1 /*
2 * Bridge multicast support.
3 *
4 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
5 *
6 * This program is free software; you can redistribute it and/or modify it
7 * under the terms of the GNU General Public License as published by the Free
8 * Software Foundation; either version 2 of the License, or (at your option)
9 * any later version.
10 *
11 */
12
13 #include <linux/err.h>
14 #include <linux/export.h>
15 #include <linux/if_ether.h>
16 #include <linux/igmp.h>
17 #include <linux/jhash.h>
18 #include <linux/kernel.h>
19 #include <linux/log2.h>
20 #include <linux/netdevice.h>
21 #include <linux/netfilter_bridge.h>
22 #include <linux/random.h>
23 #include <linux/rculist.h>
24 #include <linux/skbuff.h>
25 #include <linux/slab.h>
26 #include <linux/timer.h>
27 #include <linux/inetdevice.h>
28 #include <net/ip.h>
29 #if IS_ENABLED(CONFIG_IPV6)
30 #include <net/ipv6.h>
31 #include <net/mld.h>
32 #include <net/ip6_checksum.h>
33 #include <net/addrconf.h>
34 #endif
35
36 #include "br_private.h"
37
38 static void br_multicast_start_querier(struct net_bridge *br,
39 struct bridge_mcast_own_query *query);
40 static void br_multicast_add_router(struct net_bridge *br,
41 struct net_bridge_port *port);
42 static void br_ip4_multicast_leave_group(struct net_bridge *br,
43 struct net_bridge_port *port,
44 __be32 group,
45 __u16 vid);
46 #if IS_ENABLED(CONFIG_IPV6)
47 static void br_ip6_multicast_leave_group(struct net_bridge *br,
48 struct net_bridge_port *port,
49 const struct in6_addr *group,
50 __u16 vid);
51 #endif
52 unsigned int br_mdb_rehash_seq;
53
br_ip_equal(const struct br_ip * a,const struct br_ip * b)54 static inline int br_ip_equal(const struct br_ip *a, const struct br_ip *b)
55 {
56 if (a->proto != b->proto)
57 return 0;
58 if (a->vid != b->vid)
59 return 0;
60 switch (a->proto) {
61 case htons(ETH_P_IP):
62 return a->u.ip4 == b->u.ip4;
63 #if IS_ENABLED(CONFIG_IPV6)
64 case htons(ETH_P_IPV6):
65 return ipv6_addr_equal(&a->u.ip6, &b->u.ip6);
66 #endif
67 }
68 return 0;
69 }
70
__br_ip4_hash(struct net_bridge_mdb_htable * mdb,__be32 ip,__u16 vid)71 static inline int __br_ip4_hash(struct net_bridge_mdb_htable *mdb, __be32 ip,
72 __u16 vid)
73 {
74 return jhash_2words((__force u32)ip, vid, mdb->secret) & (mdb->max - 1);
75 }
76
77 #if IS_ENABLED(CONFIG_IPV6)
__br_ip6_hash(struct net_bridge_mdb_htable * mdb,const struct in6_addr * ip,__u16 vid)78 static inline int __br_ip6_hash(struct net_bridge_mdb_htable *mdb,
79 const struct in6_addr *ip,
80 __u16 vid)
81 {
82 return jhash_2words(ipv6_addr_hash(ip), vid,
83 mdb->secret) & (mdb->max - 1);
84 }
85 #endif
86
br_ip_hash(struct net_bridge_mdb_htable * mdb,struct br_ip * ip)87 static inline int br_ip_hash(struct net_bridge_mdb_htable *mdb,
88 struct br_ip *ip)
89 {
90 switch (ip->proto) {
91 case htons(ETH_P_IP):
92 return __br_ip4_hash(mdb, ip->u.ip4, ip->vid);
93 #if IS_ENABLED(CONFIG_IPV6)
94 case htons(ETH_P_IPV6):
95 return __br_ip6_hash(mdb, &ip->u.ip6, ip->vid);
96 #endif
97 }
98 return 0;
99 }
100
__br_mdb_ip_get(struct net_bridge_mdb_htable * mdb,struct br_ip * dst,int hash)101 static struct net_bridge_mdb_entry *__br_mdb_ip_get(
102 struct net_bridge_mdb_htable *mdb, struct br_ip *dst, int hash)
103 {
104 struct net_bridge_mdb_entry *mp;
105
106 hlist_for_each_entry_rcu(mp, &mdb->mhash[hash], hlist[mdb->ver]) {
107 if (br_ip_equal(&mp->addr, dst))
108 return mp;
109 }
110
111 return NULL;
112 }
113
br_mdb_ip_get(struct net_bridge_mdb_htable * mdb,struct br_ip * dst)114 struct net_bridge_mdb_entry *br_mdb_ip_get(struct net_bridge_mdb_htable *mdb,
115 struct br_ip *dst)
116 {
117 if (!mdb)
118 return NULL;
119
120 return __br_mdb_ip_get(mdb, dst, br_ip_hash(mdb, dst));
121 }
122
br_mdb_ip4_get(struct net_bridge_mdb_htable * mdb,__be32 dst,__u16 vid)123 static struct net_bridge_mdb_entry *br_mdb_ip4_get(
124 struct net_bridge_mdb_htable *mdb, __be32 dst, __u16 vid)
125 {
126 struct br_ip br_dst;
127
128 br_dst.u.ip4 = dst;
129 br_dst.proto = htons(ETH_P_IP);
130 br_dst.vid = vid;
131
132 return br_mdb_ip_get(mdb, &br_dst);
133 }
134
135 #if IS_ENABLED(CONFIG_IPV6)
br_mdb_ip6_get(struct net_bridge_mdb_htable * mdb,const struct in6_addr * dst,__u16 vid)136 static struct net_bridge_mdb_entry *br_mdb_ip6_get(
137 struct net_bridge_mdb_htable *mdb, const struct in6_addr *dst,
138 __u16 vid)
139 {
140 struct br_ip br_dst;
141
142 br_dst.u.ip6 = *dst;
143 br_dst.proto = htons(ETH_P_IPV6);
144 br_dst.vid = vid;
145
146 return br_mdb_ip_get(mdb, &br_dst);
147 }
148 #endif
149
br_mdb_get(struct net_bridge * br,struct sk_buff * skb,u16 vid)150 struct net_bridge_mdb_entry *br_mdb_get(struct net_bridge *br,
151 struct sk_buff *skb, u16 vid)
152 {
153 struct net_bridge_mdb_htable *mdb = rcu_dereference(br->mdb);
154 struct br_ip ip;
155
156 if (br->multicast_disabled)
157 return NULL;
158
159 if (BR_INPUT_SKB_CB(skb)->igmp)
160 return NULL;
161
162 ip.proto = skb->protocol;
163 ip.vid = vid;
164
165 switch (skb->protocol) {
166 case htons(ETH_P_IP):
167 ip.u.ip4 = ip_hdr(skb)->daddr;
168 break;
169 #if IS_ENABLED(CONFIG_IPV6)
170 case htons(ETH_P_IPV6):
171 ip.u.ip6 = ipv6_hdr(skb)->daddr;
172 break;
173 #endif
174 default:
175 return NULL;
176 }
177
178 return br_mdb_ip_get(mdb, &ip);
179 }
180
br_mdb_free(struct rcu_head * head)181 static void br_mdb_free(struct rcu_head *head)
182 {
183 struct net_bridge_mdb_htable *mdb =
184 container_of(head, struct net_bridge_mdb_htable, rcu);
185 struct net_bridge_mdb_htable *old = mdb->old;
186
187 mdb->old = NULL;
188 kfree(old->mhash);
189 kfree(old);
190 }
191
br_mdb_copy(struct net_bridge_mdb_htable * new,struct net_bridge_mdb_htable * old,int elasticity)192 static int br_mdb_copy(struct net_bridge_mdb_htable *new,
193 struct net_bridge_mdb_htable *old,
194 int elasticity)
195 {
196 struct net_bridge_mdb_entry *mp;
197 int maxlen;
198 int len;
199 int i;
200
201 for (i = 0; i < old->max; i++)
202 hlist_for_each_entry(mp, &old->mhash[i], hlist[old->ver])
203 hlist_add_head(&mp->hlist[new->ver],
204 &new->mhash[br_ip_hash(new, &mp->addr)]);
205
206 if (!elasticity)
207 return 0;
208
209 maxlen = 0;
210 for (i = 0; i < new->max; i++) {
211 len = 0;
212 hlist_for_each_entry(mp, &new->mhash[i], hlist[new->ver])
213 len++;
214 if (len > maxlen)
215 maxlen = len;
216 }
217
218 return maxlen > elasticity ? -EINVAL : 0;
219 }
220
br_multicast_free_pg(struct rcu_head * head)221 void br_multicast_free_pg(struct rcu_head *head)
222 {
223 struct net_bridge_port_group *p =
224 container_of(head, struct net_bridge_port_group, rcu);
225
226 kfree(p);
227 }
228
br_multicast_free_group(struct rcu_head * head)229 static void br_multicast_free_group(struct rcu_head *head)
230 {
231 struct net_bridge_mdb_entry *mp =
232 container_of(head, struct net_bridge_mdb_entry, rcu);
233
234 kfree(mp);
235 }
236
br_multicast_group_expired(unsigned long data)237 static void br_multicast_group_expired(unsigned long data)
