2 * Distributed under the terms of the GNU GPL version 2.
3 * Copyright (c) 2007, 2008 The Board of Trustees of The Leland
4 * Stanford Junior University
8 #include <linux/netdevice.h>
9 #include <linux/etherdevice.h>
10 #include <linux/if_ether.h>
11 #include <linux/if_vlan.h>
12 #include <net/llc_pdu.h>
14 #include <linux/jiffies.h>
15 #include <linux/kernel.h>
16 #include <linux/module.h>
17 #include <linux/tcp.h>
18 #include <linux/udp.h>
20 #include <linux/rcupdate.h>
27 struct kmem_cache *flow_cache;
29 /* Internal function used to compare fields in flow. */
31 int flow_fields_match(const struct sw_flow_key *a, const struct sw_flow_key *b,
32 uint32_t w, uint32_t src_mask, uint32_t dst_mask)
34 return ((w & OFPFW_IN_PORT || a->in_port == b->in_port)
35 && (w & OFPFW_DL_VLAN || a->dl_vlan == b->dl_vlan)
36 && (w & OFPFW_DL_SRC || !memcmp(a->dl_src, b->dl_src, ETH_ALEN))
37 && (w & OFPFW_DL_DST || !memcmp(a->dl_dst, b->dl_dst, ETH_ALEN))
38 && (w & OFPFW_DL_TYPE || a->dl_type == b->dl_type)
39 && !((a->nw_src ^ b->nw_src) & src_mask)
40 && !((a->nw_dst ^ b->nw_dst) & dst_mask)
41 && (w & OFPFW_NW_PROTO || a->nw_proto == b->nw_proto)
42 && (w & OFPFW_TP_SRC || a->tp_src == b->tp_src)
43 && (w & OFPFW_TP_DST || a->tp_dst == b->tp_dst));
46 /* Returns nonzero if 'a' and 'b' match, that is, if their fields are equal
47 * modulo wildcards in 'b', zero otherwise. */
48 int flow_matches_1wild(const struct sw_flow_key *a,
49 const struct sw_flow_key *b)
51 return flow_fields_match(a, b, b->wildcards,
52 b->nw_src_mask, b->nw_dst_mask);
54 EXPORT_SYMBOL(flow_matches_1wild);
56 /* Returns nonzero if 'a' and 'b' match, that is, if their fields are equal
57 * modulo wildcards in 'a' or 'b', zero otherwise. */
58 int flow_matches_2wild(const struct sw_flow_key *a,
59 const struct sw_flow_key *b)
61 return flow_fields_match(a, b,
62 a->wildcards | b->wildcards,
63 a->nw_src_mask & b->nw_src_mask,
64 a->nw_dst_mask & b->nw_dst_mask);
66 EXPORT_SYMBOL(flow_matches_2wild);
68 /* Returns nonzero if 't' (the table entry's key) and 'd' (the key
69 * describing the deletion) match, that is, if their fields are
70 * equal modulo wildcards, zero otherwise. If 'strict' is nonzero, the
71 * wildcards must match in both 't_key' and 'd_key'. Note that the
72 * table's wildcards are ignored unless 'strict' is set. */
73 int flow_del_matches(const struct sw_flow_key *t, const struct sw_flow_key *d, int strict)
75 if (strict && d->wildcards != t->wildcards)
77 return flow_matches_1wild(t, d);
79 EXPORT_SYMBOL(flow_del_matches);
81 static uint32_t make_nw_mask(int n_wild_bits)
83 n_wild_bits &= (1u << OFPFW_NW_SRC_BITS) - 1;
84 return n_wild_bits < 32 ? htonl(~((1u << n_wild_bits) - 1)) : 0;
87 void flow_extract_match(struct sw_flow_key* to, const struct ofp_match* from)
89 to->wildcards = ntohl(from->wildcards) & OFPFW_ALL;
91 to->in_port = from->in_port;
92 to->dl_vlan = from->dl_vlan;
93 memcpy(to->dl_src, from->dl_src, ETH_ALEN);
94 memcpy(to->dl_dst, from->dl_dst, ETH_ALEN);
95 to->dl_type = from->dl_type;
97 to->nw_src = to->nw_dst = to->nw_proto = 0;
98 to->tp_src = to->tp_dst = 0;
100 #define OFPFW_TP (OFPFW_TP_SRC | OFPFW_TP_DST)
