search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
octeontx2-pf: Fix error return code in otx2_probe()
[linux/fpc-iii.git] / net / sched / act_api.c
blobfbbec2e562f5872be91bb6567f3a8a0a2f60192a
1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /*
3 * net/sched/act_api.c Packet action API.
4 *
5 * Author: Jamal Hadi Salim
6 */
7
8 #include <linux/types.h>
9 #include <linux/kernel.h>
10 #include <linux/string.h>
11 #include <linux/errno.h>
12 #include <linux/slab.h>
13 #include <linux/skbuff.h>
14 #include <linux/init.h>
15 #include <linux/kmod.h>
16 #include <linux/err.h>
17 #include <linux/module.h>
18 #include <net/net_namespace.h>
19 #include <net/sock.h>
20 #include <net/sch_generic.h>
21 #include <net/pkt_cls.h>
22 #include <net/act_api.h>
23 #include <net/netlink.h>
24
25 static void tcf_action_goto_chain_exec(const struct tc_action *a,
26 struct tcf_result *res)
27 {
28 const struct tcf_chain *chain = rcu_dereference_bh(a->goto_chain);
29
30 res->goto_tp = rcu_dereference_bh(chain->filter_chain);
31 }
32
33 static void tcf_free_cookie_rcu(struct rcu_head *p)
34 {
35 struct tc_cookie *cookie = container_of(p, struct tc_cookie, rcu);
36
37 kfree(cookie->data);
38 kfree(cookie);
39 }
40
41 static void tcf_set_action_cookie(struct tc_cookie __rcu **old_cookie,
42 struct tc_cookie *new_cookie)
43 {
44 struct tc_cookie *old;
45
46 old = xchg((__force struct tc_cookie **)old_cookie, new_cookie);
47 if (old)
48 call_rcu(&old->rcu, tcf_free_cookie_rcu);
49 }
50
51 int tcf_action_check_ctrlact(int action, struct tcf_proto *tp,
52 struct tcf_chain **newchain,
53 struct netlink_ext_ack *extack)
54 {
55 int opcode = TC_ACT_EXT_OPCODE(action), ret = -EINVAL;
56 u32 chain_index;
57
58 if (!opcode)
59 ret = action > TC_ACT_VALUE_MAX ? -EINVAL : 0;
60 else if (opcode <= TC_ACT_EXT_OPCODE_MAX || action == TC_ACT_UNSPEC)
61 ret = 0;
62 if (ret) {
63 NL_SET_ERR_MSG(extack, "invalid control action");
64 goto end;
65 }
66
67 if (TC_ACT_EXT_CMP(action, TC_ACT_GOTO_CHAIN)) {
68 chain_index = action & TC_ACT_EXT_VAL_MASK;
69 if (!tp || !newchain) {
70 ret = -EINVAL;
71 NL_SET_ERR_MSG(extack,
72 "can't goto NULL proto/chain");
73 goto end;
74 }
75 *newchain = tcf_chain_get_by_act(tp->chain->block, chain_index);
76 if (!*newchain) {
77 ret = -ENOMEM;
78 NL_SET_ERR_MSG(extack,
79 "can't allocate goto_chain");
80 }
81 }
82 end:
83 return ret;
84 }
85 EXPORT_SYMBOL(tcf_action_check_ctrlact);
86
87 struct tcf_chain *tcf_action_set_ctrlact(struct tc_action *a, int action,
88 struct tcf_chain *goto_chain)
89 {
90 a->tcfa_action = action;
91 goto_chain = rcu_replace_pointer(a->goto_chain, goto_chain, 1);
92 return goto_chain;
93 }
94 EXPORT_SYMBOL(tcf_action_set_ctrlact);
95
96 /* XXX: For standalone actions, we don't need a RCU grace period either, because
97 * actions are always connected to filters and filters are already destroyed in
98 * RCU callbacks, so after a RCU grace period actions are already disconnected
99 * from filters. Readers later can not find us.
100 */
101 static void free_tcf(struct tc_action *p)
102 {
103 struct tcf_chain *chain = rcu_dereference_protected(p->goto_chain, 1);
104
105 free_percpu(p->cpu_bstats);
106 free_percpu(p->cpu_bstats_hw);
107 free_percpu(p->cpu_qstats);
108
109 tcf_set_action_cookie(&p->act_cookie, NULL);
110 if (chain)
111 tcf_chain_put_by_act(chain);
112
113 kfree(p);
114 }
115
116 static void tcf_action_cleanup(struct tc_action *p)
117 {
118 if (p->ops->cleanup)
119 p->ops->cleanup(p);
120
121 gen_kill_estimator(&p->tcfa_rate_est);
122 free_tcf(p);
123 }
124
125 static int __tcf_action_put(struct tc_action *p, bool bind)
126 {
127 struct tcf_idrinfo *idrinfo = p->idrinfo;
128
129 if (refcount_dec_and_mutex_lock(&p->tcfa_refcnt, &idrinfo->lock)) {
130 if (bind)
131 atomic_dec(&p->tcfa_bindcnt);
132 idr_remove(&idrinfo->action_idr, p->tcfa_index);
133 mutex_unlock(&idrinfo->lock);
134
135 tcf_action_cleanup(p);
136 return 1;
137 }
138
139 if (bind)
140 atomic_dec(&p->tcfa_bindcnt);
141
142 return 0;
143 }
144
145 int __tcf_idr_release(struct tc_action *p, bool bind, bool strict)
146 {
147 int ret = 0;
148
149 /* Release with strict==1 and bind==0 is only called through act API
150 * interface (classifiers always bind). Only case when action with
151 * positive reference count and zero bind count can exist is when it was
152 * also created with act API (unbinding last classifier will destroy the
153 * action if it was created by classifier). So only case when bind count
154 * can be changed after initial check is when unbound action is
155 * destroyed by act API while classifier binds to action with same id
156 * concurrently. This result either creation of new action(same behavior
157 * as before), or reusing existing action if concurrent process
158 * increments reference count before action is deleted. Both scenarios
159 * are acceptable.