238 {
239 struct net_bridge_mdb_entry *mp = (void *)data;
240 struct net_bridge *br = mp->br;
241 struct net_bridge_mdb_htable *mdb;
242
243 spin_lock(&br->multicast_lock);
244 if (!netif_running(br->dev) || timer_pending(&mp->timer))
245 goto out;
246
247 mp->mglist = false;
248
249 if (mp->ports)
250 goto out;
251
252 mdb = mlock_dereference(br->mdb, br);
253
254 hlist_del_rcu(&mp->hlist[mdb->ver]);
255 mdb->size--;
256
257 call_rcu_bh(&mp->rcu, br_multicast_free_group);
258
259 out:
260 spin_unlock(&br->multicast_lock);
261 }
262
br_multicast_del_pg(struct net_bridge * br,struct net_bridge_port_group * pg)263 static void br_multicast_del_pg(struct net_bridge *br,
264 struct net_bridge_port_group *pg)
265 {
266 struct net_bridge_mdb_htable *mdb;
267 struct net_bridge_mdb_entry *mp;
268 struct net_bridge_port_group *p;
269 struct net_bridge_port_group __rcu **pp;
270
271 mdb = mlock_dereference(br->mdb, br);
272
273 mp = br_mdb_ip_get(mdb, &pg->addr);
274 if (WARN_ON(!mp))
275 return;
276
277 for (pp = &mp->ports;
278 (p = mlock_dereference(*pp, br)) != NULL;
279 pp = &p->next) {
280 if (p != pg)
281 continue;
282
283 rcu_assign_pointer(*pp, p->next);
284 hlist_del_init(&p->mglist);
285 del_timer(&p->timer);
286 br_mdb_notify(br->dev, p->port, &pg->addr, RTM_DELMDB,
287 p->state);
288 call_rcu_bh(&p->rcu, br_multicast_free_pg);
289
290 if (!mp->ports && !mp->mglist &&
291 netif_running(br->dev))
292 mod_timer(&mp->timer, jiffies);
293
294 return;
295 }
296
297 WARN_ON(1);
298 }
299
br_multicast_port_group_expired(unsigned long data)300 static void br_multicast_port_group_expired(unsigned long data)
301 {
302 struct net_bridge_port_group *pg = (void *)data;
303 struct net_bridge *br = pg->port->br;
304
305 spin_lock(&br->multicast_lock);
306 if (!netif_running(br->dev) || timer_pending(&pg->timer) ||
307 hlist_unhashed(&pg->mglist) || pg->state & MDB_PERMANENT)
308 goto out;
309
310 br_multicast_del_pg(br, pg);
311
312 out:
313 spin_unlock(&br->multicast_lock);
314 }
315
br_mdb_rehash(struct net_bridge_mdb_htable __rcu ** mdbp,int max,int elasticity)316 static int br_mdb_rehash(struct net_bridge_mdb_htable __rcu **mdbp, int max,
317 int elasticity)
318 {
319 struct net_bridge_mdb_htable *old = rcu_dereference_protected(*mdbp, 1);
320 struct net_bridge_mdb_htable *mdb;
321 int err;
322
323 mdb = kmalloc(sizeof(*mdb), GFP_ATOMIC);
324 if (!mdb)
325 return -ENOMEM;
326
327 mdb->max = max;
328 mdb->old = old;
329
330 mdb->mhash = kzalloc(max * sizeof(*mdb->mhash), GFP_ATOMIC);
331 if (!mdb->mhash) {
332 kfree(mdb);
333 return -ENOMEM;
334 }
335
336 mdb->size = old ? old->size : 0;
337 mdb->ver = old ? old->ver ^ 1 : 0;
338
339 if (!old || elasticity)
340 get_random_bytes(&mdb->secret, sizeof(mdb->secret));
341 else
342 mdb->secret = old->secret;
343
344 if (!old)
345 goto out;
346
347 err = br_mdb_copy(mdb, old, elasticity);
348 if (err) {
349 kfree(mdb->mhash);
350 kfree(mdb);
351 return err;
352 }
353
354 br_mdb_rehash_seq++;
355 call_rcu_bh(&mdb->rcu, br_mdb_free);
356
357 out:
358 rcu_assign_pointer(*mdbp, mdb);
359
360 return 0;
361 }
362
br_ip4_multicast_alloc_query(struct net_bridge * br,__be32 group)363 static struct sk_buff *br_ip4_multicast_alloc_query(struct net_bridge *br,
364 __be32 group)
365 {
366 struct sk_buff *skb;
367 struct igmphdr *ih;
368 struct ethhdr *eth;
369 struct iphdr *iph;
370
371 skb = netdev_alloc_skb_ip_align(br->dev, sizeof(*eth) + sizeof(*iph) +
372 sizeof(*ih) + 4);
373 if (!skb)
374 goto out;
375
376 skb->protocol = htons(ETH_P_IP);
377
378 skb_reset_mac_header(skb);
379 eth = eth_hdr(skb);
380
381 ether_addr_copy(eth->h_source, br->dev->dev_addr);
382 eth->h_dest[0] = 1;
383 eth->h_dest[1] = 0;
384 eth->h_dest[2] = 0x5e;
385 eth->h_dest[3] = 0;
386 eth->h_dest[4] = 0;
387 eth->h_dest[5] = 1;
388 eth->h_proto = htons(ETH_P_IP);
389 skb_put(skb, sizeof(*eth));
390
391 skb_set_network_header(skb, skb->len);
392 iph = ip_hdr(skb);
393
394 iph->version = 4;
395 iph->ihl = 6;
396 iph->tos = 0xc0;
397 iph->tot_len = htons(sizeof(*iph) + sizeof(*ih) + 4);
398 iph->id = 0;
399 iph->frag_off = htons(IP_DF);
400 iph->ttl = 1;
401 iph->protocol = IPPROTO_IGMP;
402 iph->saddr = br->multicast_query_use_ifaddr ?
403 inet_select_addr(br->dev, 0, RT_SCOPE_LINK) : 0;
404 iph->daddr = htonl(INADDR_ALLHOSTS_GROUP);
405 ((u8 *)&iph[1])[0] = IPOPT_RA;
406 ((u8 *)&iph[1])[1] = 4;
407 ((u8 *)&iph[1])[2] = 0;
408 ((u8 *)&iph[1])[3] = 0;
409 ip_send_check(iph);
410 skb_put(skb, 24);
411
412 skb_set_transport_header(skb, skb->len);
413 ih = igmp_hdr(skb);
414 ih->type = IGMP_HOST_MEMBERSHIP_QUERY;
415 ih->code = (group ? br->multicast_last_member_interval :
416 br->multicast_query_response_interval) /
417 (HZ / IGMP_TIMER_SCALE);
418 ih->group = group;
419 ih->csum = 0;
420 ih->csum = ip_compute_csum((void *)ih, sizeof(struct igmphdr));
421 skb_put(skb, sizeof(*ih));
422
423 __skb_pull(skb, sizeof(*eth));
424
425 out:
426 return skb;
427 }
428
429 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_alloc_query(struct net_bridge * br,const struct in6_addr * group)430 static struct sk_buff *br_ip6_multicast_alloc_query(struct net_bridge *br,
431 const struct in6_addr *group)
432 {
433 struct sk_buff *skb;
434 struct ipv6hdr *ip6h;
435 struct mld_msg *mldq;
436 struct ethhdr *eth;
437 u8 *hopopt;
438 unsigned long interval;
439
440 skb = netdev_alloc_skb_ip_align(br->dev, sizeof(*eth) + sizeof(*ip6h) +
441 8 + sizeof(*mldq));
442 if (!skb)
443 goto out;
444
445 skb->protocol = htons(ETH_P_IPV6);
446
447 /* Ethernet header */
448 skb_reset_mac_header(skb);
449 eth = eth_hdr(skb);
450
451 ether_addr_copy(eth->h_source, br->dev->dev_addr);
452 eth->h_proto = htons(ETH_P_IPV6);
453 skb_put(skb, sizeof(*eth));
454
455 /* IPv6 header + HbH option */
456 skb_set_network_header(skb, skb->len);
457 ip6h = ipv6_hdr(skb);
458
459 *(__force __be32 *)ip6h = htonl(0x60000000);
460 ip6h->payload_len = htons(8 + sizeof(*mldq));
461 ip6h->nexthdr = IPPROTO_HOPOPTS;
462 ip6h->hop_limit = 1;
463 ipv6_addr_set(&ip6h->daddr, htonl(0xff020000), 0, 0, htonl(1));
464 if (ipv6_dev_get_saddr(dev_net(br->dev), br->dev, &ip6h->daddr, 0,
465 &ip6h->saddr)) {
466 kfree_skb(skb);
467 br->has_ipv6_addr = 0;
468 return NULL;
469 }
470
471 br->has_ipv6_addr = 1;
472 ipv6_eth_mc_map(&ip6h->daddr, eth->h_dest);
473
474 hopopt = (u8 *)(ip6h + 1);
475 hopopt[0] = IPPROTO_ICMPV6; /* next hdr */
476 hopopt[1] = 0; /* length of HbH */
477 hopopt[2] = IPV6_TLV_ROUTERALERT; /* Router Alert */
478 hopopt[3] = 2; /* Length of RA Option */
479 hopopt[4] = 0; /* Type = 0x0000 (MLD) */
480 hopopt[5] = 0;
481 hopopt[6] = IPV6_TLV_PAD1; /* Pad1 */
482 hopopt[7] = IPV6_TLV_PAD1; /* Pad1 */
483
484 skb_put(skb, sizeof(*ip6h) + 8);
485
486 /* ICMPv6 */
487 skb_set_transport_header(skb, skb->len);
488 mldq = (struct mld_msg *) icmp6_hdr(skb);
489
490 interval = ipv6_addr_any(group) ?
