2020-04-27 18:13:01 +03:00
|
|
|
// SPDX-License-Identifier: BSD-3-Clause OR GPL-2.0
|
|
|
|
|
/* Copyright (c) 2017-2020 Mellanox Technologies. All rights reserved */
|
|
|
|
|
|
|
|
|
|
#include <linux/kernel.h>
|
|
|
|
|
#include <linux/errno.h>
|
|
|
|
|
#include <linux/netdevice.h>
|
|
|
|
|
#include <net/flow_offload.h>
|
|
|
|
|
|
|
|
|
|
#include "spectrum.h"
|
|
|
|
|
#include "spectrum_span.h"
|
|
|
|
|
#include "reg.h"
|
|
|
|
|
|
|
|
|
|
static struct mlxsw_sp_mall_entry *
|
2020-04-27 18:13:08 +03:00
|
|
|
mlxsw_sp_mall_entry_find(struct mlxsw_sp_flow_block *block, unsigned long cookie)
|
2020-04-27 18:13:01 +03:00
|
|
|
{
|
|
|
|
|
struct mlxsw_sp_mall_entry *mall_entry;
|
|
|
|
|
|
2020-05-09 23:06:04 +03:00
|
|
|
list_for_each_entry(mall_entry, &block->mall.list, list)
|
2020-04-27 18:13:01 +03:00
|
|
|
if (mall_entry->cookie == cookie)
|
|
|
|
|
return mall_entry;
|
|
|
|
|
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
mlxsw_sp_mall_port_mirror_add(struct mlxsw_sp_port *mlxsw_sp_port,
|
2021-03-16 17:02:54 +02:00
|
|
|
struct mlxsw_sp_mall_entry *mall_entry,
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2020-04-27 18:13:01 +03:00
|
|
|
{
|
2020-04-30 20:01:13 +03:00
|
|
|
struct mlxsw_sp *mlxsw_sp = mlxsw_sp_port->mlxsw_sp;
|
2020-07-14 17:21:01 +03:00
|
|
|
struct mlxsw_sp_span_agent_parms agent_parms = {};
|
2020-04-30 20:01:13 +03:00
|
|
|
struct mlxsw_sp_span_trigger_parms parms;
|
|
|
|
|
enum mlxsw_sp_span_trigger trigger;
|
|
|
|
|
int err;
|
2020-04-27 18:13:01 +03:00
|
|
|
|
2020-04-27 18:13:03 +03:00
|
|
|
if (!mall_entry->mirror.to_dev) {
|
2021-03-16 17:02:54 +02:00
|
|
|
NL_SET_ERR_MSG(extack, "Could not find requested device");
|
2020-04-27 18:13:01 +03:00
|
|
|
return -EINVAL;
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-14 17:21:00 +03:00
|
|
|
agent_parms.to_dev = mall_entry->mirror.to_dev;
|
|
|
|
|
err = mlxsw_sp_span_agent_get(mlxsw_sp, &mall_entry->mirror.span_id,
|
|
|
|
|
&agent_parms);
|
2021-03-16 17:02:54 +02:00
|
|
|
if (err) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Failed to get SPAN agent");
|
2020-04-30 20:01:13 +03:00
|
|
|
return err;
|
2021-03-16 17:02:54 +02:00
|
|
|
}
|
2020-04-30 20:01:13 +03:00
|
|
|
|
|
|
|
|
err = mlxsw_sp_span_analyzed_port_get(mlxsw_sp_port,
|
|
|
|
|
mall_entry->ingress);
|
2021-03-16 17:02:54 +02:00
|
|
|
if (err) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Failed to get analyzed port");
|
2020-04-30 20:01:13 +03:00
|
|
|
goto err_analyzed_port_get;
|
2021-03-16 17:02:54 +02:00
|
|
|
}
|
2020-04-30 20:01:13 +03:00
|
|
|
|
|
|
|
|
trigger = mall_entry->ingress ? MLXSW_SP_SPAN_TRIGGER_INGRESS :
|
|
|
|
|
MLXSW_SP_SPAN_TRIGGER_EGRESS;
|
|
|
|
|
parms.span_id = mall_entry->mirror.span_id;
|
2021-03-11 14:24:13 +02:00
|
|
|
parms.probability_rate = 1;
|
2020-04-30 20:01:13 +03:00
|
|
|
err = mlxsw_sp_span_agent_bind(mlxsw_sp, trigger, mlxsw_sp_port,
|
|
|
|
|
&parms);
|
2021-03-16 17:02:54 +02:00
|
|
|
if (err) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Failed to bind SPAN agent");
|
2020-04-30 20:01:13 +03:00
|
|
|
goto err_agent_bind;
|
2021-03-16 17:02:54 +02:00
|
|
|
}
|
2020-04-30 20:01:13 +03:00
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
err_agent_bind:
|
|
|
|
|
mlxsw_sp_span_analyzed_port_put(mlxsw_sp_port, mall_entry->ingress);
|
|
|
|
|
err_analyzed_port_get:
|
|
|
|
|
mlxsw_sp_span_agent_put(mlxsw_sp, mall_entry->mirror.span_id);
|
|
|
|
|
return err;
|
2020-04-27 18:13:01 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
mlxsw_sp_mall_port_mirror_del(struct mlxsw_sp_port *mlxsw_sp_port,
|
2020-04-27 18:13:03 +03:00
|
|
|
struct mlxsw_sp_mall_entry *mall_entry)
|
2020-04-27 18:13:01 +03:00
|
|
|
{
|
2020-04-30 20:01:13 +03:00
|
|
|
struct mlxsw_sp *mlxsw_sp = mlxsw_sp_port->mlxsw_sp;
|
|
|
|
|
struct mlxsw_sp_span_trigger_parms parms;
|
|
|
|
|
enum mlxsw_sp_span_trigger trigger;
|
|
|
|
|
|
|
|
|
|
trigger = mall_entry->ingress ? MLXSW_SP_SPAN_TRIGGER_INGRESS :
|
