1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /*
3 * Bridge multicast support.
4 *
5 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
6 */
7
8 #include <linux/err.h>
9 #include <linux/export.h>
10 #include <linux/if_ether.h>
11 #include <linux/igmp.h>
12 #include <linux/in.h>
13 #include <linux/jhash.h>
14 #include <linux/kernel.h>
15 #include <linux/log2.h>
16 #include <linux/netdevice.h>
17 #include <linux/netfilter_bridge.h>
18 #include <linux/random.h>
19 #include <linux/rculist.h>
20 #include <linux/skbuff.h>
21 #include <linux/slab.h>
22 #include <linux/timer.h>
23 #include <linux/inetdevice.h>
24 #include <linux/mroute.h>
25 #include <net/ip.h>
26 #include <net/switchdev.h>
27 #if IS_ENABLED(CONFIG_IPV6)
28 #include <linux/icmpv6.h>
29 #include <net/ipv6.h>
30 #include <net/mld.h>
31 #include <net/ip6_checksum.h>
32 #include <net/addrconf.h>
33 #endif
34 #include <trace/events/bridge.h>
35
36 #include "br_private.h"
37 #include "br_private_mcast_eht.h"
38
39 static const struct rhashtable_params br_mdb_rht_params = {
40 .head_offset = offsetof(struct net_bridge_mdb_entry, rhnode),
41 .key_offset = offsetof(struct net_bridge_mdb_entry, addr),
42 .key_len = sizeof(struct br_ip),
43 .automatic_shrinking = true,
44 };
45
46 static const struct rhashtable_params br_sg_port_rht_params = {
47 .head_offset = offsetof(struct net_bridge_port_group, rhnode),
48 .key_offset = offsetof(struct net_bridge_port_group, key),
49 .key_len = sizeof(struct net_bridge_port_group_sg_key),
50 .automatic_shrinking = true,
51 };
52
53 static void br_multicast_start_querier(struct net_bridge_mcast *brmctx,
54 struct bridge_mcast_own_query *query);
55 static void br_ip4_multicast_add_router(struct net_bridge_mcast *brmctx,
56 struct net_bridge_mcast_port *pmctx);
57 static void br_ip4_multicast_leave_group(struct net_bridge_mcast *brmctx,
58 struct net_bridge_mcast_port *pmctx,
59 __be32 group,
60 __u16 vid,
61 const unsigned char *src);
62 static void br_multicast_port_group_rexmit(struct timer_list *t);
63
64 static void
65 br_multicast_rport_del_notify(struct net_bridge_mcast_port *pmctx, bool deleted);
66 static void br_ip6_multicast_add_router(struct net_bridge_mcast *brmctx,
67 struct net_bridge_mcast_port *pmctx);
68 #if IS_ENABLED(CONFIG_IPV6)
69 static void br_ip6_multicast_leave_group(struct net_bridge_mcast *brmctx,
70 struct net_bridge_mcast_port *pmctx,
71 const struct in6_addr *group,
72 __u16 vid, const unsigned char *src);
73 #endif
74 static struct net_bridge_port_group *
75 __br_multicast_add_group(struct net_bridge_mcast *brmctx,
76 struct net_bridge_mcast_port *pmctx,
77 struct br_ip *group,
78 const unsigned char *src,
79 u8 filter_mode,
80 bool igmpv2_mldv1,
81 bool blocked);
82 static void br_multicast_find_del_pg(struct net_bridge *br,
83 struct net_bridge_port_group *pg);
84 static void __br_multicast_stop(struct net_bridge_mcast *brmctx);
85
86 static int br_mc_disabled_update(struct net_device *dev, bool value,
87 struct netlink_ext_ack *extack);
88
89 static struct net_bridge_port_group *
br_sg_port_find(struct net_bridge * br,struct net_bridge_port_group_sg_key * sg_p)90 br_sg_port_find(struct net_bridge *br,
91 struct net_bridge_port_group_sg_key *sg_p)
92 {
93 lockdep_assert_held_once(&br->multicast_lock);
94
95 return rhashtable_lookup_fast(&br->sg_port_tbl, sg_p,
96 br_sg_port_rht_params);
97 }
98
br_mdb_ip_get_rcu(struct net_bridge * br,struct br_ip * dst)99 static struct net_bridge_mdb_entry *br_mdb_ip_get_rcu(struct net_bridge *br,
100 struct br_ip *dst)
101 {
102 return rhashtable_lookup(&br->mdb_hash_tbl, dst, br_mdb_rht_params);
103 }
104
br_mdb_ip_get(struct net_bridge * br,struct br_ip * dst)105 struct net_bridge_mdb_entry *br_mdb_ip_get(struct net_bridge *br,
106 struct br_ip *dst)
107 {
108 struct net_bridge_mdb_entry *ent;
109
110 lockdep_assert_held_once(&br->multicast_lock);
111
112 rcu_read_lock();
113 ent = rhashtable_lookup(&br->mdb_hash_tbl, dst, br_mdb_rht_params);
114 rcu_read_unlock();
115
116 return ent;
117 }
118
br_mdb_ip4_get(struct net_bridge * br,__be32 dst,__u16 vid)119 static struct net_bridge_mdb_entry *br_mdb_ip4_get(struct net_bridge *br,
120 __be32 dst, __u16 vid)
121 {
122 struct br_ip br_dst;
123
124 memset(&br_dst, 0, sizeof(br_dst));
125 br_dst.dst.ip4 = dst;
126 br_dst.proto = htons(ETH_P_IP);
127 br_dst.vid = vid;
128
129 return br_mdb_ip_get(br, &br_dst);
130 }
131
132 #if IS_ENABLED(CONFIG_IPV6)
br_mdb_ip6_get(struct net_bridge * br,const struct in6_addr * dst,__u16 vid)133 static struct net_bridge_mdb_entry *br_mdb_ip6_get(struct net_bridge *br,
134 const struct in6_addr *dst,
135 __u16 vid)
136 {
137 struct br_ip br_dst;
138
139 memset(&br_dst, 0, sizeof(br_dst));
140 br_dst.dst.ip6 = *dst;
141 br_dst.proto = htons(ETH_P_IPV6);
142 br_dst.vid = vid;
143
144 return br_mdb_ip_get(br, &br_dst);
145 }
146 #endif
147
148 struct net_bridge_mdb_entry *
br_mdb_entry_skb_get(struct net_bridge_mcast * brmctx,struct sk_buff * skb,u16 vid)149 br_mdb_entry_skb_get(struct net_bridge_mcast *brmctx, struct sk_buff *skb,
150 u16 vid)
151 {
152 struct net_bridge *br = brmctx->br;
153 struct br_ip ip;
154
155 if (!br_opt_get(br, BROPT_MULTICAST_ENABLED) ||
156 br_multicast_ctx_vlan_global_disabled(brmctx))
157 return NULL;
158
159 if (BR_INPUT_SKB_CB(skb)->igmp)
160 return NULL;
161
162 memset(&ip, 0, sizeof(ip));
163 ip.proto = skb->protocol;
164 ip.vid = vid;
165
166 switch (skb->protocol) {
167 case htons(ETH_P_IP):
168 ip.dst.ip4 = ip_hdr(skb)->daddr;
169 if (brmctx->multicast_igmp_version == 3) {
170 struct net_bridge_mdb_entry *mdb;
171
172 ip.src.ip4 = ip_hdr(skb)->saddr;
173 mdb = br_mdb_ip_get_rcu(br, &ip);
174 if (mdb)
175 return mdb;
176 ip.src.ip4 = 0;
177 }
178 break;
179 #if IS_ENABLED(CONFIG_IPV6)
180 case htons(ETH_P_IPV6):
181 ip.dst.ip6 = ipv6_hdr(skb)->daddr;
182 if (brmctx->multicast_mld_version == 2) {
183 struct net_bridge_mdb_entry *mdb;
184
185 ip.src.ip6 = ipv6_hdr(skb)->saddr;
186 mdb = br_mdb_ip_get_rcu(br, &ip);
187 if (mdb)
188 return mdb;
189 memset(&ip.src.ip6, 0, sizeof(ip.src.ip6));
190 }
191 break;
192 #endif
193 default:
194 ip.proto = 0;
195 ether_addr_copy(ip.dst.mac_addr, eth_hdr(skb)->h_dest);
196 }
197
198 return br_mdb_ip_get_rcu(br, &ip);
199 }
200
201 /* IMPORTANT: this function must be used only when the contexts cannot be
202 * passed down (e.g. timer) and must be used for read-only purposes because
203 * the vlan snooping option can change, so it can return any context
204 * (non-vlan or vlan). Its initial intended purpose is to read timer values
205 * from the *current* context based on the option. At worst that could lead
206 * to inconsistent timers when the contexts are changed, i.e. src timer
207 * which needs to re-arm with a specific delay taken from the old context
208 */
209 static struct net_bridge_mcast_port *
br_multicast_pg_to_port_ctx(const struct net_bridge_port_group * pg)210 br_multicast_pg_to_port_ctx(const struct net_bridge_port_group *pg)
211 {
212 struct net_bridge_mcast_port *pmctx = &pg->key.port->multicast_ctx;
213 struct net_bridge_vlan *vlan;
214
215 lockdep_assert_held_once(&pg->key.port->br->multicast_lock);
216
217 /* if vlan snooping is disabled use the port's multicast context */
218 if (!pg->key.addr.vid ||
219 !br_opt_get(pg->key.port->br, BROPT_MCAST_VLAN_SNOOPING_ENABLED))
220 goto out;
221
222 /* locking is tricky here, due to different rules for multicast and
223 * vlans we need to take rcu to find the vlan and make sure it has
224 * the BR_VLFLAG_MCAST_ENABLED flag set, it can only change under
225 * multicast_lock which must be already held here, so the vlan's pmctx
226 * can safely be used on return
227 */
228 rcu_read_lock();
229 vlan = br_vlan_find(nbp_vlan_group_rcu(pg->key.port), pg->key.addr.vid);
230 if (vlan && !br_multicast_port_ctx_vlan_disabled(&vlan->port_mcast_ctx))
231 pmctx = &vlan->port_mcast_ctx;
232 else
233 pmctx = NULL;
234 rcu_read_unlock();
235 out:
236 return pmctx;
237 }
238
239 static struct net_bridge_mcast_port *
br_multicast_port_vid_to_port_ctx(struct net_bridge_port * port,u16 vid)240 br_multicast_port_vid_to_port_ctx(struct net_bridge_port *port, u16 vid)
241 {
242 struct net_bridge_mcast_port *pmctx = NULL;
243 struct net_bridge_vlan *vlan;
244
245 lockdep_assert_held_once(&port->br->multicast_lock);
246
247 if (!br_opt_get(port->br, BROPT_MCAST_VLAN_SNOOPING_ENABLED))
248 return NULL;
249
250 /* Take RCU to access the vlan. */
251 rcu_read_lock();
252
253 vlan = br_vlan_find(nbp_vlan_group_rcu(port), vid);
254 if (vlan && !br_multicast_port_ctx_vlan_disabled(&vlan->port_mcast_ctx))
255 pmctx = &vlan->port_mcast_ctx;
256
257 rcu_read_unlock();
258
259 return pmctx;
260 }
261
262 /* when snooping we need to check if the contexts should be used
263 * in the following order:
264 * - if pmctx is non-NULL (port), check if it should be used
265 * - if pmctx is NULL (bridge), check if brmctx should be used
266 */
267 static bool
br_multicast_ctx_should_use(const struct net_bridge_mcast * brmctx,const struct net_bridge_mcast_port * pmctx)268 br_multicast_ctx_should_use(const struct net_bridge_mcast *brmctx,
269 const struct net_bridge_mcast_port *pmctx)
270 {
271 if (!netif_running(brmctx->br->dev))
272 return false;
273
274 if (pmctx)
275 return !br_multicast_port_ctx_state_disabled(pmctx);
276 else
277 return !br_multicast_ctx_vlan_disabled(brmctx);
278 }
279
br_port_group_equal(struct net_bridge_port_group * p,struct net_bridge_port * port,const unsigned char * src)280 static bool br_port_group_equal(struct net_bridge_port_group *p,
281 struct net_bridge_port *port,
282 const unsigned char *src)
283 {
284 if (p->key.port != port)
285 return false;
286
287 if (!(port->flags & BR_MULTICAST_TO_UNICAST))
288 return true;
289
290 return ether_addr_equal(src, p->eth_addr);
291 }
292
__fwd_add_star_excl(struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,struct br_ip * sg_ip)293 static void __fwd_add_star_excl(struct net_bridge_mcast_port *pmctx,
294 struct net_bridge_port_group *pg,
295 struct br_ip *sg_ip)
296 {
297 struct net_bridge_port_group_sg_key sg_key;
298 struct net_bridge_port_group *src_pg;
299 struct net_bridge_mcast *brmctx;
300
301 memset(&sg_key, 0, sizeof(sg_key));
302 brmctx = br_multicast_port_ctx_get_global(pmctx);
303 sg_key.port = pg->key.port;
304 sg_key.addr = *sg_ip;
305 if (br_sg_port_find(brmctx->br, &sg_key))
306 return;
307
308 src_pg = __br_multicast_add_group(brmctx, pmctx,
309 sg_ip, pg->eth_addr,
310 MCAST_INCLUDE, false, false);
311 if (IS_ERR_OR_NULL(src_pg) ||
312 src_pg->rt_protocol != RTPROT_KERNEL)
313 return;
314
315 src_pg->flags |= MDB_PG_FLAGS_STAR_EXCL;
316 }
317
__fwd_del_star_excl(struct net_bridge_port_group * pg,struct br_ip * sg_ip)318 static void __fwd_del_star_excl(struct net_bridge_port_group *pg,
319 struct br_ip *sg_ip)
320 {
321 struct net_bridge_port_group_sg_key sg_key;
322 struct net_bridge *br = pg->key.port->br;
323 struct net_bridge_port_group *src_pg;
324
325 memset(&sg_key, 0, sizeof(sg_key));
326 sg_key.port = pg->key.port;
327 sg_key.addr = *sg_ip;
328 src_pg = br_sg_port_find(br, &sg_key);
329 if (!src_pg || !(src_pg->flags & MDB_PG_FLAGS_STAR_EXCL) ||
330 src_pg->rt_protocol != RTPROT_KERNEL)
331 return;
332
333 br_multicast_find_del_pg(br, src_pg);
334 }
335
336 /* When a port group transitions to (or is added as) EXCLUDE we need to add it
337 * to all other ports' S,G entries which are not blocked by the current group
338 * for proper replication, the assumption is that any S,G blocked entries
339 * are already added so the S,G,port lookup should skip them.
