]> git.ipfire.org Git - thirdparty/kernel/stable.git/blame_incremental - net/bridge/br_multicast.c
projects / thirdparty / kernel / stable.git / blame_incremental
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (non-incremental) | history | HEAD
openvswitch: Retrieve tunnel metadata when receiving from vport-netdev
[thirdparty/kernel/stable.git] / net / bridge / br_multicast.c
... / ...
CommitLineData
1/*
2 * Bridge multicast support.
3 *
4 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
5 *
6 * This program is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the Free
8 * Software Foundation; either version 2 of the License, or (at your option)
9 * any later version.
10 *
11 */
12
13#include <linux/err.h>
14#include <linux/export.h>
15#include <linux/if_ether.h>
16#include <linux/igmp.h>
17#include <linux/jhash.h>
18#include <linux/kernel.h>
19#include <linux/log2.h>
20#include <linux/netdevice.h>
21#include <linux/netfilter_bridge.h>
22#include <linux/random.h>
23#include <linux/rculist.h>
24#include <linux/skbuff.h>
25#include <linux/slab.h>
26#include <linux/timer.h>
27#include <linux/inetdevice.h>
28#include <net/ip.h>
29#if IS_ENABLED(CONFIG_IPV6)
30#include <net/ipv6.h>
31#include <net/mld.h>
32#include <net/ip6_checksum.h>
33#include <net/addrconf.h>
34#endif
35
36#include "br_private.h"
37
38static void br_multicast_start_querier(struct net_bridge *br,
39 struct bridge_mcast_own_query *query);
40static void br_multicast_add_router(struct net_bridge *br,
41 struct net_bridge_port *port);
42static void br_ip4_multicast_leave_group(struct net_bridge *br,
43 struct net_bridge_port *port,
44 __be32 group,
45 __u16 vid);
46#if IS_ENABLED(CONFIG_IPV6)
47static void br_ip6_multicast_leave_group(struct net_bridge *br,
48 struct net_bridge_port *port,
49 const struct in6_addr *group,
50 __u16 vid);
51#endif
52unsigned int br_mdb_rehash_seq;
53
54static inline int br_ip_equal(const struct br_ip *a, const struct br_ip *b)
55{
56 if (a->proto != b->proto)
57 return 0;
58 if (a->vid != b->vid)
59 return 0;
60 switch (a->proto) {
61 case htons(ETH_P_IP):
62 return a->u.ip4 == b->u.ip4;
63#if IS_ENABLED(CONFIG_IPV6)
64 case htons(ETH_P_IPV6):
65 return ipv6_addr_equal(&a->u.ip6, &b->u.ip6);
66#endif
67 }
68 return 0;
69}
70
71static inline int __br_ip4_hash(struct net_bridge_mdb_htable *mdb, __be32 ip,
72 __u16 vid)
73{
74 return jhash_2words((__force u32)ip, vid, mdb->secret) & (mdb->max - 1);
75}
76
77#if IS_ENABLED(CONFIG_IPV6)
78static inline int __br_ip6_hash(struct net_bridge_mdb_htable *mdb,
79 const struct in6_addr *ip,
80 __u16 vid)
81{
82 return jhash_2words(ipv6_addr_hash(ip), vid,
83 mdb->secret) & (mdb->max - 1);
84}
85#endif
86
87static inline int br_ip_hash(struct net_bridge_mdb_htable *mdb,
88 struct br_ip *ip)
89{
90 switch (ip->proto) {
91 case htons(ETH_P_IP):
92 return __br_ip4_hash(mdb, ip->u.ip4, ip->vid);
93#if IS_ENABLED(CONFIG_IPV6)
94 case htons(ETH_P_IPV6):
95 return __br_ip6_hash(mdb, &ip->u.ip6, ip->vid);
96#endif
97 }
98 return 0;
99}
100
101static struct net_bridge_mdb_entry *__br_mdb_ip_get(
102 struct net_bridge_mdb_htable *mdb, struct br_ip *dst, int hash)
103{
104 struct net_bridge_mdb_entry *mp;
105
106 hlist_for_each_entry_rcu(mp, &mdb->mhash[hash], hlist[mdb->ver]) {
107 if (br_ip_equal(&mp->addr, dst))
108 return mp;
109 }
110
111 return NULL;
112}
113
114struct net_bridge_mdb_entry *br_mdb_ip_get(struct net_bridge_mdb_htable *mdb,
115 struct br_ip *dst)
116{
117 if (!mdb)
118 return NULL;
119
120 return __br_mdb_ip_get(mdb, dst, br_ip_hash(mdb, dst));
121}
122
123static struct net_bridge_mdb_entry *br_mdb_ip4_get(
124 struct net_bridge_mdb_htable *mdb, __be32 dst, __u16 vid)
125{
126 struct br_ip br_dst;
127
128 br_dst.u.ip4 = dst;
129 br_dst.proto = htons(ETH_P_IP);
130 br_dst.vid = vid;
131
132 return br_mdb_ip_get(mdb, &br_dst);
133}
134
135#if IS_ENABLED(CONFIG_IPV6)
136static struct net_bridge_mdb_entry *br_mdb_ip6_get(
137 struct net_bridge_mdb_htable *mdb, const struct in6_addr *dst,
138 __u16 vid)
139{
140 struct br_ip br_dst;
141
142 br_dst.u.ip6 = *dst;
143 br_dst.proto = htons(ETH_P_IPV6);
144 br_dst.vid = vid;
145
146 return br_mdb_ip_get(mdb, &br_dst);
147}
148#endif
149
150struct net_bridge_mdb_entry *br_mdb_get(struct net_bridge *br,
151 struct sk_buff *skb, u16 vid)
152{
153 struct net_bridge_mdb_htable *mdb = rcu_dereference(br->mdb);
154 struct br_ip ip;
155
156 if (br->multicast_disabled)
157 return NULL;
158
159 if (BR_INPUT_SKB_CB(skb)->igmp)
160 return NULL;
161
162 ip.proto = skb->protocol;
163 ip.vid = vid;
164
165 switch (skb->protocol) {
166 case htons(ETH_P_IP):
167 ip.u.ip4 = ip_hdr(skb)->daddr;
168 break;
169#if IS_ENABLED(CONFIG_IPV6)
170 case htons(ETH_P_IPV6):
171 ip.u.ip6 = ipv6_hdr(skb)->daddr;
172 break;
173#endif
174 default:
175 return NULL;
176 }
177
178 return br_mdb_ip_get(mdb, &ip);
179}
180
181static void br_mdb_free(struct rcu_head *head)
182{
183 struct net_bridge_mdb_htable *mdb =
184 container_of(head, struct net_bridge_mdb_htable, rcu);
185 struct net_bridge_mdb_htable *old = mdb->old;
186
187 mdb->old = NULL;
188 kfree(old->mhash);
189 kfree(old);
190}
191
192static int br_mdb_copy(struct net_bridge_mdb_htable *new,
193 struct net_bridge_mdb_htable *old,
194 int elasticity)
195{
196 struct net_bridge_mdb_entry *mp;
197 int maxlen;
198 int len;
199 int i;
200
201 for (i = 0; i < old->max; i++)
202 hlist_for_each_entry(mp, &old->mhash[i], hlist[old->ver])
203 hlist_add_head(&mp->hlist[new->ver],
204 &new->mhash[br_ip_hash(new, &mp->addr)]);
205
206 if (!elasticity)
207 return 0;
208
209 maxlen = 0;
210 for (i = 0; i < new->max; i++) {
211 len = 0;
212 hlist_for_each_entry(mp, &new->mhash[i], hlist[new->ver])
213 len++;
214 if (len > maxlen)
215 maxlen = len;
216 }
217
218 return maxlen > elasticity ? -EINVAL : 0;
219}
220
221void br_multicast_free_pg(struct rcu_head *head)
222{
223 struct net_bridge_port_group *p =
224 container_of(head, struct net_bridge_port_group, rcu);
225
226 kfree(p);
227}
228
229static void br_multicast_free_group(struct rcu_head *head)
230{
231 struct net_bridge_mdb_entry *mp =
232 container_of(head, struct net_bridge_mdb_entry, rcu);
233
234 kfree(mp);
235}
236
237static void br_multicast_group_expired(unsigned long data)
238{
239 struct net_bridge_mdb_entry *mp = (void *)data;
240 struct net_bridge *br = mp->br;
