Commit | Line | Data |
---|---|---|
2874c5fd | 1 | // SPDX-License-Identifier: GPL-2.0-or-later |
1da177e4 LT |
2 | /* |
3 | * net/sched/act_api.c Packet action API. | |
4 | * | |
1da177e4 | 5 | * Author: Jamal Hadi Salim |
1da177e4 LT |
6 | */ |
7 | ||
1da177e4 LT |
8 | #include <linux/types.h> |
9 | #include <linux/kernel.h> | |
1da177e4 | 10 | #include <linux/string.h> |
1da177e4 | 11 | #include <linux/errno.h> |
5a0e3ad6 | 12 | #include <linux/slab.h> |
1da177e4 | 13 | #include <linux/skbuff.h> |
1da177e4 LT |
14 | #include <linux/init.h> |
15 | #include <linux/kmod.h> | |
ab27cfb8 | 16 | #include <linux/err.h> |
3a9a231d | 17 | #include <linux/module.h> |
b854272b DL |
18 | #include <net/net_namespace.h> |
19 | #include <net/sock.h> | |
1da177e4 | 20 | #include <net/sch_generic.h> |
1045ba77 | 21 | #include <net/pkt_cls.h> |
8cbfe939 | 22 | #include <net/tc_act/tc_pedit.h> |
1da177e4 | 23 | #include <net/act_api.h> |
dc5fc579 | 24 | #include <net/netlink.h> |
8cbfe939 | 25 | #include <net/flow_offload.h> |
871cf386 | 26 | #include <net/tc_wrapper.h> |
1da177e4 | 27 | |
c129412f | 28 | #ifdef CONFIG_INET |
29 | DEFINE_STATIC_KEY_FALSE(tcf_frag_xmit_count); | |
30 | EXPORT_SYMBOL_GPL(tcf_frag_xmit_count); | |
31 | #endif | |
32 | ||
33 | int tcf_dev_queue_xmit(struct sk_buff *skb, int (*xmit)(struct sk_buff *skb)) | |
34 | { | |
35 | #ifdef CONFIG_INET | |
36 | if (static_branch_unlikely(&tcf_frag_xmit_count)) | |
37 | return sch_frag_xmit_hook(skb, xmit); | |
38 | #endif | |
39 | ||
40 | return xmit(skb); | |
41 | } | |
42 | EXPORT_SYMBOL_GPL(tcf_dev_queue_xmit); | |
43 | ||
db50514f JP |
44 | static void tcf_action_goto_chain_exec(const struct tc_action *a, |
45 | struct tcf_result *res) | |
46 | { | |
ee3bbfe8 | 47 | const struct tcf_chain *chain = rcu_dereference_bh(a->goto_chain); |
db50514f JP |
48 | |
49 | res->goto_tp = rcu_dereference_bh(chain->filter_chain); | |
50 | } | |
51 | ||
eec94fdb VB |
52 | static void tcf_free_cookie_rcu(struct rcu_head *p) |
53 | { | |
54 | struct tc_cookie *cookie = container_of(p, struct tc_cookie, rcu); | |
55 | ||
56 | kfree(cookie->data); | |
57 | kfree(cookie); | |
58 | } | |
59 | ||
60 | static void tcf_set_action_cookie(struct tc_cookie __rcu **old_cookie, | |
61 | struct tc_cookie *new_cookie) | |
62 | { | |
63 | struct tc_cookie *old; | |
64 | ||
0dbc81ea | 65 | old = xchg((__force struct tc_cookie **)old_cookie, new_cookie); |
eec94fdb VB |
66 | if (old) |
67 | call_rcu(&old->rcu, tcf_free_cookie_rcu); | |
68 | } | |
69 | ||
85d0966f DC |
70 | int tcf_action_check_ctrlact(int action, struct tcf_proto *tp, |
71 | struct tcf_chain **newchain, | |
72 | struct netlink_ext_ack *extack) | |
73 | { | |
74 | int opcode = TC_ACT_EXT_OPCODE(action), ret = -EINVAL; | |
75 | u32 chain_index; | |
76 | ||
77 | if (!opcode) | |
78 | ret = action > TC_ACT_VALUE_MAX ? -EINVAL : 0; | |
79 | else if (opcode <= TC_ACT_EXT_OPCODE_MAX || action == TC_ACT_UNSPEC) | |
80 | ret = 0; | |
81 | if (ret) { | |
82 | NL_SET_ERR_MSG(extack, "invalid control action"); | |
83 | goto end; | |
84 | } | |
85 | ||
86 | if (TC_ACT_EXT_CMP(action, TC_ACT_GOTO_CHAIN)) { | |
87 | chain_index = action & TC_ACT_EXT_VAL_MASK; | |
88 | if (!tp || !newchain) { | |
89 | ret = -EINVAL; | |
90 | NL_SET_ERR_MSG(extack, | |
91 | "can't goto NULL proto/chain"); | |
92 | goto end; | |
93 | } | |
94 | *newchain = tcf_chain_get_by_act(tp->chain->block, chain_index); | |
95 | if (!*newchain) { | |
96 | ret = -ENOMEM; | |
97 | NL_SET_ERR_MSG(extack, | |
98 | "can't allocate goto_chain"); | |
99 | } | |
100 | } | |
101 | end: | |
102 | return ret; | |
103 | } | |
104 | EXPORT_SYMBOL(tcf_action_check_ctrlact); | |
105 | ||
106 | struct tcf_chain *tcf_action_set_ctrlact(struct tc_action *a, int action, | |
ee3bbfe8 | 107 | struct tcf_chain *goto_chain) |
85d0966f | 108 | { |
85d0966f | 109 | a->tcfa_action = action; |
445d3749 | 110 | goto_chain = rcu_replace_pointer(a->goto_chain, goto_chain, 1); |
ee3bbfe8 | 111 | return goto_chain; |
85d0966f DC |
112 | } |
113 | EXPORT_SYMBOL(tcf_action_set_ctrlact); | |
114 | ||
d7fb60b9 CW |
115 | /* XXX: For standalone actions, we don't need a RCU grace period either, because |
116 | * actions are always connected to filters and filters are already destroyed in | |
117 | * RCU callbacks, so after a RCU grace period actions are already disconnected | |
118 | * from filters. Readers later can not find us. | |
119 | */ | |
120 | static void free_tcf(struct tc_action *p) | |
519c818e | 121 | { |
ee3bbfe8 | 122 | struct tcf_chain *chain = rcu_dereference_protected(p->goto_chain, 1); |
85d0966f | 123 | |
519c818e | 124 | free_percpu(p->cpu_bstats); |
28169aba | 125 | free_percpu(p->cpu_bstats_hw); |
519c818e | 126 | free_percpu(p->cpu_qstats); |
1045ba77 | 127 | |
eec94fdb | 128 | tcf_set_action_cookie(&p->act_cookie, NULL); |
85d0966f DC |
129 | if (chain) |
130 | tcf_chain_put_by_act(chain); | |
1045ba77 | 131 | |
519c818e ED |
132 | kfree(p); |
133 | } | |
134 | ||
7adc5765 BZ |
135 | static void offload_action_hw_count_set(struct tc_action *act, |
136 | u32 hw_count) | |
137 | { | |
138 | act->in_hw_count = hw_count; | |
139 | } | |
140 | ||
13926d19 BZ |
141 | static void offload_action_hw_count_inc(struct tc_action *act, |
142 | u32 hw_count) | |
143 | { | |
144 | act->in_hw_count += hw_count; | |
145 | } | |
146 | ||
147 | static void offload_action_hw_count_dec(struct tc_action *act, | |
148 | u32 hw_count) | |
149 | { | |
150 | act->in_hw_count = act->in_hw_count > hw_count ? | |
151 | act->in_hw_count - hw_count : 0; | |
152 | } | |
153 | ||
8cbfe939 BZ |
154 | static unsigned int tcf_offload_act_num_actions_single(struct tc_action *act) |
155 | { | |
156 | if (is_tcf_pedit(act)) | |
157 | return tcf_pedit_nkeys(act); | |
158 | else | |
159 | return 1; | |
160 | } | |
161 | ||
7adc5765 BZ |
162 | static bool tc_act_skip_hw(u32 flags) |
163 | { | |
164 | return (flags & TCA_ACT_FLAGS_SKIP_HW) ? true : false; | |
165 | } | |
166 | ||
167 | static bool tc_act_skip_sw(u32 flags) | |
168 | { | |
169 | return (flags & TCA_ACT_FLAGS_SKIP_SW) ? true : false; | |
170 | } | |
171 | ||
172 | static bool tc_act_in_hw(struct tc_action *act) | |
173 | { | |
174 | return !!act->in_hw_count; | |
175 | } | |
176 | ||
177 | /* SKIP_HW and SKIP_SW are mutually exclusive flags. */ | |
178 | static bool tc_act_flags_valid(u32 flags) | |
179 | { | |
180 | flags &= TCA_ACT_FLAGS_SKIP_HW | TCA_ACT_FLAGS_SKIP_SW; | |
181 | ||
182 | return flags ^ (TCA_ACT_FLAGS_SKIP_HW | TCA_ACT_FLAGS_SKIP_SW); | |
183 | } | |
184 | ||
8cbfe939 BZ |
185 | static int offload_action_init(struct flow_offload_action *fl_action, |
186 | struct tc_action *act, | |
187 | enum offload_act_command cmd, | |
188 | struct netlink_ext_ack *extack) | |
189 | { | |
963178a0 BZ |
190 | int err; |
191 | ||
8cbfe939 BZ |
192 | fl_action->extack = extack; |
193 | fl_action->command = cmd; | |
194 | fl_action->index = act->tcfa_index; | |
195 | ||
963178a0 BZ |
196 | if (act->ops->offload_act_setup) { |
197 | spin_lock_bh(&act->tcfa_lock); | |
198 | err = act->ops->offload_act_setup(act, fl_action, NULL, | |
c2ccf84e | 199 | false, extack); |
963178a0 BZ |
200 | spin_unlock_bh(&act->tcfa_lock); |
201 | return err; | |
202 | } | |
8cbfe939 BZ |
203 | |
204 | return -EOPNOTSUPP; | |
205 | } | |
206 | ||
13926d19 BZ |
207 | static int tcf_action_offload_cmd_ex(struct flow_offload_action *fl_act, |
208 | u32 *hw_count) | |
8cbfe939 BZ |
209 | { |
210 | int err; | |
211 | ||
212 | err = flow_indr_dev_setup_offload(NULL, NULL, TC_SETUP_ACT, | |
213 | fl_act, NULL, NULL); | |
214 | if (err < 0) | |
215 | return err; | |
216 | ||
7adc5765 BZ |
217 | if (hw_count) |
218 | *hw_count = err; | |
219 | ||
8cbfe939 BZ |
220 | return 0; |
221 | } | |
222 | ||
13926d19 BZ |
223 | static int tcf_action_offload_cmd_cb_ex(struct flow_offload_action *fl_act, |
224 | u32 *hw_count, | |
225 | flow_indr_block_bind_cb_t *cb, | |
226 | void *cb_priv) | |
227 | { | |
228 | int err; | |
229 | ||
230 | err = cb(NULL, NULL, cb_priv, TC_SETUP_ACT, NULL, fl_act, NULL); | |
231 | if (err < 0) | |
232 | return err; | |
233 | ||
234 | if (hw_count) | |
235 | *hw_count = 1; | |
236 | ||
237 | return 0; | |
238 | } | |
239 | ||
240 | static int tcf_action_offload_cmd(struct flow_offload_action *fl_act, | |
241 | u32 *hw_count, | |
242 | flow_indr_block_bind_cb_t *cb, | |
243 | void *cb_priv) | |
244 | { | |
245 | return cb ? tcf_action_offload_cmd_cb_ex(fl_act, hw_count, | |
246 | cb, cb_priv) : | |
247 | tcf_action_offload_cmd_ex(fl_act, hw_count); | |
248 | } | |
249 | ||
250 | static int tcf_action_offload_add_ex(struct tc_action *action, | |
251 | struct netlink_ext_ack *extack, | |
252 | flow_indr_block_bind_cb_t *cb, | |
253 | void *cb_priv) | |
8cbfe939 | 254 | { |
7adc5765 | 255 | bool skip_sw = tc_act_skip_sw(action->tcfa_flags); |
8cbfe939 BZ |
256 | struct tc_action *actions[TCA_ACT_MAX_PRIO] = { |
257 | [0] = action, | |
258 | }; | |
259 | struct flow_offload_action *fl_action; | |
7adc5765 | 260 | u32 in_hw_count = 0; |
8cbfe939 BZ |
261 | int num, err = 0; |
262 | ||
7adc5765 BZ |
263 | if (tc_act_skip_hw(action->tcfa_flags)) |
264 | return 0; | |
265 | ||
8cbfe939 BZ |
266 | num = tcf_offload_act_num_actions_single(action); |
267 | fl_action = offload_action_alloc(num); | |
268 | if (!fl_action) | |
269 | return -ENOMEM; | |
270 | ||
271 | err = offload_action_init(fl_action, action, FLOW_ACT_REPLACE, extack); | |
272 | if (err) | |
273 | goto fl_err; | |
274 | ||
c2ccf84e | 275 | err = tc_setup_action(&fl_action->action, actions, extack); |
8cbfe939 BZ |
276 | if (err) { |
277 | NL_SET_ERR_MSG_MOD(extack, | |
ecf4a24c | 278 | "Failed to setup tc actions for offload"); |
8cbfe939 BZ |
279 | goto fl_err; |
280 | } | |
281 | ||
13926d19 | 282 | err = tcf_action_offload_cmd(fl_action, &in_hw_count, cb, cb_priv); |
7adc5765 | 283 | if (!err) |
13926d19 BZ |
284 | cb ? offload_action_hw_count_inc(action, in_hw_count) : |
285 | offload_action_hw_count_set(action, in_hw_count); | |
7adc5765 BZ |
286 | |
287 | if (skip_sw && !tc_act_in_hw(action)) | |
288 | err = -EINVAL; | |
289 | ||
8cbfe939 BZ |
290 | tc_cleanup_offload_action(&fl_action->action); |
291 | ||
