fib_rules.c File Reference

#include <linux/config.h>
#include <asm/uaccess.h>
#include <asm/system.h>
#include <asm/bitops.h>
#include <linux/types.h>
#include <linux/kernel.h>
#include <linux/sched.h>
#include <linux/mm.h>
#include <linux/string.h>
#include <linux/socket.h>
#include <linux/sockios.h>
#include <linux/errno.h>
#include <linux/in.h>
#include <linux/inet.h>
#include <linux/netdevice.h>
#include <linux/if_arp.h>
#include <linux/proc_fs.h>
#include <linux/skbuff.h>
#include <linux/netlink.h>
#include <linux/init.h>
#include <net/ip.h>
#include <net/protocol.h>
#include <net/route.h>
#include <net/tcp.h>
#include <net/sock.h>
#include <net/ip_fib.h>

Go to the source code of this file.

Classes
struct	fib_rule
Defines
#define	FRprintk(a...)
Functions
int	inet_rtm_delrule (struct sk_buff *skb, struct nlmsghdr *nlh, void *arg)
fib_table *	fib_empty_table (void)
void	fib_rule_put (struct fib_rule *r)
int	inet_rtm_newrule (struct sk_buff *skb, struct nlmsghdr *nlh, void *arg)
u32	fib_rules_map_destination (u32 daddr, struct fib_result *res)
u32	fib_rules_policy (u32 saddr, struct fib_result *res, unsigned *flags)
void	fib_rules_detach (struct net_device *dev)
void	fib_rules_attach (struct net_device *dev)
int	fib_lookup (const struct rt_key *key, struct fib_result *res)
void	fib_select_default (const struct rt_key *key, struct fib_result *res)
int	fib_rules_event (struct notifier_block *this, unsigned long event, void *ptr)
__inline__ int	inet_fill_rule (struct sk_buff *skb, struct fib_rule *r, struct netlink_callback *cb)
int	inet_dump_rules (struct sk_buff *skb, struct netlink_callback *cb)
void __init	fib_rules_init (void)
Variables
fib_rule	default_rule
fib_rule	main_rule
fib_rule	local_rule
fib_rule *	fib_rules = &local_rule
rwlock_t	fib_rules_lock = RW_LOCK_UNLOCKED
notifier_block	fib_rules_notifier

---

Define Documentation

#define FRprintk (  a...   )

Definition at line 50 of file fib_rules.c. Referenced by fib_lookup().

---

Function Documentation

struct fib_table* fib_empty_table (  void   )  [static]

Definition at line 142 of file fib_rules.c. Referenced by inet_rtm_newrule(). { int id; for (id = 1; id <= RT_TABLE_MAX; id++) if (fib_tables[id] == NULL) return __fib_new_table(id); return NULL; }

int fib_lookup (  const struct rt_key *  key, struct fib_result *  res )

Definition at line 310 of file fib_rules.c. References rt_key::dst, fib_get_table(), fib_rules, fib_rules_lock, FRprintk, rt_key::iif, fib_rule::r_next, rt_key::src, and rt_key::tos. Referenced by fib_check_nh(), fib_validate_source(), ip_do_nat(), ip_route_input_slow(), ip_route_output_slow(), and ip_rt_get_source(). { int err; struct fib_rule *r, *policy; struct fib_table *tb; u32 daddr = key->dst; u32 saddr = key->src; FRprintk("Lookup: %u.%u.%u.%u <- %u.%u.%u.%u ", NIPQUAD(key->dst), NIPQUAD(key->src)); read_lock(&fib_rules_lock); for (r = fib_rules; r; r=r->r_next) { if (((saddr^r->r_src) & r->r_srcmask) || ((daddr^r->r_dst) & r->r_dstmask) || #ifdef CONFIG_IP_ROUTE_TOS (r->r_tos && r->r_tos != key->tos) || #endif #ifdef CONFIG_IP_ROUTE_FWMARK (r->r_fwmark && r->r_fwmark != key->fwmark) || #endif (r->r_ifindex && r->r_ifindex != key->iif)) continue; FRprintk("tb %d r %d ", r->r_table, r->r_action); switch (r->r_action) { case RTN_UNICAST: case RTN_NAT: policy = r; break; case RTN_UNREACHABLE: read_unlock(&fib_rules_lock); return -ENETUNREACH; default: case RTN_BLACKHOLE: read_unlock(&fib_rules_lock); return -EINVAL; case RTN_PROHIBIT: read_unlock(&fib_rules_lock); return -EACCES; } if ((tb = fib_get_table(r->r_table)) == NULL) continue; err = tb->tb_lookup(tb, key, res); if (err == 0) { res->r = policy; if (policy) atomic_inc(&policy->r_clntref); read_unlock(&fib_rules_lock); return 0; } if (err < 0 && err != -EAGAIN) { read_unlock(&fib_rules_lock); return err; } } FRprintk("FAILURE\n"); read_unlock(&fib_rules_lock); return -ENETUNREACH; }