491 br->multicast_query_response_interval :
492 br->multicast_last_member_interval;
493
494 mldq->mld_type = ICMPV6_MGM_QUERY;
495 mldq->mld_code = 0;
496 mldq->mld_cksum = 0;
497 mldq->mld_maxdelay = htons((u16)jiffies_to_msecs(interval));
498 mldq->mld_reserved = 0;
499 mldq->mld_mca = *group;
500
501 /* checksum */
502 mldq->mld_cksum = csum_ipv6_magic(&ip6h->saddr, &ip6h->daddr,
503 sizeof(*mldq), IPPROTO_ICMPV6,
504 csum_partial(mldq,
505 sizeof(*mldq), 0));
506 skb_put(skb, sizeof(*mldq));
507
508 __skb_pull(skb, sizeof(*eth));
509
510 out:
511 return skb;
512 }
513 #endif
514
br_multicast_alloc_query(struct net_bridge * br,struct br_ip * addr)515 static struct sk_buff *br_multicast_alloc_query(struct net_bridge *br,
516 struct br_ip *addr)
517 {
518 switch (addr->proto) {
519 case htons(ETH_P_IP):
520 return br_ip4_multicast_alloc_query(br, addr->u.ip4);
521 #if IS_ENABLED(CONFIG_IPV6)
522 case htons(ETH_P_IPV6):
523 return br_ip6_multicast_alloc_query(br, &addr->u.ip6);
524 #endif
525 }
526 return NULL;
527 }
528
br_multicast_get_group(struct net_bridge * br,struct net_bridge_port * port,struct br_ip * group,int hash)529 static struct net_bridge_mdb_entry *br_multicast_get_group(
530 struct net_bridge *br, struct net_bridge_port *port,
531 struct br_ip *group, int hash)
532 {
533 struct net_bridge_mdb_htable *mdb;
534 struct net_bridge_mdb_entry *mp;
535 unsigned int count = 0;
536 unsigned int max;
537 int elasticity;
538 int err;
539
540 mdb = rcu_dereference_protected(br->mdb, 1);
541 hlist_for_each_entry(mp, &mdb->mhash[hash], hlist[mdb->ver]) {
542 count++;
543 if (unlikely(br_ip_equal(group, &mp->addr)))
544 return mp;
545 }
546
547 elasticity = 0;
548 max = mdb->max;
549
550 if (unlikely(count > br->hash_elasticity && count)) {
551 if (net_ratelimit())
552 br_info(br, "Multicast hash table "
553 "chain limit reached: %s\n",
554 port ? port->dev->name : br->dev->name);
555
556 elasticity = br->hash_elasticity;
557 }
558
559 if (mdb->size >= max) {
560 max *= 2;
561 if (unlikely(max > br->hash_max)) {
562 br_warn(br, "Multicast hash table maximum of %d "
563 "reached, disabling snooping: %s\n",
564 br->hash_max,
565 port ? port->dev->name : br->dev->name);
566 err = -E2BIG;
567 disable:
568 br->multicast_disabled = 1;
569 goto err;
570 }
571 }
572
573 if (max > mdb->max || elasticity) {
574 if (mdb->old) {
575 if (net_ratelimit())
576 br_info(br, "Multicast hash table "
577 "on fire: %s\n",
578 port ? port->dev->name : br->dev->name);
579 err = -EEXIST;
580 goto err;
581 }
582
583 err = br_mdb_rehash(&br->mdb, max, elasticity);
584 if (err) {
585 br_warn(br, "Cannot rehash multicast "
586 "hash table, disabling snooping: %s, %d, %d\n",
587 port ? port->dev->name : br->dev->name,
588 mdb->size, err);
589 goto disable;
590 }
591
592 err = -EAGAIN;
593 goto err;
594 }
595
596 return NULL;
597
598 err:
599 mp = ERR_PTR(err);
600 return mp;
601 }
602
br_multicast_new_group(struct net_bridge * br,struct net_bridge_port * port,struct br_ip * group)603 struct net_bridge_mdb_entry *br_multicast_new_group(struct net_bridge *br,
604 struct net_bridge_port *port, struct br_ip *group)
605 {
606 struct net_bridge_mdb_htable *mdb;
607 struct net_bridge_mdb_entry *mp;
608 int hash;
609 int err;
610
611 mdb = rcu_dereference_protected(br->mdb, 1);
612 if (!mdb) {
613 err = br_mdb_rehash(&br->mdb, BR_HASH_SIZE, 0);
614 if (err)
615 return ERR_PTR(err);
616 goto rehash;
617 }
618
619 hash = br_ip_hash(mdb, group);
620 mp = br_multicast_get_group(br, port, group, hash);
621 switch (PTR_ERR(mp)) {
622 case 0:
623 break;
624
625 case -EAGAIN:
626 rehash:
627 mdb = rcu_dereference_protected(br->mdb, 1);
628 hash = br_ip_hash(mdb, group);
629 break;
630
631 default:
632 goto out;
633 }
634
635 mp = kzalloc(sizeof(*mp), GFP_ATOMIC);
636 if (unlikely(!mp))
637 return ERR_PTR(-ENOMEM);
638
639 mp->br = br;
640 mp->addr = *group;
641 setup_timer(&mp->timer, br_multicast_group_expired,
642 (unsigned long)mp);
643
644 hlist_add_head_rcu(&mp->hlist[mdb->ver], &mdb->mhash[hash]);
645 mdb->size++;
646
647 out:
648 return mp;
649 }
650
br_multicast_new_port_group(struct net_bridge_port * port,struct br_ip * group,struct net_bridge_port_group __rcu * next,unsigned char state)651 struct net_bridge_port_group *br_multicast_new_port_group(
652 struct net_bridge_port *port,
653 struct br_ip *group,
654 struct net_bridge_port_group __rcu *next,
655 unsigned char state)
656 {
657 struct net_bridge_port_group *p;
658
659 p = kzalloc(sizeof(*p), GFP_ATOMIC);
660 if (unlikely(!p))
661 return NULL;
662
663 p->addr = *group;
664 p->port = port;
665 p->state = state;
666 rcu_assign_pointer(p->next, next);
667 hlist_add_head(&p->mglist, &port->mglist);
668 setup_timer(&p->timer, br_multicast_port_group_expired,
669 (unsigned long)p);
670 return p;
671 }
672
br_multicast_add_group(struct net_bridge * br,struct net_bridge_port * port,struct br_ip * group)673 static int br_multicast_add_group(struct net_bridge *br,
674 struct net_bridge_port *port,
675 struct br_ip *group)
676 {
677 struct net_bridge_mdb_entry *mp;
678 struct net_bridge_port_group *p;
679 struct net_bridge_port_group __rcu **pp;
680 unsigned long now = jiffies;
681 int err;
682
683 spin_lock(&br->multicast_lock);
684 if (!netif_running(br->dev) ||
685 (port && port->state == BR_STATE_DISABLED))
686 goto out;
687
688 mp = br_multicast_new_group(br, port, group);
689 err = PTR_ERR(mp);
690 if (IS_ERR(mp))
691 goto err;
692
693 if (!port) {
694 mp->mglist = true;
695 mod_timer(&mp->timer, now + br->multicast_membership_interval);
696 goto out;
697 }
698
699 for (pp = &mp->ports;
700 (p = mlock_dereference(*pp, br)) != NULL;
701 pp = &p->next) {
702 if (p->port == port)
703 goto found;
704 if ((unsigned long)p->port < (unsigned long)port)
705 break;
706 }
707
708 p = br_multicast_new_port_group(port, group, *pp, MDB_TEMPORARY);
709 if (unlikely(!p))
710 goto err;
711 rcu_assign_pointer(*pp, p);
712 br_mdb_notify(br->dev, port, group, RTM_NEWMDB, MDB_TEMPORARY);
713
714 found:
715 mod_timer(&p->timer, now + br->multicast_membership_interval);
716 out:
717 err = 0;
718
719 err:
720 spin_unlock(&br->multicast_lock);
721 return err;
722 }
723
br_ip4_multicast_add_group(struct net_bridge * br,struct net_bridge_port * port,__be32 group,__u16 vid)724 static int br_ip4_multicast_add_group(struct net_bridge *br,
725 struct net_bridge_port *port,
726 __be32 group,
727 __u16 vid)
728 {
729 struct br_ip br_group;
730
731 if (ipv4_is_local_multicast(group))
732 return 0;
733
734 br_group.u.ip4 = group;
735 br_group.proto = htons(ETH_P_IP);
736 br_group.vid = vid;
737
738 return br_multicast_add_group(br, port, &br_group);
739 }
740
741 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_add_group(struct net_bridge * br,struct net_bridge_port * port,const struct in6_addr * group,__u16 vid)742 static int br_ip6_multicast_add_group(struct net_bridge *br,
743 struct net_bridge_port *port,
744 const struct in6_addr *group,
745 __u16 vid)
746 {
747 struct br_ip br_group;
748
749 if (ipv6_addr_is_ll_all_nodes(group))
750 return 0;
751
752 br_group.u.ip6 = *group;
753 br_group.proto = htons(ETH_P_IPV6);
754 br_group.vid = vid;
755
756 return br_multicast_add_group(br, port, &br_group);
757 }
758 #endif
759
br_multicast_router_expired(unsigned long data)760 static void br_multicast_router_expired(unsigned long data)
761 {
762 struct net_bridge_port *port = (void *)data;
763 struct net_bridge *br = port->br;
764
765 spin_lock(&br->multicast_lock);
766 if (port->multicast_router != 1 ||
767 timer_pending(&port->multicast_router_timer) ||
768 hlist_unhashed(&port->rlist))
769 goto out;
770
771 hlist_del_init_rcu(&port->rlist);
772 br_rtr_notify(br->dev, port, RTM_DELMDB);
773
774 out:
775 spin_unlock(&br->multicast_lock);
776 }
777
br_multicast_local_router_expired(unsigned long data)778 static void br_multicast_local_router_expired(unsigned long data)
779 {
780 }
781
br_multicast_querier_expired(struct net_bridge * br,struct bridge_mcast_own_query * query)782 static void br_multicast_querier_expired(struct net_bridge *br,
783 struct bridge_mcast_own_query *query)
784 {
785 spin_lock(&br->multicast_lock);
786 if (!netif_running(br->dev) || br->multicast_disabled)
787 goto out;
788
789 br_multicast_start_querier(br, query);
790
791 out:
792 spin_unlock(&br->multicast_lock);
793 }
794
br_ip4_multicast_querier_expired(unsigned long data)795 static void br_ip4_multicast_querier_expired(unsigned long data)
796 {
797 struct net_bridge *br = (void *)data;
798
799 br_multicast_querier_expired(br, &br->ip4_own_query);
800 }
801
802 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_querier_expired(unsigned long data)803 static void br_ip6_multicast_querier_expired(unsigned long data)
804 {
805 struct net_bridge *br = (void *)data;
806
807 br_multicast_querier_expired(br, &br->ip6_own_query);
808 }
809 #endif
810
br_multicast_select_own_querier(struct net_bridge * br,struct br_ip * ip,struct sk_buff * skb)811 static void br_multicast_select_own_querier(struct net_bridge *br,
812 struct br_ip *ip,
813 struct sk_buff *skb)
814 {
815 if (ip->proto == htons(ETH_P_IP))
816 br->ip4_querier.addr.u.ip4 = ip_hdr(skb)->saddr;
817 #if IS_ENABLED(CONFIG_IPV6)
818 else
819 br->ip6_querier.addr.u.ip6 = ipv6_hdr(skb)->saddr;
820 #endif
821 }
822
__br_multicast_send_query(struct net_bridge * br,struct net_bridge_port * port,struct br_ip * ip)823 static void __br_multicast_send_query(struct net_bridge *br,
824 struct net_bridge_port *port,
825 struct br_ip *ip)
826 {
827 struct sk_buff *skb;
828
829 skb = br_multicast_alloc_query(br, ip);
830 if (!skb)
831 return;
832
833 if (port) {
834 skb->dev = port->dev;
835 NF_HOOK(NFPROTO_BRIDGE, NF_BR_LOCAL_OUT,
836 dev_net(port->dev), NULL, skb, NULL, skb->dev,
837 br_dev_queue_push_xmit);
838 } else {
839 br_multicast_select_own_querier(br, ip, skb);
840 netif_rx(skb);
841 }
842 }
843
br_multicast_send_query(struct net_bridge * br,struct net_bridge_port * port,struct bridge_mcast_own_query * own_query)844 static void br_multicast_send_query(struct net_bridge *br,
845 struct net_bridge_port *port,
846 struct bridge_mcast_own_query *own_query)
847 {
848 unsigned long time;
849 struct br_ip br_group;
850 struct bridge_mcast_other_query *other_query = NULL;
851
852 if (!netif_running(br->dev) || br->multicast_disabled ||
853 !br->multicast_querier)
854 return;
855
856 memset(&br_group.u, 0, sizeof(br_group.u));
857
858 if (port ? (own_query == &port->ip4_own_query) :
859 (own_query == &br->ip4_own_query)) {
860 other_query = &br->ip4_other_query;
861 br_group.proto = htons(ETH_P_IP);
862 #if IS_ENABLED(CONFIG_IPV6)
863 } else {
864 other_query = &br->ip6_other_query;
865 br_group.proto = htons(ETH_P_IPV6);
866 #endif
867 }
868
869 if (!other_query || timer_pending(&other_query->timer))
870 return;
871
872 __br_multicast_send_query(br, port, &br_group);
873
874 time = jiffies;
875 time += own_query->startup_sent < br->multicast_startup_query_count ?