292 | fl_err: | |
293 | kfree(fl_action); | |
294 | ||
295 | return err; | |
296 | } | |
297 | ||
13926d19 BZ |
298 | /* offload the tc action after it is inserted */ |
299 | static int tcf_action_offload_add(struct tc_action *action, | |
300 | struct netlink_ext_ack *extack) | |
301 | { | |
302 | return tcf_action_offload_add_ex(action, extack, NULL, NULL); | |
303 | } | |
304 | ||
c7a66f8d BZ |
305 | int tcf_action_update_hw_stats(struct tc_action *action) |
306 | { | |
307 | struct flow_offload_action fl_act = {}; | |
308 | int err; | |
309 | ||
310 | if (!tc_act_in_hw(action)) | |
311 | return -EOPNOTSUPP; | |
312 | ||
313 | err = offload_action_init(&fl_act, action, FLOW_ACT_STATS, NULL); | |
314 | if (err) | |
315 | return err; | |
316 | ||
13926d19 | 317 | err = tcf_action_offload_cmd(&fl_act, NULL, NULL, NULL); |
c7a66f8d BZ |
318 | if (!err) { |
319 | preempt_disable(); | |
320 | tcf_action_stats_update(action, fl_act.stats.bytes, | |
321 | fl_act.stats.pkts, | |
322 | fl_act.stats.drops, | |
323 | fl_act.stats.lastused, | |
324 | true); | |
325 | preempt_enable(); | |
326 | action->used_hw_stats = fl_act.stats.used_hw_stats; | |
327 | action->used_hw_stats_valid = true; | |
328 | } else { | |
329 | return -EOPNOTSUPP; | |
330 | } | |
331 | ||
332 | return 0; | |
333 | } | |
334 | EXPORT_SYMBOL(tcf_action_update_hw_stats); | |
335 | ||
13926d19 BZ |
336 | static int tcf_action_offload_del_ex(struct tc_action *action, |
337 | flow_indr_block_bind_cb_t *cb, | |
338 | void *cb_priv) | |
8cbfe939 BZ |
339 | { |
340 | struct flow_offload_action fl_act = {}; | |
7adc5765 | 341 | u32 in_hw_count = 0; |
8cbfe939 BZ |
342 | int err = 0; |
343 | ||
7adc5765 BZ |
344 | if (!tc_act_in_hw(action)) |
345 | return 0; | |
346 | ||
8cbfe939 BZ |
347 | err = offload_action_init(&fl_act, action, FLOW_ACT_DESTROY, NULL); |
348 | if (err) | |
349 | return err; | |
350 | ||
13926d19 BZ |
351 | err = tcf_action_offload_cmd(&fl_act, &in_hw_count, cb, cb_priv); |
352 | if (err < 0) | |
7adc5765 BZ |
353 | return err; |
354 | ||
13926d19 | 355 | if (!cb && action->in_hw_count != in_hw_count) |
7adc5765 BZ |
356 | return -EINVAL; |
357 | ||
13926d19 BZ |
358 | /* do not need to update hw state when deleting action */ |
359 | if (cb && in_hw_count) | |
360 | offload_action_hw_count_dec(action, in_hw_count); | |
361 | ||
7adc5765 | 362 | return 0; |
8cbfe939 BZ |
363 | } |
364 | ||
13926d19 BZ |
365 | static int tcf_action_offload_del(struct tc_action *action) |
366 | { | |
367 | return tcf_action_offload_del_ex(action, NULL, NULL); | |
368 | } | |
369 | ||
16af6067 | 370 | static void tcf_action_cleanup(struct tc_action *p) |
e9ce1cd3 | 371 | { |
8cbfe939 | 372 | tcf_action_offload_del(p); |
16af6067 VB |
373 | if (p->ops->cleanup) |
374 | p->ops->cleanup(p); | |
375 | ||
1c0d32fd | 376 | gen_kill_estimator(&p->tcfa_rate_est); |
d7fb60b9 | 377 | free_tcf(p); |
e9ce1cd3 | 378 | } |
e9ce1cd3 | 379 | |
16af6067 VB |
380 | static int __tcf_action_put(struct tc_action *p, bool bind) |
381 | { | |
382 | struct tcf_idrinfo *idrinfo = p->idrinfo; | |
383 | ||
95278dda | 384 | if (refcount_dec_and_mutex_lock(&p->tcfa_refcnt, &idrinfo->lock)) { |
16af6067 VB |
385 | if (bind) |
386 | atomic_dec(&p->tcfa_bindcnt); | |
387 | idr_remove(&idrinfo->action_idr, p->tcfa_index); | |
95278dda | 388 | mutex_unlock(&idrinfo->lock); |
16af6067 VB |
389 | |
390 | tcf_action_cleanup(p); | |
391 | return 1; | |
392 | } | |
393 | ||
394 | if (bind) | |
395 | atomic_dec(&p->tcfa_bindcnt); | |
396 | ||
397 | return 0; | |
398 | } | |
399 | ||
b3650bf7 | 400 | static int __tcf_idr_release(struct tc_action *p, bool bind, bool strict) |
e9ce1cd3 DM |
401 | { |
402 | int ret = 0; | |
403 | ||
036bb443 VB |
404 | /* Release with strict==1 and bind==0 is only called through act API |
405 | * interface (classifiers always bind). Only case when action with | |
406 | * positive reference count and zero bind count can exist is when it was | |
407 | * also created with act API (unbinding last classifier will destroy the | |
408 | * action if it was created by classifier). So only case when bind count | |
409 | * can be changed after initial check is when unbound action is | |
410 | * destroyed by act API while classifier binds to action with same id | |
411 | * concurrently. This result either creation of new action(same behavior | |
412 | * as before), or reusing existing action if concurrent process | |
413 | * increments reference count before action is deleted. Both scenarios | |
414 | * are acceptable. | |
415 | */ | |
e9ce1cd3 | 416 | if (p) { |
16af6067 | 417 | if (!bind && strict && atomic_read(&p->tcfa_bindcnt) > 0) |
55334a5d | 418 | return -EPERM; |
e9ce1cd3 | 419 | |
16af6067 | 420 | if (__tcf_action_put(p, bind)) |
1d4150c0 | 421 | ret = ACT_P_DELETED; |
e9ce1cd3 | 422 | } |
28e6b67f | 423 | |
e9ce1cd3 DM |
424 | return ret; |
425 | } | |
b3650bf7 VB |
426 | |
427 | int tcf_idr_release(struct tc_action *a, bool bind) | |
428 | { | |
429 | const struct tc_action_ops *ops = a->ops; | |
430 | int ret; | |
431 | ||
432 | ret = __tcf_idr_release(a, bind, false); | |
433 | if (ret == ACT_P_DELETED) | |
434 | module_put(ops->owner); | |
435 | return ret; | |
436 | } | |
437 | EXPORT_SYMBOL(tcf_idr_release); | |
e9ce1cd3 | 438 | |
4e76e75d RM |
439 | static size_t tcf_action_shared_attrs_size(const struct tc_action *act) |
440 | { | |
e0479b67 | 441 | struct tc_cookie *act_cookie; |
4e76e75d RM |
442 | u32 cookie_len = 0; |
443 | ||
e0479b67 VB |
444 | rcu_read_lock(); |
445 | act_cookie = rcu_dereference(act->act_cookie); | |
446 | ||
447 | if (act_cookie) | |
448 | cookie_len = nla_total_size(act_cookie->len); | |
449 | rcu_read_unlock(); | |
4e76e75d RM |
450 | |
451 | return nla_total_size(0) /* action number nested */ | |
452 | + nla_total_size(IFNAMSIZ) /* TCA_ACT_KIND */ | |
453 | + cookie_len /* TCA_ACT_COOKIE */ | |
0dfb2d82 | 454 | + nla_total_size(sizeof(struct nla_bitfield32)) /* TCA_ACT_HW_STATS */ |
4e76e75d | 455 | + nla_total_size(0) /* TCA_ACT_STATS nested */ |
1521a67e | 456 | + nla_total_size(sizeof(struct nla_bitfield32)) /* TCA_ACT_FLAGS */ |
4e76e75d RM |
457 | /* TCA_STATS_BASIC */ |
458 | + nla_total_size_64bit(sizeof(struct gnet_stats_basic)) | |
b33e699f ED |
459 | /* TCA_STATS_PKT64 */ |
460 | + nla_total_size_64bit(sizeof(u64)) | |
4e76e75d RM |
461 | /* TCA_STATS_QUEUE */ |
462 | + nla_total_size_64bit(sizeof(struct gnet_stats_queue)) | |
463 | + nla_total_size(0) /* TCA_OPTIONS nested */ | |
464 | + nla_total_size(sizeof(struct tcf_t)); /* TCA_GACT_TM */ | |
465 | } | |
466 | ||
467 | static size_t tcf_action_full_attrs_size(size_t sz) | |
468 | { | |
469 | return NLMSG_HDRLEN /* struct nlmsghdr */ | |
470 | + sizeof(struct tcamsg) | |
471 | + nla_total_size(0) /* TCA_ACT_TAB nested */ | |
472 | + sz; | |
473 | } | |
474 | ||
475 | static size_t tcf_action_fill_size(const struct tc_action *act) | |
476 | { | |
477 | size_t sz = tcf_action_shared_attrs_size(act); | |
478 | ||
479 | if (act->ops->get_fill_size) | |
480 | return act->ops->get_fill_size(act) + sz; | |
481 | return sz; | |
482 | } | |
483 | ||
94f44f28 VB |
484 | static int |
485 | tcf_action_dump_terse(struct sk_buff *skb, struct tc_action *a, bool from_act) | |
486 | { | |
487 | unsigned char *b = skb_tail_pointer(skb); | |
488 | struct tc_cookie *cookie; | |
489 | ||
490 | if (nla_put_string(skb, TCA_KIND, a->ops->kind)) | |
491 | goto nla_put_failure; | |
492 | if (tcf_action_copy_stats(skb, a, 0)) | |
493 | goto nla_put_failure; | |
494 | if (from_act && nla_put_u32(skb, TCA_ACT_INDEX, a->tcfa_index)) | |
495 | goto nla_put_failure; | |
496 | ||
497 | rcu_read_lock(); | |
498 | cookie = rcu_dereference(a->act_cookie); | |
499 | if (cookie) { | |
500 | if (nla_put(skb, TCA_ACT_COOKIE, cookie->len, cookie->data)) { | |
501 | rcu_read_unlock(); | |
502 | goto nla_put_failure; | |
503 | } | |
504 | } | |
505 | rcu_read_unlock(); | |
506 | ||
507 | return 0; | |
508 | ||
509 | nla_put_failure: | |
510 | nlmsg_trim(skb, b); | |
511 | return -1; | |
512 | } | |
513 | ||
65a206c0 | 514 | static int tcf_dump_walker(struct tcf_idrinfo *idrinfo, struct sk_buff *skb, |
a85a970a | 515 | struct netlink_callback *cb) |
e9ce1cd3 | 516 | { |
65a206c0 | 517 | int err = 0, index = -1, s_i = 0, n_i = 0; |
90825b23 | 518 | u32 act_flags = cb->args[2]; |
e62e484d | 519 | unsigned long jiffy_since = cb->args[3]; |
4b3550ef | 520 | struct nlattr *nest; |
65a206c0 CM |
521 | struct idr *idr = &idrinfo->action_idr; |
522 | struct tc_action *p; | |
523 | unsigned long id = 1; | |
e33d2b74 | 524 | unsigned long tmp; |
e9ce1cd3 | 525 | |
95278dda | 526 | mutex_lock(&idrinfo->lock); |
e9ce1cd3 DM |
527 | |
528 | s_i = cb->args[0]; | |
529 | ||
e33d2b74 | 530 | idr_for_each_entry_ul(idr, p, tmp, id) { |
65a206c0 CM |
531 | index++; |
532 | if (index < s_i) | |
533 | continue; | |
580e4273 CW |
534 | if (IS_ERR(p)) |
535 | continue; | |
65a206c0 CM |
536 | |
537 | if (jiffy_since && | |
538 | time_after(jiffy_since, | |
539 | (unsigned long)p->tcfa_tm.lastuse)) | |
540 | continue; | |
541 | ||
ae0be8de | 542 | nest = nla_nest_start_noflag(skb, n_i); |
734549eb CD |
543 | if (!nest) { |
544 | index--; | |
65a206c0 | 545 | goto nla_put_failure; |
734549eb | 546 | } |
f460019b | 547 | err = (act_flags & TCA_ACT_FLAG_TERSE_DUMP) ? |
94f44f28 VB |
548 | tcf_action_dump_terse(skb, p, true) : |
549 | tcf_action_dump_1(skb, p, 0, 0); | |
65a206c0 CM |
550 | if (err < 0) { |
551 | index--; | |
552 | nlmsg_trim(skb, nest); | |
553 | goto done; | |
e9ce1cd3 | 554 | } |
65a206c0 CM |
555 | nla_nest_end(skb, nest); |
556 | n_i++; | |
f460019b | 557 | if (!(act_flags & TCA_ACT_FLAG_LARGE_DUMP_ON) && |
65a206c0 CM |
558 | n_i >= TCA_ACT_MAX_PRIO) |
559 | goto done; | |
e9ce1cd3 DM |
560 | } |
561 | done: | |
e62e484d JHS |
562 | if (index >= 0) |
563 | cb->args[0] = index + 1; | |
564 | ||
95278dda | 565 | mutex_unlock(&idrinfo->lock); |
90825b23 | 566 | if (n_i) { |
f460019b | 567 | if (act_flags & TCA_ACT_FLAG_LARGE_DUMP_ON) |
90825b23 JHS |
568 | cb->args[1] = n_i; |
569 | } | |
e9ce1cd3 DM |
570 | return n_i; |
571 | ||
7ba699c6 | 572 | nla_put_failure: |
4b3550ef | 573 | nla_nest_cancel(skb, nest); |
e9ce1cd3 DM |