340 * When a port group transitions from EXCLUDE -> INCLUDE mode or is being
341 * deleted we need to remove it from all ports' S,G entries where it was
342 * automatically installed before (i.e. where it's MDB_PG_FLAGS_STAR_EXCL).
343 */
br_multicast_star_g_handle_mode(struct net_bridge_port_group * pg,u8 filter_mode)344 void br_multicast_star_g_handle_mode(struct net_bridge_port_group *pg,
345 u8 filter_mode)
346 {
347 struct net_bridge *br = pg->key.port->br;
348 struct net_bridge_port_group *pg_lst;
349 struct net_bridge_mcast_port *pmctx;
350 struct net_bridge_mdb_entry *mp;
351 struct br_ip sg_ip;
352
353 if (WARN_ON(!br_multicast_is_star_g(&pg->key.addr)))
354 return;
355
356 mp = br_mdb_ip_get(br, &pg->key.addr);
357 if (!mp)
358 return;
359 pmctx = br_multicast_pg_to_port_ctx(pg);
360 if (!pmctx)
361 return;
362
363 memset(&sg_ip, 0, sizeof(sg_ip));
364 sg_ip = pg->key.addr;
365
366 for (pg_lst = mlock_dereference(mp->ports, br);
367 pg_lst;
368 pg_lst = mlock_dereference(pg_lst->next, br)) {
369 struct net_bridge_group_src *src_ent;
370
371 if (pg_lst == pg)
372 continue;
373 hlist_for_each_entry(src_ent, &pg_lst->src_list, node) {
374 if (!(src_ent->flags & BR_SGRP_F_INSTALLED))
375 continue;
376 sg_ip.src = src_ent->addr.src;
377 switch (filter_mode) {
378 case MCAST_INCLUDE:
379 __fwd_del_star_excl(pg, &sg_ip);
380 break;
381 case MCAST_EXCLUDE:
382 __fwd_add_star_excl(pmctx, pg, &sg_ip);
383 break;
384 }
385 }
386 }
387 }
388
389 /* called when adding a new S,G with host_joined == false by default */
br_multicast_sg_host_state(struct net_bridge_mdb_entry * star_mp,struct net_bridge_port_group * sg)390 static void br_multicast_sg_host_state(struct net_bridge_mdb_entry *star_mp,
391 struct net_bridge_port_group *sg)
392 {
393 struct net_bridge_mdb_entry *sg_mp;
394
395 if (WARN_ON(!br_multicast_is_star_g(&star_mp->addr)))
396 return;
397 if (!star_mp->host_joined)
398 return;
399
400 sg_mp = br_mdb_ip_get(star_mp->br, &sg->key.addr);
401 if (!sg_mp)
402 return;
403 sg_mp->host_joined = true;
404 }
405
406 /* set the host_joined state of all of *,G's S,G entries */
br_multicast_star_g_host_state(struct net_bridge_mdb_entry * star_mp)407 static void br_multicast_star_g_host_state(struct net_bridge_mdb_entry *star_mp)
408 {
409 struct net_bridge *br = star_mp->br;
410 struct net_bridge_mdb_entry *sg_mp;
411 struct net_bridge_port_group *pg;
412 struct br_ip sg_ip;
413
414 if (WARN_ON(!br_multicast_is_star_g(&star_mp->addr)))
415 return;
416
417 memset(&sg_ip, 0, sizeof(sg_ip));
418 sg_ip = star_mp->addr;
419 for (pg = mlock_dereference(star_mp->ports, br);
420 pg;
421 pg = mlock_dereference(pg->next, br)) {
422 struct net_bridge_group_src *src_ent;
423
424 hlist_for_each_entry(src_ent, &pg->src_list, node) {
425 if (!(src_ent->flags & BR_SGRP_F_INSTALLED))
426 continue;
427 sg_ip.src = src_ent->addr.src;
428 sg_mp = br_mdb_ip_get(br, &sg_ip);
429 if (!sg_mp)
430 continue;
431 sg_mp->host_joined = star_mp->host_joined;
432 }
433 }
434 }
435
br_multicast_sg_del_exclude_ports(struct net_bridge_mdb_entry * sgmp)436 static void br_multicast_sg_del_exclude_ports(struct net_bridge_mdb_entry *sgmp)
437 {
438 struct net_bridge_port_group __rcu **pp;
439 struct net_bridge_port_group *p;
440
441 /* *,G exclude ports are only added to S,G entries */
442 if (WARN_ON(br_multicast_is_star_g(&sgmp->addr)))
443 return;
444
445 /* we need the STAR_EXCLUDE ports if there are non-STAR_EXCLUDE ports
446 * we should ignore perm entries since they're managed by user-space
447 */
448 for (pp = &sgmp->ports;
449 (p = mlock_dereference(*pp, sgmp->br)) != NULL;
450 pp = &p->next)
451 if (!(p->flags & (MDB_PG_FLAGS_STAR_EXCL |
452 MDB_PG_FLAGS_PERMANENT)))
453 return;
454
455 /* currently the host can only have joined the *,G which means
456 * we treat it as EXCLUDE {}, so for an S,G it's considered a
457 * STAR_EXCLUDE entry and we can safely leave it
458 */
459 sgmp->host_joined = false;
460
461 for (pp = &sgmp->ports;
462 (p = mlock_dereference(*pp, sgmp->br)) != NULL;) {
463 if (!(p->flags & MDB_PG_FLAGS_PERMANENT))
464 br_multicast_del_pg(sgmp, p, pp);
465 else
466 pp = &p->next;
467 }
468 }
469
br_multicast_sg_add_exclude_ports(struct net_bridge_mdb_entry * star_mp,struct net_bridge_port_group * sg)470 void br_multicast_sg_add_exclude_ports(struct net_bridge_mdb_entry *star_mp,
471 struct net_bridge_port_group *sg)
472 {
473 struct net_bridge_port_group_sg_key sg_key;
474 struct net_bridge *br = star_mp->br;
475 struct net_bridge_mcast_port *pmctx;
476 struct net_bridge_port_group *pg;
477 struct net_bridge_mcast *brmctx;
478
479 if (WARN_ON(br_multicast_is_star_g(&sg->key.addr)))
480 return;
481 if (WARN_ON(!br_multicast_is_star_g(&star_mp->addr)))
482 return;
483
484 br_multicast_sg_host_state(star_mp, sg);
485 memset(&sg_key, 0, sizeof(sg_key));
486 sg_key.addr = sg->key.addr;
487 /* we need to add all exclude ports to the S,G */
488 for (pg = mlock_dereference(star_mp->ports, br);
489 pg;
490 pg = mlock_dereference(pg->next, br)) {
491 struct net_bridge_port_group *src_pg;
492
493 if (pg == sg || pg->filter_mode == MCAST_INCLUDE)
494 continue;
495
496 sg_key.port = pg->key.port;
497 if (br_sg_port_find(br, &sg_key))
498 continue;
499
500 pmctx = br_multicast_pg_to_port_ctx(pg);
501 if (!pmctx)
502 continue;
503 brmctx = br_multicast_port_ctx_get_global(pmctx);
504
505 src_pg = __br_multicast_add_group(brmctx, pmctx,
506 &sg->key.addr,
507 sg->eth_addr,
508 MCAST_INCLUDE, false, false);
509 if (IS_ERR_OR_NULL(src_pg) ||
510 src_pg->rt_protocol != RTPROT_KERNEL)
511 continue;
512 src_pg->flags |= MDB_PG_FLAGS_STAR_EXCL;
513 }
514 }
515
br_multicast_fwd_src_add(struct net_bridge_group_src * src)516 static void br_multicast_fwd_src_add(struct net_bridge_group_src *src)
517 {
518 struct net_bridge_mdb_entry *star_mp;
519 struct net_bridge_mcast_port *pmctx;
520 struct net_bridge_port_group *sg;
521 struct net_bridge_mcast *brmctx;
522 struct br_ip sg_ip;
523
524 if (src->flags & BR_SGRP_F_INSTALLED)
525 return;
526
527 memset(&sg_ip, 0, sizeof(sg_ip));
528 pmctx = br_multicast_pg_to_port_ctx(src->pg);
529 if (!pmctx)
530 return;
531 brmctx = br_multicast_port_ctx_get_global(pmctx);
532 sg_ip = src->pg->key.addr;
533 sg_ip.src = src->addr.src;
534
535 sg = __br_multicast_add_group(brmctx, pmctx, &sg_ip,
536 src->pg->eth_addr, MCAST_INCLUDE, false,
537 !timer_pending(&src->timer));
538 if (IS_ERR_OR_NULL(sg))
539 return;
540 src->flags |= BR_SGRP_F_INSTALLED;
541 sg->flags &= ~MDB_PG_FLAGS_STAR_EXCL;
542
543 /* if it was added by user-space as perm we can skip next steps */
544 if (sg->rt_protocol != RTPROT_KERNEL &&
545 (sg->flags & MDB_PG_FLAGS_PERMANENT))
546 return;
547
548 /* the kernel is now responsible for removing this S,G */
549 del_timer(&sg->timer);
550 star_mp = br_mdb_ip_get(src->br, &src->pg->key.addr);
551 if (!star_mp)
552 return;
553
554 br_multicast_sg_add_exclude_ports(star_mp, sg);
555 }
556
br_multicast_fwd_src_remove(struct net_bridge_group_src * src,bool fastleave)557 static void br_multicast_fwd_src_remove(struct net_bridge_group_src *src,
558 bool fastleave)
559 {
560 struct net_bridge_port_group *p, *pg = src->pg;
561 struct net_bridge_port_group __rcu **pp;
562 struct net_bridge_mdb_entry *mp;
563 struct br_ip sg_ip;
564
565 memset(&sg_ip, 0, sizeof(sg_ip));
566 sg_ip = pg->key.addr;
567 sg_ip.src = src->addr.src;
568
569 mp = br_mdb_ip_get(src->br, &sg_ip);
570 if (!mp)
571 return;
572
573 for (pp = &mp->ports;
574 (p = mlock_dereference(*pp, src->br)) != NULL;
575 pp = &p->next) {
576 if (!br_port_group_equal(p, pg->key.port, pg->eth_addr))
577 continue;
578
579 if (p->rt_protocol != RTPROT_KERNEL &&
580 (p->flags & MDB_PG_FLAGS_PERMANENT) &&
581 !(src->flags & BR_SGRP_F_USER_ADDED))
582 break;
583
584 if (fastleave)
585 p->flags |= MDB_PG_FLAGS_FAST_LEAVE;
586 br_multicast_del_pg(mp, p, pp);
587 break;
588 }
589 src->flags &= ~BR_SGRP_F_INSTALLED;
590 }
591
592 /* install S,G and based on src's timer enable or disable forwarding */
br_multicast_fwd_src_handle(struct net_bridge_group_src * src)593 static void br_multicast_fwd_src_handle(struct net_bridge_group_src *src)
594 {
595 struct net_bridge_port_group_sg_key sg_key;
596 struct net_bridge_port_group *sg;
597 u8 old_flags;
598
599 br_multicast_fwd_src_add(src);
600
601 memset(&sg_key, 0, sizeof(sg_key));
602 sg_key.addr = src->pg->key.addr;
603 sg_key.addr.src = src->addr.src;
604 sg_key.port = src->pg->key.port;
605
606 sg = br_sg_port_find(src->br, &sg_key);
607 if (!sg || (sg->flags & MDB_PG_FLAGS_PERMANENT))
608 return;
609
610 old_flags = sg->flags;
611 if (timer_pending(&src->timer))
612 sg->flags &= ~MDB_PG_FLAGS_BLOCKED;
613 else
614 sg->flags |= MDB_PG_FLAGS_BLOCKED;
615
616 if (old_flags != sg->flags) {
617 struct net_bridge_mdb_entry *sg_mp;
618
619 sg_mp = br_mdb_ip_get(src->br, &sg_key.addr);
620 if (!sg_mp)
621 return;
622 br_mdb_notify(src->br->dev, sg_mp, sg, RTM_NEWMDB);
623 }
624 }
625
br_multicast_destroy_mdb_entry(struct net_bridge_mcast_gc * gc)626 static void br_multicast_destroy_mdb_entry(struct net_bridge_mcast_gc *gc)
627 {
628 struct net_bridge_mdb_entry *mp;
629
630 mp = container_of(gc, struct net_bridge_mdb_entry, mcast_gc);
631 WARN_ON(!hlist_unhashed(&mp->mdb_node));
632 WARN_ON(mp->ports);
633
634 timer_shutdown_sync(&mp->timer);
635 kfree_rcu(mp, rcu);
636 }
637
br_multicast_del_mdb_entry(struct net_bridge_mdb_entry * mp)638 static void br_multicast_del_mdb_entry(struct net_bridge_mdb_entry *mp)
639 {
640 struct net_bridge *br = mp->br;
641
642 rhashtable_remove_fast(&br->mdb_hash_tbl, &mp->rhnode,
643 br_mdb_rht_params);
644 hlist_del_init_rcu(&mp->mdb_node);
645 hlist_add_head(&mp->mcast_gc.gc_node, &br->mcast_gc_list);
646 queue_work(system_long_wq, &br->mcast_gc_work);
647 }
648
br_multicast_group_expired(struct timer_list * t)649 static void br_multicast_group_expired(struct timer_list *t)
650 {
651 struct net_bridge_mdb_entry *mp = from_timer(mp, t, timer);
652 struct net_bridge *br = mp->br;
653
654 spin_lock(&br->multicast_lock);
655 if (hlist_unhashed(&mp->mdb_node) || !netif_running(br->dev) ||
656 timer_pending(&mp->timer))
657 goto out;
658
659 br_multicast_host_leave(mp, true);
660
661 if (mp->ports)
662 goto out;
663 br_multicast_del_mdb_entry(mp);
664 out:
665 spin_unlock(&br->multicast_lock);
666 }
667
br_multicast_destroy_group_src(struct net_bridge_mcast_gc * gc)668 static void br_multicast_destroy_group_src(struct net_bridge_mcast_gc *gc)
669 {
670 struct net_bridge_group_src *src;
671
672 src = container_of(gc, struct net_bridge_group_src, mcast_gc);
673 WARN_ON(!hlist_unhashed(&src->node));
674
675 timer_shutdown_sync(&src->timer);
676 kfree_rcu(src, rcu);
677 }
678
__br_multicast_del_group_src(struct net_bridge_group_src * src)679 void __br_multicast_del_group_src(struct net_bridge_group_src *src)
680 {
681 struct net_bridge *br = src->pg->key.port->br;
682
683 hlist_del_init_rcu(&src->node);
684 src->pg->src_ents--;
685 hlist_add_head(&src->mcast_gc.gc_node, &br->mcast_gc_list);
686 queue_work(system_long_wq, &br->mcast_gc_work);
687 }
688
br_multicast_del_group_src(struct net_bridge_group_src * src,bool fastleave)689 void br_multicast_del_group_src(struct net_bridge_group_src *src,
690 bool fastleave)
691 {
692 br_multicast_fwd_src_remove(src, fastleave);
693 __br_multicast_del_group_src(src);
694 }
695
696 static int
br_multicast_port_ngroups_inc_one(struct net_bridge_mcast_port * pmctx,struct netlink_ext_ack * extack,const char * what)697 br_multicast_port_ngroups_inc_one(struct net_bridge_mcast_port *pmctx,
698 struct netlink_ext_ack *extack,
699 const char *what)
700 {
701 u32 max = READ_ONCE(pmctx->mdb_max_entries);
702 u32 n = READ_ONCE(pmctx->mdb_n_entries);
703
704 if (max && n >= max) {
705 NL_SET_ERR_MSG_FMT_MOD(extack, "%s is already in %u groups, and mcast_max_groups=%u",
706 what, n, max);
707 return -E2BIG;
708 }
709
710 WRITE_ONCE(pmctx->mdb_n_entries, n + 1);
711 return 0;
712 }
713
br_multicast_port_ngroups_dec_one(struct net_bridge_mcast_port * pmctx)714 static void br_multicast_port_ngroups_dec_one(struct net_bridge_mcast_port *pmctx)
715 {
716 u32 n = READ_ONCE(pmctx->mdb_n_entries);
717
718 WARN_ON_ONCE(n == 0);
719 WRITE_ONCE(pmctx->mdb_n_entries, n - 1);
720 }
721
br_multicast_port_ngroups_inc(struct net_bridge_port * port,const struct br_ip * group,struct netlink_ext_ack * extack)722 static int br_multicast_port_ngroups_inc(struct net_bridge_port *port,
723 const struct br_ip *group,
724 struct netlink_ext_ack *extack)
725 {
726 struct net_bridge_mcast_port *pmctx;
727 int err;
728
729 lockdep_assert_held_once(&port->br->multicast_lock);
730
731 /* Always count on the port context. */
732 err = br_multicast_port_ngroups_inc_one(&port->multicast_ctx, extack,
733 "Port");
734 if (err) {
735 trace_br_mdb_full(port->dev, group);
736 return err;
737 }
738
739 /* Only count on the VLAN context if VID is given, and if snooping on
740 * that VLAN is enabled.