101 #define OFPFW_NW (OFPFW_NW_SRC_MASK | OFPFW_NW_DST_MASK | OFPFW_NW_PROTO)
102 if (to->wildcards & OFPFW_DL_TYPE) {
103 /* Can't sensibly match on network or transport headers if the
104 * data link type is unknown. */
105 to->wildcards |= OFPFW_NW | OFPFW_TP;
106 } else if (from->dl_type == htons(ETH_P_IP)) {
107 to->nw_src = from->nw_src;
108 to->nw_dst = from->nw_dst;
109 to->nw_proto = from->nw_proto;
111 if (to->wildcards & OFPFW_NW_PROTO) {
112 /* Can't sensibly match on transport headers if the
113 * network protocol is unknown. */
114 to->wildcards |= OFPFW_TP;
115 } else if (from->nw_proto == IPPROTO_TCP
116 || from->nw_proto == IPPROTO_UDP) {
117 to->tp_src = from->tp_src;
118 to->tp_dst = from->tp_dst;
120 /* Transport layer fields are undefined. Mark them as
121 * exact-match to allow such flows to reside in
122 * table-hash, instead of falling into table-linear. */
123 to->wildcards &= ~OFPFW_TP;
126 /* Network and transport layer fields are undefined. Mark them
127 * as exact-match to allow such flows to reside in table-hash,
128 * instead of falling into table-linear. */
129 to->wildcards &= ~(OFPFW_NW | OFPFW_TP);
132 /* We set these late because code above adjusts to->wildcards. */
133 to->nw_src_mask = make_nw_mask(to->wildcards >> OFPFW_NW_SRC_SHIFT);
134 to->nw_dst_mask = make_nw_mask(to->wildcards >> OFPFW_NW_DST_SHIFT);
137 void flow_fill_match(struct ofp_match* to, const struct sw_flow_key* from)
139 to->wildcards = htonl(from->wildcards);
140 to->in_port = from->in_port;
141 to->dl_vlan = from->dl_vlan;
142 memcpy(to->dl_src, from->dl_src, ETH_ALEN);
143 memcpy(to->dl_dst, from->dl_dst, ETH_ALEN);
144 to->dl_type = from->dl_type;
145 to->nw_src = from->nw_src;
146 to->nw_dst = from->nw_dst;
147 to->nw_proto = from->nw_proto;
148 to->tp_src = from->tp_src;
149 to->tp_dst = from->tp_dst;
153 int flow_timeout(struct sw_flow *flow)
155 if (flow->idle_timeout != OFP_FLOW_PERMANENT
156 && time_after(jiffies, flow->used + flow->idle_timeout * HZ))
157 return OFPER_IDLE_TIMEOUT;
158 else if (flow->hard_timeout != OFP_FLOW_PERMANENT
159 && time_after(jiffies,
160 flow->init_time + flow->hard_timeout * HZ))
161 return OFPER_HARD_TIMEOUT;
165 EXPORT_SYMBOL(flow_timeout);
167 /* Allocates and returns a new flow with 'n_actions' action, using allocation
168 * flags 'flags'. Returns the new flow or a null pointer on failure. */
169 struct sw_flow *flow_alloc(int n_actions, gfp_t flags)
171 struct sw_flow_actions *sfa;
172 int size = sizeof *sfa + (n_actions * sizeof sfa->actions[0]);
173 struct sw_flow *flow = kmem_cache_alloc(flow_cache, flags);
177 sfa = kmalloc(size, flags);
178 if (unlikely(!sfa)) {
179 kmem_cache_free(flow_cache, flow);
182 sfa->n_actions = n_actions;
188 /* Frees 'flow' immediately. */
189 void flow_free(struct sw_flow *flow)
193 kfree(flow->sf_acts);
194 kmem_cache_free(flow_cache, flow);
196 EXPORT_SYMBOL(flow_free);
198 /* RCU callback used by flow_deferred_free. */
199 static void rcu_free_flow_callback(struct rcu_head *rcu)
201 struct sw_flow *flow = container_of(rcu, struct sw_flow, rcu);
205 /* Schedules 'flow' to be freed after the next RCU grace period.
