Aren/NetBSD
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Change struct sched to be allocated be the caller to avoid some memory

Browse Source 
allocations. Optimize scheduling algorithm to not scan all entries in
the main loop.
This commit is contained in:
tteras 2008-09-19 11:01:08 +00:00
parent eb4e8b70f1
commit fbf62026bb
15 changed files with 207 additions and 284 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
crypto/dist/ipsec-tools/ChangeLog vendored
View File

@ -1,3 +1,10 @@
2008-09-19 Timo Teras <timo.teras@iki.fi>
* src/racoon/{schedule.c|schedule.h|session.c|isakmp.c|
isakmp_var.h|handler.c|handler.h|isakmp_quick.c|pfkey.c|pfkey.h|
isakmp_inf.c|isakmp_xauth.c|isakmp_xauth.h|nattraversal.c}:
Change struct sched to be allocated be the caller and optimize
scheduler to be faster.
2008-09-17 Yvan Vanhullebus <vanhu@netasq.com> 2008-09-17 Yvan Vanhullebus <vanhu@netasq.com>
* src/racoon/isakmp_inf.c: Fixed port match in purge_ipsec_spi() * src/racoon/isakmp_inf.c: Fixed port match in purge_ipsec_spi()
when NAT-T enabled and trying to purge non NAT-T SAs. when NAT-T enabled and trying to purge non NAT-T SAs.

32
crypto/dist/ipsec-tools/src/racoon/handler.c vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: handler.c,v 1.19 2008/03/06 00:34:11 mgrooms Exp $ */ /* $NetBSD: handler.c,v 1.20 2008/09/19 11:01:08 tteras Exp $ */
/* Id: handler.c,v 1.28 2006/05/26 12:17:29 manubsd Exp */ /* Id: handler.c,v 1.28 2006/05/26 12:17:29 manubsd Exp */
@ -85,10 +85,10 @@ static LIST_HEAD(_ph1tree_, ph1handle) ph1tree;
static LIST_HEAD(_ph2tree_, ph2handle) ph2tree; static LIST_HEAD(_ph2tree_, ph2handle) ph2tree;
static LIST_HEAD(_ctdtree_, contacted) ctdtree; static LIST_HEAD(_ctdtree_, contacted) ctdtree;
static LIST_HEAD(_rcptree_, recvdpkt) rcptree; static LIST_HEAD(_rcptree_, recvdpkt) rcptree;
static struct sched sc_sweep = SCHED_INITIALIZER();
static void del_recvdpkt __P((struct recvdpkt *)); static void del_recvdpkt __P((struct recvdpkt *));
static void rem_recvdpkt __P((struct recvdpkt *)); static void rem_recvdpkt __P((struct recvdpkt *));
static void sweep_recvdpkt __P((void *));
/* /*
* functions about management of the isakmp status table * functions about management of the isakmp status table
@ -271,7 +271,6 @@ newph1()
iph1->dpd_lastack = 0; iph1->dpd_lastack = 0;
iph1->dpd_seq = 0; iph1->dpd_seq = 0;
iph1->dpd_fails = 0; iph1->dpd_fails = 0;
iph1->dpd_r_u = NULL;
#endif #endif
evt_list_init(&iph1->evt_listeners); evt_list_init(&iph1->evt_listeners);
@ -308,8 +307,10 @@ delph1(iph1)
#endif #endif
#ifdef ENABLE_DPD #ifdef ENABLE_DPD
SCHED_KILL(iph1->dpd_r_u); sched_cancel(&iph1->dpd_r_u);
#endif #endif
sched_cancel(&iph1->sce);
sched_cancel(&iph1->scr);
if (iph1->remote) { if (iph1->remote) {
racoon_free(iph1->remote); racoon_free(iph1->remote);
@ -325,13 +326,7 @@ delph1(iph1)
} }
VPTRINIT(iph1->authstr); VPTRINIT(iph1->authstr);
sched_scrub_param(iph1);
iph1->sce = NULL;
iph1->scr = NULL;
VPTRINIT(iph1->sendbuf); VPTRINIT(iph1->sendbuf);
VPTRINIT(iph1->dhpriv); VPTRINIT(iph1->dhpriv);
VPTRINIT(iph1->dhpub); VPTRINIT(iph1->dhpub);
VPTRINIT(iph1->dhpub_p); VPTRINIT(iph1->dhpub_p);
@ -504,7 +499,7 @@ getph2byid(src, dst, spid)
*/ */
if(p->status < PHASE2ST_ESTABLISHED && if(p->status < PHASE2ST_ESTABLISHED &&
p->retry_counter == 0 p->retry_counter == 0
&& p->sce == NULL && p->scr == NULL){ && p->sce.func == NULL && p->scr.func == NULL) {
plog(LLV_DEBUG, LOCATION, NULL, plog(LLV_DEBUG, LOCATION, NULL,
"Zombie ph2 found, expiring it\n"); "Zombie ph2 found, expiring it\n");
isakmp_ph2expire(p); isakmp_ph2expire(p);
@ -598,9 +593,8 @@ initph2(iph2)
{ {
evt_list_cleanup(&iph2->evt_listeners); evt_list_cleanup(&iph2->evt_listeners);
sched_scrub_param(iph2); sched_cancel(&iph2->sce);
iph2->sce = NULL; sched_cancel(&iph2->scr);
iph2->scr = NULL;
VPTRINIT(iph2->sendbuf); VPTRINIT(iph2->sendbuf);
VPTRINIT(iph2->msg1); VPTRINIT(iph2->msg1);
@ -1020,9 +1014,9 @@ rem_recvdpkt(r)
LIST_REMOVE(r, chain); LIST_REMOVE(r, chain);
} }
void static void
sweep_recvdpkt(dummy) sweep_recvdpkt(dummy)
void *dummy; struct sched *dummy;
{ {
struct recvdpkt *r, *next; struct recvdpkt *r, *next;
time_t t, lt; time_t t, lt;
@ -1042,7 +1036,7 @@ sweep_recvdpkt(dummy)
} }
} }
sched_new(lt, sweep_recvdpkt, NULL); sched_schedule(&sc_sweep, lt, sweep_recvdpkt);
} }
void void
@ -1052,7 +1046,7 @@ init_recvdpkt()
LIST_INIT(&rcptree); LIST_INIT(&rcptree);
sched_new(lt, sweep_recvdpkt, NULL); sched_schedule(&sc_sweep, lt, sweep_recvdpkt);
} }
#ifdef ENABLE_HYBRID #ifdef ENABLE_HYBRID
@ -1325,7 +1319,7 @@ static void remove_ph1(struct ph1handle *iph1){
isakmp_info_send_d1(iph1); isakmp_info_send_d1(iph1);
} }
iph1->status = PHASE1ST_EXPIRED; iph1->status = PHASE1ST_EXPIRED;
iph1->sce = sched_new(1, isakmp_ph1delete_stub, iph1); sched_schedule(&iph1->sce, 1, isakmp_ph1delete_stub);
} }