741 */
742 if (!group->vid)
743 return 0;
744
745 pmctx = br_multicast_port_vid_to_port_ctx(port, group->vid);
746 if (!pmctx)
747 return 0;
748
749 err = br_multicast_port_ngroups_inc_one(pmctx, extack, "Port-VLAN");
750 if (err) {
751 trace_br_mdb_full(port->dev, group);
752 goto dec_one_out;
753 }
754
755 return 0;
756
757 dec_one_out:
758 br_multicast_port_ngroups_dec_one(&port->multicast_ctx);
759 return err;
760 }
761
br_multicast_port_ngroups_dec(struct net_bridge_port * port,u16 vid)762 static void br_multicast_port_ngroups_dec(struct net_bridge_port *port, u16 vid)
763 {
764 struct net_bridge_mcast_port *pmctx;
765
766 lockdep_assert_held_once(&port->br->multicast_lock);
767
768 if (vid) {
769 pmctx = br_multicast_port_vid_to_port_ctx(port, vid);
770 if (pmctx)
771 br_multicast_port_ngroups_dec_one(pmctx);
772 }
773 br_multicast_port_ngroups_dec_one(&port->multicast_ctx);
774 }
775
br_multicast_ngroups_get(const struct net_bridge_mcast_port * pmctx)776 u32 br_multicast_ngroups_get(const struct net_bridge_mcast_port *pmctx)
777 {
778 return READ_ONCE(pmctx->mdb_n_entries);
779 }
780
br_multicast_ngroups_set_max(struct net_bridge_mcast_port * pmctx,u32 max)781 void br_multicast_ngroups_set_max(struct net_bridge_mcast_port *pmctx, u32 max)
782 {
783 WRITE_ONCE(pmctx->mdb_max_entries, max);
784 }
785
br_multicast_ngroups_get_max(const struct net_bridge_mcast_port * pmctx)786 u32 br_multicast_ngroups_get_max(const struct net_bridge_mcast_port *pmctx)
787 {
788 return READ_ONCE(pmctx->mdb_max_entries);
789 }
790
br_multicast_destroy_port_group(struct net_bridge_mcast_gc * gc)791 static void br_multicast_destroy_port_group(struct net_bridge_mcast_gc *gc)
792 {
793 struct net_bridge_port_group *pg;
794
795 pg = container_of(gc, struct net_bridge_port_group, mcast_gc);
796 WARN_ON(!hlist_unhashed(&pg->mglist));
797 WARN_ON(!hlist_empty(&pg->src_list));
798
799 timer_shutdown_sync(&pg->rexmit_timer);
800 timer_shutdown_sync(&pg->timer);
801 kfree_rcu(pg, rcu);
802 }
803
br_multicast_del_pg(struct net_bridge_mdb_entry * mp,struct net_bridge_port_group * pg,struct net_bridge_port_group __rcu ** pp)804 void br_multicast_del_pg(struct net_bridge_mdb_entry *mp,
805 struct net_bridge_port_group *pg,
806 struct net_bridge_port_group __rcu **pp)
807 {
808 struct net_bridge *br = pg->key.port->br;
809 struct net_bridge_group_src *ent;
810 struct hlist_node *tmp;
811
812 rcu_assign_pointer(*pp, pg->next);
813 hlist_del_init(&pg->mglist);
814 br_multicast_eht_clean_sets(pg);
815 hlist_for_each_entry_safe(ent, tmp, &pg->src_list, node)
816 br_multicast_del_group_src(ent, false);
817 br_mdb_notify(br->dev, mp, pg, RTM_DELMDB);
818 if (!br_multicast_is_star_g(&mp->addr)) {
819 rhashtable_remove_fast(&br->sg_port_tbl, &pg->rhnode,
820 br_sg_port_rht_params);
821 br_multicast_sg_del_exclude_ports(mp);
822 } else {
823 br_multicast_star_g_handle_mode(pg, MCAST_INCLUDE);
824 }
825 br_multicast_port_ngroups_dec(pg->key.port, pg->key.addr.vid);
826 hlist_add_head(&pg->mcast_gc.gc_node, &br->mcast_gc_list);
827 queue_work(system_long_wq, &br->mcast_gc_work);
828
829 if (!mp->ports && !mp->host_joined && netif_running(br->dev))
830 mod_timer(&mp->timer, jiffies);
831 }
832
br_multicast_find_del_pg(struct net_bridge * br,struct net_bridge_port_group * pg)833 static void br_multicast_find_del_pg(struct net_bridge *br,
834 struct net_bridge_port_group *pg)
835 {
836 struct net_bridge_port_group __rcu **pp;
837 struct net_bridge_mdb_entry *mp;
838 struct net_bridge_port_group *p;
839
840 mp = br_mdb_ip_get(br, &pg->key.addr);
841 if (WARN_ON(!mp))
842 return;
843
844 for (pp = &mp->ports;
845 (p = mlock_dereference(*pp, br)) != NULL;
846 pp = &p->next) {
847 if (p != pg)
848 continue;
849
850 br_multicast_del_pg(mp, pg, pp);
851 return;
852 }
853
854 WARN_ON(1);
855 }
856
br_multicast_port_group_expired(struct timer_list * t)857 static void br_multicast_port_group_expired(struct timer_list *t)
858 {
859 struct net_bridge_port_group *pg = from_timer(pg, t, timer);
860 struct net_bridge_group_src *src_ent;
861 struct net_bridge *br = pg->key.port->br;
862 struct hlist_node *tmp;
863 bool changed;
864
865 spin_lock(&br->multicast_lock);
866 if (!netif_running(br->dev) || timer_pending(&pg->timer) ||
867 hlist_unhashed(&pg->mglist) || pg->flags & MDB_PG_FLAGS_PERMANENT)
868 goto out;
869
870 changed = !!(pg->filter_mode == MCAST_EXCLUDE);
871 pg->filter_mode = MCAST_INCLUDE;
872 hlist_for_each_entry_safe(src_ent, tmp, &pg->src_list, node) {
873 if (!timer_pending(&src_ent->timer)) {
874 br_multicast_del_group_src(src_ent, false);
875 changed = true;
876 }
877 }
878
879 if (hlist_empty(&pg->src_list)) {
880 br_multicast_find_del_pg(br, pg);
881 } else if (changed) {
882 struct net_bridge_mdb_entry *mp = br_mdb_ip_get(br, &pg->key.addr);
883
884 if (changed && br_multicast_is_star_g(&pg->key.addr))
885 br_multicast_star_g_handle_mode(pg, MCAST_INCLUDE);
886
887 if (WARN_ON(!mp))
888 goto out;
889 br_mdb_notify(br->dev, mp, pg, RTM_NEWMDB);
890 }
891 out:
892 spin_unlock(&br->multicast_lock);
893 }
894
br_multicast_gc(struct hlist_head * head)895 static void br_multicast_gc(struct hlist_head *head)
896 {
897 struct net_bridge_mcast_gc *gcent;
898 struct hlist_node *tmp;
899
900 hlist_for_each_entry_safe(gcent, tmp, head, gc_node) {
901 hlist_del_init(&gcent->gc_node);
902 gcent->destroy(gcent);
903 }
904 }
905
__br_multicast_query_handle_vlan(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb)906 static void __br_multicast_query_handle_vlan(struct net_bridge_mcast *brmctx,
907 struct net_bridge_mcast_port *pmctx,
908 struct sk_buff *skb)
909 {
910 struct net_bridge_vlan *vlan = NULL;
911
912 if (pmctx && br_multicast_port_ctx_is_vlan(pmctx))
913 vlan = pmctx->vlan;
914 else if (br_multicast_ctx_is_vlan(brmctx))
915 vlan = brmctx->vlan;
916
917 if (vlan && !(vlan->flags & BRIDGE_VLAN_INFO_UNTAGGED)) {
918 u16 vlan_proto;
919
920 if (br_vlan_get_proto(brmctx->br->dev, &vlan_proto) != 0)
921 return;
922 __vlan_hwaccel_put_tag(skb, htons(vlan_proto), vlan->vid);
923 }
924 }
925
br_ip4_multicast_alloc_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,__be32 ip_dst,__be32 group,bool with_srcs,bool over_lmqt,u8 sflag,u8 * igmp_type,bool * need_rexmit)926 static struct sk_buff *br_ip4_multicast_alloc_query(struct net_bridge_mcast *brmctx,
927 struct net_bridge_mcast_port *pmctx,
928 struct net_bridge_port_group *pg,
929 __be32 ip_dst, __be32 group,
930 bool with_srcs, bool over_lmqt,
931 u8 sflag, u8 *igmp_type,
932 bool *need_rexmit)
933 {
934 struct net_bridge_port *p = pg ? pg->key.port : NULL;
935 struct net_bridge_group_src *ent;
936 size_t pkt_size, igmp_hdr_size;
937 unsigned long now = jiffies;
938 struct igmpv3_query *ihv3;
939 void *csum_start = NULL;
940 __sum16 *csum = NULL;
941 struct sk_buff *skb;
942 struct igmphdr *ih;
943 struct ethhdr *eth;
944 unsigned long lmqt;
945 struct iphdr *iph;
946 u16 lmqt_srcs = 0;
947
948 igmp_hdr_size = sizeof(*ih);
949 if (brmctx->multicast_igmp_version == 3) {
950 igmp_hdr_size = sizeof(*ihv3);
951 if (pg && with_srcs) {
952 lmqt = now + (brmctx->multicast_last_member_interval *
953 brmctx->multicast_last_member_count);
954 hlist_for_each_entry(ent, &pg->src_list, node) {
955 if (over_lmqt == time_after(ent->timer.expires,
956 lmqt) &&
957 ent->src_query_rexmit_cnt > 0)
958 lmqt_srcs++;
959 }
960
961 if (!lmqt_srcs)
962 return NULL;
963 igmp_hdr_size += lmqt_srcs * sizeof(__be32);
964 }
965 }
966
967 pkt_size = sizeof(*eth) + sizeof(*iph) + 4 + igmp_hdr_size;
968 if ((p && pkt_size > p->dev->mtu) ||
969 pkt_size > brmctx->br->dev->mtu)
970 return NULL;
971
972 skb = netdev_alloc_skb_ip_align(brmctx->br->dev, pkt_size);
973 if (!skb)
974 goto out;
975
976 __br_multicast_query_handle_vlan(brmctx, pmctx, skb);
977 skb->protocol = htons(ETH_P_IP);
978
979 skb_reset_mac_header(skb);
980 eth = eth_hdr(skb);
981
982 ether_addr_copy(eth->h_source, brmctx->br->dev->dev_addr);
983 ip_eth_mc_map(ip_dst, eth->h_dest);
984 eth->h_proto = htons(ETH_P_IP);
985 skb_put(skb, sizeof(*eth));
986
987 skb_set_network_header(skb, skb->len);
988 iph = ip_hdr(skb);
989 iph->tot_len = htons(pkt_size - sizeof(*eth));
990
991 iph->version = 4;
992 iph->ihl = 6;
993 iph->tos = 0xc0;
994 iph->id = 0;
995 iph->frag_off = htons(IP_DF);
996 iph->ttl = 1;
997 iph->protocol = IPPROTO_IGMP;
998 iph->saddr = br_opt_get(brmctx->br, BROPT_MULTICAST_QUERY_USE_IFADDR) ?
