Commit | Line | Data |
---|---|---|
2874c5fd | 1 | // SPDX-License-Identifier: GPL-2.0-or-later |
1da177e4 LT |
2 | /* |
3 | * net/sched/act_api.c Packet action API. | |
4 | * | |
1da177e4 | 5 | * Author: Jamal Hadi Salim |
1da177e4 LT |
6 | */ |
7 | ||
1da177e4 LT |
8 | #include <linux/types.h> |
9 | #include <linux/kernel.h> | |
1da177e4 | 10 | #include <linux/string.h> |
1da177e4 | 11 | #include <linux/errno.h> |
5a0e3ad6 | 12 | #include <linux/slab.h> |
1da177e4 | 13 | #include <linux/skbuff.h> |
1da177e4 LT |
14 | #include <linux/init.h> |
15 | #include <linux/kmod.h> | |
ab27cfb8 | 16 | #include <linux/err.h> |
3a9a231d | 17 | #include <linux/module.h> |
b854272b DL |
18 | #include <net/net_namespace.h> |
19 | #include <net/sock.h> | |
1da177e4 | 20 | #include <net/sch_generic.h> |
1045ba77 | 21 | #include <net/pkt_cls.h> |
1da177e4 | 22 | #include <net/act_api.h> |
dc5fc579 | 23 | #include <net/netlink.h> |
1da177e4 | 24 | |
db50514f JP |
25 | static void tcf_action_goto_chain_exec(const struct tc_action *a, |
26 | struct tcf_result *res) | |
27 | { | |
ee3bbfe8 | 28 | const struct tcf_chain *chain = rcu_dereference_bh(a->goto_chain); |
db50514f JP |
29 | |
30 | res->goto_tp = rcu_dereference_bh(chain->filter_chain); | |
31 | } | |
32 | ||
eec94fdb VB |
33 | static void tcf_free_cookie_rcu(struct rcu_head *p) |
34 | { | |
35 | struct tc_cookie *cookie = container_of(p, struct tc_cookie, rcu); | |
36 | ||
37 | kfree(cookie->data); | |
38 | kfree(cookie); | |
39 | } | |
40 | ||
41 | static void tcf_set_action_cookie(struct tc_cookie __rcu **old_cookie, | |
42 | struct tc_cookie *new_cookie) | |
43 | { | |
44 | struct tc_cookie *old; | |
45 | ||
0dbc81ea | 46 | old = xchg((__force struct tc_cookie **)old_cookie, new_cookie); |
eec94fdb VB |
47 | if (old) |
48 | call_rcu(&old->rcu, tcf_free_cookie_rcu); | |
49 | } | |
50 | ||
85d0966f DC |
51 | int tcf_action_check_ctrlact(int action, struct tcf_proto *tp, |
52 | struct tcf_chain **newchain, | |
53 | struct netlink_ext_ack *extack) | |
54 | { | |
55 | int opcode = TC_ACT_EXT_OPCODE(action), ret = -EINVAL; | |
56 | u32 chain_index; | |
57 | ||
58 | if (!opcode) | |
59 | ret = action > TC_ACT_VALUE_MAX ? -EINVAL : 0; | |
60 | else if (opcode <= TC_ACT_EXT_OPCODE_MAX || action == TC_ACT_UNSPEC) | |
61 | ret = 0; | |
62 | if (ret) { | |
63 | NL_SET_ERR_MSG(extack, "invalid control action"); | |
64 | goto end; | |
65 | } | |
66 | ||
67 | if (TC_ACT_EXT_CMP(action, TC_ACT_GOTO_CHAIN)) { | |
68 | chain_index = action & TC_ACT_EXT_VAL_MASK; | |
69 | if (!tp || !newchain) { | |
70 | ret = -EINVAL; | |
71 | NL_SET_ERR_MSG(extack, | |
72 | "can't goto NULL proto/chain"); | |
73 | goto end; | |
74 | } | |
75 | *newchain = tcf_chain_get_by_act(tp->chain->block, chain_index); | |
76 | if (!*newchain) { | |
77 | ret = -ENOMEM; | |
78 | NL_SET_ERR_MSG(extack, | |
79 | "can't allocate goto_chain"); | |
80 | } | |
81 | } | |
82 | end: | |
83 | return ret; | |
84 | } | |
85 | EXPORT_SYMBOL(tcf_action_check_ctrlact); | |
86 | ||
87 | struct tcf_chain *tcf_action_set_ctrlact(struct tc_action *a, int action, | |
ee3bbfe8 | 88 | struct tcf_chain *goto_chain) |
85d0966f | 89 | { |
85d0966f | 90 | a->tcfa_action = action; |
ee3bbfe8 DC |
91 | rcu_swap_protected(a->goto_chain, goto_chain, 1); |
92 | return goto_chain; | |
85d0966f DC |
93 | } |
94 | EXPORT_SYMBOL(tcf_action_set_ctrlact); | |
95 | ||
d7fb60b9 CW |
96 | /* XXX: For standalone actions, we don't need a RCU grace period either, because |
97 | * actions are always connected to filters and filters are already destroyed in | |
98 | * RCU callbacks, so after a RCU grace period actions are already disconnected | |
99 | * from filters. Readers later can not find us. | |
100 | */ | |
101 | static void free_tcf(struct tc_action *p) | |
519c818e | 102 | { |
ee3bbfe8 | 103 | struct tcf_chain *chain = rcu_dereference_protected(p->goto_chain, 1); |
85d0966f | 104 | |
519c818e | 105 | free_percpu(p->cpu_bstats); |
28169aba | 106 | free_percpu(p->cpu_bstats_hw); |
519c818e | 107 | free_percpu(p->cpu_qstats); |
1045ba77 | 108 | |
eec94fdb | 109 | tcf_set_action_cookie(&p->act_cookie, NULL); |
85d0966f DC |
110 | if (chain) |
111 | tcf_chain_put_by_act(chain); | |
1045ba77 | 112 | |
519c818e ED |
113 | kfree(p); |
114 | } | |
115 | ||
16af6067 | 116 | static void tcf_action_cleanup(struct tc_action *p) |
e9ce1cd3 | 117 | { |
16af6067 VB |
118 | if (p->ops->cleanup) |
119 | p->ops->cleanup(p); | |
120 | ||
1c0d32fd | 121 | gen_kill_estimator(&p->tcfa_rate_est); |
d7fb60b9 | 122 | free_tcf(p); |
e9ce1cd3 | 123 | } |
e9ce1cd3 | 124 | |
16af6067 VB |
125 | static int __tcf_action_put(struct tc_action *p, bool bind) |
126 | { | |
127 | struct tcf_idrinfo *idrinfo = p->idrinfo; | |
128 | ||
95278dda | 129 | if (refcount_dec_and_mutex_lock(&p->tcfa_refcnt, &idrinfo->lock)) { |
16af6067 VB |
130 | if (bind) |
131 | atomic_dec(&p->tcfa_bindcnt); | |
132 | idr_remove(&idrinfo->action_idr, p->tcfa_index); | |
95278dda | 133 | mutex_unlock(&idrinfo->lock); |
16af6067 VB |
134 | |
135 | tcf_action_cleanup(p); | |
136 | return 1; | |
137 | } | |
138 | ||
139 | if (bind) | |
140 | atomic_dec(&p->tcfa_bindcnt); | |
141 | ||
142 | return 0; | |
143 | } | |
144 | ||
65a206c0 | 145 | int __tcf_idr_release(struct tc_action *p, bool bind, bool strict) |
e9ce1cd3 DM |
146 | { |
147 | int ret = 0; | |
148 | ||
036bb443 VB |
149 | /* Release with strict==1 and bind==0 is only called through act API |
150 | * interface (classifiers always bind). Only case when action with | |
151 | * positive reference count and zero bind count can exist is when it was | |
152 | * also created with act API (unbinding last classifier will destroy the | |
153 | * action if it was created by classifier). So only case when bind count | |
154 | * can be changed after initial check is when unbound action is | |
155 | * destroyed by act API while classifier binds to action with same id | |
156 | * concurrently. This result either creation of new action(same behavior | |
157 | * as before), or reusing existing action if concurrent process | |
158 | * increments reference count before action is deleted. Both scenarios | |
159 | * are acceptable. | |
160 | */ | |
e9ce1cd3 | 161 | if (p) { |
16af6067 | 162 | if (!bind && strict && atomic_read(&p->tcfa_bindcnt) > 0) |
55334a5d | 163 | return -EPERM; |
e9ce1cd3 | 164 | |
16af6067 | 165 | if (__tcf_action_put(p, bind)) |
1d4150c0 | 166 | ret = ACT_P_DELETED; |
e9ce1cd3 | 167 | } |
28e6b67f | 168 | |
e9ce1cd3 DM |
169 | return ret; |
170 | } | |
65a206c0 | 171 | EXPORT_SYMBOL(__tcf_idr_release); |
e9ce1cd3 | 172 | |
4e76e75d RM |
173 | static size_t tcf_action_shared_attrs_size(const struct tc_action *act) |
174 | { | |
e0479b67 | 175 | struct tc_cookie *act_cookie; |
4e76e75d RM |
176 | u32 cookie_len = 0; |
177 | ||
e0479b67 VB |
178 | rcu_read_lock(); |
179 | act_cookie = rcu_dereference(act->act_cookie); | |
180 | ||
181 | if (act_cookie) | |
182 | cookie_len = nla_total_size(act_cookie->len); | |
183 | rcu_read_unlock(); | |
4e76e75d RM |
184 | |
185 | return nla_total_size(0) /* action number nested */ | |
186 | + nla_total_size(IFNAMSIZ) /* TCA_ACT_KIND */ | |
187 | + cookie_len /* TCA_ACT_COOKIE */ | |
188 | + nla_total_size(0) /* TCA_ACT_STATS nested */ | |
189 | /* TCA_STATS_BASIC */ | |
190 | + nla_total_size_64bit(sizeof(struct gnet_stats_basic)) | |
191 | /* TCA_STATS_QUEUE */ | |
