Eric Lee / smarc-fsl-linux-kernel

Blame view

net/sched/act_connmark.c 5.86 KB

22a5dc0e5 Felix Fietkau net: sched: Intro...	1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29	/* * net/sched/act_connmark.c netfilter connmark retriever action * skb mark is over-written * * Copyright (c) 2011 Felix Fietkau <nbd@openwrt.org> * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2 of the License, or * (at your option) any later version. */ #include <linux/module.h> #include <linux/init.h> #include <linux/kernel.h> #include <linux/skbuff.h> #include <linux/rtnetlink.h> #include <linux/pkt_cls.h> #include <linux/ip.h> #include <linux/ipv6.h> #include <net/netlink.h> #include <net/pkt_sched.h> #include <net/act_api.h> #include <uapi/linux/tc_act/tc_connmark.h> #include <net/tc_act/tc_connmark.h> #include <net/netfilter/nf_conntrack.h> #include <net/netfilter/nf_conntrack_core.h> #include <net/netfilter/nf_conntrack_zones.h>
c7d03a00b Alexey Dobriyan netns: make struc...	30	static unsigned int connmark_net_id;
a85a970af WANG Cong net_sched: move t...	31	static struct tc_action_ops act_connmark_ops;
ddf97ccdd WANG Cong net_sched: add ne...	32
22a5dc0e5 Felix Fietkau net: sched: Intro...	33 34 35 36 37 38	static int tcf_connmark(struct sk_buff skb, const struct tc_action a, struct tcf_result res) { const struct nf_conntrack_tuple_hash thash; struct nf_conntrack_tuple tuple; enum ip_conntrack_info ctinfo;
a85a970af WANG Cong net_sched: move t...	39	struct tcf_connmark_info *ca = to_connmark(a);
308ac9143 Daniel Borkmann netfilter: nf_con...	40	struct nf_conntrack_zone zone;
22a5dc0e5 Felix Fietkau net: sched: Intro...	41 42 43 44	struct nf_conn *c; int proto; spin_lock(&ca->tcf_lock);
9c4a4e488 Jamal Hadi Salim net sched: action...	45	tcf_lastuse_update(&ca->tcf_tm);
22a5dc0e5 Felix Fietkau net: sched: Intro...	46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66	bstats_update(&ca->tcf_bstats, skb); if (skb->protocol == htons(ETH_P_IP)) { if (skb->len < sizeof(struct iphdr)) goto out; proto = NFPROTO_IPV4; } else if (skb->protocol == htons(ETH_P_IPV6)) { if (skb->len < sizeof(struct ipv6hdr)) goto out; proto = NFPROTO_IPV6; } else { goto out; } c = nf_ct_get(skb, &ctinfo); if (c) { skb->mark = c->mark; /* using overlimits stats to count how many packets marked */ ca->tcf_qstats.overlimits++;
22a5dc0e5 Felix Fietkau net: sched: Intro...	67 68 69 70	goto out; } if (!nf_ct_get_tuplepr(skb, skb_network_offset(skb),
a31f1adc0 Eric W. Biederman netfilter: nf_con...	71	proto, ca->net, &tuple))
22a5dc0e5 Felix Fietkau net: sched: Intro...	72	goto out;
308ac9143 Daniel Borkmann netfilter: nf_con...	73	zone.id = ca->zone;
deedb5903 Daniel Borkmann netfilter: nf_con...	74	zone.dir = NF_CT_DEFAULT_ZONE_DIR;
308ac9143 Daniel Borkmann netfilter: nf_con...	75
a4ffe319a Eric W. Biederman act_connmark: Rem...	76	thash = nf_conntrack_find_get(ca->net, &zone, &tuple);
22a5dc0e5 Felix Fietkau net: sched: Intro...	77 78 79 80 81 82 83 84 85 86	if (!thash) goto out; c = nf_ct_tuplehash_to_ctrack(thash); /* using overlimits stats to count how many packets marked */ ca->tcf_qstats.overlimits++; skb->mark = c->mark; nf_ct_put(c); out:
22a5dc0e5 Felix Fietkau net: sched: Intro...	87 88 89 90 91 92 93 94 95	spin_unlock(&ca->tcf_lock); return ca->tcf_action; } static const struct nla_policy connmark_policy[TCA_CONNMARK_MAX + 1] = { [TCA_CONNMARK_PARMS] = { .len = sizeof(struct tc_connmark) }, }; static int tcf_connmark_init(struct net net, struct nlattr nla,
a85a970af WANG Cong net_sched: move t...	96	struct nlattr est, struct tc_action *a,
22a5dc0e5 Felix Fietkau net: sched: Intro...	97 98	int ovr, int bind) {
ddf97ccdd WANG Cong net_sched: add ne...	99	struct tc_action_net *tn = net_generic(net, connmark_net_id);
22a5dc0e5 Felix Fietkau net: sched: Intro...	100 101 102 103 104 105 106	struct nlattr tb[TCA_CONNMARK_MAX + 1]; struct tcf_connmark_info ci; struct tc_connmark *parm; int ret = 0; if (!nla) return -EINVAL;
fceb6435e Johannes Berg netlink: pass ext...	107 108	ret = nla_parse_nested(tb, TCA_CONNMARK_MAX, nla, connmark_policy, NULL);
22a5dc0e5 Felix Fietkau net: sched: Intro...	109 110	if (ret < 0) return ret;
52491c760 Etienne Noss act_connmark: avo...	111 112	if (!tb[TCA_CONNMARK_PARMS]) return -EINVAL;
22a5dc0e5 Felix Fietkau net: sched: Intro...	113	parm = nla_data(tb[TCA_CONNMARK_PARMS]);
65a206c01 Chris Mi net/sched: Change...	114 115 116	if (!tcf_idr_check(tn, parm->index, a, bind)) { ret = tcf_idr_create(tn, parm->index, est, a, &act_connmark_ops, bind, false);
22a5dc0e5 Felix Fietkau net: sched: Intro...	117 118	if (ret) return ret;
a85a970af WANG Cong net_sched: move t...	119	ci = to_connmark(*a);
22a5dc0e5 Felix Fietkau net: sched: Intro...	120	ci->tcf_action = parm->action;
a4ffe319a Eric W. Biederman act_connmark: Rem...	121	ci->net = net;
22a5dc0e5 Felix Fietkau net: sched: Intro...	122	ci->zone = parm->zone;
65a206c01 Chris Mi net/sched: Change...	123	tcf_idr_insert(tn, *a);
22a5dc0e5 Felix Fietkau net: sched: Intro...	124 125	ret = ACT_P_CREATED; } else {
a85a970af WANG Cong net_sched: move t...	126	ci = to_connmark(*a);
22a5dc0e5 Felix Fietkau net: sched: Intro...	127 128	if (bind) return 0;
65a206c01 Chris Mi net/sched: Change...	129	tcf_idr_release(*a, bind);
22a5dc0e5 Felix Fietkau net: sched: Intro...	130 131 132 133 134 135 136 137 138 139 140 141 142 143	if (!ovr) return -EEXIST; /* replacing action and zone / ci->tcf_action = parm->action; ci->zone = parm->zone; } return ret; } static inline int tcf_connmark_dump(struct sk_buff skb, struct tc_action a, int bind, int ref) { unsigned char b = skb_tail_pointer(skb);
a85a970af WANG Cong net_sched: move t...	144	struct tcf_connmark_info *ci = to_connmark(a);
22a5dc0e5 Felix Fietkau net: sched: Intro...	145 146 147 148 149 150 151 152 153 154 155 156	struct tc_connmark opt = { .index = ci->tcf_index, .refcnt = ci->tcf_refcnt - ref, .bindcnt = ci->tcf_bindcnt - bind, .action = ci->tcf_action, .zone = ci->zone, }; struct tcf_t t; if (nla_put(skb, TCA_CONNMARK_PARMS, sizeof(opt), &opt)) goto nla_put_failure;
48d8ee169 Jamal Hadi Salim net sched actions...	157	tcf_tm_dump(&t, &ci->tcf_tm);
