actions: convert tm from vec to proper kernel struct tcf.

Author: Alexander Chernikov

src/tc/actions/action.rs

@@ -548,3 +548,46 @@ impl From<TcActionType> for i32 {
         }
     }
 }
+
+pub const TC_TCF_BUF_LEN: usize = 32;
+
+#[derive(Debug, PartialEq, Eq, Clone, Default)]
+pub struct Tcf {
+    pub install: u64,
+    pub lastuse: u64,
+    pub expires: u64,
+    pub firstuse: u64,
+}
+
+// kernel struct `tcf_t`
+buffer!(TcfBuffer(TC_TCF_BUF_LEN) {
+    install: (u64, 0..8),
+    lastuse: (u64, 8..16),
+    expires: (u64, 16..24),
+    firstuse: (u64, 24..32),
+});
+
+impl<'a, T: AsRef<[u8]> + ?Sized> Parseable<TcfBuffer<&'a T>> for Tcf {
+    fn parse(buf: &TcfBuffer<&T>) -> Result<Self, DecodeError> {
+        Ok(Self {
+            install: buf.install(),
+            lastuse: buf.lastuse(),
+            expires: buf.expires(),
+            firstuse: buf.firstuse(),
+        })
+    }
+}
+
+impl Emitable for Tcf {
+    fn buffer_len(&self) -> usize {
+        TC_TCF_BUF_LEN
+    }
+
+    fn emit(&self, buffer: &mut [u8]) {
+        let mut packet = TcfBuffer::new(buffer);
+        packet.set_install(self.install);
+        packet.set_lastuse(self.lastuse);
+        packet.set_expires(self.expires);
+        packet.set_firstuse(self.firstuse);
+    }
+}

src/tc/actions/mirror.rs

@@ -12,7 +12,9 @@ use netlink_packet_utils::{
     DecodeError,
 };
 
-use super::{TcActionGeneric, TcActionGenericBuffer};
+use super::{
+    TcActionGeneric, TcActionGenericBuffer, Tcf, TcfBuffer, TC_TCF_BUF_LEN,
+};
 
 /// Traffic control action used to mirror or redirect packets.
 #[derive(Debug, PartialEq, Eq, Clone)]
@@ -30,8 +32,8 @@ const TCA_MIRRED_PARMS: u16 = 2;
 #[derive(Debug, PartialEq, Eq, Clone)]
 #[non_exhaustive]
 pub enum TcActionMirrorOption {
-    /// TODO: document this after we make it something better than `Vec<u8>`
-    Tm(Vec<u8>),
+    /// Rule installation and usage time
+    Tm(Tcf),
     /// Parameters for the mirred action.
     Parms(TcMirror),
     /// Other attributes unknown at the time of writing.
@@ -41,15 +43,15 @@ pub enum TcActionMirrorOption {
 impl Nla for TcActionMirrorOption {
     fn value_len(&self) -> usize {
         match self {
-            Self::Tm(bytes) => bytes.len(),
+            Self::Tm(_) => TC_TCF_BUF_LEN,
             Self::Parms(_) => TC_MIRRED_BUF_LEN,
             Self::Other(attr) => attr.value_len(),
         }
     }
 
     fn emit_value(&self, buffer: &mut [u8]) {
         match self {
-            Self::Tm(bytes) => buffer.copy_from_slice(bytes.as_slice()),
+            Self::Tm(p) => p.emit(buffer),
             Self::Parms(p) => p.emit(buffer),
             Self::Other(attr) => attr.emit_value(buffer),
         }
@@ -69,7 +71,9 @@ impl<'a, T: AsRef<[u8]> + ?Sized> Parseable<NlaBuffer<&'a T>>
     fn parse(buf: &NlaBuffer<&'a T>) -> Result<Self, DecodeError> {
         let payload = buf.value();
         Ok(match buf.kind() {
-            TCA_MIRRED_TM => Self::Tm(payload.to_vec()),
+            TCA_MIRRED_TM => {
+                Self::Tm(Tcf::parse(&TcfBuffer::new_checked(payload)?)?)
+            }
             TCA_MIRRED_PARMS => Self::Parms(TcMirror::parse(
                 &TcMirrorBuffer::new_checked(payload)?,
             )?),

