
+        err = gre_add_protocol(&ipgre_protocol, GREPROTO_CISCO);
        if (err < 0) {
                printk(KERN_INFO "ipgre init: can't add protocol\n");
                goto add_proto_failed;
@@ -1683,7 +1683,7 @@ out:
 tap_ops_failed:
        rtnl_link_unregister(&ipgre_link_ops);
 rtnl_link_failed:
-        inet_del_protocol(&ipgre_protocol, IPPROTO_GRE);
+        gre_del_protocol(&ipgre_protocol, GREPROTO_CISCO);
 add_proto_failed:
        unregister_pernet_device(&ipgre_net_ops);
        goto out;
@@ -1693,7 +1693,7 @@ static void __exit ipgre_fini(void)
 {
        rtnl_link_unregister(&ipgre_tap_ops);
        rtnl_link_unregister(&ipgre_link_ops);
-        if (inet_del_protocol(&ipgre_protocol, IPPROTO_GRE) < 0)
+        if (gre_del_protocol(&ipgre_protocol, GREPROTO_CISCO) < 0)
                printk(KERN_INFO "ipgre close: can't remove protocol\n");
        unregister_pernet_device(&ipgre_net_ops);
 }
author	Dmitry Kozlov <xeb@mail.ru>	2010-08-22 02:05:39 -0400
committer	David S. Miller <davem@davemloft.net>	2010-08-22 02:05:39 -0400
commit	00959ade36acadc00e757f87060bf6e4501d545f (patch)
tree	9bfe790d4a8b63b0e6653388da73dfd777eea8ff /net/ipv4
parent	1003489e06c04d807c783a8958f2ccc9aed7a244 (diff)

diff --git a/net/ipv4/Kconfig b/net/ipv4/Kconfig index 7c3a7d191249..7458bdae7e9f 100644 --- a/net/ipv4/Kconfig +++ b/net/ipv4/Kconfig
@@ -215,8 +215,15 @@ config NET_IPIP
215	be inserted in and removed from the running kernel whenever you	215	be inserted in and removed from the running kernel whenever you
216	want). Most people won't need this and can say N.	216	want). Most people won't need this and can say N.
217		217
		218	config NET_IPGRE_DEMUX
		219	tristate "IP: GRE demultiplexer"
		220	help
		221	This is helper module to demultiplex GRE packets on GRE version field criteria.
		222	Required by ip_gre and pptp modules.
		223
218	config NET_IPGRE	224	config NET_IPGRE
219	tristate "IP: GRE tunnels over IP"	225	tristate "IP: GRE tunnels over IP"
		226	depends on NET_IPGRE_DEMUX
220	help	227	help
221	Tunneling means encapsulating data of one protocol type within	228	Tunneling means encapsulating data of one protocol type within
222	another protocol and sending it over a channel that understands the	229	another protocol and sending it over a channel that understands the


diff --git a/net/ipv4/Makefile b/net/ipv4/Makefile index 80ff87ce43aa..4978d22f9a75 100644 --- a/net/ipv4/Makefile +++ b/net/ipv4/Makefile
@@ -20,6 +20,7 @@ obj-$(CONFIG_PROC_FS) += proc.o
20	obj-$(CONFIG_IP_MULTIPLE_TABLES) += fib_rules.o	20	obj-$(CONFIG_IP_MULTIPLE_TABLES) += fib_rules.o
21	obj-$(CONFIG_IP_MROUTE) += ipmr.o	21	obj-$(CONFIG_IP_MROUTE) += ipmr.o
22	obj-$(CONFIG_NET_IPIP) += ipip.o	22	obj-$(CONFIG_NET_IPIP) += ipip.o
		23	obj-$(CONFIG_NET_IPGRE_DEMUX) += gre.o
23	obj-$(CONFIG_NET_IPGRE) += ip_gre.o	24	obj-$(CONFIG_NET_IPGRE) += ip_gre.o
24	obj-$(CONFIG_SYN_COOKIES) += syncookies.o	25	obj-$(CONFIG_SYN_COOKIES) += syncookies.o
25	obj-$(CONFIG_INET_AH) += ah4.o	26	obj-$(CONFIG_INET_AH) += ah4.o


diff --git a/net/ipv4/gre.c b/net/ipv4/gre.c new file mode 100644 index 000000000000..b546736da2e1 --- /dev/null +++ b/net/ipv4/gre.c
@@ -0,0 +1,151 @@
		1	/*
		2	* GRE over IPv4 demultiplexer driver
		3	*
		4	* Authors: Dmitry Kozlov (xeb@mail.ru)
		5	*
		6	* This program is free software; you can redistribute it and/or
		7	* modify it under the terms of the GNU General Public License
		8	* as published by the Free Software Foundation; either version
		9	* 2 of the License, or (at your option) any later version.