192 | + nla_total_size_64bit(sizeof(struct gnet_stats_queue)) | |
193 | + nla_total_size(0) /* TCA_OPTIONS nested */ | |
194 | + nla_total_size(sizeof(struct tcf_t)); /* TCA_GACT_TM */ | |
195 | } | |
196 | ||
197 | static size_t tcf_action_full_attrs_size(size_t sz) | |
198 | { | |
199 | return NLMSG_HDRLEN /* struct nlmsghdr */ | |
200 | + sizeof(struct tcamsg) | |
201 | + nla_total_size(0) /* TCA_ACT_TAB nested */ | |
202 | + sz; | |
203 | } | |
204 | ||
205 | static size_t tcf_action_fill_size(const struct tc_action *act) | |
206 | { | |
207 | size_t sz = tcf_action_shared_attrs_size(act); | |
208 | ||
209 | if (act->ops->get_fill_size) | |
210 | return act->ops->get_fill_size(act) + sz; | |
211 | return sz; | |
212 | } | |
213 | ||
65a206c0 | 214 | static int tcf_dump_walker(struct tcf_idrinfo *idrinfo, struct sk_buff *skb, |
a85a970a | 215 | struct netlink_callback *cb) |
e9ce1cd3 | 216 | { |
65a206c0 | 217 | int err = 0, index = -1, s_i = 0, n_i = 0; |
90825b23 | 218 | u32 act_flags = cb->args[2]; |
e62e484d | 219 | unsigned long jiffy_since = cb->args[3]; |
4b3550ef | 220 | struct nlattr *nest; |
65a206c0 CM |
221 | struct idr *idr = &idrinfo->action_idr; |
222 | struct tc_action *p; | |
223 | unsigned long id = 1; | |
e33d2b74 | 224 | unsigned long tmp; |
e9ce1cd3 | 225 | |
95278dda | 226 | mutex_lock(&idrinfo->lock); |
e9ce1cd3 DM |
227 | |
228 | s_i = cb->args[0]; | |
229 | ||
e33d2b74 | 230 | idr_for_each_entry_ul(idr, p, tmp, id) { |
65a206c0 CM |
231 | index++; |
232 | if (index < s_i) | |
233 | continue; | |
234 | ||
235 | if (jiffy_since && | |
236 | time_after(jiffy_since, | |
237 | (unsigned long)p->tcfa_tm.lastuse)) | |
238 | continue; | |
239 | ||
ae0be8de | 240 | nest = nla_nest_start_noflag(skb, n_i); |
734549eb CD |
241 | if (!nest) { |
242 | index--; | |
65a206c0 | 243 | goto nla_put_failure; |
734549eb | 244 | } |
65a206c0 CM |
245 | err = tcf_action_dump_1(skb, p, 0, 0); |
246 | if (err < 0) { | |
247 | index--; | |
248 | nlmsg_trim(skb, nest); | |
249 | goto done; | |
e9ce1cd3 | 250 | } |
65a206c0 CM |
251 | nla_nest_end(skb, nest); |
252 | n_i++; | |
253 | if (!(act_flags & TCA_FLAG_LARGE_DUMP_ON) && | |
254 | n_i >= TCA_ACT_MAX_PRIO) | |
255 | goto done; | |
e9ce1cd3 DM |
256 | } |
257 | done: | |
e62e484d JHS |
258 | if (index >= 0) |
259 | cb->args[0] = index + 1; | |
260 | ||
95278dda | 261 | mutex_unlock(&idrinfo->lock); |
90825b23 | 262 | if (n_i) { |
90825b23 JHS |
263 | if (act_flags & TCA_FLAG_LARGE_DUMP_ON) |
264 | cb->args[1] = n_i; | |
265 | } | |
e9ce1cd3 DM |
266 | return n_i; |
267 | ||
7ba699c6 | 268 | nla_put_failure: |
4b3550ef | 269 | nla_nest_cancel(skb, nest); |
e9ce1cd3 DM |
270 | goto done; |
271 | } | |
272 | ||
ec3ed293 VB |
273 | static int tcf_idr_release_unsafe(struct tc_action *p) |
274 | { | |
275 | if (atomic_read(&p->tcfa_bindcnt) > 0) | |
276 | return -EPERM; | |
277 | ||
278 | if (refcount_dec_and_test(&p->tcfa_refcnt)) { | |
279 | idr_remove(&p->idrinfo->action_idr, p->tcfa_index); | |
280 | tcf_action_cleanup(p); | |
281 | return ACT_P_DELETED; | |
282 | } | |
283 | ||
284 | return 0; | |
285 | } | |
286 | ||
65a206c0 | 287 | static int tcf_del_walker(struct tcf_idrinfo *idrinfo, struct sk_buff *skb, |
a85a970a | 288 | const struct tc_action_ops *ops) |
e9ce1cd3 | 289 | { |
4b3550ef | 290 | struct nlattr *nest; |
65a206c0 | 291 | int n_i = 0; |
55334a5d | 292 | int ret = -EINVAL; |
65a206c0 CM |
293 | struct idr *idr = &idrinfo->action_idr; |
294 | struct tc_action *p; | |
295 | unsigned long id = 1; | |
e33d2b74 | 296 | unsigned long tmp; |
e9ce1cd3 | 297 | |
ae0be8de | 298 | nest = nla_nest_start_noflag(skb, 0); |
4b3550ef PM |
299 | if (nest == NULL) |
300 | goto nla_put_failure; | |
a85a970a | 301 | if (nla_put_string(skb, TCA_KIND, ops->kind)) |
1b34ec43 | 302 | goto nla_put_failure; |
65a206c0 | 303 | |
95278dda | 304 | mutex_lock(&idrinfo->lock); |
e33d2b74 | 305 | idr_for_each_entry_ul(idr, p, tmp, id) { |
ec3ed293 | 306 | ret = tcf_idr_release_unsafe(p); |
65a206c0 | 307 | if (ret == ACT_P_DELETED) { |
255cd50f | 308 | module_put(ops->owner); |
65a206c0 CM |
309 | n_i++; |
310 | } else if (ret < 0) { | |
95278dda | 311 | mutex_unlock(&idrinfo->lock); |
65a206c0 | 312 | goto nla_put_failure; |
e9ce1cd3 DM |
313 | } |
314 | } | |
95278dda | 315 | mutex_unlock(&idrinfo->lock); |
ec3ed293 | 316 | |
1b34ec43 DM |
317 | if (nla_put_u32(skb, TCA_FCNT, n_i)) |
318 | goto nla_put_failure; | |
4b3550ef | 319 | nla_nest_end(skb, nest); |
e9ce1cd3 DM |
320 | |
321 | return n_i; | |
7ba699c6 | 322 | nla_put_failure: |
4b3550ef | 323 | nla_nest_cancel(skb, nest); |
55334a5d | 324 | return ret; |
e9ce1cd3 DM |
325 | } |
326 | ||
ddf97ccd WC |
327 | int tcf_generic_walker(struct tc_action_net *tn, struct sk_buff *skb, |
328 | struct netlink_callback *cb, int type, | |
b3620145 AA |
329 | const struct tc_action_ops *ops, |
330 | struct netlink_ext_ack *extack) | |
e9ce1cd3 | 331 | { |
65a206c0 | 332 | struct tcf_idrinfo *idrinfo = tn->idrinfo; |
ddf97ccd | 333 | |
e9ce1cd3 | 334 | if (type == RTM_DELACTION) { |
65a206c0 | 335 | return tcf_del_walker(idrinfo, skb, ops); |
e9ce1cd3 | 336 | } else if (type == RTM_GETACTION) { |
65a206c0 | 337 | return tcf_dump_walker(idrinfo, skb, cb); |
e9ce1cd3 | 338 | } else { |
b3620145 AA |
339 | WARN(1, "tcf_generic_walker: unknown command %d\n", type); |
340 | NL_SET_ERR_MSG(extack, "tcf_generic_walker: unknown command"); | |
e9ce1cd3 DM |
341 | return -EINVAL; |
342 | } | |
343 | } | |
ddf97ccd | 344 | EXPORT_SYMBOL(tcf_generic_walker); |
e9ce1cd3 | 345 | |
7d485c45 | 346 | int tcf_idr_search(struct tc_action_net *tn, struct tc_action **a, u32 index) |
e9ce1cd3 | 347 | { |
3f7c72bc VB |
348 | struct tcf_idrinfo *idrinfo = tn->idrinfo; |
349 | struct tc_action *p; | |
e9ce1cd3 | 350 | |
95278dda | 351 | mutex_lock(&idrinfo->lock); |
322d884b | 352 | p = idr_find(&idrinfo->action_idr, index); |
7d485c45 | 353 | if (IS_ERR(p)) |
0190c1d4 | 354 | p = NULL; |
7d485c45 | 355 | else if (p) |
3f7c72bc | 356 | refcount_inc(&p->tcfa_refcnt); |
95278dda | 357 | mutex_unlock(&idrinfo->lock); |
e9ce1cd3 | 358 | |
3f7c72bc VB |
359 | if (p) { |
360 | *a = p; | |
361 | return true; | |
362 | } | |
363 | return false; | |
e9ce1cd3 | 364 | } |
65a206c0 | 365 | EXPORT_SYMBOL(tcf_idr_search); |
e9ce1cd3 | 366 | |
97a3f84f | 367 | static int tcf_idr_delete_index(struct tcf_idrinfo *idrinfo, u32 index) |
2a2ea349 | 368 | { |
2a2ea349 VB |
369 | struct tc_action *p; |
370 | int ret = 0; | |
371 | ||
95278dda | 372 | mutex_lock(&idrinfo->lock); |
2a2ea349 VB |
373 | p = idr_find(&idrinfo->action_idr, index); |
374 | if (!p) { | |
95278dda | 375 | mutex_unlock(&idrinfo->lock); |
2a2ea349 VB |
376 | return -ENOENT; |
377 | } | |
378 | ||
379 | if (!atomic_read(&p->tcfa_bindcnt)) { | |
380 | if (refcount_dec_and_test(&p->tcfa_refcnt)) { | |
381 | struct module *owner = p->ops->owner; | |
382 | ||
383 | WARN_ON(p != idr_remove(&idrinfo->action_idr, | |
384 | p->tcfa_index)); | |
95278dda | 385 | mutex_unlock(&idrinfo->lock); |
2a2ea349 | 386 | |
16af6067 | 387 | tcf_action_cleanup(p); |
2a2ea349 VB |
388 | module_put(owner); |
389 | return 0; | |
390 | } | |
391 | ret = 0; | |
392 | } else { | |
393 | ret = -EPERM; | |
394 | } | |
395 | ||
95278dda | 396 | mutex_unlock(&idrinfo->lock); |
2a2ea349 VB |
397 | return ret; |
398 | } | |
2a2ea349 | 399 | |
65a206c0 CM |
400 | int tcf_idr_create(struct tc_action_net *tn, u32 index, struct nlattr *est, |