void fib_rule_put (  struct fib_rule *  r  )

Definition at line 152 of file fib_rules.c. References fib_rule::r_clntref, and fib_rule::r_dead. Referenced by fib_res_put(), and inet_rtm_delrule(). { if (atomic_dec_and_test(&r->r_clntref)) { if (r->r_dead) kfree(r); else printk("Freeing alive rule %p\n", r); } }

void fib_rules_attach (  struct net_device *  dev  )  [static]

Definition at line 297 of file fib_rules.c. References fib_rules, fib_rules_lock, net_device::ifindex, net_device::name, and fib_rule::r_next. Referenced by fib_rules_event(). { struct fib_rule *r; for (r=fib_rules; r; r=r->r_next) { if (r->r_ifindex == -1 && strcmp(dev->name, r->r_ifname) == 0) { write_lock_bh(&fib_rules_lock); r->r_ifindex = dev->ifindex; write_unlock_bh(&fib_rules_lock); } } }

void fib_rules_detach (  struct net_device *  dev  )  [static]

Definition at line 284 of file fib_rules.c. References fib_rules, fib_rules_lock, net_device::ifindex, and fib_rule::r_next. Referenced by fib_rules_event(). { struct fib_rule *r; for (r=fib_rules; r; r=r->r_next) { if (r->r_ifindex == dev->ifindex) { write_lock_bh(&fib_rules_lock); r->r_ifindex = -1; write_unlock_bh(&fib_rules_lock); } } }

int fib_rules_event (  struct notifier_block *  this, unsigned long  event, void *  ptr )  [static]

Definition at line 382 of file fib_rules.c. References fib_rules_attach(), and fib_rules_detach(). { struct net_device *dev = ptr; if (event == NETDEV_UNREGISTER) fib_rules_detach(dev); else if (event == NETDEV_REGISTER) fib_rules_attach(dev); return NOTIFY_DONE; }

void __init fib_rules_init (  void   )

Definition at line 464 of file fib_rules.c. References fib_rules_notifier, and register_netdevice_notifier(). Referenced by ip_fib_init(). { register_netdevice_notifier(&fib_rules_notifier); }

u32 fib_rules_map_destination (  u32  daddr, struct fib_result *  res )

Definition at line 248 of file fib_rules.c. References fib_result::fi, fib_info::fib_nh, inet_make_mask(), fib_nh::nh_gw, and fib_result::prefixlen. Referenced by ip_route_input_slow(). { u32 mask = inet_make_mask(res->prefixlen); return (daddr&~mask)|res->fi->fib_nh->nh_gw; }

u32 fib_rules_policy (  u32  saddr, struct fib_result *  res, unsigned *  flags )