		10	*
		11	*/
		12
		13	#include <linux/module.h>
		14	#include <linux/kernel.h>
		15	#include <linux/kmod.h>
		16	#include <linux/skbuff.h>
		17	#include <linux/in.h>
		18	#include <linux/netdevice.h>
		19	#include <linux/version.h>
		20	#include <linux/spinlock.h>
		21	#include <net/protocol.h>
		22	#include <net/gre.h>
		23
		24
		25	const struct gre_protocol *gre_proto[GREPROTO_MAX] __read_mostly;
		26	static DEFINE_SPINLOCK(gre_proto_lock);
		27
		28	int gre_add_protocol(const struct gre_protocol *proto, u8 version)
		29	{
		30	if (version >= GREPROTO_MAX)
		31	goto err_out;
		32
		33	spin_lock(&gre_proto_lock);
		34	if (gre_proto[version])
		35	goto err_out_unlock;
		36
		37	rcu_assign_pointer(gre_proto[version], proto);
		38	spin_unlock(&gre_proto_lock);
		39	return 0;
		40
		41	err_out_unlock:
		42	spin_unlock(&gre_proto_lock);
		43	err_out:
		44	return -1;
		45	}
		46	EXPORT_SYMBOL_GPL(gre_add_protocol);
		47
		48	int gre_del_protocol(const struct gre_protocol *proto, u8 version)
		49	{
		50	if (version >= GREPROTO_MAX)
		51	goto err_out;
		52
		53	spin_lock(&gre_proto_lock);
		54	if (gre_proto[version] != proto)
		55	goto err_out_unlock;
		56	rcu_assign_pointer(gre_proto[version], NULL);
		57	spin_unlock(&gre_proto_lock);
		58	synchronize_rcu();
		59	return 0;
		60
		61	err_out_unlock:
		62	spin_unlock(&gre_proto_lock);
		63	err_out:
		64	return -1;
		65	}
		66	EXPORT_SYMBOL_GPL(gre_del_protocol);
		67
		68	static int gre_rcv(struct sk_buff *skb)
		69	{
		70	const struct gre_protocol *proto;
		71	u8 ver;
		72	int ret;
		73
		74	if (!pskb_may_pull(skb, 12))
		75	goto drop;
		76
		77	ver = skb->data[1]&0x7f;
		78	if (ver >= GREPROTO_MAX)
		79	goto drop;
		80
		81	rcu_read_lock();
		82	proto = rcu_dereference(gre_proto[ver]);
		83	if (!proto \|\| !proto->handler)
		84	goto drop_unlock;
		85	ret = proto->handler(skb);
		86	rcu_read_unlock();
		87	return ret;
		88
		89	drop_unlock:
		90	rcu_read_unlock();
		91	drop:
		92	kfree_skb(skb);
		93	return NET_RX_DROP;
		94	}
		95
		96	static void gre_err(struct sk_buff *skb, u32 info)
		97	{
		98	const struct gre_protocol *proto;
		99	u8 ver;
		100
		101	if (!pskb_may_pull(skb, 12))
		102	goto drop;
		103
		104	ver = skb->data[1]&0x7f;
		105	if (ver >= GREPROTO_MAX)
		106	goto drop;
		107
		108	rcu_read_lock();
		109	proto = rcu_dereference(gre_proto[ver]);
		110	if (!proto \|\| !proto->err_handler)
		111	goto drop_unlock;
		112	proto->err_handler(skb, info);
		113	rcu_read_unlock();
		114	return;
		115
		116	drop_unlock:
		117	rcu_read_unlock();
		118	drop:
		119	kfree_skb(skb);
		120	}
		121
		122	static const struct net_protocol net_gre_protocol = {
		123	.handler = gre_rcv,
		124	.err_handler = gre_err,
		125	.netns_ok = 1,
		126	};
		127
		128	static int __init gre_init(void)
		129	{
		130	pr_info("GRE over IPv4 demultiplexor driver");
		131
		132	if (inet_add_protocol(&net_gre_protocol, IPPROTO_GRE) < 0) {
		133	pr_err("gre: can't add protocol\n");
		134	return -EAGAIN;
