2019-05-27 06:55:01 +00:00
|
|
|
// SPDX-License-Identifier: GPL-2.0-or-later
|
2005-04-16 22:20:36 +00:00
|
|
|
/*
|
2014-11-05 19:51:51 +00:00
|
|
|
* net/sched/act_pedit.c Generic packet editor
|
2005-04-16 22:20:36 +00:00
|
|
|
*
|
|
|
|
|
* Authors: Jamal Hadi Salim (2002-4)
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#include <linux/types.h>
|
|
|
|
|
#include <linux/kernel.h>
|
|
|
|
|
#include <linux/string.h>
|
|
|
|
|
#include <linux/errno.h>
|
|
|
|
|
#include <linux/skbuff.h>
|
|
|
|
|
#include <linux/rtnetlink.h>
|
|
|
|
|
#include <linux/module.h>
|
|
|
|
|
#include <linux/init.h>
|
2023-06-07 16:23:54 +00:00
|
|
|
#include <linux/ip.h>
|
|
|
|
|
#include <linux/ipv6.h>
|
include cleanup: Update gfp.h and slab.h includes to prepare for breaking implicit slab.h inclusion from percpu.h
percpu.h is included by sched.h and module.h and thus ends up being
included when building most .c files. percpu.h includes slab.h which
in turn includes gfp.h making everything defined by the two files
universally available and complicating inclusion dependencies.
percpu.h -> slab.h dependency is about to be removed. Prepare for
this change by updating users of gfp and slab facilities include those
headers directly instead of assuming availability. As this conversion
needs to touch large number of source files, the following script is
used as the basis of conversion.
http://userweb.kernel.org/~tj/misc/slabh-sweep.py
The script does the followings.
* Scan files for gfp and slab usages and update includes such that
only the necessary includes are there. ie. if only gfp is used,
gfp.h, if slab is used, slab.h.
* When the script inserts a new include, it looks at the include
blocks and try to put the new include such that its order conforms
to its surrounding. It's put in the include block which contains
core kernel includes, in the same order that the rest are ordered -
alphabetical, Christmas tree, rev-Xmas-tree or at the end if there
doesn't seem to be any matching order.
* If the script can't find a place to put a new include (mostly
because the file doesn't have fitting include block), it prints out
an error message indicating which .h file needs to be added to the
file.
The conversion was done in the following steps.
1. The initial automatic conversion of all .c files updated slightly
over 4000 files, deleting around 700 includes and adding ~480 gfp.h
and ~3000 slab.h inclusions. The script emitted errors for ~400
files.
2. Each error was manually checked. Some didn't need the inclusion,
some needed manual addition while adding it to implementation .h or
embedding .c file was more appropriate for others. This step added
inclusions to around 150 files.
3. The script was run again and the output was compared to the edits
from #2 to make sure no file was left behind.
4. Several build tests were done and a couple of problems were fixed.
e.g. lib/decompress_*.c used malloc/free() wrappers around slab
APIs requiring slab.h to be added manually.
5. The script was run on all .h files but without automatically
editing them as sprinkling gfp.h and slab.h inclusions around .h
files could easily lead to inclusion dependency hell. Most gfp.h
inclusion directives were ignored as stuff from gfp.h was usually
wildly available and often used in preprocessor macros. Each
slab.h inclusion directive was examined and added manually as
necessary.
6. percpu.h was updated not to include slab.h.
7. Build test were done on the following configurations and failures
were fixed. CONFIG_GCOV_KERNEL was turned off for all tests (as my
distributed build env didn't work with gcov compiles) and a few
more options had to be turned off depending on archs to make things
build (like ipr on powerpc/64 which failed due to missing writeq).
* x86 and x86_64 UP and SMP allmodconfig and a custom test config.
* powerpc and powerpc64 SMP allmodconfig
* sparc and sparc64 SMP allmodconfig
* ia64 SMP allmodconfig
* s390 SMP allmodconfig
* alpha SMP allmodconfig
* um on x86_64 SMP allmodconfig
8. percpu.h modifications were reverted so that it could be applied as
a separate patch and serve as bisection point.
Given the fact that I had only a couple of failures from tests on step
6, I'm fairly confident about the coverage of this conversion patch.
If there is a breakage, it's likely to be something in one of the arch
headers which should be easily discoverable easily on most builds of
the specific arch.
Signed-off-by: Tejun Heo <tj@kernel.org>
Guess-its-ok-by: Christoph Lameter <cl@linux-foundation.org>
Cc: Ingo Molnar <mingo@redhat.com>
Cc: Lee Schermerhorn <Lee.Schermerhorn@hp.com>
2010-03-24 08:04:11 +00:00
|
|
|
#include <linux/slab.h>
|
2023-06-07 16:23:54 +00:00
|
|
|
#include <net/ipv6.h>
|
2007-03-26 06:06:12 +00:00
|
|
|
#include <net/netlink.h>
|
2005-04-16 22:20:36 +00:00
|
|
|
#include <net/pkt_sched.h>
|
|
|
|
|
#include <linux/tc_act/tc_pedit.h>
|
|
|
|
|
#include <net/tc_act/tc_pedit.h>
|
2017-02-07 07:56:07 +00:00
|
|
|
#include <uapi/linux/tc_act/tc_pedit.h>
|
2019-03-20 14:00:07 +00:00
|
|
|
#include <net/pkt_cls.h>
|
2022-12-06 13:55:12 +00:00
|
|
|
#include <net/tc_wrapper.h>