999 inet_select_addr(brmctx->br->dev, 0, RT_SCOPE_LINK) : 0;
1000 iph->daddr = ip_dst;
1001 ((u8 *)&iph[1])[0] = IPOPT_RA;
1002 ((u8 *)&iph[1])[1] = 4;
1003 ((u8 *)&iph[1])[2] = 0;
1004 ((u8 *)&iph[1])[3] = 0;
1005 ip_send_check(iph);
1006 skb_put(skb, 24);
1007
1008 skb_set_transport_header(skb, skb->len);
1009 *igmp_type = IGMP_HOST_MEMBERSHIP_QUERY;
1010
1011 switch (brmctx->multicast_igmp_version) {
1012 case 2:
1013 ih = igmp_hdr(skb);
1014 ih->type = IGMP_HOST_MEMBERSHIP_QUERY;
1015 ih->code = (group ? brmctx->multicast_last_member_interval :
1016 brmctx->multicast_query_response_interval) /
1017 (HZ / IGMP_TIMER_SCALE);
1018 ih->group = group;
1019 ih->csum = 0;
1020 csum = &ih->csum;
1021 csum_start = (void *)ih;
1022 break;
1023 case 3:
1024 ihv3 = igmpv3_query_hdr(skb);
1025 ihv3->type = IGMP_HOST_MEMBERSHIP_QUERY;
1026 ihv3->code = (group ? brmctx->multicast_last_member_interval :
1027 brmctx->multicast_query_response_interval) /
1028 (HZ / IGMP_TIMER_SCALE);
1029 ihv3->group = group;
1030 ihv3->qqic = brmctx->multicast_query_interval / HZ;
1031 ihv3->nsrcs = htons(lmqt_srcs);
1032 ihv3->resv = 0;
1033 ihv3->suppress = sflag;
1034 ihv3->qrv = 2;
1035 ihv3->csum = 0;
1036 csum = &ihv3->csum;
1037 csum_start = (void *)ihv3;
1038 if (!pg || !with_srcs)
1039 break;
1040
1041 lmqt_srcs = 0;
1042 hlist_for_each_entry(ent, &pg->src_list, node) {
1043 if (over_lmqt == time_after(ent->timer.expires,
1044 lmqt) &&
1045 ent->src_query_rexmit_cnt > 0) {
1046 ihv3->srcs[lmqt_srcs++] = ent->addr.src.ip4;
1047 ent->src_query_rexmit_cnt--;
1048 if (need_rexmit && ent->src_query_rexmit_cnt)
1049 *need_rexmit = true;
1050 }
1051 }
1052 if (WARN_ON(lmqt_srcs != ntohs(ihv3->nsrcs))) {
1053 kfree_skb(skb);
1054 return NULL;
1055 }
1056 break;
1057 }
1058
1059 if (WARN_ON(!csum || !csum_start)) {
1060 kfree_skb(skb);
1061 return NULL;
1062 }
1063
1064 *csum = ip_compute_csum(csum_start, igmp_hdr_size);
1065 skb_put(skb, igmp_hdr_size);
1066 __skb_pull(skb, sizeof(*eth));
1067
1068 out:
1069 return skb;
1070 }
1071
1072 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_alloc_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,const struct in6_addr * ip6_dst,const struct in6_addr * group,bool with_srcs,bool over_llqt,u8 sflag,u8 * igmp_type,bool * need_rexmit)1073 static struct sk_buff *br_ip6_multicast_alloc_query(struct net_bridge_mcast *brmctx,
1074 struct net_bridge_mcast_port *pmctx,
1075 struct net_bridge_port_group *pg,
1076 const struct in6_addr *ip6_dst,
1077 const struct in6_addr *group,
1078 bool with_srcs, bool over_llqt,
1079 u8 sflag, u8 *igmp_type,
1080 bool *need_rexmit)
1081 {
1082 struct net_bridge_port *p = pg ? pg->key.port : NULL;
1083 struct net_bridge_group_src *ent;
1084 size_t pkt_size, mld_hdr_size;
1085 unsigned long now = jiffies;
1086 struct mld2_query *mld2q;
1087 void *csum_start = NULL;
1088 unsigned long interval;
1089 __sum16 *csum = NULL;
1090 struct ipv6hdr *ip6h;
1091 struct mld_msg *mldq;
1092 struct sk_buff *skb;
1093 unsigned long llqt;
1094 struct ethhdr *eth;
1095 u16 llqt_srcs = 0;
1096 u8 *hopopt;
1097
1098 mld_hdr_size = sizeof(*mldq);
1099 if (brmctx->multicast_mld_version == 2) {
1100 mld_hdr_size = sizeof(*mld2q);
1101 if (pg && with_srcs) {
1102 llqt = now + (brmctx->multicast_last_member_interval *
1103 brmctx->multicast_last_member_count);
1104 hlist_for_each_entry(ent, &pg->src_list, node) {
1105 if (over_llqt == time_after(ent->timer.expires,
1106 llqt) &&
1107 ent->src_query_rexmit_cnt > 0)
1108 llqt_srcs++;
1109 }
1110
1111 if (!llqt_srcs)
1112 return NULL;
1113 mld_hdr_size += llqt_srcs * sizeof(struct in6_addr);
1114 }
1115 }
1116
1117 pkt_size = sizeof(*eth) + sizeof(*ip6h) + 8 + mld_hdr_size;
1118 if ((p && pkt_size > p->dev->mtu) ||
1119 pkt_size > brmctx->br->dev->mtu)
1120 return NULL;
1121
1122 skb = netdev_alloc_skb_ip_align(brmctx->br->dev, pkt_size);
1123 if (!skb)
1124 goto out;
1125
1126 __br_multicast_query_handle_vlan(brmctx, pmctx, skb);
1127 skb->protocol = htons(ETH_P_IPV6);
1128
1129 /* Ethernet header */
1130 skb_reset_mac_header(skb);
1131 eth = eth_hdr(skb);
1132
1133 ether_addr_copy(eth->h_source, brmctx->br->dev->dev_addr);
1134 eth->h_proto = htons(ETH_P_IPV6);
1135 skb_put(skb, sizeof(*eth));
1136
1137 /* IPv6 header + HbH option */
1138 skb_set_network_header(skb, skb->len);
1139 ip6h = ipv6_hdr(skb);
1140
1141 *(__force __be32 *)ip6h = htonl(0x60000000);
1142 ip6h->payload_len = htons(8 + mld_hdr_size);
1143 ip6h->nexthdr = IPPROTO_HOPOPTS;
1144 ip6h->hop_limit = 1;
1145 ip6h->daddr = *ip6_dst;
1146 if (ipv6_dev_get_saddr(dev_net(brmctx->br->dev), brmctx->br->dev,
1147 &ip6h->daddr, 0, &ip6h->saddr)) {
1148 kfree_skb(skb);
1149 br_opt_toggle(brmctx->br, BROPT_HAS_IPV6_ADDR, false);
1150 return NULL;
1151 }
1152
1153 br_opt_toggle(brmctx->br, BROPT_HAS_IPV6_ADDR, true);
1154 ipv6_eth_mc_map(&ip6h->daddr, eth->h_dest);
1155
1156 hopopt = (u8 *)(ip6h + 1);
1157 hopopt[0] = IPPROTO_ICMPV6; /* next hdr */
1158 hopopt[1] = 0; /* length of HbH */
1159 hopopt[2] = IPV6_TLV_ROUTERALERT; /* Router Alert */
1160 hopopt[3] = 2; /* Length of RA Option */
1161 hopopt[4] = 0; /* Type = 0x0000 (MLD) */
1162 hopopt[5] = 0;
1163 hopopt[6] = IPV6_TLV_PAD1; /* Pad1 */
1164 hopopt[7] = IPV6_TLV_PAD1; /* Pad1 */
1165
1166 skb_put(skb, sizeof(*ip6h) + 8);
1167
1168 /* ICMPv6 */
1169 skb_set_transport_header(skb, skb->len);
1170 interval = ipv6_addr_any(group) ?
1171 brmctx->multicast_query_response_interval :
1172 brmctx->multicast_last_member_interval;
1173 *igmp_type = ICMPV6_MGM_QUERY;
1174 switch (brmctx->multicast_mld_version) {
1175 case 1:
1176 mldq = (struct mld_msg *)icmp6_hdr(skb);
1177 mldq->mld_type = ICMPV6_MGM_QUERY;
1178 mldq->mld_code = 0;
1179 mldq->mld_cksum = 0;
1180 mldq->mld_maxdelay = htons((u16)jiffies_to_msecs(interval));
1181 mldq->mld_reserved = 0;
1182 mldq->mld_mca = *group;
1183 csum = &mldq->mld_cksum;
1184 csum_start = (void *)mldq;
1185 break;
1186 case 2:
1187 mld2q = (struct mld2_query *)icmp6_hdr(skb);
1188 mld2q->mld2q_mrc = htons((u16)jiffies_to_msecs(interval));
1189 mld2q->mld2q_type = ICMPV6_MGM_QUERY;
1190 mld2q->mld2q_code = 0;
1191 mld2q->mld2q_cksum = 0;
1192 mld2q->mld2q_resv1 = 0;
1193 mld2q->mld2q_resv2 = 0;
1194 mld2q->mld2q_suppress = sflag;
1195 mld2q->mld2q_qrv = 2;
1196 mld2q->mld2q_nsrcs = htons(llqt_srcs);
1197 mld2q->mld2q_qqic = brmctx->multicast_query_interval / HZ;
1198 mld2q->mld2q_mca = *group;
1199 csum = &mld2q->mld2q_cksum;
1200 csum_start = (void *)mld2q;
1201 if (!pg || !with_srcs)
1202 break;
1203
1204 llqt_srcs = 0;
1205 hlist_for_each_entry(ent, &pg->src_list, node) {
1206 if (over_llqt == time_after(ent->timer.expires,
1207 llqt) &&
1208 ent->src_query_rexmit_cnt > 0) {
1209 mld2q->mld2q_srcs[llqt_srcs++] = ent->addr.src.ip6;
1210 ent->src_query_rexmit_cnt--;
1211 if (need_rexmit && ent->src_query_rexmit_cnt)
1212 *need_rexmit = true;
1213 }
1214 }
1215 if (WARN_ON(llqt_srcs != ntohs(mld2q->mld2q_nsrcs))) {
1216 kfree_skb(skb);
1217 return NULL;
1218 }
1219 break;
1220 }
1221
1222 if (WARN_ON(!csum || !csum_start)) {
1223 kfree_skb(skb);
1224 return NULL;
1225 }
1226
1227 *csum = csum_ipv6_magic(&ip6h->saddr, &ip6h->daddr, mld_hdr_size,
1228 IPPROTO_ICMPV6,
1229 csum_partial(csum_start, mld_hdr_size, 0));
1230 skb_put(skb, mld_hdr_size);
1231 __skb_pull(skb, sizeof(*eth));
1232
1233 out:
1234 return skb;
1235 }
1236 #endif
1237
br_multicast_alloc_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,struct br_ip * ip_dst,struct br_ip * group,bool with_srcs,bool over_lmqt,u8 sflag,u8 * igmp_type,bool * need_rexmit)1238 static struct sk_buff *br_multicast_alloc_query(struct net_bridge_mcast *brmctx,
1239 struct net_bridge_mcast_port *pmctx,
1240 struct net_bridge_port_group *pg,
1241 struct br_ip *ip_dst,
1242 struct br_ip *group,
1243 bool with_srcs, bool over_lmqt,
1244 u8 sflag, u8 *igmp_type,
1245 bool *need_rexmit)
1246 {
1247 __be32 ip4_dst;
1248
1249 switch (group->proto) {
1250 case htons(ETH_P_IP):
1251 ip4_dst = ip_dst ? ip_dst->dst.ip4 : htonl(INADDR_ALLHOSTS_GROUP);
1252 return br_ip4_multicast_alloc_query(brmctx, pmctx, pg,
1253 ip4_dst, group->dst.ip4,
1254 with_srcs, over_lmqt,
1255 sflag, igmp_type,
1256 need_rexmit);
1257 #if IS_ENABLED(CONFIG_IPV6)
1258 case htons(ETH_P_IPV6): {
1259 struct in6_addr ip6_dst;
1260
1261 if (ip_dst)
1262 ip6_dst = ip_dst->dst.ip6;
1263 else
1264 ipv6_addr_set(&ip6_dst, htonl(0xff020000), 0, 0,
1265 htonl(1));
1266
1267 return br_ip6_multicast_alloc_query(brmctx, pmctx, pg,
1268 &ip6_dst, &group->dst.ip6,
1269 with_srcs, over_lmqt,
1270 sflag, igmp_type,
1271 need_rexmit);
1272 }
1273 #endif
1274 }
1275 return NULL;
1276 }
1277
br_multicast_new_group(struct net_bridge * br,struct br_ip * group)1278 struct net_bridge_mdb_entry *br_multicast_new_group(struct net_bridge *br,
1279 struct br_ip *group)
1280 {
1281 struct net_bridge_mdb_entry *mp;
1282 int err;
1283
1284 mp = br_mdb_ip_get(br, group);
1285 if (mp)
1286 return mp;
1287
1288 if (atomic_read(&br->mdb_hash_tbl.nelems) >= br->hash_max) {
1289 trace_br_mdb_full(br->dev, group);
1290 br_mc_disabled_update(br->dev, false, NULL);
1291 br_opt_toggle(br, BROPT_MULTICAST_ENABLED, false);
1292 return ERR_PTR(-E2BIG);
1293 }
1294
1295 mp = kzalloc(sizeof(*mp), GFP_ATOMIC);
1296 if (unlikely(!mp))
1297 return ERR_PTR(-ENOMEM);
1298
1299 mp->br = br;
1300 mp->addr = *group;
1301 mp->mcast_gc.destroy = br_multicast_destroy_mdb_entry;
1302 timer_setup(&mp->timer, br_multicast_group_expired, 0);
1303 err = rhashtable_lookup_insert_fast(&br->mdb_hash_tbl, &mp->rhnode,
1304 br_mdb_rht_params);
1305 if (err) {
1306 kfree(mp);
1307 mp = ERR_PTR(err);
1308 } else {
1309 hlist_add_head_rcu(&mp->mdb_node, &br->mdb_list);
1310 }
1311
1312 return mp;
1313 }
1314