241 struct net_bridge_mdb_htable *mdb;
242
243 spin_lock(&br->multicast_lock);
244 if (!netif_running(br->dev) || timer_pending(&mp->timer))
245 goto out;
246
247 mp->mglist = false;
248
249 if (mp->ports)
250 goto out;
251
252 mdb = mlock_dereference(br->mdb, br);
253
254 hlist_del_rcu(&mp->hlist[mdb->ver]);
255 mdb->size--;
256
257 call_rcu_bh(&mp->rcu, br_multicast_free_group);
258
259out:
260 spin_unlock(&br->multicast_lock);
261}
262
263static void br_multicast_del_pg(struct net_bridge *br,
264 struct net_bridge_port_group *pg)
265{
266 struct net_bridge_mdb_htable *mdb;
267 struct net_bridge_mdb_entry *mp;
268 struct net_bridge_port_group *p;
269 struct net_bridge_port_group __rcu **pp;
270
271 mdb = mlock_dereference(br->mdb, br);
272
273 mp = br_mdb_ip_get(mdb, &pg->addr);
274 if (WARN_ON(!mp))
275 return;
276
277 for (pp = &mp->ports;
278 (p = mlock_dereference(*pp, br)) != NULL;
279 pp = &p->next) {
280 if (p != pg)
281 continue;
282
283 rcu_assign_pointer(*pp, p->next);
284 hlist_del_init(&p->mglist);
285 del_timer(&p->timer);
286 br_mdb_notify(br->dev, p->port, &pg->addr, RTM_DELMDB,
287 p->state);
288 call_rcu_bh(&p->rcu, br_multicast_free_pg);
289
290 if (!mp->ports && !mp->mglist &&
291 netif_running(br->dev))
292 mod_timer(&mp->timer, jiffies);
293
294 return;
295 }
296
297 WARN_ON(1);
298}
299
300static void br_multicast_port_group_expired(unsigned long data)
301{
302 struct net_bridge_port_group *pg = (void *)data;
303 struct net_bridge *br = pg->port->br;
304
305 spin_lock(&br->multicast_lock);
306 if (!netif_running(br->dev) || timer_pending(&pg->timer) ||
307 hlist_unhashed(&pg->mglist) || pg->state & MDB_PERMANENT)
308 goto out;
309
310 br_multicast_del_pg(br, pg);
311
312out:
313 spin_unlock(&br->multicast_lock);
314}
315
316static int br_mdb_rehash(struct net_bridge_mdb_htable __rcu **mdbp, int max,
317 int elasticity)
318{
319 struct net_bridge_mdb_htable *old = rcu_dereference_protected(*mdbp, 1);
320 struct net_bridge_mdb_htable *mdb;
321 int err;
322
323 mdb = kmalloc(sizeof(*mdb), GFP_ATOMIC);
324 if (!mdb)
325 return -ENOMEM;
326
327 mdb->max = max;
328 mdb->old = old;
329
330 mdb->mhash = kzalloc(max * sizeof(*mdb->mhash), GFP_ATOMIC);
331 if (!mdb->mhash) {
332 kfree(mdb);
333 return -ENOMEM;
334 }
335
336 mdb->size = old ? old->size : 0;
337 mdb->ver = old ? old->ver ^ 1 : 0;
338
339 if (!old || elasticity)
340 get_random_bytes(&mdb->secret, sizeof(mdb->secret));
341 else
342 mdb->secret = old->secret;
343
344 if (!old)
345 goto out;
346
347 err = br_mdb_copy(mdb, old, elasticity);
348 if (err) {
349 kfree(mdb->mhash);
350 kfree(mdb);
351 return err;
352 }
353
354 br_mdb_rehash_seq++;
355 call_rcu_bh(&mdb->rcu, br_mdb_free);
356
357out:
358 rcu_assign_pointer(*mdbp, mdb);
359
360 return 0;
361}
362
363static struct sk_buff *br_ip4_multicast_alloc_query(struct net_bridge *br,
364 __be32 group)
365{
366 struct sk_buff *skb;
367 struct igmphdr *ih;
368 struct ethhdr *eth;
369 struct iphdr *iph;
370
371 skb = netdev_alloc_skb_ip_align(br->dev, sizeof(*eth) + sizeof(*iph) +
372 sizeof(*ih) + 4);
373 if (!skb)
374 goto out;
375
376 skb->protocol = htons(ETH_P_IP);
377
378 skb_reset_mac_header(skb);
379 eth = eth_hdr(skb);
380
381 ether_addr_copy(eth->h_source, br->dev->dev_addr);
382 eth->h_dest[0] = 1;
383 eth->h_dest[1] = 0;
384 eth->h_dest[2] = 0x5e;
385 eth->h_dest[3] = 0;
386 eth->h_dest[4] = 0;
387 eth->h_dest[5] = 1;
388 eth->h_proto = htons(ETH_P_IP);
389 skb_put(skb, sizeof(*eth));
390
391 skb_set_network_header(skb, skb->len);
392 iph = ip_hdr(skb);
393
394 iph->version = 4;
395 iph->ihl = 6;
396 iph->tos = 0xc0;
397 iph->tot_len = htons(sizeof(*iph) + sizeof(*ih) + 4);
398 iph->id = 0;
399 iph->frag_off = htons(IP_DF);
400 iph->ttl = 1;
401 iph->protocol = IPPROTO_IGMP;
402 iph->saddr = br->multicast_query_use_ifaddr ?
403 inet_select_addr(br->dev, 0, RT_SCOPE_LINK) : 0;
404 iph->daddr = htonl(INADDR_ALLHOSTS_GROUP);
405 ((u8 *)&iph[1])[0] = IPOPT_RA;
406 ((u8 *)&iph[1])[1] = 4;
407 ((u8 *)&iph[1])[2] = 0;
408 ((u8 *)&iph[1])[3] = 0;
409 ip_send_check(iph);
410 skb_put(skb, 24);
411
412 skb_set_transport_header(skb, skb->len);
413 ih = igmp_hdr(skb);
414 ih->type = IGMP_HOST_MEMBERSHIP_QUERY;
415 ih->code = (group ? br->multicast_last_member_interval :
416 br->multicast_query_response_interval) /
417 (HZ / IGMP_TIMER_SCALE);
418 ih->group = group;
419 ih->csum = 0;
420 ih->csum = ip_compute_csum((void *)ih, sizeof(struct igmphdr));
421 skb_put(skb, sizeof(*ih));
422
423 __skb_pull(skb, sizeof(*eth));
424
425out:
426 return skb;
427}
428
429#if IS_ENABLED(CONFIG_IPV6)
430static struct sk_buff *br_ip6_multicast_alloc_query(struct net_bridge *br,
431 const struct in6_addr *group)
432{
433 struct sk_buff *skb;
434 struct ipv6hdr *ip6h;
435 struct mld_msg *mldq;
436 struct ethhdr *eth;
437 u8 *hopopt;
438 unsigned long interval;
439
440 skb = netdev_alloc_skb_ip_align(br->dev, sizeof(*eth) + sizeof(*ip6h) +
441 8 + sizeof(*mldq));
442 if (!skb)
443 goto out;
444
445 skb->protocol = htons(ETH_P_IPV6);
446
447 /* Ethernet header */
448 skb_reset_mac_header(skb);
449 eth = eth_hdr(skb);
450
451 ether_addr_copy(eth->h_source, br->dev->dev_addr);
452 eth->h_proto = htons(ETH_P_IPV6);
453 skb_put(skb, sizeof(*eth));
454
455 /* IPv6 header + HbH option */
456 skb_set_network_header(skb, skb->len);
457 ip6h = ipv6_hdr(skb);
458
459 *(__force __be32 *)ip6h = htonl(0x60000000);
460 ip6h->payload_len = htons(8 + sizeof(*mldq));
461 ip6h->nexthdr = IPPROTO_HOPOPTS;
462 ip6h->hop_limit = 1;
463 ipv6_addr_set(&ip6h->daddr, htonl(0xff020000), 0, 0, htonl(1));
464 if (ipv6_dev_get_saddr(dev_net(br->dev), br->dev, &ip6h->daddr, 0,
465 &ip6h->saddr)) {
466 kfree_skb(skb);
467 return NULL;
468 }
469 ipv6_eth_mc_map(&ip6h->daddr, eth->h_dest);
470
471 hopopt = (u8 *)(ip6h + 1);
472 hopopt[0] = IPPROTO_ICMPV6; /* next hdr */
473 hopopt[1] = 0; /* length of HbH */
474 hopopt[2] = IPV6_TLV_ROUTERALERT; /* Router Alert */
475 hopopt[3] = 2; /* Length of RA Option */
476 hopopt[4] = 0; /* Type = 0x0000 (MLD) */
477 hopopt[5] = 0;
478 hopopt[6] = IPV6_TLV_PAD1; /* Pad1 */
479 hopopt[7] = IPV6_TLV_PAD1; /* Pad1 */
480
481 skb_put(skb, sizeof(*ip6h) + 8);
482
483 /* ICMPv6 */
484 skb_set_transport_header(skb, skb->len);
485 mldq = (struct mld_msg *) icmp6_hdr(skb);
486
487 interval = ipv6_addr_any(group) ?