876 br->multicast_startup_query_interval :
877 br->multicast_query_interval;
878 mod_timer(&own_query->timer, time);
879 }
880
881 static void
br_multicast_port_query_expired(struct net_bridge_port * port,struct bridge_mcast_own_query * query)882 br_multicast_port_query_expired(struct net_bridge_port *port,
883 struct bridge_mcast_own_query *query)
884 {
885 struct net_bridge *br = port->br;
886
887 spin_lock(&br->multicast_lock);
888 if (port->state == BR_STATE_DISABLED ||
889 port->state == BR_STATE_BLOCKING)
890 goto out;
891
892 if (query->startup_sent < br->multicast_startup_query_count)
893 query->startup_sent++;
894
895 br_multicast_send_query(port->br, port, query);
896
897 out:
898 spin_unlock(&br->multicast_lock);
899 }
900
br_ip4_multicast_port_query_expired(unsigned long data)901 static void br_ip4_multicast_port_query_expired(unsigned long data)
902 {
903 struct net_bridge_port *port = (void *)data;
904
905 br_multicast_port_query_expired(port, &port->ip4_own_query);
906 }
907
908 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_port_query_expired(unsigned long data)909 static void br_ip6_multicast_port_query_expired(unsigned long data)
910 {
911 struct net_bridge_port *port = (void *)data;
912
913 br_multicast_port_query_expired(port, &port->ip6_own_query);
914 }
915 #endif
916
br_multicast_add_port(struct net_bridge_port * port)917 void br_multicast_add_port(struct net_bridge_port *port)
918 {
919 port->multicast_router = 1;
920
921 setup_timer(&port->multicast_router_timer, br_multicast_router_expired,
922 (unsigned long)port);
923 setup_timer(&port->ip4_own_query.timer,
924 br_ip4_multicast_port_query_expired, (unsigned long)port);
925 #if IS_ENABLED(CONFIG_IPV6)
926 setup_timer(&port->ip6_own_query.timer,
927 br_ip6_multicast_port_query_expired, (unsigned long)port);
928 #endif
929 }
930
br_multicast_del_port(struct net_bridge_port * port)931 void br_multicast_del_port(struct net_bridge_port *port)
932 {
933 struct net_bridge *br = port->br;
934 struct net_bridge_port_group *pg;
935 struct hlist_node *n;
936
937 /* Take care of the remaining groups, only perm ones should be left */
938 spin_lock_bh(&br->multicast_lock);
939 hlist_for_each_entry_safe(pg, n, &port->mglist, mglist)
940 br_multicast_del_pg(br, pg);
941 spin_unlock_bh(&br->multicast_lock);
942 del_timer_sync(&port->multicast_router_timer);
943 }
944
br_multicast_enable(struct bridge_mcast_own_query * query)945 static void br_multicast_enable(struct bridge_mcast_own_query *query)
946 {
947 query->startup_sent = 0;
948
949 if (try_to_del_timer_sync(&query->timer) >= 0 ||
950 del_timer(&query->timer))
951 mod_timer(&query->timer, jiffies);
952 }
953
__br_multicast_enable_port(struct net_bridge_port * port)954 static void __br_multicast_enable_port(struct net_bridge_port *port)
955 {
956 struct net_bridge *br = port->br;
957
958 if (br->multicast_disabled || !netif_running(br->dev))
959 return;
960
961 br_multicast_enable(&port->ip4_own_query);
962 #if IS_ENABLED(CONFIG_IPV6)
963 br_multicast_enable(&port->ip6_own_query);
964 #endif
965 if (port->multicast_router == 2 && hlist_unhashed(&port->rlist))
966 br_multicast_add_router(br, port);
967 }
968
br_multicast_enable_port(struct net_bridge_port * port)969 void br_multicast_enable_port(struct net_bridge_port *port)
970 {
971 struct net_bridge *br = port->br;
972
973 spin_lock(&br->multicast_lock);
974 __br_multicast_enable_port(port);
975 spin_unlock(&br->multicast_lock);
976 }
977
br_multicast_disable_port(struct net_bridge_port * port)978 void br_multicast_disable_port(struct net_bridge_port *port)
979 {
980 struct net_bridge *br = port->br;
981 struct net_bridge_port_group *pg;
982 struct hlist_node *n;
983
984 spin_lock(&br->multicast_lock);
985 hlist_for_each_entry_safe(pg, n, &port->mglist, mglist)
986 if (pg->state == MDB_TEMPORARY)
987 br_multicast_del_pg(br, pg);
988
989 if (!hlist_unhashed(&port->rlist)) {
990 hlist_del_init_rcu(&port->rlist);
991 br_rtr_notify(br->dev, port, RTM_DELMDB);
992 }
993 del_timer(&port->multicast_router_timer);
994 del_timer(&port->ip4_own_query.timer);
995 #if IS_ENABLED(CONFIG_IPV6)
996 del_timer(&port->ip6_own_query.timer);
997 #endif
998 spin_unlock(&br->multicast_lock);
999 }
1000
br_ip4_multicast_igmp3_report(struct net_bridge * br,struct net_bridge_port * port,struct sk_buff * skb,u16 vid)1001 static int br_ip4_multicast_igmp3_report(struct net_bridge *br,
1002 struct net_bridge_port *port,
1003 struct sk_buff *skb,
1004 u16 vid)
1005 {
1006 struct igmpv3_report *ih;
1007 struct igmpv3_grec *grec;
1008 int i;
1009 int len;
1010 int num;
1011 int type;
1012 int err = 0;
1013 __be32 group;
1014 u16 nsrcs;
1015
1016 ih = igmpv3_report_hdr(skb);
1017 num = ntohs(ih->ngrec);
1018 len = skb_transport_offset(skb) + sizeof(*ih);
1019
1020 for (i = 0; i < num; i++) {
1021 len += sizeof(*grec);
1022 if (!pskb_may_pull(skb, len))
1023 return -EINVAL;
1024
1025 grec = (void *)(skb->data + len - sizeof(*grec));
1026 group = grec->grec_mca;
1027 type = grec->grec_type;
1028 nsrcs = ntohs(grec->grec_nsrcs);
1029
1030 len += nsrcs * 4;
1031 if (!pskb_may_pull(skb, len))
1032 return -EINVAL;
1033
1034 /* We treat this as an IGMPv2 report for now. */
1035 switch (type) {
1036 case IGMPV3_MODE_IS_INCLUDE:
1037 case IGMPV3_MODE_IS_EXCLUDE:
1038 case IGMPV3_CHANGE_TO_INCLUDE:
1039 case IGMPV3_CHANGE_TO_EXCLUDE:
1040 case IGMPV3_ALLOW_NEW_SOURCES:
1041 case IGMPV3_BLOCK_OLD_SOURCES:
1042 break;
1043
1044 default:
1045 continue;
1046 }
1047
1048 if ((type == IGMPV3_CHANGE_TO_INCLUDE ||
1049 type == IGMPV3_MODE_IS_INCLUDE) &&
1050 nsrcs == 0) {
1051 br_ip4_multicast_leave_group(br, port, group, vid);
1052 } else {
1053 err = br_ip4_multicast_add_group(br, port, group, vid);
1054 if (err)
1055 break;
1056 }
1057 }
1058
1059 return err;
1060 }
1061
1062 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_mld2_report(struct net_bridge * br,struct net_bridge_port * port,struct sk_buff * skb,u16 vid)1063 static int br_ip6_multicast_mld2_report(struct net_bridge *br,
1064 struct net_bridge_port *port,
1065 struct sk_buff *skb,
1066 u16 vid)
1067 {
1068 struct icmp6hdr *icmp6h;
1069 struct mld2_grec *grec;
1070 int i;
1071 int len;
1072 int num;
1073 int err = 0;
1074
1075 if (!pskb_may_pull(skb, sizeof(*icmp6h)))
1076 return -EINVAL;
1077
1078 icmp6h = icmp6_hdr(skb);
1079 num = ntohs(icmp6h->icmp6_dataun.un_data16[1]);
1080 len = skb_transport_offset(skb) + sizeof(*icmp6h);
1081
1082 for (i = 0; i < num; i++) {
1083 __be16 *_nsrcs, __nsrcs;
1084 u16 nsrcs;
1085
1086 _nsrcs = skb_header_pointer(skb,
1087 len + offsetof(struct mld2_grec,
1088 grec_nsrcs),
1089 sizeof(__nsrcs), &__nsrcs);
1090 if (!_nsrcs)
1091 return -EINVAL;
1092
1093 nsrcs = ntohs(*_nsrcs);
1094
1095 if (!pskb_may_pull(skb,
1096 len + sizeof(*grec) +
1097 sizeof(struct in6_addr) * nsrcs))
1098 return -EINVAL;
1099
1100 grec = (struct mld2_grec *)(skb->data + len);
1101 len += sizeof(*grec) +
1102 sizeof(struct in6_addr) * nsrcs;
1103
1104 /* We treat these as MLDv1 reports for now. */
1105 switch (grec->grec_type) {
