[mirror_ubuntu-bionic-kernel.git] / include / net / pkt_cls.h

#ifndef __NET_PKT_CLS_H
#define __NET_PKT_CLS_H

#include <linux/pkt_cls.h>
#include <net/sch_generic.h>
#include <net/act_api.h>

/* Basic packet classifier frontend definitions. */

struct tcf_walker {
	int	stop;
	int	skip;
	int	count;
	int	(*fn)(struct tcf_proto *, unsigned long node, struct tcf_walker *);
};

int register_tcf_proto_ops(struct tcf_proto_ops *ops);
int unregister_tcf_proto_ops(struct tcf_proto_ops *ops);

#ifdef CONFIG_NET_CLS
void tcf_destroy_chain(struct tcf_proto __rcu **fl);
#else
static inline void tcf_destroy_chain(struct tcf_proto __rcu **fl)
{
}
#endif

static inline unsigned long
__cls_set_class(unsigned long *clp, unsigned long cl)
{
	return xchg(clp, cl);
}

static inline unsigned long
cls_set_class(struct tcf_proto *tp, unsigned long *clp, 
	unsigned long cl)
{
	unsigned long old_cl;
	
	tcf_tree_lock(tp);
	old_cl = __cls_set_class(clp, cl);
	tcf_tree_unlock(tp);
 
	return old_cl;
}

static inline void
tcf_bind_filter(struct tcf_proto *tp, struct tcf_result *r, unsigned long base)
{
	unsigned long cl;

	cl = tp->q->ops->cl_ops->bind_tcf(tp->q, base, r->classid);
	cl = cls_set_class(tp, &r->class, cl);
	if (cl)
		tp->q->ops->cl_ops->unbind_tcf(tp->q, cl);
}

static inline void
tcf_unbind_filter(struct tcf_proto *tp, struct tcf_result *r)
{
	unsigned long cl;

	if ((cl = __cls_set_class(&r->class, 0)) != 0)
		tp->q->ops->cl_ops->unbind_tcf(tp->q, cl);
}

struct tcf_exts {
#ifdef CONFIG_NET_CLS_ACT
	__u32	type; /* for backward compat(TCA_OLD_COMPAT) */
	int nr_actions;
	struct tc_action **actions;
#endif
	/* Map to export classifier specific extension TLV types to the
	 * generic extensions API. Unsupported extensions must be set to 0.
	 */
	int action;
	int police;
};

static inline int tcf_exts_init(struct tcf_exts *exts, int action, int police)
{
#ifdef CONFIG_NET_CLS_ACT
	exts->type = 0;
	exts->nr_actions = 0;
	exts->actions = kcalloc(TCA_ACT_MAX_PRIO, sizeof(struct tc_action *),
				GFP_KERNEL);
	if (!exts->actions)
		return -ENOMEM;
#endif
	exts->action = action;
	exts->police = police;
	return 0;
}

/**
 * tcf_exts_is_predicative - check if a predicative extension is present
 * @exts: tc filter extensions handle
 *
 * Returns 1 if a predicative extension is present, i.e. an extension which
 * might cause further actions and thus overrule the regular tcf_result.
 */
static inline int
tcf_exts_is_predicative(struct tcf_exts *exts)
{
#ifdef CONFIG_NET_CLS_ACT
	return exts->nr_actions;
#else
	return 0;
#endif
}

/**
 * tcf_exts_is_available - check if at least one extension is present
 * @exts: tc filter extensions handle
 *
 * Returns 1 if at least one extension is present.
 */
static inline int
tcf_exts_is_available(struct tcf_exts *exts)
{
	/* All non-predicative extensions must be added here. */
	return tcf_exts_is_predicative(exts);
}

static inline void tcf_exts_to_list(const struct tcf_exts *exts,
				    struct list_head *actions)
{
#ifdef CONFIG_NET_CLS_ACT
	int i;

	for (i = 0; i < exts->nr_actions; i++) {
		struct tc_action *a = exts->actions[i];

		list_add_tail(&a->list, actions);
	}
#endif
}

/**
 * tcf_exts_exec - execute tc filter extensions
 * @skb: socket buffer
 * @exts: tc filter extensions handle
 * @res: desired result
 *
 * Executes all configured extensions. Returns 0 on a normal execution,
 * a negative number if the filter must be considered unmatched or
 * a positive action code (TC_ACT_*) which must be returned to the
 * underlying layer.
 */
static inline int
tcf_exts_exec(struct sk_buff *skb, struct tcf_exts *exts,
	       struct tcf_result *res)
{
#ifdef CONFIG_NET_CLS_ACT
	if (exts->nr_actions)
		return tcf_action_exec(skb, exts->actions, exts->nr_actions,
				       res);
#endif
	return 0;
}

#ifdef CONFIG_NET_CLS_ACT

#define tc_no_actions(_exts)  ((_exts)->nr_actions == 0)
#define tc_single_action(_exts) ((_exts)->nr_actions == 1)