488 br->multicast_query_response_interval :
489 br->multicast_last_member_interval;
490
491 mldq->mld_type = ICMPV6_MGM_QUERY;
492 mldq->mld_code = 0;
493 mldq->mld_cksum = 0;
494 mldq->mld_maxdelay = htons((u16)jiffies_to_msecs(interval));
495 mldq->mld_reserved = 0;
496 mldq->mld_mca = *group;
497
498 /* checksum */
499 mldq->mld_cksum = csum_ipv6_magic(&ip6h->saddr, &ip6h->daddr,
500 sizeof(*mldq), IPPROTO_ICMPV6,
501 csum_partial(mldq,
502 sizeof(*mldq), 0));
503 skb_put(skb, sizeof(*mldq));
504
505 __skb_pull(skb, sizeof(*eth));
506
507out:
508 return skb;
509}
510#endif
511
512static struct sk_buff *br_multicast_alloc_query(struct net_bridge *br,
513 struct br_ip *addr)
514{
515 switch (addr->proto) {
516 case htons(ETH_P_IP):
517 return br_ip4_multicast_alloc_query(br, addr->u.ip4);
518#if IS_ENABLED(CONFIG_IPV6)
519 case htons(ETH_P_IPV6):
520 return br_ip6_multicast_alloc_query(br, &addr->u.ip6);
521#endif
522 }
523 return NULL;
524}
525
526static struct net_bridge_mdb_entry *br_multicast_get_group(
527 struct net_bridge *br, struct net_bridge_port *port,
528 struct br_ip *group, int hash)
529{
530 struct net_bridge_mdb_htable *mdb;
531 struct net_bridge_mdb_entry *mp;
532 unsigned int count = 0;
533 unsigned int max;
534 int elasticity;
535 int err;
536
537 mdb = rcu_dereference_protected(br->mdb, 1);
538 hlist_for_each_entry(mp, &mdb->mhash[hash], hlist[mdb->ver]) {
539 count++;
540 if (unlikely(br_ip_equal(group, &mp->addr)))
541 return mp;
542 }
543
544 elasticity = 0;
545 max = mdb->max;
546
547 if (unlikely(count > br->hash_elasticity && count)) {
548 if (net_ratelimit())
549 br_info(br, "Multicast hash table "
550 "chain limit reached: %s\n",
551 port ? port->dev->name : br->dev->name);
552
553 elasticity = br->hash_elasticity;
554 }
555
556 if (mdb->size >= max) {
557 max *= 2;
558 if (unlikely(max > br->hash_max)) {
559 br_warn(br, "Multicast hash table maximum of %d "
560 "reached, disabling snooping: %s\n",
561 br->hash_max,
562 port ? port->dev->name : br->dev->name);
563 err = -E2BIG;
564disable:
565 br->multicast_disabled = 1;
566 goto err;
567 }
568 }
569
570 if (max > mdb->max || elasticity) {
571 if (mdb->old) {
572 if (net_ratelimit())
573 br_info(br, "Multicast hash table "
574 "on fire: %s\n",
575 port ? port->dev->name : br->dev->name);
576 err = -EEXIST;
577 goto err;
578 }
579
580 err = br_mdb_rehash(&br->mdb, max, elasticity);
581 if (err) {
582 br_warn(br, "Cannot rehash multicast "
583 "hash table, disabling snooping: %s, %d, %d\n",
584 port ? port->dev->name : br->dev->name,
585 mdb->size, err);
586 goto disable;
587 }
588
589 err = -EAGAIN;
590 goto err;
591 }
592
593 return NULL;
594
595err:
596 mp = ERR_PTR(err);
597 return mp;
598}
599
600struct net_bridge_mdb_entry *br_multicast_new_group(struct net_bridge *br,
601 struct net_bridge_port *port, struct br_ip *group)
602{
603 struct net_bridge_mdb_htable *mdb;
604 struct net_bridge_mdb_entry *mp;
605 int hash;
606 int err;
607
608 mdb = rcu_dereference_protected(br->mdb, 1);
609 if (!mdb) {
610 err = br_mdb_rehash(&br->mdb, BR_HASH_SIZE, 0);
611 if (err)
612 return ERR_PTR(err);
613 goto rehash;
614 }
615
616 hash = br_ip_hash(mdb, group);
617 mp = br_multicast_get_group(br, port, group, hash);
618 switch (PTR_ERR(mp)) {
619 case 0:
620 break;
621
622 case -EAGAIN:
623rehash:
624 mdb = rcu_dereference_protected(br->mdb, 1);
625 hash = br_ip_hash(mdb, group);
626 break;
627
628 default:
629 goto out;
630 }
631
632 mp = kzalloc(sizeof(*mp), GFP_ATOMIC);
633 if (unlikely(!mp))
634 return ERR_PTR(-ENOMEM);
635
636 mp->br = br;
637 mp->addr = *group;
638 setup_timer(&mp->timer, br_multicast_group_expired,
639 (unsigned long)mp);
640
641 hlist_add_head_rcu(&mp->hlist[mdb->ver], &mdb->mhash[hash]);
642 mdb->size++;
643
644out:
645 return mp;
646}
647
648struct net_bridge_port_group *br_multicast_new_port_group(
649 struct net_bridge_port *port,
650 struct br_ip *group,
651 struct net_bridge_port_group __rcu *next,
652 unsigned char state)
653{
654 struct net_bridge_port_group *p;
655
656 p = kzalloc(sizeof(*p), GFP_ATOMIC);
657 if (unlikely(!p))
658 return NULL;
659
660 p->addr = *group;
661 p->port = port;
662 p->state = state;
663 rcu_assign_pointer(p->next, next);
664 hlist_add_head(&p->mglist, &port->mglist);
665 setup_timer(&p->timer, br_multicast_port_group_expired,
666 (unsigned long)p);
667 return p;
668}
669
670static int br_multicast_add_group(struct net_bridge *br,
671 struct net_bridge_port *port,
672 struct br_ip *group)
673{
674 struct net_bridge_mdb_entry *mp;
675 struct net_bridge_port_group *p;
676 struct net_bridge_port_group __rcu **pp;
677 unsigned long now = jiffies;
678 int err;
679
680 spin_lock(&br->multicast_lock);
681 if (!netif_running(br->dev) ||
682 (port && port->state == BR_STATE_DISABLED))
683 goto out;
684
685 mp = br_multicast_new_group(br, port, group);
686 err = PTR_ERR(mp);
687 if (IS_ERR(mp))
688 goto err;
689
690 if (!port) {
691 mp->mglist = true;
692 mod_timer(&mp->timer, now + br->multicast_membership_interval);
693 goto out;
694 }
695
696 for (pp = &mp->ports;
697 (p = mlock_dereference(*pp, br)) != NULL;
698 pp = &p->next) {
699 if (p->port == port)
700 goto found;
701 if ((unsigned long)p->port < (unsigned long)port)
702 break;
703 }
704
705 p = br_multicast_new_port_group(port, group, *pp, MDB_TEMPORARY);
706 if (unlikely(!p))
707 goto err;
708 rcu_assign_pointer(*pp, p);
709 br_mdb_notify(br->dev, port, group, RTM_NEWMDB, MDB_TEMPORARY);
710
711found:
712 mod_timer(&p->timer, now + br->multicast_membership_interval);
713out:
714 err = 0;
715
716err:
717 spin_unlock(&br->multicast_lock);
718 return err;
719}
720
721static int br_ip4_multicast_add_group(struct net_bridge *br,
722 struct net_bridge_port *port,
723 __be32 group,
724 __u16 vid)
725{
726 struct br_ip br_group;
727
728 if (ipv4_is_local_multicast(group))
729 return 0;
730
731 br_group.u.ip4 = group;
732 br_group.proto = htons(ETH_P_IP);
733 br_group.vid = vid;
734
735 return br_multicast_add_group(br, port, &br_group);
736}
737
738#if IS_ENABLED(CONFIG_IPV6)
739static int br_ip6_multicast_add_group(struct net_bridge *br,
740 struct net_bridge_port *port,
741 const struct in6_addr *group,
742 __u16 vid)
743{
744 struct br_ip br_group;
745
746 if (ipv6_addr_is_ll_all_nodes(group))
747 return 0;
748
749 br_group.u.ip6 = *group;
750 br_group.proto = htons(ETH_P_IPV6);
751 br_group.vid = vid;
752
753 return br_multicast_add_group(br, port, &br_group);
754}
755#endif
756
757static void br_multicast_router_expired(unsigned long data)
758{
759 struct net_bridge_port *port = (void *)data;
760 struct net_bridge *br = port->br;
761
762 spin_lock(&br->multicast_lock);
763 if (port->multicast_router != 1 ||
764 timer_pending(&port->multicast_router_timer) ||
765 hlist_unhashed(&port->rlist))
766 goto out;
767
768 hlist_del_init_rcu(&port->rlist);
769
770out:
771 spin_unlock(&br->multicast_lock);
772}
773
774static void br_multicast_local_router_expired(unsigned long data)
775{
776}
777
778static void br_multicast_querier_expired(struct net_bridge *br,
779 struct bridge_mcast_own_query *query)
780{
781 spin_lock(&br->multicast_lock);
782 if (!netif_running(br->dev) || br->multicast_disabled)
783 goto out;
784
785 br_multicast_start_querier(br, query);
786
787out:
788 spin_unlock(&br->multicast_lock);
789}
790
791static void br_ip4_multicast_querier_expired(unsigned long data)
792{
793 struct net_bridge *br = (void *)data;
794
795 br_multicast_querier_expired(br, &br->ip4_own_query);
796}
797
798#if IS_ENABLED(CONFIG_IPV6)
799static void br_ip6_multicast_querier_expired(unsigned long data)
800{
801 struct net_bridge *br = (void *)data;
802
803 br_multicast_querier_expired(br, &br->ip6_own_query);
804}
805#endif
806
807static void br_multicast_select_own_querier(struct net_bridge *br,
808 struct br_ip *ip,
809 struct sk_buff *skb)
810{
811 if (ip->proto == htons(ETH_P_IP))
812 br->ip4_querier.addr.u.ip4 = ip_hdr(skb)->saddr;
813#if IS_ENABLED(CONFIG_IPV6)
814 else
815 br->ip6_querier.addr.u.ip6 = ipv6_hdr(skb)->saddr;
816#endif
817}
818
819static void __br_multicast_send_query(struct net_bridge *br,
820 struct net_bridge_port *port,
821 struct br_ip *ip)
822{
823 struct sk_buff *skb;
824
825 skb = br_multicast_alloc_query(br, ip);
826 if (!skb)
827 return;
828
829 if (port) {
830 skb->dev = port->dev;
831 NF_HOOK(NFPROTO_BRIDGE, NF_BR_LOCAL_OUT, NULL, skb,
832 NULL, skb->dev,
833 br_dev_queue_push_xmit);
834 } else {
835 br_multicast_select_own_querier(br, ip, skb);
836 netif_rx(skb);
837 }
838}
839
840static void br_multicast_send_query(struct net_bridge *br,
841 struct net_bridge_port *port,
842 struct bridge_mcast_own_query *own_query)
843{
844 unsigned long time;
845 struct br_ip br_group;
846 struct bridge_mcast_other_query *other_query = NULL;
847
848 if (!netif_running(br->dev) || br->multicast_disabled ||
849 !br->multicast_querier)
850 return;
851
852 memset(&br_group.u, 0, sizeof(br_group.u));
853
854 if (port ? (own_query == &port->ip4_own_query) :
855 (own_query == &br->ip4_own_query)) {
856 other_query = &br->ip4_other_query;
857 br_group.proto = htons(ETH_P_IP);
858#if IS_ENABLED(CONFIG_IPV6)
859 } else {
860 other_query = &br->ip6_other_query;
861 br_group.proto = htons(ETH_P_IPV6);
862#endif
863 }
864
865 if (!other_query || timer_pending(&other_query->timer))
866 return;
867
868 __br_multicast_send_query(br, port, &br_group);
869
870 time = jiffies;
871 time += own_query->startup_sent < br->multicast_startup_query_count ?
