1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0-or-later
2*4882a593Smuzhiyun /*
3*4882a593Smuzhiyun * net/sched/cls_route.c ROUTE4 classifier.
4*4882a593Smuzhiyun *
5*4882a593Smuzhiyun * Authors: Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru>
6*4882a593Smuzhiyun */
7*4882a593Smuzhiyun
8*4882a593Smuzhiyun #include <linux/module.h>
9*4882a593Smuzhiyun #include <linux/slab.h>
10*4882a593Smuzhiyun #include <linux/types.h>
11*4882a593Smuzhiyun #include <linux/kernel.h>
12*4882a593Smuzhiyun #include <linux/string.h>
13*4882a593Smuzhiyun #include <linux/errno.h>
14*4882a593Smuzhiyun #include <linux/skbuff.h>
15*4882a593Smuzhiyun #include <net/dst.h>
16*4882a593Smuzhiyun #include <net/route.h>
17*4882a593Smuzhiyun #include <net/netlink.h>
18*4882a593Smuzhiyun #include <net/act_api.h>
19*4882a593Smuzhiyun #include <net/pkt_cls.h>
20*4882a593Smuzhiyun
21*4882a593Smuzhiyun /*
22*4882a593Smuzhiyun * 1. For now we assume that route tags < 256.
23*4882a593Smuzhiyun * It allows to use direct table lookups, instead of hash tables.
24*4882a593Smuzhiyun * 2. For now we assume that "from TAG" and "fromdev DEV" statements
25*4882a593Smuzhiyun * are mutually exclusive.
26*4882a593Smuzhiyun * 3. "to TAG from ANY" has higher priority, than "to ANY from XXX"
27*4882a593Smuzhiyun */
28*4882a593Smuzhiyun struct route4_fastmap {
29*4882a593Smuzhiyun struct route4_filter *filter;
30*4882a593Smuzhiyun u32 id;
31*4882a593Smuzhiyun int iif;
32*4882a593Smuzhiyun };
33*4882a593Smuzhiyun
34*4882a593Smuzhiyun struct route4_head {
35*4882a593Smuzhiyun struct route4_fastmap fastmap[16];
36*4882a593Smuzhiyun struct route4_bucket __rcu *table[256 + 1];
37*4882a593Smuzhiyun struct rcu_head rcu;
38*4882a593Smuzhiyun };
39*4882a593Smuzhiyun
40*4882a593Smuzhiyun struct route4_bucket {
41*4882a593Smuzhiyun /* 16 FROM buckets + 16 IIF buckets + 1 wildcard bucket */
42*4882a593Smuzhiyun struct route4_filter __rcu *ht[16 + 16 + 1];
43*4882a593Smuzhiyun struct rcu_head rcu;
44*4882a593Smuzhiyun };
45*4882a593Smuzhiyun
46*4882a593Smuzhiyun struct route4_filter {
47*4882a593Smuzhiyun struct route4_filter __rcu *next;
48*4882a593Smuzhiyun u32 id;
49*4882a593Smuzhiyun int iif;
50*4882a593Smuzhiyun
51*4882a593Smuzhiyun struct tcf_result res;
52*4882a593Smuzhiyun struct tcf_exts exts;
53*4882a593Smuzhiyun u32 handle;
54*4882a593Smuzhiyun struct route4_bucket *bkt;
55*4882a593Smuzhiyun struct tcf_proto *tp;
56*4882a593Smuzhiyun struct rcu_work rwork;
57*4882a593Smuzhiyun };
58*4882a593Smuzhiyun
59*4882a593Smuzhiyun #define ROUTE4_FAILURE ((struct route4_filter *)(-1L))
60*4882a593Smuzhiyun
route4_fastmap_hash(u32 id,int iif)61*4882a593Smuzhiyun static inline int route4_fastmap_hash(u32 id, int iif)
62*4882a593Smuzhiyun {
63*4882a593Smuzhiyun return id & 0xF;
64*4882a593Smuzhiyun }
65*4882a593Smuzhiyun
66*4882a593Smuzhiyun static DEFINE_SPINLOCK(fastmap_lock);
67*4882a593Smuzhiyun static void
route4_reset_fastmap(struct route4_head * head)68*4882a593Smuzhiyun route4_reset_fastmap(struct route4_head *head)
69*4882a593Smuzhiyun {
70*4882a593Smuzhiyun spin_lock_bh(&fastmap_lock);
71*4882a593Smuzhiyun memset(head->fastmap, 0, sizeof(head->fastmap));
72*4882a593Smuzhiyun spin_unlock_bh(&fastmap_lock);
73*4882a593Smuzhiyun }
74*4882a593Smuzhiyun
75*4882a593Smuzhiyun static void
route4_set_fastmap(struct route4_head * head,u32 id,int iif,struct route4_filter * f)76*4882a593Smuzhiyun route4_set_fastmap(struct route4_head *head, u32 id, int iif,
77*4882a593Smuzhiyun struct route4_filter *f)
78*4882a593Smuzhiyun {
79*4882a593Smuzhiyun int h = route4_fastmap_hash(id, iif);
80*4882a593Smuzhiyun
81*4882a593Smuzhiyun /* fastmap updates must look atomic to aling id, iff, filter */