#else /* CONFIG_NET_CLS_ACT */

#define tc_no_actions(_exts) true
#define tc_single_action(_exts) false

#endif /* CONFIG_NET_CLS_ACT */

int tcf_exts_validate(struct net *net, struct tcf_proto *tp,
		      struct nlattr **tb, struct nlattr *rate_tlv,
		      struct tcf_exts *exts, bool ovr);
void tcf_exts_destroy(struct tcf_exts *exts);
void tcf_exts_change(struct tcf_proto *tp, struct tcf_exts *dst,
		     struct tcf_exts *src);
int tcf_exts_dump(struct sk_buff *skb, struct tcf_exts *exts);
int tcf_exts_dump_stats(struct sk_buff *skb, struct tcf_exts *exts);
int tcf_exts_get_dev(struct net_device *dev, struct tcf_exts *exts,
		     struct net_device **hw_dev);

/**
 * struct tcf_pkt_info - packet information
 */
struct tcf_pkt_info {
	unsigned char *		ptr;
	int			nexthdr;
};

#ifdef CONFIG_NET_EMATCH

struct tcf_ematch_ops;

/**
 * struct tcf_ematch - extended match (ematch)
 * 
 * @matchid: identifier to allow userspace to reidentify a match
 * @flags: flags specifying attributes and the relation to other matches
 * @ops: the operations lookup table of the corresponding ematch module
 * @datalen: length of the ematch specific configuration data
 * @data: ematch specific data
 */
struct tcf_ematch {
	struct tcf_ematch_ops * ops;
	unsigned long		data;
	unsigned int		datalen;
	u16			matchid;
	u16			flags;
	struct net		*net;
};

static inline int tcf_em_is_container(struct tcf_ematch *em)
{
	return !em->ops;
}

static inline int tcf_em_is_simple(struct tcf_ematch *em)
{
	return em->flags & TCF_EM_SIMPLE;
}

static inline int tcf_em_is_inverted(struct tcf_ematch *em)
{
	return em->flags & TCF_EM_INVERT;
}

static inline int tcf_em_last_match(struct tcf_ematch *em)
{
	return (em->flags & TCF_EM_REL_MASK) == TCF_EM_REL_END;
}

static inline int tcf_em_early_end(struct tcf_ematch *em, int result)
{
	if (tcf_em_last_match(em))
		return 1;

	if (result == 0 && em->flags & TCF_EM_REL_AND)
		return 1;

	if (result != 0 && em->flags & TCF_EM_REL_OR)
		return 1;

	return 0;
}
	
/**
 * struct tcf_ematch_tree - ematch tree handle
 *
 * @hdr: ematch tree header supplied by userspace
 * @matches: array of ematches
 */
struct tcf_ematch_tree {
	struct tcf_ematch_tree_hdr hdr;
	struct tcf_ematch *	matches;
	
};

/**
 * struct tcf_ematch_ops - ematch module operations
 * 
 * @kind: identifier (kind) of this ematch module
 * @datalen: length of expected configuration data (optional)
 * @change: called during validation (optional)
 * @match: called during ematch tree evaluation, must return 1/0
 * @destroy: called during destroyage (optional)
 * @dump: called during dumping process (optional)
 * @owner: owner, must be set to THIS_MODULE
 * @link: link to previous/next ematch module (internal use)
 */
struct tcf_ematch_ops {
	int			kind;
	int			datalen;
	int			(*change)(struct net *net, void *,
					  int, struct tcf_ematch *);
	int			(*match)(struct sk_buff *, struct tcf_ematch *,
					 struct tcf_pkt_info *);
	void			(*destroy)(struct tcf_ematch *);
	int			(*dump)(struct sk_buff *, struct tcf_ematch *);
	struct module		*owner;
	struct list_head	link;
};

int tcf_em_register(struct tcf_ematch_ops *);
void tcf_em_unregister(struct tcf_ematch_ops *);
int tcf_em_tree_validate(struct tcf_proto *, struct nlattr *,
			 struct tcf_ematch_tree *);
void tcf_em_tree_destroy(struct tcf_ematch_tree *);
int tcf_em_tree_dump(struct sk_buff *, struct tcf_ematch_tree *, int);
int __tcf_em_tree_match(struct sk_buff *, struct tcf_ematch_tree *,
			struct tcf_pkt_info *);

/**
 * tcf_em_tree_change - replace ematch tree of a running classifier
 *
 * @tp: classifier kind handle
 * @dst: destination ematch tree variable
 * @src: source ematch tree (temporary tree from tcf_em_tree_validate)
 *
 * This functions replaces the ematch tree in @dst with the ematch
 * tree in @src. The classifier in charge of the ematch tree may be
 * running.
 */
static inline void tcf_em_tree_change(struct tcf_proto *tp,
				      struct tcf_ematch_tree *dst,
				      struct tcf_ematch_tree *src)
{
	tcf_tree_lock(tp);
	memcpy(dst, src, sizeof(*dst));
	tcf_tree_unlock(tp);
}