872 br->multicast_startup_query_interval :
873 br->multicast_query_interval;
874 mod_timer(&own_query->timer, time);
875}
876
877static void
878br_multicast_port_query_expired(struct net_bridge_port *port,
879 struct bridge_mcast_own_query *query)
880{
881 struct net_bridge *br = port->br;
882
883 spin_lock(&br->multicast_lock);
884 if (port->state == BR_STATE_DISABLED ||
885 port->state == BR_STATE_BLOCKING)
886 goto out;
887
888 if (query->startup_sent < br->multicast_startup_query_count)
889 query->startup_sent++;
890
891 br_multicast_send_query(port->br, port, query);
892
893out:
894 spin_unlock(&br->multicast_lock);
895}
896
897static void br_ip4_multicast_port_query_expired(unsigned long data)
898{
899 struct net_bridge_port *port = (void *)data;
900
901 br_multicast_port_query_expired(port, &port->ip4_own_query);
902}
903
904#if IS_ENABLED(CONFIG_IPV6)
905static void br_ip6_multicast_port_query_expired(unsigned long data)
906{
907 struct net_bridge_port *port = (void *)data;
908
909 br_multicast_port_query_expired(port, &port->ip6_own_query);
910}
911#endif
912
913void br_multicast_add_port(struct net_bridge_port *port)
914{
915 port->multicast_router = 1;
916
917 setup_timer(&port->multicast_router_timer, br_multicast_router_expired,
918 (unsigned long)port);
919 setup_timer(&port->ip4_own_query.timer,
920 br_ip4_multicast_port_query_expired, (unsigned long)port);
921#if IS_ENABLED(CONFIG_IPV6)
922 setup_timer(&port->ip6_own_query.timer,
923 br_ip6_multicast_port_query_expired, (unsigned long)port);
924#endif
925}
926
927void br_multicast_del_port(struct net_bridge_port *port)
928{
929 struct net_bridge *br = port->br;
930 struct net_bridge_port_group *pg;
931 struct hlist_node *n;
932
933 /* Take care of the remaining groups, only perm ones should be left */
934 spin_lock_bh(&br->multicast_lock);
935 hlist_for_each_entry_safe(pg, n, &port->mglist, mglist)
936 br_multicast_del_pg(br, pg);
937 spin_unlock_bh(&br->multicast_lock);
938 del_timer_sync(&port->multicast_router_timer);
939}
940
941static void br_multicast_enable(struct bridge_mcast_own_query *query)
942{
943 query->startup_sent = 0;
944
945 if (try_to_del_timer_sync(&query->timer) >= 0 ||
946 del_timer(&query->timer))
947 mod_timer(&query->timer, jiffies);
948}
949
950void br_multicast_enable_port(struct net_bridge_port *port)
951{
952 struct net_bridge *br = port->br;
953
954 spin_lock(&br->multicast_lock);
955 if (br->multicast_disabled || !netif_running(br->dev))
956 goto out;
957
958 br_multicast_enable(&port->ip4_own_query);
959#if IS_ENABLED(CONFIG_IPV6)
960 br_multicast_enable(&port->ip6_own_query);
961#endif
962 if (port->multicast_router == 2 && hlist_unhashed(&port->rlist))
963 br_multicast_add_router(br, port);
964
965out:
966 spin_unlock(&br->multicast_lock);
967}
968
969void br_multicast_disable_port(struct net_bridge_port *port)
970{
971 struct net_bridge *br = port->br;
972 struct net_bridge_port_group *pg;
973 struct hlist_node *n;
974
975 spin_lock(&br->multicast_lock);
976 hlist_for_each_entry_safe(pg, n, &port->mglist, mglist)
977 if (pg->state == MDB_TEMPORARY)
978 br_multicast_del_pg(br, pg);
979
980 if (!hlist_unhashed(&port->rlist))
981 hlist_del_init_rcu(&port->rlist);
982 del_timer(&port->multicast_router_timer);
983 del_timer(&port->ip4_own_query.timer);
984#if IS_ENABLED(CONFIG_IPV6)
985 del_timer(&port->ip6_own_query.timer);
986#endif
987 spin_unlock(&br->multicast_lock);
988}
989
990static int br_ip4_multicast_igmp3_report(struct net_bridge *br,
991 struct net_bridge_port *port,
992 struct sk_buff *skb,
993 u16 vid)
994{
995 struct igmpv3_report *ih;
996 struct igmpv3_grec *grec;
997 int i;
998 int len;
999 int num;
1000 int type;
1001 int err = 0;
1002 __be32 group;
1003
1004 ih = igmpv3_report_hdr(skb);
1005 num = ntohs(ih->ngrec);
1006 len = sizeof(*ih);
1007
1008 for (i = 0; i < num; i++) {
1009 len += sizeof(*grec);
1010 if (!pskb_may_pull(skb, len))
1011 return -EINVAL;
1012
1013 grec = (void *)(skb->data + len - sizeof(*grec));
1014 group = grec->grec_mca;
1015 type = grec->grec_type;
1016
1017 len += ntohs(grec->grec_nsrcs) * 4;
1018 if (!pskb_may_pull(skb, len))
1019 return -EINVAL;
1020
1021 /* We treat this as an IGMPv2 report for now. */
1022 switch (type) {
1023 case IGMPV3_MODE_IS_INCLUDE:
1024 case IGMPV3_MODE_IS_EXCLUDE:
1025 case IGMPV3_CHANGE_TO_INCLUDE:
1026 case IGMPV3_CHANGE_TO_EXCLUDE:
1027 case IGMPV3_ALLOW_NEW_SOURCES:
1028 case IGMPV3_BLOCK_OLD_SOURCES:
1029 break;
1030
1031 default:
1032 continue;
1033 }
1034
1035 if ((type == IGMPV3_CHANGE_TO_INCLUDE ||
1036 type == IGMPV3_MODE_IS_INCLUDE) &&
1037 ntohs(grec->grec_nsrcs) == 0) {
1038 br_ip4_multicast_leave_group(br, port, group, vid);
1039 } else {
1040 err = br_ip4_multicast_add_group(br, port, group, vid);
1041 if (err)
1042 break;
1043 }
1044 }
1045
1046 return err;
1047}
1048
1049#if IS_ENABLED(CONFIG_IPV6)
1050static int br_ip6_multicast_mld2_report(struct net_bridge *br,
1051 struct net_bridge_port *port,
1052 struct sk_buff *skb,
1053 u16 vid)
1054{
1055 struct icmp6hdr *icmp6h;
1056 struct mld2_grec *grec;
1057 int i;
1058 int len;
1059 int num;
1060 int err = 0;
1061
1062 if (!pskb_may_pull(skb, sizeof(*icmp6h)))
1063 return -EINVAL;
1064
1065 icmp6h = icmp6_hdr(skb);
1066 num = ntohs(icmp6h->icmp6_dataun.un_data16[1]);
1067 len = sizeof(*icmp6h);
1068
1069 for (i = 0; i < num; i++) {
1070 __be16 *nsrcs, _nsrcs;
1071
1072 nsrcs = skb_header_pointer(skb,
1073 len + offsetof(struct mld2_grec,
1074 grec_nsrcs),
1075 sizeof(_nsrcs), &_nsrcs);
1076 if (!nsrcs)
1077 return -EINVAL;
1078
1079 if (!pskb_may_pull(skb,
1080 len + sizeof(*grec) +
1081 sizeof(struct in6_addr) * ntohs(*nsrcs)))
1082 return -EINVAL;
1083
1084 grec = (struct mld2_grec *)(skb->data + len);
1085 len += sizeof(*grec) +
1086 sizeof(struct in6_addr) * ntohs(*nsrcs);
1087
1088 /* We treat these as MLDv1 reports for now. */
1089 switch (grec->grec_type) {
1090 case MLD2_MODE_IS_INCLUDE:
1091 case MLD2_MODE_IS_EXCLUDE:
1092 case MLD2_CHANGE_TO_INCLUDE:
1093 case MLD2_CHANGE_TO_EXCLUDE:
1094 case MLD2_ALLOW_NEW_SOURCES:
1095 case MLD2_BLOCK_OLD_SOURCES:
1096 break;
1097
1098 default:
1099 continue;
1100 }
1101
1102 if ((grec->grec_type == MLD2_CHANGE_TO_INCLUDE ||
1103 grec->grec_type == MLD2_MODE_IS_INCLUDE) &&
1104 ntohs(*nsrcs) == 0) {
1105 br_ip6_multicast_leave_group(br, port, &grec->grec_mca,
1106 vid);
1107 } else {
1108 err = br_ip6_multicast_add_group(br, port,
1109 &grec->grec_mca, vid);
1110 if (!err)
1111 break;
1112 }
1113 }
1114
1115 return err;
1116}
1117#endif
1118
1119static bool br_ip4_multicast_select_querier(struct net_bridge *br,
1120 struct net_bridge_port *port,
1121 __be32 saddr)
1122{
1123 if (!timer_pending(&br->ip4_own_query.timer) &&
1124 !timer_pending(&br->ip4_other_query.timer))
1125 goto update;
1126
1127 if (!br->ip4_querier.addr.u.ip4)
1128 goto update;
1129
1130 if (ntohl(saddr) <= ntohl(br->ip4_querier.addr.u.ip4))
1131 goto update;
1132
1133 return false;
1134
1135update:
1136 br->ip4_querier.addr.u.ip4 = saddr;
1137
1138 /* update protected by general multicast_lock by caller */
1139 rcu_assign_pointer(br->ip4_querier.port, port);
1140
1141 return true;
1142}
1143
1144#if IS_ENABLED(CONFIG_IPV6)
1145static bool br_ip6_multicast_select_querier(struct net_bridge *br,
1146 struct net_bridge_port *port,
1147 struct in6_addr *saddr)
1148{
1149 if (!timer_pending(&br->ip6_own_query.timer) &&
1150 !timer_pending(&br->ip6_other_query.timer))
1151 goto update;
1152
1153 if (ipv6_addr_cmp(saddr, &br->ip6_querier.addr.u.ip6) <= 0)
1154 goto update;
1155
1156 return false;
1157
1158update:
1159 br->ip6_querier.addr.u.ip6 = *saddr;
1160
1161 /* update protected by general multicast_lock by caller */
1162 rcu_assign_pointer(br->ip6_querier.port, port);
1163
1164 return true;
1165}
1166#endif
1167
1168static bool br_multicast_select_querier(struct net_bridge *br,
1169 struct net_bridge_port *port,
1170 struct br_ip *saddr)
1171{
1172 switch (saddr->proto) {
1173 case htons(ETH_P_IP):
1174 return br_ip4_multicast_select_querier(br, port, saddr->u.ip4);
1175#if IS_ENABLED(CONFIG_IPV6)
1176 case htons(ETH_P_IPV6):
1177 return br_ip6_multicast_select_querier(br, port, &saddr->u.ip6);
1178#endif
1179 }
1180
1181 return false;
1182}
1183
1184static void
1185br_multicast_update_query_timer(struct net_bridge *br,
1186 struct bridge_mcast_other_query *query,
1187 unsigned long max_delay)
1188{
1189 if (!timer_pending(&query->timer))
1190 query->delay_time = jiffies + max_delay;
1191
1192 mod_timer(&query->timer, jiffies + br->multicast_querier_interval);
1193}
1194
1195/*
1196 * Add port to router_list
1197 * list is maintained ordered by pointer value
1198 * and locked by br->multicast_lock and RCU
1199 */
1200static void br_multicast_add_router(struct net_bridge *br,
1201 struct net_bridge_port *port)
1202{
1203 struct net_bridge_port *p;
1204 struct hlist_node *slot = NULL;
1205
1206 if (!hlist_unhashed(&port->rlist))
1207 return;
1208
1209 hlist_for_each_entry(p, &br->router_list, rlist) {
1210 if ((unsigned long) port >= (unsigned long) p)
1211 break;
1212 slot = &p->rlist;
1213 }
1214
1215 if (slot)
1216 hlist_add_behind_rcu(&port->rlist, slot);
1217 else
1218 hlist_add_head_rcu(&port->rlist, &br->router_list);
1219}
1220
1221static void br_multicast_mark_router(struct net_bridge *br,
1222 struct net_bridge_port *port)
1223{
1224 unsigned long now = jiffies;
1225
1226 if (!port) {
1227 if (br->multicast_router == 1)
1228 mod_timer(&br->multicast_router_timer,
1229 now + br->multicast_querier_interval);
1230 return;
1231 }
1232
1233 if (port->multicast_router != 1)
1234 return;
1235
1236 br_multicast_add_router(br, port);
1237
1238 mod_timer(&port->multicast_router_timer,
1239 now + br->multicast_querier_interval);
1240}
1241
1242static void br_multicast_query_received(struct net_bridge *br,
1243 struct net_bridge_port *port,
1244 struct bridge_mcast_other_query *query,
1245 struct br_ip *saddr,
1246 unsigned long max_delay)
1247{
1248 if (!br_multicast_select_querier(br, port, saddr))
1249 return;
1250
1251 br_multicast_update_query_timer(br, query, max_delay);
1252 br_multicast_mark_router(br, port);
1253}
1254
1255static int br_ip4_multicast_query(struct net_bridge *br,
1256 struct net_bridge_port *port,
1257 struct sk_buff *skb,
1258 u16 vid)
1259{
1260 const struct iphdr *iph = ip_hdr(skb);
1261 struct igmphdr *ih = igmp_hdr(skb);
1262 struct net_bridge_mdb_entry *mp;
1263 struct igmpv3_query *ih3;
1264 struct net_bridge_port_group *p;
1265 struct net_bridge_port_group __rcu **pp;
1266 struct br_ip saddr;
1267 unsigned long max_delay;
1268 unsigned long now = jiffies;
1269 __be32 group;
1270 int err = 0;
1271
1272 spin_lock(&br->multicast_lock);
1273 if (!netif_running(br->dev) ||
1274 (port && port->state == BR_STATE_DISABLED))
1275 goto out;
1276
1277 group = ih->group;
1278
1279 if (skb->len == sizeof(*ih)) {
1280 max_delay = ih->code * (HZ / IGMP_TIMER_SCALE);
1281
1282 if (!max_delay) {
1283 max_delay = 10 * HZ;
1284 group = 0;
1285 }
1286 } else if (skb->len >= sizeof(*ih3)) {
1287 ih3 = igmpv3_query_hdr(skb);
1288 if (ih3->nsrcs)
1289 goto out;
1290
1291 max_delay = ih3->code ?
1292 IGMPV3_MRC(ih3->code) * (HZ / IGMP_TIMER_SCALE) : 1;
1293 } else {
1294 goto out;
1295 }
1296
1297 if (!group) {
1298 saddr.proto = htons(ETH_P_IP);
1299 saddr.u.ip4 = iph->saddr;
1300
1301 br_multicast_query_received(br, port, &br->ip4_other_query,
1302 &saddr, max_delay);
1303 goto out;
1304 }
1305
1306 mp = br_mdb_ip4_get(mlock_dereference(br->mdb, br), group, vid);
1307 if (!mp)
1308 goto out;
1309
1310 max_delay *= br->multicast_last_member_count;
1311
1312 if (mp->mglist &&
1313 (timer_pending(&mp->timer) ?
1314 time_after(mp->timer.expires, now + max_delay) :
1315 try_to_del_timer_sync(&mp->timer) >= 0))
1316 mod_timer(&mp->timer, now + max_delay);
1317
1318 for (pp = &mp->ports;
1319 (p = mlock_dereference(*pp, br)) != NULL;
1320 pp = &p->next) {
1321 if (timer_pending(&p->timer) ?
