Commit 07f81727 authored by David S. Miller's avatar David S. Miller

Merge branch 'net-ReST-part-two'

Mauro Carvalho Chehab says:

====================
net: manually convert files to ReST format - part 2

That's the second part of my work to convert the networking
text files into ReST. it is based on today's linux-next (next-20200430).

The full series (including those ones) are at:

	https://git.linuxtv.org/mchehab/experimental.git/log/?h=net-docs

I should be sending the remaining patches (another /38 series)
after getting those merged at -next.

The documents, converted to HTML via the building system are at:

	https://www.infradead.org/~mchehab/kernel_docs/networking/
====================
Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
parents 9f049606 4ac0b122
...@@ -638,7 +638,7 @@ ...@@ -638,7 +638,7 @@
See Documentation/admin-guide/serial-console.rst for more See Documentation/admin-guide/serial-console.rst for more
information. See information. See
Documentation/networking/netconsole.txt for an Documentation/networking/netconsole.rst for an
alternative. alternative.
uart[8250],io,<addr>[,options] uart[8250],io,<addr>[,options]
......
...@@ -54,7 +54,7 @@ You will need to create a new device to use ``/dev/console``. The official ...@@ -54,7 +54,7 @@ You will need to create a new device to use ``/dev/console``. The official
``/dev/console`` is now character device 5,1. ``/dev/console`` is now character device 5,1.
(You can also use a network device as a console. See (You can also use a network device as a console. See
``Documentation/networking/netconsole.txt`` for information on that.) ``Documentation/networking/netconsole.rst`` for information on that.)
Here's an example that will use ``/dev/ttyS1`` (COM2) as the console. Here's an example that will use ``/dev/ttyS1`` (COM2) as the console.
Replace the sample values as needed. Replace the sample values as needed.
......
...@@ -70,7 +70,7 @@ list of volume location server IP addresses:: ...@@ -70,7 +70,7 @@ list of volume location server IP addresses::
The first module is the AF_RXRPC network protocol driver. This provides the The first module is the AF_RXRPC network protocol driver. This provides the
RxRPC remote operation protocol and may also be accessed from userspace. See: RxRPC remote operation protocol and may also be accessed from userspace. See:
Documentation/networking/rxrpc.txt Documentation/networking/rxrpc.rst
The second module is the kerberos RxRPC security driver, and the third module The second module is the kerberos RxRPC security driver, and the third module
is the actual filesystem driver for the AFS filesystem. is the actual filesystem driver for the AFS filesystem.
......
...@@ -1639,7 +1639,7 @@ can safely be sent over either interface. Such configurations may be achieved ...@@ -1639,7 +1639,7 @@ can safely be sent over either interface. Such configurations may be achieved
using the traffic control utilities inherent in linux. using the traffic control utilities inherent in linux.
By default the bonding driver is multiqueue aware and 16 queues are created By default the bonding driver is multiqueue aware and 16 queues are created
when the driver initializes (see Documentation/networking/multiqueue.txt when the driver initializes (see Documentation/networking/multiqueue.rst
for details). If more or less queues are desired the module parameter for details). If more or less queues are desired the module parameter
tx_queues can be used to change this value. There is no sysfs parameter tx_queues can be used to change this value. There is no sysfs parameter
available as the allocation is done at module init time. available as the allocation is done at module init time.
......
...@@ -1058,7 +1058,7 @@ drivers you mainly have to deal with: ...@@ -1058,7 +1058,7 @@ drivers you mainly have to deal with:
- TX: Put the CAN frame from the socket buffer to the CAN controller. - TX: Put the CAN frame from the socket buffer to the CAN controller.
- RX: Put the CAN frame from the CAN controller to the socket buffer. - RX: Put the CAN frame from the CAN controller to the socket buffer.
See e.g. at Documentation/networking/netdevices.txt . The differences See e.g. at Documentation/networking/netdevices.rst . The differences
for writing CAN network device driver are described below: for writing CAN network device driver are described below:
......
...@@ -59,7 +59,7 @@ recomputed for each resulting segment. See the skbuff.h comment (section 'E') ...@@ -59,7 +59,7 @@ recomputed for each resulting segment. See the skbuff.h comment (section 'E')
for more details. for more details.
A driver declares its offload capabilities in netdev->hw_features; see A driver declares its offload capabilities in netdev->hw_features; see
Documentation/networking/netdev-features.txt for more. Note that a device Documentation/networking/netdev-features.rst for more. Note that a device
which only advertises NETIF_F_IP[V6]_CSUM must still obey the csum_start and which only advertises NETIF_F_IP[V6]_CSUM must still obey the csum_start and
csum_offset given in the SKB; if it tries to deduce these itself in hardware csum_offset given in the SKB; if it tries to deduce these itself in hardware
(as some NICs do) the driver should check that the values in the SKB match (as some NICs do) the driver should check that the values in the SKB match
......
...@@ -74,6 +74,43 @@ Contents: ...@@ -74,6 +74,43 @@ Contents:
ipvlan ipvlan
ipvs-sysctl ipvs-sysctl
kcm kcm
l2tp
lapb-module
ltpc
mac80211-injection
mpls-sysctl
multiqueue
netconsole
netdev-features
netdevices
netfilter-sysctl
netif-msg
nf_conntrack-sysctl
nf_flowtable
openvswitch
operstates
packet_mmap
phonet
pktgen
plip
ppp_generic
proc_net_tcp
radiotap-headers
ray_cs
rds
regulatory
rxrpc
sctp
secid
seg6-sysctl
skfp
strparser
switchdev
tc-actions-env-rules
tcp-thin
team
timestamping
tproxy
.. only:: subproject and html .. only:: subproject and html
......
...@@ -886,7 +886,7 @@ tcp_thin_linear_timeouts - BOOLEAN ...@@ -886,7 +886,7 @@ tcp_thin_linear_timeouts - BOOLEAN
initiated. This improves retransmission latency for initiated. This improves retransmission latency for
non-aggressive thin streams, often found to be time-dependent. non-aggressive thin streams, often found to be time-dependent.
For more information on thin streams, see For more information on thin streams, see
Documentation/networking/tcp-thin.txt Documentation/networking/tcp-thin.rst
Default: 0 Default: 0
......
.. SPDX-License-Identifier: GPL-2.0
====
L2TP
====
This document describes how to use the kernel's L2TP drivers to This document describes how to use the kernel's L2TP drivers to
provide L2TP functionality. L2TP is a protocol that tunnels one or provide L2TP functionality. L2TP is a protocol that tunnels one or
more sessions over an IP tunnel. It is commonly used for VPNs more sessions over an IP tunnel. It is commonly used for VPNs
...@@ -121,14 +127,16 @@ Userspace may control behavior of the tunnel or session using ...@@ -121,14 +127,16 @@ Userspace may control behavior of the tunnel or session using
setsockopt and ioctl on the PPPoX socket. The following socket setsockopt and ioctl on the PPPoX socket. The following socket
options are supported:- options are supported:-
DEBUG - bitmask of debug message categories. See below. ========= ===========================================================
SENDSEQ - 0 => don't send packets with sequence numbers DEBUG bitmask of debug message categories. See below.
1 => send packets with sequence numbers SENDSEQ - 0 => don't send packets with sequence numbers
RECVSEQ - 0 => receive packet sequence numbers are optional - 1 => send packets with sequence numbers
1 => drop receive packets without sequence numbers RECVSEQ - 0 => receive packet sequence numbers are optional
LNSMODE - 0 => act as LAC. - 1 => drop receive packets without sequence numbers
1 => act as LNS. LNSMODE - 0 => act as LAC.
REORDERTO - reorder timeout (in millisecs). If 0, don't try to reorder. - 1 => act as LNS.
REORDERTO reorder timeout (in millisecs). If 0, don't try to reorder.
========= ===========================================================
Only the DEBUG option is supported by the special tunnel management Only the DEBUG option is supported by the special tunnel management
PPPoX socket. PPPoX socket.
...@@ -177,20 +185,22 @@ setsockopt on the PPPoX socket to set a debug mask. ...@@ -177,20 +185,22 @@ setsockopt on the PPPoX socket to set a debug mask.
The following debug mask bits are available: The following debug mask bits are available:
================ ==============================
L2TP_MSG_DEBUG verbose debug (if compiled in) L2TP_MSG_DEBUG verbose debug (if compiled in)
L2TP_MSG_CONTROL userspace - kernel interface L2TP_MSG_CONTROL userspace - kernel interface
L2TP_MSG_SEQ sequence numbers handling L2TP_MSG_SEQ sequence numbers handling
L2TP_MSG_DATA data packets L2TP_MSG_DATA data packets
================ ==============================
If enabled, files under a l2tp debugfs directory can be used to dump If enabled, files under a l2tp debugfs directory can be used to dump
kernel state about L2TP tunnels and sessions. To access it, the kernel state about L2TP tunnels and sessions. To access it, the
debugfs filesystem must first be mounted. debugfs filesystem must first be mounted::
# mount -t debugfs debugfs /debug # mount -t debugfs debugfs /debug
Files under the l2tp directory can then be accessed. Files under the l2tp directory can then be accessed::
# cat /debug/l2tp/tunnels # cat /debug/l2tp/tunnels
The debugfs files should not be used by applications to obtain L2TP The debugfs files should not be used by applications to obtain L2TP
state information because the file format is subject to change. It is state information because the file format is subject to change. It is
...@@ -211,14 +221,14 @@ iproute2's ip utility to support this. ...@@ -211,14 +221,14 @@ iproute2's ip utility to support this.
To create an L2TPv3 ethernet pseudowire between local host 192.168.1.1 To create an L2TPv3 ethernet pseudowire between local host 192.168.1.1
and peer 192.168.1.2, using IP addresses 10.5.1.1 and 10.5.1.2 for the and peer 192.168.1.2, using IP addresses 10.5.1.1 and 10.5.1.2 for the
tunnel endpoints:- tunnel endpoints::
# ip l2tp add tunnel tunnel_id 1 peer_tunnel_id 1 udp_sport 5000 \ # ip l2tp add tunnel tunnel_id 1 peer_tunnel_id 1 udp_sport 5000 \
udp_dport 5000 encap udp local 192.168.1.1 remote 192.168.1.2 udp_dport 5000 encap udp local 192.168.1.1 remote 192.168.1.2
# ip l2tp add session tunnel_id 1 session_id 1 peer_session_id 1 # ip l2tp add session tunnel_id 1 session_id 1 peer_session_id 1
# ip -s -d show dev l2tpeth0 # ip -s -d show dev l2tpeth0
# ip addr add 10.5.1.2/32 peer 10.5.1.1/32 dev l2tpeth0 # ip addr add 10.5.1.2/32 peer 10.5.1.1/32 dev l2tpeth0
# ip li set dev l2tpeth0 up # ip li set dev l2tpeth0 up
Choose IP addresses to be the address of a local IP interface and that Choose IP addresses to be the address of a local IP interface and that
of the remote system. The IP addresses of the l2tpeth0 interface can be of the remote system. The IP addresses of the l2tpeth0 interface can be
...@@ -228,75 +238,78 @@ Repeat the above at the peer, with ports, tunnel/session ids and IP ...@@ -228,75 +238,78 @@ Repeat the above at the peer, with ports, tunnel/session ids and IP
addresses reversed. The tunnel and session IDs can be any non-zero addresses reversed. The tunnel and session IDs can be any non-zero
32-bit number, but the values must be reversed at the peer. 32-bit number, but the values must be reversed at the peer.
======================== ===================
Host 1 Host2 Host 1 Host2
======================== ===================
udp_sport=5000 udp_sport=5001 udp_sport=5000 udp_sport=5001
udp_dport=5001 udp_dport=5000 udp_dport=5001 udp_dport=5000
tunnel_id=42 tunnel_id=45 tunnel_id=42 tunnel_id=45
peer_tunnel_id=45 peer_tunnel_id=42 peer_tunnel_id=45 peer_tunnel_id=42
session_id=128 session_id=5196755 session_id=128 session_id=5196755
peer_session_id=5196755 peer_session_id=128 peer_session_id=5196755 peer_session_id=128
======================== ===================
When done at both ends of the tunnel, it should be possible to send When done at both ends of the tunnel, it should be possible to send
data over the network. e.g. data over the network. e.g.::
# ping 10.5.1.1 # ping 10.5.1.1
Sample Userspace Code Sample Userspace Code
===================== =====================
1. Create tunnel management PPPoX socket 1. Create tunnel management PPPoX socket::
kernel_fd = socket(AF_PPPOX, SOCK_DGRAM, PX_PROTO_OL2TP); kernel_fd = socket(AF_PPPOX, SOCK_DGRAM, PX_PROTO_OL2TP);
if (kernel_fd >= 0) { if (kernel_fd >= 0) {
struct sockaddr_pppol2tp sax; struct sockaddr_pppol2tp sax;
struct sockaddr_in const *peer_addr; struct sockaddr_in const *peer_addr;
peer_addr = l2tp_tunnel_get_peer_addr(tunnel); peer_addr = l2tp_tunnel_get_peer_addr(tunnel);
memset(&sax, 0, sizeof(sax)); memset(&sax, 0, sizeof(sax));
sax.sa_family = AF_PPPOX; sax.sa_family = AF_PPPOX;
sax.sa_protocol = PX_PROTO_OL2TP; sax.sa_protocol = PX_PROTO_OL2TP;
sax.pppol2tp.fd = udp_fd; /* fd of tunnel UDP socket */ sax.pppol2tp.fd = udp_fd; /* fd of tunnel UDP socket */
sax.pppol2tp.addr.sin_addr.s_addr = peer_addr->sin_addr.s_addr; sax.pppol2tp.addr.sin_addr.s_addr = peer_addr->sin_addr.s_addr;
sax.pppol2tp.addr.sin_port = peer_addr->sin_port; sax.pppol2tp.addr.sin_port = peer_addr->sin_port;
sax.pppol2tp.addr.sin_family = AF_INET; sax.pppol2tp.addr.sin_family = AF_INET;
sax.pppol2tp.s_tunnel = tunnel_id; sax.pppol2tp.s_tunnel = tunnel_id;
sax.pppol2tp.s_session = 0; /* special case: mgmt socket */ sax.pppol2tp.s_session = 0; /* special case: mgmt socket */
sax.pppol2tp.d_tunnel = 0; sax.pppol2tp.d_tunnel = 0;
sax.pppol2tp.d_session = 0; /* special case: mgmt socket */ sax.pppol2tp.d_session = 0; /* special case: mgmt socket */
if(connect(kernel_fd, (struct sockaddr *)&sax, sizeof(sax) ) < 0 ) { if(connect(kernel_fd, (struct sockaddr *)&sax, sizeof(sax) ) < 0 ) {
perror("connect failed"); perror("connect failed");
result = -errno; result = -errno;
goto err; goto err;
} }
} }
2. Create session PPPoX data socket 2. Create session PPPoX data socket::
struct sockaddr_pppol2tp sax; struct sockaddr_pppol2tp sax;
int fd; int fd;
/* Note, the target socket must be bound already, else it will not be ready */ /* Note, the target socket must be bound already, else it will not be ready */
sax.sa_family = AF_PPPOX; sax.sa_family = AF_PPPOX;
sax.sa_protocol = PX_PROTO_OL2TP; sax.sa_protocol = PX_PROTO_OL2TP;
sax.pppol2tp.fd = tunnel_fd; sax.pppol2tp.fd = tunnel_fd;
sax.pppol2tp.addr.sin_addr.s_addr = addr->sin_addr.s_addr; sax.pppol2tp.addr.sin_addr.s_addr = addr->sin_addr.s_addr;
sax.pppol2tp.addr.sin_port = addr->sin_port; sax.pppol2tp.addr.sin_port = addr->sin_port;
sax.pppol2tp.addr.sin_family = AF_INET; sax.pppol2tp.addr.sin_family = AF_INET;
sax.pppol2tp.s_tunnel = tunnel_id; sax.pppol2tp.s_tunnel = tunnel_id;
sax.pppol2tp.s_session = session_id; sax.pppol2tp.s_session = session_id;
sax.pppol2tp.d_tunnel = peer_tunnel_id; sax.pppol2tp.d_tunnel = peer_tunnel_id;
sax.pppol2tp.d_session = peer_session_id; sax.pppol2tp.d_session = peer_session_id;
/* session_fd is the fd of the session's PPPoL2TP socket. /* session_fd is the fd of the session's PPPoL2TP socket.