|
|
|
|
MLXSW_SP_SPAN_TRIGGER_EGRESS;
|
|
|
|
|
parms.span_id = mall_entry->mirror.span_id;
|
|
|
|
|
mlxsw_sp_span_agent_unbind(mlxsw_sp, trigger, mlxsw_sp_port, &parms);
|
|
|
|
|
mlxsw_sp_span_analyzed_port_put(mlxsw_sp_port, mall_entry->ingress);
|
|
|
|
|
mlxsw_sp_span_agent_put(mlxsw_sp, mall_entry->mirror.span_id);
|
2020-04-27 18:13:01 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int mlxsw_sp_mall_port_sample_set(struct mlxsw_sp_port *mlxsw_sp_port,
|
|
|
|
|
bool enable, u32 rate)
|
|
|
|
|
{
|
|
|
|
|
struct mlxsw_sp *mlxsw_sp = mlxsw_sp_port->mlxsw_sp;
|
|
|
|
|
char mpsc_pl[MLXSW_REG_MPSC_LEN];
|
|
|
|
|
|
|
|
|
|
mlxsw_reg_mpsc_pack(mpsc_pl, mlxsw_sp_port->local_port, enable, rate);
|
|
|
|
|
return mlxsw_reg_write(mlxsw_sp->core, MLXSW_REG(mpsc), mpsc_pl);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
|
|
|
|
mlxsw_sp_mall_port_sample_add(struct mlxsw_sp_port *mlxsw_sp_port,
|
2021-03-16 17:02:54 +02:00
|
|
|
struct mlxsw_sp_mall_entry *mall_entry,
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2020-04-27 18:13:01 +03:00
|
|
|
{
|
2021-03-11 14:24:14 +02:00
|
|
|
struct mlxsw_sp *mlxsw_sp = mlxsw_sp_port->mlxsw_sp;
|
2021-03-16 17:02:58 +02:00
|
|
|
struct mlxsw_sp_sample_trigger trigger;
|
2020-04-27 18:13:01 +03:00
|
|
|
int err;
|
|
|
|
|
|
2021-03-16 17:02:58 +02:00
|
|
|
if (mall_entry->ingress)
|
|
|
|
|
trigger.type = MLXSW_SP_SAMPLE_TRIGGER_TYPE_INGRESS;
|
|
|
|
|
else
|
|
|
|
|
trigger.type = MLXSW_SP_SAMPLE_TRIGGER_TYPE_EGRESS;
|
|
|
|
|
trigger.local_port = mlxsw_sp_port->local_port;
|
|
|
|
|
err = mlxsw_sp_sample_trigger_params_set(mlxsw_sp, &trigger,
|
|
|
|
|
&mall_entry->sample.params,
|
|
|
|
|
extack);
|
|
|
|
|
if (err)
|
|
|
|
|
return err;
|
2020-04-27 18:13:01 +03:00
|
|
|
|
2021-03-11 14:24:14 +02:00
|
|
|
err = mlxsw_sp->mall_ops->sample_add(mlxsw_sp, mlxsw_sp_port,
|
2021-03-16 17:02:56 +02:00
|
|
|
mall_entry, extack);
|
2020-04-27 18:13:01 +03:00
|
|
|
if (err)
|
|
|
|
|
goto err_port_sample_set;
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
err_port_sample_set:
|
2021-03-16 17:02:58 +02:00
|
|
|
mlxsw_sp_sample_trigger_params_unset(mlxsw_sp, &trigger);
|
2020-04-27 18:13:01 +03:00
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
2021-03-16 17:02:56 +02:00
|
|
|
mlxsw_sp_mall_port_sample_del(struct mlxsw_sp_port *mlxsw_sp_port,
|
|
|
|
|
struct mlxsw_sp_mall_entry *mall_entry)
|
2020-04-27 18:13:01 +03:00
|
|
|
{
|
2021-03-11 14:24:14 +02:00
|
|
|
struct mlxsw_sp *mlxsw_sp = mlxsw_sp_port->mlxsw_sp;
|
2021-03-16 17:02:58 +02:00
|
|
|
struct mlxsw_sp_sample_trigger trigger;
|
2021-03-11 14:24:14 +02:00
|
|
|
|
2021-03-16 17:02:58 +02:00
|
|
|
if (mall_entry->ingress)
|
|
|
|
|
trigger.type = MLXSW_SP_SAMPLE_TRIGGER_TYPE_INGRESS;
|
|
|
|
|
else
|
|
|
|
|
trigger.type = MLXSW_SP_SAMPLE_TRIGGER_TYPE_EGRESS;
|
|
|
|
|
trigger.local_port = mlxsw_sp_port->local_port;
|
2020-04-27 18:13:01 +03:00
|
|
|
|
2021-03-16 17:02:56 +02:00
|
|
|
mlxsw_sp->mall_ops->sample_del(mlxsw_sp, mlxsw_sp_port, mall_entry);
|
2021-03-16 17:02:58 +02:00
|
|
|
mlxsw_sp_sample_trigger_params_unset(mlxsw_sp, &trigger);
|
2020-04-27 18:13:01 +03:00
|
|
|
}
|
|
|
|
|
|
2020-04-27 18:13:06 +03:00
|
|
|
static int
|
|
|
|
|
mlxsw_sp_mall_port_rule_add(struct mlxsw_sp_port *mlxsw_sp_port,
|
2021-03-16 17:02:54 +02:00
|
|
|
struct mlxsw_sp_mall_entry *mall_entry,
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2020-04-27 18:13:06 +03:00
|
|
|
{
|
|
|
|
|
switch (mall_entry->type) {
|
|
|
|
|
case MLXSW_SP_MALL_ACTION_TYPE_MIRROR:
|
2021-03-16 17:02:54 +02:00
|
|
|
return mlxsw_sp_mall_port_mirror_add(mlxsw_sp_port, mall_entry,
|
|
|
|
|
extack);
|
2020-04-27 18:13:06 +03:00
|
|
|
case MLXSW_SP_MALL_ACTION_TYPE_SAMPLE:
|
2021-03-16 17:02:54 +02:00
|
|
|
return mlxsw_sp_mall_port_sample_add(mlxsw_sp_port, mall_entry,
|
|
|
|
|
extack);
|
2020-04-27 18:13:06 +03:00
|
|
|
default:
|
|
|
|
|
WARN_ON(1);
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void
|
|
|
|
|
