2 * f_flower.c Flower Classifier
4 * This program is free software; you can distribute it and/or
5 * modify it under the terms of the GNU General Public License
6 * as published by the Free Software Foundation; either version
7 * 2 of the License, or (at your option) any later version.
9 * Authors: Jiri Pirko <jiri@resnulli.us>
17 #include <linux/if_arp.h>
18 #include <linux/if_ether.h>
20 #include <linux/tc_act/tc_vlan.h>
21 #include <linux/mpls.h>
27 enum flower_matching_flags
{
31 enum flower_endpoint
{
36 enum flower_icmp_field
{
37 FLOWER_ICMP_FIELD_TYPE
,
38 FLOWER_ICMP_FIELD_CODE
41 static void explain(void)
44 "Usage: ... flower [ MATCH-LIST ] [ verbose ]\n"
45 " [ skip_sw | skip_hw ]\n"
46 " [ action ACTION-SPEC ] [ classid CLASSID ]\n"
48 "Where: MATCH-LIST := [ MATCH-LIST ] MATCH\n"
49 " MATCH := { indev DEV-NAME |\n"
51 " vlan_prio PRIORITY |\n"
52 " vlan_ethtype [ ipv4 | ipv6 | ETH-TYPE ] |\n"
54 " cvlan_prio PRIORITY |\n"
55 " cvlan_ethtype [ ipv4 | ipv6 | ETH-TYPE ] |\n"
56 " dst_mac MASKED-LLADDR |\n"
57 " src_mac MASKED-LLADDR |\n"
58 " ip_proto [tcp | udp | sctp | icmp | icmpv6 | IP-PROTO ] |\n"
59 " ip_tos MASKED-IP_TOS |\n"
60 " ip_ttl MASKED-IP_TTL |\n"
61 " mpls_label LABEL |\n"
67 " dst_port PORT-NUMBER |\n"
68 " src_port PORT-NUMBER |\n"
69 " tcp_flags MASKED-TCP_FLAGS |\n"
70 " type MASKED-ICMP-TYPE |\n"
71 " code MASKED-ICMP-CODE |\n"
72 " arp_tip IPV4-PREFIX |\n"
73 " arp_sip IPV4-PREFIX |\n"
74 " arp_op [ request | reply | OP ] |\n"
75 " arp_tha MASKED-LLADDR |\n"
76 " arp_sha MASKED-LLADDR |\n"
77 " enc_dst_ip [ IPV4-ADDR | IPV6-ADDR ] |\n"
78 " enc_src_ip [ IPV4-ADDR | IPV6-ADDR ] |\n"
79 " enc_key_id [ KEY-ID ] |\n"
80 " enc_tos MASKED-IP_TOS |\n"
81 " enc_ttl MASKED-IP_TTL |\n"
82 " geneve_opts MASKED-OPTIONS |\n"
83 " ip_flags IP-FLAGS | \n"
84 " enc_dst_port [ port_number ] }\n"
85 " FILTERID := X:Y:Z\n"
86 " MASKED_LLADDR := { LLADDR | LLADDR/MASK | LLADDR/BITS }\n"
87 " ACTION-SPEC := ... look at individual actions\n"
89 "NOTE: CLASSID, IP-PROTO are parsed as hexadecimal input.\n"
90 "NOTE: There can be only used one mask per one prio. If user needs\n"
91 " to specify different mask, he has to use different prio.\n");
94 static int flower_parse_eth_addr(char *str
, int addr_type
, int mask_type
,
98 char addr
[ETH_ALEN
], *slash
;
100 slash
= strchr(str
, '/');
104 ret
= ll_addr_a2n(addr
, sizeof(addr
), str
);
107 addattr_l(n
, MAX_MSG
, addr_type
, addr
, sizeof(addr
));
112 if (!get_unsigned(&bits
, slash
+ 1, 10)) {
115 /* Extra 16 bit shift to push mac address into
116 * high bits of uint64_t
118 mask
= htonll(0xffffffffffffULL
<< (16 + 48 - bits
));
119 memcpy(addr
, &mask
, ETH_ALEN
);
121 ret
= ll_addr_a2n(addr
, sizeof(addr
), slash
+ 1);
126 memset(addr
, 0xff, ETH_ALEN
);
128 addattr_l(n
, MAX_MSG
, mask_type
, addr
, sizeof(addr
));
137 static bool eth_type_vlan(__be16 ethertype
)
139 return ethertype
== htons(ETH_P_8021Q
) ||
140 ethertype
== htons(ETH_P_8021AD
);
143 static int flower_parse_vlan_eth_type(char *str
, __be16 eth_type
, int type
,
144 __be16
*p_vlan_eth_type
,
147 __be16 vlan_eth_type
;
149 if (!eth_type_vlan(eth_type
)) {
150 fprintf(stderr
, "Can't set \"%s\" if ethertype isn't 802.1Q or 802.1AD\n",
151 type
== TCA_FLOWER_KEY_VLAN_ETH_TYPE
? "vlan_ethtype" : "cvlan_ethtype");
155 if (ll_proto_a2n(&vlan_eth_type
, str
))
156 invarg("invalid vlan_ethtype", str
);
157 addattr16(n
, MAX_MSG
, type
, vlan_eth_type
);
158 *p_vlan_eth_type
= vlan_eth_type
;
162 struct flag_to_string
{
164 enum flower_matching_flags type
;
168 static struct flag_to_string flags_str
[] = {
169 { TCA_FLOWER_KEY_FLAGS_IS_FRAGMENT
, FLOWER_IP_FLAGS
, "frag" },
170 { TCA_FLOWER_KEY_FLAGS_FRAG_IS_FIRST
, FLOWER_IP_FLAGS
, "firstfrag" },
173 static int flower_parse_matching_flags(char *str
,
174 enum flower_matching_flags type
,
175 __u32
*mtf
, __u32
*mtf_mask
)
182 token
= strtok(str
, "/");
185 if (!strncmp(token
, "no", 2)) {
192 for (i
= 0; i
< ARRAY_SIZE(flags_str
); i
++) {
193 if (type
!= flags_str
[i
].type
)
196 if (!strcmp(token
, flags_str
[i
].string
)) {
198 *mtf
&= ~flags_str
[i
].flag
;
200 *mtf
|= flags_str
[i
].flag
;
202 *mtf_mask
|= flags_str
[i
].flag
;
210 token
= strtok(NULL
, "/");
216 static int flower_parse_ip_proto(char *str
, __be16 eth_type
, int type
,
217 __u8
*p_ip_proto
, struct nlmsghdr
*n
)
222 if (eth_type
!= htons(ETH_P_IP
) && eth_type
!= htons(ETH_P_IPV6
))
225 if (matches(str
, "tcp") == 0) {
226 ip_proto
= IPPROTO_TCP
;
227 } else if (matches(str
, "udp") == 0) {
228 ip_proto
= IPPROTO_UDP
;
229 } else if (matches(str
, "sctp") == 0) {
230 ip_proto
= IPPROTO_SCTP
;
231 } else if (matches(str
, "icmp") == 0) {
232 if (eth_type
!= htons(ETH_P_IP
))
234 ip_proto
= IPPROTO_ICMP
;
235 } else if (matches(str
, "icmpv6") == 0) {
236 if (eth_type
!= htons(ETH_P_IPV6
))
238 ip_proto
= IPPROTO_ICMPV6
;
240 ret
= get_u8(&ip_proto
, str
, 16);
244 addattr8(n
, MAX_MSG
, type
, ip_proto
);
245 *p_ip_proto
= ip_proto
;
249 fprintf(stderr
, "Illegal \"eth_type\" for ip proto\n");
253 static int __flower_parse_ip_addr(char *str
, int family
,
254 int addr4_type
, int mask4_type
,
255 int addr6_type
, int mask6_type
,
263 ret
= get_prefix(&addr
, str
, family
);
267 if (family
&& (addr
.family
!= family
)) {
268 fprintf(stderr
, "Illegal \"eth_type\" for ip address\n");
272 addattr_l(n
, MAX_MSG
, addr
.family
== AF_INET
? addr4_type
: addr6_type
,
273 addr
.data
, addr
.bytelen
);
275 memset(addr
.data
, 0xff, addr
.bytelen
);
277 for (i
= 0; i
< addr
.bytelen
/ 4; i
++) {
280 } else if (bits
/ 32 >= 1) {
283 addr
.data
[i