* tunnel_fd is the fd of the tunnel UDP socket. * tunnel_fd is the fd of the tunnel UDP socket.
*/ */
fd = connect(session_fd, (struct sockaddr *)&sax, sizeof(sax)); fd = connect(session_fd, (struct sockaddr *)&sax, sizeof(sax));
if (fd < 0 ) { if (fd < 0 ) {
return -errno; return -errno;
} }
return 0; return 0;
Internal Implementation Internal Implementation
======================= =======================
......
.. SPDX-License-Identifier: GPL-2.0
===========
LTPC Driver
===========
This is the ALPHA version of the ltpc driver. This is the ALPHA version of the ltpc driver.
In order to use it, you will need at least version 1.3.3 of the In order to use it, you will need at least version 1.3.3 of the
...@@ -15,7 +21,7 @@ yourself. (see "Card Configuration" below for how to determine or ...@@ -15,7 +21,7 @@ yourself. (see "Card Configuration" below for how to determine or
change the settings on your card) change the settings on your card)
When the driver is compiled into the kernel, you can add a line such When the driver is compiled into the kernel, you can add a line such
as the following to your /etc/lilo.conf: as the following to your /etc/lilo.conf::
append="ltpc=0x240,9,1" append="ltpc=0x240,9,1"
...@@ -25,13 +31,13 @@ the driver will try to determine them itself. ...@@ -25,13 +31,13 @@ the driver will try to determine them itself.
If you load the driver as a module, you can pass the parameters "io=", If you load the driver as a module, you can pass the parameters "io=",
"irq=", and "dma=" on the command line with insmod or modprobe, or add "irq=", and "dma=" on the command line with insmod or modprobe, or add
them as options in a configuration file in /etc/modprobe.d/ directory: them as options in a configuration file in /etc/modprobe.d/ directory::
alias lt0 ltpc # autoload the module when the interface is configured alias lt0 ltpc # autoload the module when the interface is configured
options ltpc io=0x240 irq=9 dma=1 options ltpc io=0x240 irq=9 dma=1
Before starting up the netatalk demons (perhaps in rc.local), you Before starting up the netatalk demons (perhaps in rc.local), you
need to add a line such as: need to add a line such as::
/sbin/ifconfig lt0 127.0.0.42 /sbin/ifconfig lt0 127.0.0.42
...@@ -42,7 +48,7 @@ The appropriate netatalk configuration depends on whether you are ...@@ -42,7 +48,7 @@ The appropriate netatalk configuration depends on whether you are
attached to a network that includes AppleTalk routers or not. If, attached to a network that includes AppleTalk routers or not. If,
like me, you are simply connecting to your home Macintoshes and like me, you are simply connecting to your home Macintoshes and
printers, you need to set up netatalk to "seed". The way I do this printers, you need to set up netatalk to "seed". The way I do this
is to have the lines is to have the lines::
dummy -seed -phase 2 -net 2000 -addr 2000.26 -zone "1033" dummy -seed -phase 2 -net 2000 -addr 2000.26 -zone "1033"
lt0 -seed -phase 1 -net 1033 -addr 1033.27 -zone "1033" lt0 -seed -phase 1 -net 1033 -addr 1033.27 -zone "1033"
...@@ -57,13 +63,13 @@ such. ...@@ -57,13 +63,13 @@ such.
If you are attached to an extended AppleTalk network, with routers on If you are attached to an extended AppleTalk network, with routers on
it, then you don't need to fool around with this -- the appropriate it, then you don't need to fool around with this -- the appropriate
line in atalkd.conf is line in atalkd.conf is::
lt0 -phase 1 lt0 -phase 1
--------------------------------------
Card Configuration: Card Configuration
==================
The interrupts and so forth are configured via the dipswitch on the The interrupts and so forth are configured via the dipswitch on the
board. Set the switches so as not to conflict with other hardware. board. Set the switches so as not to conflict with other hardware.
...@@ -73,26 +79,32 @@ board. Set the switches so as not to conflict with other hardware. ...@@ -73,26 +79,32 @@ board. Set the switches so as not to conflict with other hardware.
original documentation refers to IRQ2. Since you'll be running original documentation refers to IRQ2. Since you'll be running
this on an AT (or later) class machine, that really means IRQ9. this on an AT (or later) class machine, that really means IRQ9.
=== ===========================================================
SW1 IRQ 4 SW1 IRQ 4
SW2 IRQ 3 SW2 IRQ 3
SW3 IRQ 9 (2 in original card documentation only applies to XT) SW3 IRQ 9 (2 in original card documentation only applies to XT)
=== ===========================================================
DMA -- choose DMA 1 or 3, and set both corresponding switches. DMA -- choose DMA 1 or 3, and set both corresponding switches.
=== =====
SW4 DMA 3 SW4 DMA 3
SW5 DMA 1 SW5 DMA 1
SW6 DMA 3 SW6 DMA 3
SW7 DMA 1 SW7 DMA 1
=== =====
I/O address -- choose one. I/O address -- choose one.
=== =========
SW8 220 / 240 SW8 220 / 240
=== =========
--------------------------------------
IP: IP
==
Yes, it is possible to do IP over LocalTalk. However, you can't just Yes, it is possible to do IP over LocalTalk. However, you can't just
treat the LocalTalk device like an ordinary Ethernet device, even if treat the LocalTalk device like an ordinary Ethernet device, even if
...@@ -102,9 +114,9 @@ Instead, you follow the same procedure as for doing IP in EtherTalk. ...@@ -102,9 +114,9 @@ Instead, you follow the same procedure as for doing IP in EtherTalk.
See Documentation/networking/ipddp.rst for more information about the See Documentation/networking/ipddp.rst for more information about the
kernel driver and userspace tools needed. kernel driver and userspace tools needed.
--------------------------------------
BUGS: Bugs
====
IRQ autoprobing often doesn't work on a cold boot. To get around IRQ autoprobing often doesn't work on a cold boot. To get around
this, either compile the driver as a module, or pass the parameters this, either compile the driver as a module, or pass the parameters
...@@ -120,12 +132,13 @@ It may theoretically be possible to use two LTPC cards in the same ...@@ -120,12 +132,13 @@ It may theoretically be possible to use two LTPC cards in the same
machine, but this is unsupported, so if you really want to do this, machine, but this is unsupported, so if you really want to do this,
you'll probably have to hack the initialization code a bit. you'll probably have to hack the initialization code a bit.
______________________________________
THANKS: Thanks
Thanks to Alan Cox for helpful discussions early on in this ======
Thanks to Alan Cox for helpful discussions early on in this
work, and to Denis Hainsworth for doing the bleeding-edge testing. work, and to Denis Hainsworth for doing the bleeding-edge testing.
-- Bradford Johnson <bradford@math.umn.edu> Bradford Johnson <bradford@math.umn.edu>
-- Updated 11/09/1998 by David Huggins-Daines <dhd@debian.org> Updated 11/09/1998 by David Huggins-Daines <dhd@debian.org>
.. SPDX-License-Identifier: GPL-2.0
=========================================
How to use packet injection with mac80211 How to use packet injection with mac80211
========================================= =========================================
mac80211 now allows arbitrary packets to be injected down any Monitor Mode mac80211 now allows arbitrary packets to be injected down any Monitor Mode
interface from userland. The packet you inject needs to be composed in the interface from userland. The packet you inject needs to be composed in the
following format: following format::
[ radiotap header ] [ radiotap header ]
[ ieee80211 header ] [ ieee80211 header ]
[ payload ] [ payload ]
The radiotap format is discussed in The radiotap format is discussed in
./Documentation/networking/radiotap-headers.txt. ./Documentation/networking/radiotap-headers.rst.
Despite many radiotap parameters being currently defined, most only make sense Despite many radiotap parameters being currently defined, most only make sense
to appear on received packets. The following information is parsed from the to appear on received packets. The following information is parsed from the
...@@ -18,15 +21,19 @@ radiotap headers and used to control injection: ...@@ -18,15 +21,19 @@ radiotap headers and used to control injection:
* IEEE80211_RADIOTAP_FLAGS * IEEE80211_RADIOTAP_FLAGS
IEEE80211_RADIOTAP_F_FCS: FCS will be removed and recalculated ========================= ===========================================
IEEE80211_RADIOTAP_F_WEP: frame will be encrypted if key available IEEE80211_RADIOTAP_F_FCS FCS will be removed and recalculated
IEEE80211_RADIOTAP_F_FRAG: frame will be fragmented if longer than the IEEE80211_RADIOTAP_F_WEP frame will be encrypted if key available
IEEE80211_RADIOTAP_F_FRAG frame will be fragmented if longer than the
current fragmentation threshold. current fragmentation threshold.
========================= ===========================================
* IEEE80211_RADIOTAP_TX_FLAGS * IEEE80211_RADIOTAP_TX_FLAGS
IEEE80211_RADIOTAP_F_TX_NOACK: frame should be sent without waiting for ============================= ========================================
IEEE80211_RADIOTAP_F_TX_NOACK frame should be sent without waiting for
an ACK even if it is a unicast frame an ACK even if it is a unicast frame
============================= ========================================
* IEEE80211_RADIOTAP_RATE * IEEE80211_RADIOTAP_RATE
...@@ -37,8 +44,10 @@ radiotap headers and used to control injection: ...@@ -37,8 +44,10 @@ radiotap headers and used to control injection:
HT rate for the transmission (only for devices without own rate control). HT rate for the transmission (only for devices without own rate control).
Also some flags are parsed Also some flags are parsed
IEEE80211_RADIOTAP_MCS_SGI: use short guard interval ============================ ========================
IEEE80211_RADIOTAP_MCS_BW_40: send in HT40 mode IEEE80211_RADIOTAP_MCS_SGI use short guard interval
IEEE80211_RADIOTAP_MCS_BW_40 send in HT40 mode
============================ ========================
* IEEE80211_RADIOTAP_DATA_RETRIES * IEEE80211_RADIOTAP_DATA_RETRIES
...@@ -51,17 +60,17 @@ radiotap headers and used to control injection: ...@@ -51,17 +60,17 @@ radiotap headers and used to control injection:
without own rate control). Also other fields are parsed without own rate control). Also other fields are parsed
flags field flags field
IEEE80211_RADIOTAP_VHT_FLAG_SGI: use short guard interval IEEE80211_RADIOTAP_VHT_FLAG_SGI: use short guard interval
bandwidth field bandwidth field
1: send using 40MHz channel width * 1: send using 40MHz channel width
4: send using 80MHz channel width * 4: send using 80MHz channel width
11: send using 160MHz channel width * 11: send using 160MHz channel width
The injection code can also skip all other currently defined radiotap fields The injection code can also skip all other currently defined radiotap fields
facilitating replay of captured radiotap headers directly. facilitating replay of captured radiotap headers directly.
Here is an example valid radiotap header defining some parameters Here is an example valid radiotap header defining some parameters::
0x00, 0x00, // <-- radiotap version 0x00, 0x00, // <-- radiotap version
0x0b, 0x00, // <- radiotap header length 0x0b, 0x00, // <- radiotap header length
...@@ -71,7 +80,7 @@ Here is an example valid radiotap header defining some parameters ...@@ -71,7 +80,7 @@ Here is an example valid radiotap header defining some parameters
0x01 //<-- antenna 0x01 //<-- antenna
The ieee80211 header follows immediately afterwards, looking for example like The ieee80211 header follows immediately afterwards, looking for example like
this: this::
0x08, 0x01, 0x00, 0x00, 0x08, 0x01, 0x00, 0x00,
0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF,
...@@ -84,10 +93,10 @@ Then lastly there is the payload. ...@@ -84,10 +93,10 @@ Then lastly there is the payload.
After composing the packet contents, it is sent by send()-ing it to a logical After composing the packet contents, it is sent by send()-ing it to a logical
mac80211 interface that is in Monitor mode. Libpcap can also be used, mac80211 interface that is in Monitor mode. Libpcap can also be used,
(which is easier than doing the work to bind the socket to the right (which is easier than doing the work to bind the socket to the right
interface), along the following lines: interface), along the following lines:::
ppcap = pcap_open_live(szInterfaceName, 800, 1, 20, szErrbuf); ppcap = pcap_open_live(szInterfaceName, 800, 1, 20, szErrbuf);
... ...
r = pcap_inject(ppcap, u8aSendBuffer, nLength); r = pcap_inject(ppcap, u8aSendBuffer, nLength);
You can also find a link to a complete inject application here: You can also find a link to a complete inject application here:
......
.. SPDX-License-Identifier: GPL-2.0
====================
MPLS Sysfs variables
====================
/proc/sys/net/mpls/* Variables: /proc/sys/net/mpls/* Variables:
===============================
platform_labels - INTEGER platform_labels - INTEGER
Number of entries in the platform label table. It is not Number of entries in the platform label table. It is not
...@@ -17,6 +24,7 @@ platform_labels - INTEGER ...@@ -17,6 +24,7 @@ platform_labels - INTEGER
no longer fit in the table. no longer fit in the table.
Possible values: 0 - 1048575 Possible values: 0 - 1048575
Default: 0 Default: 0
ip_ttl_propagate - BOOL ip_ttl_propagate - BOOL
...@@ -27,8 +35,8 @@ ip_ttl_propagate - BOOL ...@@ -27,8 +35,8 @@ ip_ttl_propagate - BOOL
If disabled, the MPLS transport network will appear as a If disabled, the MPLS transport network will appear as a
single hop to transit traffic. single hop to transit traffic.