/**
 * tcf_em_tree_match - evaulate an ematch tree
 *
 * @skb: socket buffer of the packet in question
 * @tree: ematch tree to be used for evaluation
 * @info: packet information examined by classifier
 *
 * This function matches @skb against the ematch tree in @tree by going
 * through all ematches respecting their logic relations returning
 * as soon as the result is obvious.
 *
 * Returns 1 if the ematch tree as-one matches, no ematches are configured
 * or ematch is not enabled in the kernel, otherwise 0 is returned.
 */
static inline int tcf_em_tree_match(struct sk_buff *skb,
				    struct tcf_ematch_tree *tree,
				    struct tcf_pkt_info *info)
{
	if (tree->hdr.nmatches)
		return __tcf_em_tree_match(skb, tree, info);
	else
		return 1;
}

#define MODULE_ALIAS_TCF_EMATCH(kind)	MODULE_ALIAS("ematch-kind-" __stringify(kind))

#else /* CONFIG_NET_EMATCH */

struct tcf_ematch_tree {
};

#define tcf_em_tree_validate(tp, tb, t) ((void)(t), 0)
#define tcf_em_tree_destroy(t) do { (void)(t); } while(0)
#define tcf_em_tree_dump(skb, t, tlv) (0)
#define tcf_em_tree_change(tp, dst, src) do { } while(0)
#define tcf_em_tree_match(skb, t, info) ((void)(info), 1)

#endif /* CONFIG_NET_EMATCH */

static inline unsigned char * tcf_get_base_ptr(struct sk_buff *skb, int layer)
{
	switch (layer) {
		case TCF_LAYER_LINK:
			return skb->data;
		case TCF_LAYER_NETWORK:
			return skb_network_header(skb);
		case TCF_LAYER_TRANSPORT:
			return skb_transport_header(skb);
	}

	return NULL;
}

static inline int tcf_valid_offset(const struct sk_buff *skb,
				   const unsigned char *ptr, const int len)
{
	return likely((ptr + len) <= skb_tail_pointer(skb) &&
		      ptr >= skb->head &&
		      (ptr <= (ptr + len)));
}

#ifdef CONFIG_NET_CLS_IND
#include <net/net_namespace.h>

static inline int
tcf_change_indev(struct net *net, struct nlattr *indev_tlv)
{
	char indev[IFNAMSIZ];
	struct net_device *dev;

	if (nla_strlcpy(indev, indev_tlv, IFNAMSIZ) >= IFNAMSIZ)
		return -EINVAL;
	dev = __dev_get_by_name(net, indev);
	if (!dev)
		return -ENODEV;
	return dev->ifindex;
}

static inline bool
tcf_match_indev(struct sk_buff *skb, int ifindex)
{
	if (!ifindex)
		return true;
	if  (!skb->skb_iif)
		return false;
	return ifindex == skb->skb_iif;
}
#endif /* CONFIG_NET_CLS_IND */

struct tc_cls_u32_knode {
	struct tcf_exts *exts;
	struct tc_u32_sel *sel;
	u32 handle;
	u32 val;
	u32 mask;
	u32 link_handle;
	u8 fshift;
};

struct tc_cls_u32_hnode {
	u32 handle;
	u32 prio;
	unsigned int divisor;
};

enum tc_clsu32_command {
	TC_CLSU32_NEW_KNODE,
	TC_CLSU32_REPLACE_KNODE,
	TC_CLSU32_DELETE_KNODE,
	TC_CLSU32_NEW_HNODE,
	TC_CLSU32_REPLACE_HNODE,
	TC_CLSU32_DELETE_HNODE,
};

struct tc_cls_u32_offload {
	/* knode values */
	enum tc_clsu32_command command;
	union {
		struct tc_cls_u32_knode knode;
		struct tc_cls_u32_hnode hnode;
	};
};

static inline bool tc_can_offload(const struct net_device *dev,
				  const struct tcf_proto *tp)
{
	const struct Qdisc *sch = tp->q;
	const struct Qdisc_class_ops *cops = sch->ops->cl_ops;

	if (!(dev->features & NETIF_F_HW_TC))
		return false;
	if (!dev->netdev_ops->ndo_setup_tc)
		return false;
	if (cops && cops->tcf_cl_offload)
		return cops->tcf_cl_offload(tp->classid);

	return true;
}

static inline bool tc_skip_hw(u32 flags)
{
	return (flags & TCA_CLS_FLAGS_SKIP_HW) ? true : false;
}

static inline bool tc_should_offload(const struct net_device *dev,
				     const struct tcf_proto *tp, u32 flags)
{
	if (tc_skip_hw(flags))
		return false;
	return tc_can_offload(dev, tp);
}

static inline bool tc_skip_sw(u32 flags)
{
	return (flags & TCA_CLS_FLAGS_SKIP_SW) ? true : false;
}