401 | struct tc_action **a, const struct tc_action_ops *ops, | |
402 | int bind, bool cpustats) | |
e9ce1cd3 | 403 | { |
ec0595cc | 404 | struct tc_action *p = kzalloc(ops->size, GFP_KERNEL); |
65a206c0 | 405 | struct tcf_idrinfo *idrinfo = tn->idrinfo; |
519c818e | 406 | int err = -ENOMEM; |
e9ce1cd3 DM |
407 | |
408 | if (unlikely(!p)) | |
86062033 | 409 | return -ENOMEM; |
036bb443 | 410 | refcount_set(&p->tcfa_refcnt, 1); |
e9ce1cd3 | 411 | if (bind) |
036bb443 | 412 | atomic_set(&p->tcfa_bindcnt, 1); |
e9ce1cd3 | 413 | |
519c818e ED |
414 | if (cpustats) { |
415 | p->cpu_bstats = netdev_alloc_pcpu_stats(struct gnet_stats_basic_cpu); | |
339913a8 | 416 | if (!p->cpu_bstats) |
519c818e | 417 | goto err1; |
28169aba EC |
418 | p->cpu_bstats_hw = netdev_alloc_pcpu_stats(struct gnet_stats_basic_cpu); |
419 | if (!p->cpu_bstats_hw) | |
420 | goto err2; | |
339913a8 MW |
421 | p->cpu_qstats = alloc_percpu(struct gnet_stats_queue); |
422 | if (!p->cpu_qstats) | |
28169aba | 423 | goto err3; |
519c818e | 424 | } |
ec0595cc | 425 | spin_lock_init(&p->tcfa_lock); |
339913a8 | 426 | p->tcfa_index = index; |
ec0595cc WC |
427 | p->tcfa_tm.install = jiffies; |
428 | p->tcfa_tm.lastuse = jiffies; | |
429 | p->tcfa_tm.firstuse = 0; | |
0e991ec6 | 430 | if (est) { |
ec0595cc WC |
431 | err = gen_new_estimator(&p->tcfa_bstats, p->cpu_bstats, |
432 | &p->tcfa_rate_est, | |
433 | &p->tcfa_lock, NULL, est); | |
339913a8 | 434 | if (err) |
28169aba | 435 | goto err4; |
0e991ec6 SH |
436 | } |
437 | ||
65a206c0 | 438 | p->idrinfo = idrinfo; |
ec0595cc | 439 | p->ops = ops; |
ec0595cc | 440 | *a = p; |
86062033 | 441 | return 0; |
28169aba | 442 | err4: |
339913a8 | 443 | free_percpu(p->cpu_qstats); |
28169aba EC |
444 | err3: |
445 | free_percpu(p->cpu_bstats_hw); | |
339913a8 MW |
446 | err2: |
447 | free_percpu(p->cpu_bstats); | |
448 | err1: | |
449 | kfree(p); | |
450 | return err; | |
e9ce1cd3 | 451 | } |
65a206c0 | 452 | EXPORT_SYMBOL(tcf_idr_create); |
e9ce1cd3 | 453 | |
65a206c0 | 454 | void tcf_idr_insert(struct tc_action_net *tn, struct tc_action *a) |
e9ce1cd3 | 455 | { |
65a206c0 | 456 | struct tcf_idrinfo *idrinfo = tn->idrinfo; |
e9ce1cd3 | 457 | |
95278dda | 458 | mutex_lock(&idrinfo->lock); |
0190c1d4 VB |
459 | /* Replace ERR_PTR(-EBUSY) allocated by tcf_idr_check_alloc */ |
460 | WARN_ON(!IS_ERR(idr_replace(&idrinfo->action_idr, a, a->tcfa_index))); | |
95278dda | 461 | mutex_unlock(&idrinfo->lock); |
e9ce1cd3 | 462 | } |
65a206c0 | 463 | EXPORT_SYMBOL(tcf_idr_insert); |
1da177e4 | 464 | |
0190c1d4 VB |
465 | /* Cleanup idr index that was allocated but not initialized. */ |
466 | ||
467 | void tcf_idr_cleanup(struct tc_action_net *tn, u32 index) | |
468 | { | |
469 | struct tcf_idrinfo *idrinfo = tn->idrinfo; | |
470 | ||
95278dda | 471 | mutex_lock(&idrinfo->lock); |
0190c1d4 VB |
472 | /* Remove ERR_PTR(-EBUSY) allocated by tcf_idr_check_alloc */ |
473 | WARN_ON(!IS_ERR(idr_remove(&idrinfo->action_idr, index))); | |
95278dda | 474 | mutex_unlock(&idrinfo->lock); |
0190c1d4 VB |
475 | } |
476 | EXPORT_SYMBOL(tcf_idr_cleanup); | |
477 | ||
478 | /* Check if action with specified index exists. If actions is found, increments | |
479 | * its reference and bind counters, and return 1. Otherwise insert temporary | |
480 | * error pointer (to prevent concurrent users from inserting actions with same | |
481 | * index) and return 0. | |
482 | */ | |
483 | ||
484 | int tcf_idr_check_alloc(struct tc_action_net *tn, u32 *index, | |
485 | struct tc_action **a, int bind) | |
486 | { | |
487 | struct tcf_idrinfo *idrinfo = tn->idrinfo; | |
488 | struct tc_action *p; | |
489 | int ret; | |
490 | ||
491 | again: | |
95278dda | 492 | mutex_lock(&idrinfo->lock); |
0190c1d4 VB |
493 | if (*index) { |
494 | p = idr_find(&idrinfo->action_idr, *index); | |
495 | if (IS_ERR(p)) { | |
496 | /* This means that another process allocated | |
497 | * index but did not assign the pointer yet. | |
498 | */ | |
95278dda | 499 | mutex_unlock(&idrinfo->lock); |
0190c1d4 VB |
500 | goto again; |
501 | } | |
502 | ||
503 | if (p) { | |
504 | refcount_inc(&p->tcfa_refcnt); | |
505 | if (bind) | |
506 | atomic_inc(&p->tcfa_bindcnt); | |
507 | *a = p; | |
508 | ret = 1; | |
509 | } else { | |
510 | *a = NULL; | |
511 | ret = idr_alloc_u32(&idrinfo->action_idr, NULL, index, | |
95278dda | 512 | *index, GFP_KERNEL); |
0190c1d4 VB |
513 | if (!ret) |
514 | idr_replace(&idrinfo->action_idr, | |
515 | ERR_PTR(-EBUSY), *index); | |
516 | } | |
517 | } else { | |
518 | *index = 1; | |
519 | *a = NULL; | |
520 | ret = idr_alloc_u32(&idrinfo->action_idr, NULL, index, | |
95278dda | 521 | UINT_MAX, GFP_KERNEL); |
0190c1d4 VB |
522 | if (!ret) |
523 | idr_replace(&idrinfo->action_idr, ERR_PTR(-EBUSY), | |
524 | *index); | |
525 | } | |
95278dda | 526 | mutex_unlock(&idrinfo->lock); |
0190c1d4 VB |
527 | return ret; |
528 | } | |
529 | EXPORT_SYMBOL(tcf_idr_check_alloc); | |
530 | ||
65a206c0 CM |
531 | void tcf_idrinfo_destroy(const struct tc_action_ops *ops, |
532 | struct tcf_idrinfo *idrinfo) | |
1d4150c0 | 533 | { |
65a206c0 CM |
534 | struct idr *idr = &idrinfo->action_idr; |
535 | struct tc_action *p; | |
536 | int ret; | |
537 | unsigned long id = 1; | |
e33d2b74 | 538 | unsigned long tmp; |
1d4150c0 | 539 | |
e33d2b74 | 540 | idr_for_each_entry_ul(idr, p, tmp, id) { |
65a206c0 CM |
541 | ret = __tcf_idr_release(p, false, true); |
542 | if (ret == ACT_P_DELETED) | |
543 | module_put(ops->owner); | |
544 | else if (ret < 0) | |
545 | return; | |
1d4150c0 | 546 | } |
65a206c0 | 547 | idr_destroy(&idrinfo->action_idr); |
1d4150c0 | 548 | } |
65a206c0 | 549 | EXPORT_SYMBOL(tcf_idrinfo_destroy); |
1d4150c0 | 550 | |
1f747c26 | 551 | static LIST_HEAD(act_base); |
1da177e4 LT |
552 | static DEFINE_RWLOCK(act_mod_lock); |
553 | ||
ddf97ccd WC |
554 | int tcf_register_action(struct tc_action_ops *act, |
555 | struct pernet_operations *ops) | |
1da177e4 | 556 | { |
1f747c26 | 557 | struct tc_action_ops *a; |
ddf97ccd | 558 | int ret; |
1da177e4 | 559 | |
ddf97ccd | 560 | if (!act->act || !act->dump || !act->init || !act->walk || !act->lookup) |
76c82d7a JHS |
561 | return -EINVAL; |
562 | ||
ab102b80 WC |
563 | /* We have to register pernet ops before making the action ops visible, |
564 | * otherwise tcf_action_init_1() could get a partially initialized | |
565 | * netns. | |
566 | */ | |
567 | ret = register_pernet_subsys(ops); | |
568 | if (ret) | |
569 | return ret; | |
570 | ||
1da177e4 | 571 | write_lock(&act_mod_lock); |
1f747c26 | 572 | list_for_each_entry(a, &act_base, head) { |
eddd2cf1 | 573 | if (act->id == a->id || (strcmp(act->kind, a->kind) == 0)) { |
1da177e4 | 574 | write_unlock(&act_mod_lock); |
ab102b80 | 575 | unregister_pernet_subsys(ops); |
1da177e4 LT |
576 | return -EEXIST; |
577 | } | |
578 | } | |
1f747c26 | 579 | list_add_tail(&act->head, &act_base); |
1da177e4 | 580 | write_unlock(&act_mod_lock); |
ddf97ccd | 581 | |
1da177e4 LT |
582 | return 0; |
583 | } | |
62e3ba1b | 584 | EXPORT_SYMBOL(tcf_register_action); |
1da177e4 | 585 | |
ddf97ccd WC |
586 | int tcf_unregister_action(struct tc_action_ops *act, |
587 | struct pernet_operations *ops) | |
1da177e4 | 588 | { |
1f747c26 | 589 | struct tc_action_ops *a; |
1da177e4 LT |
590 | int err = -ENOENT; |
591 | ||
592 | write_lock(&act_mod_lock); | |
a792866a ED |
593 | list_for_each_entry(a, &act_base, head) { |
594 | if (a == act) { | |