82*4882a593Smuzhiyun spin_lock_bh(&fastmap_lock);
83*4882a593Smuzhiyun head->fastmap[h].id = id;
84*4882a593Smuzhiyun head->fastmap[h].iif = iif;
85*4882a593Smuzhiyun head->fastmap[h].filter = f;
86*4882a593Smuzhiyun spin_unlock_bh(&fastmap_lock);
87*4882a593Smuzhiyun }
88*4882a593Smuzhiyun
route4_hash_to(u32 id)89*4882a593Smuzhiyun static inline int route4_hash_to(u32 id)
90*4882a593Smuzhiyun {
91*4882a593Smuzhiyun return id & 0xFF;
92*4882a593Smuzhiyun }
93*4882a593Smuzhiyun
route4_hash_from(u32 id)94*4882a593Smuzhiyun static inline int route4_hash_from(u32 id)
95*4882a593Smuzhiyun {
96*4882a593Smuzhiyun return (id >> 16) & 0xF;
97*4882a593Smuzhiyun }
98*4882a593Smuzhiyun
route4_hash_iif(int iif)99*4882a593Smuzhiyun static inline int route4_hash_iif(int iif)
100*4882a593Smuzhiyun {
101*4882a593Smuzhiyun return 16 + ((iif >> 16) & 0xF);
102*4882a593Smuzhiyun }
103*4882a593Smuzhiyun
route4_hash_wild(void)104*4882a593Smuzhiyun static inline int route4_hash_wild(void)
105*4882a593Smuzhiyun {
106*4882a593Smuzhiyun return 32;
107*4882a593Smuzhiyun }
108*4882a593Smuzhiyun
109*4882a593Smuzhiyun #define ROUTE4_APPLY_RESULT() \
110*4882a593Smuzhiyun { \
111*4882a593Smuzhiyun *res = f->res; \
112*4882a593Smuzhiyun if (tcf_exts_has_actions(&f->exts)) { \
113*4882a593Smuzhiyun int r = tcf_exts_exec(skb, &f->exts, res); \
114*4882a593Smuzhiyun if (r < 0) { \
115*4882a593Smuzhiyun dont_cache = 1; \
116*4882a593Smuzhiyun continue; \
117*4882a593Smuzhiyun } \
118*4882a593Smuzhiyun return r; \
119*4882a593Smuzhiyun } else if (!dont_cache) \
120*4882a593Smuzhiyun route4_set_fastmap(head, id, iif, f); \
121*4882a593Smuzhiyun return 0; \
122*4882a593Smuzhiyun }
123*4882a593Smuzhiyun
route4_classify(struct sk_buff * skb,const struct tcf_proto * tp,struct tcf_result * res)124*4882a593Smuzhiyun static int route4_classify(struct sk_buff *skb, const struct tcf_proto *tp,
125*4882a593Smuzhiyun struct tcf_result *res)
126*4882a593Smuzhiyun {
127*4882a593Smuzhiyun struct route4_head *head = rcu_dereference_bh(tp->root);
128*4882a593Smuzhiyun struct dst_entry *dst;
129*4882a593Smuzhiyun struct route4_bucket *b;
130*4882a593Smuzhiyun struct route4_filter *f;
131*4882a593Smuzhiyun u32 id, h;
132*4882a593Smuzhiyun int iif, dont_cache = 0;
133*4882a593Smuzhiyun
134*4882a593Smuzhiyun dst = skb_dst(skb);
135*4882a593Smuzhiyun if (!dst)
136*4882a593Smuzhiyun goto failure;
137*4882a593Smuzhiyun
138*4882a593Smuzhiyun id = dst->tclassid;
139*4882a593Smuzhiyun
140*4882a593Smuzhiyun iif = inet_iif(skb);
141*4882a593Smuzhiyun
142*4882a593Smuzhiyun h = route4_fastmap_hash(id, iif);
143*4882a593Smuzhiyun
144*4882a593Smuzhiyun spin_lock(&fastmap_lock);
145*4882a593Smuzhiyun if (id == head->fastmap[h].id &&
146*4882a593Smuzhiyun iif == head->fastmap[h].iif &&
147*4882a593Smuzhiyun (f = head->fastmap[h].filter) != NULL) {
148*4882a593Smuzhiyun if (f == ROUTE4_FAILURE) {
149*4882a593Smuzhiyun spin_unlock(&fastmap_lock);
150*4882a593Smuzhiyun goto failure;
151*4882a593Smuzhiyun }
152*4882a593Smuzhiyun
153*4882a593Smuzhiyun *res = f->res;
154*4882a593Smuzhiyun spin_unlock(&fastmap_lock);
155*4882a593Smuzhiyun return 0;
156*4882a593Smuzhiyun }
157*4882a593Smuzhiyun spin_unlock(&fastmap_lock);
158*4882a593Smuzhiyun
159*4882a593Smuzhiyun h = route4_hash_to(id);
160*4882a593Smuzhiyun
161*4882a593Smuzhiyun restart:
162*4882a593Smuzhiyun b = rcu_dereference_bh(head->table[h]);
163*4882a593Smuzhiyun if (b) {
164*4882a593Smuzhiyun for (f = rcu_dereference_bh(b->ht[route4_hash_from(id)]);
165*4882a593Smuzhiyun f;
166*4882a593Smuzhiyun f = rcu_dereference_bh(f->next))
167*4882a593Smuzhiyun if (f->id == id)
168*4882a593Smuzhiyun ROUTE4_APPLY_RESULT();