160 */
161 if (p) {
162 if (!bind && strict && atomic_read(&p->tcfa_bindcnt) > 0)
163 return -EPERM;
164
165 if (__tcf_action_put(p, bind))
166 ret = ACT_P_DELETED;
167 }
168
169 return ret;
170 }
171 EXPORT_SYMBOL(__tcf_idr_release);
172
173 static size_t tcf_action_shared_attrs_size(const struct tc_action *act)
174 {
175 struct tc_cookie *act_cookie;
176 u32 cookie_len = 0;
177
178 rcu_read_lock();
179 act_cookie = rcu_dereference(act->act_cookie);
180
181 if (act_cookie)
182 cookie_len = nla_total_size(act_cookie->len);
183 rcu_read_unlock();
184
185 return nla_total_size(0) /* action number nested */
186 + nla_total_size(IFNAMSIZ) /* TCA_ACT_KIND */
187 + cookie_len /* TCA_ACT_COOKIE */
188 + nla_total_size(sizeof(struct nla_bitfield32)) /* TCA_ACT_HW_STATS */
189 + nla_total_size(0) /* TCA_ACT_STATS nested */
190 + nla_total_size(sizeof(struct nla_bitfield32)) /* TCA_ACT_FLAGS */
191 /* TCA_STATS_BASIC */
192 + nla_total_size_64bit(sizeof(struct gnet_stats_basic))
193 /* TCA_STATS_PKT64 */
194 + nla_total_size_64bit(sizeof(u64))
195 /* TCA_STATS_QUEUE */
196 + nla_total_size_64bit(sizeof(struct gnet_stats_queue))
197 + nla_total_size(0) /* TCA_OPTIONS nested */
198 + nla_total_size(sizeof(struct tcf_t)); /* TCA_GACT_TM */
199 }
200
201 static size_t tcf_action_full_attrs_size(size_t sz)
202 {
203 return NLMSG_HDRLEN /* struct nlmsghdr */
204 + sizeof(struct tcamsg)
205 + nla_total_size(0) /* TCA_ACT_TAB nested */
206 + sz;
207 }
208
209 static size_t tcf_action_fill_size(const struct tc_action *act)
210 {
211 size_t sz = tcf_action_shared_attrs_size(act);
212
213 if (act->ops->get_fill_size)
214 return act->ops->get_fill_size(act) + sz;
215 return sz;
216 }
217
218 static int tcf_dump_walker(struct tcf_idrinfo *idrinfo, struct sk_buff *skb,
219 struct netlink_callback *cb)
220 {
221 int err = 0, index = -1, s_i = 0, n_i = 0;
222 u32 act_flags = cb->args[2];
223 unsigned long jiffy_since = cb->args[3];
224 struct nlattr *nest;
225 struct idr *idr = &idrinfo->action_idr;
226 struct tc_action *p;
227 unsigned long id = 1;
228 unsigned long tmp;
229
230 mutex_lock(&idrinfo->lock);
231
232 s_i = cb->args[0];
233
234 idr_for_each_entry_ul(idr, p, tmp, id) {
235 index++;
236 if (index < s_i)
237 continue;
238
239 if (jiffy_since &&
240 time_after(jiffy_since,
241 (unsigned long)p->tcfa_tm.lastuse))
242 continue;
243
244 nest = nla_nest_start_noflag(skb, n_i);
245 if (!nest) {
246 index--;
247 goto nla_put_failure;
248 }
249 err = tcf_action_dump_1(skb, p, 0, 0);
250 if (err < 0) {
251 index--;
252 nlmsg_trim(skb, nest);
253 goto done;
254 }
255 nla_nest_end(skb, nest);
256 n_i++;
257 if (!(act_flags & TCA_FLAG_LARGE_DUMP_ON) &&
258 n_i >= TCA_ACT_MAX_PRIO)
259 goto done;
260 }
261 done:
262 if (index >= 0)
263 cb->args[0] = index + 1;
264
265 mutex_unlock(&idrinfo->lock);
266 if (n_i) {
267 if (act_flags & TCA_FLAG_LARGE_DUMP_ON)
268 cb->args[1] = n_i;
269 }
270 return n_i;
271
272 nla_put_failure:
273 nla_nest_cancel(skb, nest);
274 goto done;
275 }
276
277 static int tcf_idr_release_unsafe(struct tc_action *p)
278 {
279 if (atomic_read(&p->tcfa_bindcnt) > 0)
280 return -EPERM;
281
282 if (refcount_dec_and_test(&p->tcfa_refcnt)) {
283 idr_remove(&p->idrinfo->action_idr, p->tcfa_index);
284 tcf_action_cleanup(p);
285 return ACT_P_DELETED;
286 }
287
288 return 0;
289 }
290
291 static int tcf_del_walker(struct tcf_idrinfo *idrinfo, struct sk_buff *skb,
292 const struct tc_action_ops *ops)
293 {
294 struct nlattr *nest;
295 int n_i = 0;
296 int ret = -EINVAL;
297 struct idr *idr = &idrinfo->action_idr;
298 struct tc_action *p;
299 unsigned long id = 1;
300 unsigned long tmp;
301
302 nest = nla_nest_start_noflag(skb, 0);
303 if (nest == NULL)
304 goto nla_put_failure;
305 if (nla_put_string(skb, TCA_KIND, ops->kind))
306 goto nla_put_failure;
307
308 mutex_lock(&idrinfo->lock);
309 idr_for_each_entry_ul(idr, p, tmp, id) {
310 ret = tcf_idr_release_unsafe(p);
311 if (ret == ACT_P_DELETED) {
312 module_put(ops->owner);
313 n_i++;
314 } else if (ret < 0) {
315 mutex_unlock(&idrinfo->lock);
316 goto nla_put_failure;
317 }
318 }
319 mutex_unlock(&idrinfo->lock);
320
321 if (nla_put_u32(skb, TCA_FCNT, n_i))
322 goto nla_put_failure;
323 nla_nest_end(skb, nest);
324
325 return n_i;
326 nla_put_failure:
327 nla_nest_cancel(skb, nest);
328 return ret;
329 }
330
331 int tcf_generic_walker(struct tc_action_net *tn, struct sk_buff *skb,
332 struct netlink_callback *cb, int type,
333 const struct tc_action_ops *ops,
334 struct netlink_ext_ack *extack)
335 {
336 struct tcf_idrinfo *idrinfo = tn->idrinfo;
337
338 if (type == RTM_DELACTION) {
339 return tcf_del_walker(idrinfo, skb, ops);
340 } else if (type == RTM_GETACTION) {
341 return tcf_dump_walker(idrinfo, skb, cb);
342 } else {
343 WARN(1, "tcf_generic_walker: unknown command %d\n", type);
344 NL_SET_ERR_MSG(extack, "tcf_generic_walker: unknown command");
345 return -EINVAL;
346 }
347 }
348 EXPORT_SYMBOL(tcf_generic_walker);
349
350 int tcf_idr_search(struct tc_action_net *tn, struct tc_action **a, u32 index)
351 {
352 struct tcf_idrinfo *idrinfo = tn->idrinfo;
353 struct tc_action *p;
354
355 mutex_lock(&idrinfo->lock);
356 p = idr_find(&idrinfo->action_idr, index);
357 if (IS_ERR(p))
358 p = NULL;
359 else if (p)
360 refcount_inc(&p->tcfa_refcnt);
361 mutex_unlock(&idrinfo->lock);
362
363 if (p) {
364 *a = p;
365 return true;
366 }
367 return false;
368 }
369 EXPORT_SYMBOL(tcf_idr_search);
370
371 static int tcf_idr_delete_index(struct tcf_idrinfo *idrinfo, u32 index)
372 {
373 struct tc_action *p;
374 int ret = 0;
375
376 mutex_lock(&idrinfo->lock);
