[mirror_ubuntu-bionic-kernel.git] / include / net / flow_dissector.h

/* SPDX-License-Identifier: GPL-2.0 */
#ifndef _NET_FLOW_DISSECTOR_H
#define _NET_FLOW_DISSECTOR_H

#include <linux/types.h>
#include <linux/in6.h>
#include <linux/siphash.h>
#include <uapi/linux/if_ether.h>

/**
 * struct flow_dissector_key_control:
 * @thoff: Transport header offset
 */
struct flow_dissector_key_control {
	u16	thoff;
	u16	addr_type;
	u32	flags;
};

#define FLOW_DIS_IS_FRAGMENT	BIT(0)
#define FLOW_DIS_FIRST_FRAG	BIT(1)
#define FLOW_DIS_ENCAPSULATION	BIT(2)

enum flow_dissect_ret {
	FLOW_DISSECT_RET_OUT_GOOD,
	FLOW_DISSECT_RET_OUT_BAD,
	FLOW_DISSECT_RET_PROTO_AGAIN,
	FLOW_DISSECT_RET_IPPROTO_AGAIN,
	FLOW_DISSECT_RET_CONTINUE,
};

/**
 * struct flow_dissector_key_basic:
 * @thoff: Transport header offset
 * @n_proto: Network header protocol (eg. IPv4/IPv6)
 * @ip_proto: Transport header protocol (eg. TCP/UDP)
 */
struct flow_dissector_key_basic {
	__be16	n_proto;
	u8	ip_proto;
	u8	padding;
};

struct flow_dissector_key_tags {
	u32	flow_label;
};

struct flow_dissector_key_vlan {
	u16	vlan_id:12,
		vlan_priority:3;
	u16	padding;
};

struct flow_dissector_key_mpls {
	u32	mpls_ttl:8,
		mpls_bos:1,
		mpls_tc:3,
		mpls_label:20;
};

struct flow_dissector_key_keyid {
	__be32	keyid;
};

/**
 * struct flow_dissector_key_ipv4_addrs:
 * @src: source ip address
 * @dst: destination ip address
 */
struct flow_dissector_key_ipv4_addrs {
	/* (src,dst) must be grouped, in the same way than in IP header */
	__be32 src;
	__be32 dst;
};

/**
 * struct flow_dissector_key_ipv6_addrs:
 * @src: source ip address
 * @dst: destination ip address
 */
struct flow_dissector_key_ipv6_addrs {
	/* (src,dst) must be grouped, in the same way than in IP header */
	struct in6_addr src;
	struct in6_addr dst;
};

/**
 * struct flow_dissector_key_tipc:
 * @key: source node address combined with selector
 */
struct flow_dissector_key_tipc {
	__be32 key;
};

/**
 * struct flow_dissector_key_addrs:
 * @v4addrs: IPv4 addresses
 * @v6addrs: IPv6 addresses
 */
struct flow_dissector_key_addrs {
	union {
		struct flow_dissector_key_ipv4_addrs v4addrs;
		struct flow_dissector_key_ipv6_addrs v6addrs;
		struct flow_dissector_key_tipc tipckey;
	};
};

/**
 * flow_dissector_key_arp:
 *	@ports: Operation, source and target addresses for an ARP header
 *              for Ethernet hardware addresses and IPv4 protocol addresses
 *		sip: Sender IP address
 *		tip: Target IP address
 *		op:  Operation
 *		sha: Sender hardware address
 *		tpa: Target hardware address
 */
struct flow_dissector_key_arp {
	__u32 sip;
	__u32 tip;
	__u8 op;
	unsigned char sha[ETH_ALEN];
	unsigned char tha[ETH_ALEN];
};

/**
 * flow_dissector_key_tp_ports:
 *	@ports: port numbers of Transport header
 *		src: source port number
 *		dst: destination port number
 */
struct flow_dissector_key_ports {
	union {
		__be32 ports;
		struct {
			__be16 src;
			__be16 dst;
		};
	};
};