595 | list_del(&act->head); | |
596 | err = 0; | |
1da177e4 | 597 | break; |
a792866a | 598 | } |
1da177e4 LT |
599 | } |
600 | write_unlock(&act_mod_lock); | |
ab102b80 WC |
601 | if (!err) |
602 | unregister_pernet_subsys(ops); | |
1da177e4 LT |
603 | return err; |
604 | } | |
62e3ba1b | 605 | EXPORT_SYMBOL(tcf_unregister_action); |
1da177e4 LT |
606 | |
607 | /* lookup by name */ | |
608 | static struct tc_action_ops *tc_lookup_action_n(char *kind) | |
609 | { | |
a792866a | 610 | struct tc_action_ops *a, *res = NULL; |
1da177e4 LT |
611 | |
612 | if (kind) { | |
613 | read_lock(&act_mod_lock); | |
1f747c26 | 614 | list_for_each_entry(a, &act_base, head) { |
1da177e4 | 615 | if (strcmp(kind, a->kind) == 0) { |
a792866a ED |
616 | if (try_module_get(a->owner)) |
617 | res = a; | |
1da177e4 LT |
618 | break; |
619 | } | |
620 | } | |
621 | read_unlock(&act_mod_lock); | |
622 | } | |
a792866a | 623 | return res; |
1da177e4 LT |
624 | } |
625 | ||
7ba699c6 PM |
626 | /* lookup by nlattr */ |
627 | static struct tc_action_ops *tc_lookup_action(struct nlattr *kind) | |
1da177e4 | 628 | { |
a792866a | 629 | struct tc_action_ops *a, *res = NULL; |
1da177e4 LT |
630 | |
631 | if (kind) { | |
632 | read_lock(&act_mod_lock); | |
1f747c26 | 633 | list_for_each_entry(a, &act_base, head) { |
7ba699c6 | 634 | if (nla_strcmp(kind, a->kind) == 0) { |
a792866a ED |
635 | if (try_module_get(a->owner)) |
636 | res = a; | |
1da177e4 LT |
637 | break; |
638 | } | |
639 | } | |
640 | read_unlock(&act_mod_lock); | |
641 | } | |
a792866a | 642 | return res; |
1da177e4 | 643 | } |
1da177e4 | 644 | |
e0ee84de JHS |
645 | /*TCA_ACT_MAX_PRIO is 32, there count upto 32 */ |
646 | #define TCA_ACT_MAX_PRIO_MASK 0x1FF | |
22dc13c8 WC |
647 | int tcf_action_exec(struct sk_buff *skb, struct tc_action **actions, |
648 | int nr_actions, struct tcf_result *res) | |
1da177e4 | 649 | { |
e0ee84de JHS |
650 | u32 jmp_prgcnt = 0; |
651 | u32 jmp_ttl = TCA_ACT_MAX_PRIO; /*matches actions per filter */ | |
ec1a9cca JP |
652 | int i; |
653 | int ret = TC_ACT_OK; | |
1da177e4 | 654 | |
e7246e12 WB |
655 | if (skb_skip_tc_classify(skb)) |
656 | return TC_ACT_OK; | |
657 | ||
e0ee84de | 658 | restart_act_graph: |
22dc13c8 WC |
659 | for (i = 0; i < nr_actions; i++) { |
660 | const struct tc_action *a = actions[i]; | |
661 | ||
e0ee84de JHS |
662 | if (jmp_prgcnt > 0) { |
663 | jmp_prgcnt -= 1; | |
664 | continue; | |
665 | } | |
1da177e4 | 666 | repeat: |
63acd680 | 667 | ret = a->ops->act(skb, a, res); |
63acd680 JHS |
668 | if (ret == TC_ACT_REPEAT) |
669 | goto repeat; /* we need a ttl - JHS */ | |
e0ee84de | 670 | |
9da3242e | 671 | if (TC_ACT_EXT_CMP(ret, TC_ACT_JUMP)) { |
e0ee84de JHS |
672 | jmp_prgcnt = ret & TCA_ACT_MAX_PRIO_MASK; |
673 | if (!jmp_prgcnt || (jmp_prgcnt > nr_actions)) { | |
674 | /* faulty opcode, stop pipeline */ | |
675 | return TC_ACT_OK; | |
676 | } else { | |
677 | jmp_ttl -= 1; | |
678 | if (jmp_ttl > 0) | |
679 | goto restart_act_graph; | |
680 | else /* faulty graph, stop pipeline */ | |
681 | return TC_ACT_OK; | |
682 | } | |
db50514f | 683 | } else if (TC_ACT_EXT_CMP(ret, TC_ACT_GOTO_CHAIN)) { |
ee3bbfe8 DC |
684 | if (unlikely(!rcu_access_pointer(a->goto_chain))) { |
685 | net_warn_ratelimited("can't go to NULL chain!\n"); | |
686 | return TC_ACT_SHOT; | |
687 | } | |
db50514f | 688 | tcf_action_goto_chain_exec(a, res); |
e0ee84de JHS |
689 | } |
690 | ||
63acd680 | 691 | if (ret != TC_ACT_PIPE) |
e7246e12 | 692 | break; |
1da177e4 | 693 | } |
e0ee84de | 694 | |
1da177e4 LT |
695 | return ret; |
696 | } | |
62e3ba1b | 697 | EXPORT_SYMBOL(tcf_action_exec); |
1da177e4 | 698 | |
90b73b77 | 699 | int tcf_action_destroy(struct tc_action *actions[], int bind) |
1da177e4 | 700 | { |
255cd50f | 701 | const struct tc_action_ops *ops; |
90b73b77 VB |
702 | struct tc_action *a; |
703 | int ret = 0, i; | |
1da177e4 | 704 | |
90b73b77 VB |
705 | for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) { |
706 | a = actions[i]; | |
707 | actions[i] = NULL; | |
255cd50f | 708 | ops = a->ops; |
65a206c0 | 709 | ret = __tcf_idr_release(a, bind, true); |
55334a5d | 710 | if (ret == ACT_P_DELETED) |
255cd50f | 711 | module_put(ops->owner); |
55334a5d WC |
712 | else if (ret < 0) |
713 | return ret; | |
1da177e4 | 714 | } |
55334a5d | 715 | return ret; |
1da177e4 LT |
716 | } |
717 | ||
97763dc0 PA |
718 | static int tcf_action_destroy_1(struct tc_action *a, int bind) |
719 | { | |
720 | struct tc_action *actions[] = { a, NULL }; | |
721 | ||
722 | return tcf_action_destroy(actions, bind); | |
723 | } | |
724 | ||
16af6067 VB |
725 | static int tcf_action_put(struct tc_action *p) |
726 | { | |
727 | return __tcf_action_put(p, false); | |
728 | } | |
729 | ||
edfaf94f | 730 | /* Put all actions in this array, skip those NULL's. */ |
90b73b77 | 731 | static void tcf_action_put_many(struct tc_action *actions[]) |
cae422f3 | 732 | { |
90b73b77 | 733 | int i; |
cae422f3 | 734 | |
edfaf94f | 735 | for (i = 0; i < TCA_ACT_MAX_PRIO; i++) { |
90b73b77 | 736 | struct tc_action *a = actions[i]; |
edfaf94f | 737 | const struct tc_action_ops *ops; |
cae422f3 | 738 | |
edfaf94f CW |
739 | if (!a) |
740 | continue; | |
741 | ops = a->ops; | |
cae422f3 VB |
742 | if (tcf_action_put(a)) |
743 | module_put(ops->owner); | |
744 | } | |
745 | } | |
746 | ||
1da177e4 LT |
747 | int |
748 | tcf_action_dump_old(struct sk_buff *skb, struct tc_action *a, int bind, int ref) | |
749 | { | |
1da177e4 LT |
750 | return a->ops->dump(skb, a, bind, ref); |
751 | } | |
752 | ||
753 | int | |
754 | tcf_action_dump_1(struct sk_buff *skb, struct tc_action *a, int bind, int ref) | |
755 | { | |
756 | int err = -EINVAL; | |
27a884dc | 757 | unsigned char *b = skb_tail_pointer(skb); |
4b3550ef | 758 | struct nlattr *nest; |
eec94fdb | 759 | struct tc_cookie *cookie; |
1da177e4 | 760 | |
1b34ec43 DM |
761 | if (nla_put_string(skb, TCA_KIND, a->ops->kind)) |
762 | goto nla_put_failure; | |
1da177e4 | 763 | if (tcf_action_copy_stats(skb, a, 0)) |
7ba699c6 | 764 | goto nla_put_failure; |
eec94fdb VB |
765 | |
766 | rcu_read_lock(); | |
767 | cookie = rcu_dereference(a->act_cookie); | |
768 | if (cookie) { | |
769 | if (nla_put(skb, TCA_ACT_COOKIE, cookie->len, cookie->data)) { | |
770 | rcu_read_unlock(); | |
1045ba77 | 771 | goto nla_put_failure; |
eec94fdb | 772 | } |
1045ba77 | 773 | } |
eec94fdb | 774 | rcu_read_unlock(); |
1045ba77 | 775 | |
ae0be8de | 776 | nest = nla_nest_start_noflag(skb, TCA_OPTIONS); |
4b3550ef PM |
777 | if (nest == NULL) |
778 | goto nla_put_failure; | |
cc7ec456 ED |
779 | err = tcf_action_dump_old(skb, a, bind, ref); |
780 | if (err > 0) { | |
4b3550ef | 781 | nla_nest_end(skb, nest); |
1da177e4 LT |
782 | return err; |
783 | } | |
784 | ||
7ba699c6 | 785 | nla_put_failure: |
dc5fc579 | 786 | nlmsg_trim(skb, b); |
1da177e4 LT |
787 | return -1; |
788 | } | |
62e3ba1b | 789 | EXPORT_SYMBOL(tcf_action_dump_1); |
1da177e4 | 790 | |
90b73b77 | 791 | int tcf_action_dump(struct sk_buff *skb, struct tc_action *actions[], |
0b0f43fe | 792 | int bind, int ref) |
1da177e4 LT |
793 | { |
794 | struct tc_action *a; | |
90b73b77 | 795 | int err = -EINVAL, i; |
4b3550ef | 796 | struct nlattr *nest; |
1da177e4 | 797 | |
90b73b77 VB |
798 | for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) { |
799 | a = actions[i]; | |
4097e9d2 | 800 | nest = nla_nest_start_noflag(skb, i + 1); |
4b3550ef PM |
801 | if (nest == NULL) |
802 | goto nla_put_failure; | |