] <<= 32 - bits
;
284 addr
.data
[i
] = htonl(addr
.data
[i
]);
289 addattr_l(n
, MAX_MSG
, addr
.family
== AF_INET
? mask4_type
: mask6_type
,
290 addr
.data
, addr
.bytelen
);
295 static int flower_parse_ip_addr(char *str
, __be16 eth_type
,
296 int addr4_type
, int mask4_type
,
297 int addr6_type
, int mask6_type
,
302 if (eth_type
== htons(ETH_P_IP
)) {
304 } else if (eth_type
== htons(ETH_P_IPV6
)) {
306 } else if (!eth_type
) {
312 return __flower_parse_ip_addr(str
, family
, addr4_type
, mask4_type
,
313 addr6_type
, mask6_type
, n
);
316 static bool flower_eth_type_arp(__be16 eth_type
)
318 return eth_type
== htons(ETH_P_ARP
) || eth_type
== htons(ETH_P_RARP
);
321 static int flower_parse_arp_ip_addr(char *str
, __be16 eth_type
,
322 int addr_type
, int mask_type
,
325 if (!flower_eth_type_arp(eth_type
))
328 return __flower_parse_ip_addr(str
, AF_INET
, addr_type
, mask_type
,
329 TCA_FLOWER_UNSPEC
, TCA_FLOWER_UNSPEC
, n
);
332 static int flower_parse_u8(char *str
, int value_type
, int mask_type
,
333 int (*value_from_name
)(const char *str
,
335 bool (*value_validate
)(__u8 value
),
342 slash
= strchr(str
, '/');
346 ret
= value_from_name
? value_from_name(str
, &value
) : -1;
348 ret
= get_u8(&value
, str
, 10);
353 if (value_validate
&& !value_validate(value
))
357 ret
= get_u8(&mask
, slash
+ 1, 10);
365 addattr8(n
, MAX_MSG
, value_type
, value
);
366 addattr8(n
, MAX_MSG
, mask_type
, mask
);
375 static const char *flower_print_arp_op_to_name(__u8 op
)
387 static int flower_arp_op_from_name(const char *name
, __u8
*op
)
389 if (!strcmp(name
, "request"))
391 else if (!strcmp(name
, "reply"))
399 static bool flow_arp_op_validate(__u8 op
)
401 return !op
|| op
== ARPOP_REQUEST
|| op
== ARPOP_REPLY
;
404 static int flower_parse_arp_op(char *str
, __be16 eth_type
,
405 int op_type
, int mask_type
,
408 if (!flower_eth_type_arp(eth_type
))
411 return flower_parse_u8(str
, op_type
, mask_type
, flower_arp_op_from_name
,
412 flow_arp_op_validate
, n
);
415 static int flower_icmp_attr_type(__be16 eth_type
, __u8 ip_proto
,
416 enum flower_icmp_field field
)
418 if (eth_type
== htons(ETH_P_IP
) && ip_proto
== IPPROTO_ICMP
)
419 return field
== FLOWER_ICMP_FIELD_CODE
?
420 TCA_FLOWER_KEY_ICMPV4_CODE
:
421 TCA_FLOWER_KEY_ICMPV4_TYPE
;
422 else if (eth_type
== htons(ETH_P_IPV6
) && ip_proto
== IPPROTO_ICMPV6
)
423 return field
== FLOWER_ICMP_FIELD_CODE
?
424 TCA_FLOWER_KEY_ICMPV6_CODE
:
425 TCA_FLOWER_KEY_ICMPV6_TYPE
;
430 static int flower_icmp_attr_mask_type(__be16 eth_type
, __u8 ip_proto
,
431 enum flower_icmp_field field
)
433 if (eth_type
== htons(ETH_P_IP
) && ip_proto
== IPPROTO_ICMP
)
434 return field
== FLOWER_ICMP_FIELD_CODE
?
435 TCA_FLOWER_KEY_ICMPV4_CODE_MASK
:
436 TCA_FLOWER_KEY_ICMPV4_TYPE_MASK
;
437 else if (eth_type
== htons(ETH_P_IPV6
) && ip_proto
== IPPROTO_ICMPV6
)
438 return field
== FLOWER_ICMP_FIELD_CODE
?
439 TCA_FLOWER_KEY_ICMPV6_CODE_MASK
:
440 TCA_FLOWER_KEY_ICMPV6_TYPE_MASK
;
445 static int flower_parse_icmp(char *str
, __u16 eth_type
, __u8 ip_proto
,
446 enum flower_icmp_field field
, struct nlmsghdr
*n
)
448 int value_type
, mask_type
;
450 value_type
= flower_icmp_attr_type(eth_type
, ip_proto
, field
);
451 mask_type
= flower_icmp_attr_mask_type(eth_type
, ip_proto
, field
);
452 if (value_type
< 0 || mask_type
< 0)
455 return flower_parse_u8(str
, value_type
, mask_type
, NULL
, NULL
, n
);
458 static int flower_port_attr_type(__u8 ip_proto
, enum flower_endpoint endpoint
)
460 if (ip_proto
== IPPROTO_TCP
)
461 return endpoint
== FLOWER_ENDPOINT_SRC
?
462 TCA_FLOWER_KEY_TCP_SRC
:
463 TCA_FLOWER_KEY_TCP_DST
;
464 else if (ip_proto
== IPPROTO_UDP
)
465 return endpoint
== FLOWER_ENDPOINT_SRC
?
466 TCA_FLOWER_KEY_UDP_SRC
:
467 TCA_FLOWER_KEY_UDP_DST
;
468 else if (ip_proto
== IPPROTO_SCTP
)
469 return endpoint
== FLOWER_ENDPOINT_SRC
?
470 TCA_FLOWER_KEY_SCTP_SRC
:
471 TCA_FLOWER_KEY_SCTP_DST
;
476 static int flower_port_range_attr_type(__u8 ip_proto
, enum flower_endpoint type
,
477 __be16
*min_port_type
,
478 __be16
*max_port_type
)
480 if (ip_proto
== IPPROTO_TCP
|| ip_proto
== IPPROTO_UDP
||
481 ip_proto
== IPPROTO_SCTP
) {
482 if (type
== FLOWER_ENDPOINT_SRC
) {
483 *min_port_type
= TCA_FLOWER_KEY_PORT_SRC_MIN
;
484 *max_port_type
= TCA_FLOWER_KEY_PORT_SRC_MAX
;
486 *min_port_type
= TCA_FLOWER_KEY_PORT_DST_MIN
;
487 *max_port_type
= TCA_FLOWER_KEY_PORT_DST_MAX
;
495 static int flower_parse_port(char *str
, __u8 ip_proto
,
496 enum flower_endpoint endpoint
,
502 ret
= sscanf(str
, "%hu-%hu", &min
, &max
);
507 type
= flower_port_attr_type(ip_proto
, endpoint
);
510 addattr16(n
, MAX_MSG
, type
, htons(min
));
511 } else if (ret
== 2) {
512 __be16 min_port_type
, max_port_type
;
515 fprintf(stderr
, "max value should be greater than min value\n");
518 if (flower_port_range_attr_type(ip_proto
, endpoint
,
519 &min_port_type
, &max_port_type
))
522 addattr16(n
, MAX_MSG
, min_port_type
, htons(min
));
523 addattr16(n
, MAX_MSG
, max_port_type
, htons(max
));
530 #define TCP_FLAGS_MAX_MASK 0xfff
532 static int flower_parse_tcp_flags(char *str
, int flags_type
, int mask_type
,
539 slash
= strchr(str
, '/');
543 ret
= get_u16(&flags
, str
, 16);
544 if (ret
< 0 || flags
& ~TCP_FLAGS_MAX_MASK
)
547 addattr16(n
, MAX_MSG
, flags_type
, htons(flags
));
550 ret
= get_u16(&flags
, slash
+ 1, 16);
551 if (ret
< 0 || flags
& ~TCP_FLAGS_MAX_MASK
)
554 flags
= TCP_FLAGS_MAX_MASK
;
556 addattr16(n
, MAX_MSG
, mask_type
, htons(flags
));
565 static int flower_parse_ip_tos_ttl(char *str
, int key_type
, int mask_type
,
572 slash
= strchr(str
, '/');
576 ret
