Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit 57dc2bfc authored by David S. Miller's avatar David S. Miller
Browse files

Merge branch 'tc-tunnel-ttl-tos' 



Or Gerlitz says

====================
set/match the tos/ttl fields of TC based IP tunnels

This series comes to address the case to set (encap) and match (decap)
also the tos and ttl fields of TC based IP tunnels.

Example encap (1st one) and decap (2nd) that use the new fields

tc filter add dev eth0_0 protocol ip parent ffff: prio 10 flower \
	src_mac e4:11:22:33:44:50 dst_mac e4:11:22:33:44:70  \
	action tunnel_key set src_ip 192.168.10.1 dst_ip 192.168.10.2 id 100 dst_port 4789 tos 0x30 \
	action mirred egress redirect dev vxlan_sys_4789

tc filter add dev vxlan_sys_4789 protocol ip parent ffff: prio 10 flower \
	enc_src_ip 192.168.10.2 enc_dst_ip 192.168.10.1 enc_key_id 100 enc_dst_port 4789 enc_tos 0x30 \
	src_mac e4:11:22:33:44:70 dst_mac e4:11:22:33:44:50 \
	action tunnel_key unset \
	action mirred egress redirect dev eth0_0
====================

Signed-off-by: default avatarDavid S. Miller <davem@davemloft.net>
parents 3bc950c3 0e2c17b6

include/net/flow_dissector.h

+1 −1
Original line number Diff line number Diff line
@@ -207,7 +207,7 @@ enum flow_dissector_key_id { 
	FLOW_DISSECTOR_KEY_TCP, /* struct flow_dissector_key_tcp */

	FLOW_DISSECTOR_KEY_IP, /* struct flow_dissector_key_ip */

	FLOW_DISSECTOR_KEY_CVLAN, /* struct flow_dissector_key_flow_vlan */



	FLOW_DISSECTOR_KEY_ENC_IP, /* struct flow_dissector_key_ip */

	FLOW_DISSECTOR_KEY_MAX,

};

include/uapi/linux/pkt_cls.h

+5 −0
Original line number Diff line number Diff line
@@ -473,6 +473,11 @@ enum { 
	TCA_FLOWER_KEY_CVLAN_PRIO,	/* u8   */

	TCA_FLOWER_KEY_CVLAN_ETH_TYPE,	/* be16 */



	TCA_FLOWER_KEY_ENC_IP_TOS,	/* u8 */

	TCA_FLOWER_KEY_ENC_IP_TOS_MASK,	/* u8 */

	TCA_FLOWER_KEY_ENC_IP_TTL,	/* u8 */

	TCA_FLOWER_KEY_ENC_IP_TTL_MASK,	/* u8 */



	__TCA_FLOWER_MAX,

};

include/uapi/linux/tc_act/tc_tunnel_key.h

+2 −0
Original line number Diff line number Diff line
@@ -39,6 +39,8 @@ enum { 
	TCA_TUNNEL_KEY_ENC_OPTS,	/* Nested TCA_TUNNEL_KEY_ENC_OPTS_

					 * attributes

					 */

	TCA_TUNNEL_KEY_ENC_TOS,		/* u8 */

	TCA_TUNNEL_KEY_ENC_TTL,		/* u8 */

	__TCA_TUNNEL_KEY_MAX,

};

net/core/flow_dissector.c

+13 −1
Original line number Diff line number Diff line
@@ -152,7 +152,9 @@ skb_flow_dissect_tunnel_info(const struct sk_buff *skb, 
	    !dissector_uses_key(flow_dissector,

				FLOW_DISSECTOR_KEY_ENC_CONTROL) &&

	    !dissector_uses_key(flow_dissector,

				FLOW_DISSECTOR_KEY_ENC_PORTS))

				FLOW_DISSECTOR_KEY_ENC_PORTS) &&

	    !dissector_uses_key(flow_dissector,

				FLOW_DISSECTOR_KEY_ENC_IP))

		return;



	info = skb_tunnel_info(skb);
@@ -212,6 +214,16 @@ skb_flow_dissect_tunnel_info(const struct sk_buff *skb, 
		tp->src = key->tp_src;

		tp->dst = key->tp_dst;