Definition at line 254 of file fib_rules.c. References inet_addr_type(). Referenced by ip_do_nat(), and ip_route_input_slow(). { struct fib_rule *r = res->r; if (r->r_action == RTN_NAT) { int addrtype = inet_addr_type(r->r_srcmap); if (addrtype == RTN_NAT) { /* Packet is from translated source; remember it */ saddr = (saddr&~r->r_srcmask)|r->r_srcmap; *flags |= RTCF_SNAT; } else if (addrtype == RTN_LOCAL || r->r_srcmap == 0) { /* Packet is from masqueraded source; remember it */ saddr = r->r_srcmap; *flags |= RTCF_MASQ; } } return saddr; }

void fib_select_default (  const struct rt_key *  key, struct fib_result *  res )

Definition at line 372 of file fib_rules.c. References fib_get_table(), FIB_RES_GW, and FIB_RES_NH. Referenced by ip_route_output_slow(). { if (res->r && res->r->r_action == RTN_UNICAST && FIB_RES_GW(*res) && FIB_RES_NH(*res).nh_scope == RT_SCOPE_LINK) { struct fib_table *tb; if ((tb = fib_get_table(res->r->r_table)) != NULL) tb->tb_select_default(tb, key, res); } }

int inet_dump_rules (  struct sk_buff *  skb, struct netlink_callback *  cb )

Definition at line 445 of file fib_rules.c. References netlink_callback::args, fib_rules, fib_rules_lock, inet_fill_rule(), sk_buff::len, and fib_rule::r_next. { int idx; int s_idx = cb->args[0]; struct fib_rule *r; read_lock(&fib_rules_lock); for (r=fib_rules, idx=0; r; r = r->r_next, idx++) { if (idx < s_idx) continue; if (inet_fill_rule(skb, r, cb) < 0) break; } read_unlock(&fib_rules_lock); cb->args[0] = idx; return skb->len; }

__inline__ int inet_fill_rule (  struct sk_buff *  skb, struct fib_rule *  r, struct netlink_callback *  cb )  [static]

Definition at line 398 of file fib_rules.c. References sk_buff::len, NETLINK_CREDS, netlink_callback::nlh, NLMSG_DATA, NLMSG_PUT, nlmsghdr::nlmsg_seq, fib_rule::r_action, fib_rule::r_dst, fib_rule::r_dst_len, fib_rule::r_flags, fib_rule::r_ifname, fib_rule::r_preference, fib_rule::r_src, fib_rule::r_src_len, fib_rule::r_srcmap, fib_rule::r_table, fib_rule::r_tos, netlink_callback::skb, skb_put(), and sk_buff::tail. Referenced by inet_dump_rules(). { struct rtmsg *rtm; struct nlmsghdr *nlh; unsigned char *b = skb->tail; nlh = NLMSG_PUT(skb, NETLINK_CREDS(cb->skb)->pid, cb->nlh->nlmsg_seq, RTM_NEWRULE, sizeof(*rtm)); rtm = NLMSG_DATA(nlh); rtm->rtm_family = AF_INET; rtm->rtm_dst_len = r->r_dst_len; rtm->rtm_src_len = r->r_src_len; rtm->rtm_tos = r->r_tos; #ifdef CONFIG_IP_ROUTE_FWMARK if (r->r_fwmark) RTA_PUT(skb, RTA_PROTOINFO, 4, &r->r_fwmark); #endif rtm->rtm_table = r->r_table; rtm->rtm_protocol = 0; rtm->rtm_scope = 0; rtm->rtm_type = r->r_action; rtm->rtm_flags = r->r_flags; if (r->r_dst_len) RTA_PUT(skb, RTA_DST, 4, &r->r_dst); if (r->r_src_len) RTA_PUT(skb, RTA_SRC, 4, &r->r_src); if (r->r_ifname[0]) RTA_PUT(skb, RTA_IIF, IFNAMSIZ, &r->r_ifname); if (r->r_preference) RTA_PUT(skb, RTA_PRIORITY, 4, &r->r_preference); if (r->r_srcmap) RTA_PUT(skb, RTA_GATEWAY, 4, &r->r_srcmap); #ifdef CONFIG_NET_CLS_ROUTE if (r->r_tclassid) RTA_PUT(skb, RTA_FLOW, 4, &r->r_tclassid); #endif nlh->nlmsg_len = skb->tail - b; return skb->len; nlmsg_failure: rtattr_failure: skb_put(skb, b - skb->tail); return -1; }

int inet_rtm_delrule (  struct sk_buff *  skb, struct nlmsghdr *  nlh, void *  arg )