= get_u8(&tos_ttl
, str
, 10);
578 ret
= get_u8(&tos_ttl
, str
, 16);
582 addattr8(n
, MAX_MSG
, key_type
, tos_ttl
);
585 ret
= get_u8(&tos_ttl
, slash
+ 1, 16);
591 addattr8(n
, MAX_MSG
, mask_type
, tos_ttl
);
600 static int flower_parse_key_id(const char *str
, int type
, struct nlmsghdr
*n
)
605 ret
= get_be32(&key_id
, str
, 10);
607 addattr32(n
, MAX_MSG
, type
, key_id
);
612 static int flower_parse_enc_port(char *str
, int type
, struct nlmsghdr
*n
)
617 ret
= get_be16(&port
, str
, 10);
621 addattr16(n
, MAX_MSG
, type
, port
);
626 static int flower_parse_geneve_opts(char *str
, struct nlmsghdr
*n
)
632 nest
= addattr_nest(n
, MAX_MSG
, TCA_FLOWER_KEY_ENC_OPTS_GENEVE
);
635 token
= strsep(&str
, ":");
638 case TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS
:
644 err
= get_be16(&opt_class
, token
, 16);
648 addattr16(n
, MAX_MSG
, i
, opt_class
);
651 case TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE
:
657 err
= get_u8(&opt_type
, token
, 16);
661 addattr8(n
, MAX_MSG
, i
, opt_type
);
664 case TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA
:
666 size_t token_len
= strlen(token
);
671 opts
= malloc(token_len
/ 2);
674 if (hex2mem(token
, opts
, token_len
/ 2) < 0) {
678 addattr_l(n
, MAX_MSG
, i
, opts
, token_len
/ 2);
684 fprintf(stderr
, "Unknown \"geneve_opts\" type\n");
688 token
= strsep(&str
, ":");
691 addattr_nest_end(n
, nest
);
696 static int flower_parse_enc_opt_part(char *str
, struct nlmsghdr
*n
)
701 token
= strsep(&str
, ",");
703 err
= flower_parse_geneve_opts(token
, n
);
707 token
= strsep(&str
, ",");
713 static int flower_check_enc_opt_key(char *key
)
715 int key_len
, col_cnt
= 0;
717 key_len
= strlen(key
);
718 while ((key
= strchr(key
, ':'))) {
719 if (strlen(key
) == key_len
)
722 key_len
= strlen(key
) - 1;
727 if (col_cnt
!= 2 || !key_len
)
733 static int flower_parse_enc_opts(char *str
, struct nlmsghdr
*n
)
735 char key
[XATTR_SIZE_MAX
], mask
[XATTR_SIZE_MAX
];
736 int data_len
, key_len
, mask_len
, err
;
742 token
= strsep(&str
, ",");
744 slash
= strchr(token
, '/');
748 if ((key_len
+ strlen(token
) > XATTR_SIZE_MAX
) ||
749 flower_check_enc_opt_key(token
))
752 strcpy(&key
[key_len
], token
);
753 key_len
+= strlen(token
) + 1;
754 key
[key_len
- 1] = ',';
757 /* Pad out mask when not provided */
758 if (mask_len
+ strlen(token
) > XATTR_SIZE_MAX
)
761 data_len
= strlen(rindex(token
, ':'));
762 sprintf(&mask
[mask_len
], "ffff:ff:");
764 memset(&mask
[mask_len
], 'f', data_len
- 1);
765 mask_len
+= data_len
;
766 mask
[mask_len
- 1] = ',';
767 token
= strsep(&str
, ",");
771 if (mask_len
+ strlen(slash
+ 1) > XATTR_SIZE_MAX
)
774 strcpy(&mask
[mask_len
], slash
+ 1);
775 mask_len
+= strlen(slash
+ 1) + 1;
776 mask
[mask_len
- 1] = ',';
779 token
= strsep(&str
, ",");
781 key
[key_len
- 1] = '\0';
782 mask
[mask_len
- 1] = '\0';
784 nest
= addattr_nest(n
, MAX_MSG
, TCA_FLOWER_KEY_ENC_OPTS
);
785 err
= flower_parse_enc_opt_part(key
, n
);
788 addattr_nest_end(n
, nest
);
790 nest
= addattr_nest(n
, MAX_MSG
, TCA_FLOWER_KEY_ENC_OPTS_MASK
);
791 err
= flower_parse_enc_opt_part(mask
, n
);
794 addattr_nest_end(n
, nest
);
799 static int flower_parse_opt(struct filter_util
*qu
, char *handle
,
800 int argc
, char **argv
, struct nlmsghdr
*n
)
803 struct tcmsg
*t
= NLMSG_DATA(n
);
805 __be16 eth_type
= TC_H_MIN(t
->tcm_info
);
806 __be16 vlan_ethtype
= 0;
807 __be16 cvlan_ethtype
= 0;
808 __u8 ip_proto
= 0xff;
814 ret
= get_u32(&t
->tcm_handle
, handle
, 0);
816 fprintf(stderr
, "Illegal \"handle\"\n");
821 tail
= (struct rtattr
*) (((void *) n
) + NLMSG_ALIGN(n
->nlmsg_len
));
822 addattr_l(n
, MAX_MSG
, TCA_OPTIONS
, NULL
, 0);
825 /*at minimal we will match all ethertype packets */
830 if (matches(*argv
, "classid") == 0 ||
831 matches(*argv
, "flowid") == 0) {
835 ret
= get_tc_classid(&handle
, *argv
);
837 fprintf(stderr
, "Illegal \"classid\"\n");
840 addattr_l(n
, MAX_MSG
, TCA_FLOWER_CLASSID
, &handle
, 4);
841 } else if (matches(*argv
, "hw_tc") == 0) {
847 tc
= strtoul(*argv
, &end
, 0);
849 fprintf(stderr
, "Illegal TC index\n");
852 if (tc
>= TC_QOPT_MAX_QUEUE
) {
853 fprintf(stderr
, "TC index exceeds max range\n");
856 handle
= TC_H_MAKE(TC_H_MAJ(t
->tcm_parent
),
857 TC_H_MIN(tc
+ TC_H_MIN_PRIORITY
));
858 addattr_l(n
, MAX_MSG
, TCA_FLOWER_CLASSID
, &handle
,
860 } else if (matches(*argv
, "ip_flags") == 0) {
862 ret
= flower_parse_matching_flags(*argv
,
867 fprintf(stderr
, "Illegal \"ip_flags\"\n");
870 } else if (matches(*argv
, "verbose") == 0) {
871 flags
|= TCA_CLS_FLAGS_VERBOSE
;
872 } else if (matches(*argv
, "skip_hw") == 0) {
873 flags
|= TCA_CLS_FLAGS_SKIP_HW
;
874 } else if (matches(*argv
, "skip_sw") == 0) {
875 flags
|= TCA_CLS_FLAGS_SKIP_SW
;
876 } else if (matches(*argv
, "indev") == 0) {
878 if (check_ifname(*argv
))
879 invarg("\"indev\" not a valid ifname", *argv
);
880 addattrstrz(n
, MAX_MSG
, TCA_FLOWER_INDEV
, *argv
);
881 } else if (matches(*argv
, "vlan_id") == 0) {
885 if (!eth_type_vlan(eth_type
)) {
886 fprintf(stderr
, "Can't set \"vlan_id\" if ethertype isn't 802.1Q or 802.1AD\n");
889 ret
= get_u16(&vid
, *argv
, 10);
890 if (ret
< 0 || vid
& ~0xfff) {
891 fprintf(stderr
, "Illegal \"vlan_id\"\n");
894 addattr16(n
, MAX_MSG
, TCA_FLOWER_KEY_VLAN_ID
, vid
);
895 } else if (matches(*argv
, "vlan_prio") == 0) {
899 if (!eth_type_vlan(eth_type
)) {
900 fprintf(stderr
, "Can't set \"vlan_prio\" if ethertype isn't 802.1Q or 802.1AD\n");
903 ret
= get_u8(&vlan_prio
, *argv
, 10);
904 if (ret
< 0 || vlan_prio
& ~0x7) {
905 fprintf(stderr
, "Illegal \"vlan_prio\"\n");