15
crypto/dist/ipsec-tools/src/racoon/handler.h vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: handler.h,v 1.14 2008/07/14 05:45:15 tteras Exp $ */ /* $NetBSD: handler.h,v 1.15 2008/09/19 11:01:08 tteras Exp $ */
/* Id: handler.h,v 1.19 2006/02/25 08:25:12 manubsd Exp */ /* Id: handler.h,v 1.19 2006/02/25 08:25:12 manubsd Exp */
@ -41,6 +41,7 @@
#include "isakmp_var.h" #include "isakmp_var.h"
#include "oakley.h" #include "oakley.h"
#include "schedule.h"
#include "evt.h" #include "evt.h"
/* Phase 1 handler */ /* Phase 1 handler */
@ -141,9 +142,9 @@ struct ph1handle {
struct isakmp_frag_item *frag_chain; /* Received fragments */ struct isakmp_frag_item *frag_chain; /* Received fragments */
#endif #endif
struct sched *sce; /* schedule for expire */ struct sched sce; /* schedule for expire */
struct sched *scr; /* schedule for resend */ struct sched scr; /* schedule for resend */
int retry_counter; /* for resend. */ int retry_counter; /* for resend. */
vchar_t *sendbuf; /* buffer for re-sending */ vchar_t *sendbuf; /* buffer for re-sending */
@ -202,7 +203,7 @@ struct ph1handle {
time_t dpd_lastack; /* Last ack received */ time_t dpd_lastack; /* Last ack received */
u_int16_t dpd_seq; /* DPD seq number to receive */ u_int16_t dpd_seq; /* DPD seq number to receive */
u_int8_t dpd_fails; /* number of failures */ u_int8_t dpd_fails; /* number of failures */
struct sched *dpd_r_u; struct sched dpd_r_u;
#endif #endif
u_int32_t msgid2; /* msgid counter for Phase 2 */ u_int32_t msgid2; /* msgid counter for Phase 2 */
@ -265,8 +266,8 @@ struct ph2handle {
int status; /* ipsec sa status */ int status; /* ipsec sa status */
u_int8_t side; /* INITIATOR or RESPONDER */ u_int8_t side; /* INITIATOR or RESPONDER */
struct sched *sce; /* schedule for expire */ struct sched sce; /* schedule for expire */
struct sched *scr; /* schedule for resend */ struct sched scr; /* schedule for resend */
int retry_counter; /* for resend. */ int retry_counter; /* for resend. */
vchar_t *sendbuf; /* buffer for re-sending */ vchar_t *sendbuf; /* buffer for re-sending */
vchar_t *msg1; /* buffer for re-sending */ vchar_t *msg1; /* buffer for re-sending */
@ -351,8 +352,6 @@ struct recvdpkt {
time_t time_send; /* timestamp to send a packet */ time_t time_send; /* timestamp to send a packet */
time_t created; /* timestamp to create a queue */ time_t created; /* timestamp to create a queue */
struct sched *scr; /* schedule for resend, may not used */
LIST_ENTRY(recvdpkt) chain; LIST_ENTRY(recvdpkt) chain;
}; };