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2016-07-25 23:09:41 +00:00
|
|
|
static struct tc_action_ops act_pedit_ops;
|
2016-02-22 23:57:53 +00:00
|
|
|
|
2008-01-24 04:36:30 +00:00
|
|
|
static const struct nla_policy pedit_policy[TCA_PEDIT_MAX + 1] = {
|
2009-10-11 04:21:38 +00:00
|
|
|
[TCA_PEDIT_PARMS] = { .len = sizeof(struct tc_pedit) },
|
2023-07-03 11:08:42 +00:00
|
|
|
[TCA_PEDIT_PARMS_EX] = { .len = sizeof(struct tc_pedit) },
|
2017-02-07 07:56:07 +00:00
|
|
|
[TCA_PEDIT_KEYS_EX] = { .type = NLA_NESTED },
|
2008-01-24 04:36:30 +00:00
|
|
|
};
|
|
|
|
|
|
2017-02-07 07:56:07 +00:00
|
|
|
static const struct nla_policy pedit_key_ex_policy[TCA_PEDIT_KEY_EX_MAX + 1] = {
|
2023-04-21 21:25:13 +00:00
|
|
|
[TCA_PEDIT_KEY_EX_HTYPE] =
|
|
|
|
|
NLA_POLICY_MAX(NLA_U16, TCA_PEDIT_HDR_TYPE_MAX),
|
|
|
|
|
[TCA_PEDIT_KEY_EX_CMD] = NLA_POLICY_MAX(NLA_U16, TCA_PEDIT_CMD_MAX),
|
2017-02-07 07:56:07 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static struct tcf_pedit_key_ex *tcf_pedit_keys_ex_parse(struct nlattr *nla,
|
2023-04-21 21:25:14 +00:00
|
|
|
u8 n, struct netlink_ext_ack *extack)
|
2017-02-07 07:56:07 +00:00
|
|
|
{
|
|
|
|
|
struct tcf_pedit_key_ex *keys_ex;
|
|
|
|
|
struct tcf_pedit_key_ex *k;
|
|
|
|
|
const struct nlattr *ka;
|
|
|
|
|
int err = -EINVAL;
|
|
|
|
|
int rem;
|
|
|
|
|
|
2019-11-19 22:47:33 +00:00
|
|
|
if (!nla)
|
2017-02-07 07:56:07 +00:00
|
|
|
return NULL;
|
|
|
|
|
|
|
|
|
|
keys_ex = kcalloc(n, sizeof(*k), GFP_KERNEL);
|
|
|
|
|
if (!keys_ex)
|
|
|
|
|
return ERR_PTR(-ENOMEM);
|
|
|
|
|
|
|
|
|
|
k = keys_ex;
|
|
|
|
|
|
|
|
|
|
nla_for_each_nested(ka, nla, rem) {
|
|
|
|
|
struct nlattr *tb[TCA_PEDIT_KEY_EX_MAX + 1];
|
|
|
|
|
|
|
|
|
|
if (!n) {
|
2023-04-21 21:25:14 +00:00
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Can't parse more extended keys than requested");
|
2017-02-07 07:56:07 +00:00
|
|
|
err = -EINVAL;
|
|
|
|
|
goto err_out;
|
|
|
|
|
}
|
|
|
|
|
n--;
|
|
|
|
|
|
|
|
|
|
if (nla_type(ka) != TCA_PEDIT_KEY_EX) {
|
2023-04-21 21:25:14 +00:00
|
|
|
NL_SET_ERR_MSG_ATTR(extack, ka, "Unknown attribute, expected extended key");
|
2017-02-07 07:56:07 +00:00
|
|
|
err = -EINVAL;
|
|
|
|
|
goto err_out;
|
|
|
|
|
}
|
|
|
|
|
|
netlink: make validation more configurable for future strictness
We currently have two levels of strict validation:
1) liberal (default)
- undefined (type >= max) & NLA_UNSPEC attributes accepted
- attribute length >= expected accepted
- garbage at end of message accepted
2) strict (opt-in)
- NLA_UNSPEC attributes accepted
- attribute length >= expected accepted
Split out parsing strictness into four different options:
* TRAILING - check that there's no trailing data after parsing
attributes (in message or nested)
* MAXTYPE - reject attrs > max known type
* UNSPEC - reject attributes with NLA_UNSPEC policy entries
* STRICT_ATTRS - strictly validate attribute size
The default for future things should be *everything*.
The current *_strict() is a combination of TRAILING and MAXTYPE,
and is renamed to _deprecated_strict().
The current regular parsing has none of this, and is renamed to
*_parse_deprecated().
Additionally it allows us to selectively set one of the new flags
even on old policies. Notably, the UNSPEC flag could be useful in
this case, since it can be arranged (by filling in the policy) to
not be an incompatible userspace ABI change, but would then going
forward prevent forgetting attribute entries. Similar can apply
to the POLICY flag.
We end up with the following renames:
* nla_parse -> nla_parse_deprecated
* nla_parse_strict -> nla_parse_deprecated_strict
* nlmsg_parse -> nlmsg_parse_deprecated
* nlmsg_parse_strict -> nlmsg_parse_deprecated_strict
* nla_parse_nested -> nla_parse_nested_deprecated
* nla_validate_nested -> nla_validate_nested_deprecated
Using spatch, of course:
@@
expression TB, MAX, HEAD, LEN, POL, EXT;
@@
-nla_parse(TB, MAX, HEAD, LEN, POL, EXT)
+nla_parse_deprecated(TB, MAX, HEAD, LEN, POL, EXT)
@@
expression NLH, HDRLEN, TB, MAX, POL, EXT;
@@
-nlmsg_parse(NLH, HDRLEN, TB, MAX, POL, EXT)
+nlmsg_parse_deprecated(NLH, HDRLEN, TB, MAX, POL, EXT)
@@
expression NLH, HDRLEN, TB, MAX, POL, EXT;
@@
-nlmsg_parse_strict(NLH, HDRLEN, TB, MAX, POL, EXT)
+nlmsg_parse_deprecated_strict(NLH, HDRLEN, TB, MAX, POL, EXT)
@@
expression TB, MAX, NLA, POL, EXT;
@@
-nla_parse_nested(TB, MAX, NLA, POL, EXT)
+nla_parse_nested_deprecated(TB, MAX, NLA, POL, EXT)
@@
expression START, MAX, POL, EXT;
@@
-nla_validate_nested(START, MAX, POL, EXT)
+nla_validate_nested_deprecated(START, MAX, POL, EXT)
@@
expression NLH, HDRLEN, MAX, POL, EXT;
@@
-nlmsg_validate(NLH, HDRLEN, MAX, POL, EXT)
+nlmsg_validate_deprecated(NLH, HDRLEN, MAX, POL, EXT)
For this patch, don't actually add the strict, non-renamed versions
yet so that it breaks compile if I get it wrong.
Also, while at it, make nla_validate and nla_parse go down to a
common __nla_validate_parse() function to avoid code duplication.
Ultimately, this allows us to have very strict validation for every
new caller of nla_parse()/nlmsg_parse() etc as re-introduced in the
next patch, while existing things will continue to work as is.
In effect then, this adds fully strict validation for any new command.
