kernel-interface: Raise mapping event with a proto/SPI/dst tuple
[strongswan.git] / src / libcharon / processing / jobs / process_message_job.c
index a47d48e..a6795e7 100644 (file)
@@ -35,19 +35,15 @@ struct private_process_message_job_t {
        message_t *message;
 };
 
-/**
- * Implements job_t.destroy.
- */
-static void destroy(private_process_message_job_t *this)
+METHOD(job_t, destroy, void,
+       private_process_message_job_t *this)
 {
        this->message->destroy(this->message);
        free(this);
 }
 
-/**
- * Implementation of job_t.execute.
- */
-static void execute(private_process_message_job_t *this)
+METHOD(job_t, execute, job_requeue_t,
+       private_process_message_job_t *this)
 {
        ike_sa_t *ike_sa;
 
@@ -55,7 +51,7 @@ static void execute(private_process_message_job_t *this)
        /* if this is an unencrypted INFORMATIONAL exchange it is likely a
         * connectivity check. */
        if (this->message->get_exchange_type(this->message) == INFORMATIONAL &&
-               this->message->get_first_payload_type(this->message) != ENCRYPTED)
+               this->message->get_first_payload_type(this->message) != PLV2_ENCRYPTED)
        {
                /* theoretically this could also be an error message
                 * see RFC 4306, section 1.5. */
@@ -63,8 +59,7 @@ static void execute(private_process_message_job_t *this)
                         this->message->get_source(this->message),
                         this->message->get_destination(this->message));
                charon->connect_manager->process_check(charon->connect_manager, this->message);
-               destroy(this);
-               return;
+               return JOB_REQUEUE_NONE;
        }
 #endif /* ME */
 
@@ -72,9 +67,10 @@ static void execute(private_process_message_job_t *this)
                                                                                                                 this->message);
        if (ike_sa)
        {
-               DBG1(DBG_NET, "received packet: from %#H to %#H",
+               DBG1(DBG_NET, "received packet: from %#H to %#H (%zu bytes)",
                         this->message->get_source(this->message),
-                        this->message->get_destination(this->message));
+                        this->message->get_destination(this->message),
+                        this->message->get_packet_data(this->message).len);
                if (ike_sa->process_message(ike_sa, this->message) == DESTROY_ME)
                {
                        charon->ike_sa_manager->checkin_and_destroy(charon->ike_sa_manager,
@@ -85,7 +81,28 @@ static void execute(private_process_message_job_t *this)
                        charon->ike_sa_manager->checkin(charon->ike_sa_manager, ike_sa);
                }
        }
-       destroy(this);
+       return JOB_REQUEUE_NONE;
+}
+
+METHOD(job_t, get_priority, job_priority_t,
+       private_process_message_job_t *this)
+{
+       switch (this->message->get_exchange_type(this->message))
+       {
+               case IKE_AUTH:
+                       /* IKE auth is rather expensive and often blocking, low priority */
+                       return JOB_PRIO_LOW;
+               case INFORMATIONAL:
+                       /* INFORMATIONALs are inexpensive, for DPD we should have low
+                        * reaction times */
+                       return JOB_PRIO_HIGH;
+               case IKE_SA_INIT:
+               case CREATE_CHILD_SA:
+               default:
+                       /* IKE_SA_INIT is expensive, but we will drop them in the receiver
+                        * if we are overloaded */
+                       return JOB_PRIO_MEDIUM;
+       }
 }
 
 /*
@@ -93,14 +110,18 @@ static void execute(private_process_message_job_t *this)
  */
 process_message_job_t *process_message_job_create(message_t *message)
 {
-       private_process_message_job_t *this = malloc_thing(private_process_message_job_t);
-
-       /* interface functions */
-       this->public.job_interface.execute = (void (*) (job_t *)) execute;
-       this->public.job_interface.destroy = (void(*)(job_t*))destroy;
+       private_process_message_job_t *this;
 
-       /* private variables */
-       this->message = message;
+       INIT(this,
+               .public = {
+                       .job_interface = {
+                               .execute = _execute,
+                               .get_priority = _get_priority,
+                               .destroy = _destroy,
+                       },
+               },
+               .message = message,
+       );
 
        return &(this->public);
 }