2 * Distributed under the terms of the GNU GPL version 2.
3 * Copyright (c) 2007, 2008, 2009, 2010 Nicira Networks.
5 * Significant portions of this file may be copied from parts of the Linux
6 * kernel, by Linus Torvalds and others.
11 #include <linux/netdevice.h>
12 #include <linux/etherdevice.h>
13 #include <linux/if_ether.h>
14 #include <linux/if_vlan.h>
15 #include <net/llc_pdu.h>
16 #include <linux/kernel.h>
17 #include <linux/jhash.h>
18 #include <linux/jiffies.h>
19 #include <linux/llc.h>
20 #include <linux/module.h>
22 #include <linux/rcupdate.h>
23 #include <linux/if_arp.h>
24 #include <linux/if_ether.h>
26 #include <linux/tcp.h>
27 #include <linux/udp.h>
28 #include <linux/icmp.h>
29 #include <net/inet_ecn.h>
34 static struct kmem_cache *flow_cache;
35 static unsigned int hash_seed __read_mostly;
37 static inline bool arphdr_ok(struct sk_buff *skb)
39 return skb->len >= skb_network_offset(skb) + sizeof(struct arp_eth_header);
42 static inline int check_iphdr(struct sk_buff *skb)
44 unsigned int nh_ofs = skb_network_offset(skb);
47 if (skb->len < nh_ofs + sizeof(struct iphdr))
50 ip_len = ip_hdrlen(skb);
51 if (ip_len < sizeof(struct iphdr) || skb->len < nh_ofs + ip_len)
55 * Pull enough header bytes to account for the IP header plus the
56 * longest transport header that we parse, currently 20 bytes for TCP.
58 if (!pskb_may_pull(skb, min(nh_ofs + ip_len + 20, skb->len)))
61 skb_set_transport_header(skb, nh_ofs + ip_len);
65 static inline bool tcphdr_ok(struct sk_buff *skb)
67 int th_ofs = skb_transport_offset(skb);
68 if (skb->len >= th_ofs + sizeof(struct tcphdr)) {
69 int tcp_len = tcp_hdrlen(skb);
70 return (tcp_len >= sizeof(struct tcphdr)
71 && skb->len >= th_ofs + tcp_len);
76 static inline bool udphdr_ok(struct sk_buff *skb)
78 return skb->len >= skb_transport_offset(skb) + sizeof(struct udphdr);
81 static inline bool icmphdr_ok(struct sk_buff *skb)
83 return skb->len >= skb_transport_offset(skb) + sizeof(struct icmphdr);
86 #define TCP_FLAGS_OFFSET 13
87 #define TCP_FLAG_MASK 0x3f
89 void flow_used(struct sw_flow *flow, struct sk_buff *skb)
93 if (flow->key.dl_type == htons(ETH_P_IP) &&
94 flow->key.nw_proto == IPPROTO_TCP) {
95 u8 *tcp = (u8 *)tcp_hdr(skb);
96 tcp_flags = *(tcp + TCP_FLAGS_OFFSET) & TCP_FLAG_MASK;
99 spin_lock_bh(&flow->lock);
100 flow->used = jiffies;
101 flow->packet_count++;
102 flow->byte_count += skb->len;
103 flow->tcp_flags |= tcp_flags;
104 spin_unlock_bh(&flow->lock);
107 struct sw_flow_actions *flow_actions_alloc(u32 actions_len)
109 struct sw_flow_actions *sfa;
111 if (actions_len % NLA_ALIGNTO)
112 return ERR_PTR(-EINVAL);
114 /* At least DP_MAX_PORTS actions are required to be able to flood a
115 * packet to every port. Factor of 2 allows for setting VLAN tags,
117 if (actions_len > 2 * DP_MAX_PORTS * nla_total_size(4))
118 return ERR_PTR(-EINVAL);
120 sfa = kmalloc(sizeof *sfa + actions_len, GFP_KERNEL);
122 return ERR_PTR(-ENOMEM);
124 sfa->actions_len = actions_len;
128 struct sw_flow *flow_alloc(void)
130 struct sw_flow *flow;
132 flow = kmem_cache_alloc(flow_cache, GFP_KERNEL);
134 return ERR_PTR(-ENOMEM);
136 spin_lock_init(&flow->lock);
137 atomic_set(&flow->refcnt, 1);
143 void flow_free_tbl(struct tbl_node *node)
145 struct sw_flow *flow = flow_cast(node);
151 /* RCU callback used by flow_deferred_free. */
152 static void rcu_free_flow_callback(struct rcu_head *rcu)
154 struct sw_flow *flow = container_of(rcu, struct sw_flow, rcu);
160 /* Schedules 'flow' to be freed after the next RCU grace period.