909 TCA_FLOWER_KEY_VLAN_PRIO
, vlan_prio
);
910 } else if (matches(*argv
, "vlan_ethtype") == 0) {
912 ret
= flower_parse_vlan_eth_type(*argv
, eth_type
,
913 TCA_FLOWER_KEY_VLAN_ETH_TYPE
,
917 } else if (matches(*argv
, "cvlan_id") == 0) {
921 if (!eth_type_vlan(vlan_ethtype
)) {
922 fprintf(stderr
, "Can't set \"cvlan_id\" if inner vlan ethertype isn't 802.1Q or 802.1AD\n");
925 ret
= get_u16(&vid
, *argv
, 10);
926 if (ret
< 0 || vid
& ~0xfff) {
927 fprintf(stderr
, "Illegal \"cvlan_id\"\n");
930 addattr16(n
, MAX_MSG
, TCA_FLOWER_KEY_CVLAN_ID
, vid
);
931 } else if (matches(*argv
, "cvlan_prio") == 0) {
935 if (!eth_type_vlan(vlan_ethtype
)) {
936 fprintf(stderr
, "Can't set \"cvlan_prio\" if inner vlan ethertype isn't 802.1Q or 802.1AD\n");
939 ret
= get_u8(&cvlan_prio
, *argv
, 10);
940 if (ret
< 0 || cvlan_prio
& ~0x7) {
941 fprintf(stderr
, "Illegal \"cvlan_prio\"\n");
945 TCA_FLOWER_KEY_CVLAN_PRIO
, cvlan_prio
);
946 } else if (matches(*argv
, "cvlan_ethtype") == 0) {
948 ret
= flower_parse_vlan_eth_type(*argv
, vlan_ethtype
,
949 TCA_FLOWER_KEY_CVLAN_ETH_TYPE
,
953 } else if (matches(*argv
, "mpls_label") == 0) {
957 if (eth_type
!= htons(ETH_P_MPLS_UC
) &&
958 eth_type
!= htons(ETH_P_MPLS_MC
)) {
960 "Can't set \"mpls_label\" if ethertype isn't MPLS\n");
963 ret
= get_u32(&label
, *argv
, 10);
964 if (ret
< 0 || label
& ~(MPLS_LS_LABEL_MASK
>> MPLS_LS_LABEL_SHIFT
)) {
965 fprintf(stderr
, "Illegal \"mpls_label\"\n");
968 addattr32(n
, MAX_MSG
, TCA_FLOWER_KEY_MPLS_LABEL
, label
);
969 } else if (matches(*argv
, "mpls_tc") == 0) {
973 if (eth_type
!= htons(ETH_P_MPLS_UC
) &&
974 eth_type
!= htons(ETH_P_MPLS_MC
)) {
976 "Can't set \"mpls_tc\" if ethertype isn't MPLS\n");
979 ret
= get_u8(&tc
, *argv
, 10);
980 if (ret
< 0 || tc
& ~(MPLS_LS_TC_MASK
>> MPLS_LS_TC_SHIFT
)) {
981 fprintf(stderr
, "Illegal \"mpls_tc\"\n");
984 addattr8(n
, MAX_MSG
, TCA_FLOWER_KEY_MPLS_TC
, tc
);
985 } else if (matches(*argv
, "mpls_bos") == 0) {
989 if (eth_type
!= htons(ETH_P_MPLS_UC
) &&
990 eth_type
!= htons(ETH_P_MPLS_MC
)) {
992 "Can't set \"mpls_bos\" if ethertype isn't MPLS\n");
995 ret
= get_u8(&bos
, *argv
, 10);
996 if (ret
< 0 || bos
& ~(MPLS_LS_S_MASK
>> MPLS_LS_S_SHIFT
)) {
997 fprintf(stderr
, "Illegal \"mpls_bos\"\n");
1000 addattr8(n
, MAX_MSG
, TCA_FLOWER_KEY_MPLS_BOS
, bos
);
1001 } else if (matches(*argv
, "mpls_ttl") == 0) {
1005 if (eth_type
!= htons(ETH_P_MPLS_UC
) &&
1006 eth_type
!= htons(ETH_P_MPLS_MC
)) {
1008 "Can't set \"mpls_ttl\" if ethertype isn't MPLS\n");
1011 ret
= get_u8(&ttl
, *argv
, 10);
1012 if (ret
< 0 || ttl
& ~(MPLS_LS_TTL_MASK
>> MPLS_LS_TTL_SHIFT
)) {
1013 fprintf(stderr
, "Illegal \"mpls_ttl\"\n");
1016 addattr8(n
, MAX_MSG
, TCA_FLOWER_KEY_MPLS_TTL
, ttl
);
1017 } else if (matches(*argv
, "dst_mac") == 0) {
1019 ret
= flower_parse_eth_addr(*argv
,
1020 TCA_FLOWER_KEY_ETH_DST
,
1021 TCA_FLOWER_KEY_ETH_DST_MASK
,
1024 fprintf(stderr
, "Illegal \"dst_mac\"\n");
1027 } else if (matches(*argv
, "src_mac") == 0) {
1029 ret
= flower_parse_eth_addr(*argv
,
1030 TCA_FLOWER_KEY_ETH_SRC
,
1031 TCA_FLOWER_KEY_ETH_SRC_MASK
,
1034 fprintf(stderr
, "Illegal \"src_mac\"\n");
1037 } else if (matches(*argv
, "ip_proto") == 0) {
1039 ret
= flower_parse_ip_proto(*argv
, cvlan_ethtype
?
1040 cvlan_ethtype
: vlan_ethtype
?
1041 vlan_ethtype
: eth_type
,
1042 TCA_FLOWER_KEY_IP_PROTO
,
1045 fprintf(stderr
, "Illegal \"ip_proto\"\n");
1048 } else if (matches(*argv
, "ip_tos") == 0) {
1050 ret
= flower_parse_ip_tos_ttl(*argv
,
1051 TCA_FLOWER_KEY_IP_TOS
,
1052 TCA_FLOWER_KEY_IP_TOS_MASK
,
1055 fprintf(stderr
, "Illegal \"ip_tos\"\n");
1058 } else if (matches(*argv
, "ip_ttl") == 0) {
1060 ret
= flower_parse_ip_tos_ttl(*argv
,
1061 TCA_FLOWER_KEY_IP_TTL
,
1062 TCA_FLOWER_KEY_IP_TTL_MASK
,
1065 fprintf(stderr
, "Illegal \"ip_ttl\"\n");
1068 } else if (matches(*argv
, "dst_ip") == 0) {
1070 ret
= flower_parse_ip_addr(*argv
, cvlan_ethtype
?
1071 cvlan_ethtype
: vlan_ethtype
?
1072 vlan_ethtype
: eth_type
,
1073 TCA_FLOWER_KEY_IPV4_DST
,
1074 TCA_FLOWER_KEY_IPV4_DST_MASK
,
1075 TCA_FLOWER_KEY_IPV6_DST
,
1076 TCA_FLOWER_KEY_IPV6_DST_MASK
,
1079 fprintf(stderr
, "Illegal \"dst_ip\"\n");
1082 } else if (matches(*argv
, "src_ip") == 0) {
1084 ret
= flower_parse_ip_addr(*argv
, cvlan_ethtype
?
1085 cvlan_ethtype
: vlan_ethtype
?
1086 vlan_ethtype
: eth_type
,
1087 TCA_FLOWER_KEY_IPV4_SRC
,
1088 TCA_FLOWER_KEY_IPV4_SRC_MASK
,
1089 TCA_FLOWER_KEY_IPV6_SRC
,
1090 TCA_FLOWER_KEY_IPV6_SRC_MASK
,
1093 fprintf(stderr
, "Illegal \"src_ip\"\n");
1096 } else if (matches(*argv
, "dst_port") == 0) {
1098 ret
= flower_parse_port(*argv
, ip_proto
,
1099 FLOWER_ENDPOINT_DST
, n
);
1101 fprintf(stderr
, "Illegal \"dst_port\"\n");
1104 } else if (matches(*argv
, "src_port") == 0) {
1106 ret
= flower_parse_port(*argv
, ip_proto
,
1107 FLOWER_ENDPOINT_SRC
, n
);
1109 fprintf(stderr
, "Illegal \"src_port\"\n");
1112 } else if (matches(*argv
, "tcp_flags") == 0) {
1114 ret
= flower_parse_tcp_flags(*argv
,
1115 TCA_FLOWER_KEY_TCP_FLAGS
,
1116 TCA_FLOWER_KEY_TCP_FLAGS_MASK
,
1119 fprintf(stderr
, "Illegal \"tcp_flags\"\n");
1122 } else if (matches(*argv
, "type") == 0) {
1124 ret
= flower_parse_icmp(*argv
, eth_type
, ip_proto
,
1125 FLOWER_ICMP_FIELD_TYPE
, n
);
1127 fprintf(stderr
, "Illegal \"icmp type\"\n");
1130 } else if (matches(*argv
, "code") == 0) {
1132 ret
= flower_parse_icmp(*argv
, eth_type
, ip_proto
,
1133 FLOWER_ICMP_FIELD_CODE
, n
);
1135 fprintf(stderr
, "Illegal \"icmp code\"\n");
1138 } else if (matches(*argv
, "arp_tip") == 0) {
1140 ret
= flower_parse_arp_ip_addr(*argv
, vlan_ethtype
?