1da177e4 LT |
803 | err = tcf_action_dump_1(skb, a, bind, ref); |
804 | if (err < 0) | |
4fe683f5 | 805 | goto errout; |
4b3550ef | 806 | nla_nest_end(skb, nest); |
1da177e4 LT |
807 | } |
808 | ||
809 | return 0; | |
810 | ||
7ba699c6 | 811 | nla_put_failure: |
4fe683f5 TG |
812 | err = -EINVAL; |
813 | errout: | |
4b3550ef | 814 | nla_nest_cancel(skb, nest); |
4fe683f5 | 815 | return err; |
1da177e4 LT |
816 | } |
817 | ||
e0535ce5 | 818 | static struct tc_cookie *nla_memdup_cookie(struct nlattr **tb) |
1045ba77 | 819 | { |
e0535ce5 WB |
820 | struct tc_cookie *c = kzalloc(sizeof(*c), GFP_KERNEL); |
821 | if (!c) | |
822 | return NULL; | |
823 | ||
824 | c->data = nla_memdup(tb[TCA_ACT_COOKIE], GFP_KERNEL); | |
825 | if (!c->data) { | |
826 | kfree(c); | |
827 | return NULL; | |
1045ba77 | 828 | } |
e0535ce5 | 829 | c->len = nla_len(tb[TCA_ACT_COOKIE]); |
1045ba77 | 830 | |
e0535ce5 | 831 | return c; |
1045ba77 JHS |
832 | } |
833 | ||
199ce850 CW |
834 | static const struct nla_policy tcf_action_policy[TCA_ACT_MAX + 1] = { |
835 | [TCA_ACT_KIND] = { .type = NLA_NUL_STRING, | |
836 | .len = IFNAMSIZ - 1 }, | |
837 | [TCA_ACT_INDEX] = { .type = NLA_U32 }, | |
838 | [TCA_ACT_COOKIE] = { .type = NLA_BINARY, | |
839 | .len = TC_COOKIE_MAX_SIZE }, | |
840 | [TCA_ACT_OPTIONS] = { .type = NLA_NESTED }, | |
841 | }; | |
842 | ||
9fb9f251 JP |
843 | struct tc_action *tcf_action_init_1(struct net *net, struct tcf_proto *tp, |
844 | struct nlattr *nla, struct nlattr *est, | |
aea0d727 | 845 | char *name, int ovr, int bind, |
789871bb | 846 | bool rtnl_held, |
aea0d727 | 847 | struct netlink_ext_ack *extack) |
1da177e4 LT |
848 | { |
849 | struct tc_action *a; | |
850 | struct tc_action_ops *a_o; | |
e0535ce5 | 851 | struct tc_cookie *cookie = NULL; |
1da177e4 | 852 | char act_name[IFNAMSIZ]; |
cc7ec456 | 853 | struct nlattr *tb[TCA_ACT_MAX + 1]; |
7ba699c6 | 854 | struct nlattr *kind; |
ab27cfb8 | 855 | int err; |
1da177e4 | 856 | |
1da177e4 | 857 | if (name == NULL) { |
199ce850 CW |
858 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla, |
859 | tcf_action_policy, extack); | |
cee63723 | 860 | if (err < 0) |
1da177e4 | 861 | goto err_out; |
cee63723 | 862 | err = -EINVAL; |
7ba699c6 | 863 | kind = tb[TCA_ACT_KIND]; |
84ae017a AA |
864 | if (!kind) { |
865 | NL_SET_ERR_MSG(extack, "TC action kind must be specified"); | |
1da177e4 | 866 | goto err_out; |
84ae017a | 867 | } |
199ce850 | 868 | nla_strlcpy(act_name, kind, IFNAMSIZ); |
e0535ce5 | 869 | |
199ce850 | 870 | if (tb[TCA_ACT_COOKIE]) { |
e0535ce5 WB |
871 | cookie = nla_memdup_cookie(tb); |
872 | if (!cookie) { | |
84ae017a | 873 | NL_SET_ERR_MSG(extack, "No memory to generate TC cookie"); |
e0535ce5 WB |
874 | err = -ENOMEM; |
875 | goto err_out; | |
876 | } | |
877 | } | |
1da177e4 | 878 | } else { |
84ae017a AA |
879 | if (strlcpy(act_name, name, IFNAMSIZ) >= IFNAMSIZ) { |
880 | NL_SET_ERR_MSG(extack, "TC action name too long"); | |
881 | err = -EINVAL; | |
1da177e4 | 882 | goto err_out; |
84ae017a | 883 | } |
1da177e4 LT |
884 | } |
885 | ||
886 | a_o = tc_lookup_action_n(act_name); | |
887 | if (a_o == NULL) { | |
95a5afca | 888 | #ifdef CONFIG_MODULES |
789871bb VB |
889 | if (rtnl_held) |
890 | rtnl_unlock(); | |
4bba3925 | 891 | request_module("act_%s", act_name); |
789871bb VB |
892 | if (rtnl_held) |
893 | rtnl_lock(); | |
1da177e4 LT |
894 | |
895 | a_o = tc_lookup_action_n(act_name); | |
896 | ||
897 | /* We dropped the RTNL semaphore in order to | |
898 | * perform the module load. So, even if we | |
899 | * succeeded in loading the module we have to | |
900 | * tell the caller to replay the request. We | |
901 | * indicate this using -EAGAIN. | |
902 | */ | |
903 | if (a_o != NULL) { | |
ab27cfb8 | 904 | err = -EAGAIN; |
1da177e4 LT |
905 | goto err_mod; |
906 | } | |
907 | #endif | |
84ae017a | 908 | NL_SET_ERR_MSG(extack, "Failed to load TC action module"); |
ab27cfb8 | 909 | err = -ENOENT; |
1da177e4 LT |
910 | goto err_out; |
911 | } | |
912 | ||
1da177e4 LT |
913 | /* backward compatibility for policer */ |
914 | if (name == NULL) | |
589dad6d | 915 | err = a_o->init(net, tb[TCA_ACT_OPTIONS], est, &a, ovr, bind, |
85d0966f | 916 | rtnl_held, tp, extack); |
1da177e4 | 917 | else |
789871bb | 918 | err = a_o->init(net, nla, est, &a, ovr, bind, rtnl_held, |
85d0966f | 919 | tp, extack); |
ab27cfb8 | 920 | if (err < 0) |
a85a970a | 921 | goto err_mod; |
1da177e4 | 922 | |
eec94fdb VB |
923 | if (!name && tb[TCA_ACT_COOKIE]) |
924 | tcf_set_action_cookie(&a->act_cookie, cookie); | |
1045ba77 | 925 | |
1da177e4 | 926 | /* module count goes up only when brand new policy is created |
cc7ec456 ED |
927 | * if it exists and is only bound to in a_o->init() then |
928 | * ACT_P_CREATED is not returned (a zero is). | |
929 | */ | |
ab27cfb8 | 930 | if (err != ACT_P_CREATED) |
1da177e4 | 931 | module_put(a_o->owner); |
1da177e4 | 932 | |
85d0966f | 933 | if (TC_ACT_EXT_CMP(a->tcfa_action, TC_ACT_GOTO_CHAIN) && |
ee3bbfe8 | 934 | !rcu_access_pointer(a->goto_chain)) { |
97763dc0 | 935 | tcf_action_destroy_1(a, bind); |
85d0966f | 936 | NL_SET_ERR_MSG(extack, "can't use goto chain with NULL chain"); |
97763dc0 | 937 | return ERR_PTR(-EINVAL); |
802bfb19 PA |
938 | } |
939 | ||
1da177e4 LT |
940 | return a; |
941 | ||
1da177e4 LT |
942 | err_mod: |
943 | module_put(a_o->owner); | |
944 | err_out: | |
e0535ce5 WB |
945 | if (cookie) { |
946 | kfree(cookie->data); | |
947 | kfree(cookie); | |
948 | } | |
ab27cfb8 | 949 | return ERR_PTR(err); |
1da177e4 LT |
950 | } |
951 | ||
90b73b77 VB |
952 | /* Returns numbers of initialized actions or negative error. */ |
953 | ||
9fb9f251 JP |
954 | int tcf_action_init(struct net *net, struct tcf_proto *tp, struct nlattr *nla, |
955 | struct nlattr *est, char *name, int ovr, int bind, | |
90b73b77 | 956 | struct tc_action *actions[], size_t *attr_size, |
789871bb | 957 | bool rtnl_held, struct netlink_ext_ack *extack) |
1da177e4 | 958 | { |
cc7ec456 | 959 | struct nlattr *tb[TCA_ACT_MAX_PRIO + 1]; |
33be6271 | 960 | struct tc_action *act; |
4e76e75d | 961 | size_t sz = 0; |
cee63723 | 962 | int err; |
1da177e4 LT |
963 | int i; |
964 | ||
8cb08174 JB |
965 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX_PRIO, nla, NULL, |
966 | extack); | |
cee63723 | 967 | if (err < 0) |
33be6271 | 968 | return err; |
1da177e4 | 969 | |
7ba699c6 | 970 | for (i = 1; i <= TCA_ACT_MAX_PRIO && tb[i]; i++) { |
aea0d727 | 971 | act = tcf_action_init_1(net, tp, tb[i], est, name, ovr, bind, |
789871bb | 972 | rtnl_held, extack); |
33be6271 WC |
973 | if (IS_ERR(act)) { |
974 | err = PTR_ERR(act); | |
1da177e4 | 975 | goto err; |
33be6271 | 976 | } |
7ba699c6 | 977 | act->order = i; |
4e76e75d | 978 | sz += tcf_action_fill_size(act); |
90b73b77 VB |
979 | /* Start from index 0 */ |
980 | actions[i - 1] = act; | |
1da177e4 | 981 | } |
aecc5cef | 982 | |
4e76e75d | 983 | *attr_size = tcf_action_full_attrs_size(sz); |
90b73b77 | 984 | return i - 1; |
1da177e4 LT |
985 | |
986 | err: | |
33be6271 WC |
987 | tcf_action_destroy(actions, bind); |
988 | return err; | |
1da177e4 LT |
989 | } |
990 | ||
ec0595cc | 991 | int tcf_action_copy_stats(struct sk_buff *skb, struct tc_action *p, |
1da177e4 LT |
992 | int compat_mode) |
993 | { | |
994 | int err = 0; | |
995 | struct gnet_dump d; | |
10297b99 | 996 | |
7eb8896d | 997 | if (p == NULL) |
1da177e4 LT |
998 | goto errout; |
999 | ||