161 * The caller must hold rcu_read_lock for this to be sensible. */
162 void flow_deferred_free(struct sw_flow *flow)
164 call_rcu(&flow->rcu, rcu_free_flow_callback);
167 void flow_hold(struct sw_flow *flow)
169 atomic_inc(&flow->refcnt);
172 void flow_put(struct sw_flow *flow)
177 if (atomic_dec_and_test(&flow->refcnt)) {
178 kfree((struct sf_flow_acts __force *)flow->sf_acts);
179 kmem_cache_free(flow_cache, flow);
183 /* RCU callback used by flow_deferred_free_acts. */
184 static void rcu_free_acts_callback(struct rcu_head *rcu)
186 struct sw_flow_actions *sf_acts = container_of(rcu,
187 struct sw_flow_actions, rcu);
191 /* Schedules 'sf_acts' to be freed after the next RCU grace period.
192 * The caller must hold rcu_read_lock for this to be sensible. */
193 void flow_deferred_free_acts(struct sw_flow_actions *sf_acts)
195 call_rcu(&sf_acts->rcu, rcu_free_acts_callback);
198 static void parse_vlan(struct sk_buff *skb, struct odp_flow_key *key)
201 __be16 eth_type; /* ETH_P_8021Q */
204 struct qtag_prefix *qp;
206 if (skb->len < sizeof(struct qtag_prefix) + sizeof(__be16))
209 qp = (struct qtag_prefix *) skb->data;
210 key->dl_tci = qp->tci | htons(ODP_TCI_PRESENT);
211 __skb_pull(skb, sizeof(struct qtag_prefix));
214 static __be16 parse_ethertype(struct sk_buff *skb)
216 struct llc_snap_hdr {
217 u8 dsap; /* Always 0xAA */
218 u8 ssap; /* Always 0xAA */
223 struct llc_snap_hdr *llc;
226 proto = *(__be16 *) skb->data;
227 __skb_pull(skb, sizeof(__be16));
229 if (ntohs(proto) >= ODP_DL_TYPE_ETH2_CUTOFF)
232 if (unlikely(skb->len < sizeof(struct llc_snap_hdr)))
233 return htons(ODP_DL_TYPE_NOT_ETH_TYPE);
235 llc = (struct llc_snap_hdr *) skb->data;
236 if (llc->dsap != LLC_SAP_SNAP ||
237 llc->ssap != LLC_SAP_SNAP ||
238 (llc->oui[0] | llc->oui[1] | llc->oui[2]) != 0)
239 return htons(ODP_DL_TYPE_NOT_ETH_TYPE);
241 __skb_pull(skb, sizeof(struct llc_snap_hdr));
242 return llc->ethertype;
246 * flow_extract - extracts a flow key from an Ethernet frame.
247 * @skb: sk_buff that contains the frame, with skb->data pointing to the
249 * @in_port: port number on which @skb was received.
250 * @key: output flow key
251 * @is_frag: set to 1 if @skb contains an IPv4 fragment, or to 0 if @skb does
252 * not contain an IPv4 packet or if it is not a fragment.
254 * The caller must ensure that skb->len >= ETH_HLEN.
256 * Returns 0 if successful, otherwise a negative errno value.
258 * Initializes @skb header pointers as follows:
260 * - skb->mac_header: the Ethernet header.
262 * - skb->network_header: just past the Ethernet header, or just past the
263 * VLAN header, to the first byte of the Ethernet payload.
265 * - skb->transport_header: If key->dl_type is ETH_P_IP on output, then just
266 * past the IPv4 header, if one is present and of a correct length,
267 * otherwise the same as skb->network_header. For other key->dl_type
268 * values it is left untouched.