9854518ea Nicolas Dichtel sched: align nlat...	158 159	if (nla_put_64bit(skb, TCA_CONNMARK_TM, sizeof(t), &t, TCA_CONNMARK_PAD))
22a5dc0e5 Felix Fietkau net: sched: Intro...	160 161 162 163 164 165 166	goto nla_put_failure; return skb->len; nla_put_failure: nlmsg_trim(skb, b); return -1; }
ddf97ccdd WANG Cong net_sched: add ne...	167 168	static int tcf_connmark_walker(struct net net, struct sk_buff skb, struct netlink_callback *cb, int type,
a85a970af WANG Cong net_sched: move t...	169	const struct tc_action_ops *ops)
ddf97ccdd WANG Cong net_sched: add ne...	170 171	{ struct tc_action_net *tn = net_generic(net, connmark_net_id);
a85a970af WANG Cong net_sched: move t...	172	return tcf_generic_walker(tn, skb, cb, type, ops);
ddf97ccdd WANG Cong net_sched: add ne...	173	}
a85a970af WANG Cong net_sched: move t...	174	static int tcf_connmark_search(struct net net, struct tc_action *a, u32 index)
ddf97ccdd WANG Cong net_sched: add ne...	175 176	{ struct tc_action_net *tn = net_generic(net, connmark_net_id);
65a206c01 Chris Mi net/sched: Change...	177	return tcf_idr_search(tn, a, index);
ddf97ccdd WANG Cong net_sched: add ne...	178	}
22a5dc0e5 Felix Fietkau net: sched: Intro...	179 180 181 182 183 184 185	static struct tc_action_ops act_connmark_ops = { .kind = "connmark", .type = TCA_ACT_CONNMARK, .owner = THIS_MODULE, .act = tcf_connmark, .dump = tcf_connmark_dump, .init = tcf_connmark_init,
ddf97ccdd WANG Cong net_sched: add ne...	186 187	.walk = tcf_connmark_walker, .lookup = tcf_connmark_search,
a85a970af WANG Cong net_sched: move t...	188	.size = sizeof(struct tcf_connmark_info),
ddf97ccdd WANG Cong net_sched: add ne...	189 190 191 192 193	}; static __net_init int connmark_init_net(struct net net) { struct tc_action_net tn = net_generic(net, connmark_net_id);
c7e460ce5 Cong Wang Revert "net_sched...	194	return tc_action_net_init(tn, &act_connmark_ops);
ddf97ccdd WANG Cong net_sched: add ne...	195 196 197 198 199 200 201 202 203 204 205 206 207 208	} static void __net_exit connmark_exit_net(struct net net) { struct tc_action_net tn = net_generic(net, connmark_net_id); tc_action_net_exit(tn); } static struct pernet_operations connmark_net_ops = { .init = connmark_init_net, .exit = connmark_exit_net, .id = &connmark_net_id, .size = sizeof(struct tc_action_net),
22a5dc0e5 Felix Fietkau net: sched: Intro...	209 210 211 212	}; static int __init connmark_init_module(void) {
ddf97ccdd WANG Cong net_sched: add ne...	213	return tcf_register_action(&act_connmark_ops, &connmark_net_ops);
22a5dc0e5 Felix Fietkau net: sched: Intro...	214 215 216 217	} static void __exit connmark_cleanup_module(void) {
ddf97ccdd WANG Cong net_sched: add ne...	218	tcf_unregister_action(&act_connmark_ops, &connmark_net_ops);
22a5dc0e5 Felix Fietkau net: sched: Intro...	219 220 221 222 223 224 225	} module_init(connmark_init_module); module_exit(connmark_cleanup_module); MODULE_AUTHOR("Felix Fietkau <nbd@openwrt.org>"); MODULE_DESCRIPTION("Connection tracking mark restoring"); MODULE_LICENSE("GPL");