1106 case MLD2_MODE_IS_INCLUDE:
1107 case MLD2_MODE_IS_EXCLUDE:
1108 case MLD2_CHANGE_TO_INCLUDE:
1109 case MLD2_CHANGE_TO_EXCLUDE:
1110 case MLD2_ALLOW_NEW_SOURCES:
1111 case MLD2_BLOCK_OLD_SOURCES:
1112 break;
1113
1114 default:
1115 continue;
1116 }
1117
1118 if ((grec->grec_type == MLD2_CHANGE_TO_INCLUDE ||
1119 grec->grec_type == MLD2_MODE_IS_INCLUDE) &&
1120 nsrcs == 0) {
1121 br_ip6_multicast_leave_group(br, port, &grec->grec_mca,
1122 vid);
1123 } else {
1124 err = br_ip6_multicast_add_group(br, port,
1125 &grec->grec_mca, vid);
1126 if (err)
1127 break;
1128 }
1129 }
1130
1131 return err;
1132 }
1133 #endif
1134
br_ip4_multicast_select_querier(struct net_bridge * br,struct net_bridge_port * port,__be32 saddr)1135 static bool br_ip4_multicast_select_querier(struct net_bridge *br,
1136 struct net_bridge_port *port,
1137 __be32 saddr)
1138 {
1139 if (!timer_pending(&br->ip4_own_query.timer) &&
1140 !timer_pending(&br->ip4_other_query.timer))
1141 goto update;
1142
1143 if (!br->ip4_querier.addr.u.ip4)
1144 goto update;
1145
1146 if (ntohl(saddr) <= ntohl(br->ip4_querier.addr.u.ip4))
1147 goto update;
1148
1149 return false;
1150
1151 update:
1152 br->ip4_querier.addr.u.ip4 = saddr;
1153
1154 /* update protected by general multicast_lock by caller */
1155 rcu_assign_pointer(br->ip4_querier.port, port);
1156
1157 return true;
1158 }
1159
1160 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_select_querier(struct net_bridge * br,struct net_bridge_port * port,struct in6_addr * saddr)1161 static bool br_ip6_multicast_select_querier(struct net_bridge *br,
1162 struct net_bridge_port *port,
1163 struct in6_addr *saddr)
1164 {
1165 if (!timer_pending(&br->ip6_own_query.timer) &&
1166 !timer_pending(&br->ip6_other_query.timer))
1167 goto update;
1168
1169 if (ipv6_addr_cmp(saddr, &br->ip6_querier.addr.u.ip6) <= 0)
1170 goto update;
1171
1172 return false;
1173
1174 update:
1175 br->ip6_querier.addr.u.ip6 = *saddr;
1176
1177 /* update protected by general multicast_lock by caller */
1178 rcu_assign_pointer(br->ip6_querier.port, port);
1179
1180 return true;
1181 }
1182 #endif
1183
br_multicast_select_querier(struct net_bridge * br,struct net_bridge_port * port,struct br_ip * saddr)1184 static bool br_multicast_select_querier(struct net_bridge *br,
1185 struct net_bridge_port *port,
1186 struct br_ip *saddr)
1187 {
1188 switch (saddr->proto) {
1189 case htons(ETH_P_IP):
1190 return br_ip4_multicast_select_querier(br, port, saddr->u.ip4);
1191 #if IS_ENABLED(CONFIG_IPV6)
1192 case htons(ETH_P_IPV6):
1193 return br_ip6_multicast_select_querier(br, port, &saddr->u.ip6);
1194 #endif
1195 }
1196
1197 return false;
1198 }
1199
1200 static void
br_multicast_update_query_timer(struct net_bridge * br,struct bridge_mcast_other_query * query,unsigned long max_delay)1201 br_multicast_update_query_timer(struct net_bridge *br,
1202 struct bridge_mcast_other_query *query,
1203 unsigned long max_delay)
1204 {
1205 if (!timer_pending(&query->timer))
1206 query->delay_time = jiffies + max_delay;
1207
1208 mod_timer(&query->timer, jiffies + br->multicast_querier_interval);
1209 }
1210
1211 /*
1212 * Add port to router_list
1213 * list is maintained ordered by pointer value
1214 * and locked by br->multicast_lock and RCU
1215 */
br_multicast_add_router(struct net_bridge * br,struct net_bridge_port * port)1216 static void br_multicast_add_router(struct net_bridge *br,
1217 struct net_bridge_port *port)
1218 {
1219 struct net_bridge_port *p;
1220 struct hlist_node *slot = NULL;
1221
1222 if (!hlist_unhashed(&port->rlist))
1223 return;
1224
1225 hlist_for_each_entry(p, &br->router_list, rlist) {
1226 if ((unsigned long) port >= (unsigned long) p)
1227 break;
1228 slot = &p->rlist;
1229 }
1230
1231 if (slot)
1232 hlist_add_behind_rcu(&port->rlist, slot);
1233 else
1234 hlist_add_head_rcu(&port->rlist, &br->router_list);
1235 br_rtr_notify(br->dev, port, RTM_NEWMDB);
1236 }
1237
br_multicast_mark_router(struct net_bridge * br,struct net_bridge_port * port)1238 static void br_multicast_mark_router(struct net_bridge *br,
1239 struct net_bridge_port *port)
1240 {
1241 unsigned long now = jiffies;
1242
1243 if (!port) {
1244 if (br->multicast_router == 1)
1245 mod_timer(&br->multicast_router_timer,
1246 now + br->multicast_querier_interval);
1247 return;
1248 }
1249
1250 if (port->multicast_router != 1)
1251 return;
1252
1253 br_multicast_add_router(br, port);
1254
1255 mod_timer(&port->multicast_router_timer,
1256 now + br->multicast_querier_interval);
1257 }
1258
br_multicast_query_received(struct net_bridge * br,struct net_bridge_port * port,struct bridge_mcast_other_query * query,struct br_ip * saddr,unsigned long max_delay)1259 static void br_multicast_query_received(struct net_bridge *br,
1260 struct net_bridge_port *port,
1261 struct bridge_mcast_other_query *query,
1262 struct br_ip *saddr,
1263 unsigned long max_delay)
1264 {
1265 if (!br_multicast_select_querier(br, port, saddr))
1266 return;
1267
1268 br_multicast_update_query_timer(br, query, max_delay);
1269 br_multicast_mark_router(br, port);
1270 }
1271
br_ip4_multicast_query(struct net_bridge * br,struct net_bridge_port * port,struct sk_buff * skb,u16 vid)1272 static int br_ip4_multicast_query(struct net_bridge *br,
1273 struct net_bridge_port *port,
1274 struct sk_buff *skb,
1275 u16 vid)
1276 {
1277 const struct iphdr *iph = ip_hdr(skb);
1278 struct igmphdr *ih = igmp_hdr(skb);
1279 struct net_bridge_mdb_entry *mp;
1280 struct igmpv3_query *ih3;
1281 struct net_bridge_port_group *p;
1282 struct net_bridge_port_group __rcu **pp;
1283 struct br_ip saddr;
1284 unsigned long max_delay;
1285 unsigned long now = jiffies;
1286 unsigned int offset = skb_transport_offset(skb);
1287 __be32 group;
1288 int err = 0;
1289
1290 spin_lock(&br->multicast_lock);
1291 if (!netif_running(br->dev) ||
1292 (port && port->state == BR_STATE_DISABLED))
1293 goto out;
1294
1295 group = ih->group;
1296
1297 if (skb->len == offset + sizeof(*ih)) {
1298 max_delay = ih->code * (HZ / IGMP_TIMER_SCALE);
1299
1300 if (!max_delay) {
1301 max_delay = 10 * HZ;
1302 group = 0;
1303 }
1304 } else if (skb->len >= offset + sizeof(*ih3)) {
1305 ih3 = igmpv3_query_hdr(skb);
1306 if (ih3->nsrcs)
1307 goto out;
1308
1309 max_delay = ih3->code ?
1310 IGMPV3_MRC(ih3->code) * (HZ / IGMP_TIMER_SCALE) : 1;
1311 } else {
1312 goto out;
1313 }
1314
1315 if (!group) {
1316 saddr.proto = htons(ETH_P_IP);
1317 saddr.u.ip4 = iph->saddr;
1318
1319 br_multicast_query_received(br, port, &br->ip4_other_query,
1320 &saddr, max_delay);
1321 goto out;
1322 }
1323
1324 mp = br_mdb_ip4_get(mlock_dereference(br->mdb, br), group, vid);
1325 if (!mp)
1326 goto out;
1327
1328 max_delay *= br->multicast_last_member_count;
1329
1330 if (mp->mglist &&
1331 (timer_pending(&mp->timer) ?
1332 time_after(mp->timer.expires, now + max_delay) :
1333 try_to_del_timer_sync(&mp->timer) >= 0))
1334 mod_timer(&mp->timer, now + max_delay);
1335
1336 for (pp = &mp->ports;
1337 (p = mlock_dereference(*pp, br)) != NULL;
1338 pp = &p->next) {
1339 if (timer_pending(&p->timer) ?