0 - disabled / RFC 3443 [Short] Pipe Model * 0 - disabled / RFC 3443 [Short] Pipe Model
1 - enabled / RFC 3443 Uniform Model (default) * 1 - enabled / RFC 3443 Uniform Model (default)
default_ttl - INTEGER default_ttl - INTEGER
Default TTL value to use for MPLS packets where it cannot be Default TTL value to use for MPLS packets where it cannot be
...@@ -36,6 +44,7 @@ default_ttl - INTEGER ...@@ -36,6 +44,7 @@ default_ttl - INTEGER
or ip_ttl_propagate has been disabled. or ip_ttl_propagate has been disabled.
Possible values: 1 - 255 Possible values: 1 - 255
Default: 255 Default: 255
conf/<interface>/input - BOOL conf/<interface>/input - BOOL
...@@ -44,5 +53,5 @@ conf/<interface>/input - BOOL ...@@ -44,5 +53,5 @@ conf/<interface>/input - BOOL
If disabled, packets will be discarded without further If disabled, packets will be discarded without further
processing. processing.
0 - disabled (default) * 0 - disabled (default)
not 0 - enabled * not 0 - enabled
.. SPDX-License-Identifier: GPL-2.0
HOWTO for multiqueue network device support ===========================================
=========================================== HOWTO for multiqueue network device support
===========================================
Section 1: Base driver requirements for implementing multiqueue support Section 1: Base driver requirements for implementing multiqueue support
=======================================================================
Intro: Kernel support for multiqueue devices Intro: Kernel support for multiqueue devices
--------------------------------------------------------- ---------------------------------------------------------
Kernel support for multiqueue devices is always present. Kernel support for multiqueue devices is always present.
Section 1: Base driver requirements for implementing multiqueue support
-----------------------------------------------------------------------
Base drivers are required to use the new alloc_etherdev_mq() or Base drivers are required to use the new alloc_etherdev_mq() or
alloc_netdev_mq() functions to allocate the subqueues for the device. The alloc_netdev_mq() functions to allocate the subqueues for the device. The
underlying kernel API will take care of the allocation and deallocation of underlying kernel API will take care of the allocation and deallocation of
...@@ -26,8 +26,7 @@ comes online or when it's completely shut down (unregister_netdev(), etc.). ...@@ -26,8 +26,7 @@ comes online or when it's completely shut down (unregister_netdev(), etc.).
Section 2: Qdisc support for multiqueue devices Section 2: Qdisc support for multiqueue devices
===============================================
-----------------------------------------------
Currently two qdiscs are optimized for multiqueue devices. The first is the Currently two qdiscs are optimized for multiqueue devices. The first is the
default pfifo_fast qdisc. This qdisc supports one qdisc per hardware queue. default pfifo_fast qdisc. This qdisc supports one qdisc per hardware queue.
...@@ -46,22 +45,22 @@ will be queued to the band associated with the hardware queue. ...@@ -46,22 +45,22 @@ will be queued to the band associated with the hardware queue.
Section 3: Brief howto using MULTIQ for multiqueue devices Section 3: Brief howto using MULTIQ for multiqueue devices
--------------------------------------------------------------- ==========================================================
The userspace command 'tc,' part of the iproute2 package, is used to configure The userspace command 'tc,' part of the iproute2 package, is used to configure
qdiscs. To add the MULTIQ qdisc to your network device, assuming the device qdiscs. To add the MULTIQ qdisc to your network device, assuming the device
is called eth0, run the following command: is called eth0, run the following command::
# tc qdisc add dev eth0 root handle 1: multiq # tc qdisc add dev eth0 root handle 1: multiq
The qdisc will allocate the number of bands to equal the number of queues that The qdisc will allocate the number of bands to equal the number of queues that
the device reports, and bring the qdisc online. Assuming eth0 has 4 Tx the device reports, and bring the qdisc online. Assuming eth0 has 4 Tx
queues, the band mapping would look like: queues, the band mapping would look like::
band 0 => queue 0 band 0 => queue 0
band 1 => queue 1 band 1 => queue 1
band 2 => queue 2 band 2 => queue 2
band 3 => queue 3 band 3 => queue 3
Traffic will begin flowing through each queue based on either the simple_tx_hash Traffic will begin flowing through each queue based on either the simple_tx_hash
function or based on netdev->select_queue() if you have it defined. function or based on netdev->select_queue() if you have it defined.
...@@ -69,11 +68,11 @@ function or based on netdev->select_queue() if you have it defined. ...@@ -69,11 +68,11 @@ function or based on netdev->select_queue() if you have it defined.
The behavior of tc filters remains the same. However a new tc action, The behavior of tc filters remains the same. However a new tc action,
skbedit, has been added. Assuming you wanted to route all traffic to a skbedit, has been added. Assuming you wanted to route all traffic to a
specific host, for example 192.168.0.3, through a specific queue you could use specific host, for example 192.168.0.3, through a specific queue you could use
this action and establish a filter such as: this action and establish a filter such as::
tc filter add dev eth0 parent 1: protocol ip prio 1 u32 \ tc filter add dev eth0 parent 1: protocol ip prio 1 u32 \
match ip dst 192.168.0.3 \ match ip dst 192.168.0.3 \
action skbedit queue_mapping 3 action skbedit queue_mapping 3
Author: Alexander Duyck <alexander.h.duyck@intel.com> :Author: Alexander Duyck <alexander.h.duyck@intel.com>
Original Author: Peter P. Waskiewicz Jr. <peter.p.waskiewicz.jr@intel.com> :Original Author: Peter P. Waskiewicz Jr. <peter.p.waskiewicz.jr@intel.com>
.. SPDX-License-Identifier: GPL-2.0
==========
Netconsole
==========
started by Ingo Molnar <mingo@redhat.com>, 2001.09.17 started by Ingo Molnar <mingo@redhat.com>, 2001.09.17
2.6 port and netpoll api by Matt Mackall <mpm@selenic.com>, Sep 9 2003 2.6 port and netpoll api by Matt Mackall <mpm@selenic.com>, Sep 9 2003
IPv6 support by Cong Wang <xiyou.wangcong@gmail.com>, Jan 1 2013 IPv6 support by Cong Wang <xiyou.wangcong@gmail.com>, Jan 1 2013
Extended console support by Tejun Heo <tj@kernel.org>, May 1 2015 Extended console support by Tejun Heo <tj@kernel.org>, May 1 2015
Please send bug reports to Matt Mackall <mpm@selenic.com> Please send bug reports to Matt Mackall <mpm@selenic.com>
...@@ -23,34 +32,34 @@ Sender and receiver configuration: ...@@ -23,34 +32,34 @@ Sender and receiver configuration:
================================== ==================================
It takes a string configuration parameter "netconsole" in the It takes a string configuration parameter "netconsole" in the
following format: following format::
netconsole=[+][src-port]@[src-ip]/[<dev>],[tgt-port]@<tgt-ip>/[tgt-macaddr] netconsole=[+][src-port]@[src-ip]/[<dev>],[tgt-port]@<tgt-ip>/[tgt-macaddr]
where where
+ if present, enable extended console support + if present, enable extended console support
src-port source for UDP packets (defaults to 6665) src-port source for UDP packets (defaults to 6665)
src-ip source IP to use (interface address) src-ip source IP to use (interface address)
dev network interface (eth0) dev network interface (eth0)
tgt-port port for logging agent (6666) tgt-port port for logging agent (6666)
tgt-ip IP address for logging agent tgt-ip IP address for logging agent
tgt-macaddr ethernet MAC address for logging agent (broadcast) tgt-macaddr ethernet MAC address for logging agent (broadcast)
Examples: Examples::
linux netconsole=4444@10.0.0.1/eth1,9353@10.0.0.2/12:34:56:78:9a:bc linux netconsole=4444@10.0.0.1/eth1,9353@10.0.0.2/12:34:56:78:9a:bc
or or::
insmod netconsole netconsole=@/,@10.0.0.2/ insmod netconsole netconsole=@/,@10.0.0.2/
or using IPv6 or using IPv6::
insmod netconsole netconsole=@/,@fd00:1:2:3::1/ insmod netconsole netconsole=@/,@fd00:1:2:3::1/
It also supports logging to multiple remote agents by specifying It also supports logging to multiple remote agents by specifying
parameters for the multiple agents separated by semicolons and the parameters for the multiple agents separated by semicolons and the
complete string enclosed in "quotes", thusly: complete string enclosed in "quotes", thusly::
modprobe netconsole netconsole="@/,@10.0.0.2/;@/eth1,6892@10.0.0.3/" modprobe netconsole netconsole="@/,@10.0.0.2/;@/eth1,6892@10.0.0.3/"
...@@ -67,14 +76,19 @@ for example: ...@@ -67,14 +76,19 @@ for example:
On distributions using a BSD-based netcat version (e.g. Fedora, On distributions using a BSD-based netcat version (e.g. Fedora,
openSUSE and Ubuntu) the listening port must be specified without openSUSE and Ubuntu) the listening port must be specified without
the -p switch: the -p switch::
nc -u -l -p <port>' / 'nc -u -l <port>
or::
'nc -u -l -p <port>' / 'nc -u -l <port>' or netcat -u -l -p <port>' / 'netcat -u -l <port>
'netcat -u -l -p <port>' / 'netcat -u -l <port>'
3) socat 3) socat
'socat udp-recv:<port> -' ::
socat udp-recv:<port> -
Dynamic reconfiguration: Dynamic reconfiguration:
======================== ========================
...@@ -92,7 +106,7 @@ netconsole module (or kernel, if netconsole is built-in). ...@@ -92,7 +106,7 @@ netconsole module (or kernel, if netconsole is built-in).
Some examples follow (where configfs is mounted at the /sys/kernel/config Some examples follow (where configfs is mounted at the /sys/kernel/config
mountpoint). mountpoint).
To add a remote logging target (target names can be arbitrary): To add a remote logging target (target names can be arbitrary)::
cd /sys/kernel/config/netconsole/ cd /sys/kernel/config/netconsole/
mkdir target1 mkdir target1
...@@ -102,12 +116,13 @@ above) and are disabled by default -- they must first be enabled by writing ...@@ -102,12 +116,13 @@ above) and are disabled by default -- they must first be enabled by writing
"1" to the "enabled" attribute (usually after setting parameters accordingly) "1" to the "enabled" attribute (usually after setting parameters accordingly)
as described below. as described below.
To remove a target: To remove a target::
rmdir /sys/kernel/config/netconsole/othertarget/ rmdir /sys/kernel/config/netconsole/othertarget/
The interface exposes these parameters of a netconsole target to userspace: The interface exposes these parameters of a netconsole target to userspace:
============== ================================= ============
enabled Is this target currently enabled? (read-write) enabled Is this target currently enabled? (read-write)
extended Extended mode enabled (read-write) extended Extended mode enabled (read-write)
dev_name Local network interface name (read-write) dev_name Local network interface name (read-write)
...@@ -117,12 +132,13 @@ The interface exposes these parameters of a netconsole target to userspace: ...@@ -117,12 +132,13 @@ The interface exposes these parameters of a netconsole target to userspace:
remote_ip Remote agent's IP address (read-write) remote_ip Remote agent's IP address (read-write)
local_mac Local interface's MAC address (read-only) local_mac Local interface's MAC address (read-only)
remote_mac Remote agent's MAC address (read-write) remote_mac Remote agent's MAC address (read-write)
============== ================================= ============
The "enabled" attribute is also used to control whether the parameters of The "enabled" attribute is also used to control whether the parameters of
a target can be updated or not -- you can modify the parameters of only a target can be updated or not -- you can modify the parameters of only
disabled targets (i.e. if "enabled" is 0). disabled targets (i.e. if "enabled" is 0).
To update a target's parameters: To update a target's parameters::
cat enabled # check if enabled is 1 cat enabled # check if enabled is 1
echo 0 > enabled # disable the target (if required) echo 0 > enabled # disable the target (if required)
...@@ -140,12 +156,12 @@ Extended console: ...@@ -140,12 +156,12 @@ Extended console:
If '+' is prefixed to the configuration line or "extended" config file If '+' is prefixed to the configuration line or "extended" config file
is set to 1, extended console support is enabled. An example boot is set to 1, extended console support is enabled. An example boot
param follows. param follows::
linux netconsole=+4444@10.0.0.1/eth1,9353@10.0.0.2/12:34:56:78:9a:bc linux netconsole=+4444@10.0.0.1/eth1,9353@10.0.0.2/12:34:56:78:9a:bc
Log messages are transmitted with extended metadata header in the Log messages are transmitted with extended metadata header in the
following format which is the same as /dev/kmsg. following format which is the same as /dev/kmsg::
<level>,<sequnum>,<timestamp>,<contflag>;<message text> <level>,<sequnum>,<timestamp>,<contflag>;<message text>
...@@ -155,12 +171,12 @@ newline is used as the delimeter. ...@@ -155,12 +171,12 @@ newline is used as the delimeter.
If a message doesn't fit in certain number of bytes (currently 1000), If a message doesn't fit in certain number of bytes (currently 1000),
the message is split into multiple fragments by netconsole. These the message is split into multiple fragments by netconsole. These
fragments are transmitted with "ncfrag" header field added. fragments are transmitted with "ncfrag" header field added::
ncfrag=<byte-offset>/<total-bytes> ncfrag=<byte-offset>/<total-bytes>
For example, assuming a lot smaller chunk size, a message "the first For example, assuming a lot smaller chunk size, a message "the first
chunk, the 2nd chunk." may be split as follows. chunk, the 2nd chunk." may be split as follows::
6,416,1758426,-,ncfrag=0/31;the first chunk, 6,416,1758426,-,ncfrag=0/31;the first chunk,
6,416,1758426,-,ncfrag=16/31; the 2nd chunk. 6,416,1758426,-,ncfrag=16/31; the 2nd chunk.
...@@ -168,39 +184,52 @@ chunk, the 2nd chunk." may be split as follows. ...@@ -168,39 +184,52 @@ chunk, the 2nd chunk." may be split as follows.
Miscellaneous notes: Miscellaneous notes:
==================== ====================
WARNING: the default target ethernet setting uses the broadcast .. Warning::
ethernet address to send packets, which can cause increased load on
other systems on the same ethernet segment. the default target ethernet setting uses the broadcast
ethernet address to send packets, which can cause increased load on
other systems on the same ethernet segment.
.. Tip::
some LAN switches may be configured to suppress ethernet broadcasts
so it is advised to explicitly specify the remote agents' MAC addresses
from the config parameters passed to netconsole.
.. Tip::
to find out the MAC address of, say, 10.0.0.2, you may try using::
ping -c 1 10.0.0.2 ; /sbin/arp -n | grep 10.0.0.2
TIP: some LAN switches may be configured to suppress ethernet broadcasts .. Tip::
so it is advised to explicitly specify the remote agents' MAC addresses
from the config parameters passed to netconsole.