1322 time_after(p->timer.expires, now + max_delay) :
1323 try_to_del_timer_sync(&p->timer) >= 0)
1324 mod_timer(&p->timer, now + max_delay);
1325 }
1326
1327out:
1328 spin_unlock(&br->multicast_lock);
1329 return err;
1330}
1331
1332#if IS_ENABLED(CONFIG_IPV6)
1333static int br_ip6_multicast_query(struct net_bridge *br,
1334 struct net_bridge_port *port,
1335 struct sk_buff *skb,
1336 u16 vid)
1337{
1338 const struct ipv6hdr *ip6h = ipv6_hdr(skb);
1339 struct mld_msg *mld;
1340 struct net_bridge_mdb_entry *mp;
1341 struct mld2_query *mld2q;
1342 struct net_bridge_port_group *p;
1343 struct net_bridge_port_group __rcu **pp;
1344 struct br_ip saddr;
1345 unsigned long max_delay;
1346 unsigned long now = jiffies;
1347 const struct in6_addr *group = NULL;
1348 bool is_general_query;
1349 int err = 0;
1350
1351 spin_lock(&br->multicast_lock);
1352 if (!netif_running(br->dev) ||
1353 (port && port->state == BR_STATE_DISABLED))
1354 goto out;
1355
1356 if (skb->len == sizeof(*mld)) {
1357 if (!pskb_may_pull(skb, sizeof(*mld))) {
1358 err = -EINVAL;
1359 goto out;
1360 }
1361 mld = (struct mld_msg *) icmp6_hdr(skb);
1362 max_delay = msecs_to_jiffies(ntohs(mld->mld_maxdelay));
1363 if (max_delay)
1364 group = &mld->mld_mca;
1365 } else {
1366 if (!pskb_may_pull(skb, sizeof(*mld2q))) {
1367 err = -EINVAL;
1368 goto out;
1369 }
1370 mld2q = (struct mld2_query *)icmp6_hdr(skb);
1371 if (!mld2q->mld2q_nsrcs)
1372 group = &mld2q->mld2q_mca;
1373
1374 max_delay = max(msecs_to_jiffies(mldv2_mrc(mld2q)), 1UL);
1375 }
1376
1377 is_general_query = group && ipv6_addr_any(group);
1378
1379 if (is_general_query) {
1380 saddr.proto = htons(ETH_P_IPV6);
1381 saddr.u.ip6 = ip6h->saddr;
1382
1383 br_multicast_query_received(br, port, &br->ip6_other_query,
1384 &saddr, max_delay);
1385 goto out;
1386 } else if (!group) {
1387 goto out;
1388 }
1389
1390 mp = br_mdb_ip6_get(mlock_dereference(br->mdb, br), group, vid);
1391 if (!mp)
1392 goto out;
1393
1394 max_delay *= br->multicast_last_member_count;
1395 if (mp->mglist &&
1396 (timer_pending(&mp->timer) ?
1397 time_after(mp->timer.expires, now + max_delay) :
1398 try_to_del_timer_sync(&mp->timer) >= 0))
1399 mod_timer(&mp->timer, now + max_delay);
1400
1401 for (pp = &mp->ports;
1402 (p = mlock_dereference(*pp, br)) != NULL;
1403 pp = &p->next) {
1404 if (timer_pending(&p->timer) ?
1405 time_after(p->timer.expires, now + max_delay) :
1406 try_to_del_timer_sync(&p->timer) >= 0)
1407 mod_timer(&p->timer, now + max_delay);
1408 }
1409
1410out:
1411 spin_unlock(&br->multicast_lock);
1412 return err;
1413}
1414#endif
1415
1416static void
1417br_multicast_leave_group(struct net_bridge *br,
1418 struct net_bridge_port *port,
1419 struct br_ip *group,
1420 struct bridge_mcast_other_query *other_query,
1421 struct bridge_mcast_own_query *own_query)
1422{
1423 struct net_bridge_mdb_htable *mdb;
1424 struct net_bridge_mdb_entry *mp;
1425 struct net_bridge_port_group *p;
1426 unsigned long now;
1427 unsigned long time;
1428
1429 spin_lock(&br->multicast_lock);
1430 if (!netif_running(br->dev) ||
1431 (port && port->state == BR_STATE_DISABLED) ||
1432 timer_pending(&other_query->timer))
1433 goto out;
1434
1435 mdb = mlock_dereference(br->mdb, br);
1436 mp = br_mdb_ip_get(mdb, group);
1437 if (!mp)
1438 goto out;
1439
1440 if (br->multicast_querier) {
1441 __br_multicast_send_query(br, port, &mp->addr);
1442
1443 time = jiffies + br->multicast_last_member_count *
1444 br->multicast_last_member_interval;
1445
1446 mod_timer(&own_query->timer, time);
1447
1448 for (p = mlock_dereference(mp->ports, br);
1449 p != NULL;
1450 p = mlock_dereference(p->next, br)) {
1451 if (p->port != port)
1452 continue;
1453
1454 if (!hlist_unhashed(&p->mglist) &&
1455 (timer_pending(&p->timer) ?
1456 time_after(p->timer.expires, time) :
1457 try_to_del_timer_sync(&p->timer) >= 0)) {
1458 mod_timer(&p->timer, time);
1459 }
1460
1461 break;
1462 }
1463 }
1464
1465 if (port && (port->flags & BR_MULTICAST_FAST_LEAVE)) {
1466 struct net_bridge_port_group __rcu **pp;
1467
1468 for (pp = &mp->ports;
1469 (p = mlock_dereference(*pp, br)) != NULL;
1470 pp = &p->next) {
1471 if (p->port != port)
1472 continue;
1473
1474 rcu_assign_pointer(*pp, p->next);
1475 hlist_del_init(&p->mglist);
1476 del_timer(&p->timer);
1477 br_mdb_notify(br->dev, port, group, RTM_DELMDB,
1478 p->state);
1479 call_rcu_bh(&p->rcu, br_multicast_free_pg);
1480
1481 if (!mp->ports && !mp->mglist &&
1482 netif_running(br->dev))
1483 mod_timer(&mp->timer, jiffies);
1484 }
1485 goto out;
1486 }
1487
1488 now = jiffies;
1489 time = now + br->multicast_last_member_count *
1490 br->multicast_last_member_interval;
1491
1492 if (!port) {
1493 if (mp->mglist &&
1494 (timer_pending(&mp->timer) ?
1495 time_after(mp->timer.expires, time) :
1496 try_to_del_timer_sync(&mp->timer) >= 0)) {
1497 mod_timer(&mp->timer, time);
1498 }
1499
1500 goto out;
1501 }
1502
1503 for (p = mlock_dereference(mp->ports, br);
1504 p != NULL;
1505 p = mlock_dereference(p->next, br)) {
1506 if (p->port != port)
1507 continue;
1508
1509 if (!hlist_unhashed(&p->mglist) &&
1510 (timer_pending(&p->timer) ?
1511 time_after(p->timer.expires, time) :
1512 try_to_del_timer_sync(&p->timer) >= 0)) {
1513 mod_timer(&p->timer, time);
1514 }
1515
1516 break;
1517 }
1518out:
1519 spin_unlock(&br->multicast_lock);
1520}
1521
1522static void br_ip4_multicast_leave_group(struct net_bridge *br,
1523 struct net_bridge_port *port,
1524 __be32 group,
1525 __u16 vid)
1526{
1527 struct br_ip br_group;
1528 struct bridge_mcast_own_query *own_query;
1529
1530 if (ipv4_is_local_multicast(group))
1531 return;
1532
1533 own_query = port ? &port->ip4_own_query : &br->ip4_own_query;
1534
1535 br_group.u.ip4 = group;
1536 br_group.proto = htons(ETH_P_IP);
1537 br_group.vid = vid;
1538
1539 br_multicast_leave_group(br, port, &br_group, &br->ip4_other_query,
1540 own_query);
1541}
1542
1543#if IS_ENABLED(CONFIG_IPV6)
1544static void br_ip6_multicast_leave_group(struct net_bridge *br,
1545 struct net_bridge_port *port,
1546 const struct in6_addr *group,
1547 __u16 vid)
1548{
1549 struct br_ip br_group;
1550 struct bridge_mcast_own_query *own_query;
1551
1552 if (ipv6_addr_is_ll_all_nodes(group))
1553 return;
1554
1555 own_query = port ? &port->ip6_own_query : &br->ip6_own_query;
1556
1557 br_group.u.ip6 = *group;
1558 br_group.proto = htons(ETH_P_IPV6);
1559 br_group.vid = vid;
1560
1561 br_multicast_leave_group(br, port, &br_group, &br->ip6_other_query,
1562 own_query);
1563}
1564#endif
1565
1566static int br_multicast_ipv4_rcv(struct net_bridge *br,
1567 struct net_bridge_port *port,
1568 struct sk_buff *skb,
1569 u16 vid)
1570{
1571 struct sk_buff *skb_trimmed = NULL;
1572 struct igmphdr *ih;
1573 int err;
1574
1575 err = ip_mc_check_igmp(skb, &skb_trimmed);
1576
1577 if (err == -ENOMSG) {
1578 if (!ipv4_is_local_multicast(ip_hdr(skb)->daddr))
1579 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
1580 return 0;
1581 } else if (err < 0) {
1582 return err;
1583 }
1584
1585 BR_INPUT_SKB_CB(skb)->igmp = 1;
1586 ih = igmp_hdr(skb);
1587
1588 switch (ih->type) {
1589 case IGMP_HOST_MEMBERSHIP_REPORT:
1590 case IGMPV2_HOST_MEMBERSHIP_REPORT:
1591 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
1592 err = br_ip4_multicast_add_group(br, port, ih->group, vid);