mlxsw_sp_mall_port_rule_del(struct mlxsw_sp_port *mlxsw_sp_port,
|
|
|
|
|
struct mlxsw_sp_mall_entry *mall_entry)
|
|
|
|
|
{
|
|
|
|
|
switch (mall_entry->type) {
|
|
|
|
|
case MLXSW_SP_MALL_ACTION_TYPE_MIRROR:
|
|
|
|
|
mlxsw_sp_mall_port_mirror_del(mlxsw_sp_port, mall_entry);
|
|
|
|
|
break;
|
|
|
|
|
case MLXSW_SP_MALL_ACTION_TYPE_SAMPLE:
|
2021-03-16 17:02:56 +02:00
|
|
|
mlxsw_sp_mall_port_sample_del(mlxsw_sp_port, mall_entry);
|
2020-04-27 18:13:06 +03:00
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
WARN_ON(1);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-09 23:06:05 +03:00
|
|
|
static void mlxsw_sp_mall_prio_update(struct mlxsw_sp_flow_block *block)
|
|
|
|
|
{
|
|
|
|
|
struct mlxsw_sp_mall_entry *mall_entry;
|
|
|
|
|
|
|
|
|
|
if (list_empty(&block->mall.list))
|
|
|
|
|
return;
|
|
|
|
|
block->mall.min_prio = UINT_MAX;
|
|
|
|
|
block->mall.max_prio = 0;
|
|
|
|
|
list_for_each_entry(mall_entry, &block->mall.list, list) {
|
|
|
|
|
if (mall_entry->priority < block->mall.min_prio)
|
|
|
|
|
block->mall.min_prio = mall_entry->priority;
|
|
|
|
|
if (mall_entry->priority > block->mall.max_prio)
|
|
|
|
|
block->mall.max_prio = mall_entry->priority;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-09 23:06:06 +03:00
|
|
|
int mlxsw_sp_mall_replace(struct mlxsw_sp *mlxsw_sp,
|
|
|
|
|
struct mlxsw_sp_flow_block *block,
|
2020-04-27 18:13:08 +03:00
|
|
|
struct tc_cls_matchall_offload *f)
|
2020-04-27 18:13:01 +03:00
|
|
|
{
|
2020-04-27 18:13:08 +03:00
|
|
|
struct mlxsw_sp_flow_block_binding *binding;
|
2020-04-27 18:13:01 +03:00
|
|
|
struct mlxsw_sp_mall_entry *mall_entry;
|
|
|
|
|
__be16 protocol = f->common.protocol;
|
|
|
|
|
struct flow_action_entry *act;
|
2020-05-09 23:06:06 +03:00
|
|
|
unsigned int flower_min_prio;
|
|
|
|
|
unsigned int flower_max_prio;
|
|
|
|
|
bool flower_prio_valid;
|
2020-04-27 18:13:01 +03:00
|
|
|
int err;
|
|
|
|
|
|
|
|
|
|
if (!flow_offload_has_one_action(&f->rule->action)) {
|
2020-04-27 18:13:08 +03:00
|
|
|
NL_SET_ERR_MSG(f->common.extack, "Only singular actions are supported");
|
|
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (f->common.chain_index) {
|
|
|
|
|
NL_SET_ERR_MSG(f->common.extack, "Only chain 0 is supported");
|
|
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (mlxsw_sp_flow_block_is_mixed_bound(block)) {
|
|
|
|
|
NL_SET_ERR_MSG(f->common.extack, "Only not mixed bound blocks are supported");
|
2020-04-27 18:13:01 +03:00
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-09 23:06:06 +03:00
|
|
|
err = mlxsw_sp_flower_prio_get(mlxsw_sp, block, f->common.chain_index,
|
|
|
|
|
&flower_min_prio, &flower_max_prio);
|
|
|
|
|
if (err) {
|
|
|
|
|
if (err != -ENOENT) {
|
|
|
|
|
NL_SET_ERR_MSG(f->common.extack, "Failed to get flower priorities");
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
flower_prio_valid = false;
|
|
|
|
|
/* No flower filters are installed in specified chain. */
|
|
|
|
|
} else {
|
|
|
|
|
flower_prio_valid = true;
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-29 13:09:43 +03:00
|
|
|
if (protocol != htons(ETH_P_ALL)) {
|
|
|
|
|
NL_SET_ERR_MSG(f->common.extack, "matchall rules only supported with 'all' protocol");
|
|
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
|
2020-04-27 18:13:01 +03:00
|
|
|
mall_entry = kzalloc(sizeof(*mall_entry), GFP_KERNEL);
|
|
|
|
|
if (!mall_entry)
|
|
|
|
|
return -ENOMEM;
|
|
|
|
|
mall_entry->cookie = f->cookie;
|
2020-05-09 23:06:05 +03:00
|
|
|
mall_entry->priority = f->common.prio;
|
2020-04-27 18:13:08 +03:00
|
|
|
mall_entry->ingress = mlxsw_sp_flow_block_is_ingress_bound(block);
|
2020-04-27 18:13:01 +03:00
|
|
|
|
2021-03-29 13:09:45 +03:00
|
|
|
if (flower_prio_valid && mall_entry->ingress &&
|
|
|
|
|
mall_entry->priority >= flower_min_prio) {
|
|
|
|
|
NL_SET_ERR_MSG(f->common.extack, "Failed to add behind existing flower rules");
|
|
|
|
|
err = -EOPNOTSUPP;
|
|
|
|
|
goto errout;
|
|
|
|
|
}
|
|
|
|
|