206 * The caller must hold rcu_read_lock for this to be sensible. */
207 void flow_deferred_free(struct sw_flow *flow)
209 call_rcu(&flow->rcu, rcu_free_flow_callback);
211 EXPORT_SYMBOL(flow_deferred_free);
213 /* RCU callback used by flow_deferred_free_acts. */
214 static void rcu_free_acts_callback(struct rcu_head *rcu)
216 struct sw_flow_actions *sf_acts = container_of(rcu,
217 struct sw_flow_actions, rcu);
221 /* Schedules 'sf_acts' to be freed after the next RCU grace period.
222 * The caller must hold rcu_read_lock for this to be sensible. */
223 void flow_deferred_free_acts(struct sw_flow_actions *sf_acts)
225 call_rcu(&sf_acts->rcu, rcu_free_acts_callback);
227 EXPORT_SYMBOL(flow_deferred_free_acts);
229 /* Copies 'actions' into a newly allocated structure for use by 'flow'
230 * and safely frees the structure that defined the previous actions. */
231 void flow_replace_acts(struct sw_flow *flow, const struct ofp_action *actions,
234 struct sw_flow_actions *sfa;
235 struct sw_flow_actions *orig_sfa = flow->sf_acts;
236 int size = sizeof *sfa + (n_actions * sizeof sfa->actions[0]);
238 sfa = kmalloc(size, GFP_ATOMIC);
242 sfa->n_actions = n_actions;
243 memcpy(sfa->actions, actions, n_actions * sizeof sfa->actions[0]);
245 rcu_assign_pointer(flow->sf_acts, sfa);
246 flow_deferred_free_acts(orig_sfa);
250 EXPORT_SYMBOL(flow_replace_acts);
252 /* Prints a representation of 'key' to the kernel log. */
253 void print_flow(const struct sw_flow_key *key)
255 printk("wild%08x port%04x:vlan%04x mac%02x:%02x:%02x:%02x:%02x:%02x"
256 "->%02x:%02x:%02x:%02x:%02x:%02x "
257 "proto%04x ip%u.%u.%u.%u->%u.%u.%u.%u port%d->%d\n",
258 key->wildcards, ntohs(key->in_port), ntohs(key->dl_vlan),
259 key->dl_src[0], key->dl_src[1], key->dl_src[2],
260 key->dl_src[3], key->dl_src[4], key->dl_src[5],
261 key->dl_dst[0], key->dl_dst[1], key->dl_dst[2],
262 key->dl_dst[3], key->dl_dst[4], key->dl_dst[5],
264 ((unsigned char *)&key->nw_src)[0],
265 ((unsigned char *)&key->nw_src)[1],
266 ((unsigned char *)&key->nw_src)[2],
267 ((unsigned char *)&key->nw_src)[3],
268 ((unsigned char *)&key->nw_dst)[0],
269 ((unsigned char *)&key->nw_dst)[1],
270 ((unsigned char *)&key->nw_dst)[2],
271 ((unsigned char *)&key->nw_dst)[3],
272 ntohs(key->tp_src), ntohs(key->tp_dst));
274 EXPORT_SYMBOL(print_flow);
276 static int tcphdr_ok(struct sk_buff *skb)
278 int th_ofs = skb_transport_offset(skb);
279 if (skb->len >= th_ofs + sizeof(struct tcphdr)) {
280 int tcp_len = tcp_hdrlen(skb);
281 return (tcp_len >= sizeof(struct tcphdr)
282 && skb->len >= th_ofs + tcp_len);
287 static int udphdr_ok(struct sk_buff *skb)
289 int th_ofs = skb_transport_offset(skb);