/**
 * flow_dissector_key_icmp:
 *	@ports: type and code of ICMP header
 *		icmp: ICMP type (high) and code (low)
 *		type: ICMP type
 *		code: ICMP code
 */
struct flow_dissector_key_icmp {
	union {
		__be16 icmp;
		struct {
			u8 type;
			u8 code;
		};
	};
};

/**
 * struct flow_dissector_key_eth_addrs:
 * @src: source Ethernet address
 * @dst: destination Ethernet address
 */
struct flow_dissector_key_eth_addrs {
	/* (dst,src) must be grouped, in the same way than in ETH header */
	unsigned char dst[ETH_ALEN];
	unsigned char src[ETH_ALEN];
};

/**
 * struct flow_dissector_key_tcp:
 * @flags: flags
 */
struct flow_dissector_key_tcp {
	__be16 flags;
};

/**
 * struct flow_dissector_key_ip:
 * @tos: tos
 * @ttl: ttl
 */
struct flow_dissector_key_ip {
	__u8	tos;
	__u8	ttl;
};

enum flow_dissector_key_id {
	FLOW_DISSECTOR_KEY_CONTROL, /* struct flow_dissector_key_control */
	FLOW_DISSECTOR_KEY_BASIC, /* struct flow_dissector_key_basic */
	FLOW_DISSECTOR_KEY_IPV4_ADDRS, /* struct flow_dissector_key_ipv4_addrs */
	FLOW_DISSECTOR_KEY_IPV6_ADDRS, /* struct flow_dissector_key_ipv6_addrs */
	FLOW_DISSECTOR_KEY_PORTS, /* struct flow_dissector_key_ports */
	FLOW_DISSECTOR_KEY_ICMP, /* struct flow_dissector_key_icmp */
	FLOW_DISSECTOR_KEY_ETH_ADDRS, /* struct flow_dissector_key_eth_addrs */
	FLOW_DISSECTOR_KEY_TIPC, /* struct flow_dissector_key_tipc */
	FLOW_DISSECTOR_KEY_ARP, /* struct flow_dissector_key_arp */
	FLOW_DISSECTOR_KEY_VLAN, /* struct flow_dissector_key_flow_vlan */
	FLOW_DISSECTOR_KEY_FLOW_LABEL, /* struct flow_dissector_key_flow_tags */
	FLOW_DISSECTOR_KEY_GRE_KEYID, /* struct flow_dissector_key_keyid */
	FLOW_DISSECTOR_KEY_MPLS_ENTROPY, /* struct flow_dissector_key_keyid */
	FLOW_DISSECTOR_KEY_ENC_KEYID, /* struct flow_dissector_key_keyid */
	FLOW_DISSECTOR_KEY_ENC_IPV4_ADDRS, /* struct flow_dissector_key_ipv4_addrs */
	FLOW_DISSECTOR_KEY_ENC_IPV6_ADDRS, /* struct flow_dissector_key_ipv6_addrs */
	FLOW_DISSECTOR_KEY_ENC_CONTROL, /* struct flow_dissector_key_control */
	FLOW_DISSECTOR_KEY_ENC_PORTS, /* struct flow_dissector_key_ports */
	FLOW_DISSECTOR_KEY_MPLS, /* struct flow_dissector_key_mpls */
	FLOW_DISSECTOR_KEY_TCP, /* struct flow_dissector_key_tcp */
	FLOW_DISSECTOR_KEY_IP, /* struct flow_dissector_key_ip */

	FLOW_DISSECTOR_KEY_MAX,
};