169*4882a593Smuzhiyun
170*4882a593Smuzhiyun for (f = rcu_dereference_bh(b->ht[route4_hash_iif(iif)]);
171*4882a593Smuzhiyun f;
172*4882a593Smuzhiyun f = rcu_dereference_bh(f->next))
173*4882a593Smuzhiyun if (f->iif == iif)
174*4882a593Smuzhiyun ROUTE4_APPLY_RESULT();
175*4882a593Smuzhiyun
176*4882a593Smuzhiyun for (f = rcu_dereference_bh(b->ht[route4_hash_wild()]);
177*4882a593Smuzhiyun f;
178*4882a593Smuzhiyun f = rcu_dereference_bh(f->next))
179*4882a593Smuzhiyun ROUTE4_APPLY_RESULT();
180*4882a593Smuzhiyun }
181*4882a593Smuzhiyun if (h < 256) {
182*4882a593Smuzhiyun h = 256;
183*4882a593Smuzhiyun id &= ~0xFFFF;
184*4882a593Smuzhiyun goto restart;
185*4882a593Smuzhiyun }
186*4882a593Smuzhiyun
187*4882a593Smuzhiyun if (!dont_cache)
188*4882a593Smuzhiyun route4_set_fastmap(head, id, iif, ROUTE4_FAILURE);
189*4882a593Smuzhiyun failure:
190*4882a593Smuzhiyun return -1;
191*4882a593Smuzhiyun }
192*4882a593Smuzhiyun
to_hash(u32 id)193*4882a593Smuzhiyun static inline u32 to_hash(u32 id)
194*4882a593Smuzhiyun {
195*4882a593Smuzhiyun u32 h = id & 0xFF;
196*4882a593Smuzhiyun
197*4882a593Smuzhiyun if (id & 0x8000)
198*4882a593Smuzhiyun h += 256;
199*4882a593Smuzhiyun return h;
200*4882a593Smuzhiyun }
201*4882a593Smuzhiyun
from_hash(u32 id)202*4882a593Smuzhiyun static inline u32 from_hash(u32 id)
203*4882a593Smuzhiyun {
204*4882a593Smuzhiyun id &= 0xFFFF;
205*4882a593Smuzhiyun if (id == 0xFFFF)
206*4882a593Smuzhiyun return 32;
207*4882a593Smuzhiyun if (!(id & 0x8000)) {
208*4882a593Smuzhiyun if (id > 255)
209*4882a593Smuzhiyun return 256;
210*4882a593Smuzhiyun return id & 0xF;
211*4882a593Smuzhiyun }
212*4882a593Smuzhiyun return 16 + (id & 0xF);
213*4882a593Smuzhiyun }
214*4882a593Smuzhiyun
route4_get(struct tcf_proto * tp,u32 handle)215*4882a593Smuzhiyun static void *route4_get(struct tcf_proto *tp, u32 handle)
216*4882a593Smuzhiyun {
217*4882a593Smuzhiyun struct route4_head *head = rtnl_dereference(tp->root);
218*4882a593Smuzhiyun struct route4_bucket *b;
219*4882a593Smuzhiyun struct route4_filter *f;
220*4882a593Smuzhiyun unsigned int h1, h2;
221*4882a593Smuzhiyun
222*4882a593Smuzhiyun h1 = to_hash(handle);
223*4882a593Smuzhiyun if (h1 > 256)
224*4882a593Smuzhiyun return NULL;
225*4882a593Smuzhiyun
226*4882a593Smuzhiyun h2 = from_hash(handle >> 16);
227*4882a593Smuzhiyun if (h2 > 32)
228*4882a593Smuzhiyun return NULL;
229*4882a593Smuzhiyun
230*4882a593Smuzhiyun b = rtnl_dereference(head->table[h1]);
231*4882a593Smuzhiyun if (b) {
232*4882a593Smuzhiyun for (f = rtnl_dereference(b->ht[h2]);
233*4882a593Smuzhiyun f;
234*4882a593Smuzhiyun f = rtnl_dereference(f->next))
235*4882a593Smuzhiyun if (f->handle == handle)
236*4882a593Smuzhiyun return f;
237*4882a593Smuzhiyun }
238*4882a593Smuzhiyun return NULL;
239*4882a593Smuzhiyun }
240*4882a593Smuzhiyun
route4_init(struct tcf_proto * tp)241*4882a593Smuzhiyun static int route4_init(struct tcf_proto *tp)
242*4882a593Smuzhiyun {
243*4882a593Smuzhiyun struct route4_head *head;
244*4882a593Smuzhiyun
245*4882a593Smuzhiyun head = kzalloc(sizeof(struct route4_head), GFP_KERNEL);
246*4882a593Smuzhiyun if (head == NULL)
247*4882a593Smuzhiyun return -ENOBUFS;
248*4882a593Smuzhiyun
249*4882a593Smuzhiyun rcu_assign_pointer(tp->root, head);
250*4882a593Smuzhiyun return 0;
251*4882a593Smuzhiyun }
252*4882a593Smuzhiyun
__route4_delete_filter(struct route4_filter * f)253*4882a593Smuzhiyun static void __route4_delete_filter(struct route4_filter *f)
254*4882a593Smuzhiyun {
255*4882a593Smuzhiyun tcf_exts_destroy(&f->exts);
256*4882a593Smuzhiyun tcf_exts_put_net(&f->exts);
257*4882a593Smuzhiyun kfree(f);
258*4882a593Smuzhiyun }
259*4882a593Smuzhiyun
