blob: b0f90e593af0d510b6e61db352a8db9602830311 [file] [log] [blame]
Linus Torvalds1da177e2005-04-16 15:20:36 -07001/*
2 * net/sched/cls_fw.c Classifier mapping ipchains' fwmark to traffic class.
3 *
4 * This program is free software; you can redistribute it and/or
5 * modify it under the terms of the GNU General Public License
6 * as published by the Free Software Foundation; either version
7 * 2 of the License, or (at your option) any later version.
8 *
9 * Authors: Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru>
10 *
11 * Changes:
12 * Karlis Peisenieks <karlis@mt.lv> : 990415 : fw_walk off by one
13 * Karlis Peisenieks <karlis@mt.lv> : 990415 : fw_delete killed all the filter (and kernel).
14 * Alex <alex@pilotsoft.com> : 2004xxyy: Added Action extension
15 *
16 * JHS: We should remove the CONFIG_NET_CLS_IND from here
17 * eventually when the meta match extension is made available
18 *
19 */
20
Linus Torvalds1da177e2005-04-16 15:20:36 -070021#include <linux/module.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070022#include <linux/types.h>
23#include <linux/kernel.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070024#include <linux/string.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070025#include <linux/errno.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070026#include <linux/skbuff.h>
Patrick McHardy0ba48052007-07-02 22:49:07 -070027#include <net/netlink.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070028#include <net/act_api.h>
29#include <net/pkt_cls.h>
30
Thomas Grafc5c13fa2005-04-24 20:19:54 -070031#define HTSIZE (PAGE_SIZE/sizeof(struct fw_filter *))
32
Linus Torvalds1da177e2005-04-16 15:20:36 -070033struct fw_head
34{
Thomas Grafc5c13fa2005-04-24 20:19:54 -070035 struct fw_filter *ht[HTSIZE];
Patrick McHardyb4e9b522006-08-25 16:11:42 -070036 u32 mask;
Linus Torvalds1da177e2005-04-16 15:20:36 -070037};
38
39struct fw_filter
40{
41 struct fw_filter *next;
42 u32 id;
43 struct tcf_result res;
44#ifdef CONFIG_NET_CLS_IND
45 char indev[IFNAMSIZ];
46#endif /* CONFIG_NET_CLS_IND */
47 struct tcf_exts exts;
48};
49
Patrick McHardy52390082008-01-31 18:36:18 -080050static const struct tcf_ext_map fw_ext_map = {
Linus Torvalds1da177e2005-04-16 15:20:36 -070051 .action = TCA_FW_ACT,
52 .police = TCA_FW_POLICE
53};
54
55static __inline__ int fw_hash(u32 handle)
56{
Thomas Grafc5c13fa2005-04-24 20:19:54 -070057 if (HTSIZE == 4096)
58 return ((handle >> 24) & 0xFFF) ^
59 ((handle >> 12) & 0xFFF) ^
60 (handle & 0xFFF);
61 else if (HTSIZE == 2048)
62 return ((handle >> 22) & 0x7FF) ^
63 ((handle >> 11) & 0x7FF) ^
64 (handle & 0x7FF);
65 else if (HTSIZE == 1024)
66 return ((handle >> 20) & 0x3FF) ^
67 ((handle >> 10) & 0x3FF) ^
68 (handle & 0x3FF);
69 else if (HTSIZE == 512)
70 return (handle >> 27) ^
71 ((handle >> 18) & 0x1FF) ^
72 ((handle >> 9) & 0x1FF) ^
73 (handle & 0x1FF);
74 else if (HTSIZE == 256) {
75 u8 *t = (u8 *) &handle;
76 return t[0] ^ t[1] ^ t[2] ^ t[3];
YOSHIFUJI Hideaki10297b92007-02-09 23:25:16 +090077 } else
Thomas Grafc5c13fa2005-04-24 20:19:54 -070078 return handle & (HTSIZE - 1);
Linus Torvalds1da177e2005-04-16 15:20:36 -070079}
80
81static int fw_classify(struct sk_buff *skb, struct tcf_proto *tp,
82 struct tcf_result *res)
83{
84 struct fw_head *head = (struct fw_head*)tp->root;
85 struct fw_filter *f;
86 int r;
Patrick McHardy5c804bf2006-12-05 13:46:13 -080087 u32 id = skb->mark;
Linus Torvalds1da177e2005-04-16 15:20:36 -070088
89 if (head != NULL) {
Patrick McHardy5c804bf2006-12-05 13:46:13 -080090 id &= head->mask;