TIP: to find out the MAC address of, say, 10.0.0.2, you may try using: in case the remote logging agent is on a separate LAN subnet than
the sender, it is suggested to try specifying the MAC address of the
default gateway (you may use /sbin/route -n to find it out) as the
remote MAC address instead.
ping -c 1 10.0.0.2 ; /sbin/arp -n | grep 10.0.0.2 .. note::
TIP: in case the remote logging agent is on a separate LAN subnet than the network device (eth1 in the above case) can run any kind
the sender, it is suggested to try specifying the MAC address of the of other network traffic, netconsole is not intrusive. Netconsole
default gateway (you may use /sbin/route -n to find it out) as the might cause slight delays in other traffic if the volume of kernel
remote MAC address instead. messages is high, but should have no other impact.
NOTE: the network device (eth1 in the above case) can run any kind .. note::
of other network traffic, netconsole is not intrusive. Netconsole
might cause slight delays in other traffic if the volume of kernel
messages is high, but should have no other impact.
NOTE: if you find that the remote logging agent is not receiving or if you find that the remote logging agent is not receiving or
printing all messages from the sender, it is likely that you have set printing all messages from the sender, it is likely that you have set
the "console_loglevel" parameter (on the sender) to only send high the "console_loglevel" parameter (on the sender) to only send high
priority messages to the console. You can change this at runtime using: priority messages to the console. You can change this at runtime using::
dmesg -n 8 dmesg -n 8
or by specifying "debug" on the kernel command line at boot, to send or by specifying "debug" on the kernel command line at boot, to send
all kernel messages to the console. A specific value for this parameter all kernel messages to the console. A specific value for this parameter
can also be set using the "loglevel" kernel boot option. See the can also be set using the "loglevel" kernel boot option. See the
dmesg(8) man page and Documentation/admin-guide/kernel-parameters.rst for details. dmesg(8) man page and Documentation/admin-guide/kernel-parameters.rst
for details.
Netconsole was designed to be as instantaneous as possible, to Netconsole was designed to be as instantaneous as possible, to
enable the logging of even the most critical kernel bugs. It works enable the logging of even the most critical kernel bugs. It works
......
.. SPDX-License-Identifier: GPL-2.0
=====================================================
Netdev features mess and how to get out from it alive Netdev features mess and how to get out from it alive
===================================================== =====================================================
...@@ -6,8 +9,8 @@ Author: ...@@ -6,8 +9,8 @@ Author:
Part I: Feature sets Part I: Feature sets
====================== ====================
Long gone are the days when a network card would just take and give packets Long gone are the days when a network card would just take and give packets
verbatim. Today's devices add multiple features and bugs (read: offloads) verbatim. Today's devices add multiple features and bugs (read: offloads)
...@@ -39,8 +42,8 @@ one used internally by network core: ...@@ -39,8 +42,8 @@ one used internally by network core:
Part II: Controlling enabled features Part II: Controlling enabled features
======================================= =====================================
When current feature set (netdev->features) is to be changed, new set When current feature set (netdev->features) is to be changed, new set
is calculated and filtered by calling ndo_fix_features callback is calculated and filtered by calling ndo_fix_features callback
...@@ -65,8 +68,8 @@ driver except by means of ndo_fix_features callback. ...@@ -65,8 +68,8 @@ driver except by means of ndo_fix_features callback.
Part III: Implementation hints Part III: Implementation hints
================================ ==============================
* ndo_fix_features: * ndo_fix_features:
...@@ -94,8 +97,8 @@ Errors returned are not (and cannot be) propagated anywhere except dmesg. ...@@ -94,8 +97,8 @@ Errors returned are not (and cannot be) propagated anywhere except dmesg.
Part IV: Features Part IV: Features
=================== =================
For current list of features, see include/linux/netdev_features.h. For current list of features, see include/linux/netdev_features.h.
This section describes semantics of some of them. This section describes semantics of some of them.
......
.. SPDX-License-Identifier: GPL-2.0
=====================================
Network Devices, the Kernel, and You! Network Devices, the Kernel, and You!
=====================================
Introduction Introduction
...@@ -75,11 +78,12 @@ ndo_start_xmit: ...@@ -75,11 +78,12 @@ ndo_start_xmit:
Don't use it for new drivers. Don't use it for new drivers.
Context: Process with BHs disabled or BH (timer), Context: Process with BHs disabled or BH (timer),
will be called with interrupts disabled by netconsole. will be called with interrupts disabled by netconsole.
Return codes: Return codes:
o NETDEV_TX_OK everything ok.
o NETDEV_TX_BUSY Cannot transmit packet, try later * NETDEV_TX_OK everything ok.
* NETDEV_TX_BUSY Cannot transmit packet, try later
Usually a bug, means queue start/stop flow control is broken in Usually a bug, means queue start/stop flow control is broken in
the driver. Note: the driver must NOT put the skb in its DMA ring. the driver. Note: the driver must NOT put the skb in its DMA ring.
...@@ -95,10 +99,13 @@ ndo_set_rx_mode: ...@@ -95,10 +99,13 @@ ndo_set_rx_mode:
struct napi_struct synchronization rules struct napi_struct synchronization rules
======================================== ========================================
napi->poll: napi->poll:
Synchronization: NAPI_STATE_SCHED bit in napi->state. Device Synchronization:
NAPI_STATE_SCHED bit in napi->state. Device
driver's ndo_stop method will invoke napi_disable() on driver's ndo_stop method will invoke napi_disable() on
all NAPI instances which will do a sleeping poll on the all NAPI instances which will do a sleeping poll on the
NAPI_STATE_SCHED napi->state bit, waiting for all pending NAPI_STATE_SCHED napi->state bit, waiting for all pending
NAPI activity to cease. NAPI activity to cease.
Context: softirq
will be called with interrupts disabled by netconsole. Context:
softirq
will be called with interrupts disabled by netconsole.
.. SPDX-License-Identifier: GPL-2.0
=========================
Netfilter Sysfs variables
=========================
/proc/sys/net/netfilter/* Variables: /proc/sys/net/netfilter/* Variables:
====================================
nf_log_all_netns - BOOLEAN nf_log_all_netns - BOOLEAN
0 - disabled (default) - 0 - disabled (default)
not 0 - enabled - not 0 - enabled
By default, only init_net namespace can log packets into kernel log By default, only init_net namespace can log packets into kernel log
with LOG target; this aims to prevent containers from flooding host with LOG target; this aims to prevent containers from flooding host
......
.. SPDX-License-Identifier: GPL-2.0
________________ ===============
NETIF Msg Level NETIF Msg Level
===============
The design of the network interface message level setting. The design of the network interface message level setting.
History History
-------
The design of the debugging message interface was guided and The design of the debugging message interface was guided and
constrained by backwards compatibility previous practice. It is useful constrained by backwards compatibility previous practice. It is useful
...@@ -18,14 +21,15 @@ History ...@@ -18,14 +21,15 @@ History
The message level was not precisely defined past level 3, but were The message level was not precisely defined past level 3, but were
always implemented within +-1 of the specified level. Drivers tended always implemented within +-1 of the specified level. Drivers tended
to shed the more verbose level messages as they matured. to shed the more verbose level messages as they matured.
0 Minimal messages, only essential information on fatal errors.
1 Standard messages, initialization status. No run-time messages - 0 Minimal messages, only essential information on fatal errors.
2 Special media selection messages, generally timer-driver. - 1 Standard messages, initialization status. No run-time messages
3 Interface starts and stops, including normal status messages - 2 Special media selection messages, generally timer-driver.
4 Tx and Rx frame error messages, and abnormal driver operation - 3 Interface starts and stops, including normal status messages
5 Tx packet queue information, interrupt events. - 4 Tx and Rx frame error messages, and abnormal driver operation
6 Status on each completed Tx packet and received Rx packets - 5 Tx packet queue information, interrupt events.
7 Initial contents of Tx and Rx packets - 6 Status on each completed Tx packet and received Rx packets
- 7 Initial contents of Tx and Rx packets
Initially this message level variable was uniquely named in each driver Initially this message level variable was uniquely named in each driver
e.g. "lance_debug", so that a kernel symbolic debugger could locate and e.g. "lance_debug", so that a kernel symbolic debugger could locate and
...@@ -36,44 +40,56 @@ History ...@@ -36,44 +40,56 @@ History
This approach worked well. However there is always a demand for This approach worked well. However there is always a demand for
additional features. Over the years the following emerged as additional features. Over the years the following emerged as
reasonable and easily implemented enhancements reasonable and easily implemented enhancements
Using an ioctl() call to modify the level.
Per-interface rather than per-driver message level setting. - Using an ioctl() call to modify the level.
More selective control over the type of messages emitted. - Per-interface rather than per-driver message level setting.
- More selective control over the type of messages emitted.
The netif_msg recommendation adds these features with only a minor The netif_msg recommendation adds these features with only a minor
complexity and code size increase. complexity and code size increase.
The recommendation is the following points The recommendation is the following points
Retaining the per-driver integer variable "debug" as a module
- Retaining the per-driver integer variable "debug" as a module
parameter with a default level of '1'. parameter with a default level of '1'.
Adding a per-interface private variable named "msg_enable". The - Adding a per-interface private variable named "msg_enable". The
variable is a bit map rather than a level, and is initialized as variable is a bit map rather than a level, and is initialized as::
1 << debug 1 << debug
Or more precisely
debug < 0 ? 0 : 1 << min(sizeof(int)-1, debug)
Messages should changes from Or more precisely::
debug < 0 ? 0 : 1 << min(sizeof(int)-1, debug)
Messages should changes from::
if (debug > 1) if (debug > 1)
printk(MSG_DEBUG "%s: ... printk(MSG_DEBUG "%s: ...
to
to::
if (np->msg_enable & NETIF_MSG_LINK) if (np->msg_enable & NETIF_MSG_LINK)
printk(MSG_DEBUG "%s: ... printk(MSG_DEBUG "%s: ...
The set of message levels is named The set of message levels is named
Old level Name Bit position
0 NETIF_MSG_DRV 0x0001
1 NETIF_MSG_PROBE 0x0002
2 NETIF_MSG_LINK 0x0004
2 NETIF_MSG_TIMER 0x0004
3 NETIF_MSG_IFDOWN 0x0008
3 NETIF_MSG_IFUP 0x0008
4 NETIF_MSG_RX_ERR 0x0010
4 NETIF_MSG_TX_ERR 0x0010
5 NETIF_MSG_TX_QUEUED 0x0020
5 NETIF_MSG_INTR 0x0020
6 NETIF_MSG_TX_DONE 0x0040
6 NETIF_MSG_RX_STATUS 0x0040
7 NETIF_MSG_PKTDATA 0x0080
========= =================== ============
Old level Name Bit position
========= =================== ============
0 NETIF_MSG_DRV 0x0001
1 NETIF_MSG_PROBE 0x0002
2 NETIF_MSG_LINK 0x0004
2 NETIF_MSG_TIMER 0x0004
3 NETIF_MSG_IFDOWN 0x0008
3 NETIF_MSG_IFUP 0x0008
4 NETIF_MSG_RX_ERR 0x0010
4 NETIF_MSG_TX_ERR 0x0010
5 NETIF_MSG_TX_QUEUED 0x0020
5 NETIF_MSG_INTR 0x0020
6 NETIF_MSG_TX_DONE 0x0040
6 NETIF_MSG_RX_STATUS 0x0040
7 NETIF_MSG_PKTDATA 0x0080
========= =================== ============
.. SPDX-License-Identifier: GPL-2.0
===================================
Netfilter Conntrack Sysfs variables
===================================
/proc/sys/net/netfilter/nf_conntrack_* Variables: /proc/sys/net/netfilter/nf_conntrack_* Variables:
=================================================
nf_conntrack_acct - BOOLEAN nf_conntrack_acct - BOOLEAN
0 - disabled (default) - 0 - disabled (default)
not 0 - enabled - not 0 - enabled
Enable connection tracking flow accounting. 64-bit byte and packet Enable connection tracking flow accounting. 64-bit byte and packet
counters per flow are added. counters per flow are added.
...@@ -16,8 +23,8 @@ nf_conntrack_buckets - INTEGER ...@@ -16,8 +23,8 @@ nf_conntrack_buckets - INTEGER
This sysctl is only writeable in the initial net namespace. This sysctl is only writeable in the initial net namespace.
nf_conntrack_checksum - BOOLEAN nf_conntrack_checksum - BOOLEAN
0 - disabled - 0 - disabled
not 0 - enabled (default) - not 0 - enabled (default)
Verify checksum of incoming packets. Packets with bad checksums are Verify checksum of incoming packets. Packets with bad checksums are
in INVALID state. If this is enabled, such packets will not be in INVALID state. If this is enabled, such packets will not be
...@@ -27,8 +34,8 @@ nf_conntrack_count - INTEGER (read-only) ...@@ -27,8 +34,8 @@ nf_conntrack_count - INTEGER (read-only)
Number of currently allocated flow entries. Number of currently allocated flow entries.
nf_conntrack_events - BOOLEAN nf_conntrack_events - BOOLEAN
0 - disabled - 0 - disabled
not 0 - enabled (default) - not 0 - enabled (default)
If this option is enabled, the connection tracking code will If this option is enabled, the connection tracking code will
provide userspace with connection tracking events via ctnetlink. provide userspace with connection tracking events via ctnetlink.
...@@ -62,8 +69,8 @@ nf_conntrack_generic_timeout - INTEGER (seconds) ...@@ -62,8 +69,8 @@ nf_conntrack_generic_timeout - INTEGER (seconds)
protocols. protocols.
nf_conntrack_helper - BOOLEAN nf_conntrack_helper - BOOLEAN
0 - disabled (default) - 0 - disabled (default)
not 0 - enabled - not 0 - enabled
Enable automatic conntrack helper assignment. Enable automatic conntrack helper assignment.
If disabled it is required to set up iptables rules to assign If disabled it is required to set up iptables rules to assign
...@@ -81,14 +88,14 @@ nf_conntrack_icmpv6_timeout - INTEGER (seconds) ...@@ -81,14 +88,14 @@ nf_conntrack_icmpv6_timeout - INTEGER (seconds)
Default for ICMP6 timeout. Default for ICMP6 timeout.
nf_conntrack_log_invalid - INTEGER nf_conntrack_log_invalid - INTEGER
0 - disable (default) - 0 - disable (default)
1 - log ICMP packets - 1 - log ICMP packets
6 - log TCP packets - 6 - log TCP packets
17 - log UDP packets - 17 - log UDP packets
33 - log DCCP packets - 33 - log DCCP packets
41 - log ICMPv6 packets - 41 - log ICMPv6 packets
136 - log UDPLITE packets - 136 - log UDPLITE packets
255 - log packets of any protocol - 255 - log packets of any protocol
Log invalid packets of a type specified by value. Log invalid packets of a type specified by value.
...@@ -97,15 +104,15 @@ nf_conntrack_max - INTEGER ...@@ -97,15 +104,15 @@ nf_conntrack_max - INTEGER
nf_conntrack_buckets value * 4. nf_conntrack_buckets value * 4.
nf_conntrack_tcp_be_liberal - BOOLEAN nf_conntrack_tcp_be_liberal - BOOLEAN
0 - disabled (default) - 0 - disabled (default)
not 0 - enabled - not 0 - enabled
Be conservative in what you do, be liberal in what you accept from others. Be conservative in what you do, be liberal in what you accept from others.
