xref: /OK3568_Linux_fs/kernel/net/decnet/dn_rules.c (revision 4882a59341e53eb6f0b4789bf948001014eff981) 
1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0
2*4882a593Smuzhiyun 
3*4882a593Smuzhiyun /*
4*4882a593Smuzhiyun  * DECnet       An implementation of the DECnet protocol suite for the LINUX
5*4882a593Smuzhiyun  *              operating system.  DECnet is implemented using the  BSD Socket
6*4882a593Smuzhiyun  *              interface as the means of communication with the user level.
7*4882a593Smuzhiyun  *
8*4882a593Smuzhiyun  *              DECnet Routing Forwarding Information Base (Rules)
9*4882a593Smuzhiyun  *
10*4882a593Smuzhiyun  * Author:      Steve Whitehouse <SteveW@ACM.org>
11*4882a593Smuzhiyun  *              Mostly copied from Alexey Kuznetsov's ipv4/fib_rules.c
12*4882a593Smuzhiyun  *
13*4882a593Smuzhiyun  *
14*4882a593Smuzhiyun  * Changes:
15*4882a593Smuzhiyun  *              Steve Whitehouse <steve@chygwyn.com>
16*4882a593Smuzhiyun  *              Updated for Thomas Graf's generic rules
17*4882a593Smuzhiyun  *
18*4882a593Smuzhiyun  */
19*4882a593Smuzhiyun #include <linux/net.h>
20*4882a593Smuzhiyun #include <linux/init.h>
21*4882a593Smuzhiyun #include <linux/netlink.h>
22*4882a593Smuzhiyun #include <linux/rtnetlink.h>
23*4882a593Smuzhiyun #include <linux/netdevice.h>
24*4882a593Smuzhiyun #include <linux/spinlock.h>
25*4882a593Smuzhiyun #include <linux/list.h>
26*4882a593Smuzhiyun #include <linux/rcupdate.h>
27*4882a593Smuzhiyun #include <linux/export.h>
28*4882a593Smuzhiyun #include <net/neighbour.h>
29*4882a593Smuzhiyun #include <net/dst.h>
30*4882a593Smuzhiyun #include <net/flow.h>
31*4882a593Smuzhiyun #include <net/fib_rules.h>
32*4882a593Smuzhiyun #include <net/dn.h>
33*4882a593Smuzhiyun #include <net/dn_fib.h>
34*4882a593Smuzhiyun #include <net/dn_neigh.h>
35*4882a593Smuzhiyun #include <net/dn_dev.h>
36*4882a593Smuzhiyun #include <net/dn_route.h>
37*4882a593Smuzhiyun 
38*4882a593Smuzhiyun static struct fib_rules_ops *dn_fib_rules_ops;
39*4882a593Smuzhiyun 
40*4882a593Smuzhiyun struct dn_fib_rule
41*4882a593Smuzhiyun {
42*4882a593Smuzhiyun 	struct fib_rule		common;
43*4882a593Smuzhiyun 	unsigned char		dst_len;
44*4882a593Smuzhiyun 	unsigned char		src_len;
45*4882a593Smuzhiyun 	__le16			src;
46*4882a593Smuzhiyun 	__le16			srcmask;
47*4882a593Smuzhiyun 	__le16			dst;
48*4882a593Smuzhiyun 	__le16			dstmask;
49*4882a593Smuzhiyun 	__le16			srcmap;
50*4882a593Smuzhiyun 	u8			flags;
51*4882a593Smuzhiyun };
52*4882a593Smuzhiyun 
53*4882a593Smuzhiyun 
dn_fib_lookup(struct flowidn * flp,struct dn_fib_res * res)54*4882a593Smuzhiyun int dn_fib_lookup(struct flowidn *flp, struct dn_fib_res *res)
55*4882a593Smuzhiyun {
56*4882a593Smuzhiyun 	struct fib_lookup_arg arg = {
57*4882a593Smuzhiyun 		.result = res,
58*4882a593Smuzhiyun 	};
59*4882a593Smuzhiyun 	int err;
60*4882a593Smuzhiyun 
61*4882a593Smuzhiyun 	err = fib_rules_lookup(dn_fib_rules_ops,
62*4882a593Smuzhiyun 			       flowidn_to_flowi(flp), 0, &arg);
63*4882a593Smuzhiyun 	res->r = arg.rule;