1000 | /* compat_mode being true specifies a call that is supposed | |
06fe9fb4 | 1001 | * to add additional backward compatibility statistic TLVs. |
1da177e4 LT |
1002 | */ |
1003 | if (compat_mode) { | |
ec0595cc | 1004 | if (p->type == TCA_OLD_COMPAT) |
1da177e4 | 1005 | err = gnet_stats_start_copy_compat(skb, 0, |
9854518e ND |
1006 | TCA_STATS, |
1007 | TCA_XSTATS, | |
ec0595cc | 1008 | &p->tcfa_lock, &d, |
9854518e | 1009 | TCA_PAD); |
1da177e4 LT |
1010 | else |
1011 | return 0; | |
1012 | } else | |
1013 | err = gnet_stats_start_copy(skb, TCA_ACT_STATS, | |
ec0595cc | 1014 | &p->tcfa_lock, &d, TCA_ACT_PAD); |
1da177e4 LT |
1015 | |
1016 | if (err < 0) | |
1017 | goto errout; | |
1018 | ||
ec0595cc | 1019 | if (gnet_stats_copy_basic(NULL, &d, p->cpu_bstats, &p->tcfa_bstats) < 0 || |
28169aba EC |
1020 | gnet_stats_copy_basic_hw(NULL, &d, p->cpu_bstats_hw, |
1021 | &p->tcfa_bstats_hw) < 0 || | |
1c0d32fd | 1022 | gnet_stats_copy_rate_est(&d, &p->tcfa_rate_est) < 0 || |
519c818e | 1023 | gnet_stats_copy_queue(&d, p->cpu_qstats, |
ec0595cc WC |
1024 | &p->tcfa_qstats, |
1025 | p->tcfa_qstats.qlen) < 0) | |
1da177e4 LT |
1026 | goto errout; |
1027 | ||
1028 | if (gnet_stats_finish_copy(&d) < 0) | |
1029 | goto errout; | |
1030 | ||
1031 | return 0; | |
1032 | ||
1033 | errout: | |
1034 | return -1; | |
1035 | } | |
1036 | ||
90b73b77 | 1037 | static int tca_get_fill(struct sk_buff *skb, struct tc_action *actions[], |
0b0f43fe JHS |
1038 | u32 portid, u32 seq, u16 flags, int event, int bind, |
1039 | int ref) | |
1da177e4 LT |
1040 | { |
1041 | struct tcamsg *t; | |
1042 | struct nlmsghdr *nlh; | |
27a884dc | 1043 | unsigned char *b = skb_tail_pointer(skb); |
4b3550ef | 1044 | struct nlattr *nest; |
1da177e4 | 1045 | |
15e47304 | 1046 | nlh = nlmsg_put(skb, portid, seq, event, sizeof(*t), flags); |
8b00a53c DM |
1047 | if (!nlh) |
1048 | goto out_nlmsg_trim; | |
1049 | t = nlmsg_data(nlh); | |
1da177e4 | 1050 | t->tca_family = AF_UNSPEC; |
9ef1d4c7 PM |
1051 | t->tca__pad1 = 0; |
1052 | t->tca__pad2 = 0; | |
10297b99 | 1053 | |
ae0be8de | 1054 | nest = nla_nest_start_noflag(skb, TCA_ACT_TAB); |
1af85155 | 1055 | if (!nest) |
8b00a53c | 1056 | goto out_nlmsg_trim; |
1da177e4 | 1057 | |
33be6271 | 1058 | if (tcf_action_dump(skb, actions, bind, ref) < 0) |
8b00a53c | 1059 | goto out_nlmsg_trim; |
1da177e4 | 1060 | |
4b3550ef | 1061 | nla_nest_end(skb, nest); |
10297b99 | 1062 | |
27a884dc | 1063 | nlh->nlmsg_len = skb_tail_pointer(skb) - b; |
1da177e4 LT |
1064 | return skb->len; |
1065 | ||
8b00a53c | 1066 | out_nlmsg_trim: |
dc5fc579 | 1067 | nlmsg_trim(skb, b); |
1da177e4 LT |
1068 | return -1; |
1069 | } | |
1070 | ||
1071 | static int | |
c4c4290c | 1072 | tcf_get_notify(struct net *net, u32 portid, struct nlmsghdr *n, |
90b73b77 | 1073 | struct tc_action *actions[], int event, |
84ae017a | 1074 | struct netlink_ext_ack *extack) |
1da177e4 LT |
1075 | { |
1076 | struct sk_buff *skb; | |
1da177e4 LT |
1077 | |
1078 | skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); | |
1079 | if (!skb) | |
1080 | return -ENOBUFS; | |
0b0f43fe | 1081 | if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, 0, event, |
3f7c72bc | 1082 | 0, 1) <= 0) { |
84ae017a | 1083 | NL_SET_ERR_MSG(extack, "Failed to fill netlink attributes while adding TC action"); |
1da177e4 LT |
1084 | kfree_skb(skb); |
1085 | return -EINVAL; | |
1086 | } | |
2942e900 | 1087 | |
15e47304 | 1088 | return rtnl_unicast(skb, net, portid); |
1da177e4 LT |
1089 | } |
1090 | ||
ddf97ccd | 1091 | static struct tc_action *tcf_action_get_1(struct net *net, struct nlattr *nla, |
84ae017a AA |
1092 | struct nlmsghdr *n, u32 portid, |
1093 | struct netlink_ext_ack *extack) | |
1da177e4 | 1094 | { |
cc7ec456 | 1095 | struct nlattr *tb[TCA_ACT_MAX + 1]; |
a85a970a | 1096 | const struct tc_action_ops *ops; |
1da177e4 LT |
1097 | struct tc_action *a; |
1098 | int index; | |
ab27cfb8 | 1099 | int err; |
1da177e4 | 1100 | |
199ce850 CW |
1101 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla, |
1102 | tcf_action_policy, extack); | |
cee63723 | 1103 | if (err < 0) |
ab27cfb8 | 1104 | goto err_out; |
1da177e4 | 1105 | |
cee63723 | 1106 | err = -EINVAL; |
7ba699c6 | 1107 | if (tb[TCA_ACT_INDEX] == NULL || |
84ae017a AA |
1108 | nla_len(tb[TCA_ACT_INDEX]) < sizeof(index)) { |
1109 | NL_SET_ERR_MSG(extack, "Invalid TC action index value"); | |
ab27cfb8 | 1110 | goto err_out; |
84ae017a | 1111 | } |
1587bac4 | 1112 | index = nla_get_u32(tb[TCA_ACT_INDEX]); |
1da177e4 | 1113 | |
ab27cfb8 | 1114 | err = -EINVAL; |
a85a970a | 1115 | ops = tc_lookup_action(tb[TCA_ACT_KIND]); |
84ae017a | 1116 | if (!ops) { /* could happen in batch of actions */ |
f061b48c | 1117 | NL_SET_ERR_MSG(extack, "Specified TC action kind not found"); |
a85a970a | 1118 | goto err_out; |
84ae017a | 1119 | } |
ab27cfb8 | 1120 | err = -ENOENT; |
f061b48c CW |
1121 | if (ops->lookup(net, &a, index) == 0) { |
1122 | NL_SET_ERR_MSG(extack, "TC action with specified index not found"); | |
1da177e4 | 1123 | goto err_mod; |
f061b48c | 1124 | } |
1da177e4 | 1125 | |
a85a970a | 1126 | module_put(ops->owner); |
1da177e4 | 1127 | return a; |
ab27cfb8 | 1128 | |
1da177e4 | 1129 | err_mod: |
a85a970a | 1130 | module_put(ops->owner); |
ab27cfb8 PM |
1131 | err_out: |
1132 | return ERR_PTR(err); | |
1da177e4 LT |
1133 | } |
1134 | ||
7316ae88 | 1135 | static int tca_action_flush(struct net *net, struct nlattr *nla, |
84ae017a AA |
1136 | struct nlmsghdr *n, u32 portid, |
1137 | struct netlink_ext_ack *extack) | |
1da177e4 LT |
1138 | { |
1139 | struct sk_buff *skb; | |
1140 | unsigned char *b; | |
1141 | struct nlmsghdr *nlh; | |
1142 | struct tcamsg *t; | |
1143 | struct netlink_callback dcb; | |
4b3550ef | 1144 | struct nlattr *nest; |
cc7ec456 | 1145 | struct nlattr *tb[TCA_ACT_MAX + 1]; |
a85a970a | 1146 | const struct tc_action_ops *ops; |
7ba699c6 | 1147 | struct nlattr *kind; |
36723873 | 1148 | int err = -ENOMEM; |
1da177e4 | 1149 | |
1da177e4 | 1150 | skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); |
84ae017a | 1151 | if (!skb) |
36723873 | 1152 | return err; |
1da177e4 | 1153 | |
27a884dc | 1154 | b = skb_tail_pointer(skb); |
1da177e4 | 1155 | |
199ce850 CW |
1156 | err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla, |
1157 | tcf_action_policy, extack); | |
cee63723 | 1158 | if (err < 0) |
1da177e4 LT |
1159 | goto err_out; |
1160 | ||
cee63723 | 1161 | err = -EINVAL; |
7ba699c6 | 1162 | kind = tb[TCA_ACT_KIND]; |
a85a970a | 1163 | ops = tc_lookup_action(kind); |
84ae017a AA |
1164 | if (!ops) { /*some idjot trying to flush unknown action */ |
1165 | NL_SET_ERR_MSG(extack, "Cannot flush unknown TC action"); | |
1da177e4 | 1166 | goto err_out; |
84ae017a | 1167 | } |
1da177e4 | 1168 | |
0b0f43fe JHS |
1169 | nlh = nlmsg_put(skb, portid, n->nlmsg_seq, RTM_DELACTION, |
1170 | sizeof(*t), 0); | |
84ae017a AA |
1171 | if (!nlh) { |
1172 | NL_SET_ERR_MSG(extack, "Failed to create TC action flush notification"); | |
8b00a53c | 1173 | goto out_module_put; |
84ae017a | 1174 | } |
8b00a53c | 1175 | t = nlmsg_data(nlh); |
1da177e4 | 1176 | t->tca_family = AF_UNSPEC; |
9ef1d4c7 PM |
1177 | t->tca__pad1 = 0; |
1178 | t->tca__pad2 = 0; | |
1da177e4 | 1179 | |
ae0be8de | 1180 | nest = nla_nest_start_noflag(skb, TCA_ACT_TAB); |
84ae017a AA |
1181 | if (!nest) { |
1182 | NL_SET_ERR_MSG(extack, "Failed to add new netlink message"); | |
8b00a53c | 1183 | goto out_module_put; |
84ae017a | 1184 | } |