/* SKIP_HW and SKIP_SW are mutually exclusive flags. */
static inline bool tc_flags_valid(u32 flags)
{
	if (flags & ~(TCA_CLS_FLAGS_SKIP_HW | TCA_CLS_FLAGS_SKIP_SW))
		return false;

	if (!(flags ^ (TCA_CLS_FLAGS_SKIP_HW | TCA_CLS_FLAGS_SKIP_SW)))
		return false;

	return true;
}

enum tc_fl_command {
	TC_CLSFLOWER_REPLACE,
	TC_CLSFLOWER_DESTROY,
	TC_CLSFLOWER_STATS,
};

struct tc_cls_flower_offload {
	enum tc_fl_command command;
	u32 prio;
	unsigned long cookie;
	struct flow_dissector *dissector;
	struct fl_flow_key *mask;
	struct fl_flow_key *key;
	struct tcf_exts *exts;
};

enum tc_matchall_command {
	TC_CLSMATCHALL_REPLACE,
	TC_CLSMATCHALL_DESTROY,
};

struct tc_cls_matchall_offload {
	enum tc_matchall_command command;
	struct tcf_exts *exts;
	unsigned long cookie;
};

enum tc_clsbpf_command {
	TC_CLSBPF_ADD,
	TC_CLSBPF_REPLACE,
	TC_CLSBPF_DESTROY,
	TC_CLSBPF_STATS,
};

struct tc_cls_bpf_offload {
	enum tc_clsbpf_command command;
	struct tcf_exts *exts;
	struct bpf_prog *prog;
	const char *name;
	bool exts_integrated;
	u32 gen_flags;
};