Linus Torvalds1da177e2005-04-16 15:20:36 -070091 for (f=head->ht[fw_hash(id)]; f; f=f->next) {
92 if (f->id == id) {
93 *res = f->res;
94#ifdef CONFIG_NET_CLS_IND
95 if (!tcf_match_indev(skb, f->indev))
96 continue;
97#endif /* CONFIG_NET_CLS_IND */
98 r = tcf_exts_exec(skb, &f->exts, res);
99 if (r < 0)
100 continue;
101
102 return r;
103 }
104 }
105 } else {
106 /* old method */
107 if (id && (TC_H_MAJ(id) == 0 || !(TC_H_MAJ(id^tp->q->handle)))) {
108 res->classid = id;
109 res->class = 0;
110 return 0;
111 }
112 }
113
114 return -1;
115}
116
117static unsigned long fw_get(struct tcf_proto *tp, u32 handle)
118{
119 struct fw_head *head = (struct fw_head*)tp->root;
120 struct fw_filter *f;
121
122 if (head == NULL)
123 return 0;
124
125 for (f=head->ht[fw_hash(handle)]; f; f=f->next) {
126 if (f->id == handle)
127 return (unsigned long)f;
128 }
129 return 0;
130}
131
132static void fw_put(struct tcf_proto *tp, unsigned long f)
133{
134}
135
136static int fw_init(struct tcf_proto *tp)
137{
138 return 0;
139}
140
141static inline void
142fw_delete_filter(struct tcf_proto *tp, struct fw_filter *f)
143{
144 tcf_unbind_filter(tp, &f->res);
145 tcf_exts_destroy(tp, &f->exts);
146 kfree(f);
147}
148
149static void fw_destroy(struct tcf_proto *tp)
150{
151 struct fw_head *head = (struct fw_head*)xchg(&tp->root, NULL);
152 struct fw_filter *f;
153 int h;
154
155 if (head == NULL)
156 return;
157
Thomas Grafc5c13fa2005-04-24 20:19:54 -0700158 for (h=0; h<HTSIZE; h++) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700159 while ((f=head->ht[h]) != NULL) {
160 head->ht[h] = f->next;
161 fw_delete_filter(tp, f);
162 }
163 }
164 kfree(head);
165}
166
167static int fw_delete(struct tcf_proto *tp, unsigned long arg)
168{
169 struct fw_head *head = (struct fw_head*)tp->root;
170 struct fw_filter *f = (struct fw_filter*)arg;
171 struct fw_filter **fp;
172
173 if (head == NULL || f == NULL)
174 goto out;
175
176 for (fp=&head->ht[fw_hash(f->id)]; *fp; fp = &(*fp)->next) {
177 if (*fp == f) {
178 tcf_tree_lock(tp);
179 *fp = f->next;
180 tcf_tree_unlock(tp);
181 fw_delete_filter(tp, f);
182 return 0;
183 }
184 }
185out:
186 return -EINVAL;
187}
188
Patrick McHardy6fa8c012008-01-23 20:36:12 -0800189static const struct nla_policy fw_policy[TCA_FW_MAX + 1] = {
190 [TCA_FW_CLASSID] = { .type = NLA_U32 },
191 [TCA_FW_INDEV] = { .type = NLA_STRING, .len = IFNAMSIZ },
192 [TCA_FW_MASK] = { .type = NLA_U32 },
193};
194
Linus Torvalds1da177e2005-04-16 15:20:36 -0700195static int
196fw_change_attrs(struct tcf_proto *tp, struct fw_filter *f,
Patrick McHardyadd93b62008-01-22 22:11:33 -0800197 struct nlattr **tb, struct nlattr **tca, unsigned long base)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700198{
Patrick McHardyb4e9b522006-08-25 16:11:42 -0700199 struct fw_head *head = (struct fw_head *)tp->root;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700200 struct tcf_exts e;
Patrick McHardyb4e9b522006-08-25 16:11:42 -0700201 u32 mask;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700202 int err;
203
Patrick McHardyadd93b62008-01-22 22:11:33 -0800204 err = tcf_exts_validate(tp, tb, tca[TCA_RATE], &e, &fw_ext_map);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700205 if (err < 0)
206 return err;
207
208 err = -EINVAL;
Patrick McHardyadd93b62008-01-22 22:11:33 -0800209 if (tb[TCA_FW_CLASSID]) {
Patrick McHardy1587bac2008-01-23 20:35:03 -0800210 f->res.classid = nla_get_u32(tb[TCA_FW_CLASSID]);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700211 tcf_bind_filter(tp, &f->res, base);
