[PATCH RFC v2 net-next 23/25] net/mpls: Plumb support for filtering route dumps

[PATCH RFC v2 net-next 00/25] rtnetlink: Add support for rigid checking of data in dump request · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · David Ahern <dsahern@kernel.org> · 2018-10-02
Re: [PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · Jiri Benc <hidden> · 2018-10-02
Re: [PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · Christian Brauner <christian@brauner.io> · 2018-10-02
Re: [PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · Jiri Benc <hidden> · 2018-10-02
Re: [PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · David Ahern <hidden> · 2018-10-02
Re: [PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · Jiri Benc <hidden> · 2018-10-02
Re: [PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · David Ahern <hidden> · 2018-10-03
Re: [PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · David Ahern <hidden> · 2018-10-02
Re: [PATCH RFC v2 net-next 03/25] netlink: introduce NLM_F_DUMP_PROPER_HDR flag · Jiri Benc <hidden> · 2018-10-02
[PATCH RFC v2 net-next 01/25] net/netlink: Pass extack to dump callbacks · David Ahern <dsahern@kernel.org> · 2018-10-02
Re: [PATCH RFC v2 net-next 01/25] net/netlink: Pass extack to dump callbacks · Christian Brauner <christian@brauner.io> · 2018-10-02
[PATCH RFC v2 net-next 06/25] rtnetlink: Update rtnl_dump_ifinfo to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 04/25] net/ipv4: Update inet_dump_ifaddr to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 02/25] net/ipv6: Refactor address dump to push inet6_fill_args to in6_dump_addrs · David Ahern <dsahern@kernel.org> · 2018-10-02
Re: [PATCH RFC v2 net-next 02/25] net/ipv6: Refactor address dump to push inet6_fill_args to in6_dump_addrs · Jiri Benc <hidden> · 2018-10-02
Re: [PATCH RFC v2 net-next 02/25] net/ipv6: Refactor address dump to push inet6_fill_args to in6_dump_addrs · Christian Brauner <christian@brauner.io> · 2018-10-02
Re: [PATCH RFC v2 net-next 02/25] net/ipv6: Refactor address dump to push inet6_fill_args to in6_dump_addrs · Jiri Benc <hidden> · 2018-10-02
Re: [PATCH RFC v2 net-next 02/25] net/ipv6: Refactor address dump to push inet6_fill_args to in6_dump_addrs · Christian Brauner <christian@brauner.io> · 2018-10-02
Re: [PATCH RFC v2 net-next 02/25] net/ipv6: Refactor address dump to push inet6_fill_args to in6_dump_addrs · David Ahern <hidden> · 2018-10-02
Re: [PATCH RFC v2 net-next 02/25] net/ipv6: Refactor address dump to push inet6_fill_args to in6_dump_addrs · Jiri Benc <hidden> · 2018-10-02
[PATCH RFC v2 net-next 05/25] net/ipv6: Update inet6_dump_addr to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 08/25] rtnetlink: Update rtnl_stats_dump to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 09/25] rtnetlink: Update inet6_dump_ifinfo to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 07/25] rtnetlink: Update rtnl_bridge_getlink to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 10/25] rtnetlink: Update ipmr_rtm_dumplink to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 13/25] net/neighbor: Update neigh_dump_info to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 12/25] net/neigh: Refactor dump filter handling · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 16/25] net/fib_rules: Update fib_nl_dumprule to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 15/25] net/namespace: Update rtnl_net_dumpid to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 11/25] rtnetlink: Update fib dumps to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 14/25] net/neighbor: Update neightbl_dump_info to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 18/25] net: Update netconf dump handlers to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 20/25] net: Add struct for fib dump filter · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 17/25] net/ipv6: Update ip6addrlbl_dump to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 19/25] net/bridge: Update br_mdb_dump to support NLM_F_DUMP_PROPER_HDR · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 21/25] net/ipv4: Plumb support for filtering route dumps · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 23/25] net/mpls: Plumb support for filtering route dumps · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 25/25] net: Enable kernel side filtering of route dumps · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 24/25] net: Plumb support for filtering ipv4 and ipv6 multicast route dumps · David Ahern <dsahern@kernel.org> · 2018-10-02
[PATCH RFC v2 net-next 22/25] net/ipv6: Plumb support for filtering route dumps · David Ahern <dsahern@kernel.org> · 2018-10-02
Re: [PATCH RFC v2 net-next 00/25] rtnetlink: Add support for rigid checking of data in dump request · Stephen Hemminger <stephen@networkplumber.org> · 2018-10-03
Re: [PATCH RFC v2 net-next 00/25] rtnetlink: Add support for rigid checking of data in dump request · David Ahern <hidden> · 2018-10-03

STALE2803d

From: David Ahern <dsahern@kernel.org>
Date: 2018-10-02 07:09:22
Subsystem: networking [general], the rest · Maintainers: "David S. Miller", Eric Dumazet, Jakub Kicinski, Paolo Abeni, Linus Torvalds

From: David Ahern <redacted>

Implement kernel side filtering of routes by egress device index and
protocol. MPLS uses only a single table and route type.