src/tc/actions/mod.rs

@@ -4,7 +4,7 @@ pub use nat_flag::TcNatFlags;
 
 pub use self::action::{
     TcAction, TcActionAttribute, TcActionGeneric, TcActionGenericBuffer,
-    TcActionOption, TcActionType,
+    TcActionOption, TcActionType, Tcf, TcfBuffer, TC_TCF_BUF_LEN,
 };
 pub use self::header::{TcActionMessageBuffer, TcActionMessageHeader};
 pub use self::message::{

src/tc/actions/nat.rs

@@ -11,7 +11,10 @@ use netlink_packet_utils::{
     DecodeError,
 };
 
-use super::{nat_flag::TcNatFlags, TcActionGeneric, TcActionGenericBuffer};
+use super::{
+    nat_flag::TcNatFlags, TcActionGeneric, TcActionGenericBuffer, Tcf,
+    TcfBuffer, TC_TCF_BUF_LEN,
+};
 
 const TCA_NAT_PARMS: u16 = 1;
 const TCA_NAT_TM: u16 = 2;
@@ -29,8 +32,8 @@ impl TcActionNat {
 #[derive(Debug, PartialEq, Eq, Clone)]
 #[non_exhaustive]
 pub enum TcActionNatOption {
-    /// TODO: document this after we make it something better than `Vec<u8>`
-    Tm(Vec<u8>),
+    /// Rule installation and usage time
+    Tm(Tcf),
     /// Parameters for the nat action.
     Parms(TcNat),
     /// Other attributes unknown at the time of writing.
@@ -40,15 +43,15 @@ pub enum TcActionNatOption {
 impl Nla for TcActionNatOption {
     fn value_len(&self) -> usize {
         match self {
-            Self::Tm(bytes) => bytes.len(),
+            Self::Tm(_) => TC_TCF_BUF_LEN,
             Self::Parms(v) => v.buffer_len(),
             Self::Other(attr) => attr.value_len(),
         }
     }
 
     fn emit_value(&self, buffer: &mut [u8]) {
         match self {
-            Self::Tm(bytes) => buffer.copy_from_slice(bytes.as_slice()),
+            Self::Tm(p) => p.emit(buffer),
             Self::Parms(p) => p.emit(buffer),
             Self::Other(attr) => attr.emit_value(buffer),
         }
@@ -68,7 +71,9 @@ impl<'a, T: AsRef<[u8]> + ?Sized> Parseable<NlaBuffer<&'a T>>
     fn parse(buf: &NlaBuffer<&'a T>) -> Result<Self, DecodeError> {
         let payload = buf.value();
         Ok(match buf.kind() {
-            TCA_NAT_TM => Self::Tm(payload.to_vec()),
+            TCA_NAT_TM => {
+                Self::Tm(Tcf::parse(&TcfBuffer::new_checked(payload)?)?)
+            }
             TCA_NAT_PARMS => {
                 Self::Parms(TcNat::parse(&TcNatBuffer::new_checked(payload)?)?)
             }

src/tc/actions/tests/message.rs

@@ -33,7 +33,7 @@ mod mirror {
     use crate::tc::TcMirrorActionType::{EgressRedir, IngressMirror};
     use crate::tc::TcStats2::{Basic, BasicHw, Queue};
     use crate::tc::{
-        TcAction, TcActionGeneric, TcMirror, TcStatsBasic, TcStatsQueue,
+        TcAction, TcActionGeneric, TcMirror, TcStatsBasic, TcStatsQueue, Tcf,
     };
     use crate::AddressFamily;
 