377 p = idr_find(&idrinfo->action_idr, index);
378 if (!p) {
379 mutex_unlock(&idrinfo->lock);
380 return -ENOENT;
381 }
382
383 if (!atomic_read(&p->tcfa_bindcnt)) {
384 if (refcount_dec_and_test(&p->tcfa_refcnt)) {
385 struct module *owner = p->ops->owner;
386
387 WARN_ON(p != idr_remove(&idrinfo->action_idr,
388 p->tcfa_index));
389 mutex_unlock(&idrinfo->lock);
390
391 tcf_action_cleanup(p);
392 module_put(owner);
393 return 0;
394 }
395 ret = 0;
396 } else {
397 ret = -EPERM;
398 }
399
400 mutex_unlock(&idrinfo->lock);
401 return ret;
402 }
403
404 int tcf_idr_create(struct tc_action_net *tn, u32 index, struct nlattr *est,
405 struct tc_action **a, const struct tc_action_ops *ops,
406 int bind, bool cpustats, u32 flags)
407 {
408 struct tc_action *p = kzalloc(ops->size, GFP_KERNEL);
409 struct tcf_idrinfo *idrinfo = tn->idrinfo;
410 int err = -ENOMEM;
411
412 if (unlikely(!p))
413 return -ENOMEM;
414 refcount_set(&p->tcfa_refcnt, 1);
415 if (bind)
416 atomic_set(&p->tcfa_bindcnt, 1);
417
418 if (cpustats) {
419 p->cpu_bstats = netdev_alloc_pcpu_stats(struct gnet_stats_basic_cpu);
420 if (!p->cpu_bstats)
421 goto err1;
422 p->cpu_bstats_hw = netdev_alloc_pcpu_stats(struct gnet_stats_basic_cpu);
423 if (!p->cpu_bstats_hw)
424 goto err2;
425 p->cpu_qstats = alloc_percpu(struct gnet_stats_queue);
426 if (!p->cpu_qstats)
427 goto err3;
428 }
429 spin_lock_init(&p->tcfa_lock);
430 p->tcfa_index = index;
431 p->tcfa_tm.install = jiffies;
432 p->tcfa_tm.lastuse = jiffies;
433 p->tcfa_tm.firstuse = 0;
434 p->tcfa_flags = flags;
435 if (est) {
436 err = gen_new_estimator(&p->tcfa_bstats, p->cpu_bstats,
437 &p->tcfa_rate_est,
438 &p->tcfa_lock, NULL, est);
439 if (err)
440 goto err4;
441 }
442
443 p->idrinfo = idrinfo;
444 p->ops = ops;
445 *a = p;
446 return 0;
447 err4:
448 free_percpu(p->cpu_qstats);
449 err3:
450 free_percpu(p->cpu_bstats_hw);
451 err2:
452 free_percpu(p->cpu_bstats);
453 err1:
454 kfree(p);
455 return err;
456 }
457 EXPORT_SYMBOL(tcf_idr_create);
458
459 int tcf_idr_create_from_flags(struct tc_action_net *tn, u32 index,
460 struct nlattr *est, struct tc_action **a,
461 const struct tc_action_ops *ops, int bind,
462 u32 flags)
463 {
464 /* Set cpustats according to actions flags. */
465 return tcf_idr_create(tn, index, est, a, ops, bind,
466 !(flags & TCA_ACT_FLAGS_NO_PERCPU_STATS), flags);
467 }
468 EXPORT_SYMBOL(tcf_idr_create_from_flags);
469
470 void tcf_idr_insert(struct tc_action_net *tn, struct tc_action *a)
471 {
472 struct tcf_idrinfo *idrinfo = tn->idrinfo;
473
474 mutex_lock(&idrinfo->lock);
475 /* Replace ERR_PTR(-EBUSY) allocated by tcf_idr_check_alloc */
476 WARN_ON(!IS_ERR(idr_replace(&idrinfo->action_idr, a, a->tcfa_index)));
477 mutex_unlock(&idrinfo->lock);
478 }
479 EXPORT_SYMBOL(tcf_idr_insert);
480
481 /* Cleanup idr index that was allocated but not initialized. */
482
483 void tcf_idr_cleanup(struct tc_action_net *tn, u32 index)
484 {
485 struct tcf_idrinfo *idrinfo = tn->idrinfo;
486
487 mutex_lock(&idrinfo->lock);
488 /* Remove ERR_PTR(-EBUSY) allocated by tcf_idr_check_alloc */
489 WARN_ON(!IS_ERR(idr_remove(&idrinfo->action_idr, index)));
490 mutex_unlock(&idrinfo->lock);
491 }
492 EXPORT_SYMBOL(tcf_idr_cleanup);
493
494 /* Check if action with specified index exists. If actions is found, increments
495 * its reference and bind counters, and return 1. Otherwise insert temporary
496 * error pointer (to prevent concurrent users from inserting actions with same
497 * index) and return 0.
498 */
499
500 int tcf_idr_check_alloc(struct tc_action_net *tn, u32 *index,
501 struct tc_action **a, int bind)
502 {
503 struct tcf_idrinfo *idrinfo = tn->idrinfo;
504 struct tc_action *p;
505 int ret;
506
507 again:
508 mutex_lock(&idrinfo->lock);
509 if (*index) {
510 p = idr_find(&idrinfo->action_idr, *index);
511 if (IS_ERR(p)) {
512 /* This means that another process allocated
513 * index but did not assign the pointer yet.
514 */
515 mutex_unlock(&idrinfo->lock);
516 goto again;
517 }
518
519 if (p) {
520 refcount_inc(&p->tcfa_refcnt);
521 if (bind)
522 atomic_inc(&p->tcfa_bindcnt);
523 *a = p;
524 ret = 1;
525 } else {
526 *a = NULL;
527 ret = idr_alloc_u32(&idrinfo->action_idr, NULL, index,
528 *index, GFP_KERNEL);
529 if (!ret)
530 idr_replace(&idrinfo->action_idr,
531 ERR_PTR(-EBUSY), *index);
532 }
533 } else {
534 *index = 1;
535 *a = NULL;
536 ret = idr_alloc_u32(&idrinfo->action_idr, NULL, index,
537 UINT_MAX, GFP_KERNEL);
538 if (!ret)
539 idr_replace(&idrinfo->action_idr, ERR_PTR(-EBUSY),
540 *index);
541 }
542 mutex_unlock(&idrinfo->lock);
543 return ret;
544 }
545 EXPORT_SYMBOL(tcf_idr_check_alloc);
546
547 void tcf_idrinfo_destroy(const struct tc_action_ops *ops,
548 struct tcf_idrinfo *idrinfo)
549 {
550 struct idr *idr = &idrinfo->action_idr;
551 struct tc_action *p;
552 int ret;
553 unsigned long id = 1;
554 unsigned long tmp;
555
556 idr_for_each_entry_ul(idr, p, tmp, id) {
557 ret = __tcf_idr_release(p, false, true);
558 if (ret == ACT_P_DELETED)
559 module_put(ops->owner);
560 else if (ret < 0)
561 return;
562 }
563 idr_destroy(&idrinfo->action_idr);
564 }
565 EXPORT_SYMBOL(tcf_idrinfo_destroy);
566
567 static LIST_HEAD(act_base);
568 static DEFINE_RWLOCK(act_mod_lock);
569
570 int tcf_register_action(struct tc_action_ops *act,
571 struct pernet_operations *ops)
572 {
573 struct tc_action_ops *a;
574 int ret;
575
576 if (!act->act || !act->dump || !act->init || !act->walk || !act->lookup)
577 return -EINVAL;
578
579 /* We have to register pernet ops before making the action ops visible,
580 * otherwise tcf_action_init_1() could get a partially initialized
581 * netns.