Definition at line 104 of file fib_rules.c. References fib_rule_put(), fib_rules, fib_rules_lock, local_rule, NLMSG_DATA, and fib_rule::r_next. { struct rtattr **rta = arg; struct rtmsg *rtm = NLMSG_DATA(nlh); struct fib_rule *r, **rp; int err = -ESRCH; for (rp=&fib_rules; (r=*rp) != NULL; rp=&r->r_next) { if ((!rta[RTA_SRC-1] || memcmp(RTA_DATA(rta[RTA_SRC-1]), &r->r_src, 4) == 0) && rtm->rtm_src_len == r->r_src_len && rtm->rtm_dst_len == r->r_dst_len && (!rta[RTA_DST-1] || memcmp(RTA_DATA(rta[RTA_DST-1]), &r->r_dst, 4) == 0) && rtm->rtm_tos == r->r_tos && #ifdef CONFIG_IP_ROUTE_FWMARK (!rta[RTA_PROTOINFO-1] || memcmp(RTA_DATA(rta[RTA_PROTOINFO-1]), &r->r_fwmark, 4) == 0) && #endif (!rtm->rtm_type || rtm->rtm_type == r->r_action) && (!rta[RTA_PRIORITY-1] || memcmp(RTA_DATA(rta[RTA_PRIORITY-1]), &r->r_preference, 4) == 0) && (!rta[RTA_IIF-1] || strcmp(RTA_DATA(rta[RTA_IIF-1]), r->r_ifname) == 0) && (!rtm->rtm_table || (r && rtm->rtm_table == r->r_table))) { err = -EPERM; if (r == &local_rule) break; write_lock_bh(&fib_rules_lock); *rp = r->r_next; r->r_dead = 1; write_unlock_bh(&fib_rules_lock); fib_rule_put(r); err = 0; break; } } return err; }

int inet_rtm_newrule (  struct sk_buff *  skb, struct nlmsghdr *  nlh, void *  arg )