route4_delete_filter_work(struct work_struct * work)260*4882a593Smuzhiyun static void route4_delete_filter_work(struct work_struct *work)
261*4882a593Smuzhiyun {
262*4882a593Smuzhiyun struct route4_filter *f = container_of(to_rcu_work(work),
263*4882a593Smuzhiyun struct route4_filter,
264*4882a593Smuzhiyun rwork);
265*4882a593Smuzhiyun rtnl_lock();
266*4882a593Smuzhiyun __route4_delete_filter(f);
267*4882a593Smuzhiyun rtnl_unlock();
268*4882a593Smuzhiyun }
269*4882a593Smuzhiyun
route4_queue_work(struct route4_filter * f)270*4882a593Smuzhiyun static void route4_queue_work(struct route4_filter *f)
271*4882a593Smuzhiyun {
272*4882a593Smuzhiyun tcf_queue_work(&f->rwork, route4_delete_filter_work);
273*4882a593Smuzhiyun }
274*4882a593Smuzhiyun
route4_destroy(struct tcf_proto * tp,bool rtnl_held,struct netlink_ext_ack * extack)275*4882a593Smuzhiyun static void route4_destroy(struct tcf_proto *tp, bool rtnl_held,
276*4882a593Smuzhiyun struct netlink_ext_ack *extack)
277*4882a593Smuzhiyun {
278*4882a593Smuzhiyun struct route4_head *head = rtnl_dereference(tp->root);
279*4882a593Smuzhiyun int h1, h2;
280*4882a593Smuzhiyun
281*4882a593Smuzhiyun if (head == NULL)
282*4882a593Smuzhiyun return;
283*4882a593Smuzhiyun
284*4882a593Smuzhiyun for (h1 = 0; h1 <= 256; h1++) {
285*4882a593Smuzhiyun struct route4_bucket *b;
286*4882a593Smuzhiyun
287*4882a593Smuzhiyun b = rtnl_dereference(head->table[h1]);
288*4882a593Smuzhiyun if (b) {
289*4882a593Smuzhiyun for (h2 = 0; h2 <= 32; h2++) {
290*4882a593Smuzhiyun struct route4_filter *f;
291*4882a593Smuzhiyun
292*4882a593Smuzhiyun while ((f = rtnl_dereference(b->ht[h2])) != NULL) {
293*4882a593Smuzhiyun struct route4_filter *next;
294*4882a593Smuzhiyun
295*4882a593Smuzhiyun next = rtnl_dereference(f->next);
296*4882a593Smuzhiyun RCU_INIT_POINTER(b->ht[h2], next);
297*4882a593Smuzhiyun tcf_unbind_filter(tp, &f->res);
298*4882a593Smuzhiyun if (tcf_exts_get_net(&f->exts))
299*4882a593Smuzhiyun route4_queue_work(f);
300*4882a593Smuzhiyun else
301*4882a593Smuzhiyun __route4_delete_filter(f);
302*4882a593Smuzhiyun }
303*4882a593Smuzhiyun }
304*4882a593Smuzhiyun RCU_INIT_POINTER(head->table[h1], NULL);
305*4882a593Smuzhiyun kfree_rcu(b, rcu);
306*4882a593Smuzhiyun }
307*4882a593Smuzhiyun }
308*4882a593Smuzhiyun kfree_rcu(head, rcu);
309*4882a593Smuzhiyun }
310*4882a593Smuzhiyun
route4_delete(struct tcf_proto * tp,void * arg,bool * last,bool rtnl_held,struct netlink_ext_ack * extack)311*4882a593Smuzhiyun static int route4_delete(struct tcf_proto *tp, void *arg, bool *last,
312*4882a593Smuzhiyun bool rtnl_held, struct netlink_ext_ack *extack)
313*4882a593Smuzhiyun {
314*4882a593Smuzhiyun struct route4_head *head = rtnl_dereference(tp->root);
315*4882a593Smuzhiyun struct route4_filter *f = arg;
316*4882a593Smuzhiyun struct route4_filter __rcu **fp;
317*4882a593Smuzhiyun struct route4_filter *nf;
318*4882a593Smuzhiyun struct route4_bucket *b;
319*4882a593Smuzhiyun unsigned int h = 0;
320*4882a593Smuzhiyun int i, h1;
321*4882a593Smuzhiyun
322*4882a593Smuzhiyun if (!head || !f)
323*4882a593Smuzhiyun return -EINVAL;
324*4882a593Smuzhiyun
325*4882a593Smuzhiyun h = f->handle;
326*4882a593Smuzhiyun b = f->bkt;
327*4882a593Smuzhiyun
328*4882a593Smuzhiyun fp = &b->ht[from_hash(h >> 16)];
329*4882a593Smuzhiyun for (nf = rtnl_dereference(*fp); nf;
330*4882a593Smuzhiyun fp = &nf->next, nf = rtnl_dereference(*fp)) {
331*4882a593Smuzhiyun if (nf == f) {
332*4882a593Smuzhiyun /* unlink it */
333*4882a593Smuzhiyun RCU_INIT_POINTER(*fp, rtnl_dereference(f->next));
334*4882a593Smuzhiyun
335*4882a593Smuzhiyun /* Remove any fastmap lookups that might ref filter
336*4882a593Smuzhiyun * notice we unlink'd the filter so we can't get it
337*4882a593Smuzhiyun * back in the fastmap.