96
crypto/dist/ipsec-tools/src/racoon/isakmp.c vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: isakmp.c,v 1.39 2008/08/29 00:31:37 gmcgarry Exp $ */ /* $NetBSD: isakmp.c,v 1.40 2008/09/19 11:01:08 tteras Exp $ */
/* Id: isakmp.c,v 1.74 2006/05/07 21:32:59 manubsd Exp */ /* Id: isakmp.c,v 1.74 2006/05/07 21:32:59 manubsd Exp */
@ -833,7 +833,7 @@ ph1_main(iph1, msg)
VPTRINIT(iph1->sendbuf); VPTRINIT(iph1->sendbuf);
/* turn off schedule */ /* turn off schedule */
SCHED_KILL(iph1->scr); sched_cancel(&iph1->scr);
/* send */ /* send */
plog(LLV_DEBUG, LOCATION, NULL, "===\n"); plog(LLV_DEBUG, LOCATION, NULL, "===\n");
@ -864,8 +864,8 @@ ph1_main(iph1, msg)
(void)time(&iph1->created); (void)time(&iph1->created);
/* add to the schedule to expire, and seve back pointer. */ /* add to the schedule to expire, and seve back pointer. */
iph1->sce = sched_new(iph1->approval->lifetime, sched_schedule(&iph1->sce, iph1->approval->lifetime,
isakmp_ph1expire_stub, iph1); isakmp_ph1expire_stub);
#ifdef ENABLE_HYBRID #ifdef ENABLE_HYBRID
if (iph1->mode_cfg->flags & ISAKMP_CFG_VENDORID_XAUTH) { if (iph1->mode_cfg->flags & ISAKMP_CFG_VENDORID_XAUTH) {
switch(AUTHMETHOD(iph1)) { switch(AUTHMETHOD(iph1)) {
@ -996,7 +996,7 @@ quick_main(iph2, msg)
VPTRINIT(iph2->sendbuf); VPTRINIT(iph2->sendbuf);
/* turn off schedule */ /* turn off schedule */
SCHED_KILL(iph2->scr); sched_cancel(&iph2->scr);
/* send */ /* send */
plog(LLV_DEBUG, LOCATION, NULL, "===\n"); plog(LLV_DEBUG, LOCATION, NULL, "===\n");
@ -1877,19 +1877,11 @@ isakmp_send(iph1, sbuf)
/* called from scheduler */ /* called from scheduler */
void void
isakmp_ph1resend_stub(p) isakmp_ph1resend_stub(p)
void *p; struct sched *p;
{ {
struct ph1handle *iph1; struct ph1handle *iph1 = container_of(p, struct ph1handle, scr);
iph1=(struct ph1handle *)p;
if(isakmp_ph1resend(iph1) < 0){
if(iph1->scr != NULL){
/* Should not happen...
*/
sched_kill(iph1->scr);
iph1->scr=NULL;
}
if (isakmp_ph1resend(iph1) < 0) {
remph1(iph1); remph1(iph1);
delph1(iph1); delph1(iph1);
} }
@ -1924,8 +1916,8 @@ isakmp_ph1resend(iph1)
iph1->retry_counter--; iph1->retry_counter--;
iph1->scr = sched_new(iph1->rmconf->retry_interval, sched_schedule(&iph1->scr, iph1->rmconf->retry_interval,
isakmp_ph1resend_stub, iph1); isakmp_ph1resend_stub);
return 0; return 0;
} }
@ -1933,13 +1925,11 @@ isakmp_ph1resend(iph1)
/* called from scheduler */ /* called from scheduler */
void void
isakmp_ph2resend_stub(p) isakmp_ph2resend_stub(p)
void *p; struct sched *p;
{ {
struct ph2handle *iph2; struct ph2handle *iph2 = container_of(p, struct ph2handle, scr);
iph2=(struct ph2handle *)p; if (isakmp_ph2resend(iph2) < 0) {
if(isakmp_ph2resend(iph2) < 0){
unbindph12(iph2); unbindph12(iph2);
remph2(iph2); remph2(iph2);
delph2(iph2); delph2(iph2);
@ -1982,8 +1972,8 @@ isakmp_ph2resend(iph2)
iph2->retry_counter--; iph2->retry_counter--;
iph2->scr = sched_new(iph2->ph1->rmconf->retry_interval, sched_schedule(&iph2->scr, iph2->ph1->rmconf->retry_interval,
isakmp_ph2resend_stub, iph2); isakmp_ph2resend_stub);
return 0; return 0;
} }
@ -1991,10 +1981,9 @@ isakmp_ph2resend(iph2)
/* called from scheduler */ /* called from scheduler */
void void
isakmp_ph1expire_stub(p) isakmp_ph1expire_stub(p)
void *p; struct sched *p;
{ {
isakmp_ph1expire(container_of(p, struct ph1handle, sce));
isakmp_ph1expire((struct ph1handle *)p);
} }
void void
@ -2003,9 +1992,7 @@ isakmp_ph1expire(iph1)
{ {
char *src, *dst; char *src, *dst;
SCHED_KILL(iph1->sce); if (iph1->status != PHASE1ST_EXPIRED) {
if(iph1->status != PHASE1ST_EXPIRED){
src = racoon_strdup(saddr2str(iph1->local)); src = racoon_strdup(saddr2str(iph1->local));
dst = racoon_strdup(saddr2str(iph1->remote)); dst = racoon_strdup(saddr2str(iph1->remote));
STRDUP_FATAL(src); STRDUP_FATAL(src);
@ -2024,20 +2011,20 @@ isakmp_ph1expire(iph1)
* the phase1 deletion is postponed until there is no phase2. * the phase1 deletion is postponed until there is no phase2.
*/ */
if (LIST_FIRST(&iph1->ph2tree) != NULL) { if (LIST_FIRST(&iph1->ph2tree) != NULL) {
iph1->sce = sched_new(1, isakmp_ph1expire_stub, iph1); sched_schedule(&iph1->sce, 1, isakmp_ph1expire_stub);
return; return;
} }
iph1->sce = sched_new(1, isakmp_ph1delete_stub, iph1); sched_schedule(&iph1->sce, 1, isakmp_ph1delete_stub);
} }
/* called from scheduler */ /* called from scheduler */
void void
isakmp_ph1delete_stub(p) isakmp_ph1delete_stub(p)
void *p; struct sched *p;
{ {
isakmp_ph1delete((struct ph1handle *)p); isakmp_ph1delete(container_of(p, struct ph1handle, sce));
} }
void void
@ -2046,10 +2033,8 @@ isakmp_ph1delete(iph1)
{ {
char *src, *dst; char *src, *dst;
SCHED_KILL(iph1->sce);
if (LIST_FIRST(&iph1->ph2tree) != NULL) { if (LIST_FIRST(&iph1->ph2tree) != NULL) {
iph1->sce = sched_new(1, isakmp_ph1delete_stub, iph1); sched_schedule(&iph1->sce, 1, isakmp_ph1delete_stub);
return; return;
} }
@ -2081,10 +2066,10 @@ isakmp_ph1delete(iph1)
*/ */
void void
isakmp_ph2expire_stub(p) isakmp_ph2expire_stub(p)
void *p; struct sched *p;
{ {
isakmp_ph2expire((struct ph2handle *)p); isakmp_ph2expire(container_of(p, struct ph2handle, sce));
} }
void void
@ -2093,8 +2078,6 @@ isakmp_ph2expire(iph2)
{ {
char *src, *dst; char *src, *dst;
SCHED_KILL(iph2->sce);
src = racoon_strdup(saddrwop2str(iph2->src)); src = racoon_strdup(saddrwop2str(iph2->src));
dst = racoon_strdup(saddrwop2str(iph2->dst)); dst = racoon_strdup(saddrwop2str(iph2->dst));
STRDUP_FATAL(src); STRDUP_FATAL(src);
@ -2106,19 +2089,16 @@ isakmp_ph2expire(iph2)
racoon_free(dst); racoon_free(dst);
iph2->status = PHASE2ST_EXPIRED; iph2->status = PHASE2ST_EXPIRED;
sched_schedule(&iph2->sce, 1, isakmp_ph2delete_stub);
iph2->sce = sched_new(1, isakmp_ph2delete_stub, iph2);
return;
} }
/* called from scheduler */ /* called from scheduler */
void void
isakmp_ph2delete_stub(p) isakmp_ph2delete_stub(p)
void *p; struct sched *p;
{ {
isakmp_ph2delete((struct ph2handle *)p); isakmp_ph2delete(container_of(p, struct ph2handle, sce));
} }
void void
@ -2127,8 +2107,6 @@ isakmp_ph2delete(iph2)
{ {
char *src, *dst; char *src, *dst;
SCHED_KILL(iph2->sce);
src = racoon_strdup(saddrwop2str(iph2->src)); src = racoon_strdup(saddrwop2str(iph2->src));
dst = racoon_strdup(saddrwop2str(iph2->dst)); dst = racoon_strdup(saddrwop2str(iph2->dst));
STRDUP_FATAL(src); STRDUP_FATAL(src);
@ -2200,10 +2178,8 @@ isakmp_post_acquire(iph2)
/* no ISAKMP-SA found. */ /* no ISAKMP-SA found. */
if (iph1 == NULL) { if (iph1 == NULL) {
struct sched *sc;
iph2->retry_checkph1 = lcconf->retry_checkph1; iph2->retry_checkph1 = lcconf->retry_checkph1;
sc = sched_new(1, isakmp_chkph1there_stub, iph2); sched_schedule(&iph2->sce, 1, isakmp_chkph1there_stub);
plog(LLV_INFO, LOCATION, NULL, plog(LLV_INFO, LOCATION, NULL,
"IPsec-SA request for %s queued " "IPsec-SA request for %s queued "
"due to no phase1 found.\n", "due to no phase1 found.\n",
@ -2211,7 +2187,7 @@ isakmp_post_acquire(iph2)
/* start phase 1 negotiation as a initiator. */ /* start phase 1 negotiation as a initiator. */
if (isakmp_ph1begin_i(rmconf, iph2->dst, iph2->src) == NULL) { if (isakmp_ph1begin_i(rmconf, iph2->dst, iph2->src) == NULL) {
SCHED_KILL(sc); sched_cancel(&iph2->sce);
return -1; return -1;
} }
@ -2222,7 +2198,7 @@ isakmp_post_acquire(iph2)
/* found ISAKMP-SA, but on negotiation. */ /* found ISAKMP-SA, but on negotiation. */
if (iph1->status != PHASE1ST_ESTABLISHED) { if (iph1->status != PHASE1ST_ESTABLISHED) {
iph2->retry_checkph1 = lcconf->retry_checkph1; iph2->retry_checkph1 = lcconf->retry_checkph1;
sched_new(1, isakmp_chkph1there_stub, iph2); sched_schedule(&iph2->sce, 1, isakmp_chkph1there_stub);
plog(LLV_INFO, LOCATION, iph2->dst, plog(LLV_INFO, LOCATION, iph2->dst,
"request for establishing IPsec-SA was queued " "request for establishing IPsec-SA was queued "
"due to no phase1 found.\n"); "due to no phase1 found.\n");
@ -2348,9 +2324,9 @@ isakmp_post_getspi(iph2)
/* called by scheduler */ /* called by scheduler */
void void
isakmp_chkph1there_stub(p) isakmp_chkph1there_stub(p)
void *p; struct sched *p;
{ {
isakmp_chkph1there((struct ph2handle *)p); isakmp_chkph1there(container_of(p, struct ph2handle, sce));
} }
void void
@ -2426,7 +2402,7 @@ isakmp_chkph1there(iph2)
plog(LLV_DEBUG2, LOCATION, NULL, "CHKPH1THERE: no established ph1 handler found\n"); plog(LLV_DEBUG2, LOCATION, NULL, "CHKPH1THERE: no established ph1 handler found\n");
/* no isakmp-sa found */ /* no isakmp-sa found */
sched_new(1, isakmp_chkph1there_stub, iph2); sched_schedule(&iph2->sce, 1, isakmp_chkph1there_stub);
return; return;
} }
@ -3401,9 +3377,7 @@ purge_remote(iph1)
"purged ISAKMP-SA spi=%s.\n", "purged ISAKMP-SA spi=%s.\n",
isakmp_pindex(&(iph1->index), iph1->msgid)); isakmp_pindex(&(iph1->index), iph1->msgid));
SCHED_KILL(iph1->sce); sched_schedule(&iph1->sce, 1, isakmp_ph1delete_stub);
iph1->sce = sched_new(1, isakmp_ph1delete_stub, iph1);
} }
void void