1593 break;
1594 case IGMPV3_HOST_MEMBERSHIP_REPORT:
1595 err = br_ip4_multicast_igmp3_report(br, port, skb_trimmed, vid);
1596 break;
1597 case IGMP_HOST_MEMBERSHIP_QUERY:
1598 err = br_ip4_multicast_query(br, port, skb_trimmed, vid);
1599 break;
1600 case IGMP_HOST_LEAVE_MESSAGE:
1601 br_ip4_multicast_leave_group(br, port, ih->group, vid);
1602 break;
1603 }
1604
1605 if (skb_trimmed)
1606 kfree_skb(skb_trimmed);
1607
1608 return err;
1609}
1610
1611#if IS_ENABLED(CONFIG_IPV6)
1612static int br_multicast_ipv6_rcv(struct net_bridge *br,
1613 struct net_bridge_port *port,
1614 struct sk_buff *skb,
1615 u16 vid)
1616{
1617 struct sk_buff *skb_trimmed = NULL;
1618 struct mld_msg *mld;
1619 int err;
1620
1621 err = ipv6_mc_check_mld(skb, &skb_trimmed);
1622
1623 if (err == -ENOMSG) {
1624 if (!ipv6_addr_is_ll_all_nodes(&ipv6_hdr(skb)->daddr))
1625 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
1626 return 0;
1627 } else if (err < 0) {
1628 return err;
1629 }
1630
1631 BR_INPUT_SKB_CB(skb)->igmp = 1;
1632 mld = (struct mld_msg *)skb_transport_header(skb);
1633
1634 switch (mld->mld_type) {
1635 case ICMPV6_MGM_REPORT:
1636 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
1637 err = br_ip6_multicast_add_group(br, port, &mld->mld_mca, vid);
1638 break;
1639 case ICMPV6_MLD2_REPORT:
1640 err = br_ip6_multicast_mld2_report(br, port, skb_trimmed, vid);
1641 break;
1642 case ICMPV6_MGM_QUERY:
1643 err = br_ip6_multicast_query(br, port, skb_trimmed, vid);
1644 break;
1645 case ICMPV6_MGM_REDUCTION:
1646 br_ip6_multicast_leave_group(br, port, &mld->mld_mca, vid);
1647 break;
1648 }
1649
1650 if (skb_trimmed)
1651 kfree_skb(skb_trimmed);
1652
1653 return err;
1654}
1655#endif
1656
1657int br_multicast_rcv(struct net_bridge *br, struct net_bridge_port *port,
1658 struct sk_buff *skb, u16 vid)
1659{
1660 BR_INPUT_SKB_CB(skb)->igmp = 0;
1661 BR_INPUT_SKB_CB(skb)->mrouters_only = 0;
1662
1663 if (br->multicast_disabled)
1664 return 0;
1665
1666 switch (skb->protocol) {
1667 case htons(ETH_P_IP):
1668 return br_multicast_ipv4_rcv(br, port, skb, vid);
1669#if IS_ENABLED(CONFIG_IPV6)
1670 case htons(ETH_P_IPV6):
1671 return br_multicast_ipv6_rcv(br, port, skb, vid);
1672#endif
1673 }
1674
1675 return 0;
1676}
1677
1678static void br_multicast_query_expired(struct net_bridge *br,
1679 struct bridge_mcast_own_query *query,
1680 struct bridge_mcast_querier *querier)
1681{
1682 spin_lock(&br->multicast_lock);
1683 if (query->startup_sent < br->multicast_startup_query_count)
1684 query->startup_sent++;
1685
1686 RCU_INIT_POINTER(querier->port, NULL);
1687 br_multicast_send_query(br, NULL, query);
1688 spin_unlock(&br->multicast_lock);
1689}
1690
1691static void br_ip4_multicast_query_expired(unsigned long data)
1692{
1693 struct net_bridge *br = (void *)data;
1694
1695 br_multicast_query_expired(br, &br->ip4_own_query, &br->ip4_querier);
1696}
1697
1698#if IS_ENABLED(CONFIG_IPV6)
1699static void br_ip6_multicast_query_expired(unsigned long data)
1700{
1701 struct net_bridge *br = (void *)data;
1702
1703 br_multicast_query_expired(br, &br->ip6_own_query, &br->ip6_querier);
1704}
1705#endif
1706
1707void br_multicast_init(struct net_bridge *br)
1708{
1709 br->hash_elasticity = 4;
1710 br->hash_max = 512;
1711
1712 br->multicast_router = 1;
1713 br->multicast_querier = 0;
1714 br->multicast_query_use_ifaddr = 0;
1715 br->multicast_last_member_count = 2;
1716 br->multicast_startup_query_count = 2;
1717
1718 br->multicast_last_member_interval = HZ;
1719 br->multicast_query_response_interval = 10 * HZ;
1720 br->multicast_startup_query_interval = 125 * HZ / 4;
1721 br->multicast_query_interval = 125 * HZ;
1722 br->multicast_querier_interval = 255 * HZ;
1723 br->multicast_membership_interval = 260 * HZ;
1724
1725 br->ip4_other_query.delay_time = 0;
1726 br->ip4_querier.port = NULL;
1727#if IS_ENABLED(CONFIG_IPV6)
1728 br->ip6_other_query.delay_time = 0;
1729 br->ip6_querier.port = NULL;
1730#endif
1731
1732 spin_lock_init(&br->multicast_lock);
1733 setup_timer(&br->multicast_router_timer,
1734 br_multicast_local_router_expired, 0);
1735 setup_timer(&br->ip4_other_query.timer,
1736 br_ip4_multicast_querier_expired, (unsigned long)br);
1737 setup_timer(&br->ip4_own_query.timer, br_ip4_multicast_query_expired,
1738 (unsigned long)br);
1739#if IS_ENABLED(CONFIG_IPV6)
1740 setup_timer(&br->ip6_other_query.timer,
1741 br_ip6_multicast_querier_expired, (unsigned long)br);
1742 setup_timer(&br->ip6_own_query.timer, br_ip6_multicast_query_expired,
1743 (unsigned long)br);
1744#endif
1745}
1746
1747static void __br_multicast_open(struct net_bridge *br,
1748 struct bridge_mcast_own_query *query)
1749{
1750 query->startup_sent = 0;
1751
1752 if (br->multicast_disabled)
1753 return;
1754
1755 mod_timer(&query->timer, jiffies);
1756}
1757
1758void br_multicast_open(struct net_bridge *br)
1759{
1760 __br_multicast_open(br, &br->ip4_own_query);
1761#if IS_ENABLED(CONFIG_IPV6)
1762 __br_multicast_open(br, &br->ip6_own_query);
1763#endif
1764}
1765
1766void br_multicast_stop(struct net_bridge *br)
1767{
1768 del_timer_sync(&br->multicast_router_timer);
1769 del_timer_sync(&br->ip4_other_query.timer);
1770 del_timer_sync(&br->ip4_own_query.timer);
1771#if IS_ENABLED(CONFIG_IPV6)
1772 del_timer_sync(&br->ip6_other_query.timer);
1773 del_timer_sync(&br->ip6_own_query.timer);
1774#endif
1775}
1776
1777void br_multicast_dev_del(struct net_bridge *br)
1778{
1779 struct net_bridge_mdb_htable *mdb;
1780 struct net_bridge_mdb_entry *mp;
1781 struct hlist_node *n;
1782 u32 ver;
1783 int i;
1784
1785 spin_lock_bh(&br->multicast_lock);
1786 mdb = mlock_dereference(br->mdb, br);
1787 if (!mdb)
1788 goto out;
1789
1790 br->mdb = NULL;
1791
1792 ver = mdb->ver;
1793 for (i = 0; i < mdb->max; i++) {
1794 hlist_for_each_entry_safe(mp, n, &mdb->mhash[i],
1795 hlist[ver]) {
1796 del_timer(&mp->timer);
1797 call_rcu_bh(&mp->rcu, br_multicast_free_group);
1798 }
1799 }
1800
1801 if (mdb->old) {
1802 spin_unlock_bh(&br->multicast_lock);
1803 rcu_barrier_bh();
1804 spin_lock_bh(&br->multicast_lock);
1805 WARN_ON(mdb->old);
1806 }
1807
1808 mdb->old = mdb;
1809 call_rcu_bh(&mdb->rcu, br_mdb_free);
1810
1811out:
1812 spin_unlock_bh(&br->multicast_lock);
1813}
1814
1815int br_multicast_set_router(struct net_bridge *br, unsigned long val)
1816{
1817 int err = -EINVAL;
1818
1819 spin_lock_bh(&br->multicast_lock);
1820
1821 switch (val) {
1822 case 0:
1823 case 2:
1824 del_timer(&br->multicast_router_timer);
1825 /* fall through */
1826 case 1:
1827 br->multicast_router = val;
1828 err = 0;
1829 break;
1830 }
1831
1832 spin_unlock_bh(&br->multicast_lock);
1833
1834 return err;
1835}
1836
1837int br_multicast_set_port_router(struct net_bridge_port *p, unsigned long val)
1838{
1839 struct net_bridge *br = p->br;
1840 int err = -EINVAL;
1841
1842 spin_lock(&br->multicast_lock);
1843
1844 switch (val) {
1845 case 0:
1846 case 1:
1847 case 2:
1848 p->multicast_router = val;
1849 err = 0;
1850
1851 if (val < 2 && !hlist_unhashed(&p->rlist))
1852 hlist_del_init_rcu(&p->rlist);
1853
1854 if (val == 1)
1855 break;
1856
1857 del_timer(&p->multicast_router_timer);
1858
1859 if (val == 0)
1860 break;
1861
1862 br_multicast_add_router(br, p);
1863 break;
1864 }
1865
1866 spin_unlock(&br->multicast_lock);
1867
1868 return err;
1869}
1870