Signed-off-by: Johannes Berg <johannes.berg@intel.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2019-04-26 12:07:28 +00:00
|
|
|
err = nla_parse_nested_deprecated(tb, TCA_PEDIT_KEY_EX_MAX,
|
|
|
|
|
ka, pedit_key_ex_policy,
|
|
|
|
|
NULL);
|
2017-02-07 07:56:07 +00:00
|
|
|
if (err)
|
|
|
|
|
goto err_out;
|
|
|
|
|
|
2023-04-21 21:25:14 +00:00
|
|
|
if (NL_REQ_ATTR_CHECK(extack, nla, tb, TCA_PEDIT_KEY_EX_HTYPE)) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Missing required attribute");
|
|
|
|
|
err = -EINVAL;
|
|
|
|
|
goto err_out;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (NL_REQ_ATTR_CHECK(extack, nla, tb, TCA_PEDIT_KEY_EX_CMD)) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Missing required attribute");
|
2017-02-07 07:56:07 +00:00
|
|
|
err = -EINVAL;
|
|
|
|
|
goto err_out;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
k->htype = nla_get_u16(tb[TCA_PEDIT_KEY_EX_HTYPE]);
|
2017-02-07 07:56:08 +00:00
|
|
|
k->cmd = nla_get_u16(tb[TCA_PEDIT_KEY_EX_CMD]);
|
2017-02-07 07:56:07 +00:00
|
|
|
|
|
|
|
|
k++;
|
|
|
|
|
}
|
|
|
|
|
|
2017-06-14 10:29:31 +00:00
|
|
|
if (n) {
|
2023-04-21 21:25:14 +00:00
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Not enough extended keys to parse");
|
2017-06-14 10:29:31 +00:00
|
|
|
err = -EINVAL;
|
2017-02-07 07:56:07 +00:00
|
|
|
goto err_out;
|
2017-06-14 10:29:31 +00:00
|
|
|
}
|
2017-02-07 07:56:07 +00:00
|
|
|
|
|
|
|
|
return keys_ex;
|
|
|
|
|
|
|
|
|
|
err_out:
|
|
|
|
|
kfree(keys_ex);
|
|
|
|
|
return ERR_PTR(err);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int tcf_pedit_key_ex_dump(struct sk_buff *skb,
|
|
|
|
|
struct tcf_pedit_key_ex *keys_ex, int n)
|
|
|
|
|
{
|
2019-04-26 09:13:06 +00:00
|
|
|
struct nlattr *keys_start = nla_nest_start_noflag(skb,
|
|
|
|
|
TCA_PEDIT_KEYS_EX);
|
2017-02-07 07:56:07 +00:00
|
|
|
|
2018-08-27 20:56:22 +00:00
|
|
|
if (!keys_start)
|
|
|
|
|
goto nla_failure;
|
2017-02-07 07:56:07 +00:00
|
|
|
for (; n > 0; n--) {
|
|
|
|
|
struct nlattr *key_start;
|
|
|
|
|
|
2019-04-26 09:13:06 +00:00
|
|
|
key_start = nla_nest_start_noflag(skb, TCA_PEDIT_KEY_EX);
|
2018-08-27 20:56:22 +00:00
|
|
|
if (!key_start)
|
|
|
|
|
goto nla_failure;
|
2017-02-07 07:56:07 +00:00
|
|
|
|
2017-02-07 07:56:08 +00:00
|
|
|
if (nla_put_u16(skb, TCA_PEDIT_KEY_EX_HTYPE, keys_ex->htype) ||
|
2018-08-27 20:56:22 +00:00
|
|
|
nla_put_u16(skb, TCA_PEDIT_KEY_EX_CMD, keys_ex->cmd))
|
|
|
|
|
goto nla_failure;
|
2017-02-07 07:56:07 +00:00
|
|
|
|
|
|
|
|
nla_nest_end(skb, key_start);
|
|
|
|
|
|
|
|
|
|
keys_ex++;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
nla_nest_end(skb, keys_start);
|
|
|
|
|
|
|
|
|
|
return 0;
|
2018-08-27 20:56:22 +00:00
|
|
|
nla_failure:
|
|
|
|
|
nla_nest_cancel(skb, keys_start);
|
|
|
|
|
return -EINVAL;
|
2017-02-07 07:56:07 +00:00
|
|
|
}
|
|
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
static void tcf_pedit_cleanup_rcu(struct rcu_head *head)
|
|
|
|
|
{
|
|
|
|
|
struct tcf_pedit_parms *parms =
|
|
|
|
|
container_of(head, struct tcf_pedit_parms, rcu);
|
|
|
|
|
|
|
|
|
|
kfree(parms->tcfp_keys_ex);
|
|
|
|
|
kfree(parms->tcfp_keys);
|
|
|
|
|
|
|
|
|
|
kfree(parms);
|
|
|
|
|
}
|
|
|
|
|
|
2013-01-14 05:15:39 +00:00
|
|
|
static int tcf_pedit_init(struct net *net, struct nlattr *nla,
|
2016-07-25 23:09:41 +00:00
|
|
|
struct nlattr *est, struct tc_action **a,
|
2019-10-30 14:09:05 +00:00
|
|
|
struct tcf_proto *tp, u32 flags,
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2022-09-08 04:14:33 +00:00
|
|
|
struct tc_action_net *tn = net_generic(net, act_pedit_ops.net_id);
|
2021-07-29 23:12:14 +00:00
|
|
|
bool bind = flags & TCA_ACT_FLAGS_BIND;
|
2019-03-20 14:00:07 +00:00
|
|
|
struct tcf_chain *goto_ch = NULL;
|
2023-01-31 19:05:11 +00:00
|
|
|
struct tcf_pedit_parms *oparms, *nparms;
|
|
|
|
|
struct nlattr *tb[TCA_PEDIT_MAX + 1];
|
2018-06-27 17:33:30 +00:00
|
|
|
struct tc_pedit *parm;
|
|
|
|
|
struct nlattr *pattr;
|
|
|
|
|
struct tcf_pedit *p;
|
|
|
|
|
int ret = 0, err;
|
2022-05-10 14:57:34 +00:00
|
|
|
int i, ksize;
|
2019-08-01 13:02:51 +00:00
|
|
|
u32 index;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2018-07-02 04:02:02 +00:00
|
|
|
if (!nla) {
|
|
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Pedit requires attributes to be passed");
|
2005-04-16 22:20:36 +00:00
|
|
|
return -EINVAL;
|
2018-07-02 04:02:02 +00:00
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
|
netlink: make validation more configurable for future strictness
We currently have two levels of strict validation:
1) liberal (default)
- undefined (type >= max) & NLA_UNSPEC attributes accepted
- attribute length >= expected accepted
- garbage at end of message accepted
2) strict (opt-in)
- NLA_UNSPEC attributes accepted
- attribute length >= expected accepted
Split out parsing strictness into four different options:
* TRAILING - check that there's no trailing data after parsing
attributes (in message or nested)
* MAXTYPE - reject attrs > max known type
* UNSPEC - reject attributes with NLA_UNSPEC policy entries
* STRICT_ATTRS - strictly validate attribute size
The default for future things should be *everything*.
The current *_strict() is a combination of TRAILING and MAXTYPE,
and is renamed to _deprecated_strict().
The current regular parsing has none of this, and is renamed to
*_parse_deprecated().
Additionally it allows us to selectively set one of the new flags
even on old policies. Notably, the UNSPEC flag could be useful in
this case, since it can be arranged (by filling in the policy) to
not be an incompatible userspace ABI change, but would then going
forward prevent forgetting attribute entries. Similar can apply
to the POLICY flag.