1340 time_after(p->timer.expires, now + max_delay) :
1341 try_to_del_timer_sync(&p->timer) >= 0)
1342 mod_timer(&p->timer, now + max_delay);
1343 }
1344
1345 out:
1346 spin_unlock(&br->multicast_lock);
1347 return err;
1348 }
1349
1350 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_query(struct net_bridge * br,struct net_bridge_port * port,struct sk_buff * skb,u16 vid)1351 static int br_ip6_multicast_query(struct net_bridge *br,
1352 struct net_bridge_port *port,
1353 struct sk_buff *skb,
1354 u16 vid)
1355 {
1356 struct mld_msg *mld;
1357 struct net_bridge_mdb_entry *mp;
1358 struct mld2_query *mld2q;
1359 struct net_bridge_port_group *p;
1360 struct net_bridge_port_group __rcu **pp;
1361 struct br_ip saddr;
1362 unsigned long max_delay;
1363 unsigned long now = jiffies;
1364 unsigned int offset = skb_transport_offset(skb);
1365 const struct in6_addr *group = NULL;
1366 bool is_general_query;
1367 int err = 0;
1368
1369 spin_lock(&br->multicast_lock);
1370 if (!netif_running(br->dev) ||
1371 (port && port->state == BR_STATE_DISABLED))
1372 goto out;
1373
1374 if (skb->len == offset + sizeof(*mld)) {
1375 if (!pskb_may_pull(skb, offset + sizeof(*mld))) {
1376 err = -EINVAL;
1377 goto out;
1378 }
1379 mld = (struct mld_msg *) icmp6_hdr(skb);
1380 max_delay = msecs_to_jiffies(ntohs(mld->mld_maxdelay));
1381 if (max_delay)
1382 group = &mld->mld_mca;
1383 } else {
1384 if (!pskb_may_pull(skb, offset + sizeof(*mld2q))) {
1385 err = -EINVAL;
1386 goto out;
1387 }
1388 mld2q = (struct mld2_query *)icmp6_hdr(skb);
1389 if (!mld2q->mld2q_nsrcs)
1390 group = &mld2q->mld2q_mca;
1391
1392 max_delay = max(msecs_to_jiffies(mldv2_mrc(mld2q)), 1UL);
1393 }
1394
1395 is_general_query = group && ipv6_addr_any(group);
1396
1397 if (is_general_query) {
1398 saddr.proto = htons(ETH_P_IPV6);
1399 saddr.u.ip6 = ipv6_hdr(skb)->saddr;
1400
1401 br_multicast_query_received(br, port, &br->ip6_other_query,
1402 &saddr, max_delay);
1403 goto out;
1404 } else if (!group) {
1405 goto out;
1406 }
1407
1408 mp = br_mdb_ip6_get(mlock_dereference(br->mdb, br), group, vid);
1409 if (!mp)
1410 goto out;
1411
1412 max_delay *= br->multicast_last_member_count;
1413 if (mp->mglist &&
1414 (timer_pending(&mp->timer) ?
1415 time_after(mp->timer.expires, now + max_delay) :
1416 try_to_del_timer_sync(&mp->timer) >= 0))
1417 mod_timer(&mp->timer, now + max_delay);
1418
1419 for (pp = &mp->ports;
1420 (p = mlock_dereference(*pp, br)) != NULL;
1421 pp = &p->next) {
1422 if (timer_pending(&p->timer) ?
1423 time_after(p->timer.expires, now + max_delay) :
1424 try_to_del_timer_sync(&p->timer) >= 0)
1425 mod_timer(&p->timer, now + max_delay);
1426 }
1427
1428 out:
1429 spin_unlock(&br->multicast_lock);
1430 return err;
1431 }
1432 #endif
1433
1434 static void
br_multicast_leave_group(struct net_bridge * br,struct net_bridge_port * port,struct br_ip * group,struct bridge_mcast_other_query * other_query,struct bridge_mcast_own_query * own_query)1435 br_multicast_leave_group(struct net_bridge *br,
1436 struct net_bridge_port *port,
1437 struct br_ip *group,
1438 struct bridge_mcast_other_query *other_query,
1439 struct bridge_mcast_own_query *own_query)
1440 {
1441 struct net_bridge_mdb_htable *mdb;
1442 struct net_bridge_mdb_entry *mp;
1443 struct net_bridge_port_group *p;
1444 unsigned long now;
1445 unsigned long time;
1446
1447 spin_lock(&br->multicast_lock);
1448 if (!netif_running(br->dev) ||
1449 (port && port->state == BR_STATE_DISABLED))
1450 goto out;
1451
1452 mdb = mlock_dereference(br->mdb, br);
1453 mp = br_mdb_ip_get(mdb, group);
1454 if (!mp)
1455 goto out;
1456
1457 if (port && (port->flags & BR_MULTICAST_FAST_LEAVE)) {
1458 struct net_bridge_port_group __rcu **pp;
1459
1460 for (pp = &mp->ports;
1461 (p = mlock_dereference(*pp, br)) != NULL;
1462 pp = &p->next) {
1463 if (p->port != port)
1464 continue;
1465
1466 rcu_assign_pointer(*pp, p->next);
1467 hlist_del_init(&p->mglist);
1468 del_timer(&p->timer);
1469 call_rcu_bh(&p->rcu, br_multicast_free_pg);
1470 br_mdb_notify(br->dev, port, group, RTM_DELMDB,
1471 p->state);
1472
1473 if (!mp->ports && !mp->mglist &&
1474 netif_running(br->dev))
1475 mod_timer(&mp->timer, jiffies);
1476 }
1477 goto out;
1478 }
1479
1480 if (timer_pending(&other_query->timer))
1481 goto out;
1482
1483 if (br->multicast_querier) {
1484 __br_multicast_send_query(br, port, &mp->addr);
1485
1486 time = jiffies + br->multicast_last_member_count *
1487 br->multicast_last_member_interval;
1488
1489 mod_timer(&own_query->timer, time);
1490
1491 for (p = mlock_dereference(mp->ports, br);
1492 p != NULL;
1493 p = mlock_dereference(p->next, br)) {
1494 if (p->port != port)
1495 continue;
1496
1497 if (!hlist_unhashed(&p->mglist) &&
1498 (timer_pending(&p->timer) ?
1499 time_after(p->timer.expires, time) :
1500 try_to_del_timer_sync(&p->timer) >= 0)) {
1501 mod_timer(&p->timer, time);
1502 }
1503
1504 break;
1505 }
1506 }
1507
1508 now = jiffies;
1509 time = now + br->multicast_last_member_count *
1510 br->multicast_last_member_interval;
1511
1512 if (!port) {
1513 if (mp->mglist &&
1514 (timer_pending(&mp->timer) ?
1515 time_after(mp->timer.expires, time) :
1516 try_to_del_timer_sync(&mp->timer) >= 0)) {
1517 mod_timer(&mp->timer, time);
1518 }
1519
1520 goto out;
1521 }
1522
1523 for (p = mlock_dereference(mp->ports, br);
1524 p != NULL;
1525 p = mlock_dereference(p->next, br)) {
1526 if (p->port != port)
1527 continue;
1528
1529 if (!hlist_unhashed(&p->mglist) &&
1530 (timer_pending(&p->timer) ?
1531 time_after(p->timer.expires, time) :
1532 try_to_del_timer_sync(&p->timer) >= 0)) {
1533 mod_timer(&p->timer, time);
1534 }
1535
1536 break;
1537 }
1538 out:
1539 spin_unlock(&br->multicast_lock);
1540 }
1541
br_ip4_multicast_leave_group(struct net_bridge * br,struct net_bridge_port * port,__be32 group,__u16 vid)1542 static void br_ip4_multicast_leave_group(struct net_bridge *br,
1543 struct net_bridge_port *port,
1544 __be32 group,
1545 __u16 vid)
1546 {
1547 struct br_ip br_group;
1548 struct bridge_mcast_own_query *own_query;
1549
1550 if (ipv4_is_local_multicast(group))
1551 return;
1552
1553 own_query = port ? &port->ip4_own_query : &br->ip4_own_query;
1554
1555 br_group.u.ip4 = group;
1556 br_group.proto = htons(ETH_P_IP);
1557 br_group.vid = vid;
1558
1559 br_multicast_leave_group(br, port, &br_group, &br->ip4_other_query,
1560 own_query);
1561 }
1562
1563 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_leave_group(struct net_bridge * br,struct net_bridge_port * port,const struct in6_addr * group,__u16 vid)1564 static void br_ip6_multicast_leave_group(struct net_bridge *br,
1565 struct net_bridge_port *port,
1566 const struct in6_addr *group,
1567 __u16 vid)
1568 {
1569 struct br_ip br_group;
1570 struct bridge_mcast_own_query *own_query;
1571
1572 if (ipv6_addr_is_ll_all_nodes(group))
1573 return;
1574
1575 own_query = port ? &port->ip6_own_query : &br->ip6_own_query;
1576
1577 br_group.u.ip6 = *group;
1578 br_group.proto = htons(ETH_P_IPV6);
1579 br_group.vid = vid;
1580
1581 br_multicast_leave_group(br, port, &br_group, &br->ip6_other_query,
1582 own_query);
1583 }
1584 #endif
1585
br_multicast_ipv4_rcv(struct net_bridge * br,struct net_bridge_port * port,struct sk_buff * skb,u16 vid)1586 static int br_multicast_ipv4_rcv(struct net_bridge *br,
1587 struct net_bridge_port *port,
1588 struct sk_buff *skb,
1589 u16 vid)
1590 {
1591 struct sk_buff *skb_trimmed = NULL;
1592 struct igmphdr *ih;
1593 int err;
1594
1595 err = ip_mc_check_igmp(skb, &skb_trimmed);
1596
1597 if (err == -ENOMSG) {
1598 if (!ipv4_is_local_multicast(ip_hdr(skb)->daddr))
1599 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
1600 return 0;
1601 } else if (err < 0) {
1602 return err;
1603 }
1604
1605 BR_INPUT_SKB_CB(skb)->igmp = 1;
1606 ih = igmp_hdr(skb);
1607
1608 switch (ih->type) {
1609 case IGMP_HOST_MEMBERSHIP_REPORT:
1610 case IGMPV2_HOST_MEMBERSHIP_REPORT:
1611 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
1612 err = br_ip4_multicast_add_group(br, port, ih->group, vid);
1613 break;