28
crypto/dist/ipsec-tools/src/racoon/isakmp_inf.c vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: isakmp_inf.c,v 1.32 2008/09/17 12:39:07 vanhu Exp $ */ /* $NetBSD: isakmp_inf.c,v 1.33 2008/09/19 11:01:08 tteras Exp $ */
/* Id: isakmp_inf.c,v 1.44 2006/05/06 20:45:52 manubsd Exp */ /* Id: isakmp_inf.c,v 1.44 2006/05/06 20:45:52 manubsd Exp */
@ -107,7 +107,7 @@ static int isakmp_info_recv_r_u __P((struct ph1handle *,
struct isakmp_pl_ru *, u_int32_t)); struct isakmp_pl_ru *, u_int32_t));
static int isakmp_info_recv_r_u_ack __P((struct ph1handle *, static int isakmp_info_recv_r_u_ack __P((struct ph1handle *,
struct isakmp_pl_ru *, u_int32_t)); struct isakmp_pl_ru *, u_int32_t));
static void isakmp_info_send_r_u __P((void *)); static void isakmp_info_send_r_u __P((struct sched *));
#endif #endif
static void purge_isakmp_spi __P((int, isakmp_index *, size_t)); static void purge_isakmp_spi __P((int, isakmp_index *, size_t));
@ -518,7 +518,7 @@ isakmp_info_recv_d(iph1, delete, msgid, encrypted)
if(del_ph1 != NULL){ if(del_ph1 != NULL){
evt_phase1(iph1, EVT_PHASE1_PEER_DELETED, NULL); evt_phase1(iph1, EVT_PHASE1_PEER_DELETED, NULL);
SCHED_KILL(del_ph1->scr); sched_cancel(&del_ph1->scr);
/* /*
* Do not delete IPsec SAs when receiving an IKE delete notification. * Do not delete IPsec SAs when receiving an IKE delete notification.
@ -1117,9 +1117,8 @@ purge_isakmp_spi(proto, spi, n)
s_ipsecdoi_proto(proto), s_ipsecdoi_proto(proto),
isakmp_pindex(&spi[i], 0)); isakmp_pindex(&spi[i], 0));
SCHED_KILL(iph1->sce);
iph1->status = PHASE1ST_EXPIRED; iph1->status = PHASE1ST_EXPIRED;
iph1->sce = sched_new(1, isakmp_ph1delete_stub, iph1); sched_schedule(&iph1->sce, 1, isakmp_ph1delete_stub);
} }
} }
@ -1564,8 +1563,7 @@ isakmp_info_recv_r_u_ack (iph1, ru, msgid)
/* Useless ??? */ /* Useless ??? */
iph1->dpd_lastack = time(NULL); iph1->dpd_lastack = time(NULL);
SCHED_KILL(iph1->dpd_r_u); sched_cancel(&iph1->dpd_r_u);
isakmp_sched_r_u(iph1, 0); isakmp_sched_r_u(iph1, 0);
plog(LLV_DEBUG, LOCATION, NULL, "received an R-U-THERE-ACK\n"); plog(LLV_DEBUG, LOCATION, NULL, "received an R-U-THERE-ACK\n");
@ -1580,10 +1578,10 @@ isakmp_info_recv_r_u_ack (iph1, ru, msgid)
* send DPD R-U-THERE payload in Informational exchange. * send DPD R-U-THERE payload in Informational exchange.
*/ */
static void static void
isakmp_info_send_r_u(arg) isakmp_info_send_r_u(sc)
void *arg; struct sched *sc;
{ {
struct ph1handle *iph1 = arg; struct ph1handle *iph1 = container_of(sc, struct ph1handle, dpd_r_u);
/* create R-U-THERE payload */ /* create R-U-THERE payload */
struct isakmp_pl_ru *ru; struct isakmp_pl_ru *ru;
@ -1593,8 +1591,6 @@ isakmp_info_send_r_u(arg)
plog(LLV_DEBUG, LOCATION, iph1->remote, "DPD monitoring....\n"); plog(LLV_DEBUG, LOCATION, iph1->remote, "DPD monitoring....\n");
iph1->dpd_r_u=NULL;
if (iph1->dpd_fails >= iph1->rmconf->dpd_maxfails) { if (iph1->dpd_fails >= iph1->rmconf->dpd_maxfails) {
plog(LLV_INFO, LOCATION, iph1->remote, plog(LLV_INFO, LOCATION, iph1->remote,
@ -1674,11 +1670,11 @@ isakmp_sched_r_u(iph1, retry)
return 0; return 0;
if(retry) if(retry)
iph1->dpd_r_u = sched_new(iph1->rmconf->dpd_retry, sched_schedule(&iph1->dpd_r_u, iph1->rmconf->dpd_retry,
isakmp_info_send_r_u, iph1); isakmp_info_send_r_u);
else else
iph1->dpd_r_u = sched_new(iph1->rmconf->dpd_interval, sched_schedule(&iph1->dpd_r_u, iph1->rmconf->dpd_interval,
isakmp_info_send_r_u, iph1); isakmp_info_send_r_u);
return 0; return 0;
} }