1141 vlan_ethtype
: eth_type
,
1142 TCA_FLOWER_KEY_ARP_TIP
,
1143 TCA_FLOWER_KEY_ARP_TIP_MASK
,
1146 fprintf(stderr
, "Illegal \"arp_tip\"\n");
1149 } else if (matches(*argv
, "arp_sip") == 0) {
1151 ret
= flower_parse_arp_ip_addr(*argv
, vlan_ethtype
?
1152 vlan_ethtype
: eth_type
,
1153 TCA_FLOWER_KEY_ARP_SIP
,
1154 TCA_FLOWER_KEY_ARP_SIP_MASK
,
1157 fprintf(stderr
, "Illegal \"arp_sip\"\n");
1160 } else if (matches(*argv
, "arp_op") == 0) {
1162 ret
= flower_parse_arp_op(*argv
, vlan_ethtype
?
1163 vlan_ethtype
: eth_type
,
1164 TCA_FLOWER_KEY_ARP_OP
,
1165 TCA_FLOWER_KEY_ARP_OP_MASK
,
1168 fprintf(stderr
, "Illegal \"arp_op\"\n");
1171 } else if (matches(*argv
, "arp_tha") == 0) {
1173 ret
= flower_parse_eth_addr(*argv
,
1174 TCA_FLOWER_KEY_ARP_THA
,
1175 TCA_FLOWER_KEY_ARP_THA_MASK
,
1178 fprintf(stderr
, "Illegal \"arp_tha\"\n");
1181 } else if (matches(*argv
, "arp_sha") == 0) {
1183 ret
= flower_parse_eth_addr(*argv
,
1184 TCA_FLOWER_KEY_ARP_SHA
,
1185 TCA_FLOWER_KEY_ARP_SHA_MASK
,
1188 fprintf(stderr
, "Illegal \"arp_sha\"\n");
1191 } else if (matches(*argv
, "enc_dst_ip") == 0) {
1193 ret
= flower_parse_ip_addr(*argv
, 0,
1194 TCA_FLOWER_KEY_ENC_IPV4_DST
,
1195 TCA_FLOWER_KEY_ENC_IPV4_DST_MASK
,
1196 TCA_FLOWER_KEY_ENC_IPV6_DST
,
1197 TCA_FLOWER_KEY_ENC_IPV6_DST_MASK
,
1200 fprintf(stderr
, "Illegal \"enc_dst_ip\"\n");
1203 } else if (matches(*argv
, "enc_src_ip") == 0) {
1205 ret
= flower_parse_ip_addr(*argv
, 0,
1206 TCA_FLOWER_KEY_ENC_IPV4_SRC
,
1207 TCA_FLOWER_KEY_ENC_IPV4_SRC_MASK
,
1208 TCA_FLOWER_KEY_ENC_IPV6_SRC
,
1209 TCA_FLOWER_KEY_ENC_IPV6_SRC_MASK
,
1212 fprintf(stderr
, "Illegal \"enc_src_ip\"\n");
1215 } else if (matches(*argv
, "enc_key_id") == 0) {
1217 ret
= flower_parse_key_id(*argv
,
1218 TCA_FLOWER_KEY_ENC_KEY_ID
, n
);
1220 fprintf(stderr
, "Illegal \"enc_key_id\"\n");
1223 } else if (matches(*argv
, "enc_dst_port") == 0) {
1225 ret
= flower_parse_enc_port(*argv
,
1226 TCA_FLOWER_KEY_ENC_UDP_DST_PORT
, n
);
1228 fprintf(stderr
, "Illegal \"enc_dst_port\"\n");
1231 } else if (matches(*argv
, "enc_tos") == 0) {
1233 ret
= flower_parse_ip_tos_ttl(*argv
,
1234 TCA_FLOWER_KEY_ENC_IP_TOS
,
1235 TCA_FLOWER_KEY_ENC_IP_TOS_MASK
,
1238 fprintf(stderr
, "Illegal \"enc_tos\"\n");
1241 } else if (matches(*argv
, "enc_ttl") == 0) {
1243 ret
= flower_parse_ip_tos_ttl(*argv
,
1244 TCA_FLOWER_KEY_ENC_IP_TTL
,
1245 TCA_FLOWER_KEY_ENC_IP_TTL_MASK
,
1248 fprintf(stderr
, "Illegal \"enc_ttl\"\n");
1251 } else if (matches(*argv
, "geneve_opts") == 0) {
1253 ret
= flower_parse_enc_opts(*argv
, n
);
1255 fprintf(stderr
, "Illegal \"geneve_opts\"\n");
1258 } else if (matches(*argv
, "action") == 0) {
1260 ret
= parse_action(&argc
, &argv
, TCA_FLOWER_ACT
, n
);
1262 fprintf(stderr
, "Illegal \"action\"\n");
1266 } else if (strcmp(*argv
, "help") == 0) {
1270 fprintf(stderr
, "What is \"%s\"?\n", *argv
);
1278 ret
= addattr32(n
, MAX_MSG
, TCA_FLOWER_FLAGS
, flags
);
1283 ret
= addattr32(n
, MAX_MSG
, TCA_FLOWER_KEY_FLAGS
, htonl(mtf
));
1287 ret
= addattr32(n
, MAX_MSG
, TCA_FLOWER_KEY_FLAGS_MASK
, htonl(mtf_mask
));
1292 if (eth_type
!= htons(ETH_P_ALL
)) {
1293 ret
= addattr16(n
, MAX_MSG
, TCA_FLOWER_KEY_ETH_TYPE
, eth_type
);
1298 tail
->rta_len
= (((void *)n
)+n
->nlmsg_len
) - (void *)tail
;
1303 static int __mask_bits(char *addr
, size_t len
)
1310 for (i
= 0; i
< len
; i
++, addr
++) {
1311 for (j
= 7; j
>= 0; j
--) {
1312 if (((*addr
) >> j
) & 0x1) {
1326 static void flower_print_eth_addr(char *name
, struct rtattr
*addr_attr
,
1327 struct rtattr
*mask_attr
)
1329 SPRINT_BUF(namefrm
);
1335 if (!addr_attr
|| RTA_PAYLOAD(addr_attr
) != ETH_ALEN
)
1337 done
= sprintf(out
, "%s",
1338 ll_addr_n2a(RTA_DATA(addr_attr
), ETH_ALEN
,
1339 0, b1
, sizeof(b1
)));
1340 if (mask_attr
&& RTA_PAYLOAD(mask_attr
) == ETH_ALEN
) {
1341 bits
= __mask_bits(RTA_DATA(mask_attr
), ETH_ALEN
);
1343 sprintf(out
+ done
, "/%s",
1344 ll_addr_n2a(RTA_DATA(mask_attr
), ETH_ALEN
,
1345 0, b1
, sizeof(b1
)));
1346 else if (bits
< ETH_ALEN
* 8)
1347 sprintf(out
+ done
, "/%d", bits
);
1350 sprintf(namefrm
, "\n %s %%s", name
);
1351 print_string(PRINT_ANY
, name
, namefrm
, out
);
1354 static void flower_print_eth_type(__be16
*p_eth_type
,
1355 struct rtattr
*eth_type_attr
)
1363 eth_type
= rta_getattr_u16(eth_type_attr
);
1364 if (eth_type
== htons(ETH_P_IP
))
1365 sprintf(out
, "ipv4");
1366 else if (eth_type
== htons(ETH_P_IPV6
))
1367 sprintf(out
, "ipv6");
1368 else if (eth_type
== htons(ETH_P_ARP
))
1369 sprintf(out
, "arp");
1370 else if (eth_type
== htons(ETH_P_RARP
))
1371 sprintf(out
, "rarp");
1373 sprintf(out
, "%04x", ntohs(eth_type
));
1375 print_string(PRINT_ANY
, "eth_type", "\n eth_type %s", out
);
1376 *p_eth_type
= eth_type
;
1379 static void flower_print_ip_proto(__u8
*p_ip_proto
,
1380 struct rtattr
*ip_proto_attr
)
1388 ip_proto
= rta_getattr_u8(ip_proto_attr
);
1389 if (ip_proto
== IPPROTO_TCP
)
1390 sprintf(out
, "tcp");
1391 else if (ip_proto
== IPPROTO_UDP
)
1392 sprintf(out
, "udp");
1393 else if (ip_proto
== IPPROTO_SCTP
)
1394 sprintf(out
, "sctp");
1395 else if (ip_proto
== IPPROTO_ICMP
)
1396 sprintf(out
, "icmp");
1397 else if (ip_proto
== IPPROTO_ICMPV6
)
1398 sprintf(out