212 }
213
214#ifdef CONFIG_NET_CLS_IND
Patrick McHardyadd93b62008-01-22 22:11:33 -0800215 if (tb[TCA_FW_INDEV]) {
216 err = tcf_change_indev(tp, f->indev, tb[TCA_FW_INDEV]);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700217 if (err < 0)
218 goto errout;
219 }
220#endif /* CONFIG_NET_CLS_IND */
221
Patrick McHardyadd93b62008-01-22 22:11:33 -0800222 if (tb[TCA_FW_MASK]) {
Patrick McHardy1587bac2008-01-23 20:35:03 -0800223 mask = nla_get_u32(tb[TCA_FW_MASK]);
Patrick McHardyb4e9b522006-08-25 16:11:42 -0700224 if (mask != head->mask)
225 goto errout;
226 } else if (head->mask != 0xFFFFFFFF)
227 goto errout;
228
Linus Torvalds1da177e2005-04-16 15:20:36 -0700229 tcf_exts_change(tp, &f->exts, &e);
230
231 return 0;
232errout:
233 tcf_exts_destroy(tp, &e);
234 return err;
235}
236
237static int fw_change(struct tcf_proto *tp, unsigned long base,
238 u32 handle,
Patrick McHardyadd93b62008-01-22 22:11:33 -0800239 struct nlattr **tca,
Linus Torvalds1da177e2005-04-16 15:20:36 -0700240 unsigned long *arg)
241{
242 struct fw_head *head = (struct fw_head*)tp->root;
243 struct fw_filter *f = (struct fw_filter *) *arg;
Patrick McHardyadd93b62008-01-22 22:11:33 -0800244 struct nlattr *opt = tca[TCA_OPTIONS];
245 struct nlattr *tb[TCA_FW_MAX + 1];
Linus Torvalds1da177e2005-04-16 15:20:36 -0700246 int err;
247
248 if (!opt)
249 return handle ? -EINVAL : 0;
250
Patrick McHardy6fa8c012008-01-23 20:36:12 -0800251 err = nla_parse_nested(tb, TCA_FW_MAX, opt, fw_policy);
Patrick McHardycee63722008-01-23 20:33:32 -0800252 if (err < 0)
253 return err;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700254
255 if (f != NULL) {
256 if (f->id != handle && handle)
257 return -EINVAL;
258 return fw_change_attrs(tp, f, tb, tca, base);
259 }
260
261 if (!handle)
262 return -EINVAL;
263
264 if (head == NULL) {
Patrick McHardyb4e9b522006-08-25 16:11:42 -0700265 u32 mask = 0xFFFFFFFF;
Patrick McHardy6fa8c012008-01-23 20:36:12 -0800266 if (tb[TCA_FW_MASK])
Patrick McHardy1587bac2008-01-23 20:35:03 -0800267 mask = nla_get_u32(tb[TCA_FW_MASK]);
Patrick McHardyb4e9b522006-08-25 16:11:42 -0700268
Panagiotis Issaris0da974f2006-07-21 14:51:30 -0700269 head = kzalloc(sizeof(struct fw_head), GFP_KERNEL);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700270 if (head == NULL)
271 return -ENOBUFS;
Patrick McHardyb4e9b522006-08-25 16:11:42 -0700272 head->mask = mask;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700273
274 tcf_tree_lock(tp);
275 tp->root = head;
276 tcf_tree_unlock(tp);
277 }
278
Panagiotis Issaris0da974f2006-07-21 14:51:30 -0700279 f = kzalloc(sizeof(struct fw_filter), GFP_KERNEL);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700280 if (f == NULL)
281 return -ENOBUFS;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700282
283 f->id = handle;
284
285 err = fw_change_attrs(tp, f, tb, tca, base);
286 if (err < 0)
287 goto errout;
288
289 f->next = head->ht[fw_hash(handle)];
290 tcf_tree_lock(tp);
291 head->ht[fw_hash(handle)] = f;
292 tcf_tree_unlock(tp);
293
294 *arg = (unsigned long)f;
295 return 0;
296
297errout:
Jesper Juhla51482b2005-11-08 09:41:34 -0800298 kfree(f);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700299 return err;
300}
301
302static void fw_walk(struct tcf_proto *tp, struct tcf_walker *arg)
303{
304 struct fw_head *head = (struct fw_head*)tp->root;
305 int h;
306
307 if (head == NULL)
308 arg->stop = 1;
309
310 if (arg->stop)
311 return;
312