/* This structure holds cookie structure that is passed from user
 * to the kernel for actions and classifiers
 */
struct tc_cookie {
	u8  *data;
	u32 len;
};
#endif
Commit	Line	Data
1da177e4 LT	1	#ifndef __NET_PKT_CLS_H
	2	#define __NET_PKT_CLS_H
	3
	4	#include <linux/pkt_cls.h>
	5	#include <net/sch_generic.h>
	6	#include <net/act_api.h>
	7
	8	/* Basic packet classifier frontend definitions. */
	9
fd2c3ef7	10	struct tcf_walker {
1da177e4 LT	11	int stop;
	12	int skip;
	13	int count;
	14	int (fn)(struct tcf_proto , unsigned long node, struct tcf_walker *);
	15	};
	16
5c15257f JP	17	int register_tcf_proto_ops(struct tcf_proto_ops *ops);
5c15257f JP	18	int unregister_tcf_proto_ops(struct tcf_proto_ops *ops);
1da177e4	19
8ae70032	20	#ifdef CONFIG_NET_CLS
cf1facda	21	void tcf_destroy_chain(struct tcf_proto __rcu **fl);
8ae70032 JP	22	#else
	23	static inline void tcf_destroy_chain(struct tcf_proto __rcu **fl)
	24	{
	25	}
	26	#endif
cf1facda	27
1da177e4 LT	28	static inline unsigned long
	29	__cls_set_class(unsigned long *clp, unsigned long cl)
	30	{
a0efb80c	31	return xchg(clp, cl);
1da177e4 LT	32	}
	33
	34	static inline unsigned long
	35	cls_set_class(struct tcf_proto tp, unsigned long clp,
	36	unsigned long cl)
	37	{
	38	unsigned long old_cl;
	39
	40	tcf_tree_lock(tp);
	41	old_cl = __cls_set_class(clp, cl);
	42	tcf_tree_unlock(tp);
	43
	44	return old_cl;
	45	}
	46
	47	static inline void
	48	tcf_bind_filter(struct tcf_proto tp, struct tcf_result r, unsigned long base)
	49	{
	50	unsigned long cl;
	51
	52	cl = tp->q->ops->cl_ops->bind_tcf(tp->q, base, r->classid);
	53	cl = cls_set_class(tp, &r->class, cl);
	54	if (cl)
	55	tp->q->ops->cl_ops->unbind_tcf(tp->q, cl);
	56	}
	57
	58	static inline void
	59	tcf_unbind_filter(struct tcf_proto tp, struct tcf_result r)
	60	{
	61	unsigned long cl;
	62
	63	if ((cl = __cls_set_class(&r->class, 0)) != 0)
	64	tp->q->ops->cl_ops->unbind_tcf(tp->q, cl);
	65	}
	66
fd2c3ef7	67	struct tcf_exts {
1da177e4	68	#ifdef CONFIG_NET_CLS_ACT
33be6271	69	__u32 type; /* for backward compat(TCA_OLD_COMPAT) */
22dc13c8 WC	70	int nr_actions;
22dc13c8 WC	71	struct tc_action **actions;
1da177e4	72	#endif
5da57f42 WC	73	/* Map to export classifier specific extension TLV types to the
	74	* generic extensions API. Unsupported extensions must be set to 0.
	75	*/
1da177e4 LT	76	int action;
	77	int police;
	78	};
	79
b9a24bb7	80	static inline int tcf_exts_init(struct tcf_exts *exts, int action, int police)
33be6271 WC	81	{
33be6271 WC	82	#ifdef CONFIG_NET_CLS_ACT
5da57f42	83	exts->type = 0;
22dc13c8 WC	84	exts->nr_actions = 0;
	85	exts->actions = kcalloc(TCA_ACT_MAX_PRIO, sizeof(struct tc_action *),
	86	GFP_KERNEL);
b9a24bb7 WC	87	if (!exts->actions)
b9a24bb7 WC	88	return -ENOMEM;
33be6271	89	#endif
5da57f42 WC	90	exts->action = action;
5da57f42 WC	91	exts->police = police;
b9a24bb7	92	return 0;
33be6271 WC	93	}
33be6271 WC	94
1da177e4 LT	95	/**
	96	* tcf_exts_is_predicative - check if a predicative extension is present
	97	* @exts: tc filter extensions handle
	98	*
	99	* Returns 1 if a predicative extension is present, i.e. an extension which
	100	* might cause further actions and thus overrule the regular tcf_result.
	101	*/
	102	static inline int
	103	tcf_exts_is_predicative(struct tcf_exts *exts)
	104	{
	105	#ifdef CONFIG_NET_CLS_ACT
22dc13c8	106	return exts->nr_actions;
1da177e4 LT	107	#else
	108	return 0;
	109	#endif
	110	}
	111
	112	/**
	113	* tcf_exts_is_available - check if at least one extension is present
	114	* @exts: tc filter extensions handle
	115	*
	116	* Returns 1 if at least one extension is present.
	117	*/
	118	static inline int
	119	tcf_exts_is_available(struct tcf_exts *exts)
	120	{
	121	/* All non-predicative extensions must be added here. */
	122	return tcf_exts_is_predicative(exts);
	123	}
	124
22dc13c8 WC	125	static inline void tcf_exts_to_list(const struct tcf_exts *exts,
	126	struct list_head *actions)
	127	{
	128	#ifdef CONFIG_NET_CLS_ACT
	129	int i;
	130
	131	for (i = 0; i < exts->nr_actions; i++) {
	132	struct tc_action *a = exts->actions[i];
	133
fa5effe7	134	list_add_tail(&a->list, actions);
22dc13c8 WC	135	}
	136	#endif