37
crypto/dist/ipsec-tools/src/racoon/isakmp_quick.c vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: isakmp_quick.c,v 1.19 2008/07/14 05:45:15 tteras Exp $ */ /* $NetBSD: isakmp_quick.c,v 1.20 2008/09/19 11:01:08 tteras Exp $ */
/* Id: isakmp_quick.c,v 1.29 2006/08/22 18:17:17 manubsd Exp */ /* Id: isakmp_quick.c,v 1.29 2006/08/22 18:17:17 manubsd Exp */
@ -99,6 +99,33 @@ static vchar_t *quick_ir1mx __P((struct ph2handle *, vchar_t *, vchar_t *));
static int get_sainfo_r __P((struct ph2handle *)); static int get_sainfo_r __P((struct ph2handle *));
static int get_proposal_r __P((struct ph2handle *)); static int get_proposal_r __P((struct ph2handle *));
static int ph2_recv_n __P((struct ph2handle *, struct isakmp_gen *)); static int ph2_recv_n __P((struct ph2handle *, struct isakmp_gen *));
static void quick_timeover_stub __P((struct sched *));
static void quick_timeover __P((struct ph2handle *));
/* called from scheduler */
static void
quick_timeover_stub(p)
struct sched *p;
{
quick_timeover(container_of(p, struct ph2handle, sce));
}
static void
quick_timeover(iph2)
struct ph2handle *iph2;
{
plog(LLV_ERROR, LOCATION, NULL,
"%s give up to get IPsec-SA due to time up to wait.\n",
saddrwop2str(iph2->dst));
/* If initiator side, send error to kernel by SADB_ACQUIRE. */
if (iph2->side == INITIATOR)
pk_sendeacquire(iph2);
unbindph12(iph2);
remph2(iph2);
delph2(iph2);
}
/* %%% /* %%%
* Quick Mode * Quick Mode
@ -139,8 +166,8 @@ quick_i1prep(iph2, msg)
plog(LLV_DEBUG, LOCATION, NULL, "pfkey getspi sent.\n"); plog(LLV_DEBUG, LOCATION, NULL, "pfkey getspi sent.\n");
iph2->sce = sched_new(lcconf->wait_ph2complete, sched_schedule(&iph2->sce, lcconf->wait_ph2complete,
pfkey_timeover_stub, iph2); quick_timeover_stub);
error = 0; error = 0;
@ -1390,8 +1417,8 @@ quick_r1prep(iph2, msg)
plog(LLV_DEBUG, LOCATION, NULL, "pfkey getspi sent.\n"); plog(LLV_DEBUG, LOCATION, NULL, "pfkey getspi sent.\n");
iph2->sce = sched_new(lcconf->wait_ph2complete, sched_schedule(&iph2->sce, lcconf->wait_ph2complete,
pfkey_timeover_stub, iph2); quick_timeover_stub);
error = 0; error = 0;

16
crypto/dist/ipsec-tools/src/racoon/isakmp_var.h vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: isakmp_var.h,v 1.9 2008/03/06 00:46:04 mgrooms Exp $ */ /* $NetBSD: isakmp_var.h,v 1.10 2008/09/19 11:01:08 tteras Exp $ */
/* Id: isakmp_var.h,v 1.12 2005/05/07 14:45:31 manubsd Exp */ /* Id: isakmp_var.h,v 1.12 2005/05/07 14:45:31 manubsd Exp */
@ -75,23 +75,23 @@ extern int isakmp_open __P((void));
extern void isakmp_close __P((void)); extern void isakmp_close __P((void));
extern int isakmp_send __P((struct ph1handle *, vchar_t *)); extern int isakmp_send __P((struct ph1handle *, vchar_t *));
extern void isakmp_ph1resend_stub __P((void *)); extern void isakmp_ph1resend_stub __P((struct sched *));
extern int isakmp_ph1resend __P((struct ph1handle *)); extern int isakmp_ph1resend __P((struct ph1handle *));
extern void isakmp_ph2resend_stub __P((void *)); extern void isakmp_ph2resend_stub __P((struct sched *));
extern int isakmp_ph2resend __P((struct ph2handle *)); extern int isakmp_ph2resend __P((struct ph2handle *));
extern void isakmp_ph1expire_stub __P((void *)); extern void isakmp_ph1expire_stub __P((struct sched *));
extern void isakmp_ph1expire __P((struct ph1handle *)); extern void isakmp_ph1expire __P((struct ph1handle *));
extern void isakmp_ph1delete_stub __P((void *)); extern void isakmp_ph1delete_stub __P((struct sched *));
extern void isakmp_ph1delete __P((struct ph1handle *)); extern void isakmp_ph1delete __P((struct ph1handle *));
extern void isakmp_ph2expire_stub __P((void *)); extern void isakmp_ph2expire_stub __P((struct sched *));
extern void isakmp_ph2expire __P((struct ph2handle *)); extern void isakmp_ph2expire __P((struct ph2handle *));
extern void isakmp_ph2delete_stub __P((void *)); extern void isakmp_ph2delete_stub __P((struct sched *));
extern void isakmp_ph2delete __P((struct ph2handle *)); extern void isakmp_ph2delete __P((struct ph2handle *));
extern int isakmp_get_sainfo __P((struct ph2handle *, struct secpolicy *, struct secpolicy *)); extern int isakmp_get_sainfo __P((struct ph2handle *, struct secpolicy *, struct secpolicy *));
extern int isakmp_post_acquire __P((struct ph2handle *)); extern int isakmp_post_acquire __P((struct ph2handle *));
extern int isakmp_post_getspi __P((struct ph2handle *)); extern int isakmp_post_getspi __P((struct ph2handle *));
extern void isakmp_chkph1there_stub __P((void *)); extern void isakmp_chkph1there_stub __P((struct sched *));
extern void isakmp_chkph1there __P((struct ph2handle *)); extern void isakmp_chkph1there __P((struct ph2handle *));
extern caddr_t isakmp_set_attr_v __P((caddr_t, int, caddr_t, int)); extern caddr_t isakmp_set_attr_v __P((caddr_t, int, caddr_t, int));

14
crypto/dist/ipsec-tools/src/racoon/isakmp_xauth.c vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: isakmp_xauth.c,v 1.15 2008/07/22 01:30:02 mgrooms Exp $ */ /* $NetBSD: isakmp_xauth.c,v 1.16 2008/09/19 11:01:08 tteras Exp $ */
/* Id: isakmp_xauth.c,v 1.38 2006/08/22 18:17:17 manubsd Exp */ /* Id: isakmp_xauth.c,v 1.38 2006/08/22 18:17:17 manubsd Exp */
@ -330,7 +330,7 @@ skip_auth:
if (throttle_delay != 0) { if (throttle_delay != 0) {
struct xauth_reply_arg *xra; struct xauth_reply_arg *xra;
if ((xra = racoon_malloc(sizeof(*xra))) == NULL) { if ((xra = racoon_calloc(1, sizeof(*xra))) == NULL) {
plog(LLV_ERROR, LOCATION, NULL, plog(LLV_ERROR, LOCATION, NULL,
"malloc failed, bypass throttling\n"); "malloc failed, bypass throttling\n");
return xauth_reply(iph1, port, id, res); return xauth_reply(iph1, port, id, res);
@ -345,7 +345,8 @@ skip_auth:
xra->port = port; xra->port = port;
xra->id = id; xra->id = id;
xra->res = res; xra->res = res;
sched_new(throttle_delay, xauth_reply_stub, xra); sched_schedule(&xra->sc, throttle_delay,
xauth_reply_stub);
} else { } else {
return xauth_reply(iph1, port, id, res); return xauth_reply(iph1, port, id, res);
} }
@ -355,10 +356,10 @@ skip_auth:
} }
void void
xauth_reply_stub(args) xauth_reply_stub(sc)
void *args; struct sched *sc;
{ {
struct xauth_reply_arg *xra = (struct xauth_reply_arg *)args; struct xauth_reply_arg *xra = container_of(sc, struct xauth_reply_arg, sc);
struct ph1handle *iph1; struct ph1handle *iph1;
if ((iph1 = getph1byindex(&xra->index)) != NULL) if ((iph1 = getph1byindex(&xra->index)) != NULL)
@ -368,7 +369,6 @@ xauth_reply_stub(args)
"Delayed Xauth reply: phase 1 no longer exists.\n"); "Delayed Xauth reply: phase 1 no longer exists.\n");
racoon_free(xra); racoon_free(xra);
return;
} }
int int