br_multicast_group_src_expired(struct timer_list * t)1315 static void br_multicast_group_src_expired(struct timer_list *t)
1316 {
1317 struct net_bridge_group_src *src = from_timer(src, t, timer);
1318 struct net_bridge_port_group *pg;
1319 struct net_bridge *br = src->br;
1320
1321 spin_lock(&br->multicast_lock);
1322 if (hlist_unhashed(&src->node) || !netif_running(br->dev) ||
1323 timer_pending(&src->timer))
1324 goto out;
1325
1326 pg = src->pg;
1327 if (pg->filter_mode == MCAST_INCLUDE) {
1328 br_multicast_del_group_src(src, false);
1329 if (!hlist_empty(&pg->src_list))
1330 goto out;
1331 br_multicast_find_del_pg(br, pg);
1332 } else {
1333 br_multicast_fwd_src_handle(src);
1334 }
1335
1336 out:
1337 spin_unlock(&br->multicast_lock);
1338 }
1339
1340 struct net_bridge_group_src *
br_multicast_find_group_src(struct net_bridge_port_group * pg,struct br_ip * ip)1341 br_multicast_find_group_src(struct net_bridge_port_group *pg, struct br_ip *ip)
1342 {
1343 struct net_bridge_group_src *ent;
1344
1345 switch (ip->proto) {
1346 case htons(ETH_P_IP):
1347 hlist_for_each_entry(ent, &pg->src_list, node)
1348 if (ip->src.ip4 == ent->addr.src.ip4)
1349 return ent;
1350 break;
1351 #if IS_ENABLED(CONFIG_IPV6)
1352 case htons(ETH_P_IPV6):
1353 hlist_for_each_entry(ent, &pg->src_list, node)
1354 if (!ipv6_addr_cmp(&ent->addr.src.ip6, &ip->src.ip6))
1355 return ent;
1356 break;
1357 #endif
1358 }
1359
1360 return NULL;
1361 }
1362
1363 struct net_bridge_group_src *
br_multicast_new_group_src(struct net_bridge_port_group * pg,struct br_ip * src_ip)1364 br_multicast_new_group_src(struct net_bridge_port_group *pg, struct br_ip *src_ip)
1365 {
1366 struct net_bridge_group_src *grp_src;
1367
1368 if (unlikely(pg->src_ents >= PG_SRC_ENT_LIMIT))
1369 return NULL;
1370
1371 switch (src_ip->proto) {
1372 case htons(ETH_P_IP):
1373 if (ipv4_is_zeronet(src_ip->src.ip4) ||
1374 ipv4_is_multicast(src_ip->src.ip4))
1375 return NULL;
1376 break;
1377 #if IS_ENABLED(CONFIG_IPV6)
1378 case htons(ETH_P_IPV6):
1379 if (ipv6_addr_any(&src_ip->src.ip6) ||
1380 ipv6_addr_is_multicast(&src_ip->src.ip6))
1381 return NULL;
1382 break;
1383 #endif
1384 }
1385
1386 grp_src = kzalloc(sizeof(*grp_src), GFP_ATOMIC);
1387 if (unlikely(!grp_src))
1388 return NULL;
1389
1390 grp_src->pg = pg;
1391 grp_src->br = pg->key.port->br;
1392 grp_src->addr = *src_ip;
1393 grp_src->mcast_gc.destroy = br_multicast_destroy_group_src;
1394 timer_setup(&grp_src->timer, br_multicast_group_src_expired, 0);
1395
1396 hlist_add_head_rcu(&grp_src->node, &pg->src_list);
1397 pg->src_ents++;
1398
1399 return grp_src;
1400 }
1401
br_multicast_new_port_group(struct net_bridge_port * port,const struct br_ip * group,struct net_bridge_port_group __rcu * next,unsigned char flags,const unsigned char * src,u8 filter_mode,u8 rt_protocol,struct netlink_ext_ack * extack)1402 struct net_bridge_port_group *br_multicast_new_port_group(
1403 struct net_bridge_port *port,
1404 const struct br_ip *group,
1405 struct net_bridge_port_group __rcu *next,
1406 unsigned char flags,
1407 const unsigned char *src,
1408 u8 filter_mode,
1409 u8 rt_protocol,
1410 struct netlink_ext_ack *extack)
1411 {
1412 struct net_bridge_port_group *p;
1413 int err;
1414
1415 err = br_multicast_port_ngroups_inc(port, group, extack);
1416 if (err)
1417 return NULL;
1418
1419 p = kzalloc(sizeof(*p), GFP_ATOMIC);
1420 if (unlikely(!p)) {
1421 NL_SET_ERR_MSG_MOD(extack, "Couldn't allocate new port group");
1422 goto dec_out;
1423 }
1424
1425 p->key.addr = *group;
1426 p->key.port = port;
1427 p->flags = flags;
1428 p->filter_mode = filter_mode;
1429 p->rt_protocol = rt_protocol;
1430 p->eht_host_tree = RB_ROOT;
1431 p->eht_set_tree = RB_ROOT;
1432 p->mcast_gc.destroy = br_multicast_destroy_port_group;
1433 INIT_HLIST_HEAD(&p->src_list);
1434
1435 if (!br_multicast_is_star_g(group) &&
1436 rhashtable_lookup_insert_fast(&port->br->sg_port_tbl, &p->rhnode,
1437 br_sg_port_rht_params)) {
1438 NL_SET_ERR_MSG_MOD(extack, "Couldn't insert new port group");
1439 goto free_out;
1440 }
1441
1442 rcu_assign_pointer(p->next, next);
1443 timer_setup(&p->timer, br_multicast_port_group_expired, 0);
1444 timer_setup(&p->rexmit_timer, br_multicast_port_group_rexmit, 0);
1445 hlist_add_head(&p->mglist, &port->mglist);
1446
1447 if (src)
1448 memcpy(p->eth_addr, src, ETH_ALEN);
1449 else
1450 eth_broadcast_addr(p->eth_addr);
1451
1452 return p;
1453
1454 free_out:
1455 kfree(p);
1456 dec_out:
1457 br_multicast_port_ngroups_dec(port, group->vid);
1458 return NULL;
1459 }
1460
br_multicast_del_port_group(struct net_bridge_port_group * p)1461 void br_multicast_del_port_group(struct net_bridge_port_group *p)
1462 {
1463 struct net_bridge_port *port = p->key.port;
1464 __u16 vid = p->key.addr.vid;
1465
1466 hlist_del_init(&p->mglist);
1467 if (!br_multicast_is_star_g(&p->key.addr))
1468 rhashtable_remove_fast(&port->br->sg_port_tbl, &p->rhnode,
1469 br_sg_port_rht_params);
1470 kfree(p);
1471 br_multicast_port_ngroups_dec(port, vid);
1472 }
1473
br_multicast_host_join(const struct net_bridge_mcast * brmctx,struct net_bridge_mdb_entry * mp,bool notify)1474 void br_multicast_host_join(const struct net_bridge_mcast *brmctx,
1475 struct net_bridge_mdb_entry *mp, bool notify)
1476 {
1477 if (!mp->host_joined) {
1478 mp->host_joined = true;
1479 if (br_multicast_is_star_g(&mp->addr))
1480 br_multicast_star_g_host_state(mp);
1481 if (notify)
1482 br_mdb_notify(mp->br->dev, mp, NULL, RTM_NEWMDB);
1483 }
1484
1485 if (br_group_is_l2(&mp->addr))
1486 return;
1487
1488 mod_timer(&mp->timer, jiffies + brmctx->multicast_membership_interval);
1489 }
1490
br_multicast_host_leave(struct net_bridge_mdb_entry * mp,bool notify)1491 void br_multicast_host_leave(struct net_bridge_mdb_entry *mp, bool notify)
1492 {
1493 if (!mp->host_joined)
1494 return;
1495
1496 mp->host_joined = false;
1497 if (br_multicast_is_star_g(&mp->addr))
1498 br_multicast_star_g_host_state(mp);
1499 if (notify)
1500 br_mdb_notify(mp->br->dev, mp, NULL, RTM_DELMDB);
1501 }
1502
1503 static struct net_bridge_port_group *
__br_multicast_add_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct br_ip * group,const unsigned char * src,u8 filter_mode,bool igmpv2_mldv1,bool blocked)1504 __br_multicast_add_group(struct net_bridge_mcast *brmctx,
1505 struct net_bridge_mcast_port *pmctx,
1506 struct br_ip *group,
1507 const unsigned char *src,
1508 u8 filter_mode,
1509 bool igmpv2_mldv1,
1510 bool blocked)
1511 {
1512 struct net_bridge_port_group __rcu **pp;
1513 struct net_bridge_port_group *p = NULL;
1514 struct net_bridge_mdb_entry *mp;
1515 unsigned long now = jiffies;
1516
1517 if (!br_multicast_ctx_should_use(brmctx, pmctx))
1518 goto out;
1519
1520 mp = br_multicast_new_group(brmctx->br, group);
1521 if (IS_ERR(mp))
1522 return ERR_CAST(mp);
1523
1524 if (!pmctx) {
1525 br_multicast_host_join(brmctx, mp, true);
1526 goto out;
1527 }
1528
1529 for (pp = &mp->ports;
1530 (p = mlock_dereference(*pp, brmctx->br)) != NULL;
1531 pp = &p->next) {
1532 if (br_port_group_equal(p, pmctx->port, src))
1533 goto found;
1534 if ((unsigned long)p->key.port < (unsigned long)pmctx->port)
1535 break;
1536 }
1537
1538 p = br_multicast_new_port_group(pmctx->port, group, *pp, 0, src,
1539 filter_mode, RTPROT_KERNEL, NULL);
1540 if (unlikely(!p)) {
1541 p = ERR_PTR(-ENOMEM);
1542 goto out;
1543 }
1544 rcu_assign_pointer(*pp, p);
1545 if (blocked)
1546 p->flags |= MDB_PG_FLAGS_BLOCKED;
1547 br_mdb_notify(brmctx->br->dev, mp, p, RTM_NEWMDB);
1548
1549 found:
1550 if (igmpv2_mldv1)
1551 mod_timer(&p->timer,
1552 now + brmctx->multicast_membership_interval);
1553
1554 out:
1555 return p;
1556 }
1557
br_multicast_add_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct br_ip * group,const unsigned char * src,u8 filter_mode,bool igmpv2_mldv1)1558 static int br_multicast_add_group(struct net_bridge_mcast *brmctx,
1559 struct net_bridge_mcast_port *pmctx,
1560 struct br_ip *group,
1561 const unsigned char *src,
1562 u8 filter_mode,
1563 bool igmpv2_mldv1)
1564 {
1565 struct net_bridge_port_group *pg;
1566 int err;
1567
1568 spin_lock(&brmctx->br->multicast_lock);
1569 pg = __br_multicast_add_group(brmctx, pmctx, group, src, filter_mode,
1570 igmpv2_mldv1, false);
1571 /* NULL is considered valid for host joined groups */
1572 err = PTR_ERR_OR_ZERO(pg);
1573 spin_unlock(&brmctx->br->multicast_lock);
1574
1575 return err;
1576 }
1577
br_ip4_multicast_add_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,__be32 group,__u16 vid,const unsigned char * src,bool igmpv2)1578 static int br_ip4_multicast_add_group(struct net_bridge_mcast *brmctx,
1579 struct net_bridge_mcast_port *pmctx,
1580 __be32 group,
1581 __u16 vid,
1582 const unsigned char *src,
1583 bool igmpv2)
1584 {
1585 struct br_ip br_group;
1586 u8 filter_mode;
1587
1588 if (ipv4_is_local_multicast(group))
1589 return 0;
1590
1591 memset(&br_group, 0, sizeof(br_group));
1592 br_group.dst.ip4 = group;
1593 br_group.proto = htons(ETH_P_IP);
1594 br_group.vid = vid;
1595 filter_mode = igmpv2 ? MCAST_EXCLUDE : MCAST_INCLUDE;
1596
1597 return br_multicast_add_group(brmctx, pmctx, &br_group, src,
1598 filter_mode, igmpv2);
1599 }
1600
1601 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_add_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,const struct in6_addr * group,__u16 vid,const unsigned char * src,bool mldv1)1602 static int br_ip6_multicast_add_group(struct net_bridge_mcast *brmctx,
1603 struct net_bridge_mcast_port *pmctx,
1604 const struct in6_addr *group,
1605 __u16 vid,
1606 const unsigned char *src,
1607 bool mldv1)
1608 {
1609 struct br_ip br_group;
1610 u8 filter_mode;
1611
1612 if (ipv6_addr_is_ll_all_nodes(group))
1613 return 0;
1614
1615 memset(&br_group, 0, sizeof(br_group));
1616 br_group.dst.ip6 = *group;
1617 br_group.proto = htons(ETH_P_IPV6);
1618 br_group.vid = vid;