if (flower_prio_valid && !mall_entry->ingress &&
|
|
|
|
|
mall_entry->priority <= flower_max_prio) {
|
|
|
|
|
NL_SET_ERR_MSG(f->common.extack, "Failed to add in front of existing flower rules");
|
|
|
|
|
err = -EOPNOTSUPP;
|
|
|
|
|
goto errout;
|
|
|
|
|
}
|
|
|
|
|
|
2020-04-27 18:13:01 +03:00
|
|
|
act = &f->rule->action.entries[0];
|
|
|
|
|
|
2021-03-29 13:09:44 +03:00
|
|
|
switch (act->id) {
|
|
|
|
|
case FLOW_ACTION_MIRRED:
|
2020-04-27 18:13:01 +03:00
|
|
|
mall_entry->type = MLXSW_SP_MALL_ACTION_TYPE_MIRROR;
|
2020-04-27 18:13:03 +03:00
|
|
|
mall_entry->mirror.to_dev = act->dev;
|
2021-03-29 13:09:44 +03:00
|
|
|
break;
|
|
|
|
|
case FLOW_ACTION_SAMPLE:
|
2020-04-27 18:13:01 +03:00
|
|
|
mall_entry->type = MLXSW_SP_MALL_ACTION_TYPE_SAMPLE;
|
2021-03-16 17:02:58 +02:00
|
|
|
mall_entry->sample.params.psample_group = act->sample.psample_group;
|
|
|
|
|
mall_entry->sample.params.truncate = act->sample.truncate;
|
|
|
|
|
mall_entry->sample.params.trunc_size = act->sample.trunc_size;
|
|
|
|
|
mall_entry->sample.params.rate = act->sample.rate;
|
2021-03-29 13:09:44 +03:00
|
|
|
break;
|
|
|
|
|
default:
|
2020-04-27 18:13:01 +03:00
|
|
|
err = -EOPNOTSUPP;
|
2020-04-27 18:13:06 +03:00
|
|
|
goto errout;
|
2020-04-27 18:13:01 +03:00
|
|
|
}
|
|
|
|
|
|
2020-04-27 18:13:08 +03:00
|
|
|
list_for_each_entry(binding, &block->binding_list, list) {
|
|
|
|
|
err = mlxsw_sp_mall_port_rule_add(binding->mlxsw_sp_port,
|
2021-03-16 17:02:54 +02:00
|
|
|
mall_entry, f->common.extack);
|
2020-04-27 18:13:08 +03:00
|
|
|
if (err)
|
|
|
|
|
goto rollback;
|
|
|
|
|
}
|
2020-04-27 18:13:01 +03:00
|
|
|
|
2020-04-27 18:13:08 +03:00
|
|
|
block->rule_count++;
|
|
|
|
|
if (mall_entry->ingress)
|
|
|
|
|
block->egress_blocker_rule_count++;
|
|
|
|
|
else
|
|
|
|
|
block->ingress_blocker_rule_count++;
|
2020-05-09 23:06:04 +03:00
|
|
|
list_add_tail(&mall_entry->list, &block->mall.list);
|
2020-05-09 23:06:05 +03:00
|
|
|
mlxsw_sp_mall_prio_update(block);
|
2020-04-27 18:13:01 +03:00
|
|
|
return 0;
|
|
|
|
|
|
2020-04-27 18:13:08 +03:00
|
|
|
rollback:
|
|
|
|
|
list_for_each_entry_continue_reverse(binding, &block->binding_list,
|
|
|
|
|
list)
|
|
|
|
|
mlxsw_sp_mall_port_rule_del(binding->mlxsw_sp_port, mall_entry);
|
2020-04-27 18:13:04 +03:00
|
|
|
errout:
|
2020-04-27 18:13:01 +03:00
|
|
|
kfree(mall_entry);
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
2020-04-27 18:13:08 +03:00
|
|
|
void mlxsw_sp_mall_destroy(struct mlxsw_sp_flow_block *block,
|
2020-04-27 18:13:01 +03:00
|
|
|
struct tc_cls_matchall_offload *f)
|
|
|
|
|
{
|
2020-04-27 18:13:08 +03:00
|
|
|
struct mlxsw_sp_flow_block_binding *binding;
|
2020-04-27 18:13:01 +03:00
|
|
|
struct mlxsw_sp_mall_entry *mall_entry;
|
|
|
|
|
|
2020-04-27 18:13:08 +03:00
|
|
|
mall_entry = mlxsw_sp_mall_entry_find(block, f->cookie);
|
2020-04-27 18:13:01 +03:00
|
|
|
if (!mall_entry) {
|
2020-04-27 18:13:08 +03:00
|
|
|
NL_SET_ERR_MSG(f->common.extack, "Entry not found");
|
2020-04-27 18:13:01 +03:00
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
2020-04-27 18:13:06 +03:00
|
|
|
list_del(&mall_entry->list);
|
2020-04-27 18:13:08 +03:00
|
|
|
if (mall_entry->ingress)
|
|
|
|
|
block->egress_blocker_rule_count--;
|
|
|
|
|
else
|
|
|
|
|
block->ingress_blocker_rule_count--;
|
|
|
|
|
block->rule_count--;
|
|
|
|
|
list_for_each_entry(binding, &block->binding_list, list)
|
|
|
|
|
mlxsw_sp_mall_port_rule_del(binding->mlxsw_sp_port, mall_entry);
|
2020-04-27 18:13:07 +03:00
|
|
|
kfree_rcu(mall_entry, rcu); /* sample RX packets may be in-flight */
|
2020-05-09 23:06:05 +03:00
|
|
|
mlxsw_sp_mall_prio_update(block);
|
2020-04-27 18:13:01 +03:00
|
|
|
}
|
2020-04-27 18:13:08 +03:00
|
|
|
|
|
|
|
|
int mlxsw_sp_mall_port_bind(struct mlxsw_sp_flow_block *block,
|
2021-03-16 17:02:54 +02:00
|
|
|
struct mlxsw_sp_port *mlxsw_sp_port,
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2020-04-27 18:13:08 +03:00
|
|
|
{
|
|
|
|
|
struct mlxsw_sp_mall_entry *mall_entry;
|
|
|
|
|