If it's non-zero, we mark only out of window RST segments as INVALID. If it's non-zero, we mark only out of window RST segments as INVALID.
nf_conntrack_tcp_loose - BOOLEAN nf_conntrack_tcp_loose - BOOLEAN
0 - disabled - 0 - disabled
not 0 - enabled (default) - not 0 - enabled (default)
If it is set to zero, we disable picking up already established If it is set to zero, we disable picking up already established
connections. connections.
...@@ -148,8 +155,8 @@ nf_conntrack_tcp_timeout_unacknowledged - INTEGER (seconds) ...@@ -148,8 +155,8 @@ nf_conntrack_tcp_timeout_unacknowledged - INTEGER (seconds)
default 300 default 300
nf_conntrack_timestamp - BOOLEAN nf_conntrack_timestamp - BOOLEAN
0 - disabled (default) - 0 - disabled (default)
not 0 - enabled - not 0 - enabled
Enable connection tracking flow timestamping. Enable connection tracking flow timestamping.
......
.. SPDX-License-Identifier: GPL-2.0
====================================
Netfilter's flowtable infrastructure Netfilter's flowtable infrastructure
==================================== ====================================
...@@ -31,15 +34,17 @@ to use this new alternative forwarding path via nftables policy. ...@@ -31,15 +34,17 @@ to use this new alternative forwarding path via nftables policy.
This is represented in Fig.1, which describes the classic forwarding path This is represented in Fig.1, which describes the classic forwarding path
including the Netfilter hooks and the flowtable fastpath bypass. including the Netfilter hooks and the flowtable fastpath bypass.
userspace process ::
^ |
| | userspace process
_____|____ ____\/___ ^ |
/ \ / \ | |
| input | | output | _____|____ ____\/___
\__________/ \_________/ / \ / \
^ | | input | | output |
| | \__________/ \_________/
^ |
| |
_________ __________ --------- _____\/_____ _________ __________ --------- _____\/_____
/ \ / \ |Routing | / \ / \ / \ |Routing | / \
--> ingress ---> prerouting ---> |decision| | postrouting |--> neigh_xmit --> ingress ---> prerouting ---> |decision| | postrouting |--> neigh_xmit
...@@ -59,7 +64,7 @@ including the Netfilter hooks and the flowtable fastpath bypass. ...@@ -59,7 +64,7 @@ including the Netfilter hooks and the flowtable fastpath bypass.
\ / | \ / |
|__yes_________________fastpath bypass ____________________________| |__yes_________________fastpath bypass ____________________________|
Fig.1 Netfilter hooks and flowtable interactions Fig.1 Netfilter hooks and flowtable interactions
The flowtable entry also stores the NAT configuration, so all packets are The flowtable entry also stores the NAT configuration, so all packets are
mangled according to the NAT policy that matches the initial packets that went mangled according to the NAT policy that matches the initial packets that went
...@@ -72,18 +77,18 @@ Example configuration ...@@ -72,18 +77,18 @@ Example configuration
--------------------- ---------------------
Enabling the flowtable bypass is relatively easy, you only need to create a Enabling the flowtable bypass is relatively easy, you only need to create a
flowtable and add one rule to your forward chain. flowtable and add one rule to your forward chain::
table inet x { table inet x {
flowtable f { flowtable f {
hook ingress priority 0; devices = { eth0, eth1 }; hook ingress priority 0; devices = { eth0, eth1 };
} }
chain y { chain y {
type filter hook forward priority 0; policy accept; type filter hook forward priority 0; policy accept;
ip protocol tcp flow offload @f ip protocol tcp flow offload @f
counter packets 0 bytes 0 counter packets 0 bytes 0
} }
} }
This example adds the flowtable 'f' to the ingress hook of the eth0 and eth1 This example adds the flowtable 'f' to the ingress hook of the eth0 and eth1
netdevices. You can create as many flowtables as you want in case you need to netdevices. You can create as many flowtables as you want in case you need to
...@@ -101,12 +106,12 @@ forwarding bypass. ...@@ -101,12 +106,12 @@ forwarding bypass.
More reading More reading
------------ ------------
This documentation is based on the LWN.net articles [1][2]. Rafal Milecki also This documentation is based on the LWN.net articles [1]_\ [2]_. Rafal Milecki
made a very complete and comprehensive summary called "A state of network also made a very complete and comprehensive summary called "A state of network
acceleration" that describes how things were before this infrastructure was acceleration" that describes how things were before this infrastructure was
mailined [3] and it also makes a rough summary of this work [4]. mailined [3]_ and it also makes a rough summary of this work [4]_.
[1] https://lwn.net/Articles/738214/ .. [1] https://lwn.net/Articles/738214/
[2] https://lwn.net/Articles/742164/ .. [2] https://lwn.net/Articles/742164/
[3] http://lists.infradead.org/pipermail/lede-dev/2018-January/010830.html .. [3] http://lists.infradead.org/pipermail/lede-dev/2018-January/010830.html
[4] http://lists.infradead.org/pipermail/lede-dev/2018-January/010829.html .. [4] http://lists.infradead.org/pipermail/lede-dev/2018-January/010829.html
.. SPDX-License-Identifier: GPL-2.0
=============================================
Open vSwitch datapath developer documentation Open vSwitch datapath developer documentation
============================================= =============================================
...@@ -80,13 +83,13 @@ The <linux/openvswitch.h> header file defines the exact format of the ...@@ -80,13 +83,13 @@ The <linux/openvswitch.h> header file defines the exact format of the
flow key attributes. For informal explanatory purposes here, we write flow key attributes. For informal explanatory purposes here, we write
them as comma-separated strings, with parentheses indicating arguments them as comma-separated strings, with parentheses indicating arguments
and nesting. For example, the following could represent a flow key and nesting. For example, the following could represent a flow key
corresponding to a TCP packet that arrived on vport 1: corresponding to a TCP packet that arrived on vport 1::
in_port(1), eth(src=e0:91:f5:21:d0:b2, dst=00:02:e3:0f:80:a4), in_port(1), eth(src=e0:91:f5:21:d0:b2, dst=00:02:e3:0f:80:a4),
eth_type(0x0800), ipv4(src=172.16.0.20, dst=172.18.0.52, proto=17, tos=0, eth_type(0x0800), ipv4(src=172.16.0.20, dst=172.18.0.52, proto=17, tos=0,
frag=no), tcp(src=49163, dst=80) frag=no), tcp(src=49163, dst=80)
Often we ellipsize arguments not important to the discussion, e.g.: Often we ellipsize arguments not important to the discussion, e.g.::
in_port(1), eth(...), eth_type(0x0800), ipv4(...), tcp(...) in_port(1), eth(...), eth_type(0x0800), ipv4(...), tcp(...)
...@@ -151,20 +154,20 @@ Some care is needed to really maintain forward and backward ...@@ -151,20 +154,20 @@ Some care is needed to really maintain forward and backward
compatibility for applications that follow the rules listed under compatibility for applications that follow the rules listed under
"Flow key compatibility" above. "Flow key compatibility" above.
The basic rule is obvious: The basic rule is obvious::
------------------------------------------------------------------ ==================================================================
New network protocol support must only supplement existing flow New network protocol support must only supplement existing flow
key attributes. It must not change the meaning of already defined key attributes. It must not change the meaning of already defined
flow key attributes. flow key attributes.
------------------------------------------------------------------ ==================================================================
This rule does have less-obvious consequences so it is worth working This rule does have less-obvious consequences so it is worth working
through a few examples. Suppose, for example, that the kernel module through a few examples. Suppose, for example, that the kernel module
did not already implement VLAN parsing. Instead, it just interpreted did not already implement VLAN parsing. Instead, it just interpreted
the 802.1Q TPID (0x8100) as the Ethertype then stopped parsing the the 802.1Q TPID (0x8100) as the Ethertype then stopped parsing the
packet. The flow key for any packet with an 802.1Q header would look packet. The flow key for any packet with an 802.1Q header would look
essentially like this, ignoring metadata: essentially like this, ignoring metadata::
eth(...), eth_type(0x8100) eth(...), eth_type(0x8100)
...@@ -172,7 +175,7 @@ Naively, to add VLAN support, it makes sense to add a new "vlan" flow ...@@ -172,7 +175,7 @@ Naively, to add VLAN support, it makes sense to add a new "vlan" flow
key attribute to contain the VLAN tag, then continue to decode the key attribute to contain the VLAN tag, then continue to decode the
encapsulated headers beyond the VLAN tag using the existing field encapsulated headers beyond the VLAN tag using the existing field
definitions. With this change, a TCP packet in VLAN 10 would have a definitions. With this change, a TCP packet in VLAN 10 would have a
flow key much like this: flow key much like this::
eth(...), vlan(vid=10, pcp=0), eth_type(0x0800), ip(proto=6, ...), tcp(...) eth(...), vlan(vid=10, pcp=0), eth_type(0x0800), ip(proto=6, ...), tcp(...)
...@@ -187,7 +190,7 @@ across kernel versions even though it follows the compatibility rules. ...@@ -187,7 +190,7 @@ across kernel versions even though it follows the compatibility rules.
The solution is to use a set of nested attributes. This is, for The solution is to use a set of nested attributes. This is, for
example, why 802.1Q support uses nested attributes. A TCP packet in example, why 802.1Q support uses nested attributes. A TCP packet in
VLAN 10 is actually expressed as: VLAN 10 is actually expressed as::
eth(...), eth_type(0x8100), vlan(vid=10, pcp=0), encap(eth_type(0x0800), eth(...), eth_type(0x8100), vlan(vid=10, pcp=0), encap(eth_type(0x0800),
ip(proto=6, ...), tcp(...))) ip(proto=6, ...), tcp(...)))
...@@ -215,14 +218,14 @@ For example, consider a packet that contains an IP header that ...@@ -215,14 +218,14 @@ For example, consider a packet that contains an IP header that
indicates protocol 6 for TCP, but which is truncated just after the IP indicates protocol 6 for TCP, but which is truncated just after the IP
header, so that the TCP header is missing. The flow key for this header, so that the TCP header is missing. The flow key for this
packet would include a tcp attribute with all-zero src and dst, like packet would include a tcp attribute with all-zero src and dst, like
this: this::
eth(...), eth_type(0x0800), ip(proto=6, ...), tcp(src=0, dst=0) eth(...), eth_type(0x0800), ip(proto=6, ...), tcp(src=0, dst=0)
As another example, consider a packet with an Ethernet type of 0x8100, As another example, consider a packet with an Ethernet type of 0x8100,
indicating that a VLAN TCI should follow, but which is truncated just indicating that a VLAN TCI should follow, but which is truncated just
after the Ethernet type. The flow key for this packet would include after the Ethernet type. The flow key for this packet would include
an all-zero-bits vlan and an empty encap attribute, like this: an all-zero-bits vlan and an empty encap attribute, like this::
eth(...), eth_type(0x8100), vlan(0), encap() eth(...), eth_type(0x8100), vlan(0), encap()
......
.. SPDX-License-Identifier: GPL-2.0
==================
Operational States
==================
1. Introduction 1. Introduction
===============
Linux distinguishes between administrative and operational state of an Linux distinguishes between administrative and operational state of an
interface. Administrative state is the result of "ip link set dev interface. Administrative state is the result of "ip link set dev
...@@ -20,6 +27,7 @@ and changeable from userspace under certain rules. ...@@ -20,6 +27,7 @@ and changeable from userspace under certain rules.
2. Querying from userspace 2. Querying from userspace
==========================
Both admin and operational state can be queried via the netlink Both admin and operational state can be queried via the netlink
operation RTM_GETLINK. It is also possible to subscribe to RTNLGRP_LINK operation RTM_GETLINK. It is also possible to subscribe to RTNLGRP_LINK
...@@ -30,16 +38,20 @@ These values contain interface state: ...@@ -30,16 +38,20 @@ These values contain interface state:
ifinfomsg::if_flags & IFF_UP: ifinfomsg::if_flags & IFF_UP:
Interface is admin up Interface is admin up
ifinfomsg::if_flags & IFF_RUNNING: ifinfomsg::if_flags & IFF_RUNNING:
Interface is in RFC2863 operational state UP or UNKNOWN. This is for Interface is in RFC2863 operational state UP or UNKNOWN. This is for
backward compatibility, routing daemons, dhcp clients can use this backward compatibility, routing daemons, dhcp clients can use this
flag to determine whether they should use the interface. flag to determine whether they should use the interface.
ifinfomsg::if_flags & IFF_LOWER_UP: ifinfomsg::if_flags & IFF_LOWER_UP:
Driver has signaled netif_carrier_on() Driver has signaled netif_carrier_on()
ifinfomsg::if_flags & IFF_DORMANT: ifinfomsg::if_flags & IFF_DORMANT:
Driver has signaled netif_dormant_on() Driver has signaled netif_dormant_on()
TLV IFLA_OPERSTATE TLV IFLA_OPERSTATE
------------------
contains RFC2863 state of the interface in numeric representation: contains RFC2863 state of the interface in numeric representation:
...@@ -47,26 +59,33 @@ IF_OPER_UNKNOWN (0): ...@@ -47,26 +59,33 @@ IF_OPER_UNKNOWN (0):
Interface is in unknown state, neither driver nor userspace has set Interface is in unknown state, neither driver nor userspace has set
operational state. Interface must be considered for user data as operational state. Interface must be considered for user data as
setting operational state has not been implemented in every driver. setting operational state has not been implemented in every driver.
IF_OPER_NOTPRESENT (1): IF_OPER_NOTPRESENT (1):
Unused in current kernel (notpresent interfaces normally disappear), Unused in current kernel (notpresent interfaces normally disappear),
just a numerical placeholder. just a numerical placeholder.
IF_OPER_DOWN (2): IF_OPER_DOWN (2):
Interface is unable to transfer data on L1, f.e. ethernet is not Interface is unable to transfer data on L1, f.e. ethernet is not
plugged or interface is ADMIN down. plugged or interface is ADMIN down.
IF_OPER_LOWERLAYERDOWN (3): IF_OPER_LOWERLAYERDOWN (3):
Interfaces stacked on an interface that is IF_OPER_DOWN show this Interfaces stacked on an interface that is IF_OPER_DOWN show this
state (f.e. VLAN). state (f.e. VLAN).
IF_OPER_TESTING (4): IF_OPER_TESTING (4):
Unused in current kernel. Unused in current kernel.
IF_OPER_DORMANT (5): IF_OPER_DORMANT (5):
Interface is L1 up, but waiting for an external event, f.e. for a Interface is L1 up, but waiting for an external event, f.e. for a
protocol to establish. (802.1X) protocol to establish. (802.1X)
IF_OPER_UP (6): IF_OPER_UP (6):
Interface is operational up and can be used. Interface is operational up and can be used.
This TLV can also be queried via sysfs. This TLV can also be queried via sysfs.
TLV IFLA_LINKMODE TLV IFLA_LINKMODE
-----------------
contains link policy. This is needed for userspace interaction contains link policy. This is needed for userspace interaction
described below. described below.