582 */
583 ret = register_pernet_subsys(ops);
584 if (ret)
585 return ret;
586
587 write_lock(&act_mod_lock);
588 list_for_each_entry(a, &act_base, head) {
589 if (act->id == a->id || (strcmp(act->kind, a->kind) == 0)) {
590 write_unlock(&act_mod_lock);
591 unregister_pernet_subsys(ops);
592 return -EEXIST;
593 }
594 }
595 list_add_tail(&act->head, &act_base);
596 write_unlock(&act_mod_lock);
597
598 return 0;
599 }
600 EXPORT_SYMBOL(tcf_register_action);
601
602 int tcf_unregister_action(struct tc_action_ops *act,
603 struct pernet_operations *ops)
604 {
605 struct tc_action_ops *a;
606 int err = -ENOENT;
607
608 write_lock(&act_mod_lock);
609 list_for_each_entry(a, &act_base, head) {
610 if (a == act) {
611 list_del(&act->head);
612 err = 0;
613 break;
614 }
615 }
616 write_unlock(&act_mod_lock);
617 if (!err)
618 unregister_pernet_subsys(ops);
619 return err;
620 }
621 EXPORT_SYMBOL(tcf_unregister_action);
622
623 /* lookup by name */
624 static struct tc_action_ops *tc_lookup_action_n(char *kind)
625 {
626 struct tc_action_ops *a, *res = NULL;
627
628 if (kind) {
629 read_lock(&act_mod_lock);
630 list_for_each_entry(a, &act_base, head) {
631 if (strcmp(kind, a->kind) == 0) {
632 if (try_module_get(a->owner))
633 res = a;
634 break;
635 }
636 }
637 read_unlock(&act_mod_lock);
638 }
639 return res;
640 }
641
642 /* lookup by nlattr */
643 static struct tc_action_ops *tc_lookup_action(struct nlattr *kind)
644 {
645 struct tc_action_ops *a, *res = NULL;
646
647 if (kind) {
648 read_lock(&act_mod_lock);
649 list_for_each_entry(a, &act_base, head) {
650 if (nla_strcmp(kind, a->kind) == 0) {
651 if (try_module_get(a->owner))
652 res = a;
653 break;
654 }
655 }
656 read_unlock(&act_mod_lock);
657 }
658 return res;
659 }
660
661 /*TCA_ACT_MAX_PRIO is 32, there count upto 32 */
662 #define TCA_ACT_MAX_PRIO_MASK 0x1FF
663 int tcf_action_exec(struct sk_buff *skb, struct tc_action **actions,
664 int nr_actions, struct tcf_result *res)
665 {
666 u32 jmp_prgcnt = 0;
667 u32 jmp_ttl = TCA_ACT_MAX_PRIO; /*matches actions per filter */
668 int i;
669 int ret = TC_ACT_OK;
670
671 if (skb_skip_tc_classify(skb))
672 return TC_ACT_OK;
673
674 restart_act_graph:
675 for (i = 0; i < nr_actions; i++) {
676 const struct tc_action *a = actions[i];
677
678 if (jmp_prgcnt > 0) {
679 jmp_prgcnt -= 1;
680 continue;
681 }
682 repeat:
683 ret = a->ops->act(skb, a, res);
684 if (ret == TC_ACT_REPEAT)
685 goto repeat; /* we need a ttl - JHS */
686
687 if (TC_ACT_EXT_CMP(ret, TC_ACT_JUMP)) {
688 jmp_prgcnt = ret & TCA_ACT_MAX_PRIO_MASK;
689 if (!jmp_prgcnt || (jmp_prgcnt > nr_actions)) {
690 /* faulty opcode, stop pipeline */
691 return TC_ACT_OK;
692 } else {
693 jmp_ttl -= 1;
694 if (jmp_ttl > 0)
695 goto restart_act_graph;
696 else /* faulty graph, stop pipeline */
697 return TC_ACT_OK;
698 }
699 } else if (TC_ACT_EXT_CMP(ret, TC_ACT_GOTO_CHAIN)) {
700 if (unlikely(!rcu_access_pointer(a->goto_chain))) {
701 net_warn_ratelimited("can't go to NULL chain!\n");
702 return TC_ACT_SHOT;
703 }
704 tcf_action_goto_chain_exec(a, res);
705 }
706
707 if (ret != TC_ACT_PIPE)
708 break;
709 }
710
711 return ret;
712 }
713 EXPORT_SYMBOL(tcf_action_exec);
714
715 int tcf_action_destroy(struct tc_action *actions[], int bind)
716 {
717 const struct tc_action_ops *ops;
718 struct tc_action *a;
719 int ret = 0, i;
720
721 for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) {
722 a = actions[i];
723 actions[i] = NULL;
724 ops = a->ops;
725 ret = __tcf_idr_release(a, bind, true);
726 if (ret == ACT_P_DELETED)
727 module_put(ops->owner);
728 else if (ret < 0)
729 return ret;
730 }
731 return ret;
732 }
733
734 static int tcf_action_destroy_1(struct tc_action *a, int bind)
735 {
736 struct tc_action *actions[] = { a, NULL };
737
738 return tcf_action_destroy(actions, bind);
739 }
740
741 static int tcf_action_put(struct tc_action *p)
742 {
743 return __tcf_action_put(p, false);
744 }
745
746 /* Put all actions in this array, skip those NULL's. */
747 static void tcf_action_put_many(struct tc_action *actions[])
748 {
749 int i;
750
751 for (i = 0; i < TCA_ACT_MAX_PRIO; i++) {
752 struct tc_action *a = actions[i];
753 const struct tc_action_ops *ops;
754
755 if (!a)
756 continue;
757 ops = a->ops;
758 if (tcf_action_put(a))
759 module_put(ops->owner);
760 }
761 }
762
763 int
764 tcf_action_dump_old(struct sk_buff *skb, struct tc_action *a, int bind, int ref)
765 {
766 return a->ops->dump(skb, a, bind, ref);
767 }
768
769 int
770 tcf_action_dump_1(struct sk_buff *skb, struct tc_action *a, int bind, int ref)
771 {
772 int err = -EINVAL;
773 unsigned char *b = skb_tail_pointer(skb);
774 struct nlattr *nest;
775 struct tc_cookie *cookie;
776
777 if (nla_put_string(skb, TCA_KIND, a->ops->kind))
778 goto nla_put_failure;
779 if (tcf_action_copy_stats(skb, a, 0))
780 goto nla_put_failure;
781
782 rcu_read_lock();
783 cookie = rcu_dereference(a->act_cookie);
784 if (cookie) {
785 if (nla_put(skb, TCA_ACT_COOKIE, cookie->len, cookie->data)) {
786 rcu_read_unlock();
787 goto nla_put_failure;
788 }
789 }
790 rcu_read_unlock();
791
792 if (a->hw_stats != TCA_ACT_HW_STATS_ANY &&
793 nla_put_bitfield32(skb, TCA_ACT_HW_STATS,
794 a->hw_stats, TCA_ACT_HW_STATS_ANY))
795 goto nla_put_failure;
796
797 if (a->used_hw_stats_valid &&
798 nla_put_bitfield32(skb, TCA_ACT_USED_HW_STATS,
799 a->used_hw_stats, TCA_ACT_HW_STATS_ANY))
800 goto nla_put_failure;
801
802 if (a->tcfa_flags &&
803 nla_put_bitfield32(skb, TCA_ACT_FLAGS,
804 a->tcfa_flags, a->tcfa_flags))
805 goto nla_put_failure;
806
807 nest = nla_nest_start_noflag(skb, TCA_OPTIONS);
808 if (nest == NULL)
809 goto nla_put_failure;
810 err = tcf_action_dump_old(skb, a, bind, ref);
811 if (err > 0) {
812 nla_nest_end(skb, nest);
813 return err;
814 }
815
816 nla_put_failure:
817 nlmsg_trim(skb, b);
818 return -1;
819 }
820 EXPORT_SYMBOL(tcf_action_dump_1);
821
822 int tcf_action_dump(struct sk_buff *skb, struct tc_action *actions[],
823 int bind, int ref)
824 {
825 struct tc_action *a;
826 int err = -EINVAL, i;
827 struct nlattr *nest;
828
829 for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) {
830 a = actions[i];
831 nest = nla_nest_start_noflag(skb, i + 1);
832 if (nest == NULL)
833 goto nla_put_failure;
834 err = tcf_action_dump_1(skb, a, bind, ref);
835 if (err < 0)
836 goto errout;
837 nla_nest_end(skb, nest);
838 }
839
840 return 0;
841
842 nla_put_failure:
843 err = -EINVAL;
844 errout:
845 nla_nest_cancel(skb, nest);
846 return err;
847 }
848
849 static struct tc_cookie *nla_memdup_cookie(struct nlattr **tb)
850 {
851 struct tc_cookie *c = kzalloc(sizeof(*c), GFP_KERNEL);
852 if (!c)
853 return NULL;
854
855 c->data = nla_memdup(tb[TCA_ACT_COOKIE], GFP_KERNEL);
856 if (!c->data) {
857 kfree(c);
858 return NULL;
859 }
860 c->len = nla_len(tb[TCA_ACT_COOKIE]);
861
862 return c;
863 }
864
865 static u8 tcf_action_hw_stats_get(struct nlattr *hw_stats_attr)
866 {
867 struct nla_bitfield32 hw_stats_bf;
868
869 /* If the user did not pass the attr, that means he does
870 * not care about the type. Return "any" in that case
871 * which is setting on all supported types.