574 | goto done; |
575 | } | |
576 | ||
ec3ed293 VB |
577 | static int tcf_idr_release_unsafe(struct tc_action *p) |
578 | { | |
579 | if (atomic_read(&p->tcfa_bindcnt) > 0) | |
580 | return -EPERM; | |
581 | ||
582 | if (refcount_dec_and_test(&p->tcfa_refcnt)) { | |
583 | idr_remove(&p->idrinfo->action_idr, p->tcfa_index); | |
584 | tcf_action_cleanup(p); | |
585 | return ACT_P_DELETED; | |
586 | } | |
587 | ||
588 | return 0; | |
589 | } | |
590 | ||
65a206c0 | 591 | static int tcf_del_walker(struct tcf_idrinfo *idrinfo, struct sk_buff *skb, |
76b39b94 VN |
592 | const struct tc_action_ops *ops, |
593 | struct netlink_ext_ack *extack) | |
e9ce1cd3 | 594 | { |
4b3550ef | 595 | struct nlattr *nest; |
65a206c0 | 596 | int n_i = 0; |
55334a5d | 597 | int ret = -EINVAL; |
65a206c0 CM |
598 | struct idr *idr = &idrinfo->action_idr; |
599 | struct tc_action *p; | |
600 | unsigned long id = 1; | |
e33d2b74 | 601 | unsigned long tmp; |
e9ce1cd3 | 602 | |
ae0be8de | 603 | nest = nla_nest_start_noflag(skb, 0); |
4b3550ef PM |
604 | if (nest == NULL) |
605 | goto nla_put_failure; | |
a85a970a | 606 | if (nla_put_string(skb, TCA_KIND, ops->kind)) |
1b34ec43 | 607 | goto nla_put_failure; |
65a206c0 | 608 | |
76b39b94 | 609 | ret = 0; |
95278dda | 610 | mutex_lock(&idrinfo->lock); |
e33d2b74 | 611 | idr_for_each_entry_ul(idr, p, tmp, id) { |
0fedc63f CW |
612 | if (IS_ERR(p)) |
613 | continue; | |
ec3ed293 | 614 | ret = tcf_idr_release_unsafe(p); |
76b39b94 | 615 | if (ret == ACT_P_DELETED) |
255cd50f | 616 | module_put(ops->owner); |
76b39b94 VN |
617 | else if (ret < 0) |
618 | break; | |
619 | n_i++; | |
e9ce1cd3 | 620 | } |
95278dda | 621 | mutex_unlock(&idrinfo->lock); |
76b39b94 VN |
622 | if (ret < 0) { |
623 | if (n_i) | |
624 | NL_SET_ERR_MSG(extack, "Unable to flush all TC actions"); | |
625 | else | |
626 | goto nla_put_failure; | |
627 | } | |
ec3ed293 | 628 | |
55d96f72 YY |
629 | ret = nla_put_u32(skb, TCA_FCNT, n_i); |
630 | if (ret) | |
1b34ec43 | 631 | goto nla_put_failure; |
4b3550ef | 632 | nla_nest_end(skb, nest); |
e9ce1cd3 DM |
633 | |
634 | return n_i; | |
7ba699c6 | 635 | nla_put_failure: |
4b3550ef | 636 | nla_nest_cancel(skb, nest); |
55334a5d | 637 | return ret; |
e9ce1cd3 DM |
638 | } |
639 | ||
ddf97ccd WC |
640 | int tcf_generic_walker(struct tc_action_net *tn, struct sk_buff *skb, |
641 | struct netlink_callback *cb, int type, | |
b3620145 AA |
642 | const struct tc_action_ops *ops, |
643 | struct netlink_ext_ack *extack) | |
e9ce1cd3 | 644 | { |
65a206c0 | 645 | struct tcf_idrinfo *idrinfo = tn->idrinfo; |
ddf97ccd | 646 | |
e9ce1cd3 | 647 | if (type == RTM_DELACTION) { |
76b39b94 | 648 | return tcf_del_walker(idrinfo, skb, ops, extack); |
e9ce1cd3 | 649 | } else if (type == RTM_GETACTION) { |
65a206c0 | 650 | return tcf_dump_walker(idrinfo, skb, cb); |
e9ce1cd3 | 651 | } else { |
b3620145 AA |
652 | WARN(1, "tcf_generic_walker: unknown command %d\n", type); |
653 | NL_SET_ERR_MSG(extack, "tcf_generic_walker: unknown command"); | |
e9ce1cd3 DM |
654 | return -EINVAL; |
655 | } | |
656 | } | |
ddf97ccd | 657 | EXPORT_SYMBOL(tcf_generic_walker); |
e9ce1cd3 | 658 | |
7d485c45 | 659 | int tcf_idr_search(struct tc_action_net *tn, struct tc_action **a, u32 index) |
e9ce1cd3 | 660 | { |
3f7c72bc VB |
661 | struct tcf_idrinfo *idrinfo = tn->idrinfo; |
662 | struct tc_action *p; | |
e9ce1cd3 | 663 | |
95278dda | 664 | mutex_lock(&idrinfo->lock); |
322d884b | 665 | p = idr_find(&idrinfo->action_idr, index); |
7d485c45 | 666 | if (IS_ERR(p)) |
0190c1d4 | 667 | p = NULL; |
7d485c45 | 668 | else if (p) |
3f7c72bc | 669 | refcount_inc(&p->tcfa_refcnt); |
95278dda | 670 | mutex_unlock(&idrinfo->lock); |
e9ce1cd3 | 671 | |
3f7c72bc VB |
672 | if (p) { |
673 | *a = p; | |
674 | return true; | |
675 | } | |
676 | return false; | |
e9ce1cd3 | 677 | } |
65a206c0 | 678 | EXPORT_SYMBOL(tcf_idr_search); |
e9ce1cd3 | 679 | |
fae52d93 ZS |
680 | static int __tcf_generic_walker(struct net *net, struct sk_buff *skb, |
681 | struct netlink_callback *cb, int type, | |
682 | const struct tc_action_ops *ops, | |
683 | struct netlink_ext_ack *extack) | |
684 | { | |
685 | struct tc_action_net *tn = net_generic(net, ops->net_id); | |
686 | ||
687 | if (unlikely(ops->walk)) | |
688 | return ops->walk(net, skb, cb, type, ops, extack); | |
689 | ||
690 | return tcf_generic_walker(tn, skb, cb, type, ops, extack); | |
691 | } | |
692 | ||
693 | static int __tcf_idr_search(struct net *net, | |
694 | const struct tc_action_ops *ops, | |
695 | struct tc_action **a, u32 index) | |
696 | { | |
697 | struct tc_action_net *tn = net_generic(net, ops->net_id); | |
698 | ||
699 | if (unlikely(ops->lookup)) | |
700 | return ops->lookup(net, a, index); | |
701 | ||
702 | return tcf_idr_search(tn, a, index); | |
703 | } | |
704 | ||
97a3f84f | 705 | static int tcf_idr_delete_index(struct tcf_idrinfo *idrinfo, u32 index) |
2a2ea349 | 706 | { |
2a2ea349 VB |
707 | struct tc_action *p; |
708 | int ret = 0; | |
709 | ||
95278dda | 710 | mutex_lock(&idrinfo->lock); |
2a2ea349 VB |
711 | p = idr_find(&idrinfo->action_idr, index); |
712 | if (!p) { | |
95278dda | 713 | mutex_unlock(&idrinfo->lock); |
2a2ea349 VB |
714 | return -ENOENT; |
715 | } | |
716 | ||
717 | if (!atomic_read(&p->tcfa_bindcnt)) { | |
718 | if (refcount_dec_and_test(&p->tcfa_refcnt)) { | |
719 | struct module *owner = p->ops->owner; | |
720 | ||
721 | WARN_ON(p != idr_remove(&idrinfo->action_idr, | |
722 | p->tcfa_index)); | |
95278dda | 723 | mutex_unlock(&idrinfo->lock); |
2a2ea349 | 724 | |
16af6067 | 725 | tcf_action_cleanup(p); |
2a2ea349 VB |
726 | module_put(owner); |
727 | return 0; | |
728 | } | |
729 | ret = 0; | |
730 | } else { | |
731 | ret = -EPERM; | |
732 | } | |
733 | ||
95278dda | 734 | mutex_unlock(&idrinfo->lock); |
2a2ea349 VB |
735 | return ret; |
736 | } | |
2a2ea349 | 737 | |
65a206c0 CM |
738 | int tcf_idr_create(struct tc_action_net *tn, u32 index, struct nlattr *est, |
739 | struct tc_action **a, const struct tc_action_ops *ops, | |
e3822678 | 740 | int bind, bool cpustats, u32 flags) |
e9ce1cd3 | 741 | { |
ec0595cc | 742 | struct tc_action *p = kzalloc(ops->size, GFP_KERNEL); |
65a206c0 | 743 | struct tcf_idrinfo *idrinfo = tn->idrinfo; |
519c818e | 744 | int err = -ENOMEM; |
e9ce1cd3 DM |
745 | |
746 | if (unlikely(!p)) | |
86062033 | 747 | return -ENOMEM; |
036bb443 | 748 | refcount_set(&p->tcfa_refcnt, 1); |
e9ce1cd3 | 749 | if (bind) |
036bb443 | 750 | atomic_set(&p->tcfa_bindcnt, 1); |
e9ce1cd3 | 751 | |
519c818e | 752 | if (cpustats) { |
50dc9a85 | 753 | p->cpu_bstats = netdev_alloc_pcpu_stats(struct gnet_stats_basic_sync); |
339913a8 | 754 | if (!p->cpu_bstats) |
519c818e | 755 | goto err1; |
50dc9a85 | 756 | p->cpu_bstats_hw = netdev_alloc_pcpu_stats(struct gnet_stats_basic_sync); |
28169aba EC |
757 | if (!p->cpu_bstats_hw) |
758 | goto err2; | |
339913a8 MW |
759 | p->cpu_qstats = alloc_percpu(struct gnet_stats_queue); |
760 | if (!p->cpu_qstats) | |
28169aba | 761 | goto err3; |
519c818e | 762 | } |
50dc9a85 AD |
763 | gnet_stats_basic_sync_init(&p->tcfa_bstats); |
764 | gnet_stats_basic_sync_init(&p->tcfa_bstats_hw); | |
ec0595cc | 765 | spin_lock_init(&p->tcfa_lock); |
339913a8 | 766 | p->tcfa_index = index; |
ec0595cc WC |
767 | p->tcfa_tm.install = jiffies; |
768 | p->tcfa_tm.lastuse = jiffies; | |
769 | p->tcfa_tm.firstuse = 0; | |
e8cb5bcf | 770 | p->tcfa_flags = flags; |
0e991ec6 | 771 | if (est) { |
ec0595cc WC |
772 | err = gen_new_estimator(&p->tcfa_bstats, p->cpu_bstats, |
773 | &p->tcfa_rate_est, | |
29cbcd85 | 774 | &p->tcfa_lock, false, est); |
339913a8 | 775 | if (err) |
28169aba | 776 | goto err4; |
0e991ec6 SH |
777 | } |
778 | ||
65a206c0 | 779 | p->idrinfo = idrinfo; |
b3650bf7 | 780 | __module_get(ops->owner); |
ec0595cc | 781 | p->ops = ops; |
ec0595cc | 782 | *a = p; |
86062033 | 783 | return 0; |
28169aba | 784 | err4: |
339913a8 | 785 | free_percpu(p->cpu_qstats); |
28169aba EC |
786 | err3: |
787 | free_percpu(p->cpu_bstats_hw); | |
339913a8 MW |
788 | err2: |
789 | free_percpu(p->cpu_bstats); | |
790 | err1: | |
791 | kfree(p); | |
792 | return err; | |
e9ce1cd3 | 793 | } |
65a206c0 | 794 | EXPORT_SYMBOL(tcf_idr_create); |
e9ce1cd3 | 795 | |
e3822678 VB |
796 | int tcf_idr_create_from_flags(struct tc_action_net *tn, u32 index, |
797 | struct nlattr *est, struct tc_action **a, | |
798 | const struct tc_action_ops *ops, int bind, | |
799 | u32 flags) | |
800 | { | |
801 | /* Set cpustats according to actions flags. */ | |
802 | return tcf_idr_create(tn, index, est, a, ops, bind, | |
803 | !(flags & TCA_ACT_FLAGS_NO_PERCPU_STATS), flags); | |
804 | } | |
805 | EXPORT_SYMBOL(tcf_idr_create_from_flags); | |
806 | ||
0190c1d4 VB |
807 | /* Cleanup idr index that was allocated but not initialized. */ |
808 | ||
809 | void tcf_idr_cleanup(struct tc_action_net *tn, u32 index) | |
810 | { | |
811 | struct tcf_idrinfo *idrinfo = tn->idrinfo; | |
812 | ||
95278dda | 813 | mutex_lock(&idrinfo->lock); |
0190c1d4 VB |
814 | /* Remove ERR_PTR(-EBUSY) allocated by tcf_idr_check_alloc */ |
815 | WARN_ON(!IS_ERR(idr_remove(&idrinfo->action_idr, index))); | |
95278dda | 816 | mutex_unlock(&idrinfo->lock); |
0190c1d4 VB |
817 | } |
818 | EXPORT_SYMBOL(tcf_idr_cleanup); | |
819 | ||
820 | /* Check if action with specified index exists. If actions is found, increments | |
821 | * its reference and bind counters, and return 1. Otherwise insert temporary | |
822 | * error pointer (to prevent concurrent users from inserting actions with same | |
823 | * index) and return 0. | |
824 | */ | |
825 | ||
826 | int tcf_idr_check_alloc(struct tc_action_net *tn, u32 *index, | |
827 | struct tc_action **a, int bind) | |
828 | { | |
829 | struct tcf_idrinfo *idrinfo = tn->idrinfo; | |
830 | struct tc_action *p; | |
831 | int ret; | |
832 | ||
833 | again: | |
95278dda | 834 | mutex_lock(&idrinfo->lock); |
0190c1d4 VB |
835 | if (*index) { |
836 | p = idr_find(&idrinfo->action_idr, *index); | |
837 | if (IS_ERR(p)) { | |
838 | /* This means that another process allocated | |
839 | * index but did not assign the pointer yet. | |
840 | */ | |
95278dda | 841 | mutex_unlock(&idrinfo->lock); |
0190c1d4 VB |
842 | goto again; |
843 | } | |
844 | ||
845 | if (p) { | |