int err;
|
|
|
|
|
|
2020-05-09 23:06:04 +03:00
|
|
|
list_for_each_entry(mall_entry, &block->mall.list, list) {
|
2021-03-16 17:02:54 +02:00
|
|
|
err = mlxsw_sp_mall_port_rule_add(mlxsw_sp_port, mall_entry,
|
|
|
|
|
extack);
|
2020-04-27 18:13:08 +03:00
|
|
|
if (err)
|
|
|
|
|
goto rollback;
|
|
|
|
|
}
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
rollback:
|
2020-05-09 23:06:04 +03:00
|
|
|
list_for_each_entry_continue_reverse(mall_entry, &block->mall.list,
|
2020-04-27 18:13:08 +03:00
|
|
|
list)
|
|
|
|
|
mlxsw_sp_mall_port_rule_del(mlxsw_sp_port, mall_entry);
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void mlxsw_sp_mall_port_unbind(struct mlxsw_sp_flow_block *block,
|
|
|
|
|
struct mlxsw_sp_port *mlxsw_sp_port)
|
|
|
|
|
{
|
|
|
|
|
struct mlxsw_sp_mall_entry *mall_entry;
|
|
|
|
|
|
2020-05-09 23:06:04 +03:00
|
|
|
list_for_each_entry(mall_entry, &block->mall.list, list)
|
2020-04-27 18:13:08 +03:00
|
|
|
mlxsw_sp_mall_port_rule_del(mlxsw_sp_port, mall_entry);
|
|
|
|
|
}
|
2020-05-09 23:06:05 +03:00
|
|
|
|
|
|
|
|
int mlxsw_sp_mall_prio_get(struct mlxsw_sp_flow_block *block, u32 chain_index,
|
|
|
|
|
unsigned int *p_min_prio, unsigned int *p_max_prio)
|
|
|
|
|
{
|
|
|
|
|
if (chain_index || list_empty(&block->mall.list))
|
|
|
|
|
/* In case there are no matchall rules, the caller
|
|
|
|
|
* receives -ENOENT to indicate there is no need
|
|
|
|
|
* to check the priorities.
|
|
|
|
|
*/
|
|
|
|
|
return -ENOENT;
|
|
|
|
|
*p_min_prio = block->mall.min_prio;
|
|
|
|
|
*p_max_prio = block->mall.max_prio;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
2021-03-11 14:24:14 +02:00
|
|
|
|
|
|
|
|
static int mlxsw_sp1_mall_sample_add(struct mlxsw_sp *mlxsw_sp,
|
|
|
|
|
struct mlxsw_sp_port *mlxsw_sp_port,
|
2021-03-16 17:02:56 +02:00
|
|
|
struct mlxsw_sp_mall_entry *mall_entry,
|
2021-03-16 17:02:55 +02:00
|
|
|
struct netlink_ext_ack *extack)
|
2021-03-11 14:24:14 +02:00
|
|
|
{
|
2021-03-16 17:02:58 +02:00
|
|
|
u32 rate = mall_entry->sample.params.rate;
|
2021-03-16 17:02:56 +02:00
|
|
|
|
|
|
|
|
if (!mall_entry->ingress) {
|
2021-03-16 17:02:55 +02:00
|
|
|
NL_SET_ERR_MSG(extack, "Sampling is not supported on egress");
|
|
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (rate > MLXSW_REG_MPSC_RATE_MAX) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Unsupported sampling rate");
|
|
|
|
|
return -EOPNOTSUPP;
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-11 14:24:14 +02:00
|
|
|
return mlxsw_sp_mall_port_sample_set(mlxsw_sp_port, true, rate);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void mlxsw_sp1_mall_sample_del(struct mlxsw_sp *mlxsw_sp,
|
2021-03-16 17:02:56 +02:00
|
|
|
struct mlxsw_sp_port *mlxsw_sp_port,
|
|
|
|
|
struct mlxsw_sp_mall_entry *mall_entry)
|
2021-03-11 14:24:14 +02:00
|
|
|
{
|
|
|
|
|
mlxsw_sp_mall_port_sample_set(mlxsw_sp_port, false, 1);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const struct mlxsw_sp_mall_ops mlxsw_sp1_mall_ops = {
|
|
|
|
|
.sample_add = mlxsw_sp1_mall_sample_add,
|
|
|
|
|
.sample_del = mlxsw_sp1_mall_sample_del,
|
|
|
|
|
};
|
|
|
|
|
|
2021-03-11 14:24:16 +02:00
|
|
|
static int mlxsw_sp2_mall_sample_add(struct mlxsw_sp *mlxsw_sp,
|
|
|
|
|
struct mlxsw_sp_port *mlxsw_sp_port,
|
2021-03-16 17:02:56 +02:00
|
|
|
struct mlxsw_sp_mall_entry *mall_entry,
|
2021-03-16 17:02:55 +02:00
|
|
|
struct netlink_ext_ack *extack)
|
2021-03-11 14:24:16 +02:00
|
|
|
{
|
|
|
|
|
struct mlxsw_sp_span_trigger_parms trigger_parms = {};
|
|
|
|
|
struct mlxsw_sp_span_agent_parms agent_parms = {
|
|
|
|
|
.to_dev = NULL, /* Mirror to CPU. */
|
|
|
|
|
.session_id = MLXSW_SP_SPAN_SESSION_ID_SAMPLING,
|
|
|
|
|
};
|
2021-03-16 17:02:58 +02:00
|
|
|
u32 rate = mall_entry->sample.params.rate;
|
mlxsw: spectrum_matchall: Add support for egress sampling
Allow user space to install a matchall classifier with sample action on
egress. This is only supported on Spectrum-2 onwards, so Spectrum-1 will
continue to return an error.