872 */
873 if (!hw_stats_attr)
874 return TCA_ACT_HW_STATS_ANY;
875 hw_stats_bf = nla_get_bitfield32(hw_stats_attr);
876 return hw_stats_bf.value;
877 }
878
879 static const struct nla_policy tcf_action_policy[TCA_ACT_MAX + 1] = {
880 [TCA_ACT_KIND] = { .type = NLA_STRING },
881 [TCA_ACT_INDEX] = { .type = NLA_U32 },
882 [TCA_ACT_COOKIE] = { .type = NLA_BINARY,
883 .len = TC_COOKIE_MAX_SIZE },
884 [TCA_ACT_OPTIONS] = { .type = NLA_NESTED },
885 [TCA_ACT_FLAGS] = NLA_POLICY_BITFIELD32(TCA_ACT_FLAGS_NO_PERCPU_STATS),
886 [TCA_ACT_HW_STATS] = NLA_POLICY_BITFIELD32(TCA_ACT_HW_STATS_ANY),
887 };
888
889 struct tc_action *tcf_action_init_1(struct net *net, struct tcf_proto *tp,
890 struct nlattr *nla, struct nlattr *est,
891 char *name, int ovr, int bind,
892 bool rtnl_held,
893 struct netlink_ext_ack *extack)
894 {
895 struct nla_bitfield32 flags = { 0, 0 };
896 u8 hw_stats = TCA_ACT_HW_STATS_ANY;
897 struct tc_action *a;
898 struct tc_action_ops *a_o;
899 struct tc_cookie *cookie = NULL;
900 char act_name[IFNAMSIZ];
901 struct nlattr *tb[TCA_ACT_MAX + 1];
902 struct nlattr *kind;
903 int err;
904
905 if (name == NULL) {
906 err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla,
907 tcf_action_policy, extack);
908 if (err < 0)
909 goto err_out;
910 err = -EINVAL;
911 kind = tb[TCA_ACT_KIND];
912 if (!kind) {
913 NL_SET_ERR_MSG(extack, "TC action kind must be specified");
914 goto err_out;
915 }
916 if (nla_strlcpy(act_name, kind, IFNAMSIZ) >= IFNAMSIZ) {
917 NL_SET_ERR_MSG(extack, "TC action name too long");
918 goto err_out;
919 }
920 if (tb[TCA_ACT_COOKIE]) {
921 cookie = nla_memdup_cookie(tb);
922 if (!cookie) {
923 NL_SET_ERR_MSG(extack, "No memory to generate TC cookie");
924 err = -ENOMEM;
925 goto err_out;
926 }
927 }
928 hw_stats = tcf_action_hw_stats_get(tb[TCA_ACT_HW_STATS]);
929 if (tb[TCA_ACT_FLAGS])
930 flags = nla_get_bitfield32(tb[TCA_ACT_FLAGS]);
931 } else {
932 if (strlcpy(act_name, name, IFNAMSIZ) >= IFNAMSIZ) {
933 NL_SET_ERR_MSG(extack, "TC action name too long");
934 err = -EINVAL;
935 goto err_out;
936 }
937 }
938
939 a_o = tc_lookup_action_n(act_name);
940 if (a_o == NULL) {
941 #ifdef CONFIG_MODULES
942 if (rtnl_held)
943 rtnl_unlock();
944 request_module("act_%s", act_name);
945 if (rtnl_held)
946 rtnl_lock();
947
948 a_o = tc_lookup_action_n(act_name);
949
950 /* We dropped the RTNL semaphore in order to
951 * perform the module load. So, even if we
952 * succeeded in loading the module we have to
953 * tell the caller to replay the request. We
954 * indicate this using -EAGAIN.
955 */
956 if (a_o != NULL) {
957 err = -EAGAIN;
958 goto err_mod;
959 }
960 #endif
961 NL_SET_ERR_MSG(extack, "Failed to load TC action module");
962 err = -ENOENT;
963 goto err_out;
964 }
965
966 /* backward compatibility for policer */
967 if (name == NULL)
968 err = a_o->init(net, tb[TCA_ACT_OPTIONS], est, &a, ovr, bind,
969 rtnl_held, tp, flags.value, extack);
970 else
971 err = a_o->init(net, nla, est, &a, ovr, bind, rtnl_held,
972 tp, flags.value, extack);
973 if (err < 0)
974 goto err_mod;
975
976 if (!name && tb[TCA_ACT_COOKIE])
977 tcf_set_action_cookie(&a->act_cookie, cookie);
978
979 if (!name)
980 a->hw_stats = hw_stats;
981
982 /* module count goes up only when brand new policy is created
983 * if it exists and is only bound to in a_o->init() then
984 * ACT_P_CREATED is not returned (a zero is).
985 */
986 if (err != ACT_P_CREATED)
987 module_put(a_o->owner);
988
989 if (TC_ACT_EXT_CMP(a->tcfa_action, TC_ACT_GOTO_CHAIN) &&
990 !rcu_access_pointer(a->goto_chain)) {
991 tcf_action_destroy_1(a, bind);
992 NL_SET_ERR_MSG(extack, "can't use goto chain with NULL chain");
993 return ERR_PTR(-EINVAL);
994 }
995
996 return a;
997
998 err_mod:
999 module_put(a_o->owner);
1000 err_out:
1001 if (cookie) {
1002 kfree(cookie->data);
1003 kfree(cookie);
1004 }
1005 return ERR_PTR(err);
1006 }
1007
1008 /* Returns numbers of initialized actions or negative error. */
1009
1010 int tcf_action_init(struct net *net, struct tcf_proto *tp, struct nlattr *nla,
1011 struct nlattr *est, char *name, int ovr, int bind,
1012 struct tc_action *actions[], size_t *attr_size,
1013 bool rtnl_held, struct netlink_ext_ack *extack)
1014 {
1015 struct nlattr *tb[TCA_ACT_MAX_PRIO + 1];
1016 struct tc_action *act;
1017 size_t sz = 0;
1018 int err;
1019 int i;
1020
1021 err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX_PRIO, nla, NULL,
1022 extack);
1023 if (err < 0)
1024 return err;
1025
1026 for (i = 1; i <= TCA_ACT_MAX_PRIO && tb[i]; i++) {
1027 act = tcf_action_init_1(net, tp, tb[i], est, name, ovr, bind,
1028 rtnl_held, extack);
1029 if (IS_ERR(act)) {
1030 err = PTR_ERR(act);
1031 goto err;
1032 }
1033 sz += tcf_action_fill_size(act);
1034 /* Start from index 0 */
1035 actions[i - 1] = act;
1036 }
1037
1038 *attr_size = tcf_action_full_attrs_size(sz);
1039 return i - 1;
1040
1041 err:
1042 tcf_action_destroy(actions, bind);
1043 return err;
1044 }
1045
1046 void tcf_action_update_stats(struct tc_action *a, u64 bytes, u32 packets,
1047 bool drop, bool hw)
1048 {
1049 if (a->cpu_bstats) {
1050 _bstats_cpu_update(this_cpu_ptr(a->cpu_bstats), bytes, packets);
1051
1052 if (drop)
1053 this_cpu_ptr(a->cpu_qstats)->drops += packets;
1054
1055 if (hw)
1056 _bstats_cpu_update(this_cpu_ptr(a->cpu_bstats_hw),
1057 bytes, packets);
1058 return;
1059 }
1060
1061 _bstats_update(&a->tcfa_bstats, bytes, packets);
1062 if (drop)
1063 a->tcfa_qstats.drops += packets;
1064 if (hw)
1065 _bstats_update(&a->tcfa_bstats_hw, bytes, packets);
1066 }
1067 EXPORT_SYMBOL(tcf_action_update_stats);
1068
1069 int tcf_action_copy_stats(struct sk_buff *skb, struct tc_action *p,
1070 int compat_mode)
1071 {
1072 int err = 0;
1073 struct gnet_dump d;
1074
1075 if (p == NULL)
1076 goto errout;
1077
1078 /* compat_mode being true specifies a call that is supposed
1079 * to add additional backward compatibility statistic TLVs.