290 return skb->len >= th_ofs + sizeof(struct udphdr);
293 /* Parses the Ethernet frame in 'skb', which was received on 'in_port',
294 * and initializes 'key' to match. Returns 1 if 'skb' contains an IP
295 * fragment, 0 otherwise. */
296 int flow_extract(struct sk_buff *skb, uint16_t in_port,
297 struct sw_flow_key *key)
303 key->in_port = htons(in_port);
306 key->nw_src_mask = 0;
307 key->nw_dst_mask = 0;
309 /* This code doesn't check that skb->len is long enough to contain the
310 * MAC or network header. With a 46-byte minimum length frame this
311 * assumption is always correct. */
313 /* Doesn't verify checksums. Should it? */
315 /* Data link layer. We only support Ethernet. */
317 nh_ofs = sizeof(struct ethhdr);
318 if (likely(ntohs(mac->h_proto) >= OFP_DL_TYPE_ETH2_CUTOFF)) {
319 /* This is an Ethernet II frame */
320 key->dl_type = mac->h_proto;
322 /* This is an 802.2 frame */
323 if (snap_get_ethertype(skb, &key->dl_type) != -EINVAL) {
324 nh_ofs += sizeof(struct snap_hdr);
326 key->dl_type = htons(OFP_DL_TYPE_NOT_ETH_TYPE);
327 nh_ofs += sizeof(struct llc_pdu_un);
331 /* Check for a VLAN tag */
332 if (likely(key->dl_type != htons(ETH_P_8021Q))) {
333 key->dl_vlan = htons(OFP_VLAN_NONE);
335 struct vlan_hdr *vh = (struct vlan_hdr *)(skb_mac_header(skb) + nh_ofs);
336 key->dl_type = vh->h_vlan_encapsulated_proto;
337 key->dl_vlan = vh->h_vlan_TCI & htons(VLAN_VID_MASK);
338 nh_ofs += sizeof(*vh);
340 memcpy(key->dl_src, mac->h_source, ETH_ALEN);
341 memcpy(key->dl_dst, mac->h_dest, ETH_ALEN);
342 skb_set_network_header(skb, nh_ofs);
345 if (likely(key->dl_type == htons(ETH_P_IP))) {
346 struct iphdr *nh = ip_hdr(skb);
347 key->nw_src = nh->saddr;
348 key->nw_dst = nh->daddr;
349 key->nw_proto = nh->protocol;
350 th_ofs = nh_ofs + nh->ihl * 4;
351 skb_set_transport_header(skb, th_ofs);
353 /* Transport layer. */
354 if (!(nh->frag_off & htons(IP_MF | IP_OFFSET))) {
355 if (key->nw_proto == IPPROTO_TCP) {
356 if (tcphdr_ok(skb)) {
357 struct tcphdr *tcp = tcp_hdr(skb);
358 key->tp_src = tcp->source;
359 key->tp_dst = tcp->dest;
361 /* Avoid tricking other code into
362 * thinking that this packet has an L4
366 } else if (key->nw_proto == IPPROTO_UDP) {
367 if (udphdr_ok(skb)) {
368 struct udphdr *udp = udp_hdr(skb);
369 key->tp_src = udp->source;
370 key->tp_dst = udp->dest;
372 /* Avoid tricking other code into
373 * thinking that this packet has an L4
400 /* Initializes the flow module.
401 * Returns zero if successful or a negative error code. */
404 flow_cache = kmem_cache_create("sw_flow", sizeof(struct sw_flow), 0,
406 if (flow_cache == NULL)
412 /* Uninitializes the flow module. */
415 kmem_cache_destroy(flow_cache);
projects / openvswitch / blob