846 | refcount_inc(&p->tcfa_refcnt); | |
847 | if (bind) | |
848 | atomic_inc(&p->tcfa_bindcnt); | |
849 | *a = p; | |
850 | ret = 1; | |
851 | } else { | |
852 | *a = NULL; | |
853 | ret = idr_alloc_u32(&idrinfo->action_idr, NULL, index, | |
95278dda | 854 | *index, GFP_KERNEL); |
0190c1d4 VB |
855 | if (!ret) |
856 | idr_replace(&idrinfo->action_idr, | |
857 | ERR_PTR(-EBUSY), *index); | |
858 | } | |
859 | } else { | |
860 | *index = 1; | |
861 | *a = NULL; | |
862 | ret = idr_alloc_u32(&idrinfo->action_idr, NULL, index, | |
95278dda | 863 | UINT_MAX, GFP_KERNEL); |
0190c1d4 VB |
864 | if (!ret) |
865 | idr_replace(&idrinfo->action_idr, ERR_PTR(-EBUSY), | |
866 | *index); | |
867 | } | |
95278dda | 868 | mutex_unlock(&idrinfo->lock); |
0190c1d4 VB |
869 | return ret; |
870 | } | |
871 | EXPORT_SYMBOL(tcf_idr_check_alloc); | |
872 | ||
65a206c0 CM |
873 | void tcf_idrinfo_destroy(const struct tc_action_ops *ops, |
874 | struct tcf_idrinfo *idrinfo) | |
1d4150c0 | 875 | { |
65a206c0 CM |
876 | struct idr *idr = &idrinfo->action_idr; |
877 | struct tc_action *p; | |
878 | int ret; | |
879 | unsigned long id = 1; | |
e33d2b74 | 880 | unsigned long tmp; |
1d4150c0 | 881 | |
e33d2b74 | 882 | idr_for_each_entry_ul(idr, p, tmp, id) { |
65a206c0 CM |
883 | ret = __tcf_idr_release(p, false, true); |
884 | if (ret == ACT_P_DELETED) | |
885 | module_put(ops->owner); | |
886 | else if (ret < 0) | |
887 | return; | |
1d4150c0 | 888 | } |
65a206c0 | 889 | idr_destroy(&idrinfo->action_idr); |
1d4150c0 | 890 | } |
65a206c0 | 891 | EXPORT_SYMBOL(tcf_idrinfo_destroy); |
1d4150c0 | 892 | |
1f747c26 | 893 | static LIST_HEAD(act_base); |
1da177e4 | 894 | static DEFINE_RWLOCK(act_mod_lock); |
13926d19 BZ |
895 | /* since act ops id is stored in pernet subsystem list, |
896 | * then there is no way to walk through only all the action | |
897 | * subsystem, so we keep tc action pernet ops id for | |
898 | * reoffload to walk through. | |
899 | */ | |
900 | static LIST_HEAD(act_pernet_id_list); | |
901 | static DEFINE_MUTEX(act_id_mutex); | |
902 | struct tc_act_pernet_id { | |
903 | struct list_head list; | |
904 | unsigned int id; | |
905 | }; | |
906 | ||
907 | static int tcf_pernet_add_id_list(unsigned int id) | |
908 | { | |
909 | struct tc_act_pernet_id *id_ptr; | |
910 | int ret = 0; | |
911 | ||
912 | mutex_lock(&act_id_mutex); | |
913 | list_for_each_entry(id_ptr, &act_pernet_id_list, list) { | |
914 | if (id_ptr->id == id) { | |
915 | ret = -EEXIST; | |
916 | goto err_out; | |
917 | } | |
918 | } | |
919 | ||
920 | id_ptr = kzalloc(sizeof(*id_ptr), GFP_KERNEL); | |
921 | if (!id_ptr) { | |
922 | ret = -ENOMEM; | |
923 | goto err_out; | |
924 | } | |
925 | id_ptr->id = id; | |
926 | ||
927 | list_add_tail(&id_ptr->list, &act_pernet_id_list); | |
928 | ||
929 | err_out: | |
930 | mutex_unlock(&act_id_mutex); | |
931 | return ret; | |
932 | } | |
933 | ||
934 | static void tcf_pernet_del_id_list(unsigned int id) | |
935 | { | |
936 | struct tc_act_pernet_id *id_ptr; | |
937 | ||
938 | mutex_lock(&act_id_mutex); | |
939 | list_for_each_entry(id_ptr, &act_pernet_id_list, list) { | |
940 | if (id_ptr->id == id) { | |
941 | list_del(&id_ptr->list); | |
942 | kfree(id_ptr); | |
943 | break; | |
944 | } | |
945 | } | |
946 | mutex_unlock(&act_id_mutex); | |
947 | } | |
1da177e4 | 948 | |
ddf97ccd WC |
949 | int tcf_register_action(struct tc_action_ops *act, |
950 | struct pernet_operations *ops) | |
1da177e4 | 951 | { |
1f747c26 | 952 | struct tc_action_ops *a; |
ddf97ccd | 953 | int ret; |
1da177e4 | 954 | |
fae52d93 | 955 | if (!act->act || !act->dump || !act->init) |
76c82d7a JHS |
956 | return -EINVAL; |
957 | ||
ab102b80 WC |
958 | /* We have to register pernet ops before making the action ops visible, |
959 | * otherwise tcf_action_init_1() could get a partially initialized | |
960 | * netns. | |
961 | */ | |
962 | ret = register_pernet_subsys(ops); | |
963 | if (ret) | |
964 | return ret; | |
965 | ||
13926d19 BZ |
966 | if (ops->id) { |
967 | ret = tcf_pernet_add_id_list(*ops->id); | |
968 | if (ret) | |
969 | goto err_id; | |
970 | } | |
971 | ||
1da177e4 | 972 | write_lock(&act_mod_lock); |
1f747c26 | 973 | list_for_each_entry(a, &act_base, head) { |
eddd2cf1 | 974 | if (act->id == a->id || (strcmp(act->kind, a->kind) == 0)) { |
13926d19 BZ |
975 | ret = -EEXIST; |
976 | goto err_out; | |
1da177e4 LT |
977 | } |
978 | } | |
1f747c26 | 979 | list_add_tail(&act->head, &act_base); |
1da177e4 | 980 | write_unlock(&act_mod_lock); |
ddf97ccd | 981 | |
1da177e4 | 982 | return 0; |
13926d19 BZ |
983 | |
984 | err_out: | |
985 | write_unlock(&act_mod_lock); | |
986 | if (ops->id) | |
987 | tcf_pernet_del_id_list(*ops->id); | |
988 | err_id: | |
989 | unregister_pernet_subsys(ops); | |
990 | return ret; | |
1da177e4 | 991 | } |
62e3ba1b | 992 | EXPORT_SYMBOL(tcf_register_action); |
1da177e4 | 993 | |
ddf97ccd WC |
994 | int tcf_unregister_action(struct tc_action_ops *act, |
995 | struct pernet_operations *ops) | |
1da177e4 | 996 | { |
1f747c26 | 997 | struct tc_action_ops *a; |
1da177e4 LT |
998 | int err = -ENOENT; |
999 | ||
1000 | write_lock(&act_mod_lock); | |
a792866a ED |
1001 | list_for_each_entry(a, &act_base, head) { |
1002 | if (a == act) { | |
1003 | list_del(&act->head); | |
1004 | err = 0; | |
1da177e4 | 1005 | break; |
a792866a | 1006 | } |
1da177e4 LT |
1007 | } |
1008 | write_unlock(&act_mod_lock); | |
13926d19 | 1009 | if (!err) { |
ab102b80 | 1010 | unregister_pernet_subsys(ops); |
13926d19 BZ |
1011 | if (ops->id) |
1012 | tcf_pernet_del_id_list(*ops->id); | |
1013 | } | |
1da177e4 LT |
1014 | return err; |
1015 | } | |
62e3ba1b | 1016 | EXPORT_SYMBOL(tcf_unregister_action); |
1da177e4 LT |
1017 | |
1018 | /* lookup by name */ | |
1019 | static struct tc_action_ops *tc_lookup_action_n(char *kind) | |
1020 | { | |
a792866a | 1021 | struct tc_action_ops *a, *res = NULL; |
1da177e4 LT |
1022 | |
1023 | if (kind) { | |
1024 | read_lock(&act_mod_lock); | |
1f747c26 | 1025 | list_for_each_entry(a, &act_base, head) { |
1da177e4 | 1026 | if (strcmp(kind, a->kind) == 0) { |
a792866a ED |
1027 | if (try_module_get(a->owner)) |
1028 | res = a; | |
1da177e4 LT |
1029 | break; |
1030 | } | |
1031 | } | |
1032 | read_unlock(&act_mod_lock); | |
1033 | } | |
a792866a | 1034 | return res; |
1da177e4 LT |
1035 | } |
1036 | ||
7ba699c6 PM |
1037 | /* lookup by nlattr */ |
1038 | static struct tc_action_ops *tc_lookup_action(struct nlattr *kind) | |
1da177e4 | 1039 | { |
a792866a | 1040 | struct tc_action_ops *a, *res = NULL; |
1da177e4 LT |
1041 | |
1042 | if (kind) { | |
1043 | read_lock(&act_mod_lock); | |
1f747c26 | 1044 | list_for_each_entry(a, &act_base, head) { |
7ba699c6 | 1045 | if (nla_strcmp(kind, a->kind) == 0) { |
a792866a ED |
1046 | if (try_module_get(a->owner)) |
1047 | res = a; | |
1da177e4 LT |
1048 | break; |
1049 | } | |
1050 | } | |
1051 | read_unlock(&act_mod_lock); | |
1052 | } | |
a792866a | 1053 | return res; |
1da177e4 | 1054 | } |
1da177e4 | 1055 | |
e5a4b17d | 1056 | /*TCA_ACT_MAX_PRIO is 32, there count up to 32 */ |
e0ee84de | 1057 | #define TCA_ACT_MAX_PRIO_MASK 0x1FF |
22dc13c8 WC |
1058 | int tcf_action_exec(struct sk_buff *skb, struct tc_action **actions, |
1059 | int nr_actions, struct tcf_result *res) | |
1da177e4 | 1060 | { |
e0ee84de JHS |
1061 | u32 jmp_prgcnt = 0; |
1062 | u32 jmp_ttl = TCA_ACT_MAX_PRIO; /*matches actions per filter */ | |
ec1a9cca JP |
1063 | int i; |
1064 | int ret = TC_ACT_OK; | |
1da177e4 | 1065 | |
e7246e12 WB |
1066 | if (skb_skip_tc_classify(skb)) |
1067 | return TC_ACT_OK; | |
1068 | ||
e0ee84de | 1069 | restart_act_graph: |
22dc13c8 WC |
1070 | for (i = 0; i < nr_actions; i++) { |
1071 | const struct tc_action *a = actions[i]; | |
5740d068 | 1072 | int repeat_ttl; |
22dc13c8 | 1073 | |
e0ee84de JHS |
1074 | if (jmp_prgcnt > 0) { |
1075 | jmp_prgcnt -= 1; | |
1076 | continue; | |
1077 | } | |
7adc5765 BZ |
1078 | |
1079 | if (tc_act_skip_sw(a->tcfa_flags)) | |
1080 | continue; | |
5740d068 ED |
1081 | |
1082 | repeat_ttl = 32; | |
1da177e4 | 1083 | repeat: |
871cf386 | 1084 | ret = tc_act(skb, a, res); |
5740d068 ED |
1085 | if (unlikely(ret == TC_ACT_REPEAT)) { |
1086 | if (--repeat_ttl != 0) | |
1087 | goto repeat; | |
1088 | /* suspicious opcode, stop pipeline */ | |
1089 | net_warn_ratelimited("TC_ACT_REPEAT abuse ?\n"); | |
1090 | return TC_ACT_OK; | |
1091 | } | |
9da3242e | 1092 | if (TC_ACT_EXT_CMP(ret, TC_ACT_JUMP)) { |
e0ee84de JHS |
1093 | jmp_prgcnt = ret & TCA_ACT_MAX_PRIO_MASK; |
1094 | if (!jmp_prgcnt || (jmp_prgcnt > nr_actions)) { | |
1095 | /* faulty opcode, stop pipeline */ | |
1096 | return TC_ACT_OK; | |
1097 | } else { | |
1098 | jmp_ttl -= 1; | |
1099 | if (jmp_ttl > 0) | |
1100 | goto restart_act_graph; | |
1101 | else /* faulty graph, stop pipeline */ | |
1102 | return TC_ACT_OK; | |
1103 | } | |
db50514f | 1104 | } else if (TC_ACT_EXT_CMP(ret, TC_ACT_GOTO_CHAIN)) { |
ee3bbfe8 DC |
1105 | if (unlikely(!rcu_access_pointer(a->goto_chain))) { |
1106 | net_warn_ratelimited("can't go to NULL chain!\n"); | |
1107 | return TC_ACT_SHOT; | |
1108 | } | |
db50514f | 1109 | tcf_action_goto_chain_exec(a, res); |
e0ee84de JHS |
1110 | } |
1111 | ||
63acd680 | 1112 | if (ret != TC_ACT_PIPE) |
e7246e12 | 1113 | break; |
1da177e4 | 1114 | } |
e0ee84de | 1115 | |
1da177e4 LT |
1116 | return ret; |
1117 | } | |
62e3ba1b | 1118 | EXPORT_SYMBOL(tcf_action_exec); |
1da177e4 | 1119 | |
90b73b77 | 1120 | int tcf_action_destroy(struct tc_action *actions[], int bind) |
1da177e4 | 1121 | { |
255cd50f | 1122 | const struct tc_action_ops *ops; |
90b73b77 VB |
1123 | struct tc_action *a; |
1124 | int ret = 0, i; | |
1da177e4 | 1125 | |
90b73b77 VB |
1126 | for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) { |
1127 | a = actions[i]; | |
1128 | actions[i] = NULL; | |
255cd50f | 1129 | ops = a->ops; |
65a206c0 | 1130 | ret = __tcf_idr_release(a, bind, true); |
55334a5d | 1131 | if (ret == ACT_P_DELETED) |
255cd50f | 1132 | module_put(ops->owner); |
55334a5d WC |
1133 | else if (ret < 0) |
1134 | return ret; | |
1da177e4 | 1135 | } |
55334a5d | 1136 | return ret; |
1da177e4 LT |
1137 | } |
1138 | ||
16af6067 VB |
1139 | static int tcf_action_put(struct tc_action *p) |