#define FLOW_DISSECTOR_F_PARSE_1ST_FRAG		BIT(0)
#define FLOW_DISSECTOR_F_STOP_AT_L3		BIT(1)
#define FLOW_DISSECTOR_F_STOP_AT_FLOW_LABEL	BIT(2)
#define FLOW_DISSECTOR_F_STOP_AT_ENCAP		BIT(3)

struct flow_dissector_key {
	enum flow_dissector_key_id key_id;
	size_t offset; /* offset of struct flow_dissector_key_*
			  in target the struct */
};

struct flow_dissector {
	unsigned int used_keys; /* each bit repesents presence of one key id */
	unsigned short int offset[FLOW_DISSECTOR_KEY_MAX];
};

struct flow_keys {
	struct flow_dissector_key_control control;
#define FLOW_KEYS_HASH_START_FIELD basic
	struct flow_dissector_key_basic basic __aligned(SIPHASH_ALIGNMENT);
	struct flow_dissector_key_tags tags;
	struct flow_dissector_key_vlan vlan;
	struct flow_dissector_key_keyid keyid;
	struct flow_dissector_key_ports ports;
	struct flow_dissector_key_addrs addrs;
};

#define FLOW_KEYS_HASH_OFFSET		\
	offsetof(struct flow_keys, FLOW_KEYS_HASH_START_FIELD)

__be32 flow_get_u32_src(const struct flow_keys *flow);
__be32 flow_get_u32_dst(const struct flow_keys *flow);

extern struct flow_dissector flow_keys_dissector;
extern struct flow_dissector flow_keys_buf_dissector;

/* struct flow_keys_digest:
 *
 * This structure is used to hold a digest of the full flow keys. This is a
 * larger "hash" of a flow to allow definitively matching specific flows where
 * the 32 bit skb->hash is not large enough. The size is limited to 16 bytes so
 * that it can by used in CB of skb (see sch_choke for an example).
 */
#define FLOW_KEYS_DIGEST_LEN	16
struct flow_keys_digest {
	u8	data[FLOW_KEYS_DIGEST_LEN];
};

void make_flow_keys_digest(struct flow_keys_digest *digest,
			   const struct flow_keys *flow);

static inline bool flow_keys_have_l4(const struct flow_keys *keys)
{
	return (keys->ports.ports || keys->tags.flow_label);
}

u32 flow_hash_from_keys(struct flow_keys *keys);

static inline bool dissector_uses_key(const struct flow_dissector *flow_dissector,
				      enum flow_dissector_key_id key_id)
{
	return flow_dissector->used_keys & (1 << key_id);
}

static inline void *skb_flow_dissector_target(struct flow_dissector *flow_dissector,
					      enum flow_dissector_key_id key_id,
					      void *target_container)
{
	return ((char *)target_container) + flow_dissector->offset[key_id];
}