, "icmpv6");
1400 sprintf(out
, "%02x", ip_proto
);
1402 print_string(PRINT_ANY
, "ip_proto", "\n ip_proto %s", out
);
1403 *p_ip_proto
= ip_proto
;
1406 static void flower_print_ip_attr(const char *name
, struct rtattr
*key_attr
,
1407 struct rtattr
*mask_attr
)
1409 SPRINT_BUF(namefrm
);
1416 done
= sprintf(out
, "0x%x", rta_getattr_u8(key_attr
));
1418 sprintf(out
+ done
, "/%x", rta_getattr_u8(mask_attr
));
1420 print_string(PRINT_FP
, NULL
, "%s ", _SL_
);
1421 sprintf(namefrm
, "%s %%s", name
);
1422 print_string(PRINT_ANY
, name
, namefrm
, out
);
1425 static void flower_print_matching_flags(char *name
,
1426 enum flower_matching_flags type
,
1427 struct rtattr
*attr
,
1428 struct rtattr
*mask_attr
)
1435 if (!mask_attr
|| RTA_PAYLOAD(mask_attr
) != 4)
1438 mtf
= ntohl(rta_getattr_u32(attr
));
1439 mtf_mask
= ntohl(rta_getattr_u32(mask_attr
));
1441 for (i
= 0; i
< ARRAY_SIZE(flags_str
); i
++) {
1442 if (type
!= flags_str
[i
].type
)
1444 if (mtf_mask
& flags_str
[i
].flag
) {
1446 print_string(PRINT_FP
, NULL
, "\n %s ", name
);
1447 open_json_object(name
);
1449 print_string(PRINT_FP
, NULL
, "/", NULL
);
1452 print_bool(PRINT_JSON
, flags_str
[i
].string
, NULL
,
1453 mtf
& flags_str
[i
].flag
);
1454 if (mtf
& flags_str
[i
].flag
)
1455 print_string(PRINT_FP
, NULL
, "%s",
1456 flags_str
[i
].string
);
1458 print_string(PRINT_FP
, NULL
, "no%s",
1459 flags_str
[i
].string
);
1463 close_json_object();
1466 static void flower_print_ip_addr(char *name
, __be16 eth_type
,
1467 struct rtattr
*addr4_attr
,
1468 struct rtattr
*mask4_attr
,
1469 struct rtattr
*addr6_attr
,
1470 struct rtattr
*mask6_attr
)
1472 struct rtattr
*addr_attr
;
1473 struct rtattr
*mask_attr
;
1474 SPRINT_BUF(namefrm
);
1481 if (eth_type
== htons(ETH_P_IP
)) {
1483 addr_attr
= addr4_attr
;
1484 mask_attr
= mask4_attr
;
1486 } else if (eth_type
== htons(ETH_P_IPV6
)) {
1488 addr_attr
= addr6_attr
;
1489 mask_attr
= mask6_attr
;
1494 if (!addr_attr
|| RTA_PAYLOAD(addr_attr
) != len
)
1496 if (!mask_attr
|| RTA_PAYLOAD(mask_attr
) != len
)
1498 done
= sprintf(out
, "%s", rt_addr_n2a_rta(family
, addr_attr
));
1499 bits
= __mask_bits(RTA_DATA(mask_attr
), len
);
1501 sprintf(out
+ done
, "/%s", rt_addr_n2a_rta(family
, mask_attr
));
1502 else if (bits
< len
* 8)
1503 sprintf(out
+ done
, "/%d", bits
);
1505 sprintf(namefrm
, "\n %s %%s", name
);
1506 print_string(PRINT_ANY
, name
, namefrm
, out
);
1508 static void flower_print_ip4_addr(char *name
, struct rtattr
*addr_attr
,
1509 struct rtattr
*mask_attr
)
1511 return flower_print_ip_addr(name
, htons(ETH_P_IP
),
1512 addr_attr
, mask_attr
, 0, 0);
1515 static void flower_print_port(char *name
, struct rtattr
*attr
)
1517 SPRINT_BUF(namefrm
);
1522 sprintf(namefrm
,"\n %s %%u", name
);
1523 print_hu(PRINT_ANY
, name
, namefrm
, rta_getattr_be16(attr
));
1526 static void flower_print_port_range(char *name
, struct rtattr
*min_attr
,
1527 struct rtattr
*max_attr
)
1529 if (!min_attr
|| !max_attr
)
1532 if (is_json_context()) {
1533 open_json_object(name
);
1534 print_hu(PRINT_JSON
, "start", NULL
, rta_getattr_be16(min_attr
));
1535 print_hu(PRINT_JSON
, "end", NULL
, rta_getattr_be16(max_attr
));
1536 close_json_object();
1538 SPRINT_BUF(namefrm
);
1542 done
= sprintf(out
, "%u", rta_getattr_be16(min_attr
));
1543 sprintf(out
+ done
, "-%u", rta_getattr_be16(max_attr
));
1544 sprintf(namefrm
, "\n %s %%s", name
);
1545 print_string(PRINT_ANY
, name
, namefrm
, out
);
1549 static void flower_print_tcp_flags(const char *name
, struct rtattr
*flags_attr
,
1550 struct rtattr
*mask_attr
)
1552 SPRINT_BUF(namefrm
);
1559 done
= sprintf(out
, "0x%x", rta_getattr_be16(flags_attr
));
1561 sprintf(out
+ done
, "/%x", rta_getattr_be16(mask_attr
));
1563 print_string(PRINT_FP
, NULL
, "%s ", _SL_
);
1564 sprintf(namefrm
, "%s %%s", name
);
1565 print_string(PRINT_ANY
, name
, namefrm
, out
);
1569 static void flower_print_key_id(const char *name
, struct rtattr
*attr
)
1571 SPRINT_BUF(namefrm
);
1576 sprintf(namefrm
,"\n %s %%u", name
);
1577 print_uint(PRINT_ANY
, name
, namefrm
, rta_getattr_be32(attr
));
1580 static void flower_print_geneve_opts(const char *name
, struct rtattr
*attr
,
1583 struct rtattr
*tb
[TCA_FLOWER_KEY_ENC_OPT_GENEVE_MAX
+ 1];
1584 int ii
, data_len
, offset
= 0, slen
= 0;
1585 struct rtattr
*i
= RTA_DATA(attr
);
1586 int rem
= RTA_PAYLOAD(attr
);
1587 __u8 type
, data_r
[rem
];
1588 char data
[rem
* 2 + 1];
1591 open_json_array(PRINT_JSON
, name
);
1593 parse_rtattr(tb
, TCA_FLOWER_KEY_ENC_OPT_GENEVE_MAX
, i
, rem
);
1594 class = rta_getattr_be16(tb
[TCA_FLOWER_KEY_ENC_OPT_GENEVE_CLASS
]);
1595 type
= rta_getattr_u8(tb
[TCA_FLOWER_KEY_ENC_OPT_GENEVE_TYPE
]);
1596 data_len
= RTA_PAYLOAD(tb
[TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA
]);
1597 hexstring_n2a(RTA_DATA(tb
[TCA_FLOWER_KEY_ENC_OPT_GENEVE_DATA
]),
1598 data_len
, data
, sizeof(data
));
1599 hex2mem(data
, data_r
, data_len
);
1600 offset
+= data_len
+ 20;
1601 rem
-= data_len
+ 20;
1602 i
= RTA_DATA(attr
) + offset
;
1604 open_json_object(NULL
);
1605 print_uint(PRINT_JSON
, "class", NULL
, class);
1606 print_uint(PRINT_JSON
, "type", NULL
, type
);
1607 open_json_array(PRINT_JSON