	}



	if (dissector_uses_key(flow_dissector, FLOW_DISSECTOR_KEY_ENC_IP)) {

		struct flow_dissector_key_ip *ip;



		ip = skb_flow_dissector_target(flow_dissector,

					       FLOW_DISSECTOR_KEY_ENC_IP,

					       target_container);

		ip->tos = key->tos;

		ip->ttl = key->ttl;

	}

}

EXPORT_SYMBOL(skb_flow_dissect_tunnel_info);

net/sched/act_tunnel_key.c

+18 −2
Original line number Diff line number Diff line
@@ -197,6 +197,8 @@ static const struct nla_policy tunnel_key_policy[TCA_TUNNEL_KEY_MAX + 1] = { 
	[TCA_TUNNEL_KEY_ENC_DST_PORT] = {.type = NLA_U16},

	[TCA_TUNNEL_KEY_NO_CSUM]      = { .type = NLA_U8 },

	[TCA_TUNNEL_KEY_ENC_OPTS]     = { .type = NLA_NESTED },

	[TCA_TUNNEL_KEY_ENC_TOS]      = { .type = NLA_U8 },

	[TCA_TUNNEL_KEY_ENC_TTL]      = { .type = NLA_U8 },

};



static int tunnel_key_init(struct net *net, struct nlattr *nla,
@@ -216,6 +218,7 @@ static int tunnel_key_init(struct net *net, struct nlattr *nla, 
	int opts_len = 0;

	__be64 key_id;

	__be16 flags;

	u8 tos, ttl;

	int ret = 0;

	int err;
@@ -273,6 +276,13 @@ static int tunnel_key_init(struct net *net, struct nlattr *nla, 
			}

		}



		tos = 0;

		if (tb[TCA_TUNNEL_KEY_ENC_TOS])

			tos = nla_get_u8(tb[TCA_TUNNEL_KEY_ENC_TOS]);

		ttl = 0;

		if (tb[TCA_TUNNEL_KEY_ENC_TTL])

			ttl = nla_get_u8(tb[TCA_TUNNEL_KEY_ENC_TTL]);



		if (tb[TCA_TUNNEL_KEY_ENC_IPV4_SRC] &&

		    tb[TCA_TUNNEL_KEY_ENC_IPV4_DST]) {

			__be32 saddr;
@@ -281,7 +291,7 @@ static int tunnel_key_init(struct net *net, struct nlattr *nla, 
			saddr = nla_get_in_addr(tb[TCA_TUNNEL_KEY_ENC_IPV4_SRC]);

			daddr = nla_get_in_addr(tb[TCA_TUNNEL_KEY_ENC_IPV4_DST]);



			metadata = __ip_tun_set_dst(saddr, daddr, 0, 0,

			metadata = __ip_tun_set_dst(saddr, daddr, tos, ttl,

						    dst_port, flags,

						    key_id, opts_len);

		} else if (tb[TCA_TUNNEL_KEY_ENC_IPV6_SRC] &&
@@ -292,7 +302,7 @@ static int tunnel_key_init(struct net *net, struct nlattr *nla, 
			saddr = nla_get_in6_addr(tb[TCA_TUNNEL_KEY_ENC_IPV6_SRC]);

			daddr = nla_get_in6_addr(tb[TCA_TUNNEL_KEY_ENC_IPV6_DST]);



			metadata = __ipv6_tun_set_dst(&saddr, &daddr, 0, 0, dst_port,

			metadata = __ipv6_tun_set_dst(&saddr, &daddr, tos, ttl, dst_port,

						      0, flags,

						      key_id, 0);

		} else {
@@ -504,6 +514,12 @@ static int tunnel_key_dump(struct sk_buff *skb, struct tc_action *a, 
			       !(key->tun_flags & TUNNEL_CSUM)) ||

		    tunnel_key_opts_dump(skb, info))

			goto nla_put_failure;



		if (key->tos && nla_put_u8(skb, TCA_TUNNEL_KEY_ENC_TOS, key->tos))

			goto nla_put_failure;



		if (key->ttl && nla_put_u8(skb, TCA_TUNNEL_KEY_ENC_TTL, key->ttl))

			goto nla_put_failure;

	}



	tcf_tm_dump(&tm, &t->tcf_tm);