1619 filter_mode = mldv1 ? MCAST_EXCLUDE : MCAST_INCLUDE;
1620
1621 return br_multicast_add_group(brmctx, pmctx, &br_group, src,
1622 filter_mode, mldv1);
1623 }
1624 #endif
1625
br_multicast_rport_del(struct hlist_node * rlist)1626 static bool br_multicast_rport_del(struct hlist_node *rlist)
1627 {
1628 if (hlist_unhashed(rlist))
1629 return false;
1630
1631 hlist_del_init_rcu(rlist);
1632 return true;
1633 }
1634
br_ip4_multicast_rport_del(struct net_bridge_mcast_port * pmctx)1635 static bool br_ip4_multicast_rport_del(struct net_bridge_mcast_port *pmctx)
1636 {
1637 return br_multicast_rport_del(&pmctx->ip4_rlist);
1638 }
1639
br_ip6_multicast_rport_del(struct net_bridge_mcast_port * pmctx)1640 static bool br_ip6_multicast_rport_del(struct net_bridge_mcast_port *pmctx)
1641 {
1642 #if IS_ENABLED(CONFIG_IPV6)
1643 return br_multicast_rport_del(&pmctx->ip6_rlist);
1644 #else
1645 return false;
1646 #endif
1647 }
1648
br_multicast_router_expired(struct net_bridge_mcast_port * pmctx,struct timer_list * t,struct hlist_node * rlist)1649 static void br_multicast_router_expired(struct net_bridge_mcast_port *pmctx,
1650 struct timer_list *t,
1651 struct hlist_node *rlist)
1652 {
1653 struct net_bridge *br = pmctx->port->br;
1654 bool del;
1655
1656 spin_lock(&br->multicast_lock);
1657 if (pmctx->multicast_router == MDB_RTR_TYPE_DISABLED ||
1658 pmctx->multicast_router == MDB_RTR_TYPE_PERM ||
1659 timer_pending(t))
1660 goto out;
1661
1662 del = br_multicast_rport_del(rlist);
1663 br_multicast_rport_del_notify(pmctx, del);
1664 out:
1665 spin_unlock(&br->multicast_lock);
1666 }
1667
br_ip4_multicast_router_expired(struct timer_list * t)1668 static void br_ip4_multicast_router_expired(struct timer_list *t)
1669 {
1670 struct net_bridge_mcast_port *pmctx = from_timer(pmctx, t,
1671 ip4_mc_router_timer);
1672
1673 br_multicast_router_expired(pmctx, t, &pmctx->ip4_rlist);
1674 }
1675
1676 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_router_expired(struct timer_list * t)1677 static void br_ip6_multicast_router_expired(struct timer_list *t)
1678 {
1679 struct net_bridge_mcast_port *pmctx = from_timer(pmctx, t,
1680 ip6_mc_router_timer);
1681
1682 br_multicast_router_expired(pmctx, t, &pmctx->ip6_rlist);
1683 }
1684 #endif
1685
br_mc_router_state_change(struct net_bridge * p,bool is_mc_router)1686 static void br_mc_router_state_change(struct net_bridge *p,
1687 bool is_mc_router)
1688 {
1689 struct switchdev_attr attr = {
1690 .orig_dev = p->dev,
1691 .id = SWITCHDEV_ATTR_ID_BRIDGE_MROUTER,
1692 .flags = SWITCHDEV_F_DEFER,
1693 .u.mrouter = is_mc_router,
1694 };
1695
1696 switchdev_port_attr_set(p->dev, &attr, NULL);
1697 }
1698
br_multicast_local_router_expired(struct net_bridge_mcast * brmctx,struct timer_list * timer)1699 static void br_multicast_local_router_expired(struct net_bridge_mcast *brmctx,
1700 struct timer_list *timer)
1701 {
1702 spin_lock(&brmctx->br->multicast_lock);
1703 if (brmctx->multicast_router == MDB_RTR_TYPE_DISABLED ||
1704 brmctx->multicast_router == MDB_RTR_TYPE_PERM ||
1705 br_ip4_multicast_is_router(brmctx) ||
1706 br_ip6_multicast_is_router(brmctx))
1707 goto out;
1708
1709 br_mc_router_state_change(brmctx->br, false);
1710 out:
1711 spin_unlock(&brmctx->br->multicast_lock);
1712 }
1713
br_ip4_multicast_local_router_expired(struct timer_list * t)1714 static void br_ip4_multicast_local_router_expired(struct timer_list *t)
1715 {
1716 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
1717 ip4_mc_router_timer);
1718
1719 br_multicast_local_router_expired(brmctx, t);
1720 }
1721
1722 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_local_router_expired(struct timer_list * t)1723 static void br_ip6_multicast_local_router_expired(struct timer_list *t)
1724 {
1725 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
1726 ip6_mc_router_timer);
1727
1728 br_multicast_local_router_expired(brmctx, t);
1729 }
1730 #endif
1731
br_multicast_querier_expired(struct net_bridge_mcast * brmctx,struct bridge_mcast_own_query * query)1732 static void br_multicast_querier_expired(struct net_bridge_mcast *brmctx,
1733 struct bridge_mcast_own_query *query)
1734 {
1735 spin_lock(&brmctx->br->multicast_lock);
1736 if (!netif_running(brmctx->br->dev) ||
1737 br_multicast_ctx_vlan_global_disabled(brmctx) ||
1738 !br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED))
1739 goto out;
1740
1741 br_multicast_start_querier(brmctx, query);
1742
1743 out:
1744 spin_unlock(&brmctx->br->multicast_lock);
1745 }
1746
br_ip4_multicast_querier_expired(struct timer_list * t)1747 static void br_ip4_multicast_querier_expired(struct timer_list *t)
1748 {
1749 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
1750 ip4_other_query.timer);
1751
1752 br_multicast_querier_expired(brmctx, &brmctx->ip4_own_query);
1753 }
1754
1755 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_querier_expired(struct timer_list * t)1756 static void br_ip6_multicast_querier_expired(struct timer_list *t)
1757 {
1758 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
1759 ip6_other_query.timer);
1760
1761 br_multicast_querier_expired(brmctx, &brmctx->ip6_own_query);
1762 }
1763 #endif
1764
br_multicast_query_delay_expired(struct timer_list * t)1765 static void br_multicast_query_delay_expired(struct timer_list *t)
1766 {
1767 }
1768
br_multicast_select_own_querier(struct net_bridge_mcast * brmctx,struct br_ip * ip,struct sk_buff * skb)1769 static void br_multicast_select_own_querier(struct net_bridge_mcast *brmctx,
1770 struct br_ip *ip,
1771 struct sk_buff *skb)
1772 {
1773 if (ip->proto == htons(ETH_P_IP))
1774 brmctx->ip4_querier.addr.src.ip4 = ip_hdr(skb)->saddr;
1775 #if IS_ENABLED(CONFIG_IPV6)
1776 else
1777 brmctx->ip6_querier.addr.src.ip6 = ipv6_hdr(skb)->saddr;
1778 #endif
1779 }
1780
__br_multicast_send_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,struct br_ip * ip_dst,struct br_ip * group,bool with_srcs,u8 sflag,bool * need_rexmit)1781 static void __br_multicast_send_query(struct net_bridge_mcast *brmctx,
1782 struct net_bridge_mcast_port *pmctx,
1783 struct net_bridge_port_group *pg,
1784 struct br_ip *ip_dst,
1785 struct br_ip *group,
1786 bool with_srcs,
1787 u8 sflag,
1788 bool *need_rexmit)
1789 {
1790 bool over_lmqt = !!sflag;
1791 struct sk_buff *skb;
1792 u8 igmp_type;
1793
1794 if (!br_multicast_ctx_should_use(brmctx, pmctx) ||
1795 !br_multicast_ctx_matches_vlan_snooping(brmctx))
1796 return;
1797
1798 again_under_lmqt:
1799 skb = br_multicast_alloc_query(brmctx, pmctx, pg, ip_dst, group,
1800 with_srcs, over_lmqt, sflag, &igmp_type,
1801 need_rexmit);
1802 if (!skb)
1803 return;
1804
1805 if (pmctx) {
1806 skb->dev = pmctx->port->dev;
1807 br_multicast_count(brmctx->br, pmctx->port, skb, igmp_type,
1808 BR_MCAST_DIR_TX);
1809 NF_HOOK(NFPROTO_BRIDGE, NF_BR_LOCAL_OUT,
1810 dev_net(pmctx->port->dev), NULL, skb, NULL, skb->dev,
1811 br_dev_queue_push_xmit);
1812
1813 if (over_lmqt && with_srcs && sflag) {
1814 over_lmqt = false;
1815 goto again_under_lmqt;
1816 }
1817 } else {
1818 br_multicast_select_own_querier(brmctx, group, skb);
1819 br_multicast_count(brmctx->br, NULL, skb, igmp_type,
1820 BR_MCAST_DIR_RX);
1821 netif_rx(skb);
1822 }
1823 }
1824
br_multicast_read_querier(const struct bridge_mcast_querier * querier,struct bridge_mcast_querier * dest)1825 static void br_multicast_read_querier(const struct bridge_mcast_querier *querier,
1826 struct bridge_mcast_querier *dest)
1827 {
1828 unsigned int seq;
1829
1830 memset(dest, 0, sizeof(*dest));
1831 do {
1832 seq = read_seqcount_begin(&querier->seq);
1833 dest->port_ifidx = querier->port_ifidx;
1834 memcpy(&dest->addr, &querier->addr, sizeof(struct br_ip));
1835 } while (read_seqcount_retry(&querier->seq, seq));
1836 }
1837
br_multicast_update_querier(struct net_bridge_mcast * brmctx,struct bridge_mcast_querier * querier,int ifindex,struct br_ip * saddr)1838 static void br_multicast_update_querier(struct net_bridge_mcast *brmctx,
1839 struct bridge_mcast_querier *querier,
1840 int ifindex,
1841 struct br_ip *saddr)
1842 {
1843 write_seqcount_begin(&querier->seq);
1844 querier->port_ifidx = ifindex;
1845 memcpy(&querier->addr, saddr, sizeof(*saddr));
1846 write_seqcount_end(&querier->seq);
1847 }
1848
br_multicast_send_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct bridge_mcast_own_query * own_query)1849 static void br_multicast_send_query(struct net_bridge_mcast *brmctx,
1850 struct net_bridge_mcast_port *pmctx,
1851 struct bridge_mcast_own_query *own_query)
1852 {
1853 struct bridge_mcast_other_query *other_query = NULL;
1854 struct bridge_mcast_querier *querier;
1855 struct br_ip br_group;
1856 unsigned long time;
1857
1858 if (!br_multicast_ctx_should_use(brmctx, pmctx) ||
1859 !br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED) ||
1860 !brmctx->multicast_querier)
1861 return;
1862
1863 memset(&br_group.dst, 0, sizeof(br_group.dst));
1864
1865 if (pmctx ? (own_query == &pmctx->ip4_own_query) :
1866 (own_query == &brmctx->ip4_own_query)) {
1867 querier = &brmctx->ip4_querier;
1868 other_query = &brmctx->ip4_other_query;
1869 br_group.proto = htons(ETH_P_IP);
1870 #if IS_ENABLED(CONFIG_IPV6)
1871 } else {
1872 querier = &brmctx->ip6_querier;
1873 other_query = &brmctx->ip6_other_query;
1874 br_group.proto = htons(ETH_P_IPV6);
1875 #endif
1876 }
1877
1878 if (!other_query || timer_pending(&other_query->timer))
1879 return;
1880
1881 /* we're about to select ourselves as querier */
1882 if (!pmctx && querier->port_ifidx) {
1883 struct br_ip zeroip = {};
1884
1885 br_multicast_update_querier(brmctx, querier, 0, &zeroip);
1886 }
1887
1888 __br_multicast_send_query(brmctx, pmctx, NULL, NULL, &br_group, false,
1889 0, NULL);
1890
1891 time = jiffies;
1892 time += own_query->startup_sent < brmctx->multicast_startup_query_count ?