, "data");
1608 for (ii
= 0; ii
< data_len
; ii
++)
1609 print_uint(PRINT_JSON
, NULL
, NULL
, data_r
[ii
]);
1610 close_json_array(PRINT_JSON
, "data");
1611 close_json_object();
1613 slen
+= sprintf(strbuf
+ slen
, "%04x:%02x:%s",
1616 slen
+= sprintf(strbuf
+ slen
, ",");
1618 close_json_array(PRINT_JSON
, name
);
1621 static void flower_print_geneve_parts(const char *name
, struct rtattr
*attr
,
1622 char *key
, char *mask
)
1624 char *namefrm
= "\n geneve_opt %s";
1625 char *key_token
, *mask_token
, *out
;
1628 out
= malloc(RTA_PAYLOAD(attr
) * 4 + 3);
1633 key_token
= strsep(&key
, ",");
1634 mask_token
= strsep(&mask
, ",");
1636 len
+= sprintf(&out
[len
], "%s/%s,", key_token
, mask_token
);
1637 mask_token
= strsep(&mask
, ",");
1638 key_token
= strsep(&key
, ",");
1641 out
[len
- 1] = '\0';
1642 print_string(PRINT_FP
, name
, namefrm
, out
);
1646 static void flower_print_enc_opts(const char *name
, struct rtattr
*attr
,
1647 struct rtattr
*mask_attr
)
1649 struct rtattr
*key_tb
[TCA_FLOWER_KEY_ENC_OPTS_MAX
+ 1];
1650 struct rtattr
*msk_tb
[TCA_FLOWER_KEY_ENC_OPTS_MAX
+ 1];
1656 key
= malloc(RTA_PAYLOAD(attr
) * 2 + 1);
1660 msk
= malloc(RTA_PAYLOAD(attr
) * 2 + 1);
1664 parse_rtattr_nested(key_tb
, TCA_FLOWER_KEY_ENC_OPTS_MAX
, attr
);
1665 flower_print_geneve_opts("geneve_opt_key",
1666 key_tb
[TCA_FLOWER_KEY_ENC_OPTS_GENEVE
], key
);
1668 parse_rtattr_nested(msk_tb
, TCA_FLOWER_KEY_ENC_OPTS_MAX
, mask_attr
);
1669 flower_print_geneve_opts("geneve_opt_mask",
1670 msk_tb
[TCA_FLOWER_KEY_ENC_OPTS_GENEVE
], msk
);
1672 flower_print_geneve_parts(name
, attr
, key
, msk
);
1679 static void flower_print_masked_u8(const char *name
, struct rtattr
*attr
,
1680 struct rtattr
*mask_attr
,
1681 const char *(*value_to_str
)(__u8 value
))
1683 const char *value_str
= NULL
;
1685 SPRINT_BUF(namefrm
);
1692 value
= rta_getattr_u8(attr
);
1693 mask
= mask_attr
? rta_getattr_u8(mask_attr
) : UINT8_MAX
;
1694 if (mask
== UINT8_MAX
&& value_to_str
)
1695 value_str
= value_to_str(value
);
1698 done
= sprintf(out
, "%s", value_str
);
1700 done
= sprintf(out
, "%d", value
);
1702 if (mask
!= UINT8_MAX
)
1703 sprintf(out
+ done
, "/%d", mask
);
1705 sprintf(namefrm
,"\n %s %%s", name
);
1706 print_string(PRINT_ANY
, name
, namefrm
, out
);
1709 static void flower_print_u8(const char *name
, struct rtattr
*attr
)
1711 flower_print_masked_u8(name
, attr
, NULL
, NULL
);
1714 static void flower_print_u32(const char *name
, struct rtattr
*attr
)
1716 SPRINT_BUF(namefrm
);
1721 sprintf(namefrm
,"\n %s %%u", name
);
1722 print_uint(PRINT_ANY
, name
, namefrm
, rta_getattr_u32(attr
));
1725 static void flower_print_arp_op(const char *name
,
1726 struct rtattr
*op_attr
,
1727 struct rtattr
*mask_attr
)
1729 flower_print_masked_u8(name
, op_attr
, mask_attr
,
1730 flower_print_arp_op_to_name
);
1733 static int flower_print_opt(struct filter_util
*qu
, FILE *f
,
1734 struct rtattr
*opt
, __u32 handle
)
1736 struct rtattr
*tb
[TCA_FLOWER_MAX
+ 1];
1737 __be16 min_port_type
, max_port_type
;
1738 int nl_type
, nl_mask_type
;
1739 __be16 eth_type
= 0;
1740 __u8 ip_proto
= 0xff;
1745 parse_rtattr_nested(tb
, TCA_FLOWER_MAX
, opt
);
1748 print_uint(PRINT_ANY
, "handle", "handle 0x%x ", handle
);
1750 if (tb
[TCA_FLOWER_CLASSID
]) {
1751 __u32 h
= rta_getattr_u32(tb
[TCA_FLOWER_CLASSID
]);
1753 if (TC_H_MIN(h
) < TC_H_MIN_PRIORITY
||
1754 TC_H_MIN(h
) > (TC_H_MIN_PRIORITY
+ TC_QOPT_MAX_QUEUE
- 1)) {
1756 print_string(PRINT_ANY
, "classid", "classid %s ",
1757 sprint_tc_classid(h
, b1
));
1759 print_uint(PRINT_ANY
, "hw_tc", "hw_tc %u ",
1760 TC_H_MIN(h
) - TC_H_MIN_PRIORITY
);
1764 if (tb
[TCA_FLOWER_INDEV
]) {
1765 struct rtattr
*attr
= tb
[TCA_FLOWER_INDEV
];
1767 print_string(PRINT_ANY
, "indev", "\n indev %s",
1768 rta_getattr_str(attr
));
1771 open_json_object("keys");
1773 if (tb
[TCA_FLOWER_KEY_VLAN_ID
]) {
1774 struct rtattr
*attr
= tb
[TCA_FLOWER_KEY_VLAN_ID
];
1776 print_uint(PRINT_ANY
, "vlan_id", "\n vlan_id %u",
1777 rta_getattr_u16(attr
));
1780 if (tb
[TCA_FLOWER_KEY_VLAN_PRIO
]) {
1781 struct rtattr
*attr
= tb
[TCA_FLOWER_KEY_VLAN_PRIO
];
1783 print_uint(PRINT_ANY
, "vlan_prio", "\n vlan_prio %d",
1784 rta_getattr_u8(attr
));
1787 if (tb
[TCA_FLOWER_KEY_VLAN_ETH_TYPE
]) {
1789 struct rtattr
*attr
= tb
[TCA_FLOWER_KEY_VLAN_ETH_TYPE
];
1791 print_string(PRINT_ANY
, "vlan_ethtype", "\n vlan_ethtype %s",
1792 ll_proto_n2a(rta_getattr_u16(attr
),
1796 if (tb
[TCA_FLOWER_KEY_CVLAN_ID
]) {
1797 struct rtattr
*attr
= tb
[TCA_FLOWER_KEY_CVLAN_ID
];
1799 print_uint(PRINT_ANY
, "cvlan_id", "\n cvlan_id %u",
1800 rta_getattr_u16(attr
));
1803 if (tb
[TCA_FLOWER_KEY_CVLAN_PRIO
]) {
1804 struct rtattr
*attr
= tb
[TCA_FLOWER_KEY_CVLAN_PRIO
];
1806 print_uint(PRINT_ANY
, "cvlan_prio", "\n cvlan_prio %d",
1807 rta_getattr_u8(attr
));
1810 if (tb
[TCA_FLOWER_KEY_CVLAN_ETH_TYPE
]) {
1812 struct rtattr
*attr
= tb
[TCA_FLOWER_KEY_CVLAN_ETH_TYPE
];
1814 print_string(PRINT_ANY
, "cvlan_ethtype", "\n cvlan_ethtype %s",
1815 ll_proto_n2a(rta_getattr_u16(attr
),
1819 flower_print_eth_addr("dst_mac", tb
[TCA_FLOWER_KEY_ETH_DST
],
1820 tb
[TCA_FLOWER_KEY_ETH_DST_MASK
]);
1821 flower_print_eth_addr("src_mac", tb