1da177e4 | 1185 | |
41780105 | 1186 | err = ops->walk(net, skb, &dcb, RTM_DELACTION, ops, extack); |
66dede2d DC |
1187 | if (err <= 0) { |
1188 | nla_nest_cancel(skb, nest); | |
8b00a53c | 1189 | goto out_module_put; |
66dede2d | 1190 | } |
1da177e4 | 1191 | |
4b3550ef | 1192 | nla_nest_end(skb, nest); |
1da177e4 | 1193 | |
27a884dc | 1194 | nlh->nlmsg_len = skb_tail_pointer(skb) - b; |
1da177e4 | 1195 | nlh->nlmsg_flags |= NLM_F_ROOT; |
a85a970a | 1196 | module_put(ops->owner); |
15e47304 | 1197 | err = rtnetlink_send(skb, net, portid, RTNLGRP_TC, |
cc7ec456 | 1198 | n->nlmsg_flags & NLM_F_ECHO); |
1da177e4 LT |
1199 | if (err > 0) |
1200 | return 0; | |
84ae017a AA |
1201 | if (err < 0) |
1202 | NL_SET_ERR_MSG(extack, "Failed to send TC action flush notification"); | |
1da177e4 LT |
1203 | |
1204 | return err; | |
1205 | ||
8b00a53c | 1206 | out_module_put: |
a85a970a | 1207 | module_put(ops->owner); |
1da177e4 LT |
1208 | err_out: |
1209 | kfree_skb(skb); | |
1da177e4 LT |
1210 | return err; |
1211 | } | |
1212 | ||
b144e7ec | 1213 | static int tcf_action_delete(struct net *net, struct tc_action *actions[]) |
16af6067 | 1214 | { |
97a3f84f | 1215 | int i; |
16af6067 | 1216 | |
90b73b77 VB |
1217 | for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) { |
1218 | struct tc_action *a = actions[i]; | |
16af6067 | 1219 | const struct tc_action_ops *ops = a->ops; |
16af6067 VB |
1220 | /* Actions can be deleted concurrently so we must save their |
1221 | * type and id to search again after reference is released. | |
1222 | */ | |
97a3f84f CW |
1223 | struct tcf_idrinfo *idrinfo = a->idrinfo; |
1224 | u32 act_index = a->tcfa_index; | |
16af6067 | 1225 | |
c10bbfae | 1226 | actions[i] = NULL; |
16af6067 VB |
1227 | if (tcf_action_put(a)) { |
1228 | /* last reference, action was deleted concurrently */ | |
1229 | module_put(ops->owner); | |
1230 | } else { | |
97a3f84f CW |
1231 | int ret; |
1232 | ||
16af6067 | 1233 | /* now do the delete */ |
97a3f84f | 1234 | ret = tcf_idr_delete_index(idrinfo, act_index); |
edfaf94f | 1235 | if (ret < 0) |
16af6067 VB |
1236 | return ret; |
1237 | } | |
1238 | } | |
1239 | return 0; | |
1240 | } | |
1241 | ||
a56e1953 | 1242 | static int |
90b73b77 | 1243 | tcf_del_notify(struct net *net, struct nlmsghdr *n, struct tc_action *actions[], |
edfaf94f | 1244 | u32 portid, size_t attr_size, struct netlink_ext_ack *extack) |
a56e1953 WC |
1245 | { |
1246 | int ret; | |
1247 | struct sk_buff *skb; | |
1248 | ||
d04e6990 RM |
1249 | skb = alloc_skb(attr_size <= NLMSG_GOODSIZE ? NLMSG_GOODSIZE : attr_size, |
1250 | GFP_KERNEL); | |
a56e1953 WC |
1251 | if (!skb) |
1252 | return -ENOBUFS; | |
1253 | ||
1254 | if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, 0, RTM_DELACTION, | |
3f7c72bc | 1255 | 0, 2) <= 0) { |
84ae017a | 1256 | NL_SET_ERR_MSG(extack, "Failed to fill netlink TC action attributes"); |
a56e1953 WC |
1257 | kfree_skb(skb); |
1258 | return -EINVAL; | |
1259 | } | |
1260 | ||
1261 | /* now do the delete */ | |
b144e7ec | 1262 | ret = tcf_action_delete(net, actions); |
55334a5d | 1263 | if (ret < 0) { |
84ae017a | 1264 | NL_SET_ERR_MSG(extack, "Failed to delete TC action"); |
55334a5d WC |
1265 | kfree_skb(skb); |
1266 | return ret; | |
1267 | } | |
a56e1953 WC |
1268 | |
1269 | ret = rtnetlink_send(skb, net, portid, RTNLGRP_TC, | |
1270 | n->nlmsg_flags & NLM_F_ECHO); | |
1271 | if (ret > 0) | |
1272 | return 0; | |
1273 | return ret; | |
1274 | } | |
1275 | ||
1da177e4 | 1276 | static int |
7316ae88 | 1277 | tca_action_gd(struct net *net, struct nlattr *nla, struct nlmsghdr *n, |
84ae017a | 1278 | u32 portid, int event, struct netlink_ext_ack *extack) |
1da177e4 | 1279 | { |
cee63723 | 1280 | int i, ret; |
cc7ec456 | 1281 | struct nlattr *tb[TCA_ACT_MAX_PRIO + 1]; |
33be6271 | 1282 | struct tc_action *act; |
d04e6990 | 1283 | size_t attr_size = 0; |
edfaf94f | 1284 | struct tc_action *actions[TCA_ACT_MAX_PRIO] = {}; |
1da177e4 | 1285 | |
8cb08174 JB |
1286 | ret = nla_parse_nested_deprecated(tb, TCA_ACT_MAX_PRIO, nla, NULL, |
1287 | extack); | |
cee63723 PM |
1288 | if (ret < 0) |
1289 | return ret; | |
1da177e4 | 1290 | |
cc7ec456 | 1291 | if (event == RTM_DELACTION && n->nlmsg_flags & NLM_F_ROOT) { |
1af85155 | 1292 | if (tb[1]) |
84ae017a | 1293 | return tca_action_flush(net, tb[1], n, portid, extack); |
1af85155 | 1294 | |
84ae017a | 1295 | NL_SET_ERR_MSG(extack, "Invalid netlink attributes while flushing TC action"); |
1af85155 | 1296 | return -EINVAL; |
1da177e4 LT |
1297 | } |
1298 | ||
7ba699c6 | 1299 | for (i = 1; i <= TCA_ACT_MAX_PRIO && tb[i]; i++) { |
84ae017a | 1300 | act = tcf_action_get_1(net, tb[i], n, portid, extack); |
ab27cfb8 PM |
1301 | if (IS_ERR(act)) { |
1302 | ret = PTR_ERR(act); | |
1da177e4 | 1303 | goto err; |
ab27cfb8 | 1304 | } |
4e76e75d | 1305 | attr_size += tcf_action_fill_size(act); |
90b73b77 | 1306 | actions[i - 1] = act; |
1da177e4 | 1307 | } |
4e76e75d RM |
1308 | |
1309 | attr_size = tcf_action_full_attrs_size(attr_size); | |
1da177e4 LT |
1310 | |
1311 | if (event == RTM_GETACTION) | |
90b73b77 | 1312 | ret = tcf_get_notify(net, portid, n, actions, event, extack); |
1da177e4 | 1313 | else { /* delete */ |
edfaf94f | 1314 | ret = tcf_del_notify(net, n, actions, portid, attr_size, extack); |
a56e1953 | 1315 | if (ret) |
1da177e4 | 1316 | goto err; |
edfaf94f | 1317 | return 0; |
1da177e4 LT |
1318 | } |
1319 | err: | |
edfaf94f | 1320 | tcf_action_put_many(actions); |
1da177e4 LT |
1321 | return ret; |
1322 | } | |
1323 | ||
a56e1953 | 1324 | static int |
90b73b77 | 1325 | tcf_add_notify(struct net *net, struct nlmsghdr *n, struct tc_action *actions[], |
d04e6990 | 1326 | u32 portid, size_t attr_size, struct netlink_ext_ack *extack) |
1da177e4 | 1327 | { |
1da177e4 | 1328 | struct sk_buff *skb; |
1da177e4 LT |
1329 | int err = 0; |
1330 | ||
d04e6990 RM |
1331 | skb = alloc_skb(attr_size <= NLMSG_GOODSIZE ? NLMSG_GOODSIZE : attr_size, |
1332 | GFP_KERNEL); | |
1da177e4 LT |
1333 | if (!skb) |
1334 | return -ENOBUFS; | |
1335 | ||
a56e1953 WC |
1336 | if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, n->nlmsg_flags, |
1337 | RTM_NEWACTION, 0, 0) <= 0) { | |
d143b9e3 | 1338 | NL_SET_ERR_MSG(extack, "Failed to fill netlink attributes while adding TC action"); |
a56e1953 WC |
1339 | kfree_skb(skb); |
1340 | return -EINVAL; | |
1341 | } | |
10297b99 | 1342 | |
a56e1953 WC |
1343 | err = rtnetlink_send(skb, net, portid, RTNLGRP_TC, |
1344 | n->nlmsg_flags & NLM_F_ECHO); | |
1da177e4 LT |
1345 | if (err > 0) |
1346 | err = 0; | |
1347 | return err; | |
1da177e4 LT |
1348 | } |
1349 | ||
5a7a5555 | 1350 | static int tcf_action_add(struct net *net, struct nlattr *nla, |
aea0d727 AA |
1351 | struct nlmsghdr *n, u32 portid, int ovr, |
1352 | struct netlink_ext_ack *extack) | |
1da177e4 | 1353 | { |
d04e6990 | 1354 | size_t attr_size = 0; |
1da177e4 | 1355 | int ret = 0; |
90b73b77 | 1356 | struct tc_action *actions[TCA_ACT_MAX_PRIO] = {}; |
1da177e4 | 1357 | |
90b73b77 | 1358 | ret = tcf_action_init(net, NULL, nla, NULL, NULL, ovr, 0, actions, |
789871bb | 1359 | &attr_size, true, extack); |
90b73b77 | 1360 | if (ret < 0) |
f07fed82 | 1361 | return ret; |
90b73b77 | 1362 | ret = tcf_add_notify(net, n, actions, portid, attr_size, extack); |
cae422f3 | 1363 | if (ovr) |
90b73b77 | 1364 | tcf_action_put_many(actions); |
1da177e4 | 1365 | |
cae422f3 | 1366 | return ret; |
1da177e4 LT |
1367 | } |