@@ -223,11 +223,12 @@ mod mirror {
                                     eaction: EgressRedir,
                                     ifindex: 1,
                                 })),
-                                Mirror(Tm(vec![
-                                    0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-                                    0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-                                    0, 0, 0, 0,
-                                ])),
+                                Mirror(Tm(Tcf {
+                                    install: 0,
+                                    lastuse: 0,
+                                    expires: 0,
+                                    firstuse: 0,
+                                })),
                             ]),
                         ],
                     },
@@ -269,11 +270,12 @@ mod mirror {
                                     eaction: IngressMirror,
                                     ifindex: 1,
                                 })),
-                                Mirror(Tm(vec![
-                                    0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-                                    0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-                                    0, 0, 0, 0,
-                                ])),
+                                Mirror(Tm(Tcf {
+                                    install: 0,
+                                    lastuse: 0,
+                                    expires: 0,
+                                    firstuse: 0,
+                                })),
                             ]),
                         ],
                     },

src/tc/actions/tests/mirror.rs

@@ -4,8 +4,10 @@ use netlink_packet_utils::nla::NlaBuffer;
 use netlink_packet_utils::{Emitable, Parseable};
 
 use crate::tc::{
-    TcActionGeneric, TcActionGenericBuffer, TcActionMirrorOption, TcActionType,
-    TcMirror, TcMirrorActionType, TcMirrorBuffer,
+    TcAction, TcActionAttribute, TcActionGeneric, TcActionGenericBuffer,
+    TcActionMirrorOption, TcActionOption, TcActionType, TcMirror,
+    TcMirrorActionType, TcMirrorBuffer, TcStats2, TcStatsBasic, TcStatsQueue,
+    Tcf,
 };
 
 #[test]
@@ -64,22 +66,76 @@ fn tc_mirror_example_parse_back() {
     assert_eq!(orig, parsed);
 }
 
+//      > act actions add action mirred egress redirect dev veth1
+//      > tools/nl_dump.py dump_actions mirred
+//      Note: 5.15 and 6.8 kernels do NOT set NLA_F_NESTED for TCA_ACT_OPTIONS
+//
 #[test]
-fn tc_mirror_tm_default_parse_back() {
-    let mirror_option = TcActionMirrorOption::Tm(vec![]);
-    let mut buffer = vec![0; mirror_option.buffer_len()];
-    mirror_option.emit(&mut buffer);
-    let nla_buf = NlaBuffer::new_checked(&buffer).unwrap();
-    let parsed = TcActionMirrorOption::parse(&nla_buf).unwrap();
-    assert_eq!(mirror_option, parsed);
-}
+fn get_mirred_eggress_redirect_action() {
+    let raw = vec![
+        0x9C, 0x00, 0x00, 0x00, 0x0B, 0x00, 0x01, 0x00, 0x6D, 0x69, 0x72, 0x72,
+        0x65, 0x64, 0x00, 0x00, 0x44, 0x00, 0x04, 0x00, 0x14, 0x00, 0x01, 0x00,
+        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+        0x00, 0x00, 0x00, 0x00, 0x14, 0x00, 0x07, 0x00, 0x00, 0x00, 0x00, 0x00,
+        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+        0x18, 0x00, 0x03, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+        0x48, 0x00, 0x02, 0x80, 0x20, 0x00, 0x02, 0x00, 0x01, 0x00, 0x00, 0x00,
+        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0x00, 0x00, 0x00,
+        0x02, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x03, 0x00, 0x00, 0x00,
+        0x24, 0x00, 0x01, 0x00, 0x68, 0x3D, 0xB6, 0x02, 0x00, 0x00, 0x00, 0x00,
+        0x68, 0x3D, 0xB6, 0x02, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+        0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
+    ];
 