	137	}
	138
1da177e4 LT	139	/**
	140	* tcf_exts_exec - execute tc filter extensions
	141	* @skb: socket buffer
	142	* @exts: tc filter extensions handle
	143	* @res: desired result
	144	*
	145	* Executes all configured extensions. Returns 0 on a normal execution,
	146	* a negative number if the filter must be considered unmatched or
	147	* a positive action code (TC_ACT_*) which must be returned to the
	148	* underlying layer.
	149	*/
	150	static inline int
	151	tcf_exts_exec(struct sk_buff skb, struct tcf_exts exts,
	152	struct tcf_result *res)
	153	{
	154	#ifdef CONFIG_NET_CLS_ACT
22dc13c8 WC	155	if (exts->nr_actions)
	156	return tcf_action_exec(skb, exts->actions, exts->nr_actions,
	157	res);
1da177e4	158	#endif
1da177e4 LT	159	return 0;
	160	}
	161
2734437e WC	162	#ifdef CONFIG_NET_CLS_ACT
2734437e WC	163
22dc13c8 WC	164	#define tc_no_actions(_exts) ((_exts)->nr_actions == 0)
22dc13c8 WC	165	#define tc_single_action(_exts) ((_exts)->nr_actions == 1)
2734437e WC	166
	167	#else /* CONFIG_NET_CLS_ACT */
	168
	169	#define tc_no_actions(_exts) true
2734437e WC	170	#define tc_single_action(_exts) false
	171
	172	#endif /* CONFIG_NET_CLS_ACT */
	173
5c15257f JP	174	int tcf_exts_validate(struct net net, struct tcf_proto tp,
5c15257f JP	175	struct nlattr *tb, struct nlattr rate_tlv,
2f7ef2f8	176	struct tcf_exts *exts, bool ovr);
18d0264f	177	void tcf_exts_destroy(struct tcf_exts *exts);
5c15257f JP	178	void tcf_exts_change(struct tcf_proto tp, struct tcf_exts dst,
5c15257f JP	179	struct tcf_exts *src);
5da57f42 WC	180	int tcf_exts_dump(struct sk_buff skb, struct tcf_exts exts);
5da57f42 WC	181	int tcf_exts_dump_stats(struct sk_buff skb, struct tcf_exts exts);
7091d8c7 HHZ	182	int tcf_exts_get_dev(struct net_device dev, struct tcf_exts exts,
7091d8c7 HHZ	183	struct net_device **hw_dev);
1da177e4 LT	184
	185	/**
	186	* struct tcf_pkt_info - packet information
	187	*/
fd2c3ef7	188	struct tcf_pkt_info {
1da177e4 LT	189	unsigned char * ptr;
	190	int nexthdr;
	191	};
	192
	193	#ifdef CONFIG_NET_EMATCH
	194
	195	struct tcf_ematch_ops;
	196
	197	/**
	198	* struct tcf_ematch - extended match (ematch)
	199	*
	200	* @matchid: identifier to allow userspace to reidentify a match
	201	* @flags: flags specifying attributes and the relation to other matches
	202	* @ops: the operations lookup table of the corresponding ematch module
	203	* @datalen: length of the ematch specific configuration data
	204	* @data: ematch specific data
	205	*/
fd2c3ef7	206	struct tcf_ematch {
1da177e4 LT	207	struct tcf_ematch_ops * ops;
	208	unsigned long data;
	209	unsigned int datalen;
	210	u16 matchid;
	211	u16 flags;
82a470f1	212	struct net *net;
1da177e4 LT	213	};
	214
	215	static inline int tcf_em_is_container(struct tcf_ematch *em)
	216	{
	217	return !em->ops;
	218	}
	219
	220	static inline int tcf_em_is_simple(struct tcf_ematch *em)
	221	{
	222	return em->flags & TCF_EM_SIMPLE;
	223	}
	224
	225	static inline int tcf_em_is_inverted(struct tcf_ematch *em)
	226	{
	227	return em->flags & TCF_EM_INVERT;
	228	}
	229
	230	static inline int tcf_em_last_match(struct tcf_ematch *em)
	231	{
	232	return (em->flags & TCF_EM_REL_MASK) == TCF_EM_REL_END;
	233	}
	234
	235	static inline int tcf_em_early_end(struct tcf_ematch *em, int result)
	236	{
	237	if (tcf_em_last_match(em))
	238	return 1;
	239
	240	if (result == 0 && em->flags & TCF_EM_REL_AND)
	241	return 1;
	242
	243	if (result != 0 && em->flags & TCF_EM_REL_OR)
	244	return 1;
	245
	246	return 0;
	247	}
	248
	249	/**
	250	* struct tcf_ematch_tree - ematch tree handle
	251	*
	252	* @hdr: ematch tree header supplied by userspace
	253	* @matches: array of ematches
	254	*/
fd2c3ef7	255	struct tcf_ematch_tree {
1da177e4 LT	256	struct tcf_ematch_tree_hdr hdr;
	257	struct tcf_ematch * matches;
	258
	259	};
	260
	261	/**
	262	* struct tcf_ematch_ops - ematch module operations
	263	*
	264	* @kind: identifier (kind) of this ematch module
	265	* @datalen: length of expected configuration data (optional)
	266	* @change: called during validation (optional)
	267	* @match: called during ematch tree evaluation, must return 1/0