...@@ -75,6 +94,7 @@ This TLV can also be queried via sysfs. ...@@ -75,6 +94,7 @@ This TLV can also be queried via sysfs.
3. Kernel driver API 3. Kernel driver API
====================
Kernel drivers have access to two flags that map to IFF_LOWER_UP and Kernel drivers have access to two flags that map to IFF_LOWER_UP and
IFF_DORMANT. These flags can be set from everywhere, even from IFF_DORMANT. These flags can be set from everywhere, even from
...@@ -126,6 +146,7 @@ netif_carrier_ok() && !netif_dormant(): ...@@ -126,6 +146,7 @@ netif_carrier_ok() && !netif_dormant():
4. Setting from userspace 4. Setting from userspace
=========================
Applications have to use the netlink interface to influence the Applications have to use the netlink interface to influence the
RFC2863 operational state of an interface. Setting IFLA_LINKMODE to 1 RFC2863 operational state of an interface. Setting IFLA_LINKMODE to 1
...@@ -139,18 +160,18 @@ are multicasted on the netlink group RTNLGRP_LINK. ...@@ -139,18 +160,18 @@ are multicasted on the netlink group RTNLGRP_LINK.
So basically a 802.1X supplicant interacts with the kernel like this: So basically a 802.1X supplicant interacts with the kernel like this:
-subscribe to RTNLGRP_LINK - subscribe to RTNLGRP_LINK
-set IFLA_LINKMODE to 1 via RTM_SETLINK - set IFLA_LINKMODE to 1 via RTM_SETLINK
-query RTM_GETLINK once to get initial state - query RTM_GETLINK once to get initial state
-if initial flags are not (IFF_LOWER_UP && !IFF_DORMANT), wait until - if initial flags are not (IFF_LOWER_UP && !IFF_DORMANT), wait until
netlink multicast signals this state netlink multicast signals this state
-do 802.1X, eventually abort if flags go down again - do 802.1X, eventually abort if flags go down again
-send RTM_SETLINK to set operstate to IF_OPER_UP if authentication - send RTM_SETLINK to set operstate to IF_OPER_UP if authentication
succeeds, IF_OPER_DORMANT otherwise succeeds, IF_OPER_DORMANT otherwise
-see how operstate and IFF_RUNNING is echoed via netlink multicast - see how operstate and IFF_RUNNING is echoed via netlink multicast
-set interface back to IF_OPER_DORMANT if 802.1X reauthentication - set interface back to IF_OPER_DORMANT if 802.1X reauthentication
fails fails
-restart if kernel changes IFF_LOWER_UP or IFF_DORMANT flag - restart if kernel changes IFF_LOWER_UP or IFF_DORMANT flag
if supplicant goes down, bring back IFLA_LINKMODE to 0 and if supplicant goes down, bring back IFLA_LINKMODE to 0 and
IFLA_OPERSTATE to a sane value. IFLA_OPERSTATE to a sane value.
......
.. SPDX-License-Identifier: GPL-2.0
.. include:: <isonum.txt>
============================
Linux Phonet protocol family Linux Phonet protocol family
============================ ============================
...@@ -11,6 +15,7 @@ device attached to the modem. The modem takes care of routing. ...@@ -11,6 +15,7 @@ device attached to the modem. The modem takes care of routing.
Phonet packets can be exchanged through various hardware connections Phonet packets can be exchanged through various hardware connections
depending on the device, such as: depending on the device, such as:
- USB with the CDC Phonet interface, - USB with the CDC Phonet interface,
- infrared, - infrared,
- Bluetooth, - Bluetooth,
...@@ -21,7 +26,7 @@ depending on the device, such as: ...@@ -21,7 +26,7 @@ depending on the device, such as:
Packets format Packets format
-------------- --------------
Phonet packets have a common header as follows: Phonet packets have a common header as follows::
struct phonethdr { struct phonethdr {
uint8_t pn_media; /* Media type (link-layer identifier) */ uint8_t pn_media; /* Media type (link-layer identifier) */
...@@ -72,7 +77,7 @@ only the (default) Linux FIFO qdisc should be used with them. ...@@ -72,7 +77,7 @@ only the (default) Linux FIFO qdisc should be used with them.
Network layer Network layer
------------- -------------
The Phonet socket address family maps the Phonet packet header: The Phonet socket address family maps the Phonet packet header::
struct sockaddr_pn { struct sockaddr_pn {
sa_family_t spn_family; /* AF_PHONET */ sa_family_t spn_family; /* AF_PHONET */
...@@ -94,6 +99,8 @@ protocol from the PF_PHONET family. Each socket is bound to one of the ...@@ -94,6 +99,8 @@ protocol from the PF_PHONET family. Each socket is bound to one of the
2^10 object IDs available, and can send and receive packets with any 2^10 object IDs available, and can send and receive packets with any
other peer. other peer.
::
struct sockaddr_pn addr = { .spn_family = AF_PHONET, }; struct sockaddr_pn addr = { .spn_family = AF_PHONET, };
ssize_t len; ssize_t len;
socklen_t addrlen = sizeof(addr); socklen_t addrlen = sizeof(addr);
...@@ -105,7 +112,7 @@ other peer. ...@@ -105,7 +112,7 @@ other peer.
sendto(fd, msg, msglen, 0, (struct sockaddr *)&addr, sizeof(addr)); sendto(fd, msg, msglen, 0, (struct sockaddr *)&addr, sizeof(addr));
len = recvfrom(fd, buf, sizeof(buf), 0, len = recvfrom(fd, buf, sizeof(buf), 0,
(struct sockaddr *)&addr, &addrlen); (struct sockaddr *)&addr, &addrlen);
This protocol follows the SOCK_DGRAM connection-less semantics. This protocol follows the SOCK_DGRAM connection-less semantics.
However, connect() and getpeername() are not supported, as they did However, connect() and getpeername() are not supported, as they did
...@@ -116,7 +123,7 @@ Resource subscription ...@@ -116,7 +123,7 @@ Resource subscription
--------------------- ---------------------
A Phonet datagram socket can be subscribed to any number of 8-bits A Phonet datagram socket can be subscribed to any number of 8-bits
Phonet resources, as follow: Phonet resources, as follow::
uint32_t res = 0xXX; uint32_t res = 0xXX;
ioctl(fd, SIOCPNADDRESOURCE, &res); ioctl(fd, SIOCPNADDRESOURCE, &res);
...@@ -137,6 +144,8 @@ socket paradigm. The listening socket is bound to an unique free object ...@@ -137,6 +144,8 @@ socket paradigm. The listening socket is bound to an unique free object
ID. Each listening socket can handle up to 255 simultaneous ID. Each listening socket can handle up to 255 simultaneous
connections, one per accept()'d socket. connections, one per accept()'d socket.
::
int lfd, cfd; int lfd, cfd;
lfd = socket(PF_PHONET, SOCK_SEQPACKET, PN_PROTO_PIPE); lfd = socket(PF_PHONET, SOCK_SEQPACKET, PN_PROTO_PIPE);
...@@ -161,7 +170,7 @@ Connections are traditionally established between two endpoints by a ...@@ -161,7 +170,7 @@ Connections are traditionally established between two endpoints by a
As of Linux kernel version 2.6.39, it is also possible to connect As of Linux kernel version 2.6.39, it is also possible to connect
two endpoints directly, using connect() on the active side. This is two endpoints directly, using connect() on the active side. This is
intended to support the newer Nokia Wireless Modem API, as found in intended to support the newer Nokia Wireless Modem API, as found in
e.g. the Nokia Slim Modem in the ST-Ericsson U8500 platform: e.g. the Nokia Slim Modem in the ST-Ericsson U8500 platform::
struct sockaddr_spn spn; struct sockaddr_spn spn;
int fd; int fd;
...@@ -177,38 +186,45 @@ e.g. the Nokia Slim Modem in the ST-Ericsson U8500 platform: ...@@ -177,38 +186,45 @@ e.g. the Nokia Slim Modem in the ST-Ericsson U8500 platform:
close(fd); close(fd);
WARNING: .. Warning:
When polling a connected pipe socket for writability, there is an
intrinsic race condition whereby writability might be lost between the When polling a connected pipe socket for writability, there is an
polling and the writing system calls. In this case, the socket will intrinsic race condition whereby writability might be lost between the
block until write becomes possible again, unless non-blocking mode polling and the writing system calls. In this case, the socket will
is enabled. block until write becomes possible again, unless non-blocking mode
is enabled.
The pipe protocol provides two socket options at the SOL_PNPIPE level: The pipe protocol provides two socket options at the SOL_PNPIPE level:
PNPIPE_ENCAP accepts one integer value (int) of: PNPIPE_ENCAP accepts one integer value (int) of:
PNPIPE_ENCAP_NONE: The socket operates normally (default). PNPIPE_ENCAP_NONE:
The socket operates normally (default).
PNPIPE_ENCAP_IP: The socket is used as a backend for a virtual IP PNPIPE_ENCAP_IP:
The socket is used as a backend for a virtual IP
interface. This requires CAP_NET_ADMIN capability. GPRS data interface. This requires CAP_NET_ADMIN capability. GPRS data
support on Nokia modems can use this. Note that the socket cannot support on Nokia modems can use this. Note that the socket cannot
be reliably poll()'d or read() from while in this mode. be reliably poll()'d or read() from while in this mode.
PNPIPE_IFINDEX is a read-only integer value. It contains the PNPIPE_IFINDEX
interface index of the network interface created by PNPIPE_ENCAP, is a read-only integer value. It contains the
or zero if encapsulation is off. interface index of the network interface created by PNPIPE_ENCAP,
or zero if encapsulation is off.
PNPIPE_HANDLE is a read-only integer value. It contains the underlying PNPIPE_HANDLE
identifier ("pipe handle") of the pipe. This is only defined for is a read-only integer value. It contains the underlying
socket descriptors that are already connected or being connected. identifier ("pipe handle") of the pipe. This is only defined for
socket descriptors that are already connected or being connected.
Authors Authors
------- -------
Linux Phonet was initially written by Sakari Ailus. Linux Phonet was initially written by Sakari Ailus.
Other contributors include Mikä Liljeberg, Andras Domokos, Other contributors include Mikä Liljeberg, Andras Domokos,
Carlos Chinea and Rémi Denis-Courmont. Carlos Chinea and Rémi Denis-Courmont.
Copyright (C) 2008 Nokia Corporation.
Copyright |copy| 2008 Nokia Corporation.
.. SPDX-License-Identifier: GPL-2.0
================================================
PLIP: The Parallel Line Internet Protocol Device PLIP: The Parallel Line Internet Protocol Device
================================================
Donald Becker (becker@super.org) Donald Becker (becker@super.org)
I.D.A. Supercomputing Research Center, Bowie MD 20715 I.D.A. Supercomputing Research Center, Bowie MD 20715
...@@ -83,7 +87,7 @@ When the PLIP driver is used in IRQ mode, the timeout used for triggering a ...@@ -83,7 +87,7 @@ When the PLIP driver is used in IRQ mode, the timeout used for triggering a
data transfer (the maximal time the PLIP driver would allow the other side data transfer (the maximal time the PLIP driver would allow the other side
before announcing a timeout, when trying to handshake a transfer of some before announcing a timeout, when trying to handshake a transfer of some
data) is, by default, 500usec. As IRQ delivery is more or less immediate, data) is, by default, 500usec. As IRQ delivery is more or less immediate,
this timeout is quite sufficient. this timeout is quite sufficient.
When in IRQ-less mode, the PLIP driver polls the parallel port HZ times When in IRQ-less mode, the PLIP driver polls the parallel port HZ times
per second (where HZ is typically 100 on most platforms, and 1024 on an per second (where HZ is typically 100 on most platforms, and 1024 on an
...@@ -115,7 +119,7 @@ printer "null" cable to transfer data four bits at a time using ...@@ -115,7 +119,7 @@ printer "null" cable to transfer data four bits at a time using
data bit outputs connected to status bit inputs. data bit outputs connected to status bit inputs.
The second data transfer method relies on both machines having The second data transfer method relies on both machines having
bi-directional parallel ports, rather than output-only ``printer'' bi-directional parallel ports, rather than output-only ``printer``
ports. This allows byte-wide transfers and avoids reconstructing ports. This allows byte-wide transfers and avoids reconstructing
nibbles into bytes, leading to much faster transfers. nibbles into bytes, leading to much faster transfers.
...@@ -132,7 +136,7 @@ bits with standard status register implementation. ...@@ -132,7 +136,7 @@ bits with standard status register implementation.
A cable that implements this protocol is available commercially as a A cable that implements this protocol is available commercially as a
"Null Printer" or "Turbo Laplink" cable. It can be constructed with "Null Printer" or "Turbo Laplink" cable. It can be constructed with
two DB-25 male connectors symmetrically connected as follows: two DB-25 male connectors symmetrically connected as follows::
STROBE output 1* STROBE output 1*
D0->ERROR 2 - 15 15 - 2 D0->ERROR 2 - 15 15 - 2
...@@ -146,7 +150,8 @@ two DB-25 male connectors symmetrically connected as follows: ...@@ -146,7 +150,8 @@ two DB-25 male connectors symmetrically connected as follows:
SLCTIN 17 - 17 SLCTIN 17 - 17
extra grounds are 18*,19*,20*,21*,22*,23*,24* extra grounds are 18*,19*,20*,21*,22*,23*,24*
GROUND 25 - 25 GROUND 25 - 25
* Do not connect these pins on either end
* Do not connect these pins on either end
If the cable you are using has a metallic shield it should be If the cable you are using has a metallic shield it should be
connected to the metallic DB-25 shell at one end only. connected to the metallic DB-25 shell at one end only.
...@@ -155,14 +160,14 @@ Parallel Transfer Mode 1 ...@@ -155,14 +160,14 @@ Parallel Transfer Mode 1
======================== ========================
The second data transfer method relies on both machines having The second data transfer method relies on both machines having
bi-directional parallel ports, rather than output-only ``printer'' bi-directional parallel ports, rather than output-only ``printer``
ports. This allows byte-wide transfers, and avoids reconstructing ports. This allows byte-wide transfers, and avoids reconstructing
nibbles into bytes. This cable should not be used on unidirectional nibbles into bytes. This cable should not be used on unidirectional
``printer'' (as opposed to ``parallel'') ports or when the machine ``printer`` (as opposed to ``parallel``) ports or when the machine
isn't configured for PLIP, as it will result in output driver isn't configured for PLIP, as it will result in output driver
conflicts and the (unlikely) possibility of damage. conflicts and the (unlikely) possibility of damage.