Programming the hardware to sample on egress is identical to ingress
sampling with the sole change of using a different sampling trigger.
Upon receiving a sampled packet, the sampling trigger (ingress vs.
egress) will be encoded in the mirroring reason in the Completion Queue
Element (CQE). The mirroring reason is used to lookup the sampling
parameters (e.g., psample group) which are passed to the psample module.
Note that locally generated packets that are sampled are simply
consumed. This is done for several reasons.
First, such packets do not have an ingress netdev given that their Rx
local port is the CPU port. This breaks several basic assumptions.
Second, sampling using the same interface (tc), but with flower
classifier will not result in locally generated packets being sampled
given that such packets are not subject to the policy engine.
Third, realistically, this is not a big deal given that the vast
majority of the packets being transmitted through the port are not
locally generated packets.
Fourth, if such packets do need to be sampled, they can be sampled with
a 'skip_hw' filter and reported to the same sampling group as the data
path packets. The software sampling rate can also be adjusted to fit the
rate of the locally generated packets which is much lower than the rate
of the data path traffic.
Signed-off-by: Ido Schimmel <idosch@nvidia.com>
Reviewed-by: Jiri Pirko <jiri@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2021-03-16 17:02:59 +02:00
|
|
|
enum mlxsw_sp_span_trigger span_trigger;
|
2021-03-11 14:24:16 +02:00
|
|
|
int err;
|
|
|
|
|
|
2021-03-16 17:02:58 +02:00
|
|
|
err = mlxsw_sp_span_agent_get(mlxsw_sp, &mall_entry->sample.span_id,
|
|
|
|
|
&agent_parms);
|
2021-03-16 17:02:54 +02:00
|
|
|
if (err) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Failed to get SPAN agent");
|
2021-03-11 14:24:16 +02:00
|
|
|
return err;
|
2021-03-16 17:02:54 +02:00
|
|
|
}
|
2021-03-11 14:24:16 +02:00
|
|
|
|
mlxsw: spectrum_matchall: Add support for egress sampling
Allow user space to install a matchall classifier with sample action on
egress. This is only supported on Spectrum-2 onwards, so Spectrum-1 will
continue to return an error.
Programming the hardware to sample on egress is identical to ingress
sampling with the sole change of using a different sampling trigger.
Upon receiving a sampled packet, the sampling trigger (ingress vs.
egress) will be encoded in the mirroring reason in the Completion Queue
Element (CQE). The mirroring reason is used to lookup the sampling
parameters (e.g., psample group) which are passed to the psample module.
Note that locally generated packets that are sampled are simply
consumed. This is done for several reasons.
First, such packets do not have an ingress netdev given that their Rx
local port is the CPU port. This breaks several basic assumptions.
Second, sampling using the same interface (tc), but with flower
classifier will not result in locally generated packets being sampled
given that such packets are not subject to the policy engine.
Third, realistically, this is not a big deal given that the vast
majority of the packets being transmitted through the port are not
locally generated packets.
Fourth, if such packets do need to be sampled, they can be sampled with
a 'skip_hw' filter and reported to the same sampling group as the data
path packets. The software sampling rate can also be adjusted to fit the
rate of the locally generated packets which is much lower than the rate
of the data path traffic.
Signed-off-by: Ido Schimmel <idosch@nvidia.com>
Reviewed-by: Jiri Pirko <jiri@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2021-03-16 17:02:59 +02:00
|
|
|
err = mlxsw_sp_span_analyzed_port_get(mlxsw_sp_port,
|
|
|
|
|
mall_entry->ingress);
|
2021-03-16 17:02:54 +02:00
|
|
|
if (err) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Failed to get analyzed port");
|
2021-03-11 14:24:16 +02:00
|
|
|
goto err_analyzed_port_get;
|
2021-03-16 17:02:54 +02:00
|
|
|
}
|
2021-03-11 14:24:16 +02:00
|
|
|
|
mlxsw: spectrum_matchall: Add support for egress sampling
Allow user space to install a matchall classifier with sample action on
egress. This is only supported on Spectrum-2 onwards, so Spectrum-1 will
continue to return an error.
Programming the hardware to sample on egress is identical to ingress
sampling with the sole change of using a different sampling trigger.
Upon receiving a sampled packet, the sampling trigger (ingress vs.
egress) will be encoded in the mirroring reason in the Completion Queue
Element (CQE). The mirroring reason is used to lookup the sampling
parameters (e.g., psample group) which are passed to the psample module.
Note that locally generated packets that are sampled are simply
consumed. This is done for several reasons.