#endif
Commit	Line	Data
b2441318	1	/* SPDX-License-Identifier: GPL-2.0 */
1bd758eb JP	2	#ifndef _NET_FLOW_DISSECTOR_H
1bd758eb JP	3	#define _NET_FLOW_DISSECTOR_H
0744dd00	4
c3f8eaeb	5	#include <linux/types.h>
b924933c	6	#include <linux/in6.h>
d0d453f2	7	#include <linux/siphash.h>
67a900cc	8	#include <uapi/linux/if_ether.h>
c3f8eaeb	9
42aecaa9 TH	10	/**
	11	* struct flow_dissector_key_control:
	12	* @thoff: Transport header offset
	13	*/
	14	struct flow_dissector_key_control {
	15	u16 thoff;
c3f83241	16	u16 addr_type;
4b36993d	17	u32 flags;
42aecaa9 TH	18	};
42aecaa9 TH	19
4b36993d DM	20	#define FLOW_DIS_IS_FRAGMENT BIT(0)
	21	#define FLOW_DIS_FIRST_FRAG BIT(1)
	22	#define FLOW_DIS_ENCAPSULATION BIT(2)
	23
3a1214e8 TH	24	enum flow_dissect_ret {
	25	FLOW_DISSECT_RET_OUT_GOOD,
	26	FLOW_DISSECT_RET_OUT_BAD,
	27	FLOW_DISSECT_RET_PROTO_AGAIN,
	28	FLOW_DISSECT_RET_IPPROTO_AGAIN,
	29	FLOW_DISSECT_RET_CONTINUE,
	30	};
	31
fbff949e JP	32	/**
	33	* struct flow_dissector_key_basic:
	34	* @thoff: Transport header offset
	35	* @n_proto: Network header protocol (eg. IPv4/IPv6)
	36	* @ip_proto: Transport header protocol (eg. TCP/UDP)
	37	*/
	38	struct flow_dissector_key_basic {
fbff949e JP	39	__be16 n_proto;
fbff949e JP	40	u8 ip_proto;
42aecaa9	41	u8 padding;
fbff949e JP	42	};
fbff949e JP	43
d34af823	44	struct flow_dissector_key_tags {
f6a66927 HHZ	45	u32 flow_label;
	46	};
	47
	48	struct flow_dissector_key_vlan {
	49	u16 vlan_id:12,
	50	vlan_priority:3;
	51	u16 padding;
d34af823 TH	52	};
d34af823 TH	53
029c1ecb BL	54	struct flow_dissector_key_mpls {
	55	u32 mpls_ttl:8,
	56	mpls_bos:1,
	57	mpls_tc:3,
	58	mpls_label:20;
	59	};
	60
1fdd512c TH	61	struct flow_dissector_key_keyid {
	62	__be32 keyid;
	63	};
	64
fbff949e	65	/**
c3f83241 TH	66	* struct flow_dissector_key_ipv4_addrs:
	67	* @src: source ip address
	68	* @dst: destination ip address
fbff949e	69	*/
c3f83241	70	struct flow_dissector_key_ipv4_addrs {
fbff949e JP	71	/* (src,dst) must be grouped, in the same way than in IP header */
	72	__be32 src;
	73	__be32 dst;
	74	};
	75
c3f83241 TH	76	/**
	77	* struct flow_dissector_key_ipv6_addrs:
	78	* @src: source ip address
	79	* @dst: destination ip address
	80	*/
	81	struct flow_dissector_key_ipv6_addrs {
	82	/* (src,dst) must be grouped, in the same way than in IP header */
	83	struct in6_addr src;
	84	struct in6_addr dst;
	85	};
	86
9f249089	87	/**
8d6e79d3 JM	88	* struct flow_dissector_key_tipc:
8d6e79d3 JM	89	* @key: source node address combined with selector
9f249089	90	*/
8d6e79d3 JM	91	struct flow_dissector_key_tipc {
8d6e79d3 JM	92	__be32 key;
9f249089 TH	93	};
9f249089 TH	94
c3f83241 TH	95	/**
	96	* struct flow_dissector_key_addrs:
	97	* @v4addrs: IPv4 addresses
	98	* @v6addrs: IPv6 addresses
	99	*/
	100	struct flow_dissector_key_addrs {
	101	union {
	102	struct flow_dissector_key_ipv4_addrs v4addrs;
	103	struct flow_dissector_key_ipv6_addrs v6addrs;
8d6e79d3	104	struct flow_dissector_key_tipc tipckey;
c3f83241 TH	105	};
	106	};
	107
55733350 SH	108	/**
	109	* flow_dissector_key_arp:
	110	* @ports: Operation, source and target addresses for an ARP header
	111	* for Ethernet hardware addresses and IPv4 protocol addresses