We end up with the following renames:
* nla_parse -> nla_parse_deprecated
* nla_parse_strict -> nla_parse_deprecated_strict
* nlmsg_parse -> nlmsg_parse_deprecated
* nlmsg_parse_strict -> nlmsg_parse_deprecated_strict
* nla_parse_nested -> nla_parse_nested_deprecated
* nla_validate_nested -> nla_validate_nested_deprecated
Using spatch, of course:
@@
expression TB, MAX, HEAD, LEN, POL, EXT;
@@
-nla_parse(TB, MAX, HEAD, LEN, POL, EXT)
+nla_parse_deprecated(TB, MAX, HEAD, LEN, POL, EXT)
@@
expression NLH, HDRLEN, TB, MAX, POL, EXT;
@@
-nlmsg_parse(NLH, HDRLEN, TB, MAX, POL, EXT)
+nlmsg_parse_deprecated(NLH, HDRLEN, TB, MAX, POL, EXT)
@@
expression NLH, HDRLEN, TB, MAX, POL, EXT;
@@
-nlmsg_parse_strict(NLH, HDRLEN, TB, MAX, POL, EXT)
+nlmsg_parse_deprecated_strict(NLH, HDRLEN, TB, MAX, POL, EXT)
@@
expression TB, MAX, NLA, POL, EXT;
@@
-nla_parse_nested(TB, MAX, NLA, POL, EXT)
+nla_parse_nested_deprecated(TB, MAX, NLA, POL, EXT)
@@
expression START, MAX, POL, EXT;
@@
-nla_validate_nested(START, MAX, POL, EXT)
+nla_validate_nested_deprecated(START, MAX, POL, EXT)
@@
expression NLH, HDRLEN, MAX, POL, EXT;
@@
-nlmsg_validate(NLH, HDRLEN, MAX, POL, EXT)
+nlmsg_validate_deprecated(NLH, HDRLEN, MAX, POL, EXT)
For this patch, don't actually add the strict, non-renamed versions
yet so that it breaks compile if I get it wrong.
Also, while at it, make nla_validate and nla_parse go down to a
common __nla_validate_parse() function to avoid code duplication.
Ultimately, this allows us to have very strict validation for every
new caller of nla_parse()/nlmsg_parse() etc as re-introduced in the
next patch, while existing things will continue to work as is.
In effect then, this adds fully strict validation for any new command.
Signed-off-by: Johannes Berg <johannes.berg@intel.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2019-04-26 12:07:28 +00:00
|
|
|
err = nla_parse_nested_deprecated(tb, TCA_PEDIT_MAX, nla,
|
|
|
|
|
pedit_policy, NULL);
|
2008-01-24 04:33:32 +00:00
|
|
|
if (err < 0)
|
|
|
|
|
return err;
|
|
|
|
|
|
2017-02-07 07:56:07 +00:00
|
|
|
pattr = tb[TCA_PEDIT_PARMS];
|
|
|
|
|
if (!pattr)
|
|
|
|
|
pattr = tb[TCA_PEDIT_PARMS_EX];
|
2018-07-02 04:02:02 +00:00
|
|
|
if (!pattr) {
|
|
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Missing required TCA_PEDIT_PARMS or TCA_PEDIT_PARMS_EX pedit attribute");
|
2005-04-16 22:20:36 +00:00
|
|
|
return -EINVAL;
|
2018-07-02 04:02:02 +00:00
|
|
|
}
|
2017-02-07 07:56:07 +00:00
|
|
|
|
|
|
|
|
parm = nla_data(pattr);
|
|
|
|
|
|
2019-08-01 13:02:51 +00:00
|
|
|
index = parm->index;
|
|
|
|
|
err = tcf_idr_check_alloc(tn, &index, a, bind);
|
2018-07-05 14:24:32 +00:00
|
|
|
if (!err) {
|
2023-01-31 19:05:11 +00:00
|
|
|
ret = tcf_idr_create_from_flags(tn, index, est, a,
|
|
|
|
|
&act_pedit_ops, bind, flags);
|
2018-07-05 14:24:32 +00:00
|
|
|
if (ret) {
|
2019-08-01 13:02:51 +00:00
|
|
|
tcf_idr_cleanup(tn, index);
|
2023-02-24 15:00:56 +00:00
|
|
|
return ret;
|
2018-07-05 14:24:32 +00:00
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
ret = ACT_P_CREATED;
|
2018-07-05 14:24:32 +00:00
|
|
|
} else if (err > 0) {
|
2013-12-23 13:02:11 +00:00
|
|
|
if (bind)
|
2023-02-24 15:00:56 +00:00
|
|
|
return 0;
|
2021-07-29 23:12:14 +00:00
|
|
|
if (!(flags & TCA_ACT_FLAGS_REPLACE)) {
|
2018-07-03 13:45:12 +00:00
|
|
|
ret = -EEXIST;
|
2018-08-10 17:51:46 +00:00
|
|
|
goto out_release;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
2018-07-05 14:24:32 +00:00
|
|
|
} else {
|
2023-02-24 15:00:56 +00:00
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!parm->nkeys) {
|
|
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Pedit requires keys to be passed");
|
|
|
|
|
ret = -EINVAL;
|
|
|
|
|
goto out_release;
|
|
|
|
|
}
|
|
|
|
|
ksize = parm->nkeys * sizeof(struct tc_pedit_key);
|
|
|
|
|
if (nla_len(pattr) < sizeof(*parm) + ksize) {
|
|
|
|
|
NL_SET_ERR_MSG_ATTR(extack, pattr, "Length of TCA_PEDIT_PARMS or TCA_PEDIT_PARMS_EX pedit attribute is invalid");
|
|
|
|
|
ret = -EINVAL;
|
|
|
|
|
goto out_release;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
nparms = kzalloc(sizeof(*nparms), GFP_KERNEL);
|
|
|
|
|
if (!nparms) {
|
|
|
|
|
ret = -ENOMEM;
|
|
|
|
|
goto out_release;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
nparms->tcfp_keys_ex =
|
2023-04-21 21:25:14 +00:00
|
|
|
tcf_pedit_keys_ex_parse(tb[TCA_PEDIT_KEYS_EX], parm->nkeys, extack);
|
2023-02-24 15:00:56 +00:00
|
|
|
if (IS_ERR(nparms->tcfp_keys_ex)) {
|
|
|
|
|
ret = PTR_ERR(nparms->tcfp_keys_ex);
|
|
|
|
|
goto out_free;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2019-03-20 14:00:07 +00:00
|
|
|
err = tcf_action_check_ctrlact(parm->action, tp, &goto_ch, extack);
|
|
|
|
|
if (err < 0) {
|
|
|
|
|
ret = err;
|
2023-02-24 15:00:56 +00:00