First, such packets do not have an ingress netdev given that their Rx
local port is the CPU port. This breaks several basic assumptions.
Second, sampling using the same interface (tc), but with flower
classifier will not result in locally generated packets being sampled
given that such packets are not subject to the policy engine.
Third, realistically, this is not a big deal given that the vast
majority of the packets being transmitted through the port are not
locally generated packets.
Fourth, if such packets do need to be sampled, they can be sampled with
a 'skip_hw' filter and reported to the same sampling group as the data
path packets. The software sampling rate can also be adjusted to fit the
rate of the locally generated packets which is much lower than the rate
of the data path traffic.
Signed-off-by: Ido Schimmel <idosch@nvidia.com>
Reviewed-by: Jiri Pirko <jiri@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2021-03-16 17:02:59 +02:00
|
|
|
span_trigger = mall_entry->ingress ? MLXSW_SP_SPAN_TRIGGER_INGRESS :
|
|
|
|
|
MLXSW_SP_SPAN_TRIGGER_EGRESS;
|
2021-03-16 17:02:58 +02:00
|
|
|
trigger_parms.span_id = mall_entry->sample.span_id;
|
2021-03-11 14:24:16 +02:00
|
|
|
trigger_parms.probability_rate = rate;
|
mlxsw: spectrum_matchall: Add support for egress sampling
Allow user space to install a matchall classifier with sample action on
egress. This is only supported on Spectrum-2 onwards, so Spectrum-1 will
continue to return an error.
Programming the hardware to sample on egress is identical to ingress
sampling with the sole change of using a different sampling trigger.
Upon receiving a sampled packet, the sampling trigger (ingress vs.
egress) will be encoded in the mirroring reason in the Completion Queue
Element (CQE). The mirroring reason is used to lookup the sampling
parameters (e.g., psample group) which are passed to the psample module.
Note that locally generated packets that are sampled are simply
consumed. This is done for several reasons.
First, such packets do not have an ingress netdev given that their Rx
local port is the CPU port. This breaks several basic assumptions.
Second, sampling using the same interface (tc), but with flower
classifier will not result in locally generated packets being sampled
given that such packets are not subject to the policy engine.
Third, realistically, this is not a big deal given that the vast
majority of the packets being transmitted through the port are not
locally generated packets.
Fourth, if such packets do need to be sampled, they can be sampled with
a 'skip_hw' filter and reported to the same sampling group as the data
path packets. The software sampling rate can also be adjusted to fit the
rate of the locally generated packets which is much lower than the rate
of the data path traffic.
Signed-off-by: Ido Schimmel <idosch@nvidia.com>
Reviewed-by: Jiri Pirko <jiri@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2021-03-16 17:02:59 +02:00
|
|
|
err = mlxsw_sp_span_agent_bind(mlxsw_sp, span_trigger, mlxsw_sp_port,
|
|
|
|
|
&trigger_parms);
|
2021-03-16 17:02:54 +02:00
|
|
|
if (err) {
|
|
|
|
|
NL_SET_ERR_MSG(extack, "Failed to bind SPAN agent");
|
2021-03-11 14:24:16 +02:00
|
|
|
goto err_agent_bind;
|
2021-03-16 17:02:54 +02:00
|
|
|
}
|
2021-03-11 14:24:16 +02:00
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
err_agent_bind:
|
mlxsw: spectrum_matchall: Add support for egress sampling
Allow user space to install a matchall classifier with sample action on
egress. This is only supported on Spectrum-2 onwards, so Spectrum-1 will
continue to return an error.
Programming the hardware to sample on egress is identical to ingress
sampling with the sole change of using a different sampling trigger.
Upon receiving a sampled packet, the sampling trigger (ingress vs.
egress) will be encoded in the mirroring reason in the Completion Queue
Element (CQE). The mirroring reason is used to lookup the sampling
parameters (e.g., psample group) which are passed to the psample module.
Note that locally generated packets that are sampled are simply
consumed. This is done for several reasons.
First, such packets do not have an ingress netdev given that their Rx
local port is the CPU port. This breaks several basic assumptions.
Second, sampling using the same interface (tc), but with flower
classifier will not result in locally generated packets being sampled
given that such packets are not subject to the policy engine.
Third, realistically, this is not a big deal given that the vast
majority of the packets being transmitted through the port are not
locally generated packets.
Fourth, if such packets do need to be sampled, they can be sampled with
a 'skip_hw' filter and reported to the same sampling group as the data
path packets. The software sampling rate can also be adjusted to fit the
rate of the locally generated packets which is much lower than the rate
of the data path traffic.
Signed-off-by: Ido Schimmel <idosch@nvidia.com>
Reviewed-by: Jiri Pirko <jiri@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2021-03-16 17:02:59 +02:00
|
|
|
mlxsw_sp_span_analyzed_port_put(mlxsw_sp_port, mall_entry->ingress);
|
2021-03-11 14:24:16 +02:00
|
|
|
err_analyzed_port_get:
|
2021-03-16 17:02:58 +02:00
|
|
|
mlxsw_sp_span_agent_put(mlxsw_sp, mall_entry->sample.span_id);
|
2021-03-11 14:24:16 +02:00
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static void mlxsw_sp2_mall_sample_del(struct mlxsw_sp *mlxsw_sp,
|
2021-03-16 17:02:56 +02:00
|
|
|
struct mlxsw_sp_port *mlxsw_sp_port,
|
|
|
|
|
struct mlxsw_sp_mall_entry *mall_entry)
|
2021-03-11 14:24:16 +02:00
|
|
|
{
|
|
|
|
|
struct mlxsw_sp_span_trigger_parms trigger_parms = {};
|
mlxsw: spectrum_matchall: Add support for egress sampling
Allow user space to install a matchall classifier with sample action on
egress. This is only supported on Spectrum-2 onwards, so Spectrum-1 will
continue to return an error.