Thomas Grafc5c13fa2005-04-24 20:19:54 -0700313 for (h = 0; h < HTSIZE; h++) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700314 struct fw_filter *f;
315
316 for (f = head->ht[h]; f; f = f->next) {
317 if (arg->count < arg->skip) {
318 arg->count++;
319 continue;
320 }
321 if (arg->fn(tp, (unsigned long)f, arg) < 0) {
322 arg->stop = 1;
323 return;
324 }
325 arg->count++;
326 }
327 }
328}
329
330static int fw_dump(struct tcf_proto *tp, unsigned long fh,
331 struct sk_buff *skb, struct tcmsg *t)
332{
Patrick McHardyb4e9b522006-08-25 16:11:42 -0700333 struct fw_head *head = (struct fw_head *)tp->root;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700334 struct fw_filter *f = (struct fw_filter*)fh;
Arnaldo Carvalho de Melo27a884d2007-04-19 20:29:13 -0700335 unsigned char *b = skb_tail_pointer(skb);
Patrick McHardy4b3550ef2008-01-23 20:34:11 -0800336 struct nlattr *nest;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700337
338 if (f == NULL)
339 return skb->len;
340
341 t->tcm_handle = f->id;
342
343 if (!f->res.classid && !tcf_exts_is_available(&f->exts))
344 return skb->len;
345
Patrick McHardy4b3550ef2008-01-23 20:34:11 -0800346 nest = nla_nest_start(skb, TCA_OPTIONS);
347 if (nest == NULL)
348 goto nla_put_failure;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700349
350 if (f->res.classid)
Patrick McHardy24beeab2008-01-23 20:34:48 -0800351 NLA_PUT_U32(skb, TCA_FW_CLASSID, f->res.classid);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700352#ifdef CONFIG_NET_CLS_IND
353 if (strlen(f->indev))
Patrick McHardy57e1c482008-01-23 20:34:28 -0800354 NLA_PUT_STRING(skb, TCA_FW_INDEV, f->indev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700355#endif /* CONFIG_NET_CLS_IND */
Patrick McHardyb4e9b522006-08-25 16:11:42 -0700356 if (head->mask != 0xFFFFFFFF)
Patrick McHardy24beeab2008-01-23 20:34:48 -0800357 NLA_PUT_U32(skb, TCA_FW_MASK, head->mask);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700358
359 if (tcf_exts_dump(skb, &f->exts, &fw_ext_map) < 0)
Patrick McHardyadd93b62008-01-22 22:11:33 -0800360 goto nla_put_failure;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700361
Patrick McHardy4b3550ef2008-01-23 20:34:11 -0800362 nla_nest_end(skb, nest);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700363
364 if (tcf_exts_dump_stats(skb, &f->exts, &fw_ext_map) < 0)
Patrick McHardyadd93b62008-01-22 22:11:33 -0800365 goto nla_put_failure;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700366
367 return skb->len;
368
Patrick McHardyadd93b62008-01-22 22:11:33 -0800369nla_put_failure:
Arnaldo Carvalho de Melodc5fc572007-03-25 23:06:12 -0700370 nlmsg_trim(skb, b);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700371 return -1;
372}
373
Patrick McHardy2eb9d752008-01-22 22:10:42 -0800374static struct tcf_proto_ops cls_fw_ops __read_mostly = {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700375 .kind = "fw",
376 .classify = fw_classify,
377 .init = fw_init,
378 .destroy = fw_destroy,
379 .get = fw_get,
380 .put = fw_put,
381 .change = fw_change,
382 .delete = fw_delete,
383 .walk = fw_walk,
384 .dump = fw_dump,
385 .owner = THIS_MODULE,
386};
387
388static int __init init_fw(void)
389{
390 return register_tcf_proto_ops(&cls_fw_ops);
391}
392
YOSHIFUJI Hideaki10297b92007-02-09 23:25:16 +0900393static void __exit exit_fw(void)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700394{
395 unregister_tcf_proto_ops(&cls_fw_ops);
396}
397
398module_init(init_fw)
399module_exit(exit_fw)
400MODULE_LICENSE("GPL");