7
crypto/dist/ipsec-tools/src/racoon/isakmp_xauth.h vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: isakmp_xauth.h,v 1.5 2008/07/22 01:30:02 mgrooms Exp $ */ /* $NetBSD: isakmp_xauth.h,v 1.6 2008/09/19 11:01:08 tteras Exp $ */
/* $KAME$ */ /* $KAME$ */
@ -34,6 +34,8 @@
#ifndef _ISAKMP_XAUTH_H #ifndef _ISAKMP_XAUTH_H
#define _ISAKMP_XAUTH_H #define _ISAKMP_XAUTH_H
#include "schedule.h"
/* ISAKMP mode config attribute types specific to the Xauth vendor ID */ /* ISAKMP mode config attribute types specific to the Xauth vendor ID */
#define XAUTH_TYPE 16520 #define XAUTH_TYPE 16520
#define XAUTH_USER_NAME 16521 #define XAUTH_USER_NAME 16521
@ -90,6 +92,7 @@ struct xauth_rmconf {
#define XAUTHST_OK 2 #define XAUTHST_OK 2
struct xauth_reply_arg { struct xauth_reply_arg {
struct sched sc;
isakmp_index index; isakmp_index index;
int port; int port;
int id; int id;
@ -107,7 +110,7 @@ int group_check(struct ph1handle *, char **, int);
vchar_t *isakmp_xauth_req(struct ph1handle *, struct isakmp_data *); vchar_t *isakmp_xauth_req(struct ph1handle *, struct isakmp_data *);
vchar_t *isakmp_xauth_set(struct ph1handle *, struct isakmp_data *); vchar_t *isakmp_xauth_set(struct ph1handle *, struct isakmp_data *);
void xauth_rmstate(struct xauth_state *); void xauth_rmstate(struct xauth_state *);
void xauth_reply_stub(void *); void xauth_reply_stub(struct sched *);
int xauth_reply(struct ph1handle *, int, int, int); int xauth_reply(struct ph1handle *, int, int, int);
int xauth_rmconf_used(struct xauth_rmconf **); int xauth_rmconf_used(struct xauth_rmconf **);
void xauth_rmconf_delete(struct xauth_rmconf **); void xauth_rmconf_delete(struct xauth_rmconf **);

9
crypto/dist/ipsec-tools/src/racoon/nattraversal.c vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: nattraversal.c,v 1.6 2006/09/09 16:22:09 manu Exp $ */ /* $NetBSD: nattraversal.c,v 1.7 2008/09/19 11:01:08 tteras Exp $ */
/* /*
* Copyright (C) 2004 SuSE Linux AG, Nuernberg, Germany. * Copyright (C) 2004 SuSE Linux AG, Nuernberg, Germany.
@ -77,6 +77,7 @@ struct natt_ka_addrs {
}; };
static TAILQ_HEAD(_natt_ka_addrs, natt_ka_addrs) ka_tree; static TAILQ_HEAD(_natt_ka_addrs, natt_ka_addrs) ka_tree;
static struct sched sc_natt = SCHED_INITIALIZER();
/* /*
* check if the given vid is NAT-T. * check if the given vid is NAT-T.
@ -321,7 +322,7 @@ natt_handle_vendorid (struct ph1handle *iph1, int vid_numeric)
/* NAT keepalive functions */ /* NAT keepalive functions */
static void static void
natt_keepalive_send (void *param) natt_keepalive_send (struct sched *param)
{ {
struct natt_ka_addrs *ka, *next = NULL; struct natt_ka_addrs *ka, *next = NULL;
char keepalive_packet[] = { 0xff }; char keepalive_packet[] = { 0xff };
@ -346,7 +347,7 @@ natt_keepalive_send (void *param)
strerror (errno)); strerror (errno));
} }
sched_new (lcconf->natt_ka_interval, natt_keepalive_send, NULL); sched_schedule (&sc_natt, lcconf->natt_ka_interval, natt_keepalive_send);
} }
void void
@ -356,7 +357,7 @@ natt_keepalive_init (void)
/* To disable sending KAs set natt_ka_interval=0 */ /* To disable sending KAs set natt_ka_interval=0 */
if (lcconf->natt_ka_interval > 0) if (lcconf->natt_ka_interval > 0)
sched_new (lcconf->natt_ka_interval, natt_keepalive_send, NULL); sched_schedule (&sc_natt, lcconf->natt_ka_interval, natt_keepalive_send);
} }
int int

43
crypto/dist/ipsec-tools/src/racoon/pfkey.c vendored
View File

@ -1,6 +1,6 @@
/* $NetBSD: pfkey.c,v 1.32 2008/09/09 11:50:42 vanhu Exp $ */ /* $NetBSD: pfkey.c,v 1.33 2008/09/19 11:01:08 tteras Exp $ */
/* $Id: pfkey.c,v 1.32 2008/09/09 11:50:42 vanhu Exp $ */ /* $Id: pfkey.c,v 1.33 2008/09/19 11:01:08 tteras Exp $ */
/* /*
* Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
@ -815,35 +815,6 @@ pfkey_convertfromipsecdoi(proto_id, t_id, hashtype,
return -1; return -1;
} }
/* called from scheduler */
void
pfkey_timeover_stub(p)
void *p;
{
pfkey_timeover((struct ph2handle *)p);
}
void
pfkey_timeover(iph2)
struct ph2handle *iph2;
{
plog(LLV_ERROR, LOCATION, NULL,
"%s give up to get IPsec-SA due to time up to wait.\n",
saddrwop2str(iph2->dst));
SCHED_KILL(iph2->sce);
/* If initiator side, send error to kernel by SADB_ACQUIRE. */
if (iph2->side == INITIATOR)
pk_sendeacquire(iph2);
unbindph12(iph2);
remph2(iph2);
delph2(iph2);
return;
}
/*%%%*/ /*%%%*/
/* send getspi message per ipsec protocol per remote address */ /* send getspi message per ipsec protocol per remote address */
/* /*
@ -1313,7 +1284,7 @@ pk_recvupdate(mhp)
return 0; return 0;
/* turn off the timer for calling pfkey_timeover() */ /* turn off the timer for calling pfkey_timeover() */
SCHED_KILL(iph2->sce); sched_cancel(&iph2->sce);
/* update status */ /* update status */
iph2->status = PHASE2ST_ESTABLISHED; iph2->status = PHASE2ST_ESTABLISHED;
@ -1329,7 +1300,7 @@ pk_recvupdate(mhp)
iph2->ph1->ph2cnt++; iph2->ph1->ph2cnt++;
/* turn off schedule */ /* turn off schedule */
SCHED_KILL(iph2->scr); sched_cancel(&iph2->scr);
/* Force the update of ph2's ports, as there is at least one /* Force the update of ph2's ports, as there is at least one
* situation where they'll mismatch with ph1's values * situation where they'll mismatch with ph1's values
@ -1346,8 +1317,8 @@ pk_recvupdate(mhp)
*/ */
unbindph12(iph2); unbindph12(iph2);
iph2->sce = sched_new(iph2->approval->lifetime, sched_schedule(&iph2->sce, iph2->approval->lifetime,
isakmp_ph2expire_stub, iph2); isakmp_ph2expire_stub);
plog(LLV_DEBUG, LOCATION, NULL, "===\n"); plog(LLV_DEBUG, LOCATION, NULL, "===\n");
return 0; return 0;
@ -1659,7 +1630,7 @@ pk_recvexpire(mhp)
} }
/* turn off the timer for calling isakmp_ph2expire() */ /* turn off the timer for calling isakmp_ph2expire() */
SCHED_KILL(iph2->sce); sched_cancel(&iph2->sce);
iph2->status = PHASE2ST_EXPIRED; iph2->status = PHASE2ST_EXPIRED;