1368 | ||
90825b23 JHS |
1369 | static u32 tcaa_root_flags_allowed = TCA_FLAG_LARGE_DUMP_ON; |
1370 | static const struct nla_policy tcaa_policy[TCA_ROOT_MAX + 1] = { | |
1371 | [TCA_ROOT_FLAGS] = { .type = NLA_BITFIELD32, | |
1372 | .validation_data = &tcaa_root_flags_allowed }, | |
e62e484d | 1373 | [TCA_ROOT_TIME_DELTA] = { .type = NLA_U32 }, |
90825b23 JHS |
1374 | }; |
1375 | ||
c21ef3e3 DA |
1376 | static int tc_ctl_action(struct sk_buff *skb, struct nlmsghdr *n, |
1377 | struct netlink_ext_ack *extack) | |
1da177e4 | 1378 | { |
3b1e0a65 | 1379 | struct net *net = sock_net(skb->sk); |
90825b23 | 1380 | struct nlattr *tca[TCA_ROOT_MAX + 1]; |
15e47304 | 1381 | u32 portid = skb ? NETLINK_CB(skb).portid : 0; |
1da177e4 LT |
1382 | int ret = 0, ovr = 0; |
1383 | ||
0b0f43fe JHS |
1384 | if ((n->nlmsg_type != RTM_GETACTION) && |
1385 | !netlink_capable(skb, CAP_NET_ADMIN)) | |
dfc47ef8 EB |
1386 | return -EPERM; |
1387 | ||
8cb08174 JB |
1388 | ret = nlmsg_parse_deprecated(n, sizeof(struct tcamsg), tca, |
1389 | TCA_ROOT_MAX, NULL, extack); | |
7ba699c6 PM |
1390 | if (ret < 0) |
1391 | return ret; | |
1392 | ||
1393 | if (tca[TCA_ACT_TAB] == NULL) { | |
84ae017a | 1394 | NL_SET_ERR_MSG(extack, "Netlink action attributes missing"); |
1da177e4 LT |
1395 | return -EINVAL; |
1396 | } | |
1397 | ||
cc7ec456 | 1398 | /* n->nlmsg_flags & NLM_F_CREATE */ |
1da177e4 LT |
1399 | switch (n->nlmsg_type) { |
1400 | case RTM_NEWACTION: | |
1401 | /* we are going to assume all other flags | |
25985edc | 1402 | * imply create only if it doesn't exist |
1da177e4 LT |
1403 | * Note that CREATE | EXCL implies that |
1404 | * but since we want avoid ambiguity (eg when flags | |
1405 | * is zero) then just set this | |
1406 | */ | |
cc7ec456 | 1407 | if (n->nlmsg_flags & NLM_F_REPLACE) |
1da177e4 LT |
1408 | ovr = 1; |
1409 | replay: | |
aea0d727 AA |
1410 | ret = tcf_action_add(net, tca[TCA_ACT_TAB], n, portid, ovr, |
1411 | extack); | |
1da177e4 LT |
1412 | if (ret == -EAGAIN) |
1413 | goto replay; | |
1414 | break; | |
1415 | case RTM_DELACTION: | |
7316ae88 | 1416 | ret = tca_action_gd(net, tca[TCA_ACT_TAB], n, |
84ae017a | 1417 | portid, RTM_DELACTION, extack); |
1da177e4 LT |
1418 | break; |
1419 | case RTM_GETACTION: | |
7316ae88 | 1420 | ret = tca_action_gd(net, tca[TCA_ACT_TAB], n, |
84ae017a | 1421 | portid, RTM_GETACTION, extack); |
1da177e4 LT |
1422 | break; |
1423 | default: | |
1424 | BUG(); | |
1425 | } | |
1426 | ||
1427 | return ret; | |
1428 | } | |
1429 | ||
90825b23 | 1430 | static struct nlattr *find_dump_kind(struct nlattr **nla) |
1da177e4 | 1431 | { |
cc7ec456 | 1432 | struct nlattr *tb1, *tb2[TCA_ACT_MAX + 1]; |
7ba699c6 | 1433 | struct nlattr *tb[TCA_ACT_MAX_PRIO + 1]; |
7ba699c6 | 1434 | struct nlattr *kind; |
1da177e4 | 1435 | |
7ba699c6 | 1436 | tb1 = nla[TCA_ACT_TAB]; |
1da177e4 LT |
1437 | if (tb1 == NULL) |
1438 | return NULL; | |
1439 | ||
8cb08174 | 1440 | if (nla_parse_deprecated(tb, TCA_ACT_MAX_PRIO, nla_data(tb1), NLMSG_ALIGN(nla_len(tb1)), NULL, NULL) < 0) |
1da177e4 | 1441 | return NULL; |
1da177e4 | 1442 | |
6d834e04 PM |
1443 | if (tb[1] == NULL) |
1444 | return NULL; | |
199ce850 | 1445 | if (nla_parse_nested_deprecated(tb2, TCA_ACT_MAX, tb[1], tcf_action_policy, NULL) < 0) |
1da177e4 | 1446 | return NULL; |
7ba699c6 | 1447 | kind = tb2[TCA_ACT_KIND]; |
1da177e4 | 1448 | |
26dab893 | 1449 | return kind; |
1da177e4 LT |
1450 | } |
1451 | ||
5a7a5555 | 1452 | static int tc_dump_action(struct sk_buff *skb, struct netlink_callback *cb) |
1da177e4 | 1453 | { |
ddf97ccd | 1454 | struct net *net = sock_net(skb->sk); |
1da177e4 | 1455 | struct nlmsghdr *nlh; |
27a884dc | 1456 | unsigned char *b = skb_tail_pointer(skb); |
4b3550ef | 1457 | struct nlattr *nest; |
1da177e4 | 1458 | struct tc_action_ops *a_o; |
1da177e4 | 1459 | int ret = 0; |
8b00a53c | 1460 | struct tcamsg *t = (struct tcamsg *) nlmsg_data(cb->nlh); |
90825b23 JHS |
1461 | struct nlattr *tb[TCA_ROOT_MAX + 1]; |
1462 | struct nlattr *count_attr = NULL; | |
e62e484d | 1463 | unsigned long jiffy_since = 0; |
90825b23 JHS |
1464 | struct nlattr *kind = NULL; |
1465 | struct nla_bitfield32 bf; | |
e62e484d | 1466 | u32 msecs_since = 0; |
90825b23 JHS |
1467 | u32 act_count = 0; |
1468 | ||
8cb08174 JB |
1469 | ret = nlmsg_parse_deprecated(cb->nlh, sizeof(struct tcamsg), tb, |
1470 | TCA_ROOT_MAX, tcaa_policy, cb->extack); | |
90825b23 JHS |
1471 | if (ret < 0) |
1472 | return ret; | |
1da177e4 | 1473 | |
90825b23 | 1474 | kind = find_dump_kind(tb); |
1da177e4 | 1475 | if (kind == NULL) { |
6ff9c364 | 1476 | pr_info("tc_dump_action: action bad kind\n"); |
1da177e4 LT |
1477 | return 0; |
1478 | } | |
1479 | ||
26dab893 | 1480 | a_o = tc_lookup_action(kind); |
cc7ec456 | 1481 | if (a_o == NULL) |
1da177e4 | 1482 | return 0; |
1da177e4 | 1483 | |
90825b23 JHS |
1484 | cb->args[2] = 0; |
1485 | if (tb[TCA_ROOT_FLAGS]) { | |
1486 | bf = nla_get_bitfield32(tb[TCA_ROOT_FLAGS]); | |
1487 | cb->args[2] = bf.value; | |
1488 | } | |
1489 | ||
e62e484d JHS |
1490 | if (tb[TCA_ROOT_TIME_DELTA]) { |
1491 | msecs_since = nla_get_u32(tb[TCA_ROOT_TIME_DELTA]); | |
1492 | } | |
1493 | ||
15e47304 | 1494 | nlh = nlmsg_put(skb, NETLINK_CB(cb->skb).portid, cb->nlh->nlmsg_seq, |
8b00a53c DM |
1495 | cb->nlh->nlmsg_type, sizeof(*t), 0); |
1496 | if (!nlh) | |
1497 | goto out_module_put; | |
90825b23 | 1498 | |
e62e484d JHS |
1499 | if (msecs_since) |
1500 | jiffy_since = jiffies - msecs_to_jiffies(msecs_since); | |
1501 | ||
8b00a53c | 1502 | t = nlmsg_data(nlh); |
1da177e4 | 1503 | t->tca_family = AF_UNSPEC; |
9ef1d4c7 PM |
1504 | t->tca__pad1 = 0; |
1505 | t->tca__pad2 = 0; | |
e62e484d | 1506 | cb->args[3] = jiffy_since; |
90825b23 JHS |
1507 | count_attr = nla_reserve(skb, TCA_ROOT_COUNT, sizeof(u32)); |
1508 | if (!count_attr) | |
1509 | goto out_module_put; | |
1da177e4 | 1510 | |
ae0be8de | 1511 | nest = nla_nest_start_noflag(skb, TCA_ACT_TAB); |
4b3550ef | 1512 | if (nest == NULL) |
8b00a53c | 1513 | goto out_module_put; |
1da177e4 | 1514 | |
41780105 | 1515 | ret = a_o->walk(net, skb, cb, RTM_GETACTION, a_o, NULL); |
1da177e4 | 1516 | if (ret < 0) |
8b00a53c | 1517 | goto out_module_put; |
1da177e4 LT |
1518 | |
1519 | if (ret > 0) { | |
4b3550ef | 1520 | nla_nest_end(skb, nest); |
1da177e4 | 1521 | ret = skb->len; |
90825b23 JHS |
1522 | act_count = cb->args[1]; |
1523 | memcpy(nla_data(count_attr), &act_count, sizeof(u32)); | |
1524 | cb->args[1] = 0; | |
1da177e4 | 1525 | } else |
ebecaa66 | 1526 | nlmsg_trim(skb, b); |
1da177e4 | 1527 | |
27a884dc | 1528 | nlh->nlmsg_len = skb_tail_pointer(skb) - b; |
15e47304 | 1529 | if (NETLINK_CB(cb->skb).portid && ret) |
1da177e4 LT |
1530 | nlh->nlmsg_flags |= NLM_F_MULTI; |
1531 | module_put(a_o->owner); | |
1532 | return skb->len; | |
1533 | ||
8b00a53c | 1534 | out_module_put: |
1da177e4 | 1535 | module_put(a_o->owner); |
dc5fc579 | 1536 | nlmsg_trim(skb, b); |
1da177e4 LT |
1537 | return skb->len; |
1538 | } | |
1539 | ||
1540 | static int __init tc_action_init(void) | |
1541 | { | |
b97bac64 FW |
1542 | rtnl_register(PF_UNSPEC, RTM_NEWACTION, tc_ctl_action, NULL, 0); |
1543 | rtnl_register(PF_UNSPEC, RTM_DELACTION, tc_ctl_action, NULL, 0); | |
c7ac8679 | 1544 | rtnl_register(PF_UNSPEC, RTM_GETACTION, tc_ctl_action, tc_dump_action, |
b97bac64 | 1545 | 0); |
1da177e4 | 1546 | |
1da177e4 LT |
1547 | return 0; |
1548 | } | |
1549 | ||
1550 | subsys_initcall(tc_action_init); |