	268	* @destroy: called during destroyage (optional)
	269	* @dump: called during dumping process (optional)
	270	* @owner: owner, must be set to THIS_MODULE
	271	* @link: link to previous/next ematch module (internal use)
	272	*/
fd2c3ef7	273	struct tcf_ematch_ops {
1da177e4 LT	274	int kind;
1da177e4 LT	275	int datalen;
82a470f1	276	int (change)(struct net net, void *,
1da177e4 LT	277	int, struct tcf_ematch *);
	278	int (match)(struct sk_buff , struct tcf_ematch *,
	279	struct tcf_pkt_info *);
82a470f1	280	void (destroy)(struct tcf_ematch );
1da177e4 LT	281	int (dump)(struct sk_buff , struct tcf_ematch *);
	282	struct module *owner;
	283	struct list_head link;
	284	};
	285
5c15257f JP	286	int tcf_em_register(struct tcf_ematch_ops *);
	287	void tcf_em_unregister(struct tcf_ematch_ops *);
	288	int tcf_em_tree_validate(struct tcf_proto , struct nlattr ,
	289	struct tcf_ematch_tree *);
82a470f1	290	void tcf_em_tree_destroy(struct tcf_ematch_tree *);
5c15257f JP	291	int tcf_em_tree_dump(struct sk_buff , struct tcf_ematch_tree , int);
	292	int __tcf_em_tree_match(struct sk_buff , struct tcf_ematch_tree ,
	293	struct tcf_pkt_info *);
1da177e4 LT	294
	295	/**
	296	* tcf_em_tree_change - replace ematch tree of a running classifier
	297	*
	298	* @tp: classifier kind handle
	299	* @dst: destination ematch tree variable
	300	* @src: source ematch tree (temporary tree from tcf_em_tree_validate)
	301	*
	302	* This functions replaces the ematch tree in @dst with the ematch
	303	* tree in @src. The classifier in charge of the ematch tree may be
	304	* running.
	305	*/
	306	static inline void tcf_em_tree_change(struct tcf_proto *tp,
	307	struct tcf_ematch_tree *dst,
	308	struct tcf_ematch_tree *src)
	309	{
	310	tcf_tree_lock(tp);
	311	memcpy(dst, src, sizeof(*dst));
	312	tcf_tree_unlock(tp);
	313	}
	314
	315	/**
	316	* tcf_em_tree_match - evaulate an ematch tree
	317	*
	318	* @skb: socket buffer of the packet in question
	319	* @tree: ematch tree to be used for evaluation
	320	* @info: packet information examined by classifier
	321	*
	322	* This function matches @skb against the ematch tree in @tree by going
	323	* through all ematches respecting their logic relations returning
	324	* as soon as the result is obvious.
	325	*
	326	* Returns 1 if the ematch tree as-one matches, no ematches are configured
	327	* or ematch is not enabled in the kernel, otherwise 0 is returned.
	328	*/
	329	static inline int tcf_em_tree_match(struct sk_buff *skb,
	330	struct tcf_ematch_tree *tree,
	331	struct tcf_pkt_info *info)
	332	{
	333	if (tree->hdr.nmatches)
	334	return __tcf_em_tree_match(skb, tree, info);
	335	else
	336	return 1;
	337	}
	338
db3d99c0 PM	339	#define MODULE_ALIAS_TCF_EMATCH(kind) MODULE_ALIAS("ematch-kind-" __stringify(kind))
db3d99c0 PM	340
1da177e4 LT	341	#else /* CONFIG_NET_EMATCH */
1da177e4 LT	342
fd2c3ef7	343	struct tcf_ematch_tree {
1da177e4 LT	344	};
	345
	346	#define tcf_em_tree_validate(tp, tb, t) ((void)(t), 0)
82a470f1	347	#define tcf_em_tree_destroy(t) do { (void)(t); } while(0)
1da177e4 LT	348	#define tcf_em_tree_dump(skb, t, tlv) (0)
	349	#define tcf_em_tree_change(tp, dst, src) do { } while(0)
	350	#define tcf_em_tree_match(skb, t, info) ((void)(info), 1)
	351
	352	#endif /* CONFIG_NET_EMATCH */
	353
	354	static inline unsigned char * tcf_get_base_ptr(struct sk_buff *skb, int layer)
	355	{
	356	switch (layer) {
	357	case TCF_LAYER_LINK:
	358	return skb->data;
	359	case TCF_LAYER_NETWORK:
d56f90a7	360	return skb_network_header(skb);
1da177e4	361	case TCF_LAYER_TRANSPORT:
9c70220b	362	return skb_transport_header(skb);
1da177e4 LT	363	}
	364
	365	return NULL;
	366	}
	367
eddc9ec5 ACM	368	static inline int tcf_valid_offset(const struct sk_buff *skb,
eddc9ec5 ACM	369	const unsigned char *ptr, const int len)
1da177e4	370	{
da521b2c DM	371	return likely((ptr + len) <= skb_tail_pointer(skb) &&
	372	ptr >= skb->head &&
	373	(ptr <= (ptr + len)));
1da177e4 LT	374	}
	375
	376	#ifdef CONFIG_NET_CLS_IND
0eeb8ffc DL	377	#include <net/net_namespace.h>
0eeb8ffc DL	378
1da177e4	379	static inline int
2519a602	380	tcf_change_indev(struct net net, struct nlattr indev_tlv)
1da177e4	381	{