5
crypto/dist/ipsec-tools/src/racoon/pfkey.h vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: pfkey.h,v 1.5 2008/03/05 22:09:44 mgrooms Exp $ */ /* $NetBSD: pfkey.h,v 1.6 2008/09/19 11:01:08 tteras Exp $ */
/* Id: pfkey.h,v 1.3 2004/06/11 16:00:17 ludvigm Exp */ /* Id: pfkey.h,v 1.3 2004/06/11 16:00:17 ludvigm Exp */
@ -61,9 +61,6 @@ extern int pk_sendspdupdate2 __P((struct ph2handle *));
extern int pk_sendspdadd2 __P((struct ph2handle *)); extern int pk_sendspdadd2 __P((struct ph2handle *));
extern int pk_sendspddelete __P((struct ph2handle *)); extern int pk_sendspddelete __P((struct ph2handle *));
extern void pfkey_timeover_stub __P((void *));
extern void pfkey_timeover __P((struct ph2handle *));
extern u_int pfkey2ipsecdoi_proto __P((u_int)); extern u_int pfkey2ipsecdoi_proto __P((u_int));
extern u_int ipsecdoi2pfkey_proto __P((u_int)); extern u_int ipsecdoi2pfkey_proto __P((u_int));
extern u_int pfkey2ipsecdoi_mode __P((u_int)); extern u_int pfkey2ipsecdoi_mode __P((u_int));

130
crypto/dist/ipsec-tools/src/racoon/schedule.c vendored
View File

@ -1,9 +1,10 @@
/* $NetBSD: schedule.c,v 1.4 2006/09/09 16:22:10 manu Exp $ */ /* $NetBSD: schedule.c,v 1.5 2008/09/19 11:01:08 tteras Exp $ */
/* $KAME: schedule.c,v 1.19 2001/11/05 10:53:19 sakane Exp $ */ /* $KAME: schedule.c,v 1.19 2001/11/05 10:53:19 sakane Exp $ */
/* /*
* Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
* Copyright (C) 2008 Timo Teras.
* All rights reserved. * All rights reserved.
* *
* Redistribution and use in source and binary forms, with or without * Redistribution and use in source and binary forms, with or without
@ -68,7 +69,6 @@ static time_t deltaY2038;
static TAILQ_HEAD(_schedtree, sched) sctree; static TAILQ_HEAD(_schedtree, sched) sctree;
static void sched_add __P((struct sched *));
static time_t current_time __P((void)); static time_t current_time __P((void));
/* /*
@ -81,30 +81,16 @@ struct timeval *
schedular() schedular()
{ {
time_t now, delta; time_t now, delta;
struct sched *p, *next = NULL; struct sched *p;
now = current_time(); now = current_time();
while (!TAILQ_EMPTY(&sctree) && TAILQ_FIRST(&sctree)->xtime <= now) {
void (*func)(struct sched *);
for (p = TAILQ_FIRST(&sctree); p; p = next) { p = TAILQ_FIRST(&sctree);
/* if the entry has been daed, remove it */ func = p->func;
if (p->dead) sched_cancel(p);
goto next_schedule; func(p);
/* if the time hasn't come, proceed to the next entry */
if (now < p->xtime) {
next = TAILQ_NEXT(p, chain);
continue;
}
/* mark it with dead. and call the function. */
p->dead = 1;
if (p->func != NULL)
(p->func)(p->param);
next_schedule:
next = TAILQ_NEXT(p, chain);
TAILQ_REMOVE(&sctree, p, chain);
racoon_free(p);
} }
p = TAILQ_FIRST(&sctree); p = TAILQ_FIRST(&sctree);
@ -112,7 +98,6 @@ schedular()
return NULL; return NULL;
now = current_time(); now = current_time();
delta = p->xtime - now; delta = p->xtime - now;
timeout.tv_sec = delta < 0 ? 0 : delta; timeout.tv_sec = delta < 0 ? 0 : delta;
timeout.tv_usec = 0; timeout.tv_usec = 0;
@ -123,55 +108,47 @@ schedular()
/* /*
* add new schedule to schedule table. * add new schedule to schedule table.
*/ */
struct sched * void
sched_new(tick, func, param) sched_schedule(sc, tick, func)
struct sched *sc;
time_t tick; time_t tick;
void (*func) __P((void *)); void (*func) __P((struct sched *));
void *param;
{ {
static long id = 1; static long id = 1;
struct sched *new;
new = (struct sched *)racoon_malloc(sizeof(*new));
if (new == NULL)
return NULL;
memset(new, 0, sizeof(*new));
new->func = func;
new->param = param;
new->id = id++;
time(&new->created);
new->tick = tick;
new->xtime = current_time() + tick;
new->dead = 0;
/* add to schedule table */
sched_add(new);
return(new);
}
/* add new schedule to schedule table */
static void
sched_add(sc)
struct sched *sc;
{
struct sched *p; struct sched *p;
sched_cancel(sc);
sc->func = func;
sc->id = id++;
time(&sc->created);
sc->tick = tick;
sc->xtime = current_time() + tick;
/* add to schedule table */
TAILQ_FOREACH(p, &sctree, chain) { TAILQ_FOREACH(p, &sctree, chain) {
if (sc->xtime < p->xtime) { if (sc->xtime < p->xtime)
TAILQ_INSERT_BEFORE(p, sc, chain); break;
return;
}
} }
if (p == NULL) if (p == NULL)
TAILQ_INSERT_TAIL(&sctree, sc, chain); TAILQ_INSERT_TAIL(&sctree, sc, chain);
else
return; TAILQ_INSERT_BEFORE(p, sc, chain);
} }
/*
* cancel scheduled callback
*/
void
sched_cancel(sc)
struct sched *sc;
{
if (sc->func != NULL) {
TAILQ_REMOVE(&sctree, sc, chain);
sc->func = NULL;
}
}
/* get current time. /* get current time.
* if defined FIXY2038PROBLEM, base time is the time when called sched_init(). * if defined FIXY2038PROBLEM, base time is the time when called sched_init().
* Otherwise, conform to time(3). * Otherwise, conform to time(3).
@ -194,33 +171,6 @@ current_time()
#endif #endif
} }
void
sched_kill(sc)
struct sched *sc;
{
sc->dead = 1;
return;
}
/* XXX this function is probably unnecessary. */
void
sched_scrub_param(param)
void *param;
{
struct sched *sc;
TAILQ_FOREACH(sc, &sctree, chain) {
if (sc->param == param) {
if (!sc->dead) {
plog(LLV_DEBUG, LOCATION, NULL,
"an undead schedule has been deleted.\n");
}
sched_kill(sc);
}
}
}
/* /*
* for debug * for debug
*/ */
@ -281,8 +231,6 @@ sched_init()
#endif #endif
TAILQ_INIT(&sctree); TAILQ_INIT(&sctree);
return;
} }
#ifdef STEST #ifdef STEST