1080 */
1081 if (compat_mode) {
1082 if (p->type == TCA_OLD_COMPAT)
1083 err = gnet_stats_start_copy_compat(skb, 0,
1084 TCA_STATS,
1085 TCA_XSTATS,
1086 &p->tcfa_lock, &d,
1087 TCA_PAD);
1088 else
1089 return 0;
1090 } else
1091 err = gnet_stats_start_copy(skb, TCA_ACT_STATS,
1092 &p->tcfa_lock, &d, TCA_ACT_PAD);
1093
1094 if (err < 0)
1095 goto errout;
1096
1097 if (gnet_stats_copy_basic(NULL, &d, p->cpu_bstats, &p->tcfa_bstats) < 0 ||
1098 gnet_stats_copy_basic_hw(NULL, &d, p->cpu_bstats_hw,
1099 &p->tcfa_bstats_hw) < 0 ||
1100 gnet_stats_copy_rate_est(&d, &p->tcfa_rate_est) < 0 ||
1101 gnet_stats_copy_queue(&d, p->cpu_qstats,
1102 &p->tcfa_qstats,
1103 p->tcfa_qstats.qlen) < 0)
1104 goto errout;
1105
1106 if (gnet_stats_finish_copy(&d) < 0)
1107 goto errout;
1108
1109 return 0;
1110
1111 errout:
1112 return -1;
1113 }
1114
1115 static int tca_get_fill(struct sk_buff *skb, struct tc_action *actions[],
1116 u32 portid, u32 seq, u16 flags, int event, int bind,
1117 int ref)
1118 {
1119 struct tcamsg *t;
1120 struct nlmsghdr *nlh;
1121 unsigned char *b = skb_tail_pointer(skb);
1122 struct nlattr *nest;
1123
1124 nlh = nlmsg_put(skb, portid, seq, event, sizeof(*t), flags);
1125 if (!nlh)
1126 goto out_nlmsg_trim;
1127 t = nlmsg_data(nlh);
1128 t->tca_family = AF_UNSPEC;
1129 t->tca__pad1 = 0;
1130 t->tca__pad2 = 0;
1131
1132 nest = nla_nest_start_noflag(skb, TCA_ACT_TAB);
1133 if (!nest)
1134 goto out_nlmsg_trim;
1135
1136 if (tcf_action_dump(skb, actions, bind, ref) < 0)
1137 goto out_nlmsg_trim;
1138
1139 nla_nest_end(skb, nest);
1140
1141 nlh->nlmsg_len = skb_tail_pointer(skb) - b;
1142 return skb->len;
1143
1144 out_nlmsg_trim:
1145 nlmsg_trim(skb, b);
1146 return -1;
1147 }
1148
1149 static int
1150 tcf_get_notify(struct net *net, u32 portid, struct nlmsghdr *n,
1151 struct tc_action *actions[], int event,
1152 struct netlink_ext_ack *extack)
1153 {
1154 struct sk_buff *skb;
1155
1156 skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL);
1157 if (!skb)
1158 return -ENOBUFS;
1159 if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, 0, event,
1160 0, 1) <= 0) {
1161 NL_SET_ERR_MSG(extack, "Failed to fill netlink attributes while adding TC action");
1162 kfree_skb(skb);
1163 return -EINVAL;
1164 }
1165
1166 return rtnl_unicast(skb, net, portid);
1167 }
1168
1169 static struct tc_action *tcf_action_get_1(struct net *net, struct nlattr *nla,
1170 struct nlmsghdr *n, u32 portid,
1171 struct netlink_ext_ack *extack)
1172 {
1173 struct nlattr *tb[TCA_ACT_MAX + 1];
1174 const struct tc_action_ops *ops;
1175 struct tc_action *a;
1176 int index;
1177 int err;
1178
1179 err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla,
1180 tcf_action_policy, extack);
1181 if (err < 0)
1182 goto err_out;
1183
1184 err = -EINVAL;
1185 if (tb[TCA_ACT_INDEX] == NULL ||
1186 nla_len(tb[TCA_ACT_INDEX]) < sizeof(index)) {
1187 NL_SET_ERR_MSG(extack, "Invalid TC action index value");
1188 goto err_out;
1189 }
1190 index = nla_get_u32(tb[TCA_ACT_INDEX]);
1191
1192 err = -EINVAL;
1193 ops = tc_lookup_action(tb[TCA_ACT_KIND]);
1194 if (!ops) { /* could happen in batch of actions */
1195 NL_SET_ERR_MSG(extack, "Specified TC action kind not found");
1196 goto err_out;
1197 }
1198 err = -ENOENT;
1199 if (ops->lookup(net, &a, index) == 0) {
1200 NL_SET_ERR_MSG(extack, "TC action with specified index not found");
1201 goto err_mod;
1202 }
1203
1204 module_put(ops->owner);
1205 return a;
1206
1207 err_mod:
1208 module_put(ops->owner);
1209 err_out:
1210 return ERR_PTR(err);
1211 }
1212
1213 static int tca_action_flush(struct net *net, struct nlattr *nla,
1214 struct nlmsghdr *n, u32 portid,
1215 struct netlink_ext_ack *extack)
1216 {
1217 struct sk_buff *skb;
1218 unsigned char *b;
1219 struct nlmsghdr *nlh;
1220 struct tcamsg *t;
1221 struct netlink_callback dcb;
1222 struct nlattr *nest;
1223 struct nlattr *tb[TCA_ACT_MAX + 1];
1224 const struct tc_action_ops *ops;
1225 struct nlattr *kind;
1226 int err = -ENOMEM;
1227
1228 skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL);
1229 if (!skb)
1230 return err;
1231
1232 b = skb_tail_pointer(skb);
1233
1234 err = nla_parse_nested_deprecated(tb, TCA_ACT_MAX, nla,
1235 tcf_action_policy, extack);
1236 if (err < 0)
1237 goto err_out;
1238
1239 err = -EINVAL;
1240 kind = tb[TCA_ACT_KIND];
1241 ops = tc_lookup_action(kind);
1242 if (!ops) { /*some idjot trying to flush unknown action */
1243 NL_SET_ERR_MSG(extack, "Cannot flush unknown TC action");
1244 goto err_out;
1245 }
1246
1247 nlh = nlmsg_put(skb, portid, n->nlmsg_seq, RTM_DELACTION,
1248 sizeof(*t), 0);
1249 if (!nlh) {
1250 NL_SET_ERR_MSG(extack, "Failed to create TC action flush notification");
1251 goto out_module_put;
1252 }
1253 t = nlmsg_data(nlh);
1254 t->tca_family = AF_UNSPEC;
1255 t->tca__pad1 = 0;
1256 t->tca__pad2 = 0;
1257
1258 nest = nla_nest_start_noflag(skb, TCA_ACT_TAB);
1259 if (!nest) {
1260 NL_SET_ERR_MSG(extack, "Failed to add new netlink message");
1261 goto out_module_put;
1262 }
1263
1264 err = ops->walk(net, skb, &dcb, RTM_DELACTION, ops, extack);
1265 if (err <= 0) {
1266 nla_nest_cancel(skb, nest);
1267 goto out_module_put;
1268 }
1269
1270 nla_nest_end(skb, nest);
1271
1272 nlh->nlmsg_len = skb_tail_pointer(skb) - b;
1273 nlh->nlmsg_flags |= NLM_F_ROOT;
1274 module_put(ops->owner);
1275 err = rtnetlink_send(skb, net, portid, RTNLGRP_TC,
1276 n->nlmsg_flags & NLM_F_ECHO);
1277 if (err > 0)
1278 return 0;
1279 if (err < 0)
1280 NL_SET_ERR_MSG(extack, "Failed to send TC action flush notification");
1281
1282 return err;
1283
1284 out_module_put:
1285 module_put(ops->owner);
1286 err_out:
1287 kfree_skb(skb);
1288 return err;
1289 }
1290
1291 static int tcf_action_delete(struct net *net, struct tc_action *actions[])
1292 {
1293 int i;
1294
1295 for (i = 0; i < TCA_ACT_MAX_PRIO && actions[i]; i++) {
1296 struct tc_action *a = actions[i];
1297 const struct tc_action_ops *ops = a->ops;
1298 /* Actions can be deleted concurrently so we must save their
1299 * type and id to search again after reference is released.
1300 */
1301 struct tcf_idrinfo *idrinfo = a->idrinfo;
1302 u32 act_index = a->tcfa_index;
1303
1304 actions[i] = NULL;
1305 if (tcf_action_put(a)) {
1306 /* last reference, action was deleted concurrently */
1307 module_put(ops->owner);
1308 } else {
1309 int ret;
1310
1311 /* now do the delete */
1312 ret = tcf_idr_delete_index(idrinfo, act_index);
1313 if (ret < 0)
1314 return ret;
1315 }
1316 }
1317 return 0;
1318 }
1319
1320 static int
1321 tcf_del_notify(struct net *net, struct nlmsghdr *n, struct tc_action *actions[],
1322 u32 portid, size_t attr_size, struct netlink_ext_ack *extack)
1323 {
1324 int ret;
1325 struct sk_buff *skb;
1326
1327 skb = alloc_skb(attr_size <= NLMSG_GOODSIZE ? NLMSG_GOODSIZE : attr_size,
1328 GFP_KERNEL);
1329 if (!skb)
1330 return -ENOBUFS;
1331
1332 if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, 0, RTM_DELACTION,
1333 0, 2) <= 0) {
1334 NL_SET_ERR_MSG(extack, "Failed to fill netlink TC action attributes");
1335 kfree_skb(skb);
1336 return -EINVAL;
1337 }
1338
1339 /* now do the delete */
1340 ret = tcf_action_delete(net, actions);
1341 if (ret < 0) {
1342 NL_SET_ERR_MSG(extack, "Failed to delete TC action");
1343 kfree_skb(skb);
1344 return ret;
1345 }
1346
1347 ret = rtnetlink_send(skb, net, portid, RTNLGRP_TC,
1348 n->nlmsg_flags & NLM_F_ECHO);
1349 if (ret > 0)
1350 return 0;
1351 return ret;
1352 }
1353
1354 static int
1355 tca_action_gd(struct net *net, struct nlattr *nla, struct nlmsghdr *n,
1356 u32 portid, int event, struct netlink_ext_ack *extack)
1357 {
1358 int i, ret;
1359 struct nlattr *tb[TCA_ACT_MAX_PRIO + 1];
1360 struct tc_action *act;
1361 size_t attr_size = 0;
1362 struct tc_action *actions[TCA_ACT_MAX_PRIO] = {};
1363
1364 ret = nla_parse_nested_deprecated(tb, TCA_ACT_MAX_PRIO, nla, NULL,
1365 extack);
1366 if (ret < 0)
1367 return ret;
1368
1369 if (event == RTM_DELACTION && n->nlmsg_flags & NLM_F_ROOT) {
1370 if (tb[1])
1371 return tca_action_flush(net, tb[1], n, portid, extack);
1372
1373 NL_SET_ERR_MSG(extack, "Invalid netlink attributes while flushing TC action");
1374 return -EINVAL;
1375 }
1376
1377 for (i = 1; i <= TCA_ACT_MAX_PRIO && tb[i]; i++) {
1378 act = tcf_action_get_1(net, tb[i], n, portid, extack);
1379 if (IS_ERR(act)) {
1380 ret = PTR_ERR(act);
1381 goto err;
1382 }
1383 attr_size += tcf_action_fill_size(act);
1384 actions[i - 1] = act;
1385 }
1386
1387 attr_size = tcf_action_full_attrs_size(attr_size);
1388
1389 if (event == RTM_GETACTION)
1390 ret = tcf_get_notify(net, portid, n, actions, event, extack);
1391 else { /* delete */
1392 ret = tcf_del_notify(net, n, actions, portid, attr_size, extack);
1393 if (ret)
1394 goto err;
1395 return 0;
1396 }
1397 err:
1398 tcf_action_put_many(actions);
1399 return ret;
1400 }
1401
1402 static int
1403 tcf_add_notify(struct net *net, struct nlmsghdr *n, struct tc_action *actions[],
1404 u32 portid, size_t attr_size, struct netlink_ext_ack *extack)
1405 {
1406 struct sk_buff *skb;
1407 int err = 0;
1408
1409 skb = alloc_skb(attr_size <= NLMSG_GOODSIZE ? NLMSG_GOODSIZE : attr_size,
1410 GFP_KERNEL);
1411 if (!skb)
1412 return -ENOBUFS;
1413
1414 if (tca_get_fill(skb, actions, portid, n->nlmsg_seq, n->nlmsg_flags,
1415 RTM_NEWACTION, 0, 0) <= 0) {
1416 NL_SET_ERR_MSG(extack, "Failed to fill netlink attributes while adding TC action");
1417 kfree_skb(skb);
1418 return -EINVAL;
1419 }
1420
1421 err = rtnetlink_send(skb, net, portid, RTNLGRP_TC,
1422 n->nlmsg_flags & NLM_F_ECHO);
1423 if (err > 0)
1424 err = 0;
1425 return err;
1426 }
1427
1428 static int tcf_action_add(struct net *net, struct nlattr *nla,
1429 struct nlmsghdr *n, u32 portid, int ovr,
1430 struct netlink_ext_ack *extack)
1431 {
1432 size_t attr_size = 0;
1433 int loop, ret;
1434 struct tc_action *actions[TCA_ACT_MAX_PRIO] = {};
1435
1436 for (loop = 0; loop < 10; loop++) {
1437 ret = tcf_action_init(net, NULL, nla, NULL, NULL, ovr, 0,
1438 actions, &attr_size, true, extack);
1439 if (ret != -EAGAIN)
1440 break;
1441 }
1442
1443 if (ret < 0)
1444 return ret;
1445 ret = tcf_add_notify(net, n, actions, portid, attr_size, extack);
1446 if (ovr)
1447 tcf_action_put_many(actions);
1448
1449 return ret;
1450 }
1451
1452 static const struct nla_policy tcaa_policy[TCA_ROOT_MAX + 1] = {
1453 [TCA_ROOT_FLAGS] = NLA_POLICY_BITFIELD32(TCA_FLAG_LARGE_DUMP_ON),
1454 [TCA_ROOT_TIME_DELTA] = { .type = NLA_U32 },
1455 };
1456
1457 static int tc_ctl_action(struct sk_buff *skb, struct nlmsghdr *n,
1458 struct netlink_ext_ack *extack)
1459 {
1460 struct net *net = sock_net(skb->sk);
1461 struct nlattr *tca[TCA_ROOT_MAX + 1];
1462 u32 portid = skb ? NETLINK_CB(skb).portid : 0;
1463 int ret = 0, ovr = 0;
1464
1465 if ((n->nlmsg_type != RTM_GETACTION) &&
1466 !netlink_capable(skb, CAP_NET_ADMIN))
1467 return -EPERM;
1468
1469 ret = nlmsg_parse_deprecated(n, sizeof(struct tcamsg), tca,
1470 TCA_ROOT_MAX, NULL, extack);
1471 if (ret < 0)
1472 return ret;
1473
1474 if (tca[TCA_ACT_TAB] == NULL) {
1475 NL_SET_ERR_MSG(extack, "Netlink action attributes missing");
1476 return -EINVAL;
1477 }
1478
1479 /* n->nlmsg_flags & NLM_F_CREATE */
1480 switch (n->nlmsg_type) {
1481 case RTM_NEWACTION:
1482 /* we are going to assume all other flags
1483 * imply create only if it doesn't exist
1484 * Note that CREATE | EXCL implies that
1485 * but since we want avoid ambiguity (eg when flags
1486 * is zero) then just set this
1487 */
1488 if (n->nlmsg_flags & NLM_F_REPLACE)
1489 ovr = 1;
1490 ret = tcf_action_add(net, tca[TCA_ACT_TAB], n, portid, ovr,
1491 extack);
1492 break;
1493 case RTM_DELACTION:
1494 ret = tca_action_gd(net, tca[TCA_ACT_TAB], n,
1495 portid, RTM_DELACTION, extack);
1496 break;
1497 case RTM_GETACTION:
1498 ret = tca_action_gd(net, tca[TCA_ACT_TAB], n,
1499 portid, RTM_GETACTION, extack);
1500 break;
1501 default:
1502 BUG();
1503 }
1504
1505 return ret;
1506 }
1507
1508 static struct nlattr *find_dump_kind(struct nlattr **nla)
1509 {
1510 struct nlattr *tb1, *tb2[TCA_ACT_MAX + 1];
1511 struct nlattr *tb[TCA_ACT_MAX_PRIO + 1];
1512 struct nlattr *kind;
1513
1514 tb1 = nla[TCA_ACT_TAB];
1515 if (tb1 == NULL)
1516 return NULL;
1517
1518 if (nla_parse_deprecated(tb, TCA_ACT_MAX_PRIO, nla_data(tb1), NLMSG_ALIGN(nla_len(tb1)), NULL, NULL) < 0)
1519 return NULL;
1520
1521 if (tb[1] == NULL)
1522 return NULL;
1523 if (nla_parse_nested_deprecated(tb2, TCA_ACT_MAX, tb[1], tcf_action_policy, NULL) < 0)
1524 return NULL;
1525 kind = tb2[TCA_ACT_KIND];
1526
1527 return kind;
1528 }
1529
1530 static int tc_dump_action(struct sk_buff *skb, struct netlink_callback *cb)
1531 {
1532 struct net *net = sock_net(skb->sk);
1533 struct nlmsghdr *nlh;
1534 unsigned char *b = skb_tail_pointer(skb);
1535 struct nlattr *nest;
1536 struct tc_action_ops *a_o;
1537 int ret = 0;
1538 struct tcamsg *t = (struct tcamsg *) nlmsg_data(cb->nlh);
1539 struct nlattr *tb[TCA_ROOT_MAX + 1];
1540 struct nlattr *count_attr = NULL;
1541 unsigned long jiffy_since = 0;
1542 struct nlattr *kind = NULL;
1543 struct nla_bitfield32 bf;
1544 u32 msecs_since = 0;
1545 u32 act_count = 0;
1546
1547 ret = nlmsg_parse_deprecated(cb->nlh, sizeof(struct tcamsg), tb,
1548 TCA_ROOT_MAX, tcaa_policy, cb->extack);
1549 if (ret < 0)
1550 return ret;
1551
1552 kind = find_dump_kind(tb);
1553 if (kind == NULL) {
1554 pr_info("tc_dump_action: action bad kind\n");
1555 return 0;
1556 }
1557
1558 a_o = tc_lookup_action(kind);
1559 if (a_o == NULL)
1560 return 0;
1561
1562 cb->args[2] = 0;
1563 if (tb[TCA_ROOT_FLAGS]) {
1564 bf = nla_get_bitfield32(tb[TCA_ROOT_FLAGS]);
1565 cb->args[2] = bf.value;
1566 }
1567
1568 if (tb[TCA_ROOT_TIME_DELTA]) {
1569 msecs_since = nla_get_u32(tb[TCA_ROOT_TIME_DELTA]);
1570 }
1571
1572 nlh = nlmsg_put(skb, NETLINK_CB(cb->skb).portid, cb->nlh->nlmsg_seq,
1573 cb->nlh->nlmsg_type, sizeof(*t), 0);
1574 if (!nlh)
1575 goto out_module_put;
1576
1577 if (msecs_since)
1578 jiffy_since = jiffies - msecs_to_jiffies(msecs_since);
1579
1580 t = nlmsg_data(nlh);
1581 t->tca_family = AF_UNSPEC;
1582 t->tca__pad1 = 0;
1583 t->tca__pad2 = 0;
1584 cb->args[3] = jiffy_since;
1585 count_attr = nla_reserve(skb, TCA_ROOT_COUNT, sizeof(u32));
1586 if (!count_attr)
1587 goto out_module_put;
1588
1589 nest = nla_nest_start_noflag(skb, TCA_ACT_TAB);
1590 if (nest == NULL)
1591 goto out_module_put;
1592
1593 ret = a_o->walk(net, skb, cb, RTM_GETACTION, a_o, NULL);
1594 if (ret < 0)
1595 goto out_module_put;
1596
1597 if (ret > 0) {
1598 nla_nest_end(skb, nest);
1599 ret = skb->len;
1600 act_count = cb->args[1];
1601 memcpy(nla_data(count_attr), &act_count, sizeof(u32));
1602 cb->args[1] = 0;
1603 } else
1604 nlmsg_trim(skb, b);
1605
1606 nlh->nlmsg_len = skb_tail_pointer(skb) - b;
1607 if (NETLINK_CB(cb->skb).portid && ret)
1608 nlh->nlmsg_flags |= NLM_F_MULTI;
1609 module_put(a_o->owner);
1610 return skb->len;
1611
1612 out_module_put:
1613 module_put(a_o->owner);
1614 nlmsg_trim(skb, b);
1615 return skb->len;
1616 }
1617
1618 static int __init tc_action_init(void)
1619 {
1620 rtnl_register(PF_UNSPEC, RTM_NEWACTION, tc_ctl_action, NULL, 0);
1621 rtnl_register(PF_UNSPEC, RTM_DELACTION, tc_ctl_action, NULL, 0);
1622 rtnl_register(PF_UNSPEC, RTM_GETACTION, tc_ctl_action, tc_dump_action,
1623 0);
1624
1625 return 0;
1626 }
1627
1628 subsys_initcall(tc_action_init);
Linux with added FPC-III support