addr_prefs.c 12 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533
  1. // SPDX-License-Identifier: GPL-2.0-or-later
  2. /* Address preferences management
  3. *
  4. * Copyright (C) 2023 Red Hat, Inc. All Rights Reserved.
  5. * Written by David Howells (dhowells@redhat.com)
  6. */
  7. #define pr_fmt(fmt) KBUILD_MODNAME ": addr_prefs: " fmt
  8. #include <linux/slab.h>
  9. #include <linux/ctype.h>
  10. #include <linux/inet.h>
  11. #include <linux/seq_file.h>
  12. #include <keys/rxrpc-type.h>
  13. #include "internal.h"
  14. static inline struct afs_net *afs_seq2net_single(struct seq_file *m)
  15. {
  16. return afs_net(seq_file_single_net(m));
  17. }
  18. /*
  19. * Split a NUL-terminated string up to the first newline around spaces. The
  20. * source string will be modified to have NUL-terminations inserted.
  21. */
  22. static int afs_split_string(char **pbuf, char *strv[], unsigned int maxstrv)
  23. {
  24. unsigned int count = 0;
  25. char *p = *pbuf;
  26. maxstrv--; /* Allow for terminal NULL */
  27. for (;;) {
  28. /* Skip over spaces */
  29. while (isspace(*p)) {
  30. if (*p == '\n') {
  31. p++;
  32. break;
  33. }
  34. p++;
  35. }
  36. if (!*p)
  37. break;
  38. /* Mark start of word */
  39. if (count >= maxstrv) {
  40. pr_warn("Too many elements in string\n");
  41. return -EINVAL;
  42. }
  43. strv[count++] = p;
  44. /* Skip over word */
  45. while (!isspace(*p) && *p)
  46. p++;
  47. if (!*p)
  48. break;
  49. /* Mark end of word */
  50. if (*p == '\n') {
  51. *p++ = 0;
  52. break;
  53. }
  54. *p++ = 0;
  55. }
  56. *pbuf = p;
  57. strv[count] = NULL;
  58. return count;
  59. }
  60. /*
  61. * Parse an address with an optional subnet mask.
  62. */
  63. static int afs_parse_address(char *p, struct afs_addr_preference *pref)
  64. {
  65. const char *stop;
  66. unsigned long mask, tmp;
  67. char *end = p + strlen(p);
  68. bool bracket = false;
  69. if (*p == '[') {
  70. p++;
  71. bracket = true;
  72. }
  73. #if 0
  74. if (*p == '[') {
  75. p++;
  76. q = memchr(p, ']', end - p);
  77. if (!q) {
  78. pr_warn("Can't find closing ']'\n");
  79. return -EINVAL;
  80. }
  81. } else {
  82. for (q = p; q < end; q++)
  83. if (*q == '/')
  84. break;
  85. }
  86. #endif
  87. if (in4_pton(p, end - p, (u8 *)&pref->ipv4_addr, -1, &stop)) {
  88. pref->family = AF_INET;
  89. mask = 32;
  90. } else if (in6_pton(p, end - p, (u8 *)&pref->ipv6_addr, -1, &stop)) {
  91. pref->family = AF_INET6;
  92. mask = 128;
  93. } else {
  94. pr_warn("Can't determine address family\n");
  95. return -EINVAL;
  96. }
  97. p = (char *)stop;
  98. if (bracket) {
  99. if (*p != ']') {
  100. pr_warn("Can't find closing ']'\n");
  101. return -EINVAL;
  102. }
  103. p++;
  104. }
  105. if (*p == '/') {
  106. p++;
  107. tmp = simple_strtoul(p, &p, 10);
  108. if (tmp > mask) {
  109. pr_warn("Subnet mask too large\n");
  110. return -EINVAL;
  111. }
  112. if (tmp == 0) {
  113. pr_warn("Subnet mask too small\n");
  114. return -EINVAL;
  115. }
  116. mask = tmp;
  117. }
  118. if (*p) {
  119. pr_warn("Invalid address\n");
  120. return -EINVAL;
  121. }
  122. pref->subnet_mask = mask;
  123. return 0;
  124. }
  125. enum cmp_ret {
  126. CONTINUE_SEARCH,
  127. INSERT_HERE,
  128. EXACT_MATCH,
  129. SUBNET_MATCH,
  130. };
  131. /*
  132. * See if a candidate address matches a listed address.