The cable for this transfer mode should be constructed as follows: The cable for this transfer mode should be constructed as follows::
STROBE->BUSY 1 - 11 STROBE->BUSY 1 - 11
D0->D0 2 - 2 D0->D0 2 - 2
...@@ -179,7 +184,8 @@ The cable for this transfer mode should be constructed as follows: ...@@ -179,7 +184,8 @@ The cable for this transfer mode should be constructed as follows:
GND->ERROR 18 - 15 GND->ERROR 18 - 15
extra grounds are 19*,20*,21*,22*,23*,24* extra grounds are 19*,20*,21*,22*,23*,24*
GROUND 25 - 25 GROUND 25 - 25
* Do not connect these pins on either end
* Do not connect these pins on either end
Once again, if the cable you are using has a metallic shield it should Once again, if the cable you are using has a metallic shield it should
be connected to the metallic DB-25 shell at one end only. be connected to the metallic DB-25 shell at one end only.
...@@ -188,7 +194,7 @@ PLIP Mode 0 transfer protocol ...@@ -188,7 +194,7 @@ PLIP Mode 0 transfer protocol
============================= =============================
The PLIP driver is compatible with the "Crynwr" parallel port transfer The PLIP driver is compatible with the "Crynwr" parallel port transfer
standard in Mode 0. That standard specifies the following protocol: standard in Mode 0. That standard specifies the following protocol::
send header nibble '0x8' send header nibble '0x8'
count-low octet count-low octet
...@@ -196,20 +202,21 @@ standard in Mode 0. That standard specifies the following protocol: ...@@ -196,20 +202,21 @@ standard in Mode 0. That standard specifies the following protocol:
... data octets ... data octets
checksum octet checksum octet
Each octet is sent as Each octet is sent as::
<wait for rx. '0x1?'> <send 0x10+(octet&0x0F)> <wait for rx. '0x1?'> <send 0x10+(octet&0x0F)>
<wait for rx. '0x0?'> <send 0x00+((octet>>4)&0x0F)> <wait for rx. '0x0?'> <send 0x00+((octet>>4)&0x0F)>
To start a transfer the transmitting machine outputs a nibble 0x08. To start a transfer the transmitting machine outputs a nibble 0x08.
That raises the ACK line, triggering an interrupt in the receiving That raises the ACK line, triggering an interrupt in the receiving
machine. The receiving machine disables interrupts and raises its own ACK machine. The receiving machine disables interrupts and raises its own ACK
line. line.
Restated: Restated::
(OUT is bit 0-4, OUT.j is bit j from OUT. IN likewise) (OUT is bit 0-4, OUT.j is bit j from OUT. IN likewise)
Send_Byte: Send_Byte:
OUT := low nibble, OUT.4 := 1 OUT := low nibble, OUT.4 := 1
WAIT FOR IN.4 = 1 WAIT FOR IN.4 = 1
OUT := high nibble, OUT.4 := 0 OUT := high nibble, OUT.4 := 0
WAIT FOR IN.4 = 0 WAIT FOR IN.4 = 0
PPP Generic Driver and Channel Interface .. SPDX-License-Identifier: GPL-2.0
----------------------------------------
Paul Mackerras ========================================
PPP Generic Driver and Channel Interface
========================================
Paul Mackerras
paulus@samba.org paulus@samba.org
7 Feb 2002 7 Feb 2002
The generic PPP driver in linux-2.4 provides an implementation of the The generic PPP driver in linux-2.4 provides an implementation of the
...@@ -19,7 +23,7 @@ functionality which is of use in any PPP implementation, including: ...@@ -19,7 +23,7 @@ functionality which is of use in any PPP implementation, including:
* simple packet filtering * simple packet filtering
For sending and receiving PPP frames, the generic PPP driver calls on For sending and receiving PPP frames, the generic PPP driver calls on
the services of PPP `channels'. A PPP channel encapsulates a the services of PPP ``channels``. A PPP channel encapsulates a
mechanism for transporting PPP frames from one machine to another. A mechanism for transporting PPP frames from one machine to another. A
PPP channel implementation can be arbitrarily complex internally but PPP channel implementation can be arbitrarily complex internally but
has a very simple interface with the generic PPP code: it merely has has a very simple interface with the generic PPP code: it merely has
...@@ -102,7 +106,7 @@ communications medium and prepare it to do PPP. For example, with an ...@@ -102,7 +106,7 @@ communications medium and prepare it to do PPP. For example, with an
async tty, this can involve setting the tty speed and modes, issuing async tty, this can involve setting the tty speed and modes, issuing
modem commands, and then going through some sort of dialog with the modem commands, and then going through some sort of dialog with the
remote system to invoke PPP service there. We refer to this process remote system to invoke PPP service there. We refer to this process
as `discovery'. Then the user-level process tells the medium to as ``discovery``. Then the user-level process tells the medium to
become a PPP channel and register itself with the generic PPP layer. become a PPP channel and register itself with the generic PPP layer.
The channel then has to report the channel number assigned to it back The channel then has to report the channel number assigned to it back
to the user-level process. From that point, the PPP negotiation code to the user-level process. From that point, the PPP negotiation code
...@@ -111,8 +115,8 @@ negotiation, accessing the channel through the /dev/ppp interface. ...@@ -111,8 +115,8 @@ negotiation, accessing the channel through the /dev/ppp interface.
At the interface to the PPP generic layer, PPP frames are stored in At the interface to the PPP generic layer, PPP frames are stored in
skbuff structures and start with the two-byte PPP protocol number. skbuff structures and start with the two-byte PPP protocol number.
The frame does *not* include the 0xff `address' byte or the 0x03 The frame does *not* include the 0xff ``address`` byte or the 0x03
`control' byte that are optionally used in async PPP. Nor is there ``control`` byte that are optionally used in async PPP. Nor is there
any escaping of control characters, nor are there any FCS or framing any escaping of control characters, nor are there any FCS or framing
characters included. That is all the responsibility of the channel characters included. That is all the responsibility of the channel
code, if it is needed for the particular medium. That is, the skbuffs code, if it is needed for the particular medium. That is, the skbuffs
...@@ -121,16 +125,16 @@ protocol number and the data, and the skbuffs presented to ppp_input() ...@@ -121,16 +125,16 @@ protocol number and the data, and the skbuffs presented to ppp_input()
must be in the same format. must be in the same format.
The channel must provide an instance of a ppp_channel struct to The channel must provide an instance of a ppp_channel struct to
represent the channel. The channel is free to use the `private' field represent the channel. The channel is free to use the ``private`` field
however it wishes. The channel should initialize the `mtu' and however it wishes. The channel should initialize the ``mtu`` and
`hdrlen' fields before calling ppp_register_channel() and not change ``hdrlen`` fields before calling ppp_register_channel() and not change
them until after ppp_unregister_channel() returns. The `mtu' field them until after ppp_unregister_channel() returns. The ``mtu`` field
represents the maximum size of the data part of the PPP frames, that represents the maximum size of the data part of the PPP frames, that
is, it does not include the 2-byte protocol number. is, it does not include the 2-byte protocol number.
If the channel needs some headroom in the skbuffs presented to it for If the channel needs some headroom in the skbuffs presented to it for
transmission (i.e., some space free in the skbuff data area before the transmission (i.e., some space free in the skbuff data area before the
start of the PPP frame), it should set the `hdrlen' field of the start of the PPP frame), it should set the ``hdrlen`` field of the
ppp_channel struct to the amount of headroom required. The generic ppp_channel struct to the amount of headroom required. The generic
PPP layer will attempt to provide that much headroom but the channel PPP layer will attempt to provide that much headroom but the channel
should still check if there is sufficient headroom and copy the skbuff should still check if there is sufficient headroom and copy the skbuff
...@@ -322,6 +326,8 @@ an interface unit are: ...@@ -322,6 +326,8 @@ an interface unit are:
interface. The argument should be a pointer to an int containing interface. The argument should be a pointer to an int containing
the new flags value. The bits in the flags value that can be set the new flags value. The bits in the flags value that can be set
are: are:
================ ========================================
SC_COMP_TCP enable transmit TCP header compression SC_COMP_TCP enable transmit TCP header compression
SC_NO_TCP_CCID disable connection-id compression for SC_NO_TCP_CCID disable connection-id compression for
TCP header compression TCP header compression
...@@ -335,6 +341,7 @@ an interface unit are: ...@@ -335,6 +341,7 @@ an interface unit are:
SC_MP_SHORTSEQ expect short multilink sequence SC_MP_SHORTSEQ expect short multilink sequence
numbers on received multilink fragments numbers on received multilink fragments
SC_MP_XSHORTSEQ transmit short multilink sequence nos. SC_MP_XSHORTSEQ transmit short multilink sequence nos.
================ ========================================
The values of these flags are defined in <linux/ppp-ioctl.h>. Note The values of these flags are defined in <linux/ppp-ioctl.h>. Note
that the values of the SC_MULTILINK, SC_MP_SHORTSEQ and that the values of the SC_MULTILINK, SC_MP_SHORTSEQ and
...@@ -345,17 +352,20 @@ an interface unit are: ...@@ -345,17 +352,20 @@ an interface unit are:
interface unit. The argument should point to an int where the ioctl interface unit. The argument should point to an int where the ioctl
will store the flags value. As well as the values listed above for will store the flags value. As well as the values listed above for
PPPIOCSFLAGS, the following bits may be set in the returned value: PPPIOCSFLAGS, the following bits may be set in the returned value:
================ =========================================
SC_COMP_RUN CCP compressor is running SC_COMP_RUN CCP compressor is running
SC_DECOMP_RUN CCP decompressor is running SC_DECOMP_RUN CCP decompressor is running
SC_DC_ERROR CCP decompressor detected non-fatal error SC_DC_ERROR CCP decompressor detected non-fatal error
SC_DC_FERROR CCP decompressor detected fatal error SC_DC_FERROR CCP decompressor detected fatal error
================ =========================================
* PPPIOCSCOMPRESS sets the parameters for packet compression or * PPPIOCSCOMPRESS sets the parameters for packet compression or
decompression. The argument should point to a ppp_option_data decompression. The argument should point to a ppp_option_data
structure (defined in <linux/ppp-ioctl.h>), which contains a structure (defined in <linux/ppp-ioctl.h>), which contains a
pointer/length pair which should describe a block of memory pointer/length pair which should describe a block of memory
containing a CCP option specifying a compression method and its containing a CCP option specifying a compression method and its
parameters. The ppp_option_data struct also contains a `transmit' parameters. The ppp_option_data struct also contains a ``transmit``
field. If this is 0, the ioctl will affect the receive path, field. If this is 0, the ioctl will affect the receive path,
otherwise the transmit path. otherwise the transmit path.
...@@ -377,7 +387,7 @@ an interface unit are: ...@@ -377,7 +387,7 @@ an interface unit are:
ppp_idle structure (defined in <linux/ppp_defs.h>). If the ppp_idle structure (defined in <linux/ppp_defs.h>). If the
CONFIG_PPP_FILTER option is enabled, the set of packets which reset CONFIG_PPP_FILTER option is enabled, the set of packets which reset
the transmit and receive idle timers is restricted to those which the transmit and receive idle timers is restricted to those which
pass the `active' packet filter. pass the ``active`` packet filter.
Two versions of this command exist, to deal with user space Two versions of this command exist, to deal with user space
expecting times as either 32-bit or 64-bit time_t seconds. expecting times as either 32-bit or 64-bit time_t seconds.
...@@ -391,31 +401,33 @@ an interface unit are: ...@@ -391,31 +401,33 @@ an interface unit are:
* PPPIOCSNPMODE sets the network-protocol mode for a given network * PPPIOCSNPMODE sets the network-protocol mode for a given network
protocol. The argument should point to an npioctl struct (defined protocol. The argument should point to an npioctl struct (defined
in <linux/ppp-ioctl.h>). The `protocol' field gives the PPP protocol in <linux/ppp-ioctl.h>). The ``protocol`` field gives the PPP protocol
number for the protocol to be affected, and the `mode' field number for the protocol to be affected, and the ``mode`` field
specifies what to do with packets for that protocol: specifies what to do with packets for that protocol:
============= ==============================================
NPMODE_PASS normal operation, transmit and receive packets NPMODE_PASS normal operation, transmit and receive packets
NPMODE_DROP silently drop packets for this protocol NPMODE_DROP silently drop packets for this protocol
NPMODE_ERROR drop packets and return an error on transmit NPMODE_ERROR drop packets and return an error on transmit
NPMODE_QUEUE queue up packets for transmit, drop received NPMODE_QUEUE queue up packets for transmit, drop received
packets packets
============= ==============================================
At present NPMODE_ERROR and NPMODE_QUEUE have the same effect as At present NPMODE_ERROR and NPMODE_QUEUE have the same effect as
NPMODE_DROP. NPMODE_DROP.
* PPPIOCGNPMODE returns the network-protocol mode for a given * PPPIOCGNPMODE returns the network-protocol mode for a given
protocol. The argument should point to an npioctl struct with the protocol. The argument should point to an npioctl struct with the
`protocol' field set to the PPP protocol number for the protocol of ``protocol`` field set to the PPP protocol number for the protocol of
interest. On return the `mode' field will be set to the network- interest. On return the ``mode`` field will be set to the network-
protocol mode for that protocol. protocol mode for that protocol.
* PPPIOCSPASS and PPPIOCSACTIVE set the `pass' and `active' packet * PPPIOCSPASS and PPPIOCSACTIVE set the ``pass`` and ``active`` packet
filters. These ioctls are only available if the CONFIG_PPP_FILTER filters. These ioctls are only available if the CONFIG_PPP_FILTER
option is selected. The argument should point to a sock_fprog option is selected. The argument should point to a sock_fprog
structure (defined in <linux/filter.h>) containing the compiled BPF structure (defined in <linux/filter.h>) containing the compiled BPF
instructions for the filter. Packets are dropped if they fail the instructions for the filter. Packets are dropped if they fail the
`pass' filter; otherwise, if they fail the `active' filter they are ``pass`` filter; otherwise, if they fail the ``active`` filter they are
passed but they do not reset the transmit or receive idle timer. passed but they do not reset the transmit or receive idle timer.
* PPPIOCSMRRU enables or disables multilink processing for received * PPPIOCSMRRU enables or disables multilink processing for received
......
.. SPDX-License-Identifier: GPL-2.0
============================================
The proc/net/tcp and proc/net/tcp6 variables
============================================
This document describes the interfaces /proc/net/tcp and /proc/net/tcp6. This document describes the interfaces /proc/net/tcp and /proc/net/tcp6.
Note that these interfaces are deprecated in favor of tcp_diag. Note that these interfaces are deprecated in favor of tcp_diag.
These /proc interfaces provide information about currently active TCP These /proc interfaces provide information about currently active TCP
connections, and are implemented by tcp4_seq_show() in net/ipv4/tcp_ipv4.c connections, and are implemented by tcp4_seq_show() in net/ipv4/tcp_ipv4.c
and tcp6_seq_show() in net/ipv6/tcp_ipv6.c, respectively. and tcp6_seq_show() in net/ipv6/tcp_ipv6.c, respectively.