|
|
|
goto out_free_ex;
|
2019-03-20 14:00:07 +00:00
|
|
|
}
|
2018-08-10 17:51:46 +00:00
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
nparms->tcfp_off_max_hint = 0;
|
|
|
|
|
nparms->tcfp_flags = parm->flags;
|
|
|
|
|
nparms->tcfp_nkeys = parm->nkeys;
|
|
|
|
|
|
2023-06-09 07:01:17 +00:00
|
|
|
nparms->tcfp_keys = kmemdup(parm->keys, ksize, GFP_KERNEL);
|
2023-01-31 19:05:11 +00:00
|
|
|
if (!nparms->tcfp_keys) {
|
|
|
|
|
ret = -ENOMEM;
|
|
|
|
|
goto put_chain;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
2023-01-31 19:05:11 +00:00
|
|
|
|
|
|
|
|
for (i = 0; i < nparms->tcfp_nkeys; ++i) {
|
2023-04-21 21:25:15 +00:00
|
|
|
u32 offmask = nparms->tcfp_keys[i].offmask;
|
2023-01-31 19:05:11 +00:00
|
|
|
u32 cur = nparms->tcfp_keys[i].off;
|
2022-05-10 14:57:34 +00:00
|
|
|
|
2023-04-21 21:25:15 +00:00
|
|
|
/* The AT option can be added to static offsets in the datapath */
|
|
|
|
|
if (!offmask && cur % 4) {
|
|
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Offsets must be on 32bit boundaries");
|
|
|
|
|
ret = -EINVAL;
|
2023-04-25 14:47:25 +00:00
|
|
|
goto out_free_keys;
|
2023-04-21 21:25:15 +00:00
|
|
|
}
|
|
|
|
|
|
2022-05-13 09:27:06 +00:00
|
|
|
/* sanitize the shift value for any later use */
|
2023-01-31 19:05:11 +00:00
|
|
|
nparms->tcfp_keys[i].shift = min_t(size_t,
|
|
|
|
|
BITS_PER_TYPE(int) - 1,
|
|
|
|
|
nparms->tcfp_keys[i].shift);
|
2022-05-13 09:27:06 +00:00
|
|
|
|
2022-05-10 14:57:34 +00:00
|
|
|
/* The AT option can read a single byte, we can bound the actual
|
|
|
|
|
* value with uchar max.
|
|
|
|
|
*/
|
2023-04-21 21:25:15 +00:00
|
|
|
cur += (0xff & offmask) >> nparms->tcfp_keys[i].shift;
|
2022-05-10 14:57:34 +00:00
|
|
|
|
|
|
|
|
/* Each key touches 4 bytes starting from the computed offset */
|
2023-01-31 19:05:11 +00:00
|
|
|
nparms->tcfp_off_max_hint =
|
|
|
|
|
max(nparms->tcfp_off_max_hint, cur + 4);
|
2022-05-10 14:57:34 +00:00
|
|
|
}
|
2017-02-07 07:56:07 +00:00
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
p = to_pedit(*a);
|
|
|
|
|
|
|
|
|
|
spin_lock_bh(&p->tcf_lock);
|
2019-03-20 14:00:07 +00:00
|
|
|
goto_ch = tcf_action_set_ctrlact(*a, parm->action, goto_ch);
|
2023-01-31 19:05:11 +00:00
|
|
|
oparms = rcu_replace_pointer(p->parms, nparms, 1);
|
|
|
|
|
spin_unlock_bh(&p->tcf_lock);
|
2018-08-10 17:51:46 +00:00
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
if (oparms)
|
|
|
|
|
call_rcu(&oparms->rcu, tcf_pedit_cleanup_rcu);
|
2017-02-07 07:56:07 +00:00
|
|
|
|
2019-03-20 14:00:07 +00:00
|
|
|
if (goto_ch)
|
|
|
|
|
tcf_chain_put_by_act(goto_ch);
|
2023-01-31 19:05:11 +00:00
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
return ret;
|
2018-08-10 17:51:46 +00:00
|
|
|
|
2023-04-25 14:47:25 +00:00
|
|
|
out_free_keys:
|
|
|
|
|
kfree(nparms->tcfp_keys);
|
2019-03-20 14:00:07 +00:00
|
|
|
put_chain:
|
|
|
|
|
if (goto_ch)
|
|
|
|
|
tcf_chain_put_by_act(goto_ch);
|
2023-01-31 19:05:11 +00:00
|
|
|
out_free_ex:
|
|
|
|
|
kfree(nparms->tcfp_keys_ex);
|
2018-07-03 13:45:12 +00:00
|
|
|
out_free:
|
2023-01-31 19:05:11 +00:00
|
|
|
kfree(nparms);
|
2023-02-24 15:00:56 +00:00
|
|
|
out_release:
|
|
|
|
|
tcf_idr_release(*a, bind);
|
2018-07-03 13:45:12 +00:00
|
|
|
return ret;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2017-12-05 20:53:07 +00:00
|
|
|
static void tcf_pedit_cleanup(struct tc_action *a)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2016-07-25 23:09:41 +00:00
|
|
|
struct tcf_pedit *p = to_pedit(a);
|
2023-01-31 19:05:11 +00:00
|
|
|
struct tcf_pedit_parms *parms;
|
2018-06-27 17:33:30 +00:00
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
parms = rcu_dereference_protected(p->parms, 1);
|
|
|
|
|
|
|
|
|
|
if (parms)
|
|
|
|
|
call_rcu(&parms->rcu, tcf_pedit_cleanup_rcu);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2016-11-28 10:56:40 +00:00
|
|
|
static bool offset_valid(struct sk_buff *skb, int offset)
|
|
|
|
|
{
|
|
|
|
|
if (offset > 0 && offset > skb->len)
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
if (offset < 0 && -offset > skb_headroom(skb))
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-07 16:23:54 +00:00
|
|
|
static int pedit_l4_skb_offset(struct sk_buff *skb, int *hoffset, const int header_type)
|
|
|
|
|
{
|
|
|
|
|
const int noff = skb_network_offset(skb);
|
|
|
|
|
int ret = -EINVAL;
|
|
|
|
|
struct iphdr _iph;
|
|
|
|
|
|
|
|
|
|
switch (skb->protocol) {
|
|
|
|
|
case htons(ETH_P_IP): {
|
|
|
|
|
const struct iphdr *iph = skb_header_pointer(skb, noff, sizeof(_iph), &_iph);
|
|
|
|
|
|
|
|
|
|
if (!iph)
|
|
|
|
|
goto out;
|
|
|
|
|
*hoffset = noff + iph->ihl * 4;
|
|
|
|
|
ret = 0;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
case htons(ETH_P_IPV6):
|
|
|
|
|