1871static void br_multicast_start_querier(struct net_bridge *br,
1872 struct bridge_mcast_own_query *query)
1873{
1874 struct net_bridge_port *port;
1875
1876 __br_multicast_open(br, query);
1877
1878 list_for_each_entry(port, &br->port_list, list) {
1879 if (port->state == BR_STATE_DISABLED ||
1880 port->state == BR_STATE_BLOCKING)
1881 continue;
1882
1883 if (query == &br->ip4_own_query)
1884 br_multicast_enable(&port->ip4_own_query);
1885#if IS_ENABLED(CONFIG_IPV6)
1886 else
1887 br_multicast_enable(&port->ip6_own_query);
1888#endif
1889 }
1890}
1891
1892int br_multicast_toggle(struct net_bridge *br, unsigned long val)
1893{
1894 int err = 0;
1895 struct net_bridge_mdb_htable *mdb;
1896
1897 spin_lock_bh(&br->multicast_lock);
1898 if (br->multicast_disabled == !val)
1899 goto unlock;
1900
1901 br->multicast_disabled = !val;
1902 if (br->multicast_disabled)
1903 goto unlock;
1904
1905 if (!netif_running(br->dev))
1906 goto unlock;
1907
1908 mdb = mlock_dereference(br->mdb, br);
1909 if (mdb) {
1910 if (mdb->old) {
1911 err = -EEXIST;
1912rollback:
1913 br->multicast_disabled = !!val;
1914 goto unlock;
1915 }
1916
1917 err = br_mdb_rehash(&br->mdb, mdb->max,
1918 br->hash_elasticity);
1919 if (err)
1920 goto rollback;
1921 }
1922
1923 br_multicast_start_querier(br, &br->ip4_own_query);
1924#if IS_ENABLED(CONFIG_IPV6)
1925 br_multicast_start_querier(br, &br->ip6_own_query);
1926#endif
1927
1928unlock:
1929 spin_unlock_bh(&br->multicast_lock);
1930
1931 return err;
1932}
1933
1934int br_multicast_set_querier(struct net_bridge *br, unsigned long val)
1935{
1936 unsigned long max_delay;
1937
1938 val = !!val;
1939
1940 spin_lock_bh(&br->multicast_lock);
1941 if (br->multicast_querier == val)
1942 goto unlock;
1943
1944 br->multicast_querier = val;
1945 if (!val)
1946 goto unlock;
1947
1948 max_delay = br->multicast_query_response_interval;
1949
1950 if (!timer_pending(&br->ip4_other_query.timer))
1951 br->ip4_other_query.delay_time = jiffies + max_delay;
1952
1953 br_multicast_start_querier(br, &br->ip4_own_query);
1954
1955#if IS_ENABLED(CONFIG_IPV6)
1956 if (!timer_pending(&br->ip6_other_query.timer))
1957 br->ip6_other_query.delay_time = jiffies + max_delay;
1958
1959 br_multicast_start_querier(br, &br->ip6_own_query);
1960#endif
1961
1962unlock:
1963 spin_unlock_bh(&br->multicast_lock);
1964
1965 return 0;
1966}
1967
1968int br_multicast_set_hash_max(struct net_bridge *br, unsigned long val)
1969{
1970 int err = -EINVAL;
1971 u32 old;
1972 struct net_bridge_mdb_htable *mdb;
1973
1974 spin_lock_bh(&br->multicast_lock);
1975 if (!is_power_of_2(val))
1976 goto unlock;
1977
1978 mdb = mlock_dereference(br->mdb, br);
1979 if (mdb && val < mdb->size)
1980 goto unlock;
1981
1982 err = 0;
1983
1984 old = br->hash_max;
1985 br->hash_max = val;
1986
1987 if (mdb) {
1988 if (mdb->old) {
1989 err = -EEXIST;
1990rollback:
1991 br->hash_max = old;
1992 goto unlock;
1993 }
1994
1995 err = br_mdb_rehash(&br->mdb, br->hash_max,
1996 br->hash_elasticity);
1997 if (err)
1998 goto rollback;
1999 }
2000
2001unlock:
2002 spin_unlock_bh(&br->multicast_lock);
2003
2004 return err;
2005}
2006
2007/**
2008 * br_multicast_list_adjacent - Returns snooped multicast addresses
2009 * @dev: The bridge port adjacent to which to retrieve addresses
2010 * @br_ip_list: The list to store found, snooped multicast IP addresses in
2011 *
2012 * Creates a list of IP addresses (struct br_ip_list) sensed by the multicast
2013 * snooping feature on all bridge ports of dev's bridge device, excluding
2014 * the addresses from dev itself.
2015 *
2016 * Returns the number of items added to br_ip_list.
2017 *
2018 * Notes:
2019 * - br_ip_list needs to be initialized by caller
2020 * - br_ip_list might contain duplicates in the end
2021 * (needs to be taken care of by caller)
2022 * - br_ip_list needs to be freed by caller
2023 */
2024int br_multicast_list_adjacent(struct net_device *dev,
2025 struct list_head *br_ip_list)
2026{
2027 struct net_bridge *br;
2028 struct net_bridge_port *port;
2029 struct net_bridge_port_group *group;
2030 struct br_ip_list *entry;
2031 int count = 0;
2032
2033 rcu_read_lock();
2034 if (!br_ip_list || !br_port_exists(dev))
2035 goto unlock;
2036
2037 port = br_port_get_rcu(dev);
2038 if (!port || !port->br)
2039 goto unlock;
2040
2041 br = port->br;
2042
2043 list_for_each_entry_rcu(port, &br->port_list, list) {
2044 if (!port->dev || port->dev == dev)
2045 continue;
2046
2047 hlist_for_each_entry_rcu(group, &port->mglist, mglist) {
2048 entry = kmalloc(sizeof(*entry), GFP_ATOMIC);
2049 if (!entry)
2050 goto unlock;
2051
2052 entry->addr = group->addr;
2053 list_add(&entry->list, br_ip_list);
2054 count++;
2055 }
2056 }
2057
2058unlock:
2059 rcu_read_unlock();
2060 return count;
2061}
2062EXPORT_SYMBOL_GPL(br_multicast_list_adjacent);
2063
2064/**
2065 * br_multicast_has_querier_anywhere - Checks for a querier on a bridge
2066 * @dev: The bridge port providing the bridge on which to check for a querier
2067 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
2068 *
2069 * Checks whether the given interface has a bridge on top and if so returns
2070 * true if a valid querier exists anywhere on the bridged link layer.
2071 * Otherwise returns false.
2072 */
2073bool br_multicast_has_querier_anywhere(struct net_device *dev, int proto)
2074{
2075 struct net_bridge *br;
2076 struct net_bridge_port *port;
2077 struct ethhdr eth;
2078 bool ret = false;
2079
2080 rcu_read_lock();
2081 if (!br_port_exists(dev))
2082 goto unlock;
2083
2084 port = br_port_get_rcu(dev);
2085 if (!port || !port->br)
2086 goto unlock;
2087
2088 br = port->br;
2089
2090 memset(&eth, 0, sizeof(eth));
2091 eth.h_proto = htons(proto);
2092
2093 ret = br_multicast_querier_exists(br, &eth);
2094
2095unlock:
2096 rcu_read_unlock();
2097 return ret;
2098}
2099EXPORT_SYMBOL_GPL(br_multicast_has_querier_anywhere);
2100
2101/**
2102 * br_multicast_has_querier_adjacent - Checks for a querier behind a bridge port
2103 * @dev: The bridge port adjacent to which to check for a querier
2104 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
2105 *
2106 * Checks whether the given interface has a bridge on top and if so returns
2107 * true if a selected querier is behind one of the other ports of this
2108 * bridge. Otherwise returns false.
2109 */
2110bool br_multicast_has_querier_adjacent(struct net_device *dev, int proto)
2111{
2112 struct net_bridge *br;
2113 struct net_bridge_port *port;
2114 bool ret = false;
2115
2116 rcu_read_lock();
2117 if (!br_port_exists(dev))
2118 goto unlock;
2119
2120 port = br_port_get_rcu(dev);
2121 if (!port || !port->br)
2122 goto unlock;
2123
2124 br = port->br;
2125
2126 switch (proto) {
2127 case ETH_P_IP:
2128 if (!timer_pending(&br->ip4_other_query.timer) ||
2129 rcu_dereference(br->ip4_querier.port) == port)
2130 goto unlock;
2131 break;
2132#if IS_ENABLED(CONFIG_IPV6)
2133 case ETH_P_IPV6:
2134 if (!timer_pending(&br->ip6_other_query.timer) ||
2135 rcu_dereference(br->ip6_querier.port) == port)
2136 goto unlock;
2137 break;
2138#endif
2139 default:
2140 goto unlock;
2141 }
2142
2143 ret = true;
2144unlock:
2145 rcu_read_unlock();
2146 return ret;
2147}
2148EXPORT_SYMBOL_GPL(br_multicast_has_querier_adjacent);
Mirror https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git