Definition at line 162 of file fib_rules.c. References __dev_get_by_name(), fib_empty_table(), fib_rules, fib_rules_lock, inet_make_mask(), IPTOS_TOS_MASK, NLMSG_DATA, fib_rule::r_next, and fib_rule::r_preference. { struct rtattr **rta = arg; struct rtmsg *rtm = NLMSG_DATA(nlh); struct fib_rule *r, *new_r, **rp; unsigned char table_id; if (rtm->rtm_src_len > 32 || rtm->rtm_dst_len > 32 || (rtm->rtm_tos & ~IPTOS_TOS_MASK)) return -EINVAL; if (rta[RTA_IIF-1] && RTA_PAYLOAD(rta[RTA_IIF-1]) > IFNAMSIZ) return -EINVAL; table_id = rtm->rtm_table; if (table_id == RT_TABLE_UNSPEC) { struct fib_table *table; if (rtm->rtm_type == RTN_UNICAST || rtm->rtm_type == RTN_NAT) { if ((table = fib_empty_table()) == NULL) return -ENOBUFS; table_id = table->tb_id; } } new_r = kmalloc(sizeof(*new_r), GFP_KERNEL); if (!new_r) return -ENOMEM; memset(new_r, 0, sizeof(*new_r)); if (rta[RTA_SRC-1]) memcpy(&new_r->r_src, RTA_DATA(rta[RTA_SRC-1]), 4); if (rta[RTA_DST-1]) memcpy(&new_r->r_dst, RTA_DATA(rta[RTA_DST-1]), 4); if (rta[RTA_GATEWAY-1]) memcpy(&new_r->r_srcmap, RTA_DATA(rta[RTA_GATEWAY-1]), 4); new_r->r_src_len = rtm->rtm_src_len; new_r->r_dst_len = rtm->rtm_dst_len; new_r->r_srcmask = inet_make_mask(rtm->rtm_src_len); new_r->r_dstmask = inet_make_mask(rtm->rtm_dst_len); new_r->r_tos = rtm->rtm_tos; #ifdef CONFIG_IP_ROUTE_FWMARK if (rta[RTA_PROTOINFO-1]) memcpy(&new_r->r_fwmark, RTA_DATA(rta[RTA_PROTOINFO-1]), 4); #endif new_r->r_action = rtm->rtm_type; new_r->r_flags = rtm->rtm_flags; if (rta[RTA_PRIORITY-1]) memcpy(&new_r->r_preference, RTA_DATA(rta[RTA_PRIORITY-1]), 4); new_r->r_table = table_id; if (rta[RTA_IIF-1]) { struct net_device *dev; memcpy(new_r->r_ifname, RTA_DATA(rta[RTA_IIF-1]), IFNAMSIZ); new_r->r_ifname[IFNAMSIZ-1] = 0; new_r->r_ifindex = -1; dev = __dev_get_by_name(new_r->r_ifname); if (dev) new_r->r_ifindex = dev->ifindex; } #ifdef CONFIG_NET_CLS_ROUTE if (rta[RTA_FLOW-1]) memcpy(&new_r->r_tclassid, RTA_DATA(rta[RTA_FLOW-1]), 4); #endif rp = &fib_rules; if (!new_r->r_preference) { r = fib_rules; if (r && (r = r->r_next) != NULL) { rp = &fib_rules->r_next; if (r->r_preference) new_r->r_preference = r->r_preference - 1; } } while ( (r = *rp) != NULL ) { if (r->r_preference > new_r->r_preference) break; rp = &r->r_next; } new_r->r_next = r; atomic_inc(&new_r->r_clntref); write_lock_bh(&fib_rules_lock); *rp = new_r; write_unlock_bh(&fib_rules_lock); return 0; }

---

Variable Documentation

struct fib_rule default_rule [static]

Initial value: { r_clntref: ATOMIC_INIT(2), r_preference: 0x7FFF, r_table: RT_TABLE_DEFAULT, r_action: RTN_UNICAST, } Definition at line 79 of file fib_rules.c.

struct fib_rule* fib_rules = &local_rule [static]

Definition at line 101 of file fib_rules.c. Referenced by fib_lookup(), fib_rules_attach(), fib_rules_detach(), inet_dump_rules(), inet_rtm_delrule(), and inet_rtm_newrule().

rwlock_t fib_rules_lock = RW_LOCK_UNLOCKED [static]

Definition at line 102 of file fib_rules.c. Referenced by fib_lookup(), fib_rules_attach(), fib_rules_detach(), inet_dump_rules(), inet_rtm_delrule(), and inet_rtm_newrule().

struct notifier_block fib_rules_notifier

Initial value: { notifier_call: fib_rules_event, } Definition at line 394 of file fib_rules.c. Referenced by fib_rules_init().

struct fib_rule local_rule [static]

Initial value: { r_next: &main_rule, r_clntref: ATOMIC_INIT(2), r_table: RT_TABLE_LOCAL, r_action: RTN_UNICAST, } Definition at line 94 of file fib_rules.c. Referenced by inet_rtm_delrule().

struct fib_rule main_rule [static]

Initial value: { r_next: &default_rule, r_clntref: ATOMIC_INIT(2), r_preference: 0x7FFE, r_table: RT_TABLE_MAIN, r_action: RTN_UNICAST, } Definition at line 86 of file fib_rules.c.

---