		135	}
		136
		137	return 0;
		138	}
		139
		140	static void __exit gre_exit(void)
		141	{
		142	inet_del_protocol(&net_gre_protocol, IPPROTO_GRE);
		143	}
		144
		145	module_init(gre_init);
		146	module_exit(gre_exit);
		147
		148	MODULE_DESCRIPTION("GRE over IPv4 demultiplexer driver");
		149	MODULE_AUTHOR("D. Kozlov (xeb@mail.ru)");
		150	MODULE_LICENSE("GPL");
		151


diff --git a/net/ipv4/ip_gre.c b/net/ipv4/ip_gre.c index 945b20a5ad50..85176895495a 100644 --- a/net/ipv4/ip_gre.c +++ b/net/ipv4/ip_gre.c
@@ -44,6 +44,7 @@
44	#include <net/net_namespace.h>	44	#include <net/net_namespace.h>
45	#include <net/netns/generic.h>	45	#include <net/netns/generic.h>
46	#include <net/rtnetlink.h>	46	#include <net/rtnetlink.h>
		47	#include <net/gre.h>
47		48
48	#ifdef CONFIG_IPV6	49	#ifdef CONFIG_IPV6
49	#include <net/ipv6.h>	50	#include <net/ipv6.h>
@@ -1278,10 +1279,9 @@ static void ipgre_fb_tunnel_init(struct net_device *dev)
1278	}	1279	}
1279		1280
1280		1281
1281	static const struct net_protocol ipgre_protocol = {	1282	static const struct gre_protocol ipgre_protocol = {
1282	.handler = ipgre_rcv,	1283	.handler = ipgre_rcv,
1283	.err_handler = ipgre_err,	1284	.err_handler = ipgre_err,
1284	.netns_ok = 1,
1285	};	1285	};
1286		1286
1287	static void ipgre_destroy_tunnels(struct ipgre_net ign, struct list_head head)	1287	static void ipgre_destroy_tunnels(struct ipgre_net ign, struct list_head head)
@@ -1663,7 +1663,7 @@ static int __init ipgre_init(void)
1663	if (err < 0)	1663	if (err < 0)
1664	return err;	1664	return err;
1665		1665
1666	err = inet_add_protocol(&ipgre_protocol, IPPROTO_GRE);	1666	err = gre_add_protocol(&ipgre_protocol, GREPROTO_CISCO);
1667	if (err < 0) {	1667	if (err < 0) {
1668	printk(KERN_INFO "ipgre init: can't add protocol\n");	1668	printk(KERN_INFO "ipgre init: can't add protocol\n");
1669	goto add_proto_failed;	1669	goto add_proto_failed;
@@ -1683,7 +1683,7 @@ out:
1683	tap_ops_failed:	1683	tap_ops_failed:
1684	rtnl_link_unregister(&ipgre_link_ops);	1684	rtnl_link_unregister(&ipgre_link_ops);
1685	rtnl_link_failed:	1685	rtnl_link_failed:
1686	inet_del_protocol(&ipgre_protocol, IPPROTO_GRE);	1686	gre_del_protocol(&ipgre_protocol, GREPROTO_CISCO);
1687	add_proto_failed:	1687	add_proto_failed:
1688	unregister_pernet_device(&ipgre_net_ops);	1688	unregister_pernet_device(&ipgre_net_ops);
1689	goto out;	1689	goto out;
@@ -1693,7 +1693,7 @@ static void __exit ipgre_fini(void)
1693	{	1693	{
1694	rtnl_link_unregister(&ipgre_tap_ops);	1694	rtnl_link_unregister(&ipgre_tap_ops);
1695	rtnl_link_unregister(&ipgre_link_ops);	1695	rtnl_link_unregister(&ipgre_link_ops);
1696	if (inet_del_protocol(&ipgre_protocol, IPPROTO_GRE) < 0)	1696	if (gre_del_protocol(&ipgre_protocol, GREPROTO_CISCO) < 0)
1697	printk(KERN_INFO "ipgre close: can't remove protocol\n");	1697	printk(KERN_INFO "ipgre close: can't remove protocol\n");
1698	unregister_pernet_device(&ipgre_net_ops);	1698	unregister_pernet_device(&ipgre_net_ops);
1699	}	1699	}