	112	* sip: Sender IP address
	113	* tip: Target IP address
	114	* op: Operation
	115	* sha: Sender hardware address
	116	* tpa: Target hardware address
	117	*/
	118	struct flow_dissector_key_arp {
	119	__u32 sip;
	120	__u32 tip;
	121	__u8 op;
	122	unsigned char sha[ETH_ALEN];
	123	unsigned char tha[ETH_ALEN];
	124	};
	125
fbff949e JP	126	/**
	127	* flow_dissector_key_tp_ports:
	128	* @ports: port numbers of Transport header
59346afe JP	129	* src: source port number
59346afe JP	130	* dst: destination port number
fbff949e JP	131	*/
	132	struct flow_dissector_key_ports {
	133	union {
	134	__be32 ports;
59346afe JP	135	struct {
	136	__be16 src;
	137	__be16 dst;
	138	};
fbff949e JP	139	};
	140	};
	141
972d3876 SH	142	/**
	143	* flow_dissector_key_icmp:
	144	* @ports: type and code of ICMP header
	145	* icmp: ICMP type (high) and code (low)
	146	* type: ICMP type
	147	* code: ICMP code
	148	*/
	149	struct flow_dissector_key_icmp {
	150	union {
	151	__be16 icmp;
	152	struct {
	153	u8 type;
	154	u8 code;
	155	};
	156	};
	157	};
b924933c	158
67a900cc JP	159	/**
	160	* struct flow_dissector_key_eth_addrs:
	161	* @src: source Ethernet address
	162	* @dst: destination Ethernet address
	163	*/
	164	struct flow_dissector_key_eth_addrs {
	165	/* (dst,src) must be grouped, in the same way than in ETH header */
	166	unsigned char dst[ETH_ALEN];
	167	unsigned char src[ETH_ALEN];
	168	};
	169
ac4bb5de JP	170	/**
	171	* struct flow_dissector_key_tcp:
	172	* @flags: flags
	173	*/
	174	struct flow_dissector_key_tcp {
	175	__be16 flags;
	176	};
	177
518d8a2e OG	178	/**
	179	* struct flow_dissector_key_ip:
	180	* @tos: tos
	181	* @ttl: ttl
	182	*/
	183	struct flow_dissector_key_ip {
	184	__u8 tos;
	185	__u8 ttl;
	186	};
	187
fbff949e	188	enum flow_dissector_key_id {
42aecaa9	189	FLOW_DISSECTOR_KEY_CONTROL, /* struct flow_dissector_key_control */
fbff949e	190	FLOW_DISSECTOR_KEY_BASIC, /* struct flow_dissector_key_basic */
c3f83241 TH	191	FLOW_DISSECTOR_KEY_IPV4_ADDRS, /* struct flow_dissector_key_ipv4_addrs */
c3f83241 TH	192	FLOW_DISSECTOR_KEY_IPV6_ADDRS, /* struct flow_dissector_key_ipv6_addrs */
fbff949e	193	FLOW_DISSECTOR_KEY_PORTS, /* struct flow_dissector_key_ports */
972d3876	194	FLOW_DISSECTOR_KEY_ICMP, /* struct flow_dissector_key_icmp */
67a900cc	195	FLOW_DISSECTOR_KEY_ETH_ADDRS, /* struct flow_dissector_key_eth_addrs */
8d6e79d3	196	FLOW_DISSECTOR_KEY_TIPC, /* struct flow_dissector_key_tipc */
55733350	197	FLOW_DISSECTOR_KEY_ARP, /* struct flow_dissector_key_arp */
f6a66927	198	FLOW_DISSECTOR_KEY_VLAN, /* struct flow_dissector_key_flow_vlan */
87ee9e52	199	FLOW_DISSECTOR_KEY_FLOW_LABEL, /* struct flow_dissector_key_flow_tags */
1fdd512c	200	FLOW_DISSECTOR_KEY_GRE_KEYID, /* struct flow_dissector_key_keyid */
b3baa0fb	201	FLOW_DISSECTOR_KEY_MPLS_ENTROPY, /* struct flow_dissector_key_keyid */
9ba6a9a9 HHZ	202	FLOW_DISSECTOR_KEY_ENC_KEYID, /* struct flow_dissector_key_keyid */
	203	FLOW_DISSECTOR_KEY_ENC_IPV4_ADDRS, /* struct flow_dissector_key_ipv4_addrs */
	204	FLOW_DISSECTOR_KEY_ENC_IPV6_ADDRS, /* struct flow_dissector_key_ipv6_addrs */
	205	FLOW_DISSECTOR_KEY_ENC_CONTROL, /* struct flow_dissector_key_control */