  133. */
  134. static enum cmp_ret afs_cmp_address_pref(const struct afs_addr_preference *a,
  135. const struct afs_addr_preference *b)
  136. {
  137. int subnet = min(a->subnet_mask, b->subnet_mask);
  138. const __be32 *pa, *pb;
  139. u32 mask, na, nb;
  140. int diff;
  141. if (a->family != b->family)
  142. return INSERT_HERE;
  143. switch (a->family) {
  144. case AF_INET6:
  145. pa = a->ipv6_addr.s6_addr32;
  146. pb = b->ipv6_addr.s6_addr32;
  147. break;
  148. case AF_INET:
  149. pa = &a->ipv4_addr.s_addr;
  150. pb = &b->ipv4_addr.s_addr;
  151. break;
  152. }
  153. while (subnet > 32) {
  154. diff = ntohl(*pa++) - ntohl(*pb++);
  155. if (diff < 0)
  156. return INSERT_HERE; /* a<b */
  157. if (diff > 0)
  158. return CONTINUE_SEARCH; /* a>b */
  159. subnet -= 32;
  160. }
  161. if (subnet == 0)
  162. return EXACT_MATCH;
  163. mask = 0xffffffffU << (32 - subnet);
  164. na = ntohl(*pa);
  165. nb = ntohl(*pb);
  166. diff = (na & mask) - (nb & mask);
  167. //kdebug("diff %08x %08x %08x %d", na, nb, mask, diff);
  168. if (diff < 0)
  169. return INSERT_HERE; /* a<b */
  170. if (diff > 0)
  171. return CONTINUE_SEARCH; /* a>b */
  172. if (a->subnet_mask == b->subnet_mask)
  173. return EXACT_MATCH;
  174. if (a->subnet_mask > b->subnet_mask)
  175. return SUBNET_MATCH; /* a binds tighter than b */
  176. return CONTINUE_SEARCH; /* b binds tighter than a */
  177. }
  178. /*
  179. * Insert an address preference.
  180. */
  181. static int afs_insert_address_pref(struct afs_addr_preference_list **_preflist,
  182. struct afs_addr_preference *pref,
  183. int index)
  184. {
  185. struct afs_addr_preference_list *preflist = *_preflist, *old = preflist;
  186. size_t size, max_prefs;
  187. _enter("{%u/%u/%u},%u", preflist->ipv6_off, preflist->nr, preflist->max_prefs, index);
  188. if (preflist->nr == 255)
  189. return -ENOSPC;
  190. if (preflist->nr >= preflist->max_prefs) {
  191. max_prefs = preflist->max_prefs + 1;
  192. size = struct_size(preflist, prefs, max_prefs);
  193. size = roundup_pow_of_two(size);
  194. max_prefs = min_t(size_t, (size - sizeof(*preflist)) / sizeof(*pref), 255);
  195. preflist = kmalloc(size, GFP_KERNEL);
  196. if (!preflist)
  197. return -ENOMEM;
  198. *preflist = **_preflist;
  199. preflist->max_prefs = max_prefs;
  200. *_preflist = preflist;
  201. if (index < preflist->nr)
  202. memcpy(preflist->prefs + index + 1, old->prefs + index,
  203. sizeof(*pref) * (preflist->nr - index));
  204. if (index > 0)
  205. memcpy(preflist->prefs, old->prefs, sizeof(*pref) * index);
  206. } else {
  207. if (index < preflist->nr)
  208. memmove(preflist->prefs + index + 1, preflist->prefs + index,
  209. sizeof(*pref) * (preflist->nr - index));
  210. }
  211. preflist->prefs[index] = *pref;
  212. preflist->nr++;
  213. if (pref->family == AF_INET)
  214. preflist->ipv6_off++;
  215. return 0;
  216. }
  217. /*
  218. * Add an address preference.
  219. * echo "add <proto> <IP>[/<mask>] <prior>" >/proc/fs/afs/addr_prefs
  220. */
  221. static int afs_add_address_pref(struct afs_net *net, struct afs_addr_preference_list **_preflist,
  222. int argc, char **argv)
  223. {
  224. struct afs_addr_preference_list *preflist = *_preflist;
  225. struct afs_addr_preference pref;
  226. enum cmp_ret cmp;
  227. int ret, i, stop;
  228. if (argc != 3) {
  229. pr_warn("Wrong number of params\n");
  230. return -EINVAL;
  231. }
  232. if (strcmp(argv[0], "udp") != 0) {
  233. pr_warn("Unsupported protocol\n");
  234. return -EINVAL;
  235. }
  236. ret = afs_parse_address(argv[1], &pref);
  237. if (ret < 0)
  238. return ret;
  239. ret = kstrtou16(argv[2], 10, &pref.prio);
  240. if (ret < 0) {
  241. pr_warn("Invalid priority\n");
  242. return ret;
  243. }
  244. if (pref.family == AF_INET) {
  245. i = 0;
  246. stop = preflist->ipv6_off;
  247. } else {
  248. i = preflist->ipv6_off;
  249. stop = preflist->nr;
  250. }
  251. for (; i < stop; i++) {
  252. cmp = afs_cmp_address_pref(&pref, &preflist->prefs[i]);
  253. switch (cmp) {
  254. case CONTINUE_SEARCH:
  255. continue;
  256. case INSERT_HERE:
  257. case SUBNET_MATCH:
  258. return afs_insert_address_pref(_preflist, &pref, i);
  259. case EXACT_MATCH:
  260. preflist->prefs[i].prio = pref.prio;
  261. return 0;
  262. }
  263. }
  264. return afs_insert_address_pref(_preflist, &pref, i);
  265. }
  266. /*
  267. * Delete an address preference.