1140 | { | |
1141 | return __tcf_action_put(p, false); | |
1142 | } | |
1143 | ||
edfaf94f | 1144 | /* Put all actions in this array, skip those NULL's. */ |
90b73b77 | 1145 | static void tcf_action_put_many(struct tc_action *actions[]) |
cae422f3 | 1146 | { |
90b73b77 | 1147 | int i; |
cae422f3 | 1148 | |
edfaf94f | 1149 | for (i = 0; i < TCA_ACT_MAX_PRIO; i++) { |
90b73b77 | 1150 | struct tc_action *a = actions[i]; |
edfaf94f | 1151 | const struct tc_action_ops *ops; |
cae422f3 | 1152 | |
edfaf94f CW |
1153 | if (!a) |
1154 | continue; | |
1155 | ops = a->ops; | |
cae422f3 VB |
1156 | if (tcf_action_put(a)) |
1157 | module_put(ops->owner); | |
1158 | } | |
1159 | } | |
1160 | ||
1da177e4 LT |
1161 | int |
1162 | tcf_action_dump_old(struct sk_buff *skb, struct tc_action *a, int bind, int ref) | |
1163 | { | |
1da177e4 LT |
1164 | return a->ops->dump(skb, a, bind, ref); |
1165 | } | |
1166 | ||
ca44b738 VB |
1167 | int |
1168 | tcf_action_dump_1(struct sk_buff *skb, struct tc_action *a, int bind, int ref) | |
1169 | { | |
1170 | int err = -EINVAL; | |
1171 | unsigned char *b = skb_tail_pointer(skb); | |
1172 | struct nlattr *nest; | |
e8cb5bcf | 1173 | u32 flags; |
ca44b738 | 1174 | |
94f44f28 | 1175 | if (tcf_action_dump_terse(skb, a, false)) |
ca44b738 VB |
1176 | goto nla_put_failure; |
1177 | ||
8953b077 JP |
1178 | if (a->hw_stats != TCA_ACT_HW_STATS_ANY && |
1179 | nla_put_bitfield32(skb, TCA_ACT_HW_STATS, | |
1180 | a->hw_stats, TCA_ACT_HW_STATS_ANY)) | |
1181 | goto nla_put_failure; | |
e3822678 | 1182 | |
93a129eb JP |
1183 | if (a->used_hw_stats_valid && |
1184 | nla_put_bitfield32(skb, TCA_ACT_USED_HW_STATS, | |
1185 | a->used_hw_stats, TCA_ACT_HW_STATS_ANY)) | |
1186 | goto nla_put_failure; | |
1187 | ||
e8cb5bcf BZ |
1188 | flags = a->tcfa_flags & TCA_ACT_FLAGS_USER_MASK; |
1189 | if (flags && | |
8953b077 | 1190 | nla_put_bitfield32(skb, TCA_ACT_FLAGS, |
e8cb5bcf | 1191 | flags, flags)) |
8953b077 | 1192 | goto nla_put_failure; |
e3822678 | 1193 | |
7adc5765 BZ |
1194 | if (nla_put_u32(skb, TCA_ACT_IN_HW_COUNT, a->in_hw_count)) |
1195 | goto nla_put_failure; | |
1196 | ||
ae0be8de | 1197 | nest = nla_nest_start_noflag(skb, TCA_OPTIONS); |
4b3550ef PM |
1198 | if (nest == NULL) |
1199 | goto nla_put_failure; | |
cc7ec456 ED |
1200 | err = tcf_action_dump_old(skb, a, bind, ref); |
1201 | if (err > 0) { | |
4b3550ef | 1202 | nla_nest_end(skb, nest); |
1da177e4 LT |
1203 | return err; |
1204 | } | |
1205 | ||
7ba699c6 | 1206 | nla_put_failure: |
dc5fc579 | 1207 | nlmsg_trim(skb, b); |
1da177e4 LT |
1208 | return -1; |
1209 | } | |
62e3ba1b | 1210 | EXPORT_SYMBOL(tcf_action_dump_1); |
1da177e4 | 1211 | |
90b73b77 | 1212 | int tcf_action_dump(struct sk_buff *skb, struct tc_action *actions[], |
ca44b738 | 1213 | int bind, int ref, bool terse) |
1da177e4 LT |
1214 | { |
1215 | struct tc_action *a; | |
90b73b77 | 1216 | int err = -EINVAL, i; |
4b3550ef | 1217 | struct nlattr *nest; |
1da177e4 | 1218 | |
90b73b77 VB |
1219 | for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) { |
1220 | a = actions[i]; | |
4097e9d2 | 1221 | nest = nla_nest_start_noflag(skb, i + 1); |
4b3550ef PM |
1222 | if (nest == NULL) |
1223 | goto nla_put_failure; | |
94f44f28 | 1224 | err = terse ? tcf_action_dump_terse(skb, a, false) : |
ca44b738 | 1225 | tcf_action_dump_1(skb, a, bind, ref); |
1da177e4 | 1226 | if (err < 0) |
4fe683f5 | 1227 | goto errout; |
4b3550ef | 1228 | nla_nest_end(skb, nest); |
1da177e4 LT |
1229 | } |
1230 | ||
1231 | return 0; | |
1232 | ||
7ba699c6 | 1233 | nla_put_failure: |
4fe683f5 TG |
1234 | err = -EINVAL; |
1235 | errout: | |
4b3550ef | 1236 | nla_nest_cancel(skb, nest); |
4fe683f5 | 1237 | return err; |
1da177e4 LT |
1238 | } |
1239 | ||
e0535ce5 | 1240 | static struct tc_cookie *nla_memdup_cookie(struct nlattr **tb) |
1045ba77 | 1241 | { |
e0535ce5 WB |
1242 | struct tc_cookie *c = kzalloc(sizeof(*c), GFP_KERNEL); |
1243 | if (!c) | |
1244 | return NULL; | |
1245 | ||
1246 | c->data = nla_memdup(tb[TCA_ACT_COOKIE], GFP_KERNEL); | |
1247 | if (!c->data) { | |
1248 | kfree(c); | |
1249 | return NULL; | |
1045ba77 | 1250 | } |
e0535ce5 | 1251 | c->len = nla_len(tb[TCA_ACT_COOKIE]); |
1045ba77 | 1252 | |
e0535ce5 | 1253 | return c; |
1045ba77 JHS |
1254 | } |
1255 | ||
0dfb2d82 | 1256 | static u8 tcf_action_hw_stats_get(struct nlattr *hw_stats_attr) |
44f86580 | 1257 | { |
0dfb2d82 | 1258 | struct nla_bitfield32 hw_stats_bf; |
44f86580 JP |
1259 | |
1260 | /* If the user did not pass the attr, that means he does | |
1261 | * not care about the type. Return "any" in that case | |
1262 | * which is setting on all supported types. | |
1263 | */ | |
0dfb2d82 JK |
1264 | if (!hw_stats_attr) |
1265 | return TCA_ACT_HW_STATS_ANY; | |
1266 | hw_stats_bf = nla_get_bitfield32(hw_stats_attr); | |
1267 | return hw_stats_bf.value; | |
44f86580 JP |
1268 | } |
1269 | ||
199ce850 | 1270 | static const struct nla_policy tcf_action_policy[TCA_ACT_MAX + 1] = { |
4b793fec | 1271 | [TCA_ACT_KIND] = { .type = NLA_STRING }, |
199ce850 CW |
1272 | [TCA_ACT_INDEX] = { .type = NLA_U32 }, |
1273 | [TCA_ACT_COOKIE] = { .type = NLA_BINARY, | |
1274 | .len = TC_COOKIE_MAX_SIZE }, | |
1275 | [TCA_ACT_OPTIONS] = { .type = NLA_NESTED }, | |
7adc5765 BZ |
1276 | [TCA_ACT_FLAGS] = NLA_POLICY_BITFIELD32(TCA_ACT_FLAGS_NO_PERCPU_STATS | |
1277 | TCA_ACT_FLAGS_SKIP_HW | | |
1278 | TCA_ACT_FLAGS_SKIP_SW), | |
47a1494b | 1279 | [TCA_ACT_HW_STATS] = NLA_POLICY_BITFIELD32(TCA_ACT_HW_STATS_ANY), |
199ce850 CW |
1280 | }; |
1281 | ||
396d7f23 | 1282 | void tcf_idr_insert_many(struct tc_action *actions[]) |
e49d8c22 | 1283 | { |
0fedc63f | 1284 | int i; |
e49d8c22 | 1285 | |
0fedc63f CW |
1286 | for (i = 0; i < TCA_ACT_MAX_PRIO; i++) { |
1287 | struct tc_action *a = actions[i]; | |
1288 | struct tcf_idrinfo *idrinfo; | |
1289 | ||
1290 | if (!a) | |
1291 | continue; | |
1292 | idrinfo = a->idrinfo; | |
1293 | mutex_lock(&idrinfo->lock); | |
1294 | /* Replace ERR_PTR(-EBUSY) allocated by tcf_idr_check_alloc if | |
1295 | * it is just created, otherwise this is just a nop. | |
1296 | */ | |
1297 | idr_replace(&idrinfo->action_idr, a, a->tcfa_index); | |
1298 | mutex_unlock(&idrinfo->lock); | |
1299 | } | |
e49d8c22 CW |
1300 | } |
1301 | ||
695176bf | 1302 | struct tc_action_ops *tc_action_load_ops(struct nlattr *nla, bool police, |
d349f997 CW |
1303 | bool rtnl_held, |
1304 | struct netlink_ext_ack *extack) | |
1da177e4 | 1305 | { |
d349f997 | 1306 | struct nlattr *tb[TCA_ACT_MAX + 1]; |
1da177e4 LT |
1307 | struct tc_action_ops *a_o; |
1308 | char act_name[IFNAMSIZ]; | |
7ba699c6 | 1309 | struct nlattr *kind; |
ab27cfb8 | 1310 | int err; |
1da177e4 | 1311 | |
695176bf | 1312 | if (!police) { |
199ce850 CW |
1313 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla, |
1314 | tcf_action_policy, extack); | |
cee63723 | 1315 | if (err < 0) |
d349f997 | 1316 | return ERR_PTR(err); |
cee63723 | 1317 | err = -EINVAL; |
7ba699c6 | 1318 | kind = tb[TCA_ACT_KIND]; |
84ae017a AA |
1319 | if (!kind) { |
1320 | NL_SET_ERR_MSG(extack, "TC action kind must be specified"); | |
d349f997 | 1321 | return ERR_PTR(err); |
84ae017a | 1322 | } |
872f6903 | 1323 | if (nla_strscpy(act_name, kind, IFNAMSIZ) < 0) { |
4b793fec | 1324 | NL_SET_ERR_MSG(extack, "TC action name too long"); |
d349f997 | 1325 | return ERR_PTR(err); |
4b793fec | 1326 | } |
1da177e4 | 1327 | } else { |
695176bf | 1328 | if (strlcpy(act_name, "police", IFNAMSIZ) >= IFNAMSIZ) { |
84ae017a | 1329 | NL_SET_ERR_MSG(extack, "TC action name too long"); |
d349f997 | 1330 | return ERR_PTR(-EINVAL); |
84ae017a | 1331 | } |
1da177e4 LT |
1332 | } |
1333 | ||
1334 | a_o = tc_lookup_action_n(act_name); | |
1335 | if (a_o == NULL) { | |
95a5afca | 1336 | #ifdef CONFIG_MODULES |
789871bb VB |
1337 | if (rtnl_held) |
1338 | rtnl_unlock(); | |
4bba3925 | 1339 | request_module("act_%s", act_name); |
789871bb VB |
1340 | if (rtnl_held) |
1341 | rtnl_lock(); | |
1da177e4 LT |
1342 | |
1343 | a_o = tc_lookup_action_n(act_name); | |
1344 | ||
1345 | /* We dropped the RTNL semaphore in order to | |
1346 | * perform the module load. So, even if we | |
1347 | * succeeded in loading the module we have to | |
1348 | * tell the caller to replay the request. We | |
1349 | * indicate this using -EAGAIN. | |
1350 | */ | |
1351 | if (a_o != NULL) { | |
d349f997 CW |
1352 | module_put(a_o->owner); |
1353 | return ERR_PTR(-EAGAIN); | |
1da177e4 LT |
1354 | } |
1355 | #endif | |
84ae017a | 1356 | NL_SET_ERR_MSG(extack, "Failed to load TC action module"); |
d349f997 | 1357 | return ERR_PTR(-ENOENT); |
1da177e4 LT |
1358 | } |
1359 | ||
d349f997 CW |
1360 | return a_o; |
1361 | } | |
1362 | ||
1363 | struct tc_action *tcf_action_init_1(struct net *net, struct tcf_proto *tp, | |
1364 | struct nlattr *nla, struct nlattr *est, | |
87c750e8 | 1365 | struct tc_action_ops *a_o, int *init_res, |
695176bf | 1366 | u32 flags, struct netlink_ext_ack *extack) |
d349f997 | 1367 | { |
695176bf CW |
1368 | bool police = flags & TCA_ACT_FLAGS_POLICE; |
1369 | struct nla_bitfield32 userflags = { 0, 0 }; | |
d349f997 CW |
1370 | u8 hw_stats = TCA_ACT_HW_STATS_ANY; |
1371 | struct nlattr *tb[TCA_ACT_MAX + 1]; | |
1372 | struct tc_cookie *cookie = NULL; | |
1373 | struct tc_action *a; | |
1374 | int err; | |
1375 | ||
1da177e4 | 1376 | /* backward compatibility for policer */ |
695176bf | 1377 | if (!police) { |
d349f997 CW |
1378 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla, |
1379 | tcf_action_policy, extack); | |
1380 | if (err < 0) | |
1381 | return ERR_PTR(err); | |
1382 | if (tb[TCA_ACT_COOKIE]) { | |
1383 | cookie = nla_memdup_cookie(tb); | |
1384 | if (!cookie) { | |
1385 | NL_SET_ERR_MSG(extack, "No memory to generate TC cookie"); | |
1386 | err = -ENOMEM; | |
1387 | goto err_out; | |
1388 | } | |
1389 | } | |
1390 | hw_stats = tcf_action_hw_stats_get(tb[TCA_ACT_HW_STATS]); | |
7adc5765 | 1391 | if (tb[TCA_ACT_FLAGS]) { |
695176bf | 1392 | userflags = nla_get_bitfield32(tb[TCA_ACT_FLAGS]); |
7adc5765 BZ |
1393 | if (!tc_act_flags_valid(userflags.value)) { |
1394 | err = -EINVAL; | |
1395 | goto err_out; | |
1396 | } | |
1397 | } | |
d349f997 | 1398 | |
695176bf CW |
1399 | err = a_o->init(net, tb[TCA_ACT_OPTIONS], est, &a, tp, |