f4d997fd	206	FLOW_DISSECTOR_KEY_ENC_PORTS, /* struct flow_dissector_key_ports */
029c1ecb	207	FLOW_DISSECTOR_KEY_MPLS, /* struct flow_dissector_key_mpls */
ac4bb5de	208	FLOW_DISSECTOR_KEY_TCP, /* struct flow_dissector_key_tcp */
518d8a2e	209	FLOW_DISSECTOR_KEY_IP, /* struct flow_dissector_key_ip */
fbff949e JP	210
	211	FLOW_DISSECTOR_KEY_MAX,
	212	};
	213
807e165d	214	#define FLOW_DISSECTOR_F_PARSE_1ST_FRAG BIT(0)
8306b688	215	#define FLOW_DISSECTOR_F_STOP_AT_L3 BIT(1)
872b1abb	216	#define FLOW_DISSECTOR_F_STOP_AT_FLOW_LABEL BIT(2)
823b9693	217	#define FLOW_DISSECTOR_F_STOP_AT_ENCAP BIT(3)
807e165d	218
fbff949e JP	219	struct flow_dissector_key {
	220	enum flow_dissector_key_id key_id;
	221	size_t offset; /* offset of struct flow_dissector_key_*
	222	in target the struct */
	223	};
	224
	225	struct flow_dissector {
	226	unsigned int used_keys; /* each bit repesents presence of one key id */
	227	unsigned short int offset[FLOW_DISSECTOR_KEY_MAX];
	228	};
	229
06635a35	230	struct flow_keys {
42aecaa9 TH	231	struct flow_dissector_key_control control;
42aecaa9 TH	232	#define FLOW_KEYS_HASH_START_FIELD basic
d0d453f2	233	struct flow_dissector_key_basic basic __aligned(SIPHASH_ALIGNMENT);
d34af823	234	struct flow_dissector_key_tags tags;
f6a66927	235	struct flow_dissector_key_vlan vlan;
1fdd512c	236	struct flow_dissector_key_keyid keyid;
42aecaa9 TH	237	struct flow_dissector_key_ports ports;
42aecaa9 TH	238	struct flow_dissector_key_addrs addrs;
06635a35 JP	239	};
06635a35 JP	240
42aecaa9 TH	241	#define FLOW_KEYS_HASH_OFFSET \
	242	offsetof(struct flow_keys, FLOW_KEYS_HASH_START_FIELD)
	243
c3f83241 TH	244	__be32 flow_get_u32_src(const struct flow_keys *flow);
	245	__be32 flow_get_u32_dst(const struct flow_keys *flow);
	246
06635a35 JP	247	extern struct flow_dissector flow_keys_dissector;
	248	extern struct flow_dissector flow_keys_buf_dissector;
	249
2f59e1eb TH	250	/* struct flow_keys_digest:
	251	*
	252	* This structure is used to hold a digest of the full flow keys. This is a
	253	* larger "hash" of a flow to allow definitively matching specific flows where
	254	* the 32 bit skb->hash is not large enough. The size is limited to 16 bytes so
	255	* that it can by used in CB of skb (see sch_choke for an example).
	256	*/
	257	#define FLOW_KEYS_DIGEST_LEN 16
	258	struct flow_keys_digest {
	259	u8 data[FLOW_KEYS_DIGEST_LEN];
	260	};
	261
	262	void make_flow_keys_digest(struct flow_keys_digest *digest,
	263	const struct flow_keys *flow);
	264
66fdd05e	265	static inline bool flow_keys_have_l4(const struct flow_keys *keys)
bcc83839 TH	266	{
	267	return (keys->ports.ports \|\| keys->tags.flow_label);
	268	}
	269
c6cc1ca7 TH	270	u32 flow_hash_from_keys(struct flow_keys *keys);
c6cc1ca7 TH	271
8de2d793 AV	272	static inline bool dissector_uses_key(const struct flow_dissector *flow_dissector,
	273	enum flow_dissector_key_id key_id)
	274	{
	275	return flow_dissector->used_keys & (1 << key_id);
	276	}
	277
	278	static inline void skb_flow_dissector_target(struct flow_dissector flow_dissector,
	279	enum flow_dissector_key_id key_id,
	280	void *target_container)
	281	{
	282	return ((char *)target_container) + flow_dissector->offset[key_id];
	283	}
	284
0744dd00	285	#endif