  268. */
  269. static int afs_delete_address_pref(struct afs_addr_preference_list **_preflist,
  270. int index)
  271. {
  272. struct afs_addr_preference_list *preflist = *_preflist;
  273. _enter("{%u/%u/%u},%u", preflist->ipv6_off, preflist->nr, preflist->max_prefs, index);
  274. if (preflist->nr == 0)
  275. return -ENOENT;
  276. if (index < preflist->nr - 1)
  277. memmove(preflist->prefs + index, preflist->prefs + index + 1,
  278. sizeof(preflist->prefs[0]) * (preflist->nr - index - 1));
  279. if (index < preflist->ipv6_off)
  280. preflist->ipv6_off--;
  281. preflist->nr--;
  282. return 0;
  283. }
  284. /*
  285. * Delete an address preference.
  286. * echo "del <proto> <IP>[/<mask>]" >/proc/fs/afs/addr_prefs
  287. */
  288. static int afs_del_address_pref(struct afs_net *net, struct afs_addr_preference_list **_preflist,
  289. int argc, char **argv)
  290. {
  291. struct afs_addr_preference_list *preflist = *_preflist;
  292. struct afs_addr_preference pref;
  293. enum cmp_ret cmp;
  294. int ret, i, stop;
  295. if (argc != 2) {
  296. pr_warn("Wrong number of params\n");
  297. return -EINVAL;
  298. }
  299. if (strcmp(argv[0], "udp") != 0) {
  300. pr_warn("Unsupported protocol\n");
  301. return -EINVAL;
  302. }
  303. ret = afs_parse_address(argv[1], &pref);
  304. if (ret < 0)
  305. return ret;
  306. if (pref.family == AF_INET) {
  307. i = 0;
  308. stop = preflist->ipv6_off;
  309. } else {
  310. i = preflist->ipv6_off;
  311. stop = preflist->nr;
  312. }
  313. for (; i < stop; i++) {
  314. cmp = afs_cmp_address_pref(&pref, &preflist->prefs[i]);
  315. switch (cmp) {
  316. case CONTINUE_SEARCH:
  317. continue;
  318. case INSERT_HERE:
  319. case SUBNET_MATCH:
  320. return 0;
  321. case EXACT_MATCH:
  322. return afs_delete_address_pref(_preflist, i);
  323. }
  324. }
  325. return -ENOANO;
  326. }
  327. /*
  328. * Handle writes to /proc/fs/afs/addr_prefs
  329. */
  330. int afs_proc_addr_prefs_write(struct file *file, char *buf, size_t size)
  331. {
  332. struct afs_addr_preference_list *preflist, *old;
  333. struct seq_file *m = file->private_data;
  334. struct afs_net *net = afs_seq2net_single(m);
  335. size_t psize;
  336. char *argv[5];
  337. int ret, argc, max_prefs;
  338. inode_lock(file_inode(file));
  339. /* Allocate a candidate new list and initialise it from the old. */
  340. old = rcu_dereference_protected(net->address_prefs,
  341. lockdep_is_held(&file_inode(file)->i_rwsem));
  342. if (old)
  343. max_prefs = old->nr + 1;
  344. else
  345. max_prefs = 1;
  346. psize = struct_size(old, prefs, max_prefs);
  347. psize = roundup_pow_of_two(psize);
  348. max_prefs = min_t(size_t, (psize - sizeof(*old)) / sizeof(old->prefs[0]), 255);
  349. ret = -ENOMEM;
  350. preflist = kmalloc_flex(*preflist, prefs, max_prefs);
  351. if (!preflist)
  352. goto done;
  353. if (old)
  354. memcpy(preflist, old, struct_size(preflist, prefs, old->nr));
  355. else
  356. memset(preflist, 0, sizeof(*preflist));
  357. preflist->max_prefs = max_prefs;
  358. do {
  359. argc = afs_split_string(&buf, argv, ARRAY_SIZE(argv));
  360. if (argc < 0) {
  361. ret = argc;
  362. goto done;
  363. }
  364. if (argc < 2)
  365. goto inval;
  366. if (strcmp(argv[0], "add") == 0)
  367. ret = afs_add_address_pref(net, &preflist, argc - 1, argv + 1);