270 int flow_extract(struct sk_buff *skb, u16 in_port, struct odp_flow_key *key,
275 memset(key, 0, sizeof *key);
276 key->tun_id = OVS_CB(skb)->tun_id;
277 key->in_port = in_port;
281 * We would really like to pull as many bytes as we could possibly
282 * want to parse into the linear data area. Currently that is:
286 * 60 max IP header with options
287 * 20 max TCP/UDP/ICMP header (don't care about options)
291 * But Xen only allocates 64 or 72 bytes for the linear data area in
292 * netback, which means that we would reallocate and copy the skb's
293 * linear data on every packet if we did that. So instead just pull 64
294 * bytes, which is always sufficient without IP options, and then check
295 * whether we need to pull more later when we look at the IP header.
297 if (!pskb_may_pull(skb, min(skb->len, 64u)))
300 skb_reset_mac_header(skb);
304 memcpy(key->dl_src, eth->h_source, ETH_ALEN);
305 memcpy(key->dl_dst, eth->h_dest, ETH_ALEN);
307 /* dl_type, dl_vlan, dl_vlan_pcp. */
308 __skb_pull(skb, 2 * ETH_ALEN);
309 if (eth->h_proto == htons(ETH_P_8021Q))
310 parse_vlan(skb, key);
311 key->dl_type = parse_ethertype(skb);
312 skb_reset_network_header(skb);
313 __skb_push(skb, skb->data - (unsigned char *)eth);
316 if (key->dl_type == htons(ETH_P_IP)) {
320 error = check_iphdr(skb);
321 if (unlikely(error)) {
322 if (error == -EINVAL) {
323 skb->transport_header = skb->network_header;
330 key->nw_src = nh->saddr;
331 key->nw_dst = nh->daddr;
332 key->nw_tos = nh->tos & ~INET_ECN_MASK;
333 key->nw_proto = nh->protocol;
335 /* Transport layer. */
336 if (!(nh->frag_off & htons(IP_MF | IP_OFFSET))) {
337 if (key->nw_proto == IPPROTO_TCP) {
338 if (tcphdr_ok(skb)) {
339 struct tcphdr *tcp = tcp_hdr(skb);
340 key->tp_src = tcp->source;
341 key->tp_dst = tcp->dest;
343 } else if (key->nw_proto == IPPROTO_UDP) {
344 if (udphdr_ok(skb)) {
345 struct udphdr *udp = udp_hdr(skb);
346 key->tp_src = udp->source;
347 key->tp_dst = udp->dest;
349 } else if (key->nw_proto == IPPROTO_ICMP) {
350 if (icmphdr_ok(skb)) {
351 struct icmphdr *icmp = icmp_hdr(skb);
352 /* The ICMP type and code fields use the 16-bit
353 * transport port fields, so we need to store them
354 * in 16-bit network byte order. */
355 key->tp_src = htons(icmp->type);
356 key->tp_dst = htons(icmp->code);
362 } else if (key->dl_type == htons(ETH_P_ARP) && arphdr_ok(skb)) {
363 struct arp_eth_header *arp;
365 arp = (struct arp_eth_header *)skb_network_header(skb);
367 if (arp->ar_hrd == htons(ARPHRD_ETHER)
368 && arp->ar_pro == htons(ETH_P_IP)
369 && arp->ar_hln == ETH_ALEN
370 && arp->ar_pln == 4) {
372 /* We only match on the lower 8 bits of the opcode. */
373 if (ntohs(arp->ar_op) <= 0xff)
374 key->nw_proto = ntohs(arp->ar_op);
376 if (key->nw_proto == ARPOP_REQUEST
377 || key->nw_proto == ARPOP_REPLY) {
378 memcpy(&key->nw_src, arp->ar_sip, sizeof(key->nw_src));
379 memcpy(&key->nw_dst, arp->ar_tip, sizeof(key->nw_dst));
386 u32 flow_hash(const struct odp_flow_key *key)
388 return jhash2((u32*)key, sizeof *key / sizeof(u32), hash_seed);
391 int flow_cmp(const struct tbl_node *node, void *key2_)
393 const struct odp_flow_key *key1 = &flow_cast(node)->key;
394 const struct odp_flow_key *key2 = key2_;
396 return !memcmp(key1, key2, sizeof(struct odp_flow_key));
399 /* Initializes the flow module.
400 * Returns zero if successful or a negative error code. */
403 flow_cache = kmem_cache_create("sw_flow", sizeof(struct sw_flow), 0,
405 if (flow_cache == NULL)
408 get_random_bytes(&hash_seed, sizeof hash_seed);
413 /* Uninitializes the flow module. */
416 kmem_cache_destroy(flow_cache);