1400 | userflags.value | flags, extack); | |
d349f997 | 1401 | } else { |
695176bf CW |
1402 | err = a_o->init(net, nla, est, &a, tp, userflags.value | flags, |
1403 | extack); | |
d349f997 | 1404 | } |
ab27cfb8 | 1405 | if (err < 0) |
d349f997 | 1406 | goto err_out; |
87c750e8 | 1407 | *init_res = err; |
1da177e4 | 1408 | |
695176bf | 1409 | if (!police && tb[TCA_ACT_COOKIE]) |
eec94fdb | 1410 | tcf_set_action_cookie(&a->act_cookie, cookie); |
1045ba77 | 1411 | |
695176bf | 1412 | if (!police) |
0dfb2d82 | 1413 | a->hw_stats = hw_stats; |
44f86580 | 1414 | |
1da177e4 LT |
1415 | return a; |
1416 | ||
d349f997 | 1417 | err_out: |
e0535ce5 WB |
1418 | if (cookie) { |
1419 | kfree(cookie->data); | |
1420 | kfree(cookie); | |
1421 | } | |
ab27cfb8 | 1422 | return ERR_PTR(err); |
1da177e4 LT |
1423 | } |
1424 | ||
8cbfe939 BZ |
1425 | static bool tc_act_bind(u32 flags) |
1426 | { | |
1427 | return !!(flags & TCA_ACT_FLAGS_BIND); | |
1428 | } | |
1429 | ||
90b73b77 VB |
1430 | /* Returns numbers of initialized actions or negative error. */ |
1431 | ||
9fb9f251 | 1432 | int tcf_action_init(struct net *net, struct tcf_proto *tp, struct nlattr *nla, |
695176bf | 1433 | struct nlattr *est, struct tc_action *actions[], |
c86e0209 BZ |
1434 | int init_res[], size_t *attr_size, |
1435 | u32 flags, u32 fl_flags, | |
695176bf | 1436 | struct netlink_ext_ack *extack) |
1da177e4 | 1437 | { |
d349f997 | 1438 | struct tc_action_ops *ops[TCA_ACT_MAX_PRIO] = {}; |
cc7ec456 | 1439 | struct nlattr *tb[TCA_ACT_MAX_PRIO + 1]; |
33be6271 | 1440 | struct tc_action *act; |
4e76e75d | 1441 | size_t sz = 0; |
cee63723 | 1442 | int err; |
1da177e4 LT |
1443 | int i; |
1444 | ||
8cb08174 JB |
1445 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX_PRIO, nla, NULL, |
1446 | extack); | |
cee63723 | 1447 | if (err < 0) |
33be6271 | 1448 | return err; |
1da177e4 | 1449 | |
d349f997 CW |
1450 | for (i = 1; i <= TCA_ACT_MAX_PRIO && tb[i]; i++) { |
1451 | struct tc_action_ops *a_o; | |
1452 | ||
695176bf CW |
1453 | a_o = tc_action_load_ops(tb[i], flags & TCA_ACT_FLAGS_POLICE, |
1454 | !(flags & TCA_ACT_FLAGS_NO_RTNL), | |
1455 | extack); | |
d349f997 CW |
1456 | if (IS_ERR(a_o)) { |
1457 | err = PTR_ERR(a_o); | |
1458 | goto err_mod; | |
1459 | } | |
1460 | ops[i - 1] = a_o; | |
1461 | } | |
1462 | ||
7ba699c6 | 1463 | for (i = 1; i <= TCA_ACT_MAX_PRIO && tb[i]; i++) { |
695176bf CW |
1464 | act = tcf_action_init_1(net, tp, tb[i], est, ops[i - 1], |
1465 | &init_res[i - 1], flags, extack); | |
33be6271 WC |
1466 | if (IS_ERR(act)) { |
1467 | err = PTR_ERR(act); | |
1da177e4 | 1468 | goto err; |
33be6271 | 1469 | } |
4e76e75d | 1470 | sz += tcf_action_fill_size(act); |
90b73b77 VB |
1471 | /* Start from index 0 */ |
1472 | actions[i - 1] = act; | |
c86e0209 BZ |
1473 | if (tc_act_bind(flags)) { |
1474 | bool skip_sw = tc_skip_sw(fl_flags); | |
1475 | bool skip_hw = tc_skip_hw(fl_flags); | |
1476 | ||
1477 | if (tc_act_bind(act->tcfa_flags)) | |
1478 | continue; | |
1479 | if (skip_sw != tc_act_skip_sw(act->tcfa_flags) || | |
1480 | skip_hw != tc_act_skip_hw(act->tcfa_flags)) { | |
d922a99b BZ |
1481 | NL_SET_ERR_MSG(extack, |
1482 | "Mismatch between action and filter offload flags"); | |
c86e0209 BZ |
1483 | err = -EINVAL; |
1484 | goto err; | |
1485 | } | |
1486 | } else { | |
7adc5765 BZ |
1487 | err = tcf_action_offload_add(act, extack); |
1488 | if (tc_act_skip_sw(act->tcfa_flags) && err) | |
1489 | goto err; | |
1490 | } | |
1da177e4 | 1491 | } |
aecc5cef | 1492 | |
0fedc63f CW |
1493 | /* We have to commit them all together, because if any error happened in |
1494 | * between, we could not handle the failure gracefully. | |
1495 | */ | |
1496 | tcf_idr_insert_many(actions); | |
1497 | ||
4e76e75d | 1498 | *attr_size = tcf_action_full_attrs_size(sz); |
b3650bf7 VB |
1499 | err = i - 1; |
1500 | goto err_mod; | |
1da177e4 LT |
1501 | |
1502 | err: | |
695176bf | 1503 | tcf_action_destroy(actions, flags & TCA_ACT_FLAGS_BIND); |
d349f997 CW |
1504 | err_mod: |
1505 | for (i = 0; i < TCA_ACT_MAX_PRIO; i++) { | |
1506 | if (ops[i]) | |
1507 | module_put(ops[i]->owner); | |
1508 | } | |
33be6271 | 1509 | return err; |
1da177e4 LT |
1510 | } |
1511 | ||
4b61d3e8 PL |
1512 | void tcf_action_update_stats(struct tc_action *a, u64 bytes, u64 packets, |
1513 | u64 drops, bool hw) | |
c8ecebd0 | 1514 | { |
5e174d5e | 1515 | if (a->cpu_bstats) { |
50dc9a85 | 1516 | _bstats_update(this_cpu_ptr(a->cpu_bstats), bytes, packets); |
c8ecebd0 | 1517 | |
4b61d3e8 | 1518 | this_cpu_ptr(a->cpu_qstats)->drops += drops; |
5e174d5e VB |
1519 | |
1520 | if (hw) | |
50dc9a85 AD |
1521 | _bstats_update(this_cpu_ptr(a->cpu_bstats_hw), |
1522 | bytes, packets); | |
5e174d5e VB |
1523 | return; |
1524 | } | |
c8ecebd0 | 1525 | |
5e174d5e | 1526 | _bstats_update(&a->tcfa_bstats, bytes, packets); |
4b61d3e8 | 1527 | a->tcfa_qstats.drops += drops; |
c8ecebd0 | 1528 | if (hw) |
5e174d5e | 1529 | _bstats_update(&a->tcfa_bstats_hw, bytes, packets); |
c8ecebd0 VB |
1530 | } |
1531 | EXPORT_SYMBOL(tcf_action_update_stats); | |
1532 | ||
ec0595cc | 1533 | int tcf_action_copy_stats(struct sk_buff *skb, struct tc_action *p, |
1da177e4 LT |
1534 | int compat_mode) |
1535 | { | |
1536 | int err = 0; | |
1537 | struct gnet_dump d; | |
10297b99 | 1538 | |
7eb8896d | 1539 | if (p == NULL) |
1da177e4 LT |
1540 | goto errout; |
1541 | ||
c7a66f8d BZ |
1542 | /* update hw stats for this action */ |
1543 | tcf_action_update_hw_stats(p); | |
1544 | ||
1da177e4 | 1545 | /* compat_mode being true specifies a call that is supposed |
06fe9fb4 | 1546 | * to add additional backward compatibility statistic TLVs. |
1da177e4 LT |
1547 | */ |
1548 | if (compat_mode) { | |
ec0595cc | 1549 | if (p->type == TCA_OLD_COMPAT) |
1da177e4 | 1550 | err = gnet_stats_start_copy_compat(skb, 0, |
9854518e ND |
1551 | TCA_STATS, |
1552 | TCA_XSTATS, | |
ec0595cc | 1553 | &p->tcfa_lock, &d, |
9854518e | 1554 | TCA_PAD); |
1da177e4 LT |
1555 | else |
1556 | return 0; | |
1557 | } else | |
1558 | err = gnet_stats_start_copy(skb, TCA_ACT_STATS, | |
ec0595cc | 1559 | &p->tcfa_lock, &d, TCA_ACT_PAD); |
1da177e4 LT |
1560 | |
1561 | if (err < 0) | |
1562 | goto errout; | |
1563 | ||
29cbcd85 AD |
1564 | if (gnet_stats_copy_basic(&d, p->cpu_bstats, |
1565 | &p->tcfa_bstats, false) < 0 || | |
1566 | gnet_stats_copy_basic_hw(&d, p->cpu_bstats_hw, | |
1567 | &p->tcfa_bstats_hw, false) < 0 || | |
1c0d32fd | 1568 | gnet_stats_copy_rate_est(&d, &p->tcfa_rate_est) < 0 || |
519c818e | 1569 | gnet_stats_copy_queue(&d, p->cpu_qstats, |
ec0595cc WC |
1570 | &p->tcfa_qstats, |
1571 | p->tcfa_qstats.qlen) < 0) | |
1da177e4 LT |
1572 | goto errout; |
1573 | ||
1574 | if (gnet_stats_finish_copy(&d) < 0) | |
1575 | goto errout; | |
1576 | ||
1577 | return 0; | |
1578 | ||
1579 | errout: | |
1580 | return -1; | |
1581 | } | |
1582 | ||
90b73b77 | 1583 | static int tca_get_fill(struct sk_buff *skb, struct tc_action *actions[], |
0b0f43fe JHS |
1584 | u32 portid, u32 seq, u16 flags, int event, int bind, |
1585 | int ref) | |
1da177e4 LT |
1586 | { |
1587 | struct tcamsg *t; | |
1588 | struct nlmsghdr *nlh; | |
27a884dc | 1589 | unsigned char *b = skb_tail_pointer(skb); |
4b3550ef | 1590 | struct nlattr *nest; |
1da177e4 | 1591 | |
15e47304 | 1592 | nlh = nlmsg_put(skb, portid, seq, event, sizeof(*t), flags); |
8b00a53c DM |
1593 | if (!nlh) |
1594 | goto out_nlmsg_trim; | |
1595 | t = nlmsg_data(nlh); | |
1da177e4 | 1596 | t->tca_family = AF_UNSPEC; |
9ef1d4c7 PM |
1597 | t->tca__pad1 = 0; |
1598 | t->tca__pad2 = 0; | |
10297b99 | 1599 | |
ae0be8de | 1600 | nest = nla_nest_start_noflag(skb, TCA_ACT_TAB); |
1af85155 | 1601 | if (!nest) |
8b00a53c | 1602 | goto out_nlmsg_trim; |
1da177e4 | 1603 | |
ca44b738 | 1604 | if (tcf_action_dump(skb, actions, bind, ref, false) < 0) |
8b00a53c | 1605 | goto out_nlmsg_trim; |
1da177e4 | 1606 | |
4b3550ef | 1607 | nla_nest_end(skb, nest); |
10297b99 | 1608 | |
27a884dc | 1609 | nlh->nlmsg_len = skb_tail_pointer(skb) - b; |
1da177e4 LT |
1610 | return skb->len; |
1611 | ||
8b00a53c | 1612 | out_nlmsg_trim: |
dc5fc579 | 1613 | nlmsg_trim(skb, b); |
1da177e4 LT |
1614 | return -1; |
1615 | } | |
1616 | ||
1617 | static int | |
c4c4290c | 1618 | tcf_get_notify(struct net *net, u32 portid, struct nlmsghdr *n, |
90b73b77 | 1619 | struct tc_action *actions[], int event, |
84ae017a | 1620 | struct netlink_ext_ack *extack) |
1da177e4 LT |
1621 | { |
1622 | struct sk_buff *skb; | |
1da177e4 LT |
1623 | |
1624 | skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); | |
1625 | if (!skb) | |
1626 | return -ENOBUFS; | |
0b0f43fe | 1627 | if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, 0, event, |
3f7c72bc | 1628 | 0, 1) <= 0) { |
84ae017a | 1629 | NL_SET_ERR_MSG(extack, "Failed to fill netlink attributes while adding TC action"); |
1da177e4 LT |
1630 | kfree_skb(skb); |
1631 | return -EINVAL; | |
1632 | } | |
2942e900 | 1633 | |
15e47304 | 1634 | return rtnl_unicast(skb, net, portid); |
1da177e4 LT |
1635 | } |
1636 | ||
ddf97ccd | 1637 | static struct tc_action *tcf_action_get_1(struct net *net, struct nlattr *nla, |
84ae017a AA |
1638 | struct nlmsghdr *n, u32 portid, |
1639 | struct netlink_ext_ack *extack) | |
1da177e4 | 1640 | { |
cc7ec456 | 1641 | struct nlattr *tb[TCA_ACT_MAX + 1]; |
a85a970a | 1642 | const struct tc_action_ops *ops; |
1da177e4 LT |
1643 | struct tc_action *a; |
1644 | int index; | |
ab27cfb8 | 1645 | int err; |
1da177e4 | 1646 | |
199ce850 CW |
1647 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla, |
1648 | tcf_action_policy, extack); | |
cee63723 | 1649 | if (err < 0) |
ab27cfb8 | 1650 | goto err_out; |
1da177e4 | 1651 | |
cee63723 | 1652 | err = -EINVAL; |
7ba699c6 | 1653 | if (tb[TCA_ACT_INDEX] == NULL || |
84ae017a AA |
1654 | nla_len(tb[TCA_ACT_INDEX]) < sizeof(index)) { |
1655 | NL_SET_ERR_MSG(extack, "Invalid TC action index value"); | |
ab27cfb8 | 1656 | goto err_out; |
84ae017a | 1657 | } |
1587bac4 | 1658 | index = nla_get_u32(tb[TCA_ACT_INDEX]); |
1da177e4 | 1659 | |
ab27cfb8 | 1660 | err = -EINVAL; |
a85a970a | 1661 | ops = tc_lookup_action(tb[TCA_ACT_KIND]); |
84ae017a | 1662 | if (!ops) { /* could happen in batch of actions */ |
f061b48c | 1663 | NL_SET_ERR_MSG(extack, "Specified TC action kind not found"); |