338*4882a593Smuzhiyun */
339*4882a593Smuzhiyun route4_reset_fastmap(head);
340*4882a593Smuzhiyun
341*4882a593Smuzhiyun /* Delete it */
342*4882a593Smuzhiyun tcf_unbind_filter(tp, &f->res);
343*4882a593Smuzhiyun tcf_exts_get_net(&f->exts);
344*4882a593Smuzhiyun tcf_queue_work(&f->rwork, route4_delete_filter_work);
345*4882a593Smuzhiyun
346*4882a593Smuzhiyun /* Strip RTNL protected tree */
347*4882a593Smuzhiyun for (i = 0; i <= 32; i++) {
348*4882a593Smuzhiyun struct route4_filter *rt;
349*4882a593Smuzhiyun
350*4882a593Smuzhiyun rt = rtnl_dereference(b->ht[i]);
351*4882a593Smuzhiyun if (rt)
352*4882a593Smuzhiyun goto out;
353*4882a593Smuzhiyun }
354*4882a593Smuzhiyun
355*4882a593Smuzhiyun /* OK, session has no flows */
356*4882a593Smuzhiyun RCU_INIT_POINTER(head->table[to_hash(h)], NULL);
357*4882a593Smuzhiyun kfree_rcu(b, rcu);
358*4882a593Smuzhiyun break;
359*4882a593Smuzhiyun }
360*4882a593Smuzhiyun }
361*4882a593Smuzhiyun
362*4882a593Smuzhiyun out:
363*4882a593Smuzhiyun *last = true;
364*4882a593Smuzhiyun for (h1 = 0; h1 <= 256; h1++) {
365*4882a593Smuzhiyun if (rcu_access_pointer(head->table[h1])) {
366*4882a593Smuzhiyun *last = false;
367*4882a593Smuzhiyun break;
368*4882a593Smuzhiyun }
369*4882a593Smuzhiyun }
370*4882a593Smuzhiyun
371*4882a593Smuzhiyun return 0;
372*4882a593Smuzhiyun }
373*4882a593Smuzhiyun
374*4882a593Smuzhiyun static const struct nla_policy route4_policy[TCA_ROUTE4_MAX + 1] = {
375*4882a593Smuzhiyun [TCA_ROUTE4_CLASSID] = { .type = NLA_U32 },
376*4882a593Smuzhiyun [TCA_ROUTE4_TO] = { .type = NLA_U32 },
377*4882a593Smuzhiyun [TCA_ROUTE4_FROM] = { .type = NLA_U32 },
378*4882a593Smuzhiyun [TCA_ROUTE4_IIF] = { .type = NLA_U32 },
379*4882a593Smuzhiyun };
380*4882a593Smuzhiyun
route4_set_parms(struct net * net,struct tcf_proto * tp,unsigned long base,struct route4_filter * f,u32 handle,struct route4_head * head,struct nlattr ** tb,struct nlattr * est,int new,bool ovr,struct netlink_ext_ack * extack)381*4882a593Smuzhiyun static int route4_set_parms(struct net *net, struct tcf_proto *tp,
382*4882a593Smuzhiyun unsigned long base, struct route4_filter *f,
383*4882a593Smuzhiyun u32 handle, struct route4_head *head,
384*4882a593Smuzhiyun struct nlattr **tb, struct nlattr *est, int new,
385*4882a593Smuzhiyun bool ovr, struct netlink_ext_ack *extack)
386*4882a593Smuzhiyun {
387*4882a593Smuzhiyun u32 id = 0, to = 0, nhandle = 0x8000;
388*4882a593Smuzhiyun struct route4_filter *fp;
389*4882a593Smuzhiyun unsigned int h1;
390*4882a593Smuzhiyun struct route4_bucket *b;
391*4882a593Smuzhiyun int err;
392*4882a593Smuzhiyun
393*4882a593Smuzhiyun err = tcf_exts_validate(net, tp, tb, est, &f->exts, ovr, true, extack);
394*4882a593Smuzhiyun if (err < 0)
395*4882a593Smuzhiyun return err;
396*4882a593Smuzhiyun
397*4882a593Smuzhiyun if (tb[TCA_ROUTE4_TO]) {
398*4882a593Smuzhiyun if (new && handle & 0x8000)
399*4882a593Smuzhiyun return -EINVAL;
400*4882a593Smuzhiyun to = nla_get_u32(tb[TCA_ROUTE4_TO]);
401*4882a593Smuzhiyun if (to > 0xFF)
402*4882a593Smuzhiyun return -EINVAL;
403*4882a593Smuzhiyun nhandle = to;
404*4882a593Smuzhiyun }
405*4882a593Smuzhiyun
406*4882a593Smuzhiyun if (tb[TCA_ROUTE4_FROM]) {
407*4882a593Smuzhiyun if (tb[TCA_ROUTE4_IIF])
408*4882a593Smuzhiyun return -EINVAL;
409*4882a593Smuzhiyun id = nla_get_u32(tb[TCA_ROUTE4_FROM]);
410*4882a593Smuzhiyun if (id > 0xFF)
411*4882a593Smuzhiyun return -EINVAL;
412*4882a593Smuzhiyun nhandle |= id << 16;
413*4882a593Smuzhiyun } else if (tb[TCA_ROUTE4_IIF]) {
414*4882a593Smuzhiyun id = nla_get_u32(tb[TCA_ROUTE4_IIF]);
415*4882a593Smuzhiyun if (id > 0x7FFF)
416*4882a593Smuzhiyun return -EINVAL;
417*4882a593Smuzhiyun nhandle |= (id | 0x8000) << 16;
418*4882a593Smuzhiyun } else
419*4882a593Smuzhiyun nhandle |= 0xFFFF << 16;
420*4882a593Smuzhiyun
421*4882a593Smuzhiyun if (handle && new) {
422*4882a593Smuzhiyun nhandle |= handle & 0x7F00;
423*4882a593Smuzhiyun if (nhandle != handle)