  368. else if (strcmp(argv[0], "del") == 0)
  369. ret = afs_del_address_pref(net, &preflist, argc - 1, argv + 1);
  370. else
  371. goto inval;
  372. if (ret < 0)
  373. goto done;
  374. } while (*buf);
  375. preflist->version++;
  376. rcu_assign_pointer(net->address_prefs, preflist);
  377. /* Store prefs before version */
  378. smp_store_release(&net->address_pref_version, preflist->version);
  379. kfree_rcu(old, rcu);
  380. preflist = NULL;
  381. ret = 0;
  382. done:
  383. kfree(preflist);
  384. inode_unlock(file_inode(file));
  385. _leave(" = %d", ret);
  386. return ret;
  387. inval:
  388. pr_warn("Invalid Command\n");
  389. ret = -EINVAL;
  390. goto done;
  391. }
  392. /*
  393. * Mark the priorities on an address list if the address preferences table has
  394. * changed. The caller must hold the RCU read lock.
  395. */
  396. void afs_get_address_preferences_rcu(struct afs_net *net, struct afs_addr_list *alist)
  397. {
  398. const struct afs_addr_preference_list *preflist =
  399. rcu_dereference(net->address_prefs);
  400. const struct sockaddr_in6 *sin6;
  401. const struct sockaddr_in *sin;
  402. const struct sockaddr *sa;
  403. struct afs_addr_preference test;
  404. enum cmp_ret cmp;
  405. int i, j;
  406. if (!preflist || !preflist->nr || !alist->nr_addrs ||
  407. smp_load_acquire(&alist->addr_pref_version) == preflist->version)
  408. return;
  409. test.family = AF_INET;
  410. test.subnet_mask = 32;
  411. test.prio = 0;
  412. for (i = 0; i < alist->nr_ipv4; i++) {
  413. sa = rxrpc_kernel_remote_addr(alist->addrs[i].peer);
  414. sin = (const struct sockaddr_in *)sa;
  415. test.ipv4_addr = sin->sin_addr;
  416. for (j = 0; j < preflist->ipv6_off; j++) {
  417. cmp = afs_cmp_address_pref(&test, &preflist->prefs[j]);
  418. switch (cmp) {
  419. case CONTINUE_SEARCH:
  420. continue;
  421. case INSERT_HERE:
  422. break;
  423. case EXACT_MATCH:
  424. case SUBNET_MATCH:
  425. WRITE_ONCE(alist->addrs[i].prio, preflist->prefs[j].prio);
  426. break;
  427. }
  428. }
  429. }
  430. test.family = AF_INET6;
  431. test.subnet_mask = 128;
  432. test.prio = 0;
  433. for (; i < alist->nr_addrs; i++) {
  434. sa = rxrpc_kernel_remote_addr(alist->addrs[i].peer);
  435. sin6 = (const struct sockaddr_in6 *)sa;
  436. test.ipv6_addr = sin6->sin6_addr;
  437. for (j = preflist->ipv6_off; j < preflist->nr; j++) {
  438. cmp = afs_cmp_address_pref(&test, &preflist->prefs[j]);
  439. switch (cmp) {
  440. case CONTINUE_SEARCH:
  441. continue;
  442. case INSERT_HERE:
  443. break;
  444. case EXACT_MATCH:
  445. case SUBNET_MATCH:
  446. WRITE_ONCE(alist->addrs[i].prio, preflist->prefs[j].prio);
  447. break;
  448. }
  449. }
  450. }
  451. smp_store_release(&alist->addr_pref_version, preflist->version);
  452. }
  453. /*
  454. * Mark the priorities on an address list if the address preferences table has
  455. * changed. Avoid taking the RCU read lock if we can.
  456. */
  457. void afs_get_address_preferences(struct afs_net *net, struct afs_addr_list *alist)
  458. {
  459. if (!net->address_prefs ||
  460. /* Load version before prefs */
  461. smp_load_acquire(&net->address_pref_version) == alist->addr_pref_version)
  462. return;
  463. rcu_read_lock();
  464. afs_get_address_preferences_rcu(net, alist);
  465. rcu_read_unlock();
  466. }