ret = ipv6_find_hdr(skb, hoffset, header_type, NULL, NULL) == header_type ? 0 : -EINVAL;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
out:
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int pedit_skb_hdr_offset(struct sk_buff *skb,
|
2023-04-21 21:25:16 +00:00
|
|
|
enum pedit_header_type htype, int *hoffset)
|
2017-02-07 07:56:07 +00:00
|
|
|
{
|
2023-06-07 16:23:54 +00:00
|
|
|
int ret = -EINVAL;
|
2023-04-21 21:25:16 +00:00
|
|
|
/* 'htype' is validated in the netlink parsing */
|
2017-02-07 07:56:07 +00:00
|
|
|
switch (htype) {
|
|
|
|
|
case TCA_PEDIT_KEY_EX_HDR_TYPE_ETH:
|
2023-06-07 16:23:54 +00:00
|
|
|
if (skb_mac_header_was_set(skb)) {
|
2017-02-07 07:56:07 +00:00
|
|
|
*hoffset = skb_mac_offset(skb);
|
2023-06-07 16:23:54 +00:00
|
|
|
ret = 0;
|
|
|
|
|
}
|
2017-02-07 07:56:07 +00:00
|
|
|
break;
|
|
|
|
|
case TCA_PEDIT_KEY_EX_HDR_TYPE_NETWORK:
|
|
|
|
|
case TCA_PEDIT_KEY_EX_HDR_TYPE_IP4:
|
|
|
|
|
case TCA_PEDIT_KEY_EX_HDR_TYPE_IP6:
|
|
|
|
|
*hoffset = skb_network_offset(skb);
|
2023-06-07 16:23:54 +00:00
|
|
|
ret = 0;
|
2017-02-07 07:56:07 +00:00
|
|
|
break;
|
|
|
|
|
case TCA_PEDIT_KEY_EX_HDR_TYPE_TCP:
|
2023-06-07 16:23:54 +00:00
|
|
|
ret = pedit_l4_skb_offset(skb, hoffset, IPPROTO_TCP);
|
|
|
|
|
break;
|
2017-02-07 07:56:07 +00:00
|
|
|
case TCA_PEDIT_KEY_EX_HDR_TYPE_UDP:
|
2023-06-07 16:23:54 +00:00
|
|
|
ret = pedit_l4_skb_offset(skb, hoffset, IPPROTO_UDP);
|
2017-02-07 07:56:07 +00:00
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
break;
|
2018-07-28 10:29:01 +00:00
|
|
|
}
|
2023-06-07 16:23:54 +00:00
|
|
|
return ret;
|
2017-02-07 07:56:07 +00:00
|
|
|
}
|
|
|
|
|
|
2022-12-06 13:55:12 +00:00
|
|
|
TC_INDIRECT_SCOPE int tcf_pedit_act(struct sk_buff *skb,
|
|
|
|
|
const struct tc_action *a,
|
|
|
|
|
struct tcf_result *res)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2023-01-31 19:05:12 +00:00
|
|
|
enum pedit_header_type htype = TCA_PEDIT_KEY_EX_HDR_TYPE_NETWORK;
|
|
|
|
|
enum pedit_cmd cmd = TCA_PEDIT_KEY_EX_CMD_SET;
|
2016-07-25 23:09:41 +00:00
|
|
|
struct tcf_pedit *p = to_pedit(a);
|
2023-01-31 19:05:12 +00:00
|
|
|
struct tcf_pedit_key_ex *tkey_ex;
|
2023-01-31 19:05:11 +00:00
|
|
|
struct tcf_pedit_parms *parms;
|
2023-01-31 19:05:12 +00:00
|
|
|
struct tc_pedit_key *tkey;
|
2022-05-10 14:57:34 +00:00
|
|
|
u32 max_offset;
|
2015-04-30 10:12:00 +00:00
|
|
|
int i;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
parms = rcu_dereference_bh(p->parms);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2022-05-10 14:57:34 +00:00
|
|
|
max_offset = (skb_transport_header_was_set(skb) ?
|
|
|
|
|
skb_transport_offset(skb) :
|
|
|
|
|
skb_network_offset(skb)) +
|
2023-01-31 19:05:11 +00:00
|
|
|
parms->tcfp_off_max_hint;
|
2022-05-10 14:57:34 +00:00
|
|
|
if (skb_ensure_writable(skb, min(skb->len, max_offset)))
|
2023-01-31 19:05:11 +00:00
|
|
|
goto done;
|
2022-05-10 14:57:34 +00:00
|
|
|
|
2016-06-06 10:32:53 +00:00
|
|
|
tcf_lastuse_update(&p->tcf_tm);
|
2023-01-31 19:05:11 +00:00
|
|
|
tcf_action_update_bstats(&p->common, skb);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-01-31 19:05:12 +00:00
|
|
|
tkey = parms->tcfp_keys;
|
|
|
|
|
tkey_ex = parms->tcfp_keys_ex;
|
2017-02-07 07:56:07 +00:00
|
|
|
|
2023-01-31 19:05:12 +00:00
|
|
|
for (i = parms->tcfp_nkeys; i > 0; i--, tkey++) {
|
|
|
|
|
int offset = tkey->off;
|
2023-04-21 21:25:16 +00:00
|
|
|
int hoffset = 0;
|
2023-01-31 19:05:12 +00:00
|
|
|
u32 *ptr, hdata;
|
|
|
|
|
u32 val;
|
2023-06-07 16:23:54 +00:00
|
|
|
int rc;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-01-31 19:05:12 +00:00
|
|
|
if (tkey_ex) {
|
|
|
|
|
htype = tkey_ex->htype;
|
|
|
|
|
cmd = tkey_ex->cmd;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-01-31 19:05:12 +00:00
|
|
|
tkey_ex++;
|
|
|
|
|
}
|
2016-11-28 10:56:40 +00:00
|
|
|
|
2023-06-07 16:23:54 +00:00
|
|
|
rc = pedit_skb_hdr_offset(skb, htype, &hoffset);
|
|
|
|
|
if (rc) {
|
|
|
|
|
pr_info_ratelimited("tc action pedit unable to extract header offset for header type (0x%x)\n", htype);
|
|
|
|
|
goto bad;
|
|
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-01-31 19:05:12 +00:00
|
|
|
if (tkey->offmask) {
|
|
|
|
|
u8 *d, _d;
|
|
|
|
|
|
|
|
|
|
if (!offset_valid(skb, hoffset + tkey->at)) {
|
2023-04-21 21:25:17 +00:00
|
|
|
pr_info_ratelimited("tc action pedit 'at' offset %d out of bounds\n",
|
|
|
|
|
hoffset + tkey->at);
|
2017-02-07 07:56:08 +00:00
|
|
|
goto bad;
|
|
|
|
|
}
|
2023-01-31 19:05:12 +00:00
|
|
|
d = skb_header_pointer(skb, hoffset + tkey->at,
|
|
|
|
|
sizeof(_d), &_d);
|
|
|
|
|
if (!d)
|
|
|
|
|
goto bad;
|
2017-02-07 07:56:08 +00:00
|
|
|
|
2023-04-21 21:25:15 +00:00
|
|
|
offset += (*d & tkey->offmask) >> tkey->shift;
|
|
|
|
|
if (offset % 4) {
|
2023-04-21 21:25:17 +00:00