41
crypto/dist/ipsec-tools/src/racoon/schedule.h vendored
View File

@ -1,9 +1,10 @@
/* $NetBSD: schedule.h,v 1.5 2007/03/21 14:28:59 vanhu Exp $ */ /* $NetBSD: schedule.h,v 1.6 2008/09/19 11:01:08 tteras Exp $ */
/* Id: schedule.h,v 1.5 2006/05/03 21:53:42 vanhu Exp */ /* Id: schedule.h,v 1.5 2006/05/03 21:53:42 vanhu Exp */
/* /*
* Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
* Copyright (C) 2008 Timo Teras.
* All rights reserved. * All rights reserved.
* *
* Redistribution and use in source and binary forms, with or without * Redistribution and use in source and binary forms, with or without
@ -37,6 +38,21 @@
#include <sys/queue.h> #include <sys/queue.h>
#include "gnuc.h" #include "gnuc.h"
#ifndef offsetof
#ifdef __compiler_offsetof
#define offsetof(TYPE,MEMBER) __compiler_offsetof(TYPE,MEMBER)
#else
#define offsetof(TYPE, MEMBER) ((size_t) &((TYPE *)0)->MEMBER)
#endif
#endif
#ifndef container_of
#define container_of(ptr, type, member) ({ \
const typeof( ((type *)0)->member ) *__mptr = (ptr); \
(type *)( (char *)__mptr - offsetof(type,member) );})
#endif
/* scheduling table */ /* scheduling table */
/* the head is the nearest event. */ /* the head is the nearest event. */
struct sched { struct sched {
@ -45,10 +61,8 @@ struct sched {
* if defined FIXY2038PROBLEM, this time * if defined FIXY2038PROBLEM, this time
* is from the time when called sched_init(). * is from the time when called sched_init().
*/ */
void (*func) __P((void *)); /* call this function when timeout. */ void (*func) __P((struct sched *)); /* call this function when timeout. */
void *param; /* pointer to parameter */
int dead; /* dead or alive */
long id; /* for debug */ long id; /* for debug */
time_t created; /* for debug */ time_t created; /* for debug */
time_t tick; /* for debug */ time_t tick; /* for debug */
@ -56,17 +70,7 @@ struct sched {
TAILQ_ENTRY(sched) chain; TAILQ_ENTRY(sched) chain;
}; };
/* cancel schedule */ #define SCHED_INITIALIZER() { 0, NULL, }
#define SCHED_KILL(s) \
do { \
if(s != NULL){ \
sched_kill(s); \
s = NULL; \
}\
} while(0)
/* must be called after it's called from scheduler. */
#define SCHED_INIT(s) (s) = NULL
struct scheddump { struct scheddump {
time_t xtime; time_t xtime;
@ -76,10 +80,11 @@ struct scheddump {
}; };
struct timeval *schedular __P((void)); struct timeval *schedular __P((void));
struct sched *sched_new __P((time_t, void (*func) __P((void *)), void *)); void sched_schedule __P((struct sched *, time_t,
void sched_kill __P((struct sched *)); void (*func) __P((struct sched *))));
void sched_cancel __P((struct sched *));
int sched_dump __P((caddr_t *, int *)); int sched_dump __P((caddr_t *, int *));
void sched_init __P((void)); void sched_init __P((void));
void sched_scrub_param __P((void *));
#endif /* _SCHEDULE_H */ #endif /* _SCHEDULE_H */

11
crypto/dist/ipsec-tools/src/racoon/session.c vendored
View File

@ -1,4 +1,4 @@
/* $NetBSD: session.c,v 1.15 2008/08/06 19:14:28 tteras Exp $ */ /* $NetBSD: session.c,v 1.16 2008/09/19 11:01:08 tteras Exp $ */
/* $KAME: session.c,v 1.32 2003/09/24 02:01:17 jinmei Exp $ */ /* $KAME: session.c,v 1.32 2003/09/24 02:01:17 jinmei Exp $ */
@ -104,7 +104,7 @@ static void initfds __P((void));
static void init_signal __P((void)); static void init_signal __P((void));
static int set_signal __P((int sig, RETSIGTYPE (*func) __P((int)))); static int set_signal __P((int sig, RETSIGTYPE (*func) __P((int))));
static void check_sigreq __P((void)); static void check_sigreq __P((void));
static void check_flushsa_stub __P((void *)); static void check_flushsa_stub __P((struct sched *));
static void check_flushsa __P((void)); static void check_flushsa __P((void));
static int close_sockets __P((void)); static int close_sockets __P((void));
@ -113,6 +113,7 @@ static fd_set maskdying;
static int nfds = 0; static int nfds = 0;
static volatile sig_atomic_t sigreq[NSIG + 1]; static volatile sig_atomic_t sigreq[NSIG + 1];
static int dying = 0; static int dying = 0;
static struct sched scflushsa = SCHED_INITIALIZER();
int int
session(void) session(void)
@ -482,7 +483,7 @@ check_sigreq()
#ifdef ENABLE_FASTQUIT #ifdef ENABLE_FASTQUIT
close_session(); close_session();
#else #else
sched_new(1, check_flushsa_stub, NULL); sched_schedule(&scflushsa, 1, check_flushsa_stub);
#endif #endif
dying = 1; dying = 1;
break; break;
@ -501,7 +502,7 @@ check_sigreq()
*/ */
static void static void
check_flushsa_stub(p) check_flushsa_stub(p)
void *p; struct sched *p;
{ {
check_flushsa(); check_flushsa();
@ -563,7 +564,7 @@ check_flushsa()
vfree(buf); vfree(buf);
if (n) { if (n) {
sched_new(1, check_flushsa_stub, NULL); sched_schedule(&scflushsa, 1, check_flushsa_stub);
return; return;
} }