64*4882a593Smuzhiyun 
65*4882a593Smuzhiyun 	return err;
66*4882a593Smuzhiyun }
67*4882a593Smuzhiyun 
dn_fib_rule_action(struct fib_rule * rule,struct flowi * flp,int flags,struct fib_lookup_arg * arg)68*4882a593Smuzhiyun static int dn_fib_rule_action(struct fib_rule *rule, struct flowi *flp,
69*4882a593Smuzhiyun 			      int flags, struct fib_lookup_arg *arg)
70*4882a593Smuzhiyun {
71*4882a593Smuzhiyun 	struct flowidn *fld = &flp->u.dn;
72*4882a593Smuzhiyun 	int err = -EAGAIN;
73*4882a593Smuzhiyun 	struct dn_fib_table *tbl;
74*4882a593Smuzhiyun 
75*4882a593Smuzhiyun 	switch(rule->action) {
76*4882a593Smuzhiyun 	case FR_ACT_TO_TBL:
77*4882a593Smuzhiyun 		break;
78*4882a593Smuzhiyun 
79*4882a593Smuzhiyun 	case FR_ACT_UNREACHABLE:
80*4882a593Smuzhiyun 		err = -ENETUNREACH;
81*4882a593Smuzhiyun 		goto errout;
82*4882a593Smuzhiyun 
83*4882a593Smuzhiyun 	case FR_ACT_PROHIBIT:
84*4882a593Smuzhiyun 		err = -EACCES;
85*4882a593Smuzhiyun 		goto errout;
86*4882a593Smuzhiyun 
87*4882a593Smuzhiyun 	case FR_ACT_BLACKHOLE:
88*4882a593Smuzhiyun 	default:
89*4882a593Smuzhiyun 		err = -EINVAL;
90*4882a593Smuzhiyun 		goto errout;
91*4882a593Smuzhiyun 	}
92*4882a593Smuzhiyun 
93*4882a593Smuzhiyun 	tbl = dn_fib_get_table(rule->table, 0);
94*4882a593Smuzhiyun 	if (tbl == NULL)
95*4882a593Smuzhiyun 		goto errout;
96*4882a593Smuzhiyun 
97*4882a593Smuzhiyun 	err = tbl->lookup(tbl, fld, (struct dn_fib_res *)arg->result);
98*4882a593Smuzhiyun 	if (err > 0)
99*4882a593Smuzhiyun 		err = -EAGAIN;
100*4882a593Smuzhiyun errout:
101*4882a593Smuzhiyun 	return err;
102*4882a593Smuzhiyun }
103*4882a593Smuzhiyun 
104*4882a593Smuzhiyun static const struct nla_policy dn_fib_rule_policy[FRA_MAX+1] = {
105*4882a593Smuzhiyun 	FRA_GENERIC_POLICY,
106*4882a593Smuzhiyun };
107*4882a593Smuzhiyun 
dn_fib_rule_match(struct fib_rule * rule,struct flowi * fl,int flags)108*4882a593Smuzhiyun static int dn_fib_rule_match(struct fib_rule *rule, struct flowi *fl, int flags)
109*4882a593Smuzhiyun {
110*4882a593Smuzhiyun 	struct dn_fib_rule *r = (struct dn_fib_rule *)rule;
111*4882a593Smuzhiyun 	struct flowidn *fld = &fl->u.dn;
112*4882a593Smuzhiyun 	__le16 daddr = fld->daddr;
113*4882a593Smuzhiyun 	__le16 saddr = fld->saddr;
114*4882a593Smuzhiyun 
115*4882a593Smuzhiyun 	if (((saddr ^ r->src) & r->srcmask) ||
116*4882a593Smuzhiyun 	    ((daddr ^ r->dst) & r->dstmask))
117*4882a593Smuzhiyun 		return 0;
118*4882a593Smuzhiyun 
119*4882a593Smuzhiyun 	return 1;
120*4882a593Smuzhiyun }
121*4882a593Smuzhiyun 
dn_fib_rule_configure(struct fib_rule * rule,struct sk_buff * skb,struct fib_rule_hdr * frh,struct nlattr ** tb,struct netlink_ext_ack * extack)122*4882a593Smuzhiyun static int dn_fib_rule_configure(struct fib_rule *rule, struct sk_buff *skb,
123*4882a593Smuzhiyun 				 struct fib_rule_hdr *frh,
124*4882a593Smuzhiyun 				 struct nlattr **tb,
125*4882a593Smuzhiyun 				 struct netlink_ext_ack *extack)
126*4882a593Smuzhiyun {
127*4882a593Smuzhiyun 	int err = -EINVAL;