|
|
|
pr_info_ratelimited("tc action pedit offset must be on 32 bit boundaries\n");
|
2023-04-21 21:25:15 +00:00
|
|
|
goto bad;
|
|
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
2007-02-09 14:25:16 +00:00
|
|
|
|
2023-01-31 19:05:12 +00:00
|
|
|
if (!offset_valid(skb, hoffset + offset)) {
|
2023-04-21 21:25:17 +00:00
|
|
|
pr_info_ratelimited("tc action pedit offset %d out of bounds\n", hoffset + offset);
|
2023-01-31 19:05:12 +00:00
|
|
|
goto bad;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ptr = skb_header_pointer(skb, hoffset + offset,
|
|
|
|
|
sizeof(hdata), &hdata);
|
|
|
|
|
if (!ptr)
|
|
|
|
|
goto bad;
|
|
|
|
|
/* just do it, baby */
|
|
|
|
|
switch (cmd) {
|
|
|
|
|
case TCA_PEDIT_KEY_EX_CMD_SET:
|
|
|
|
|
val = tkey->val;
|
|
|
|
|
break;
|
|
|
|
|
case TCA_PEDIT_KEY_EX_CMD_ADD:
|
|
|
|
|
val = (*ptr + tkey->val) & ~tkey->mask;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
2023-04-21 21:25:17 +00:00
|
|
|
pr_info_ratelimited("tc action pedit bad command (%d)\n", cmd);
|
2023-01-31 19:05:12 +00:00
|
|
|
goto bad;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
*ptr = ((*ptr & tkey->mask) ^ val);
|
|
|
|
|
if (ptr == &hdata)
|
|
|
|
|
skb_store_bits(skb, hoffset + offset, ptr, 4);
|
2018-06-27 17:33:30 +00:00
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-01-31 19:05:12 +00:00
|
|
|
goto done;
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
bad:
|
2023-02-14 21:15:34 +00:00
|
|
|
tcf_action_inc_overlimit_qstats(&p->common);
|
2023-01-31 19:05:11 +00:00
|
|
|
done:
|
2006-08-22 06:54:55 +00:00
|
|
|
return p->tcf_action;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2020-06-19 06:01:07 +00:00
|
|
|
static void tcf_pedit_stats_update(struct tc_action *a, u64 bytes, u64 packets,
|
|
|
|
|
u64 drops, u64 lastuse, bool hw)
|
2020-03-26 20:45:56 +00:00
|
|
|
{
|
|
|
|
|
struct tcf_pedit *d = to_pedit(a);
|
|
|
|
|
struct tcf_t *tm = &d->tcf_tm;
|
|
|
|
|
|
2020-06-19 06:01:07 +00:00
|
|
|
tcf_action_update_stats(a, bytes, packets, drops, hw);
|
2020-03-26 20:45:56 +00:00
|
|
|
tm->lastuse = max_t(u64, tm->lastuse, lastuse);
|
|
|
|
|
}
|
|
|
|
|
|
2006-08-22 06:54:55 +00:00
|
|
|
static int tcf_pedit_dump(struct sk_buff *skb, struct tc_action *a,
|
|
|
|
|
int bind, int ref)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2007-04-20 03:29:13 +00:00
|
|
|
unsigned char *b = skb_tail_pointer(skb);
|
2016-07-25 23:09:41 +00:00
|
|
|
struct tcf_pedit *p = to_pedit(a);
|
2023-01-31 19:05:11 +00:00
|
|
|
struct tcf_pedit_parms *parms;
|
2005-04-16 22:20:36 +00:00
|
|
|
struct tc_pedit *opt;
|
|
|
|
|
struct tcf_t t;
|
2007-02-09 14:25:16 +00:00
|
|
|
int s;
|
|
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
spin_lock_bh(&p->tcf_lock);
|
|
|
|
|
parms = rcu_dereference_protected(p->parms, 1);
|
|
|
|
|
s = struct_size(opt, keys, parms->tcfp_nkeys);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2006-07-21 21:51:30 +00:00
|
|
|
opt = kzalloc(s, GFP_ATOMIC);
|
2023-01-31 19:05:11 +00:00
|
|
|
if (unlikely(!opt)) {
|
|
|
|
|
spin_unlock_bh(&p->tcf_lock);
|
2005-04-16 22:20:36 +00:00
|
|
|
return -ENOBUFS;
|
2023-01-31 19:05:11 +00:00
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
memcpy(opt->keys, parms->tcfp_keys,
|
|
|
|
|
flex_array_size(opt, keys, parms->tcfp_nkeys));
|
2006-08-22 06:54:55 +00:00
|
|
|
opt->index = p->tcf_index;
|
2023-01-31 19:05:11 +00:00
|
|
|
opt->nkeys = parms->tcfp_nkeys;
|
|
|
|
|
opt->flags = parms->tcfp_flags;
|
2006-08-22 06:54:55 +00:00
|
|
|
opt->action = p->tcf_action;
|
2018-07-05 14:24:24 +00:00
|
|
|
opt->refcnt = refcount_read(&p->tcf_refcnt) - ref;
|
|
|
|
|
opt->bindcnt = atomic_read(&p->tcf_bindcnt) - bind;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-01-31 19:05:11 +00:00
|
|
|
if (parms->tcfp_keys_ex) {
|
|
|
|
|
if (tcf_pedit_key_ex_dump(skb, parms->tcfp_keys_ex,
|
|
|
|
|
parms->tcfp_nkeys))
|
2018-08-27 20:56:22 +00:00
|
|
|
goto nla_put_failure;
|
2017-02-07 07:56:07 +00:00
|
|
|
|
|
|
|
|
if (nla_put(skb, TCA_PEDIT_PARMS_EX, s, opt))
|
|
|
|
|
goto nla_put_failure;
|
|
|
|
|
} else {
|
|
|
|
|
if (nla_put(skb, TCA_PEDIT_PARMS, s, opt))
|
|
|
|
|
goto nla_put_failure;
|
|
|
|
|
}
|
2016-06-06 10:32:55 +00:00
|
|
|
|
|
|
|
|
tcf_tm_dump(&t, &p->tcf_tm);
|
2016-04-26 08:06:18 +00:00
|
|
|
if (nla_put_64bit(skb, TCA_PEDIT_TM, sizeof(t), &t, TCA_PEDIT_PAD))
|
2012-03-29 09:11:39 +00:00
|
|
|
goto nla_put_failure;
|
2018-08-10 17:51:46 +00:00
|
|
|
spin_unlock_bh(&p->tcf_lock);
|
2016-06-06 10:32:55 +00:00
|
|
|
|
2006-01-09 06:17:27 +00:00
|
|
|
kfree(opt);
|
2005-04-16 22:20:36 +00:00
|
|
|
return skb->len;
|
|
|
|
|
|
2008-01-23 06:11:50 +00:00
|
|
|
nla_put_failure:
|
2018-08-10 17:51:46 +00:00
|
|
|
spin_unlock_bh(&p->tcf_lock);
|