1893 brmctx->multicast_startup_query_interval :
1894 brmctx->multicast_query_interval;
1895 mod_timer(&own_query->timer, time);
1896 }
1897
1898 static void
br_multicast_port_query_expired(struct net_bridge_mcast_port * pmctx,struct bridge_mcast_own_query * query)1899 br_multicast_port_query_expired(struct net_bridge_mcast_port *pmctx,
1900 struct bridge_mcast_own_query *query)
1901 {
1902 struct net_bridge *br = pmctx->port->br;
1903 struct net_bridge_mcast *brmctx;
1904
1905 spin_lock(&br->multicast_lock);
1906 if (br_multicast_port_ctx_state_stopped(pmctx))
1907 goto out;
1908
1909 brmctx = br_multicast_port_ctx_get_global(pmctx);
1910 if (query->startup_sent < brmctx->multicast_startup_query_count)
1911 query->startup_sent++;
1912
1913 br_multicast_send_query(brmctx, pmctx, query);
1914
1915 out:
1916 spin_unlock(&br->multicast_lock);
1917 }
1918
br_ip4_multicast_port_query_expired(struct timer_list * t)1919 static void br_ip4_multicast_port_query_expired(struct timer_list *t)
1920 {
1921 struct net_bridge_mcast_port *pmctx = from_timer(pmctx, t,
1922 ip4_own_query.timer);
1923
1924 br_multicast_port_query_expired(pmctx, &pmctx->ip4_own_query);
1925 }
1926
1927 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_port_query_expired(struct timer_list * t)1928 static void br_ip6_multicast_port_query_expired(struct timer_list *t)
1929 {
1930 struct net_bridge_mcast_port *pmctx = from_timer(pmctx, t,
1931 ip6_own_query.timer);
1932
1933 br_multicast_port_query_expired(pmctx, &pmctx->ip6_own_query);
1934 }
1935 #endif
1936
br_multicast_port_group_rexmit(struct timer_list * t)1937 static void br_multicast_port_group_rexmit(struct timer_list *t)
1938 {
1939 struct net_bridge_port_group *pg = from_timer(pg, t, rexmit_timer);
1940 struct bridge_mcast_other_query *other_query = NULL;
1941 struct net_bridge *br = pg->key.port->br;
1942 struct net_bridge_mcast_port *pmctx;
1943 struct net_bridge_mcast *brmctx;
1944 bool need_rexmit = false;
1945
1946 spin_lock(&br->multicast_lock);
1947 if (!netif_running(br->dev) || hlist_unhashed(&pg->mglist) ||
1948 !br_opt_get(br, BROPT_MULTICAST_ENABLED))
1949 goto out;
1950
1951 pmctx = br_multicast_pg_to_port_ctx(pg);
1952 if (!pmctx)
1953 goto out;
1954 brmctx = br_multicast_port_ctx_get_global(pmctx);
1955 if (!brmctx->multicast_querier)
1956 goto out;
1957
1958 if (pg->key.addr.proto == htons(ETH_P_IP))
1959 other_query = &brmctx->ip4_other_query;
1960 #if IS_ENABLED(CONFIG_IPV6)
1961 else
1962 other_query = &brmctx->ip6_other_query;
1963 #endif
1964
1965 if (!other_query || timer_pending(&other_query->timer))
1966 goto out;
1967
1968 if (pg->grp_query_rexmit_cnt) {
1969 pg->grp_query_rexmit_cnt--;
1970 __br_multicast_send_query(brmctx, pmctx, pg, &pg->key.addr,
1971 &pg->key.addr, false, 1, NULL);
1972 }
1973 __br_multicast_send_query(brmctx, pmctx, pg, &pg->key.addr,
1974 &pg->key.addr, true, 0, &need_rexmit);
1975
1976 if (pg->grp_query_rexmit_cnt || need_rexmit)
1977 mod_timer(&pg->rexmit_timer, jiffies +
1978 brmctx->multicast_last_member_interval);
1979 out:
1980 spin_unlock(&br->multicast_lock);
1981 }
1982
br_mc_disabled_update(struct net_device * dev,bool value,struct netlink_ext_ack * extack)1983 static int br_mc_disabled_update(struct net_device *dev, bool value,
1984 struct netlink_ext_ack *extack)
1985 {
1986 struct switchdev_attr attr = {
1987 .orig_dev = dev,
1988 .id = SWITCHDEV_ATTR_ID_BRIDGE_MC_DISABLED,
1989 .flags = SWITCHDEV_F_DEFER,
1990 .u.mc_disabled = !value,
1991 };
1992
1993 return switchdev_port_attr_set(dev, &attr, extack);
1994 }
1995
br_multicast_port_ctx_init(struct net_bridge_port * port,struct net_bridge_vlan * vlan,struct net_bridge_mcast_port * pmctx)1996 void br_multicast_port_ctx_init(struct net_bridge_port *port,
1997 struct net_bridge_vlan *vlan,
1998 struct net_bridge_mcast_port *pmctx)
1999 {
2000 pmctx->port = port;
2001 pmctx->vlan = vlan;
2002 pmctx->multicast_router = MDB_RTR_TYPE_TEMP_QUERY;
2003 timer_setup(&pmctx->ip4_mc_router_timer,
2004 br_ip4_multicast_router_expired, 0);
2005 timer_setup(&pmctx->ip4_own_query.timer,
2006 br_ip4_multicast_port_query_expired, 0);
2007 #if IS_ENABLED(CONFIG_IPV6)
2008 timer_setup(&pmctx->ip6_mc_router_timer,
2009 br_ip6_multicast_router_expired, 0);
2010 timer_setup(&pmctx->ip6_own_query.timer,
2011 br_ip6_multicast_port_query_expired, 0);
2012 #endif
2013 }
2014
br_multicast_port_ctx_deinit(struct net_bridge_mcast_port * pmctx)2015 void br_multicast_port_ctx_deinit(struct net_bridge_mcast_port *pmctx)
2016 {
2017 #if IS_ENABLED(CONFIG_IPV6)
2018 del_timer_sync(&pmctx->ip6_mc_router_timer);
2019 #endif
2020 del_timer_sync(&pmctx->ip4_mc_router_timer);
2021 }
2022
br_multicast_add_port(struct net_bridge_port * port)2023 int br_multicast_add_port(struct net_bridge_port *port)
2024 {
2025 int err;
2026
2027 port->multicast_eht_hosts_limit = BR_MCAST_DEFAULT_EHT_HOSTS_LIMIT;
2028 br_multicast_port_ctx_init(port, NULL, &port->multicast_ctx);
2029
2030 err = br_mc_disabled_update(port->dev,
2031 br_opt_get(port->br,
2032 BROPT_MULTICAST_ENABLED),
2033 NULL);
2034 if (err && err != -EOPNOTSUPP)
2035 return err;
2036
2037 port->mcast_stats = netdev_alloc_pcpu_stats(struct bridge_mcast_stats);
2038 if (!port->mcast_stats)
2039 return -ENOMEM;
2040
2041 return 0;
2042 }
2043
br_multicast_del_port(struct net_bridge_port * port)2044 void br_multicast_del_port(struct net_bridge_port *port)
2045 {
2046 struct net_bridge *br = port->br;
2047 struct net_bridge_port_group *pg;
2048 struct hlist_node *n;
2049
2050 /* Take care of the remaining groups, only perm ones should be left */
2051 spin_lock_bh(&br->multicast_lock);
2052 hlist_for_each_entry_safe(pg, n, &port->mglist, mglist)
2053 br_multicast_find_del_pg(br, pg);
2054 spin_unlock_bh(&br->multicast_lock);
2055 flush_work(&br->mcast_gc_work);
2056 br_multicast_port_ctx_deinit(&port->multicast_ctx);
2057 free_percpu(port->mcast_stats);
2058 }
2059
br_multicast_enable(struct bridge_mcast_own_query * query)2060 static void br_multicast_enable(struct bridge_mcast_own_query *query)
2061 {
2062 query->startup_sent = 0;
2063
2064 if (try_to_del_timer_sync(&query->timer) >= 0 ||
2065 del_timer(&query->timer))
2066 mod_timer(&query->timer, jiffies);
2067 }
2068
__br_multicast_enable_port_ctx(struct net_bridge_mcast_port * pmctx)2069 static void __br_multicast_enable_port_ctx(struct net_bridge_mcast_port *pmctx)
2070 {
2071 struct net_bridge *br = pmctx->port->br;
2072 struct net_bridge_mcast *brmctx;
2073
2074 brmctx = br_multicast_port_ctx_get_global(pmctx);
2075 if (!br_opt_get(br, BROPT_MULTICAST_ENABLED) ||
2076 !netif_running(br->dev))
2077 return;
2078
2079 br_multicast_enable(&pmctx->ip4_own_query);
2080 #if IS_ENABLED(CONFIG_IPV6)
2081 br_multicast_enable(&pmctx->ip6_own_query);
2082 #endif
2083 if (pmctx->multicast_router == MDB_RTR_TYPE_PERM) {
2084 br_ip4_multicast_add_router(brmctx, pmctx);
2085 br_ip6_multicast_add_router(brmctx, pmctx);
2086 }
2087
2088 if (br_multicast_port_ctx_is_vlan(pmctx)) {
2089 struct net_bridge_port_group *pg;
2090 u32 n = 0;
2091
2092 /* The mcast_n_groups counter might be wrong. First,
2093 * BR_VLFLAG_MCAST_ENABLED is toggled before temporary entries
2094 * are flushed, thus mcast_n_groups after the toggle does not
2095 * reflect the true values. And second, permanent entries added
2096 * while BR_VLFLAG_MCAST_ENABLED was disabled, are not reflected
2097 * either. Thus we have to refresh the counter.
2098 */
2099
2100 hlist_for_each_entry(pg, &pmctx->port->mglist, mglist) {
2101 if (pg->key.addr.vid == pmctx->vlan->vid)
2102 n++;
2103 }
2104 WRITE_ONCE(pmctx->mdb_n_entries, n);
2105 }
2106 }
2107
br_multicast_enable_port_ctx(struct net_bridge_mcast_port * pmctx)2108 static void br_multicast_enable_port_ctx(struct net_bridge_mcast_port *pmctx)
2109 {
2110 struct net_bridge *br = pmctx->port->br;
2111
2112 spin_lock_bh(&br->multicast_lock);
2113 if (br_multicast_port_ctx_is_vlan(pmctx) &&
2114 !(pmctx->vlan->priv_flags & BR_VLFLAG_MCAST_ENABLED)) {
2115 spin_unlock_bh(&br->multicast_lock);
2116 return;
2117 }
2118 __br_multicast_enable_port_ctx(pmctx);
2119 spin_unlock_bh(&br->multicast_lock);
2120 }
2121
__br_multicast_disable_port_ctx(struct net_bridge_mcast_port * pmctx)2122 static void __br_multicast_disable_port_ctx(struct net_bridge_mcast_port *pmctx)
2123 {
2124 struct net_bridge_port_group *pg;
2125 struct hlist_node *n;
2126 bool del = false;
2127
2128 hlist_for_each_entry_safe(pg, n, &pmctx->port->mglist, mglist)
2129 if (!(pg->flags & MDB_PG_FLAGS_PERMANENT) &&
2130 (!br_multicast_port_ctx_is_vlan(pmctx) ||
2131 pg->key.addr.vid == pmctx->vlan->vid))
2132 br_multicast_find_del_pg(pmctx->port->br, pg);
2133
2134 del |= br_ip4_multicast_rport_del(pmctx);
2135 del_timer(&pmctx->ip4_mc_router_timer);
2136 del_timer(&pmctx->ip4_own_query.timer);
2137 del |= br_ip6_multicast_rport_del(pmctx);
2138 #if IS_ENABLED(CONFIG_IPV6)
2139 del_timer(&pmctx->ip6_mc_router_timer);
2140 del_timer(&pmctx->ip6_own_query.timer);
2141 #endif
2142 br_multicast_rport_del_notify(pmctx, del);
2143 }
2144
br_multicast_disable_port_ctx(struct net_bridge_mcast_port * pmctx)2145 static void br_multicast_disable_port_ctx(struct net_bridge_mcast_port *pmctx)
2146 {
2147 struct net_bridge *br = pmctx->port->br;
2148
2149 spin_lock_bh(&br->multicast_lock);
2150 if (br_multicast_port_ctx_is_vlan(pmctx) &&
2151 !(pmctx->vlan->priv_flags & BR_VLFLAG_MCAST_ENABLED)) {
2152 spin_unlock_bh(&br->multicast_lock);
2153 return;
2154 }
2155
2156 __br_multicast_disable_port_ctx(pmctx);
2157 spin_unlock_bh(&br->multicast_lock);
2158 }
2159
br_multicast_toggle_port(struct net_bridge_port * port,bool on)2160 static void br_multicast_toggle_port(struct net_bridge_port *port, bool on)
2161 {
2162 #if IS_ENABLED(CONFIG_BRIDGE_VLAN_FILTERING)
2163 if (br_opt_get(port->br, BROPT_MCAST_VLAN_SNOOPING_ENABLED)) {
2164 struct net_bridge_vlan_group *vg;
2165 struct net_bridge_vlan *vlan;
2166
2167 rcu_read_lock();
2168 vg = nbp_vlan_group_rcu(port);
2169 if (!vg) {
2170 rcu_read_unlock();
2171 return;
2172 }
2173
2174 /* iterate each vlan, toggle vlan multicast context */
2175 list_for_each_entry_rcu(vlan, &vg->vlan_list, vlist) {
2176 struct net_bridge_mcast_port *pmctx =
2177 &vlan->port_mcast_ctx;
2178 u8 state = br_vlan_get_state(vlan);
2179 /* enable vlan multicast context when state is
2180 * LEARNING or FORWARDING
2181 */
2182 if (on && br_vlan_state_allowed(state, true))
2183 br_multicast_enable_port_ctx(pmctx);
2184 else
2185 br_multicast_disable_port_ctx(pmctx);
2186 }
2187 rcu_read_unlock();
2188 return;
2189 }
2190 #endif
2191 /* toggle port multicast context when vlan snooping is disabled */
2192 if (on)
2193 br_multicast_enable_port_ctx(&port->multicast_ctx);
2194 else
2195 br_multicast_disable_port_ctx(&port->multicast_ctx);
2196 }
2197
br_multicast_enable_port(struct net_bridge_port * port)2198 void br_multicast_enable_port(struct net_bridge_port *port)
2199 {
2200 br_multicast_toggle_port(port, true);
2201 }
2202
br_multicast_disable_port(struct net_bridge_port * port)2203 void br_multicast_disable_port(struct net_bridge_port *port)
2204 {
2205 br_multicast_toggle_port(port, false);
2206 }
2207
__grp_src_delete_marked(struct net_bridge_port_group * pg)2208 static int __grp_src_delete_marked(struct net_bridge_port_group *pg)
2209 {
2210 struct net_bridge_group_src *ent;