128*4882a593Smuzhiyun 	struct dn_fib_rule *r = (struct dn_fib_rule *)rule;
129*4882a593Smuzhiyun 
130*4882a593Smuzhiyun 	if (frh->tos) {
131*4882a593Smuzhiyun 		NL_SET_ERR_MSG(extack, "Invalid tos value");
132*4882a593Smuzhiyun 		goto  errout;
133*4882a593Smuzhiyun 	}
134*4882a593Smuzhiyun 
135*4882a593Smuzhiyun 	if (rule->table == RT_TABLE_UNSPEC) {
136*4882a593Smuzhiyun 		if (rule->action == FR_ACT_TO_TBL) {
137*4882a593Smuzhiyun 			struct dn_fib_table *table;
138*4882a593Smuzhiyun 
139*4882a593Smuzhiyun 			table = dn_fib_empty_table();
140*4882a593Smuzhiyun 			if (table == NULL) {
141*4882a593Smuzhiyun 				err = -ENOBUFS;
142*4882a593Smuzhiyun 				goto errout;
143*4882a593Smuzhiyun 			}
144*4882a593Smuzhiyun 
145*4882a593Smuzhiyun 			rule->table = table->n;
146*4882a593Smuzhiyun 		}
147*4882a593Smuzhiyun 	}
148*4882a593Smuzhiyun 
149*4882a593Smuzhiyun 	if (frh->src_len)
150*4882a593Smuzhiyun 		r->src = nla_get_le16(tb[FRA_SRC]);
151*4882a593Smuzhiyun 
152*4882a593Smuzhiyun 	if (frh->dst_len)
153*4882a593Smuzhiyun 		r->dst = nla_get_le16(tb[FRA_DST]);
154*4882a593Smuzhiyun 
155*4882a593Smuzhiyun 	r->src_len = frh->src_len;
156*4882a593Smuzhiyun 	r->srcmask = dnet_make_mask(r->src_len);
157*4882a593Smuzhiyun 	r->dst_len = frh->dst_len;
158*4882a593Smuzhiyun 	r->dstmask = dnet_make_mask(r->dst_len);
159*4882a593Smuzhiyun 	err = 0;
160*4882a593Smuzhiyun errout:
161*4882a593Smuzhiyun 	return err;
162*4882a593Smuzhiyun }
163*4882a593Smuzhiyun 
dn_fib_rule_compare(struct fib_rule * rule,struct fib_rule_hdr * frh,struct nlattr ** tb)164*4882a593Smuzhiyun static int dn_fib_rule_compare(struct fib_rule *rule, struct fib_rule_hdr *frh,
165*4882a593Smuzhiyun 			       struct nlattr **tb)
166*4882a593Smuzhiyun {
167*4882a593Smuzhiyun 	struct dn_fib_rule *r = (struct dn_fib_rule *)rule;
168*4882a593Smuzhiyun 
169*4882a593Smuzhiyun 	if (frh->src_len && (r->src_len != frh->src_len))
170*4882a593Smuzhiyun 		return 0;
171*4882a593Smuzhiyun 
172*4882a593Smuzhiyun 	if (frh->dst_len && (r->dst_len != frh->dst_len))
173*4882a593Smuzhiyun 		return 0;
174*4882a593Smuzhiyun 
175*4882a593Smuzhiyun 	if (frh->src_len && (r->src != nla_get_le16(tb[FRA_SRC])))
176*4882a593Smuzhiyun 		return 0;
177*4882a593Smuzhiyun 
178*4882a593Smuzhiyun 	if (frh->dst_len && (r->dst != nla_get_le16(tb[FRA_DST])))
179*4882a593Smuzhiyun 		return 0;
180*4882a593Smuzhiyun 
181*4882a593Smuzhiyun 	return 1;
182*4882a593Smuzhiyun }
183*4882a593Smuzhiyun 
dnet_addr_type(__le16 addr)184*4882a593Smuzhiyun unsigned int dnet_addr_type(__le16 addr)
185*4882a593Smuzhiyun {
186*4882a593Smuzhiyun 	struct flowidn fld = { .daddr = addr };
187*4882a593Smuzhiyun 	struct dn_fib_res res;
188*4882a593Smuzhiyun 	unsigned int ret = RTN_UNICAST;
189*4882a593Smuzhiyun 	struct dn_fib_table *tb = dn_fib_get_table(RT_TABLE_LOCAL, 0);
190*4882a593Smuzhiyun 
191*4882a593Smuzhiyun 	res.r = NULL;
192*4882a593Smuzhiyun 
193*4882a593Smuzhiyun 	if (tb) {
194*4882a593Smuzhiyun 		if (!tb->lookup(tb, &fld, &res)) {
195*4882a593Smuzhiyun 			ret = res.type;