424*4882a593Smuzhiyun return -EINVAL;
425*4882a593Smuzhiyun }
426*4882a593Smuzhiyun
427*4882a593Smuzhiyun if (!nhandle) {
428*4882a593Smuzhiyun NL_SET_ERR_MSG(extack, "Replacing with handle of 0 is invalid");
429*4882a593Smuzhiyun return -EINVAL;
430*4882a593Smuzhiyun }
431*4882a593Smuzhiyun
432*4882a593Smuzhiyun h1 = to_hash(nhandle);
433*4882a593Smuzhiyun b = rtnl_dereference(head->table[h1]);
434*4882a593Smuzhiyun if (!b) {
435*4882a593Smuzhiyun b = kzalloc(sizeof(struct route4_bucket), GFP_KERNEL);
436*4882a593Smuzhiyun if (b == NULL)
437*4882a593Smuzhiyun return -ENOBUFS;
438*4882a593Smuzhiyun
439*4882a593Smuzhiyun rcu_assign_pointer(head->table[h1], b);
440*4882a593Smuzhiyun } else {
441*4882a593Smuzhiyun unsigned int h2 = from_hash(nhandle >> 16);
442*4882a593Smuzhiyun
443*4882a593Smuzhiyun for (fp = rtnl_dereference(b->ht[h2]);
444*4882a593Smuzhiyun fp;
445*4882a593Smuzhiyun fp = rtnl_dereference(fp->next))
446*4882a593Smuzhiyun if (fp->handle == f->handle)
447*4882a593Smuzhiyun return -EEXIST;
448*4882a593Smuzhiyun }
449*4882a593Smuzhiyun
450*4882a593Smuzhiyun if (tb[TCA_ROUTE4_TO])
451*4882a593Smuzhiyun f->id = to;
452*4882a593Smuzhiyun
453*4882a593Smuzhiyun if (tb[TCA_ROUTE4_FROM])
454*4882a593Smuzhiyun f->id = to | id<<16;
455*4882a593Smuzhiyun else if (tb[TCA_ROUTE4_IIF])
456*4882a593Smuzhiyun f->iif = id;
457*4882a593Smuzhiyun
458*4882a593Smuzhiyun f->handle = nhandle;
459*4882a593Smuzhiyun f->bkt = b;
460*4882a593Smuzhiyun f->tp = tp;
461*4882a593Smuzhiyun
462*4882a593Smuzhiyun if (tb[TCA_ROUTE4_CLASSID]) {
463*4882a593Smuzhiyun f->res.classid = nla_get_u32(tb[TCA_ROUTE4_CLASSID]);
464*4882a593Smuzhiyun tcf_bind_filter(tp, &f->res, base);
465*4882a593Smuzhiyun }
466*4882a593Smuzhiyun
467*4882a593Smuzhiyun return 0;
468*4882a593Smuzhiyun }
469*4882a593Smuzhiyun
route4_change(struct net * net,struct sk_buff * in_skb,struct tcf_proto * tp,unsigned long base,u32 handle,struct nlattr ** tca,void ** arg,bool ovr,bool rtnl_held,struct netlink_ext_ack * extack)470*4882a593Smuzhiyun static int route4_change(struct net *net, struct sk_buff *in_skb,
471*4882a593Smuzhiyun struct tcf_proto *tp, unsigned long base, u32 handle,
472*4882a593Smuzhiyun struct nlattr **tca, void **arg, bool ovr,
473*4882a593Smuzhiyun bool rtnl_held, struct netlink_ext_ack *extack)
474*4882a593Smuzhiyun {
475*4882a593Smuzhiyun struct route4_head *head = rtnl_dereference(tp->root);
476*4882a593Smuzhiyun struct route4_filter __rcu **fp;
477*4882a593Smuzhiyun struct route4_filter *fold, *f1, *pfp, *f = NULL;
478*4882a593Smuzhiyun struct route4_bucket *b;
479*4882a593Smuzhiyun struct nlattr *opt = tca[TCA_OPTIONS];
480*4882a593Smuzhiyun struct nlattr *tb[TCA_ROUTE4_MAX + 1];
481*4882a593Smuzhiyun unsigned int h, th;
482*4882a593Smuzhiyun int err;
483*4882a593Smuzhiyun bool new = true;
484*4882a593Smuzhiyun
485*4882a593Smuzhiyun if (!handle) {
486*4882a593Smuzhiyun NL_SET_ERR_MSG(extack, "Creating with handle of 0 is invalid");
487*4882a593Smuzhiyun return -EINVAL;
488*4882a593Smuzhiyun }
489*4882a593Smuzhiyun
490*4882a593Smuzhiyun if (opt == NULL)
491*4882a593Smuzhiyun return handle ? -EINVAL : 0;
492*4882a593Smuzhiyun
493*4882a593Smuzhiyun err = nla_parse_nested_deprecated(tb, TCA_ROUTE4_MAX, opt,
494*4882a593Smuzhiyun route4_policy, NULL);
495*4882a593Smuzhiyun if (err < 0)
496*4882a593Smuzhiyun return err;
497*4882a593Smuzhiyun
498*4882a593Smuzhiyun fold = *arg;
499*4882a593Smuzhiyun if (fold && handle && fold->handle != handle)
500*4882a593Smuzhiyun return -EINVAL;
501*4882a593Smuzhiyun
502*4882a593Smuzhiyun err = -ENOBUFS;
503*4882a593Smuzhiyun f = kzalloc(sizeof(struct route4_filter), GFP_KERNEL);
504*4882a593Smuzhiyun if (!f)
505*4882a593Smuzhiyun goto errout;
506*4882a593Smuzhiyun
507*4882a593Smuzhiyun err = tcf_exts_init(&f->exts, net, TCA_ROUTE4_ACT, TCA_ROUTE4_POLICE);
508*4882a593Smuzhiyun if (err < 0)
509*4882a593Smuzhiyun goto errout;
510*4882a593Smuzhiyun