Signed-off-by: David Ahern <redacted>
---
 net/mpls/af_mpls.c | 55 +++++++++++++++++++++++++++++++++++++++++++++++++++++-
 1 file changed, 54 insertions(+), 1 deletion(-)

diff --git a/net/mpls/af_mpls.c b/net/mpls/af_mpls.c
index f94d1db63eb5..4dd8a2a026e7 100644
--- a/net/mpls/af_mpls.c
+++ b/net/mpls/af_mpls.c

@@ -2031,6 +2031,28 @@ static int mpls_dump_route(struct sk_buff *skb, u32 portid, u32 seq, int event,
 	return -EMSGSIZE;
 }
 
+static bool mpls_rt_uses_dev(struct mpls_route *rt,
+			     const struct net_device *dev)
+{
+	struct net_device *nh_dev;
+
+	if (rt->rt_nhn == 1) {
+		struct mpls_nh *nh = rt->rt_nh;
+
+		nh_dev = rtnl_dereference(nh->nh_dev);
+		if (dev == nh_dev)
+			return true;
+	} else {
+		for_nexthops(rt) {
+			nh_dev = rtnl_dereference(nh->nh_dev);
+			if (nh_dev == dev)
+				return true;
+		} endfor_nexthops(rt);
+	}
+
+	return false;
+}
+
 static int mpls_dump_routes(struct sk_buff *skb, struct netlink_callback *cb)
 {
 	const struct nlmsghdr *nlh = cb->nlh;

@@ -2039,6 +2061,7 @@ static int mpls_dump_routes(struct sk_buff *skb, struct netlink_callback *cb)
 	struct fib_dump_filter filter = {};
 	size_t platform_labels;
 	unsigned int index;
+	int err;
 
 	ASSERT_RTNL();

@@ -2047,6 +2070,15 @@ static int mpls_dump_routes(struct sk_buff *skb, struct netlink_callback *cb)
 
 		if (err)
 			return err;
+
+		/* for MPLS, there is only 1 table with fixed type, scope
+		 * tos and flags. If any of these are set in the filter then
+		 * return nothing
+		 */
+		if ((filter.table_id && filter.table_id != RT_TABLE_MAIN) ||
+		    (filter.rt_type && filter.rt_type != RTN_UNICAST) ||
+		     filter.scope || filter.tos || filter.flags)
+			return 0;
 	}
 
 	index = cb->args[0];

@@ -2055,20 +2087,41 @@ static int mpls_dump_routes(struct sk_buff *skb, struct netlink_callback *cb)
 
 	platform_label = rtnl_dereference(net->mpls.platform_label);
 	platform_labels = net->mpls.platform_labels;
+
+	rcu_read_lock();
+
+	if (filter.ifindex) {
+		filter.dev = dev_get_by_index_rcu(net, filter.ifindex);
+		if (!filter.dev) {
+			err = -ENODEV;
+			goto out_err;
+		}
+	}
+
 	for (; index < platform_labels; index++) {
 		struct mpls_route *rt;
+
 		rt = rtnl_dereference(platform_label[index]);
 		if (!rt)
 			continue;
 
+		if (filter.protocol && rt->rt_protocol != filter.protocol)
+			continue;
+
+		if (filter.dev && !mpls_rt_uses_dev(rt, filter.dev))
+			continue;
+
 		if (mpls_dump_route(skb, NETLINK_CB(cb->skb).portid,
 				    cb->nlh->nlmsg_seq, RTM_NEWROUTE,
 				    index, rt, NLM_F_MULTI) < 0)
 			break;
 	}
 	cb->args[0] = index;
+	err = skb->len;
 
-	return skb->len;
+out_err:
+	rcu_read_unlock();
+	return err;
 }
 
 static inline size_t lfib_nlmsg_size(struct mpls_route *rt)

-- 
2.11.0

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help