196*4882a593Smuzhiyun 			dn_fib_res_put(&res);
197*4882a593Smuzhiyun 		}
198*4882a593Smuzhiyun 	}
199*4882a593Smuzhiyun 	return ret;
200*4882a593Smuzhiyun }
201*4882a593Smuzhiyun 
dn_fib_rule_fill(struct fib_rule * rule,struct sk_buff * skb,struct fib_rule_hdr * frh)202*4882a593Smuzhiyun static int dn_fib_rule_fill(struct fib_rule *rule, struct sk_buff *skb,
203*4882a593Smuzhiyun 			    struct fib_rule_hdr *frh)
204*4882a593Smuzhiyun {
205*4882a593Smuzhiyun 	struct dn_fib_rule *r = (struct dn_fib_rule *)rule;
206*4882a593Smuzhiyun 
207*4882a593Smuzhiyun 	frh->dst_len = r->dst_len;
208*4882a593Smuzhiyun 	frh->src_len = r->src_len;
209*4882a593Smuzhiyun 	frh->tos = 0;
210*4882a593Smuzhiyun 
211*4882a593Smuzhiyun 	if ((r->dst_len &&
212*4882a593Smuzhiyun 	     nla_put_le16(skb, FRA_DST, r->dst)) ||
213*4882a593Smuzhiyun 	    (r->src_len &&
214*4882a593Smuzhiyun 	     nla_put_le16(skb, FRA_SRC, r->src)))
215*4882a593Smuzhiyun 		goto nla_put_failure;
216*4882a593Smuzhiyun 	return 0;
217*4882a593Smuzhiyun 
218*4882a593Smuzhiyun nla_put_failure:
219*4882a593Smuzhiyun 	return -ENOBUFS;
220*4882a593Smuzhiyun }
221*4882a593Smuzhiyun 
dn_fib_rule_flush_cache(struct fib_rules_ops * ops)222*4882a593Smuzhiyun static void dn_fib_rule_flush_cache(struct fib_rules_ops *ops)
223*4882a593Smuzhiyun {
224*4882a593Smuzhiyun 	dn_rt_cache_flush(-1);
225*4882a593Smuzhiyun }
226*4882a593Smuzhiyun 
227*4882a593Smuzhiyun static const struct fib_rules_ops __net_initconst dn_fib_rules_ops_template = {
228*4882a593Smuzhiyun 	.family		= AF_DECnet,
229*4882a593Smuzhiyun 	.rule_size	= sizeof(struct dn_fib_rule),
230*4882a593Smuzhiyun 	.addr_size	= sizeof(u16),
231*4882a593Smuzhiyun 	.action		= dn_fib_rule_action,
232*4882a593Smuzhiyun 	.match		= dn_fib_rule_match,
233*4882a593Smuzhiyun 	.configure	= dn_fib_rule_configure,
234*4882a593Smuzhiyun 	.compare	= dn_fib_rule_compare,
235*4882a593Smuzhiyun 	.fill		= dn_fib_rule_fill,
236*4882a593Smuzhiyun 	.flush_cache	= dn_fib_rule_flush_cache,
237*4882a593Smuzhiyun 	.nlgroup	= RTNLGRP_DECnet_RULE,
238*4882a593Smuzhiyun 	.policy		= dn_fib_rule_policy,
239*4882a593Smuzhiyun 	.owner		= THIS_MODULE,
240*4882a593Smuzhiyun 	.fro_net	= &init_net,
241*4882a593Smuzhiyun };
242*4882a593Smuzhiyun 
dn_fib_rules_init(void)243*4882a593Smuzhiyun void __init dn_fib_rules_init(void)
244*4882a593Smuzhiyun {
245*4882a593Smuzhiyun 	dn_fib_rules_ops =
246*4882a593Smuzhiyun 		fib_rules_register(&dn_fib_rules_ops_template, &init_net);
247*4882a593Smuzhiyun 	BUG_ON(IS_ERR(dn_fib_rules_ops));
248*4882a593Smuzhiyun 	BUG_ON(fib_default_rule_add(dn_fib_rules_ops, 0x7fff,
249*4882a593Smuzhiyun 			            RT_TABLE_MAIN, 0));
250*4882a593Smuzhiyun }
251*4882a593Smuzhiyun 
dn_fib_rules_cleanup(void)252*4882a593Smuzhiyun void __exit dn_fib_rules_cleanup(void)
253*4882a593Smuzhiyun {
254*4882a593Smuzhiyun 	rtnl_lock();
255*4882a593Smuzhiyun 	fib_rules_unregister(dn_fib_rules_ops);
256*4882a593Smuzhiyun 	rtnl_unlock();
257*4882a593Smuzhiyun 	rcu_barrier();
258*4882a593Smuzhiyun }
259