511*4882a593Smuzhiyun if (fold) {
512*4882a593Smuzhiyun f->id = fold->id;
513*4882a593Smuzhiyun f->iif = fold->iif;
514*4882a593Smuzhiyun f->res = fold->res;
515*4882a593Smuzhiyun f->handle = fold->handle;
516*4882a593Smuzhiyun
517*4882a593Smuzhiyun f->tp = fold->tp;
518*4882a593Smuzhiyun f->bkt = fold->bkt;
519*4882a593Smuzhiyun new = false;
520*4882a593Smuzhiyun }
521*4882a593Smuzhiyun
522*4882a593Smuzhiyun err = route4_set_parms(net, tp, base, f, handle, head, tb,
523*4882a593Smuzhiyun tca[TCA_RATE], new, ovr, extack);
524*4882a593Smuzhiyun if (err < 0)
525*4882a593Smuzhiyun goto errout;
526*4882a593Smuzhiyun
527*4882a593Smuzhiyun h = from_hash(f->handle >> 16);
528*4882a593Smuzhiyun fp = &f->bkt->ht[h];
529*4882a593Smuzhiyun for (pfp = rtnl_dereference(*fp);
530*4882a593Smuzhiyun (f1 = rtnl_dereference(*fp)) != NULL;
531*4882a593Smuzhiyun fp = &f1->next)
532*4882a593Smuzhiyun if (f->handle < f1->handle)
533*4882a593Smuzhiyun break;
534*4882a593Smuzhiyun
535*4882a593Smuzhiyun tcf_block_netif_keep_dst(tp->chain->block);
536*4882a593Smuzhiyun rcu_assign_pointer(f->next, f1);
537*4882a593Smuzhiyun rcu_assign_pointer(*fp, f);
538*4882a593Smuzhiyun
539*4882a593Smuzhiyun if (fold) {
540*4882a593Smuzhiyun th = to_hash(fold->handle);
541*4882a593Smuzhiyun h = from_hash(fold->handle >> 16);
542*4882a593Smuzhiyun b = rtnl_dereference(head->table[th]);
543*4882a593Smuzhiyun if (b) {
544*4882a593Smuzhiyun fp = &b->ht[h];
545*4882a593Smuzhiyun for (pfp = rtnl_dereference(*fp); pfp;
546*4882a593Smuzhiyun fp = &pfp->next, pfp = rtnl_dereference(*fp)) {
547*4882a593Smuzhiyun if (pfp == fold) {
548*4882a593Smuzhiyun rcu_assign_pointer(*fp, fold->next);
549*4882a593Smuzhiyun break;
550*4882a593Smuzhiyun }
551*4882a593Smuzhiyun }
552*4882a593Smuzhiyun }
553*4882a593Smuzhiyun }
554*4882a593Smuzhiyun
555*4882a593Smuzhiyun route4_reset_fastmap(head);
556*4882a593Smuzhiyun *arg = f;
557*4882a593Smuzhiyun if (fold) {
558*4882a593Smuzhiyun tcf_unbind_filter(tp, &fold->res);
559*4882a593Smuzhiyun tcf_exts_get_net(&fold->exts);
560*4882a593Smuzhiyun tcf_queue_work(&fold->rwork, route4_delete_filter_work);
561*4882a593Smuzhiyun }
562*4882a593Smuzhiyun return 0;
563*4882a593Smuzhiyun
564*4882a593Smuzhiyun errout:
565*4882a593Smuzhiyun if (f)
566*4882a593Smuzhiyun tcf_exts_destroy(&f->exts);
567*4882a593Smuzhiyun kfree(f);
568*4882a593Smuzhiyun return err;
569*4882a593Smuzhiyun }
570*4882a593Smuzhiyun
route4_walk(struct tcf_proto * tp,struct tcf_walker * arg,bool rtnl_held)571*4882a593Smuzhiyun static void route4_walk(struct tcf_proto *tp, struct tcf_walker *arg,
572*4882a593Smuzhiyun bool rtnl_held)
573*4882a593Smuzhiyun {
574*4882a593Smuzhiyun struct route4_head *head = rtnl_dereference(tp->root);
575*4882a593Smuzhiyun unsigned int h, h1;
576*4882a593Smuzhiyun
577*4882a593Smuzhiyun if (head == NULL || arg->stop)
578*4882a593Smuzhiyun return;
579*4882a593Smuzhiyun
580*4882a593Smuzhiyun for (h = 0; h <= 256; h++) {
581*4882a593Smuzhiyun struct route4_bucket *b = rtnl_dereference(head->table[h]);
582*4882a593Smuzhiyun
583*4882a593Smuzhiyun if (b) {
584*4882a593Smuzhiyun for (h1 = 0; h1 <= 32; h1++) {
585*4882a593Smuzhiyun struct route4_filter *f;
586*4882a593Smuzhiyun
587*4882a593Smuzhiyun for (f = rtnl_dereference(b->ht[h1]);
588*4882a593Smuzhiyun f;
589*4882a593Smuzhiyun f = rtnl_dereference(f->next)) {
590*4882a593Smuzhiyun if (arg->count < arg->skip) {
591*4882a593Smuzhiyun arg->count++;
592*4882a593Smuzhiyun continue;
593*4882a593Smuzhiyun }
594*4882a593Smuzhiyun if (arg->fn(tp, f, arg) < 0) {
595*4882a593Smuzhiyun arg->stop = 1;
596*4882a593Smuzhiyun return;
597*4882a593Smuzhiyun }
598*4882a593Smuzhiyun arg->count++;
599*4882a593Smuzhiyun }
600*4882a593Smuzhiyun }
601*4882a593Smuzhiyun }
602*4882a593Smuzhiyun }
603*4882a593Smuzhiyun }
604*4882a593Smuzhiyun
route4_dump(struct net * net,struct tcf_proto * tp,void * fh,struct sk_buff * skb,struct tcmsg * t,bool rtnl_held)605*4882a593Smuzhiyun static int route4_dump(struct net *net, struct tcf_proto *tp, void *fh,