2519a602 WC	382	char indev[IFNAMSIZ];
	383	struct net_device *dev;
	384
add93b61	385	if (nla_strlcpy(indev, indev_tlv, IFNAMSIZ) >= IFNAMSIZ)
1da177e4	386	return -EINVAL;
2519a602 WC	387	dev = __dev_get_by_name(net, indev);
	388	if (!dev)
	389	return -ENODEV;
	390	return dev->ifindex;
1da177e4 LT	391	}
1da177e4 LT	392
2519a602 WC	393	static inline bool
2519a602 WC	394	tcf_match_indev(struct sk_buff *skb, int ifindex)
1da177e4	395	{
2519a602 WC	396	if (!ifindex)
	397	return true;
	398	if (!skb->skb_iif)
	399	return false;
	400	return ifindex == skb->skb_iif;
1da177e4 LT	401	}
	402	#endif /* CONFIG_NET_CLS_IND */
	403
a1b7c5fd JF	404	struct tc_cls_u32_knode {
a1b7c5fd JF	405	struct tcf_exts *exts;
e014860e	406	struct tc_u32_sel *sel;
a1b7c5fd JF	407	u32 handle;
	408	u32 val;
	409	u32 mask;
	410	u32 link_handle;
e014860e	411	u8 fshift;
a1b7c5fd JF	412	};
	413
	414	struct tc_cls_u32_hnode {
	415	u32 handle;
	416	u32 prio;
	417	unsigned int divisor;
	418	};
	419
	420	enum tc_clsu32_command {
	421	TC_CLSU32_NEW_KNODE,
	422	TC_CLSU32_REPLACE_KNODE,
	423	TC_CLSU32_DELETE_KNODE,
	424	TC_CLSU32_NEW_HNODE,
	425	TC_CLSU32_REPLACE_HNODE,
	426	TC_CLSU32_DELETE_HNODE,
	427	};
	428
	429	struct tc_cls_u32_offload {
	430	/* knode values */
	431	enum tc_clsu32_command command;
	432	union {
	433	struct tc_cls_u32_knode knode;
	434	struct tc_cls_u32_hnode hnode;
	435	};
	436	};
	437
55330f05 HHZ	438	static inline bool tc_can_offload(const struct net_device *dev,
55330f05 HHZ	439	const struct tcf_proto *tp)
6843e7a2	440	{
92c075db DB	441	const struct Qdisc *sch = tp->q;
	442	const struct Qdisc_class_ops *cops = sch->ops->cl_ops;
	443
2b6ab0d3 JF	444	if (!(dev->features & NETIF_F_HW_TC))
2b6ab0d3 JF	445	return false;
9e8ce79c JF	446	if (!dev->netdev_ops->ndo_setup_tc)
9e8ce79c JF	447	return false;
92c075db DB	448	if (cops && cops->tcf_cl_offload)
92c075db DB	449	return cops->tcf_cl_offload(tp->classid);
9e8ce79c JF	450
9e8ce79c JF	451	return true;
6843e7a2 JF	452	}
6843e7a2 JF	453
55330f05 HHZ	454	static inline bool tc_skip_hw(u32 flags)
	455	{
	456	return (flags & TCA_CLS_FLAGS_SKIP_HW) ? true : false;
	457	}
	458
	459	static inline bool tc_should_offload(const struct net_device *dev,
	460	const struct tcf_proto *tp, u32 flags)
	461	{
	462	if (tc_skip_hw(flags))
	463	return false;
	464	return tc_can_offload(dev, tp);
	465	}
	466
d34e3e18 SS	467	static inline bool tc_skip_sw(u32 flags)
	468	{
	469	return (flags & TCA_CLS_FLAGS_SKIP_SW) ? true : false;
	470	}
	471
	472	/* SKIP_HW and SKIP_SW are mutually exclusive flags. */
	473	static inline bool tc_flags_valid(u32 flags)
	474	{
	475	if (flags & ~(TCA_CLS_FLAGS_SKIP_HW \| TCA_CLS_FLAGS_SKIP_SW))
	476	return false;
	477
	478	if (!(flags ^ (TCA_CLS_FLAGS_SKIP_HW \| TCA_CLS_FLAGS_SKIP_SW)))
	479	return false;
	480
	481	return true;
	482	}
	483
5b33f488 AV	484	enum tc_fl_command {
	485	TC_CLSFLOWER_REPLACE,
	486	TC_CLSFLOWER_DESTROY,
10cbc684	487	TC_CLSFLOWER_STATS,
5b33f488 AV	488	};
	489
	490	struct tc_cls_flower_offload {
	491	enum tc_fl_command command;
69ca05ce	492	u32 prio;
8208d21b	493	unsigned long cookie;
5b33f488 AV	494	struct flow_dissector *dissector;
	495	struct fl_flow_key *mask;
	496	struct fl_flow_key *key;
	497	struct tcf_exts *exts;
	498	};
	499
b87f7936 YG	500	enum tc_matchall_command {
	501	TC_CLSMATCHALL_REPLACE,
	502	TC_CLSMATCHALL_DESTROY,
	503	};
	504
	505	struct tc_cls_matchall_offload {
	506	enum tc_matchall_command command;
	507	struct tcf_exts *exts;
	508	unsigned long cookie;
	509	};
	510
332ae8e2 JK	511	enum tc_clsbpf_command {
	512	TC_CLSBPF_ADD,
	513	TC_CLSBPF_REPLACE,
	514	TC_CLSBPF_DESTROY,
68d64063	515	TC_CLSBPF_STATS,
332ae8e2 JK	516	};
	517
	518	struct tc_cls_bpf_offload {
	519	enum tc_clsbpf_command command;
	520	struct tcf_exts *exts;
	521	struct bpf_prog *prog;
	522	const char *name;
	523	bool exts_integrated;
0d01d45f	524	u32 gen_flags;
332ae8e2 JK	525	};
332ae8e2 JK	526
1045ba77 JHS	527
	528	/* This structure holds cookie structure that is passed from user
	529	* to the kernel for actions and classifiers
	530	*/
	531	struct tc_cookie {
	532	u8 *data;
	533	u32 len;
	534	};
1da177e4	535	#endif