2007-03-26 06:06:12 +00:00
|
|
|
nlmsg_trim(skb, b);
|
2006-01-09 06:17:27 +00:00
|
|
|
kfree(opt);
|
2005-04-16 22:20:36 +00:00
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
2021-12-17 18:16:21 +00:00
|
|
|
static int tcf_pedit_offload_act_setup(struct tc_action *act, void *entry_data,
|
2022-04-07 07:35:22 +00:00
|
|
|
u32 *index_inc, bool bind,
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2021-12-17 18:16:21 +00:00
|
|
|
{
|
|
|
|
|
if (bind) {
|
|
|
|
|
struct flow_action_entry *entry = entry_data;
|
|
|
|
|
int k;
|
|
|
|
|
|
|
|
|
|
for (k = 0; k < tcf_pedit_nkeys(act); k++) {
|
|
|
|
|
switch (tcf_pedit_cmd(act, k)) {
|
|
|
|
|
case TCA_PEDIT_KEY_EX_CMD_SET:
|
|
|
|
|
entry->id = FLOW_ACTION_MANGLE;
|
|
|
|
|
break;
|
|
|
|
|
case TCA_PEDIT_KEY_EX_CMD_ADD:
|
|
|
|
|
entry->id = FLOW_ACTION_ADD;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
2022-04-07 07:35:26 +00:00
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Unsupported pedit command offload");
|
2021-12-17 18:16:21 +00:00
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
entry->mangle.htype = tcf_pedit_htype(act, k);
|
|
|
|
|
entry->mangle.mask = tcf_pedit_mask(act, k);
|
|
|
|
|
entry->mangle.val = tcf_pedit_val(act, k);
|
|
|
|
|
entry->mangle.offset = tcf_pedit_offset(act, k);
|
|
|
|
|
entry->hw_stats = tc_act_hw_stats(act->hw_stats);
|
|
|
|
|
entry++;
|
|
|
|
|
}
|
|
|
|
|
*index_inc = k;
|
|
|
|
|
} else {
|
2023-02-12 13:25:13 +00:00
|
|
|
struct flow_offload_action *fl_action = entry_data;
|
|
|
|
|
u32 cmd = tcf_pedit_cmd(act, 0);
|
|
|
|
|
int k;
|
|
|
|
|
|
|
|
|
|
switch (cmd) {
|
|
|
|
|
case TCA_PEDIT_KEY_EX_CMD_SET:
|
|
|
|
|
fl_action->id = FLOW_ACTION_MANGLE;
|
|
|
|
|
break;
|
|
|
|
|
case TCA_PEDIT_KEY_EX_CMD_ADD:
|
|
|
|
|
fl_action->id = FLOW_ACTION_ADD;
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Unsupported pedit command offload");
|
|
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for (k = 1; k < tcf_pedit_nkeys(act); k++) {
|
|
|
|
|
if (cmd != tcf_pedit_cmd(act, k)) {
|
|
|
|
|
NL_SET_ERR_MSG_MOD(extack, "Unsupported pedit command offload");
|
|
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
}
|
2021-12-17 18:16:21 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2006-08-22 06:54:55 +00:00
|
|
|
static struct tc_action_ops act_pedit_ops = {
|
2005-04-16 22:20:36 +00:00
|
|
|
.kind = "pedit",
|
2019-02-10 12:25:00 +00:00
|
|
|
.id = TCA_ID_PEDIT,
|
2005-04-16 22:20:36 +00:00
|
|
|
.owner = THIS_MODULE,
|
2018-08-12 13:34:55 +00:00
|
|
|
.act = tcf_pedit_act,
|
2020-03-26 20:45:56 +00:00
|
|
|
.stats_update = tcf_pedit_stats_update,
|
2005-04-16 22:20:36 +00:00
|
|
|
.dump = tcf_pedit_dump,
|
|
|
|
|
.cleanup = tcf_pedit_cleanup,
|
|
|
|
|
.init = tcf_pedit_init,
|
2021-12-17 18:16:21 +00:00
|
|
|
.offload_act_setup = tcf_pedit_offload_act_setup,
|
2016-07-25 23:09:41 +00:00
|
|
|
.size = sizeof(struct tcf_pedit),
|
2016-02-22 23:57:53 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
static __net_init int pedit_init_net(struct net *net)
|
|
|
|
|
{
|
2022-09-08 04:14:33 +00:00
|
|
|
struct tc_action_net *tn = net_generic(net, act_pedit_ops.net_id);
|
2016-02-22 23:57:53 +00:00
|
|
|
|
2019-08-25 17:01:32 +00:00
|
|
|
return tc_action_net_init(net, tn, &act_pedit_ops);
|
2016-02-22 23:57:53 +00:00
|
|
|
}
|
|
|
|
|
|
2017-12-11 23:35:03 +00:00
|
|
|
static void __net_exit pedit_exit_net(struct list_head *net_list)
|
2016-02-22 23:57:53 +00:00
|
|
|
{
|
2022-09-08 04:14:33 +00:00
|
|
|
tc_action_net_exit(net_list, act_pedit_ops.net_id);
|
2016-02-22 23:57:53 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static struct pernet_operations pedit_net_ops = {
|
|
|
|
|
.init = pedit_init_net,
|
2017-12-11 23:35:03 +00:00
|
|
|
.exit_batch = pedit_exit_net,
|
2022-09-08 04:14:33 +00:00
|
|
|
.id = &act_pedit_ops.net_id,
|
2016-02-22 23:57:53 +00:00
|
|
|
.size = sizeof(struct tc_action_net),
|
2005-04-16 22:20:36 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
MODULE_AUTHOR("Jamal Hadi Salim(2002-4)");
|
|
|
|
|
MODULE_DESCRIPTION("Generic Packet Editor actions");
|
|
|
|
|
MODULE_LICENSE("GPL");
|
|
|
|
|
|
2006-08-22 06:54:55 +00:00
|
|
|
static int __init pedit_init_module(void)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2016-02-22 23:57:53 +00:00
|
|
|
return tcf_register_action(&act_pedit_ops, &pedit_net_ops);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2006-08-22 06:54:55 +00:00
|
|
|
static void __exit pedit_cleanup_module(void)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2016-02-22 23:57:53 +00:00
|
|
|
tcf_unregister_action(&act_pedit_ops, &pedit_net_ops);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
module_init(pedit_init_module);
|
|
|
|
|
module_exit(pedit_cleanup_module);
|