606*4882a593Smuzhiyun struct sk_buff *skb, struct tcmsg *t, bool rtnl_held)
607*4882a593Smuzhiyun {
608*4882a593Smuzhiyun struct route4_filter *f = fh;
609*4882a593Smuzhiyun struct nlattr *nest;
610*4882a593Smuzhiyun u32 id;
611*4882a593Smuzhiyun
612*4882a593Smuzhiyun if (f == NULL)
613*4882a593Smuzhiyun return skb->len;
614*4882a593Smuzhiyun
615*4882a593Smuzhiyun t->tcm_handle = f->handle;
616*4882a593Smuzhiyun
617*4882a593Smuzhiyun nest = nla_nest_start_noflag(skb, TCA_OPTIONS);
618*4882a593Smuzhiyun if (nest == NULL)
619*4882a593Smuzhiyun goto nla_put_failure;
620*4882a593Smuzhiyun
621*4882a593Smuzhiyun if (!(f->handle & 0x8000)) {
622*4882a593Smuzhiyun id = f->id & 0xFF;
623*4882a593Smuzhiyun if (nla_put_u32(skb, TCA_ROUTE4_TO, id))
624*4882a593Smuzhiyun goto nla_put_failure;
625*4882a593Smuzhiyun }
626*4882a593Smuzhiyun if (f->handle & 0x80000000) {
627*4882a593Smuzhiyun if ((f->handle >> 16) != 0xFFFF &&
628*4882a593Smuzhiyun nla_put_u32(skb, TCA_ROUTE4_IIF, f->iif))
629*4882a593Smuzhiyun goto nla_put_failure;
630*4882a593Smuzhiyun } else {
631*4882a593Smuzhiyun id = f->id >> 16;
632*4882a593Smuzhiyun if (nla_put_u32(skb, TCA_ROUTE4_FROM, id))
633*4882a593Smuzhiyun goto nla_put_failure;
634*4882a593Smuzhiyun }
635*4882a593Smuzhiyun if (f->res.classid &&
636*4882a593Smuzhiyun nla_put_u32(skb, TCA_ROUTE4_CLASSID, f->res.classid))
637*4882a593Smuzhiyun goto nla_put_failure;
638*4882a593Smuzhiyun
639*4882a593Smuzhiyun if (tcf_exts_dump(skb, &f->exts) < 0)
640*4882a593Smuzhiyun goto nla_put_failure;
641*4882a593Smuzhiyun
642*4882a593Smuzhiyun nla_nest_end(skb, nest);
643*4882a593Smuzhiyun
644*4882a593Smuzhiyun if (tcf_exts_dump_stats(skb, &f->exts) < 0)
645*4882a593Smuzhiyun goto nla_put_failure;
646*4882a593Smuzhiyun
647*4882a593Smuzhiyun return skb->len;
648*4882a593Smuzhiyun
649*4882a593Smuzhiyun nla_put_failure:
650*4882a593Smuzhiyun nla_nest_cancel(skb, nest);
651*4882a593Smuzhiyun return -1;
652*4882a593Smuzhiyun }
653*4882a593Smuzhiyun
route4_bind_class(void * fh,u32 classid,unsigned long cl,void * q,unsigned long base)654*4882a593Smuzhiyun static void route4_bind_class(void *fh, u32 classid, unsigned long cl, void *q,
655*4882a593Smuzhiyun unsigned long base)
656*4882a593Smuzhiyun {
657*4882a593Smuzhiyun struct route4_filter *f = fh;
658*4882a593Smuzhiyun
659*4882a593Smuzhiyun if (f && f->res.classid == classid) {
660*4882a593Smuzhiyun if (cl)
661*4882a593Smuzhiyun __tcf_bind_filter(q, &f->res, base);
662*4882a593Smuzhiyun else
663*4882a593Smuzhiyun __tcf_unbind_filter(q, &f->res);
664*4882a593Smuzhiyun }
665*4882a593Smuzhiyun }
666*4882a593Smuzhiyun
667*4882a593Smuzhiyun static struct tcf_proto_ops cls_route4_ops __read_mostly = {
668*4882a593Smuzhiyun .kind = "route",
669*4882a593Smuzhiyun .classify = route4_classify,
670*4882a593Smuzhiyun .init = route4_init,
671*4882a593Smuzhiyun .destroy = route4_destroy,
672*4882a593Smuzhiyun .get = route4_get,
673*4882a593Smuzhiyun .change = route4_change,
674*4882a593Smuzhiyun .delete = route4_delete,
675*4882a593Smuzhiyun .walk = route4_walk,
676*4882a593Smuzhiyun .dump = route4_dump,
677*4882a593Smuzhiyun .bind_class = route4_bind_class,
678*4882a593Smuzhiyun .owner = THIS_MODULE,
679*4882a593Smuzhiyun };
680*4882a593Smuzhiyun
init_route4(void)681*4882a593Smuzhiyun static int __init init_route4(void)
682*4882a593Smuzhiyun {
683*4882a593Smuzhiyun return register_tcf_proto_ops(&cls_route4_ops);
684*4882a593Smuzhiyun }
685*4882a593Smuzhiyun
exit_route4(void)686*4882a593Smuzhiyun static void __exit exit_route4(void)
687*4882a593Smuzhiyun {
688*4882a593Smuzhiyun unregister_tcf_proto_ops(&cls_route4_ops);
689*4882a593Smuzhiyun }
690*4882a593Smuzhiyun
691*4882a593Smuzhiyun module_init(init_route4)
692*4882a593Smuzhiyun module_exit(exit_route4)
693*4882a593Smuzhiyun MODULE_LICENSE("GPL");
694