Programming the hardware to sample on egress is identical to ingress
sampling with the sole change of using a different sampling trigger.
Upon receiving a sampled packet, the sampling trigger (ingress vs.
egress) will be encoded in the mirroring reason in the Completion Queue
Element (CQE). The mirroring reason is used to lookup the sampling
parameters (e.g., psample group) which are passed to the psample module.
Note that locally generated packets that are sampled are simply
consumed. This is done for several reasons.
First, such packets do not have an ingress netdev given that their Rx
local port is the CPU port. This breaks several basic assumptions.
Second, sampling using the same interface (tc), but with flower
classifier will not result in locally generated packets being sampled
given that such packets are not subject to the policy engine.
Third, realistically, this is not a big deal given that the vast
majority of the packets being transmitted through the port are not
locally generated packets.
Fourth, if such packets do need to be sampled, they can be sampled with
a 'skip_hw' filter and reported to the same sampling group as the data
path packets. The software sampling rate can also be adjusted to fit the
rate of the locally generated packets which is much lower than the rate
of the data path traffic.
Signed-off-by: Ido Schimmel <idosch@nvidia.com>
Reviewed-by: Jiri Pirko <jiri@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2021-03-16 17:02:59 +02:00
|
|
|
enum mlxsw_sp_span_trigger span_trigger;
|
2021-03-11 14:24:16 +02:00
|
|
|
|
mlxsw: spectrum_matchall: Add support for egress sampling
Allow user space to install a matchall classifier with sample action on
egress. This is only supported on Spectrum-2 onwards, so Spectrum-1 will
continue to return an error.
Programming the hardware to sample on egress is identical to ingress
sampling with the sole change of using a different sampling trigger.
Upon receiving a sampled packet, the sampling trigger (ingress vs.
egress) will be encoded in the mirroring reason in the Completion Queue
Element (CQE). The mirroring reason is used to lookup the sampling
parameters (e.g., psample group) which are passed to the psample module.
Note that locally generated packets that are sampled are simply
consumed. This is done for several reasons.
First, such packets do not have an ingress netdev given that their Rx
local port is the CPU port. This breaks several basic assumptions.
Second, sampling using the same interface (tc), but with flower
classifier will not result in locally generated packets being sampled
given that such packets are not subject to the policy engine.
Third, realistically, this is not a big deal given that the vast
majority of the packets being transmitted through the port are not
locally generated packets.
Fourth, if such packets do need to be sampled, they can be sampled with
a 'skip_hw' filter and reported to the same sampling group as the data
path packets. The software sampling rate can also be adjusted to fit the
rate of the locally generated packets which is much lower than the rate
of the data path traffic.
Signed-off-by: Ido Schimmel <idosch@nvidia.com>
Reviewed-by: Jiri Pirko <jiri@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2021-03-16 17:02:59 +02:00
|
|
|
span_trigger = mall_entry->ingress ? MLXSW_SP_SPAN_TRIGGER_INGRESS :
|
|
|
|
|
MLXSW_SP_SPAN_TRIGGER_EGRESS;
|
2021-03-16 17:02:58 +02:00
|
|
|
trigger_parms.span_id = mall_entry->sample.span_id;
|
mlxsw: spectrum_matchall: Add support for egress sampling
Allow user space to install a matchall classifier with sample action on
egress. This is only supported on Spectrum-2 onwards, so Spectrum-1 will
continue to return an error.
Programming the hardware to sample on egress is identical to ingress
sampling with the sole change of using a different sampling trigger.
Upon receiving a sampled packet, the sampling trigger (ingress vs.
egress) will be encoded in the mirroring reason in the Completion Queue
Element (CQE). The mirroring reason is used to lookup the sampling
parameters (e.g., psample group) which are passed to the psample module.
Note that locally generated packets that are sampled are simply
consumed. This is done for several reasons.
First, such packets do not have an ingress netdev given that their Rx
local port is the CPU port. This breaks several basic assumptions.
Second, sampling using the same interface (tc), but with flower
classifier will not result in locally generated packets being sampled
given that such packets are not subject to the policy engine.
Third, realistically, this is not a big deal given that the vast
majority of the packets being transmitted through the port are not
locally generated packets.
Fourth, if such packets do need to be sampled, they can be sampled with
a 'skip_hw' filter and reported to the same sampling group as the data
path packets. The software sampling rate can also be adjusted to fit the
rate of the locally generated packets which is much lower than the rate
of the data path traffic.
Signed-off-by: Ido Schimmel <idosch@nvidia.com>
Reviewed-by: Jiri Pirko <jiri@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2021-03-16 17:02:59 +02:00
|
|
|
mlxsw_sp_span_agent_unbind(mlxsw_sp, span_trigger, mlxsw_sp_port,
|
|
|
|
|
&trigger_parms);
|
|
|
|
|
mlxsw_sp_span_analyzed_port_put(mlxsw_sp_port, mall_entry->ingress);
|
2021-03-16 17:02:58 +02:00
|
|
|
mlxsw_sp_span_agent_put(mlxsw_sp, mall_entry->sample.span_id);
|
2021-03-11 14:24:16 +02:00
|
|
|
}
|
|
|
|
|
|
2021-03-11 14:24:14 +02:00
|
|
|
const struct mlxsw_sp_mall_ops mlxsw_sp2_mall_ops = {
|
2021-03-11 14:24:16 +02:00
|
|
|
.sample_add = mlxsw_sp2_mall_sample_add,
|
|
|
|
|
.sample_del = mlxsw_sp2_mall_sample_del,
|
2021-03-11 14:24:14 +02:00
|
|
|
};
|