1614 case IGMPV3_HOST_MEMBERSHIP_REPORT:
1615 err = br_ip4_multicast_igmp3_report(br, port, skb_trimmed, vid);
1616 break;
1617 case IGMP_HOST_MEMBERSHIP_QUERY:
1618 err = br_ip4_multicast_query(br, port, skb_trimmed, vid);
1619 break;
1620 case IGMP_HOST_LEAVE_MESSAGE:
1621 br_ip4_multicast_leave_group(br, port, ih->group, vid);
1622 break;
1623 }
1624
1625 if (skb_trimmed && skb_trimmed != skb)
1626 kfree_skb(skb_trimmed);
1627
1628 return err;
1629 }
1630
1631 #if IS_ENABLED(CONFIG_IPV6)
br_multicast_ipv6_rcv(struct net_bridge * br,struct net_bridge_port * port,struct sk_buff * skb,u16 vid)1632 static int br_multicast_ipv6_rcv(struct net_bridge *br,
1633 struct net_bridge_port *port,
1634 struct sk_buff *skb,
1635 u16 vid)
1636 {
1637 struct sk_buff *skb_trimmed = NULL;
1638 struct mld_msg *mld;
1639 int err;
1640
1641 err = ipv6_mc_check_mld(skb, &skb_trimmed);
1642
1643 if (err == -ENOMSG) {
1644 if (!ipv6_addr_is_ll_all_nodes(&ipv6_hdr(skb)->daddr))
1645 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
1646 return 0;
1647 } else if (err < 0) {
1648 return err;
1649 }
1650
1651 BR_INPUT_SKB_CB(skb)->igmp = 1;
1652 mld = (struct mld_msg *)skb_transport_header(skb);
1653
1654 switch (mld->mld_type) {
1655 case ICMPV6_MGM_REPORT:
1656 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
1657 err = br_ip6_multicast_add_group(br, port, &mld->mld_mca, vid);
1658 break;
1659 case ICMPV6_MLD2_REPORT:
1660 err = br_ip6_multicast_mld2_report(br, port, skb_trimmed, vid);
1661 break;
1662 case ICMPV6_MGM_QUERY:
1663 err = br_ip6_multicast_query(br, port, skb_trimmed, vid);
1664 break;
1665 case ICMPV6_MGM_REDUCTION:
1666 br_ip6_multicast_leave_group(br, port, &mld->mld_mca, vid);
1667 break;
1668 }
1669
1670 if (skb_trimmed && skb_trimmed != skb)
1671 kfree_skb(skb_trimmed);
1672
1673 return err;
1674 }
1675 #endif
1676
br_multicast_rcv(struct net_bridge * br,struct net_bridge_port * port,struct sk_buff * skb,u16 vid)1677 int br_multicast_rcv(struct net_bridge *br, struct net_bridge_port *port,
1678 struct sk_buff *skb, u16 vid)
1679 {
1680 BR_INPUT_SKB_CB(skb)->igmp = 0;
1681 BR_INPUT_SKB_CB(skb)->mrouters_only = 0;
1682
1683 if (br->multicast_disabled)
1684 return 0;
1685
1686 switch (skb->protocol) {
1687 case htons(ETH_P_IP):
1688 return br_multicast_ipv4_rcv(br, port, skb, vid);
1689 #if IS_ENABLED(CONFIG_IPV6)
1690 case htons(ETH_P_IPV6):
1691 return br_multicast_ipv6_rcv(br, port, skb, vid);
1692 #endif
1693 }
1694
1695 return 0;
1696 }
1697
br_multicast_query_expired(struct net_bridge * br,struct bridge_mcast_own_query * query,struct bridge_mcast_querier * querier)1698 static void br_multicast_query_expired(struct net_bridge *br,
1699 struct bridge_mcast_own_query *query,
1700 struct bridge_mcast_querier *querier)
1701 {
1702 spin_lock(&br->multicast_lock);
1703 if (query->startup_sent < br->multicast_startup_query_count)
1704 query->startup_sent++;
1705
1706 RCU_INIT_POINTER(querier->port, NULL);
1707 br_multicast_send_query(br, NULL, query);
1708 spin_unlock(&br->multicast_lock);
1709 }
1710
br_ip4_multicast_query_expired(unsigned long data)1711 static void br_ip4_multicast_query_expired(unsigned long data)
1712 {
1713 struct net_bridge *br = (void *)data;
1714
1715 br_multicast_query_expired(br, &br->ip4_own_query, &br->ip4_querier);
1716 }
1717
1718 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_query_expired(unsigned long data)1719 static void br_ip6_multicast_query_expired(unsigned long data)
1720 {
1721 struct net_bridge *br = (void *)data;
1722
1723 br_multicast_query_expired(br, &br->ip6_own_query, &br->ip6_querier);
1724 }
1725 #endif
1726
br_multicast_init(struct net_bridge * br)1727 void br_multicast_init(struct net_bridge *br)
1728 {
1729 br->hash_elasticity = 4;
1730 br->hash_max = 512;
1731
1732 br->multicast_router = 1;
1733 br->multicast_querier = 0;
1734 br->multicast_query_use_ifaddr = 0;
1735 br->multicast_last_member_count = 2;
1736 br->multicast_startup_query_count = 2;
1737
1738 br->multicast_last_member_interval = HZ;
1739 br->multicast_query_response_interval = 10 * HZ;
1740 br->multicast_startup_query_interval = 125 * HZ / 4;
1741 br->multicast_query_interval = 125 * HZ;
1742 br->multicast_querier_interval = 255 * HZ;
1743 br->multicast_membership_interval = 260 * HZ;
1744
1745 br->ip4_other_query.delay_time = 0;
1746 br->ip4_querier.port = NULL;
1747 #if IS_ENABLED(CONFIG_IPV6)
1748 br->ip6_other_query.delay_time = 0;
1749 br->ip6_querier.port = NULL;
1750 #endif
1751 br->has_ipv6_addr = 1;
1752
1753 spin_lock_init(&br->multicast_lock);
1754 setup_timer(&br->multicast_router_timer,
1755 br_multicast_local_router_expired, 0);
1756 setup_timer(&br->ip4_other_query.timer,
1757 br_ip4_multicast_querier_expired, (unsigned long)br);
1758 setup_timer(&br->ip4_own_query.timer, br_ip4_multicast_query_expired,
1759 (unsigned long)br);
1760 #if IS_ENABLED(CONFIG_IPV6)
1761 setup_timer(&br->ip6_other_query.timer,
1762 br_ip6_multicast_querier_expired, (unsigned long)br);
1763 setup_timer(&br->ip6_own_query.timer, br_ip6_multicast_query_expired,
1764 (unsigned long)br);
1765 #endif
1766 }
1767
__br_multicast_open(struct net_bridge * br,struct bridge_mcast_own_query * query)1768 static void __br_multicast_open(struct net_bridge *br,
1769 struct bridge_mcast_own_query *query)
1770 {
1771 query->startup_sent = 0;
1772
1773 if (br->multicast_disabled)
1774 return;
1775
1776 mod_timer(&query->timer, jiffies);
1777 }
1778
br_multicast_open(struct net_bridge * br)1779 void br_multicast_open(struct net_bridge *br)
1780 {
1781 __br_multicast_open(br, &br->ip4_own_query);
1782 #if IS_ENABLED(CONFIG_IPV6)
1783 __br_multicast_open(br, &br->ip6_own_query);
1784 #endif
1785 }
1786
br_multicast_stop(struct net_bridge * br)1787 void br_multicast_stop(struct net_bridge *br)
1788 {
1789 del_timer_sync(&br->multicast_router_timer);
1790 del_timer_sync(&br->ip4_other_query.timer);
1791 del_timer_sync(&br->ip4_own_query.timer);
1792 #if IS_ENABLED(CONFIG_IPV6)
1793 del_timer_sync(&br->ip6_other_query.timer);
1794 del_timer_sync(&br->ip6_own_query.timer);
1795 #endif
1796 }
1797
br_multicast_dev_del(struct net_bridge * br)1798 void br_multicast_dev_del(struct net_bridge *br)
1799 {
1800 struct net_bridge_mdb_htable *mdb;
1801 struct net_bridge_mdb_entry *mp;
1802 struct hlist_node *n;
1803 u32 ver;
1804 int i;
1805
1806 spin_lock_bh(&br->multicast_lock);
1807 mdb = mlock_dereference(br->mdb, br);
1808 if (!mdb)
1809 goto out;
1810
1811 br->mdb = NULL;
1812
1813 ver = mdb->ver;
1814 for (i = 0; i < mdb->max; i++) {
1815 hlist_for_each_entry_safe(mp, n, &mdb->mhash[i],
1816 hlist[ver]) {
1817 del_timer(&mp->timer);
1818 call_rcu_bh(&mp->rcu, br_multicast_free_group);
1819 }
1820 }
1821
1822 if (mdb->old) {
1823 spin_unlock_bh(&br->multicast_lock);
1824 rcu_barrier_bh();
1825 spin_lock_bh(&br->multicast_lock);
1826 WARN_ON(mdb->old);
1827 }
1828
1829 mdb->old = mdb;
1830 call_rcu_bh(&mdb->rcu, br_mdb_free);
1831
1832 out:
1833 spin_unlock_bh(&br->multicast_lock);
1834 }
1835
br_multicast_set_router(struct net_bridge * br,unsigned long val)1836 int br_multicast_set_router(struct net_bridge *br, unsigned long val)
1837 {
1838 int err = -EINVAL;
1839
1840 spin_lock_bh(&br->multicast_lock);
1841
1842 switch (val) {
1843 case 0:
1844 case 2:
1845 del_timer(&br->multicast_router_timer);
1846 /* fall through */
1847 case 1:
1848 br->multicast_router = val;
1849 err = 0;
1850 break;
1851 }
1852
1853 spin_unlock_bh(&br->multicast_lock);
1854
1855 return err;
1856 }
1857
br_multicast_set_port_router(struct net_bridge_port * p,unsigned long val)1858 int br_multicast_set_port_router(struct net_bridge_port *p, unsigned long val)
1859 {
1860 struct net_bridge *br = p->br;
1861 int err = -EINVAL;
1862
1863 spin_lock(&br->multicast_lock);
1864
1865 switch (val) {
1866 case 0:
1867 case 1:
1868 case 2:
1869 p->multicast_router = val;
1870 err = 0;
1871
1872 if (val < 2 && !hlist_unhashed(&p->rlist)) {
1873 hlist_del_init_rcu(&p->rlist);
1874 br_rtr_notify(br->dev, p, RTM_DELMDB);
1875 }
1876
1877 if (val == 1)
1878 break;