a85a970a | 1664 | goto err_out; |
84ae017a | 1665 | } |
ab27cfb8 | 1666 | err = -ENOENT; |
fae52d93 | 1667 | if (__tcf_idr_search(net, ops, &a, index) == 0) { |
f061b48c | 1668 | NL_SET_ERR_MSG(extack, "TC action with specified index not found"); |
1da177e4 | 1669 | goto err_mod; |
f061b48c | 1670 | } |
1da177e4 | 1671 | |
a85a970a | 1672 | module_put(ops->owner); |
1da177e4 | 1673 | return a; |
ab27cfb8 | 1674 | |
1da177e4 | 1675 | err_mod: |
a85a970a | 1676 | module_put(ops->owner); |
ab27cfb8 PM |
1677 | err_out: |
1678 | return ERR_PTR(err); | |
1da177e4 LT |
1679 | } |
1680 | ||
7316ae88 | 1681 | static int tca_action_flush(struct net *net, struct nlattr *nla, |
84ae017a AA |
1682 | struct nlmsghdr *n, u32 portid, |
1683 | struct netlink_ext_ack *extack) | |
1da177e4 LT |
1684 | { |
1685 | struct sk_buff *skb; | |
1686 | unsigned char *b; | |
1687 | struct nlmsghdr *nlh; | |
1688 | struct tcamsg *t; | |
1689 | struct netlink_callback dcb; | |
4b3550ef | 1690 | struct nlattr *nest; |
cc7ec456 | 1691 | struct nlattr *tb[TCA_ACT_MAX + 1]; |
a85a970a | 1692 | const struct tc_action_ops *ops; |
7ba699c6 | 1693 | struct nlattr *kind; |
36723873 | 1694 | int err = -ENOMEM; |
1da177e4 | 1695 | |
1da177e4 | 1696 | skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); |
84ae017a | 1697 | if (!skb) |
36723873 | 1698 | return err; |
1da177e4 | 1699 | |
27a884dc | 1700 | b = skb_tail_pointer(skb); |
1da177e4 | 1701 | |
199ce850 CW |
1702 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla, |
1703 | tcf_action_policy, extack); | |
cee63723 | 1704 | if (err < 0) |
1da177e4 LT |
1705 | goto err_out; |
1706 | ||
cee63723 | 1707 | err = -EINVAL; |
7ba699c6 | 1708 | kind = tb[TCA_ACT_KIND]; |
a85a970a | 1709 | ops = tc_lookup_action(kind); |
84ae017a AA |
1710 | if (!ops) { /*some idjot trying to flush unknown action */ |
1711 | NL_SET_ERR_MSG(extack, "Cannot flush unknown TC action"); | |
1da177e4 | 1712 | goto err_out; |
84ae017a | 1713 | } |
1da177e4 | 1714 | |
0b0f43fe JHS |
1715 | nlh = nlmsg_put(skb, portid, n->nlmsg_seq, RTM_DELACTION, |
1716 | sizeof(*t), 0); | |
84ae017a AA |
1717 | if (!nlh) { |
1718 | NL_SET_ERR_MSG(extack, "Failed to create TC action flush notification"); | |
8b00a53c | 1719 | goto out_module_put; |
84ae017a | 1720 | } |
8b00a53c | 1721 | t = nlmsg_data(nlh); |
1da177e4 | 1722 | t->tca_family = AF_UNSPEC; |
9ef1d4c7 PM |
1723 | t->tca__pad1 = 0; |
1724 | t->tca__pad2 = 0; | |
1da177e4 | 1725 | |
ae0be8de | 1726 | nest = nla_nest_start_noflag(skb, TCA_ACT_TAB); |
84ae017a AA |
1727 | if (!nest) { |
1728 | NL_SET_ERR_MSG(extack, "Failed to add new netlink message"); | |
8b00a53c | 1729 | goto out_module_put; |
84ae017a | 1730 | } |
1da177e4 | 1731 | |
fae52d93 | 1732 | err = __tcf_generic_walker(net, skb, &dcb, RTM_DELACTION, ops, extack); |
66dede2d DC |
1733 | if (err <= 0) { |
1734 | nla_nest_cancel(skb, nest); | |
8b00a53c | 1735 | goto out_module_put; |
66dede2d | 1736 | } |
1da177e4 | 1737 | |
4b3550ef | 1738 | nla_nest_end(skb, nest); |
1da177e4 | 1739 | |
27a884dc | 1740 | nlh->nlmsg_len = skb_tail_pointer(skb) - b; |
1da177e4 | 1741 | nlh->nlmsg_flags |= NLM_F_ROOT; |
a85a970a | 1742 | module_put(ops->owner); |
15e47304 | 1743 | err = rtnetlink_send(skb, net, portid, RTNLGRP_TC, |
cc7ec456 | 1744 | n->nlmsg_flags & NLM_F_ECHO); |
84ae017a AA |
1745 | if (err < 0) |
1746 | NL_SET_ERR_MSG(extack, "Failed to send TC action flush notification"); | |
1da177e4 LT |
1747 | |
1748 | return err; | |
1749 | ||
8b00a53c | 1750 | out_module_put: |
a85a970a | 1751 | module_put(ops->owner); |
1da177e4 LT |
1752 | err_out: |
1753 | kfree_skb(skb); | |
1da177e4 LT |
1754 | return err; |
1755 | } | |
1756 | ||
b144e7ec | 1757 | static int tcf_action_delete(struct net *net, struct tc_action *actions[]) |
16af6067 | 1758 | { |
97a3f84f | 1759 | int i; |
16af6067 | 1760 | |
90b73b77 VB |
1761 | for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) { |
1762 | struct tc_action *a = actions[i]; | |
16af6067 | 1763 | const struct tc_action_ops *ops = a->ops; |
16af6067 VB |
1764 | /* Actions can be deleted concurrently so we must save their |
1765 | * type and id to search again after reference is released. | |
1766 | */ | |
97a3f84f CW |
1767 | struct tcf_idrinfo *idrinfo = a->idrinfo; |
1768 | u32 act_index = a->tcfa_index; | |
16af6067 | 1769 | |
c10bbfae | 1770 | actions[i] = NULL; |
16af6067 VB |
1771 | if (tcf_action_put(a)) { |
1772 | /* last reference, action was deleted concurrently */ | |
1773 | module_put(ops->owner); | |
1774 | } else { | |
97a3f84f CW |
1775 | int ret; |
1776 | ||
16af6067 | 1777 | /* now do the delete */ |
97a3f84f | 1778 | ret = tcf_idr_delete_index(idrinfo, act_index); |
edfaf94f | 1779 | if (ret < 0) |
16af6067 VB |
1780 | return ret; |
1781 | } | |
1782 | } | |
1783 | return 0; | |
1784 | } | |
1785 | ||
13926d19 BZ |
1786 | static int |
1787 | tcf_reoffload_del_notify(struct net *net, struct tc_action *action) | |
1788 | { | |
1789 | size_t attr_size = tcf_action_fill_size(action); | |
1790 | struct tc_action *actions[TCA_ACT_MAX_PRIO] = { | |
1791 | [0] = action, | |
1792 | }; | |
1793 | const struct tc_action_ops *ops = action->ops; | |
1794 | struct sk_buff *skb; | |
1795 | int ret; | |
1796 | ||
1797 | skb = alloc_skb(attr_size <= NLMSG_GOODSIZE ? NLMSG_GOODSIZE : attr_size, | |
1798 | GFP_KERNEL); | |
1799 | if (!skb) | |
1800 | return -ENOBUFS; | |
1801 | ||
1802 | if (tca_get_fill(skb, actions, 0, 0, 0, RTM_DELACTION, 0, 1) <= 0) { | |
1803 | kfree_skb(skb); | |
1804 | return -EINVAL; | |
1805 | } | |
1806 | ||
1807 | ret = tcf_idr_release_unsafe(action); | |
1808 | if (ret == ACT_P_DELETED) { | |
1809 | module_put(ops->owner); | |
1810 | ret = rtnetlink_send(skb, net, 0, RTNLGRP_TC, 0); | |
1811 | } else { | |
1812 | kfree_skb(skb); | |
1813 | } | |
1814 | ||
1815 | return ret; | |
1816 | } | |
1817 | ||
1818 | int tcf_action_reoffload_cb(flow_indr_block_bind_cb_t *cb, | |
1819 | void *cb_priv, bool add) | |
1820 | { | |
1821 | struct tc_act_pernet_id *id_ptr; | |
1822 | struct tcf_idrinfo *idrinfo; | |
1823 | struct tc_action_net *tn; | |
1824 | struct tc_action *p; | |
1825 | unsigned int act_id; | |
1826 | unsigned long tmp; | |
1827 | unsigned long id; | |
1828 | struct idr *idr; | |
1829 | struct net *net; | |
1830 | int ret; | |
1831 | ||
1832 | if (!cb) | |
1833 | return -EINVAL; | |
1834 | ||
1835 | down_read(&net_rwsem); | |
1836 | mutex_lock(&act_id_mutex); | |
1837 | ||
1838 | for_each_net(net) { | |
1839 | list_for_each_entry(id_ptr, &act_pernet_id_list, list) { | |
1840 | act_id = id_ptr->id; | |
1841 | tn = net_generic(net, act_id); | |
1842 | if (!tn) | |
1843 | continue; | |
1844 | idrinfo = tn->idrinfo; | |
1845 | if (!idrinfo) | |
1846 | continue; | |
1847 | ||
1848 | mutex_lock(&idrinfo->lock); | |
1849 | idr = &idrinfo->action_idr; | |
1850 | idr_for_each_entry_ul(idr, p, tmp, id) { | |
1851 | if (IS_ERR(p) || tc_act_bind(p->tcfa_flags)) | |
1852 | continue; | |
1853 | if (add) { | |
1854 | tcf_action_offload_add_ex(p, NULL, cb, | |
1855 | cb_priv); | |
1856 | continue; | |
1857 | } | |
1858 | ||
1859 | /* cb unregister to update hw count */ | |
1860 | ret = tcf_action_offload_del_ex(p, cb, cb_priv); | |
1861 | if (ret < 0) | |
1862 | continue; | |
1863 | if (tc_act_skip_sw(p->tcfa_flags) && | |
1864 | !tc_act_in_hw(p)) | |
1865 | tcf_reoffload_del_notify(net, p); | |
1866 | } | |
1867 | mutex_unlock(&idrinfo->lock); | |
1868 | } | |
1869 | } | |
1870 | mutex_unlock(&act_id_mutex); | |
1871 | up_read(&net_rwsem); | |
1872 | ||
1873 | return 0; | |
1874 | } | |
1875 | ||
a56e1953 | 1876 | static int |
90b73b77 | 1877 | tcf_del_notify(struct net *net, struct nlmsghdr *n, struct tc_action *actions[], |
edfaf94f | 1878 | u32 portid, size_t attr_size, struct netlink_ext_ack *extack) |
a56e1953 WC |
1879 | { |
1880 | int ret; | |
1881 | struct sk_buff *skb; | |
1882 | ||
d04e6990 RM |
1883 | skb = alloc_skb(attr_size <= NLMSG_GOODSIZE ? NLMSG_GOODSIZE : attr_size, |
1884 | GFP_KERNEL); | |
a56e1953 WC |
1885 | if (!skb) |
1886 | return -ENOBUFS; | |
1887 | ||
1888 | if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, 0, RTM_DELACTION, | |
3f7c72bc | 1889 | 0, 2) <= 0) { |
84ae017a | 1890 | NL_SET_ERR_MSG(extack, "Failed to fill netlink TC action attributes"); |
a56e1953 WC |
1891 | kfree_skb(skb); |
1892 | return -EINVAL; | |
1893 | } | |
1894 | ||
1895 | /* now do the delete */ | |
b144e7ec | 1896 | ret = tcf_action_delete(net, actions); |
55334a5d | 1897 | if (ret < 0) { |
84ae017a | 1898 | NL_SET_ERR_MSG(extack, "Failed to delete TC action"); |
55334a5d WC |
1899 | kfree_skb(skb); |
1900 | return ret; | |
1901 | } | |
a56e1953 WC |
1902 | |
1903 | ret = rtnetlink_send(skb, net, portid, RTNLGRP_TC, | |
1904 | n->nlmsg_flags & NLM_F_ECHO); | |
a56e1953 WC |
1905 | return ret; |
1906 | } | |
1907 | ||
1da177e4 | 1908 | static int |
7316ae88 | 1909 | tca_action_gd(struct net *net, struct nlattr *nla, struct nlmsghdr *n, |
84ae017a | 1910 | u32 portid, int event, struct netlink_ext_ack *extack) |
1da177e4 | 1911 | { |
cee63723 | 1912 | int i, ret; |
cc7ec456 | 1913 | struct nlattr *tb[TCA_ACT_MAX_PRIO + 1]; |
33be6271 | 1914 | struct tc_action *act; |
d04e6990 | 1915 | size_t attr_size = 0; |
edfaf94f | 1916 | struct tc_action *actions[TCA_ACT_MAX_PRIO] = {}; |
1da177e4 | 1917 | |
8cb08174 JB |
1918 | ret = nla_parse_nested_deprecated(tb, TCA_ACT_MAX_PRIO, nla, NULL, |
1919 | extack); | |
cee63723 PM |
1920 | if (ret < 0) |
1921 | return ret; | |
1da177e4 | 1922 | |
cc7ec456 | 1923 | if (event == RTM_DELACTION && n->nlmsg_flags & NLM_F_ROOT) { |
1af85155 | 1924 | if (tb[1]) |
84ae017a | 1925 | return tca_action_flush(net, tb[1], n, portid, extack); |
1af85155 | 1926 | |
84ae017a | 1927 | NL_SET_ERR_MSG(extack, "Invalid netlink attributes while flushing TC action"); |
1af85155 | 1928 | return -EINVAL; |
1da177e4 LT |
1929 | } |
1930 | ||
7ba699c6 | 1931 | for (i = 1; i <= TCA_ACT_MAX_PRIO && tb[i]; i++) { |
84ae017a | 1932 | act = tcf_action_get_1(net, tb[i], n, portid, extack); |
ab27cfb8 PM |
1933 | if (IS_ERR(act)) { |
1934 | ret = PTR_ERR(act); | |
1da177e4 | 1935 | goto err; |
ab27cfb8 | 1936 | } |