[TCA_FLOWER_KEY_ETH_SRC
],
1822 tb
[TCA_FLOWER_KEY_ETH_SRC_MASK
]);
1824 flower_print_eth_type(ð_type
, tb
[TCA_FLOWER_KEY_ETH_TYPE
]);
1825 flower_print_ip_proto(&ip_proto
, tb
[TCA_FLOWER_KEY_IP_PROTO
]);
1827 flower_print_ip_attr("ip_tos", tb
[TCA_FLOWER_KEY_IP_TOS
],
1828 tb
[TCA_FLOWER_KEY_IP_TOS_MASK
]);
1829 flower_print_ip_attr("ip_ttl", tb
[TCA_FLOWER_KEY_IP_TTL
],
1830 tb
[TCA_FLOWER_KEY_IP_TTL_MASK
]);
1832 flower_print_u32("mpls_label", tb
[TCA_FLOWER_KEY_MPLS_LABEL
]);
1833 flower_print_u8("mpls_tc", tb
[TCA_FLOWER_KEY_MPLS_TC
]);
1834 flower_print_u8("mpls_bos", tb
[TCA_FLOWER_KEY_MPLS_BOS
]);
1835 flower_print_u8("mpls_ttl", tb
[TCA_FLOWER_KEY_MPLS_TTL
]);
1837 flower_print_ip_addr("dst_ip", eth_type
,
1838 tb
[TCA_FLOWER_KEY_IPV4_DST
],
1839 tb
[TCA_FLOWER_KEY_IPV4_DST_MASK
],
1840 tb
[TCA_FLOWER_KEY_IPV6_DST
],
1841 tb
[TCA_FLOWER_KEY_IPV6_DST_MASK
]);
1843 flower_print_ip_addr("src_ip", eth_type
,
1844 tb
[TCA_FLOWER_KEY_IPV4_SRC
],
1845 tb
[TCA_FLOWER_KEY_IPV4_SRC_MASK
],
1846 tb
[TCA_FLOWER_KEY_IPV6_SRC
],
1847 tb
[TCA_FLOWER_KEY_IPV6_SRC_MASK
]);
1849 nl_type
= flower_port_attr_type(ip_proto
, FLOWER_ENDPOINT_DST
);
1851 flower_print_port("dst_port", tb
[nl_type
]);
1852 nl_type
= flower_port_attr_type(ip_proto
, FLOWER_ENDPOINT_SRC
);
1854 flower_print_port("src_port", tb
[nl_type
]);
1856 if (!flower_port_range_attr_type(ip_proto
, FLOWER_ENDPOINT_DST
,
1857 &min_port_type
, &max_port_type
))
1858 flower_print_port_range("dst_port",
1859 tb
[min_port_type
], tb
[max_port_type
]);
1861 if (!flower_port_range_attr_type(ip_proto
, FLOWER_ENDPOINT_SRC
,
1862 &min_port_type
, &max_port_type
))
1863 flower_print_port_range("src_port",
1864 tb
[min_port_type
], tb
[max_port_type
]);
1866 flower_print_tcp_flags("tcp_flags", tb
[TCA_FLOWER_KEY_TCP_FLAGS
],
1867 tb
[TCA_FLOWER_KEY_TCP_FLAGS_MASK
]);
1869 nl_type
= flower_icmp_attr_type(eth_type
, ip_proto
,
1870 FLOWER_ICMP_FIELD_TYPE
);
1871 nl_mask_type
= flower_icmp_attr_mask_type(eth_type
, ip_proto
,
1872 FLOWER_ICMP_FIELD_TYPE
);
1873 if (nl_type
>= 0 && nl_mask_type
>= 0)
1874 flower_print_masked_u8("icmp_type", tb
[nl_type
],
1875 tb
[nl_mask_type
], NULL
);
1877 nl_type
= flower_icmp_attr_type(eth_type
, ip_proto
,
1878 FLOWER_ICMP_FIELD_CODE
);
1879 nl_mask_type
= flower_icmp_attr_mask_type(eth_type
, ip_proto
,
1880 FLOWER_ICMP_FIELD_CODE
);
1881 if (nl_type
>= 0 && nl_mask_type
>= 0)
1882 flower_print_masked_u8("icmp_code", tb
[nl_type
],
1883 tb
[nl_mask_type
], NULL
);
1885 flower_print_ip4_addr("arp_sip", tb
[TCA_FLOWER_KEY_ARP_SIP
],
1886 tb
[TCA_FLOWER_KEY_ARP_SIP_MASK
]);
1887 flower_print_ip4_addr("arp_tip", tb
[TCA_FLOWER_KEY_ARP_TIP
],
1888 tb
[TCA_FLOWER_KEY_ARP_TIP_MASK
]);
1889 flower_print_arp_op("arp_op", tb
[TCA_FLOWER_KEY_ARP_OP
],
1890 tb
[TCA_FLOWER_KEY_ARP_OP_MASK
]);
1891 flower_print_eth_addr("arp_sha", tb
[TCA_FLOWER_KEY_ARP_SHA
],
1892 tb
[TCA_FLOWER_KEY_ARP_SHA_MASK
]);
1893 flower_print_eth_addr("arp_tha", tb
[TCA_FLOWER_KEY_ARP_THA
],
1894 tb
[TCA_FLOWER_KEY_ARP_THA_MASK
]);
1896 flower_print_ip_addr("enc_dst_ip",
1897 tb
[TCA_FLOWER_KEY_ENC_IPV4_DST_MASK
] ?
1898 htons(ETH_P_IP
) : htons(ETH_P_IPV6
),
1899 tb
[TCA_FLOWER_KEY_ENC_IPV4_DST
],
1900 tb
[TCA_FLOWER_KEY_ENC_IPV4_DST_MASK
],
1901 tb
[TCA_FLOWER_KEY_ENC_IPV6_DST
],
1902 tb
[TCA_FLOWER_KEY_ENC_IPV6_DST_MASK
]);
1904 flower_print_ip_addr("enc_src_ip",
1905 tb
[TCA_FLOWER_KEY_ENC_IPV4_SRC_MASK
] ?
1906 htons(ETH_P_IP
) : htons(ETH_P_IPV6
),
1907 tb
[TCA_FLOWER_KEY_ENC_IPV4_SRC
],
1908 tb
[TCA_FLOWER_KEY_ENC_IPV4_SRC_MASK
],
1909 tb
[TCA_FLOWER_KEY_ENC_IPV6_SRC
],
1910 tb
[TCA_FLOWER_KEY_ENC_IPV6_SRC_MASK
]);
1912 flower_print_key_id("enc_key_id", tb
[TCA_FLOWER_KEY_ENC_KEY_ID
]);
1914 flower_print_port("enc_dst_port", tb
[TCA_FLOWER_KEY_ENC_UDP_DST_PORT
]);
1916 flower_print_ip_attr("enc_tos", tb
[TCA_FLOWER_KEY_ENC_IP_TOS
],
1917 tb
[TCA_FLOWER_KEY_ENC_IP_TOS_MASK
]);
1918 flower_print_ip_attr("enc_ttl", tb
[TCA_FLOWER_KEY_ENC_IP_TTL
],
1919 tb
[TCA_FLOWER_KEY_ENC_IP_TTL_MASK
]);
1920 flower_print_enc_opts("enc_opt", tb
[TCA_FLOWER_KEY_ENC_OPTS
],
1921 tb
[TCA_FLOWER_KEY_ENC_OPTS_MASK
]);
1923 flower_print_matching_flags("ip_flags", FLOWER_IP_FLAGS
,
1924 tb
[TCA_FLOWER_KEY_FLAGS
],
1925 tb
[TCA_FLOWER_KEY_FLAGS_MASK
]);
1927 close_json_object();
1929 if (tb
[TCA_FLOWER_FLAGS
]) {
1930 __u32 flags
= rta_getattr_u32(tb
[TCA_FLOWER_FLAGS
]);
1932 if (flags
& TCA_CLS_FLAGS_SKIP_HW
)
1933 print_bool(PRINT_ANY
, "skip_hw", "\n skip_hw", true);
1934 if (flags
& TCA_CLS_FLAGS_SKIP_SW
)
1935 print_bool(PRINT_ANY
, "skip_sw", "\n skip_sw", true);
1937 if (flags
& TCA_CLS_FLAGS_IN_HW
) {
1938 print_bool(PRINT_ANY
, "in_hw", "\n in_hw", true);
1940 if (tb
[TCA_FLOWER_IN_HW_COUNT
]) {
1941 __u32 count
= rta_getattr_u32(tb
[TCA_FLOWER_IN_HW_COUNT
]);
1943 print_uint(PRINT_ANY
, "in_hw_count",
1944 " in_hw_count %u", count
);
1947 else if (flags
& TCA_CLS_FLAGS_NOT_IN_HW
)
1948 print_bool(PRINT_ANY
, "not_in_hw", "\n not_in_hw", true);
1951 if (tb
[TCA_FLOWER_ACT
])
1952 tc_print_action(f
, tb
[TCA_FLOWER_ACT
], 0);
1957 struct filter_util flower_filter_util
= {
1959 .parse_fopt
= flower_parse_opt
,
1960 .print_fopt
= flower_print_opt
,