1879
1880 del_timer(&p->multicast_router_timer);
1881
1882 if (val == 0)
1883 break;
1884
1885 br_multicast_add_router(br, p);
1886 break;
1887 }
1888
1889 spin_unlock(&br->multicast_lock);
1890
1891 return err;
1892 }
1893
br_multicast_start_querier(struct net_bridge * br,struct bridge_mcast_own_query * query)1894 static void br_multicast_start_querier(struct net_bridge *br,
1895 struct bridge_mcast_own_query *query)
1896 {
1897 struct net_bridge_port *port;
1898
1899 __br_multicast_open(br, query);
1900
1901 rcu_read_lock();
1902 list_for_each_entry_rcu(port, &br->port_list, list) {
1903 if (port->state == BR_STATE_DISABLED ||
1904 port->state == BR_STATE_BLOCKING)
1905 continue;
1906
1907 if (query == &br->ip4_own_query)
1908 br_multicast_enable(&port->ip4_own_query);
1909 #if IS_ENABLED(CONFIG_IPV6)
1910 else
1911 br_multicast_enable(&port->ip6_own_query);
1912 #endif
1913 }
1914 rcu_read_unlock();
1915 }
1916
br_multicast_toggle(struct net_bridge * br,unsigned long val)1917 int br_multicast_toggle(struct net_bridge *br, unsigned long val)
1918 {
1919 struct net_bridge_mdb_htable *mdb;
1920 struct net_bridge_port *port;
1921 int err = 0;
1922
1923 spin_lock_bh(&br->multicast_lock);
1924 if (br->multicast_disabled == !val)
1925 goto unlock;
1926
1927 br->multicast_disabled = !val;
1928 if (br->multicast_disabled)
1929 goto unlock;
1930
1931 if (!netif_running(br->dev))
1932 goto unlock;
1933
1934 mdb = mlock_dereference(br->mdb, br);
1935 if (mdb) {
1936 if (mdb->old) {
1937 err = -EEXIST;
1938 rollback:
1939 br->multicast_disabled = !!val;
1940 goto unlock;
1941 }
1942
1943 err = br_mdb_rehash(&br->mdb, mdb->max,
1944 br->hash_elasticity);
1945 if (err)
1946 goto rollback;
1947 }
1948
1949 br_multicast_open(br);
1950 list_for_each_entry(port, &br->port_list, list)
1951 __br_multicast_enable_port(port);
1952
1953 unlock:
1954 spin_unlock_bh(&br->multicast_lock);
1955
1956 return err;
1957 }
1958
br_multicast_set_querier(struct net_bridge * br,unsigned long val)1959 int br_multicast_set_querier(struct net_bridge *br, unsigned long val)
1960 {
1961 unsigned long max_delay;
1962
1963 val = !!val;
1964
1965 spin_lock_bh(&br->multicast_lock);
1966 if (br->multicast_querier == val)
1967 goto unlock;
1968
1969 br->multicast_querier = val;
1970 if (!val)
1971 goto unlock;
1972
1973 max_delay = br->multicast_query_response_interval;
1974
1975 if (!timer_pending(&br->ip4_other_query.timer))
1976 br->ip4_other_query.delay_time = jiffies + max_delay;
1977
1978 br_multicast_start_querier(br, &br->ip4_own_query);
1979
1980 #if IS_ENABLED(CONFIG_IPV6)
1981 if (!timer_pending(&br->ip6_other_query.timer))
1982 br->ip6_other_query.delay_time = jiffies + max_delay;
1983
1984 br_multicast_start_querier(br, &br->ip6_own_query);
1985 #endif
1986
1987 unlock:
1988 spin_unlock_bh(&br->multicast_lock);
1989
1990 return 0;
1991 }
1992
br_multicast_set_hash_max(struct net_bridge * br,unsigned long val)1993 int br_multicast_set_hash_max(struct net_bridge *br, unsigned long val)
1994 {
1995 int err = -EINVAL;
1996 u32 old;
1997 struct net_bridge_mdb_htable *mdb;
1998
1999 spin_lock_bh(&br->multicast_lock);
2000 if (!is_power_of_2(val))
2001 goto unlock;
2002
2003 mdb = mlock_dereference(br->mdb, br);
2004 if (mdb && val < mdb->size)
2005 goto unlock;
2006
2007 err = 0;
2008
2009 old = br->hash_max;
2010 br->hash_max = val;
2011
2012 if (mdb) {
2013 if (mdb->old) {
2014 err = -EEXIST;
2015 rollback:
2016 br->hash_max = old;
2017 goto unlock;
2018 }
2019
2020 err = br_mdb_rehash(&br->mdb, br->hash_max,
2021 br->hash_elasticity);
2022 if (err)
2023 goto rollback;
2024 }
2025
2026 unlock:
2027 spin_unlock_bh(&br->multicast_lock);
2028
2029 return err;
2030 }
2031
2032 /**
2033 * br_multicast_list_adjacent - Returns snooped multicast addresses
2034 * @dev: The bridge port adjacent to which to retrieve addresses
2035 * @br_ip_list: The list to store found, snooped multicast IP addresses in
2036 *
2037 * Creates a list of IP addresses (struct br_ip_list) sensed by the multicast
2038 * snooping feature on all bridge ports of dev's bridge device, excluding
2039 * the addresses from dev itself.
2040 *
2041 * Returns the number of items added to br_ip_list.
2042 *
2043 * Notes:
2044 * - br_ip_list needs to be initialized by caller
2045 * - br_ip_list might contain duplicates in the end
2046 * (needs to be taken care of by caller)
2047 * - br_ip_list needs to be freed by caller
2048 */
br_multicast_list_adjacent(struct net_device * dev,struct list_head * br_ip_list)2049 int br_multicast_list_adjacent(struct net_device *dev,
2050 struct list_head *br_ip_list)
2051 {
2052 struct net_bridge *br;
2053 struct net_bridge_port *port;
2054 struct net_bridge_port_group *group;
2055 struct br_ip_list *entry;
2056 int count = 0;
2057
2058 rcu_read_lock();
2059 if (!br_ip_list || !br_port_exists(dev))
2060 goto unlock;
2061
2062 port = br_port_get_rcu(dev);
2063 if (!port || !port->br)
2064 goto unlock;
2065
2066 br = port->br;
2067
2068 list_for_each_entry_rcu(port, &br->port_list, list) {
2069 if (!port->dev || port->dev == dev)
2070 continue;
2071
2072 hlist_for_each_entry_rcu(group, &port->mglist, mglist) {
2073 entry = kmalloc(sizeof(*entry), GFP_ATOMIC);
2074 if (!entry)
2075 goto unlock;
2076
2077 entry->addr = group->addr;
2078 list_add(&entry->list, br_ip_list);
2079 count++;
2080 }
2081 }
2082
2083 unlock:
2084 rcu_read_unlock();
2085 return count;
2086 }
2087 EXPORT_SYMBOL_GPL(br_multicast_list_adjacent);
2088
2089 /**
2090 * br_multicast_has_querier_anywhere - Checks for a querier on a bridge
2091 * @dev: The bridge port providing the bridge on which to check for a querier
2092 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
2093 *
2094 * Checks whether the given interface has a bridge on top and if so returns
2095 * true if a valid querier exists anywhere on the bridged link layer.
2096 * Otherwise returns false.
2097 */
br_multicast_has_querier_anywhere(struct net_device * dev,int proto)2098 bool br_multicast_has_querier_anywhere(struct net_device *dev, int proto)
2099 {
2100 struct net_bridge *br;
2101 struct net_bridge_port *port;
2102 struct ethhdr eth;
2103 bool ret = false;
2104
2105 rcu_read_lock();
2106 if (!br_port_exists(dev))
2107 goto unlock;
2108
2109 port = br_port_get_rcu(dev);
2110 if (!port || !port->br)
2111 goto unlock;
2112
2113 br = port->br;
2114
2115 memset(ð, 0, sizeof(eth));
2116 eth.h_proto = htons(proto);
2117
2118 ret = br_multicast_querier_exists(br, ð);
2119
2120 unlock:
2121 rcu_read_unlock();
2122 return ret;
2123 }
2124 EXPORT_SYMBOL_GPL(br_multicast_has_querier_anywhere);
2125
2126 /**
2127 * br_multicast_has_querier_adjacent - Checks for a querier behind a bridge port
2128 * @dev: The bridge port adjacent to which to check for a querier
2129 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
2130 *
2131 * Checks whether the given interface has a bridge on top and if so returns
2132 * true if a selected querier is behind one of the other ports of this
2133 * bridge. Otherwise returns false.
2134 */
br_multicast_has_querier_adjacent(struct net_device * dev,int proto)2135 bool br_multicast_has_querier_adjacent(struct net_device *dev, int proto)
2136 {
2137 struct net_bridge *br;
2138 struct net_bridge_port *port;
2139 bool ret = false;
2140
2141 rcu_read_lock();
2142 if (!br_port_exists(dev))
2143 goto unlock;
2144
2145 port = br_port_get_rcu(dev);
2146 if (!port || !port->br)
2147 goto unlock;
2148
2149 br = port->br;
2150
2151 switch (proto) {
2152 case ETH_P_IP:
2153 if (!timer_pending(&br->ip4_other_query.timer) ||
2154 rcu_dereference(br->ip4_querier.port) == port)
2155 goto unlock;
2156 break;
2157 #if IS_ENABLED(CONFIG_IPV6)
2158 case ETH_P_IPV6:
2159 if (!timer_pending(&br->ip6_other_query.timer) ||
2160 rcu_dereference(br->ip6_querier.port) == port)
2161 goto unlock;
2162 break;
2163 #endif
2164 default:
2165 goto unlock;
2166 }
2167
2168 ret = true;
2169 unlock:
2170 rcu_read_unlock();
2171 return ret;
2172 }
2173 EXPORT_SYMBOL_GPL(br_multicast_has_querier_adjacent);
2174