-#[test]
-fn tc_mirror_tm_example_parse_back() {
-    let mirror_option = TcActionMirrorOption::Tm(vec![1, 2, 3]);
-    let mut buffer = vec![0; mirror_option.buffer_len()];
-    mirror_option.emit(&mut buffer);
-    let nla_buf = NlaBuffer::new_checked(&buffer).unwrap();
-    let parsed = TcActionMirrorOption::parse(&nla_buf).unwrap();
-    assert_eq!(mirror_option, parsed);
+    let expected = TcAction {
+        tab: 0,
+        attributes: vec![
+            TcActionAttribute::Kind("mirred".to_string()),
+            TcActionAttribute::Stats(vec![
+                TcStats2::Basic(TcStatsBasic {
+                    bytes: 0,
+                    packets: 0,
+                }),
+                TcStats2::BasicHw(TcStatsBasic {
+                    bytes: 0,
+                    packets: 0,
+                }),
+                TcStats2::Queue(TcStatsQueue {
+                    qlen: 0,
+                    backlog: 0,
+                    drops: 0,
+                    requeues: 0,
+                    overlimits: 0,
+                }),
+            ]),
+            TcActionAttribute::Options(vec![
+                TcActionOption::Mirror(TcActionMirrorOption::Parms(TcMirror {
+                    generic: TcActionGeneric {
+                        index: 1,
+                        capab: 0,
+                        action: TcActionType::Ok,
+                        refcnt: 2,
+                        bindcnt: 2,
+                    },
+                    eaction: TcMirrorActionType::EgressRedir,
+                    ifindex: 3,
+                })),
+                TcActionOption::Mirror(TcActionMirrorOption::Tm(Tcf {
+                    install: 45497704,
+                    lastuse: 45497704,
+                    expires: 0,
+                    firstuse: 0,
+                })),
+            ]),
+        ],
+    };
+
+    assert_eq!(expected, TcAction::parse(&NlaBuffer::new(&raw)).unwrap());
+
+    let mut buf = vec![0; expected.buffer_len()];
+
+    expected.emit(&mut buf);
+
+    assert_eq!(buf, raw);
 }

src/tc/actions/tests/nat.rs

@@ -14,7 +14,7 @@ use crate::tc::TcActionOption::Nat;
 use crate::tc::TcStats2::{Basic, BasicHw, Queue};
 use crate::tc::{
     TcAction, TcActionGeneric, TcActionNatOption, TcActionType, TcNat,
-    TcNatFlags, TcStatsBasic, TcStatsQueue,
+    TcNatFlags, TcStatsBasic, TcStatsQueue, Tcf,
 };
 use crate::AddressFamily;
 
@@ -248,39 +248,6 @@ fn tc_action_nat_option_emit_uses_whole_buffer() {
     }
 }
 
-fn tc_action_nat_option_tm_examples() -> [TcActionNatOption; 4] {
-    [
-        Tm(vec![]),
-        Tm(vec![1]),
-        Tm(vec![1, 2, 3, 4]),
-        Tm(vec![99; 10]),
-    ]
-}
-
-#[test]
-fn tc_action_nat_option_parse_back_example_tm() {
-    for example in &tc_action_nat_option_tm_examples() {
-        let mut buffer = vec![0; example.buffer_len()];
-        example.emit(&mut buffer);
-        let parsed = TcActionNatOption::parse(
-            &NlaBuffer::new_checked(buffer.as_slice()).unwrap(),
-        )
-        .unwrap();
-        assert_eq!(example, &parsed);
-    }
-}
-
-#[test]
-fn tc_action_nat_option_emit_tm_uses_whole_buffer() {
-    for example in &tc_action_nat_option_tm_examples() {
-        let mut buffer1 = vec![0x00; example.buffer_len()];
-        let mut buffer2 = vec![0xff; example.buffer_len()];
-        example.emit(&mut buffer1);
-        example.emit(&mut buffer2);
-        assert_eq!(buffer1, buffer2);
-    }
-}
-
 /// Setup:
 ///
 /// ```bash
@@ -357,10 +324,12 @@ fn test_get_filter_nat() {
                         mask: Ipv4Addr::BROADCAST,
                         flags: TcNatFlags::empty(),
                     })),
-                    Nat(Tm(vec![
-                        0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-                        0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
-                    ])),
+                    Nat(Tm(Tcf {
+                        install: 0,
+                        lastuse: 0,
+                        expires: 0,
+                        firstuse: 0,
+                    })),
                 ]),
             ],
         }])],

src/tc/mod.rs

@@ -15,7 +15,7 @@ pub use self::actions::{
     TcActionMessageFlags, TcActionMessageFlagsWithSelector, TcActionMirror,
     TcActionMirrorOption, TcActionNat, TcActionNatOption, TcActionOption,
     TcActionType, TcMirror, TcMirrorActionType, TcMirrorBuffer, TcNat,
-    TcNatBuffer, TcNatFlags,
+    TcNatBuffer, TcNatFlags, Tcf,
 };
 pub use self::attribute::TcAttribute;
 pub use self::filters::{