It will first list all listening TCP sockets, and next list all established It will first list all listening TCP sockets, and next list all established
TCP connections. A typical entry of /proc/net/tcp would look like this (split TCP connections. A typical entry of /proc/net/tcp would look like this (split
up into 3 parts because of the length of the line): up into 3 parts because of the length of the line)::
46: 010310AC:9C4C 030310AC:1770 01 46: 010310AC:9C4C 030310AC:1770 01
| | | | | |--> connection state | | | | | |--> connection state
| | | | |------> remote TCP port number | | | | |------> remote TCP port number
| | | |-------------> remote IPv4 address | | | |-------------> remote IPv4 address
...@@ -17,7 +23,7 @@ up into 3 parts because of the length of the line): ...@@ -17,7 +23,7 @@ up into 3 parts because of the length of the line):
| |---------------------------> local IPv4 address | |---------------------------> local IPv4 address
|----------------------------------> number of entry |----------------------------------> number of entry
00000150:00000000 01:00000019 00000000 00000150:00000000 01:00000019 00000000
| | | | |--> number of unrecovered RTO timeouts | | | | |--> number of unrecovered RTO timeouts
| | | |----------> number of jiffies until timer expires | | | |----------> number of jiffies until timer expires
| | |----------------> timer_active (see below) | | |----------------> timer_active (see below)
...@@ -25,7 +31,7 @@ up into 3 parts because of the length of the line): ...@@ -25,7 +31,7 @@ up into 3 parts because of the length of the line):
|-------------------------------> transmit-queue |-------------------------------> transmit-queue
1000 0 54165785 4 cd1e6040 25 4 27 3 -1 1000 0 54165785 4 cd1e6040 25 4 27 3 -1
| | | | | | | | | |--> slow start size threshold, | | | | | | | | | |--> slow start size threshold,
| | | | | | | | | or -1 if the threshold | | | | | | | | | or -1 if the threshold
| | | | | | | | | is >= 0xFFFF | | | | | | | | | is >= 0xFFFF
| | | | | | | | |----> sending congestion window | | | | | | | | |----> sending congestion window
...@@ -40,9 +46,12 @@ up into 3 parts because of the length of the line): ...@@ -40,9 +46,12 @@ up into 3 parts because of the length of the line):
|---------------------------------------------> uid |---------------------------------------------> uid
timer_active: timer_active:
== ================================================================
0 no timer is pending 0 no timer is pending
1 retransmit-timer is pending 1 retransmit-timer is pending
2 another timer (e.g. delayed ack or keepalive) is pending 2 another timer (e.g. delayed ack or keepalive) is pending
3 this is a socket in TIME_WAIT state. Not all fields will contain 3 this is a socket in TIME_WAIT state. Not all fields will contain
data (or even exist) data (or even exist)
4 zero window probe timer is pending 4 zero window probe timer is pending
== ================================================================
.. SPDX-License-Identifier: GPL-2.0
===========================
How to use radiotap headers How to use radiotap headers
=========================== ===========================
...@@ -5,9 +8,9 @@ Pointer to the radiotap include file ...@@ -5,9 +8,9 @@ Pointer to the radiotap include file
------------------------------------ ------------------------------------
Radiotap headers are variable-length and extensible, you can get most of the Radiotap headers are variable-length and extensible, you can get most of the
information you need to know on them from: information you need to know on them from::
./include/net/ieee80211_radiotap.h ./include/net/ieee80211_radiotap.h
This document gives an overview and warns on some corner cases. This document gives an overview and warns on some corner cases.
...@@ -21,6 +24,8 @@ of the it_present member of ieee80211_radiotap_header is set, it means that ...@@ -21,6 +24,8 @@ of the it_present member of ieee80211_radiotap_header is set, it means that
the header for argument index 0 (IEEE80211_RADIOTAP_TSFT) is present in the the header for argument index 0 (IEEE80211_RADIOTAP_TSFT) is present in the
argument area. argument area.
::
< 8-byte ieee80211_radiotap_header > < 8-byte ieee80211_radiotap_header >
[ <possible argument bitmap extensions ... > ] [ <possible argument bitmap extensions ... > ]
[ <argument> ... ] [ <argument> ... ]
...@@ -76,6 +81,8 @@ ieee80211_radiotap_header. ...@@ -76,6 +81,8 @@ ieee80211_radiotap_header.
Example valid radiotap header Example valid radiotap header
----------------------------- -----------------------------
::
0x00, 0x00, // <-- radiotap version + pad byte 0x00, 0x00, // <-- radiotap version + pad byte
0x0b, 0x00, // <- radiotap header length 0x0b, 0x00, // <- radiotap header length
0x04, 0x0c, 0x00, 0x00, // <-- bitmap 0x04, 0x0c, 0x00, 0x00, // <-- bitmap
...@@ -89,64 +96,64 @@ Using the Radiotap Parser ...@@ -89,64 +96,64 @@ Using the Radiotap Parser
If you are having to parse a radiotap struct, you can radically simplify the If you are having to parse a radiotap struct, you can radically simplify the
job by using the radiotap parser that lives in net/wireless/radiotap.c and has job by using the radiotap parser that lives in net/wireless/radiotap.c and has
its prototypes available in include/net/cfg80211.h. You use it like this: its prototypes available in include/net/cfg80211.h. You use it like this::
#include <net/cfg80211.h> #include <net/cfg80211.h>
/* buf points to the start of the radiotap header part */ /* buf points to the start of the radiotap header part */
int MyFunction(u8 * buf, int buflen) int MyFunction(u8 * buf, int buflen)
{ {
int pkt_rate_100kHz = 0, antenna = 0, pwr = 0; int pkt_rate_100kHz = 0, antenna = 0, pwr = 0;
struct ieee80211_radiotap_iterator iterator; struct ieee80211_radiotap_iterator iterator;
int ret = ieee80211_radiotap_iterator_init(&iterator, buf, buflen); int ret = ieee80211_radiotap_iterator_init(&iterator, buf, buflen);
while (!ret) { while (!ret) {
ret = ieee80211_radiotap_iterator_next(&iterator); ret = ieee80211_radiotap_iterator_next(&iterator);
if (ret) if (ret)
continue; continue;
/* see if this argument is something we can use */ /* see if this argument is something we can use */
switch (iterator.this_arg_index) { switch (iterator.this_arg_index) {
/* /*
* You must take care when dereferencing iterator.this_arg * You must take care when dereferencing iterator.this_arg
* for multibyte types... the pointer is not aligned. Use * for multibyte types... the pointer is not aligned. Use
* get_unaligned((type *)iterator.this_arg) to dereference * get_unaligned((type *)iterator.this_arg) to dereference
* iterator.this_arg for type "type" safely on all arches. * iterator.this_arg for type "type" safely on all arches.
*/ */
case IEEE80211_RADIOTAP_RATE: case IEEE80211_RADIOTAP_RATE:
/* radiotap "rate" u8 is in /* radiotap "rate" u8 is in
* 500kbps units, eg, 0x02=1Mbps * 500kbps units, eg, 0x02=1Mbps
*/ */
pkt_rate_100kHz = (*iterator.this_arg) * 5; pkt_rate_100kHz = (*iterator.this_arg) * 5;
break; break;
case IEEE80211_RADIOTAP_ANTENNA: case IEEE80211_RADIOTAP_ANTENNA:
/* radiotap uses 0 for 1st ant */ /* radiotap uses 0 for 1st ant */
antenna = *iterator.this_arg); antenna = *iterator.this_arg);
break; break;
case IEEE80211_RADIOTAP_DBM_TX_POWER: case IEEE80211_RADIOTAP_DBM_TX_POWER:
pwr = *iterator.this_arg; pwr = *iterator.this_arg;
break; break;
default: default:
break; break;
} }
} /* while more rt headers */ } /* while more rt headers */
if (ret != -ENOENT) if (ret != -ENOENT)
return TXRX_DROP; return TXRX_DROP;
/* discard the radiotap header part */ /* discard the radiotap header part */
buf += iterator.max_length; buf += iterator.max_length;
buflen -= iterator.max_length; buflen -= iterator.max_length;
... ...
} }
Andy Green <andy@warmcat.com> Andy Green <andy@warmcat.com>
.. SPDX-License-Identifier: GPL-2.0
.. include:: <isonum.txt>
=========================
Raylink wireless LAN card
=========================
September 21, 1999 September 21, 1999
Copyright (c) 1998 Corey Thomas (corey@world.std.com) Copyright |copy| 1998 Corey Thomas (corey@world.std.com)
This file is the documentation for the Raylink Wireless LAN card driver for This file is the documentation for the Raylink Wireless LAN card driver for
Linux. The Raylink wireless LAN card is a PCMCIA card which provides IEEE Linux. The Raylink wireless LAN card is a PCMCIA card which provides IEEE
...@@ -13,7 +21,7 @@ wireless LAN cards. ...@@ -13,7 +21,7 @@ wireless LAN cards.
As of kernel 2.3.18, the ray_cs driver is part of the Linux kernel As of kernel 2.3.18, the ray_cs driver is part of the Linux kernel
source. My web page for the development of ray_cs is at source. My web page for the development of ray_cs is at
http://web.ralinktech.com/ralink/Home/Support/Linux.html http://web.ralinktech.com/ralink/Home/Support/Linux.html
and I can be emailed at corey@world.std.com and I can be emailed at corey@world.std.com
The kernel driver is based on ray_cs-1.62.tgz The kernel driver is based on ray_cs-1.62.tgz
...@@ -29,6 +37,7 @@ with nondefault parameters, they can be edited in ...@@ -29,6 +37,7 @@ with nondefault parameters, they can be edited in
will find them all. will find them all.
Information on card services is available at: Information on card services is available at:
http://pcmcia-cs.sourceforge.net/ http://pcmcia-cs.sourceforge.net/
...@@ -39,72 +48,78 @@ the driver. ...@@ -39,72 +48,78 @@ the driver.
Currently, ray_cs is not part of David Hinds card services package, Currently, ray_cs is not part of David Hinds card services package,
so the following magic is required. so the following magic is required.
At the end of the /etc/pcmcia/config.opts file, add the line: At the end of the /etc/pcmcia/config.opts file, add the line:
source ./ray_cs.opts source ./ray_cs.opts
This will make card services read the ray_cs.opts file This will make card services read the ray_cs.opts file
when starting. Create the file /etc/pcmcia/ray_cs.opts containing the when starting. Create the file /etc/pcmcia/ray_cs.opts containing the
following: following::
#### start of /etc/pcmcia/ray_cs.opts ################### #### start of /etc/pcmcia/ray_cs.opts ###################
# Configuration options for Raylink Wireless LAN PCMCIA card # Configuration options for Raylink Wireless LAN PCMCIA card
device "ray_cs" device "ray_cs"
class "network" module "misc/ray_cs" class "network" module "misc/ray_cs"
card "RayLink PC Card WLAN Adapter" card "RayLink PC Card WLAN Adapter"
manfid 0x01a6, 0x0000 manfid 0x01a6, 0x0000
bind "ray_cs" bind "ray_cs"
module "misc/ray_cs" opts "" module "misc/ray_cs" opts ""
#### end of /etc/pcmcia/ray_cs.opts ##################### #### end of /etc/pcmcia/ray_cs.opts #####################
To join an existing network with To join an existing network with
different parameters, contact the network administrator for the different parameters, contact the network administrator for the
configuration information, and edit /etc/pcmcia/ray_cs.opts. configuration information, and edit /etc/pcmcia/ray_cs.opts.
Add the parameters below between the empty quotes. Add the parameters below between the empty quotes.
Parameters for ray_cs driver which may be specified in ray_cs.opts: Parameters for ray_cs driver which may be specified in ray_cs.opts:
bc integer 0 = normal mode (802.11 timing) =============== =============== =============================================
1 = slow down inter frame timing to allow bc integer 0 = normal mode (802.11 timing),
operation with older breezecom access 1 = slow down inter frame timing to allow
points. operation with older breezecom access
points.
beacon_period integer beacon period in Kilo-microseconds
legal values = must be integer multiple beacon_period integer beacon period in Kilo-microseconds,
of hop dwell
default = 256 legal values = must be integer multiple
of hop dwell
country integer 1 = USA (default)
2 = Europe default = 256
3 = Japan
4 = Korea country integer 1 = USA (default),
5 = Spain 2 = Europe,
6 = France 3 = Japan,
7 = Israel 4 = Korea,
8 = Australia 5 = Spain,
6 = France,
7 = Israel,
8 = Australia
essid string ESS ID - network name to join essid string ESS ID - network name to join
string with maximum length of 32 chars string with maximum length of 32 chars
default value = "ADHOC_ESSID" default value = "ADHOC_ESSID"
hop_dwell integer hop dwell time in Kilo-microseconds hop_dwell integer hop dwell time in Kilo-microseconds
legal values = 16,32,64,128(default),256 legal values = 16,32,64,128(default),256
irq_mask integer linux standard 16 bit value 1bit/IRQ irq_mask integer linux standard 16 bit value 1bit/IRQ
lsb is IRQ 0, bit 1 is IRQ 1 etc. lsb is IRQ 0, bit 1 is IRQ 1 etc.
Used to restrict choice of IRQ's to use. Used to restrict choice of IRQ's to use.
Recommended method for controlling Recommended method for controlling
interrupts is in /etc/pcmcia/config.opts interrupts is in /etc/pcmcia/config.opts
net_type integer 0 (default) = adhoc network, net_type integer 0 (default) = adhoc network,
1 = infrastructure 1 = infrastructure
phy_addr string string containing new MAC address in phy_addr string string containing new MAC address in
hex, must start with x eg hex, must start with x eg
x00008f123456 x00008f123456
psm integer 0 = continuously active psm integer 0 = continuously active,
1 = power save mode (not useful yet) 1 = power save mode (not useful yet)
pc_debug integer (0-5) larger values for more verbose pc_debug integer (0-5) larger values for more verbose
...@@ -114,14 +129,14 @@ ray_debug integer Replaced with pc_debug ...@@ -114,14 +129,14 @@ ray_debug integer Replaced with pc_debug
ray_mem_speed integer defaults to 500 ray_mem_speed integer defaults to 500
sniffer integer 0 = not sniffer (default) sniffer integer 0 = not sniffer (default),
1 = sniffer which can be used to record all 1 = sniffer which can be used to record all
network traffic using tcpdump or similar, network traffic using tcpdump or similar,
but no normal network use is allowed. but no normal network use is allowed.
translate integer 0 = no translation (encapsulate frames) translate integer 0 = no translation (encapsulate frames),
1 = translation (RFC1042/802.1) 1 = translation (RFC1042/802.1)
=============== =============== =============================================
More on sniffer mode: More on sniffer mode:
...@@ -136,7 +151,7 @@ package which parses the 802.11 headers. ...@@ -136,7 +151,7 @@ package which parses the 802.11 headers.
Known Problems and missing features Known Problems and missing features
Does not work with non x86 Does not work with non x86
Does not work with SMP Does not work with SMP
......
.. SPDX-License-Identifier: GPL-2.0
=================
LSM/SeLinux secid
=================
flowi structure: flowi structure:
The secid member in the flow structure is used in LSMs (e.g. SELinux) to indicate The secid member in the flow structure is used in LSMs (e.g. SELinux) to indicate
......
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
This diff is collapsed.
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment