1 /* SPDX-License-Identifier: GPL-2.0 */
2 #ifndef __NET_FIB_RULES_H
3 #define __NET_FIB_RULES_H
5 #include <linux/types.h>
6 #include <linux/slab.h>
7 #include <linux/netdevice.h>
8 #include <linux/fib_rules.h>
9 #include <linux/refcount.h>
11 #include <net/rtnetlink.h>
12 #include <net/fib_notifier.h>
14 struct fib_kuid_range
{
20 struct list_head list
;
33 struct fib_rule __rcu
*ctarget
;
39 int suppress_prefixlen
;
40 char iifname
[IFNAMSIZ
];
41 char oifname
[IFNAMSIZ
];
42 struct fib_kuid_range uid_range
;
43 struct fib_rule_port_range sport_range
;
44 struct fib_rule_port_range dport_range
;
48 struct fib_lookup_arg
{
50 const void *lookup_data
;
52 struct fib_rule
*rule
;
55 #define FIB_LOOKUP_NOREF 1
56 #define FIB_LOOKUP_IGNORE_LINKSTATE 2
59 struct fib_rules_ops
{
61 struct list_head list
;
66 unsigned int fib_rules_seq
;
68 int (*action
)(struct fib_rule
*,
70 struct fib_lookup_arg
*);
71 bool (*suppress
)(struct fib_rule
*,
72 struct fib_lookup_arg
*);
73 int (*match
)(struct fib_rule
*,
75 int (*configure
)(struct fib_rule
*,
77 struct fib_rule_hdr
*,
79 struct netlink_ext_ack
*);
80 int (*delete)(struct fib_rule
*);
81 int (*compare
)(struct fib_rule
*,
82 struct fib_rule_hdr
*,
84 int (*fill
)(struct fib_rule
*, struct sk_buff
*,
85 struct fib_rule_hdr
*);
86 size_t (*nlmsg_payload
)(struct fib_rule
*);
88 /* Called after modifications to the rules set, must flush
89 * the route cache if one exists. */
90 void (*flush_cache
)(struct fib_rules_ops
*ops
);
93 const struct nla_policy
*policy
;
94 struct list_head rules_list
;
100 struct fib_rule_notifier_info
{
101 struct fib_notifier_info info
; /* must be first */
102 struct fib_rule
*rule
;
105 #define FRA_GENERIC_POLICY \
106 [FRA_UNSPEC] = { .strict_start_type = FRA_DPORT_RANGE + 1 }, \
107 [FRA_IIFNAME] = { .type = NLA_STRING, .len = IFNAMSIZ - 1 }, \
108 [FRA_OIFNAME] = { .type = NLA_STRING, .len = IFNAMSIZ - 1 }, \
109 [FRA_PRIORITY] = { .type = NLA_U32 }, \
110 [FRA_FWMARK] = { .type = NLA_U32 }, \
111 [FRA_FWMASK] = { .type = NLA_U32 }, \
112 [FRA_TABLE] = { .type = NLA_U32 }, \
113 [FRA_SUPPRESS_PREFIXLEN] = { .type = NLA_U32 }, \
114 [FRA_SUPPRESS_IFGROUP] = { .type = NLA_U32 }, \
115 [FRA_GOTO] = { .type = NLA_U32 }, \
116 [FRA_L3MDEV] = { .type = NLA_U8 }, \
117 [FRA_UID_RANGE] = { .len = sizeof(struct fib_rule_uid_range) }, \
118 [FRA_PROTOCOL] = { .type = NLA_U8 }, \
119 [FRA_IP_PROTO] = { .type = NLA_U8 }, \
120 [FRA_SPORT_RANGE] = { .len = sizeof(struct fib_rule_port_range) }, \
121 [FRA_DPORT_RANGE] = { .len = sizeof(struct fib_rule_port_range) }
124 static inline void fib_rule_get(struct fib_rule
*rule
)
126 refcount_inc(&rule
->refcnt
);
129 static inline void fib_rule_put(struct fib_rule
*rule
)
131 if (refcount_dec_and_test(&rule
->refcnt
))
132 kfree_rcu(rule
, rcu
);
135 #ifdef CONFIG_NET_L3_MASTER_DEV
136 static inline u32
fib_rule_get_table(struct fib_rule
*rule
,
137 struct fib_lookup_arg
*arg
)
139 return rule
->l3mdev
? arg
->table
: rule
->table
;
142 static inline u32
fib_rule_get_table(struct fib_rule
*rule
,
143 struct fib_lookup_arg
*arg
)
149 static inline u32
frh_get_table(struct fib_rule_hdr
*frh
, struct nlattr
**nla
)
152 return nla_get_u32(nla
[FRA_TABLE
]);
156 static inline bool fib_rule_port_range_set(const struct fib_rule_port_range
*range
)
158 return range
->start
!= 0 && range
->end
!= 0;
161 static inline bool fib_rule_port_inrange(const struct fib_rule_port_range
*a
,
164 return ntohs(port
) >= a
->start
&&
165 ntohs(port
) <= a
->end
;
168 static inline bool fib_rule_port_range_valid(const struct fib_rule_port_range
*a
)
170 return a
->start
!= 0 && a
->end
!= 0 && a
->end
< 0xffff &&
174 static inline bool fib_rule_port_range_compare(struct fib_rule_port_range
*a
,
175 struct fib_rule_port_range
*b
)
177 return a
->start
== b
->start
&&
181 static inline bool fib_rule_requires_fldissect(struct fib_rule
*rule
)
183 return rule
->iifindex
!= LOOPBACK_IFINDEX
&& (rule
->ip_proto
||
184 fib_rule_port_range_set(&rule
->sport_range
) ||
185 fib_rule_port_range_set(&rule
->dport_range
));
188 struct fib_rules_ops
*fib_rules_register(const struct fib_rules_ops
*,
190 void fib_rules_unregister(struct fib_rules_ops
*);
192 int fib_rules_lookup(struct fib_rules_ops
*, struct flowi
*, int flags
,
193 struct fib_lookup_arg
*);
194 int fib_default_rule_add(struct fib_rules_ops
*, u32 pref
, u32 table
,
196 bool fib_rule_matchall(const struct fib_rule
*rule
);
197 int fib_rules_dump(struct net
*net
, struct notifier_block
*nb
, int family
,
198 struct netlink_ext_ack
*extack
);
199 unsigned int fib_rules_seq_read(struct net
*net
, int family
);
201 int fib_nl_newrule(struct sk_buff
*skb
, struct nlmsghdr
*nlh
,
202 struct netlink_ext_ack
*extack
);
203 int fib_nl_delrule(struct sk_buff
*skb
, struct nlmsghdr
*nlh
,
204 struct netlink_ext_ack
*extack
);