4e76e75d | 1937 | attr_size += tcf_action_fill_size(act); |
90b73b77 | 1938 | actions[i - 1] = act; |
1da177e4 | 1939 | } |
4e76e75d RM |
1940 | |
1941 | attr_size = tcf_action_full_attrs_size(attr_size); | |
1da177e4 LT |
1942 | |
1943 | if (event == RTM_GETACTION) | |
90b73b77 | 1944 | ret = tcf_get_notify(net, portid, n, actions, event, extack); |
1da177e4 | 1945 | else { /* delete */ |
edfaf94f | 1946 | ret = tcf_del_notify(net, n, actions, portid, attr_size, extack); |
a56e1953 | 1947 | if (ret) |
1da177e4 | 1948 | goto err; |
edfaf94f | 1949 | return 0; |
1da177e4 LT |
1950 | } |
1951 | err: | |
edfaf94f | 1952 | tcf_action_put_many(actions); |
1da177e4 LT |
1953 | return ret; |
1954 | } | |
1955 | ||
a56e1953 | 1956 | static int |
90b73b77 | 1957 | tcf_add_notify(struct net *net, struct nlmsghdr *n, struct tc_action *actions[], |
d04e6990 | 1958 | u32 portid, size_t attr_size, struct netlink_ext_ack *extack) |
1da177e4 | 1959 | { |
1da177e4 | 1960 | struct sk_buff *skb; |
1da177e4 | 1961 | |
d04e6990 RM |
1962 | skb = alloc_skb(attr_size <= NLMSG_GOODSIZE ? NLMSG_GOODSIZE : attr_size, |
1963 | GFP_KERNEL); | |
1da177e4 LT |
1964 | if (!skb) |
1965 | return -ENOBUFS; | |
1966 | ||
a56e1953 WC |
1967 | if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, n->nlmsg_flags, |
1968 | RTM_NEWACTION, 0, 0) <= 0) { | |
d143b9e3 | 1969 | NL_SET_ERR_MSG(extack, "Failed to fill netlink attributes while adding TC action"); |
a56e1953 WC |
1970 | kfree_skb(skb); |
1971 | return -EINVAL; | |
1972 | } | |
10297b99 | 1973 | |
f79a3bcb YD |
1974 | return rtnetlink_send(skb, net, portid, RTNLGRP_TC, |
1975 | n->nlmsg_flags & NLM_F_ECHO); | |
1da177e4 LT |
1976 | } |
1977 | ||
5a7a5555 | 1978 | static int tcf_action_add(struct net *net, struct nlattr *nla, |
695176bf | 1979 | struct nlmsghdr *n, u32 portid, u32 flags, |
aea0d727 | 1980 | struct netlink_ext_ack *extack) |
1da177e4 | 1981 | { |
d04e6990 | 1982 | size_t attr_size = 0; |
87c750e8 | 1983 | int loop, ret, i; |
90b73b77 | 1984 | struct tc_action *actions[TCA_ACT_MAX_PRIO] = {}; |
87c750e8 | 1985 | int init_res[TCA_ACT_MAX_PRIO] = {}; |
1da177e4 | 1986 | |
39f13ea2 | 1987 | for (loop = 0; loop < 10; loop++) { |
695176bf | 1988 | ret = tcf_action_init(net, NULL, nla, NULL, actions, init_res, |
c86e0209 | 1989 | &attr_size, flags, 0, extack); |
39f13ea2 ED |
1990 | if (ret != -EAGAIN) |
1991 | break; | |
1992 | } | |
1993 | ||
90b73b77 | 1994 | if (ret < 0) |
f07fed82 | 1995 | return ret; |
90b73b77 | 1996 | ret = tcf_add_notify(net, n, actions, portid, attr_size, extack); |
87c750e8 VB |
1997 | |
1998 | /* only put existing actions */ | |
1999 | for (i = 0; i < TCA_ACT_MAX_PRIO; i++) | |
2000 | if (init_res[i] == ACT_P_CREATED) | |
2001 | actions[i] = NULL; | |
2002 | tcf_action_put_many(actions); | |
1da177e4 | 2003 | |
cae422f3 | 2004 | return ret; |
1da177e4 LT |
2005 | } |
2006 | ||
90825b23 | 2007 | static const struct nla_policy tcaa_policy[TCA_ROOT_MAX + 1] = { |
f460019b VB |
2008 | [TCA_ROOT_FLAGS] = NLA_POLICY_BITFIELD32(TCA_ACT_FLAG_LARGE_DUMP_ON | |
2009 | TCA_ACT_FLAG_TERSE_DUMP), | |
e62e484d | 2010 | [TCA_ROOT_TIME_DELTA] = { .type = NLA_U32 }, |
90825b23 JHS |
2011 | }; |
2012 | ||
c21ef3e3 DA |
2013 | static int tc_ctl_action(struct sk_buff *skb, struct nlmsghdr *n, |
2014 | struct netlink_ext_ack *extack) | |
1da177e4 | 2015 | { |
3b1e0a65 | 2016 | struct net *net = sock_net(skb->sk); |
90825b23 | 2017 | struct nlattr *tca[TCA_ROOT_MAX + 1]; |
8bf15395 | 2018 | u32 portid = NETLINK_CB(skb).portid; |
695176bf CW |
2019 | u32 flags = 0; |
2020 | int ret = 0; | |
1da177e4 | 2021 | |
0b0f43fe JHS |
2022 | if ((n->nlmsg_type != RTM_GETACTION) && |
2023 | !netlink_capable(skb, CAP_NET_ADMIN)) | |
dfc47ef8 EB |
2024 | return -EPERM; |
2025 | ||
8cb08174 JB |
2026 | ret = nlmsg_parse_deprecated(n, sizeof(struct tcamsg), tca, |
2027 | TCA_ROOT_MAX, NULL, extack); | |
7ba699c6 PM |
2028 | if (ret < 0) |
2029 | return ret; | |
2030 | ||
2031 | if (tca[TCA_ACT_TAB] == NULL) { | |
84ae017a | 2032 | NL_SET_ERR_MSG(extack, "Netlink action attributes missing"); |
1da177e4 LT |
2033 | return -EINVAL; |
2034 | } | |
2035 | ||
cc7ec456 | 2036 | /* n->nlmsg_flags & NLM_F_CREATE */ |
1da177e4 LT |
2037 | switch (n->nlmsg_type) { |
2038 | case RTM_NEWACTION: | |
2039 | /* we are going to assume all other flags | |
25985edc | 2040 | * imply create only if it doesn't exist |
1da177e4 LT |
2041 | * Note that CREATE | EXCL implies that |
2042 | * but since we want avoid ambiguity (eg when flags | |
2043 | * is zero) then just set this | |
2044 | */ | |
cc7ec456 | 2045 | if (n->nlmsg_flags & NLM_F_REPLACE) |
695176bf CW |
2046 | flags = TCA_ACT_FLAGS_REPLACE; |
2047 | ret = tcf_action_add(net, tca[TCA_ACT_TAB], n, portid, flags, | |
aea0d727 | 2048 | extack); |
1da177e4 LT |
2049 | break; |
2050 | case RTM_DELACTION: | |
7316ae88 | 2051 | ret = tca_action_gd(net, tca[TCA_ACT_TAB], n, |
84ae017a | 2052 | portid, RTM_DELACTION, extack); |
1da177e4 LT |
2053 | break; |
2054 | case RTM_GETACTION: | |
7316ae88 | 2055 | ret = tca_action_gd(net, tca[TCA_ACT_TAB], n, |
84ae017a | 2056 | portid, RTM_GETACTION, extack); |
1da177e4 LT |
2057 | break; |
2058 | default: | |
2059 | BUG(); | |
2060 | } | |
2061 | ||
2062 | return ret; | |
2063 | } | |
2064 | ||
90825b23 | 2065 | static struct nlattr *find_dump_kind(struct nlattr **nla) |
1da177e4 | 2066 | { |
cc7ec456 | 2067 | struct nlattr *tb1, *tb2[TCA_ACT_MAX + 1]; |
7ba699c6 | 2068 | struct nlattr *tb[TCA_ACT_MAX_PRIO + 1]; |
7ba699c6 | 2069 | struct nlattr *kind; |
1da177e4 | 2070 | |
7ba699c6 | 2071 | tb1 = nla[TCA_ACT_TAB]; |
1da177e4 LT |
2072 | if (tb1 == NULL) |
2073 | return NULL; | |
2074 | ||
8cb08174 | 2075 | if (nla_parse_deprecated(tb, TCA_ACT_MAX_PRIO, nla_data(tb1), NLMSG_ALIGN(nla_len(tb1)), NULL, NULL) < 0) |
1da177e4 | 2076 | return NULL; |
1da177e4 | 2077 | |
6d834e04 PM |
2078 | if (tb[1] == NULL) |
2079 | return NULL; | |
199ce850 | 2080 | if (nla_parse_nested_deprecated(tb2, TCA_ACT_MAX, tb[1], tcf_action_policy, NULL) < 0) |
1da177e4 | 2081 | return NULL; |
7ba699c6 | 2082 | kind = tb2[TCA_ACT_KIND]; |
1da177e4 | 2083 | |
26dab893 | 2084 | return kind; |
1da177e4 LT |
2085 | } |
2086 | ||
5a7a5555 | 2087 | static int tc_dump_action(struct sk_buff *skb, struct netlink_callback *cb) |
1da177e4 | 2088 | { |
ddf97ccd | 2089 | struct net *net = sock_net(skb->sk); |
1da177e4 | 2090 | struct nlmsghdr *nlh; |
27a884dc | 2091 | unsigned char *b = skb_tail_pointer(skb); |
4b3550ef | 2092 | struct nlattr *nest; |
1da177e4 | 2093 | struct tc_action_ops *a_o; |
1da177e4 | 2094 | int ret = 0; |
8b00a53c | 2095 | struct tcamsg *t = (struct tcamsg *) nlmsg_data(cb->nlh); |
90825b23 JHS |
2096 | struct nlattr *tb[TCA_ROOT_MAX + 1]; |
2097 | struct nlattr *count_attr = NULL; | |
e62e484d | 2098 | unsigned long jiffy_since = 0; |
90825b23 JHS |
2099 | struct nlattr *kind = NULL; |
2100 | struct nla_bitfield32 bf; | |
e62e484d | 2101 | u32 msecs_since = 0; |
90825b23 JHS |
2102 | u32 act_count = 0; |
2103 | ||
8cb08174 JB |
2104 | ret = nlmsg_parse_deprecated(cb->nlh, sizeof(struct tcamsg), tb, |
2105 | TCA_ROOT_MAX, tcaa_policy, cb->extack); | |
90825b23 JHS |
2106 | if (ret < 0) |
2107 | return ret; | |
1da177e4 | 2108 | |
90825b23 | 2109 | kind = find_dump_kind(tb); |
1da177e4 | 2110 | if (kind == NULL) { |
6ff9c364 | 2111 | pr_info("tc_dump_action: action bad kind\n"); |
1da177e4 LT |
2112 | return 0; |
2113 | } | |
2114 | ||
26dab893 | 2115 | a_o = tc_lookup_action(kind); |
cc7ec456 | 2116 | if (a_o == NULL) |
1da177e4 | 2117 | return 0; |
1da177e4 | 2118 | |
90825b23 JHS |
2119 | cb->args[2] = 0; |
2120 | if (tb[TCA_ROOT_FLAGS]) { | |
2121 | bf = nla_get_bitfield32(tb[TCA_ROOT_FLAGS]); | |
2122 | cb->args[2] = bf.value; | |
2123 | } | |
2124 | ||
e62e484d JHS |
2125 | if (tb[TCA_ROOT_TIME_DELTA]) { |
2126 | msecs_since = nla_get_u32(tb[TCA_ROOT_TIME_DELTA]); | |
2127 | } | |
2128 | ||
15e47304 | 2129 | nlh = nlmsg_put(skb, NETLINK_CB(cb->skb).portid, cb->nlh->nlmsg_seq, |
8b00a53c DM |
2130 | cb->nlh->nlmsg_type, sizeof(*t), 0); |
2131 | if (!nlh) | |
2132 | goto out_module_put; | |
90825b23 | 2133 | |
e62e484d JHS |
2134 | if (msecs_since) |
2135 | jiffy_since = jiffies - msecs_to_jiffies(msecs_since); | |
2136 | ||
8b00a53c | 2137 | t = nlmsg_data(nlh); |
1da177e4 | 2138 | t->tca_family = AF_UNSPEC; |
9ef1d4c7 PM |
2139 | t->tca__pad1 = 0; |
2140 | t->tca__pad2 = 0; | |
e62e484d | 2141 | cb->args[3] = jiffy_since; |
90825b23 JHS |
2142 | count_attr = nla_reserve(skb, TCA_ROOT_COUNT, sizeof(u32)); |
2143 | if (!count_attr) | |
2144 | goto out_module_put; | |
1da177e4 | 2145 | |
ae0be8de | 2146 | nest = nla_nest_start_noflag(skb, TCA_ACT_TAB); |
4b3550ef | 2147 | if (nest == NULL) |
8b00a53c | 2148 | goto out_module_put; |
1da177e4 | 2149 | |
fae52d93 | 2150 | ret = __tcf_generic_walker(net, skb, cb, RTM_GETACTION, a_o, NULL); |
1da177e4 | 2151 | if (ret < 0) |
8b00a53c | 2152 | goto out_module_put; |
1da177e4 LT |
2153 | |
2154 | if (ret > 0) { | |
4b3550ef | 2155 | nla_nest_end(skb, nest); |
1da177e4 | 2156 | ret = skb->len; |
90825b23 JHS |
2157 | act_count = cb->args[1]; |
2158 | memcpy(nla_data(count_attr), &act_count, sizeof(u32)); | |
2159 | cb->args[1] = 0; | |
1da177e4 | 2160 | } else |
ebecaa66 | 2161 | nlmsg_trim(skb, b); |
1da177e4 | 2162 | |
27a884dc | 2163 | nlh->nlmsg_len = skb_tail_pointer(skb) - b; |
15e47304 | 2164 | if (NETLINK_CB(cb->skb).portid && ret) |
1da177e4 LT |
2165 | nlh->nlmsg_flags |= NLM_F_MULTI; |
2166 | module_put(a_o->owner); | |
2167 | return skb->len; | |
2168 | ||
8b00a53c | 2169 | out_module_put: |
1da177e4 | 2170 | module_put(a_o->owner); |
dc5fc579 | 2171 | nlmsg_trim(skb, b); |
1da177e4 LT |
2172 | return skb->len; |
2173 | } | |
2174 | ||
2175 | static int __init tc_action_init(void) | |
2176 | { | |
b97bac64 FW |
2177 | rtnl_register(PF_UNSPEC, RTM_NEWACTION, tc_ctl_action, NULL, 0); |
2178 | rtnl_register(PF_UNSPEC, RTM_DELACTION, tc_ctl_action, NULL, 0); | |
c7ac8679 | 2179 | rtnl_register(PF_UNSPEC, RTM_GETACTION, tc_ctl_action, tc_dump_action, |
b97bac64 | 2180 | 0); |
1da177e4 | 2181 | |
1da177e4 LT |
2182 | return 0; |
2183 | } | |
2184 | ||
2185 | subsys_initcall(tc_action_init); |