2211 struct hlist_node *tmp;
2212 int deleted = 0;
2213
2214 hlist_for_each_entry_safe(ent, tmp, &pg->src_list, node)
2215 if (ent->flags & BR_SGRP_F_DELETE) {
2216 br_multicast_del_group_src(ent, false);
2217 deleted++;
2218 }
2219
2220 return deleted;
2221 }
2222
__grp_src_mod_timer(struct net_bridge_group_src * src,unsigned long expires)2223 static void __grp_src_mod_timer(struct net_bridge_group_src *src,
2224 unsigned long expires)
2225 {
2226 mod_timer(&src->timer, expires);
2227 br_multicast_fwd_src_handle(src);
2228 }
2229
__grp_src_query_marked_and_rexmit(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg)2230 static void __grp_src_query_marked_and_rexmit(struct net_bridge_mcast *brmctx,
2231 struct net_bridge_mcast_port *pmctx,
2232 struct net_bridge_port_group *pg)
2233 {
2234 struct bridge_mcast_other_query *other_query = NULL;
2235 u32 lmqc = brmctx->multicast_last_member_count;
2236 unsigned long lmqt, lmi, now = jiffies;
2237 struct net_bridge_group_src *ent;
2238
2239 if (!netif_running(brmctx->br->dev) ||
2240 !br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED))
2241 return;
2242
2243 if (pg->key.addr.proto == htons(ETH_P_IP))
2244 other_query = &brmctx->ip4_other_query;
2245 #if IS_ENABLED(CONFIG_IPV6)
2246 else
2247 other_query = &brmctx->ip6_other_query;
2248 #endif
2249
2250 lmqt = now + br_multicast_lmqt(brmctx);
2251 hlist_for_each_entry(ent, &pg->src_list, node) {
2252 if (ent->flags & BR_SGRP_F_SEND) {
2253 ent->flags &= ~BR_SGRP_F_SEND;
2254 if (ent->timer.expires > lmqt) {
2255 if (brmctx->multicast_querier &&
2256 other_query &&
2257 !timer_pending(&other_query->timer))
2258 ent->src_query_rexmit_cnt = lmqc;
2259 __grp_src_mod_timer(ent, lmqt);
2260 }
2261 }
2262 }
2263
2264 if (!brmctx->multicast_querier ||
2265 !other_query || timer_pending(&other_query->timer))
2266 return;
2267
2268 __br_multicast_send_query(brmctx, pmctx, pg, &pg->key.addr,
2269 &pg->key.addr, true, 1, NULL);
2270
2271 lmi = now + brmctx->multicast_last_member_interval;
2272 if (!timer_pending(&pg->rexmit_timer) ||
2273 time_after(pg->rexmit_timer.expires, lmi))
2274 mod_timer(&pg->rexmit_timer, lmi);
2275 }
2276
__grp_send_query_and_rexmit(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg)2277 static void __grp_send_query_and_rexmit(struct net_bridge_mcast *brmctx,
2278 struct net_bridge_mcast_port *pmctx,
2279 struct net_bridge_port_group *pg)
2280 {
2281 struct bridge_mcast_other_query *other_query = NULL;
2282 unsigned long now = jiffies, lmi;
2283
2284 if (!netif_running(brmctx->br->dev) ||
2285 !br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED))
2286 return;
2287
2288 if (pg->key.addr.proto == htons(ETH_P_IP))
2289 other_query = &brmctx->ip4_other_query;
2290 #if IS_ENABLED(CONFIG_IPV6)
2291 else
2292 other_query = &brmctx->ip6_other_query;
2293 #endif
2294
2295 if (brmctx->multicast_querier &&
2296 other_query && !timer_pending(&other_query->timer)) {
2297 lmi = now + brmctx->multicast_last_member_interval;
2298 pg->grp_query_rexmit_cnt = brmctx->multicast_last_member_count - 1;
2299 __br_multicast_send_query(brmctx, pmctx, pg, &pg->key.addr,
2300 &pg->key.addr, false, 0, NULL);
2301 if (!timer_pending(&pg->rexmit_timer) ||
2302 time_after(pg->rexmit_timer.expires, lmi))
2303 mod_timer(&pg->rexmit_timer, lmi);
2304 }
2305
2306 if (pg->filter_mode == MCAST_EXCLUDE &&
2307 (!timer_pending(&pg->timer) ||
2308 time_after(pg->timer.expires, now + br_multicast_lmqt(brmctx))))
2309 mod_timer(&pg->timer, now + br_multicast_lmqt(brmctx));
2310 }
2311
2312 /* State Msg type New state Actions
2313 * INCLUDE (A) IS_IN (B) INCLUDE (A+B) (B)=GMI
2314 * INCLUDE (A) ALLOW (B) INCLUDE (A+B) (B)=GMI
2315 * EXCLUDE (X,Y) ALLOW (A) EXCLUDE (X+A,Y-A) (A)=GMI
2316 */
br_multicast_isinc_allow(const struct net_bridge_mcast * brmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2317 static bool br_multicast_isinc_allow(const struct net_bridge_mcast *brmctx,
2318 struct net_bridge_port_group *pg, void *h_addr,
2319 void *srcs, u32 nsrcs, size_t addr_size,
2320 int grec_type)
2321 {
2322 struct net_bridge_group_src *ent;
2323 unsigned long now = jiffies;
2324 bool changed = false;
2325 struct br_ip src_ip;
2326 u32 src_idx;
2327
2328 memset(&src_ip, 0, sizeof(src_ip));
2329 src_ip.proto = pg->key.addr.proto;
2330 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2331 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2332 ent = br_multicast_find_group_src(pg, &src_ip);
2333 if (!ent) {
2334 ent = br_multicast_new_group_src(pg, &src_ip);
2335 if (ent)
2336 changed = true;
2337 }
2338
2339 if (ent)
2340 __grp_src_mod_timer(ent, now + br_multicast_gmi(brmctx));
2341 }
2342
2343 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2344 grec_type))
2345 changed = true;
2346
2347 return changed;
2348 }
2349
2350 /* State Msg type New state Actions
2351 * INCLUDE (A) IS_EX (B) EXCLUDE (A*B,B-A) (B-A)=0
2352 * Delete (A-B)
2353 * Group Timer=GMI
2354 */
__grp_src_isexc_incl(const struct net_bridge_mcast * brmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2355 static void __grp_src_isexc_incl(const struct net_bridge_mcast *brmctx,
2356 struct net_bridge_port_group *pg, void *h_addr,
2357 void *srcs, u32 nsrcs, size_t addr_size,
2358 int grec_type)
2359 {
2360 struct net_bridge_group_src *ent;
2361 struct br_ip src_ip;
2362 u32 src_idx;
2363
2364 hlist_for_each_entry(ent, &pg->src_list, node)
2365 ent->flags |= BR_SGRP_F_DELETE;
2366
2367 memset(&src_ip, 0, sizeof(src_ip));
2368 src_ip.proto = pg->key.addr.proto;
2369 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2370 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2371 ent = br_multicast_find_group_src(pg, &src_ip);
2372 if (ent)
2373 ent->flags &= ~BR_SGRP_F_DELETE;
2374 else
2375 ent = br_multicast_new_group_src(pg, &src_ip);
2376 if (ent)
2377 br_multicast_fwd_src_handle(ent);
2378 }
2379
2380 br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2381 grec_type);
2382
2383 __grp_src_delete_marked(pg);
2384 }
2385
2386 /* State Msg type New state Actions
2387 * EXCLUDE (X,Y) IS_EX (A) EXCLUDE (A-Y,Y*A) (A-X-Y)=GMI
2388 * Delete (X-A)
2389 * Delete (Y-A)
2390 * Group Timer=GMI
2391 */
__grp_src_isexc_excl(const struct net_bridge_mcast * brmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2392 static bool __grp_src_isexc_excl(const struct net_bridge_mcast *brmctx,
2393 struct net_bridge_port_group *pg, void *h_addr,
2394 void *srcs, u32 nsrcs, size_t addr_size,
2395 int grec_type)
2396 {
2397 struct net_bridge_group_src *ent;
2398 unsigned long now = jiffies;
2399 bool changed = false;
2400 struct br_ip src_ip;
2401 u32 src_idx;
2402
2403 hlist_for_each_entry(ent, &pg->src_list, node)
2404 ent->flags |= BR_SGRP_F_DELETE;
2405
2406 memset(&src_ip, 0, sizeof(src_ip));
2407 src_ip.proto = pg->key.addr.proto;
2408 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2409 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2410 ent = br_multicast_find_group_src(pg, &src_ip);
2411 if (ent) {
2412 ent->flags &= ~BR_SGRP_F_DELETE;
2413 } else {
2414 ent = br_multicast_new_group_src(pg, &src_ip);
2415 if (ent) {
2416 __grp_src_mod_timer(ent,
2417 now + br_multicast_gmi(brmctx));
2418 changed = true;
2419 }
2420 }
2421 }
2422
2423 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2424 grec_type))
2425 changed = true;
2426
2427 if (__grp_src_delete_marked(pg))
2428 changed = true;
2429
2430 return changed;
2431 }
2432
br_multicast_isexc(const struct net_bridge_mcast * brmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2433 static bool br_multicast_isexc(const struct net_bridge_mcast *brmctx,
2434 struct net_bridge_port_group *pg, void *h_addr,
2435 void *srcs, u32 nsrcs, size_t addr_size,
2436 int grec_type)
2437 {
2438 bool changed = false;
2439
2440 switch (pg->filter_mode) {
2441 case MCAST_INCLUDE:
2442 __grp_src_isexc_incl(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2443 grec_type);
2444 br_multicast_star_g_handle_mode(pg, MCAST_EXCLUDE);
2445 changed = true;
2446 break;
2447 case MCAST_EXCLUDE:
2448 changed = __grp_src_isexc_excl(brmctx, pg, h_addr, srcs, nsrcs,
2449 addr_size, grec_type);
2450 break;
2451 }
2452
2453 pg->filter_mode = MCAST_EXCLUDE;
2454 mod_timer(&pg->timer, jiffies + br_multicast_gmi(brmctx));
2455
2456 return changed;
2457 }
2458
2459 /* State Msg type New state Actions
2460 * INCLUDE (A) TO_IN (B) INCLUDE (A+B) (B)=GMI
2461 * Send Q(G,A-B)
2462 */
__grp_src_toin_incl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2463 static bool __grp_src_toin_incl(struct net_bridge_mcast *brmctx,
2464 struct net_bridge_mcast_port *pmctx,
2465 struct net_bridge_port_group *pg, void *h_addr,
2466 void *srcs, u32 nsrcs, size_t addr_size,
2467 int grec_type)
2468 {
2469 u32 src_idx, to_send = pg->src_ents;
2470 struct net_bridge_group_src *ent;
2471 unsigned long now = jiffies;
2472 bool changed = false;
2473 struct br_ip src_ip;
2474
2475 hlist_for_each_entry(ent, &pg->src_list, node)
2476 ent->flags |= BR_SGRP_F_SEND;
2477
2478 memset(&src_ip, 0, sizeof(src_ip));
2479 src_ip.proto = pg->key.addr.proto;
2480 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2481 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2482 ent = br_multicast_find_group_src(pg, &src_ip);
2483 if (ent) {
2484 ent->flags &= ~BR_SGRP_F_SEND;
2485 to_send--;
2486 } else {
2487 ent = br_multicast_new_group_src(pg, &src_ip);
2488 if (ent)
2489 changed = true;
2490 }
2491 if (ent)
2492 __grp_src_mod_timer(ent, now + br_multicast_gmi(brmctx));
2493 }
2494
2495 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2496 grec_type))
2497 changed = true;
2498
2499 if (to_send)
2500 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2501
2502 return changed;
2503 }
2504
2505 /* State Msg type New state Actions
2506 * EXCLUDE (X,Y) TO_IN (A) EXCLUDE (X+A,Y-A) (A)=GMI
2507 * Send Q(G,X-A)
2508 * Send Q(G)
2509 */
__grp_src_toin_excl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2510 static bool __grp_src_toin_excl(struct net_bridge_mcast *brmctx,
2511 struct net_bridge_mcast_port *pmctx,
2512 struct net_bridge_port_group *pg, void *h_addr,
2513 void *srcs, u32 nsrcs, size_t addr_size,
2514 int grec_type)
2515 {
2516 u32 src_idx, to_send = pg->src_ents;
2517 struct net_bridge_group_src *ent;
2518 unsigned long now = jiffies;
2519 bool changed = false;
2520 struct br_ip src_ip;
2521
2522 hlist_for_each_entry(ent, &pg->src_list, node)
2523 if (timer_pending(&ent->timer))
2524 ent->flags |= BR_SGRP_F_SEND;
2525
2526 memset(&src_ip, 0, sizeof(src_ip));
2527 src_ip.proto = pg->key.addr.proto;
2528 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2529 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2530 ent = br_multicast_find_group_src(pg, &src_ip);
2531 if (ent) {
2532 if (timer_pending(&ent->timer)) {
2533 ent->flags &= ~BR_SGRP_F_SEND;
2534 to_send--;
2535 }
2536 } else {
2537 ent = br_multicast_new_group_src(pg, &src_ip);
2538 if (ent)
2539 changed = true;
2540 }
2541 if (ent)
2542 __grp_src_mod_timer(ent, now + br_multicast_gmi(brmctx));
2543 }
2544
2545 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2546 grec_type))
2547 changed = true;
2548
2549 if (to_send)
2550 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2551
2552 __grp_send_query_and_rexmit(brmctx, pmctx, pg);
2553
2554 return changed;
2555 }
2556
br_multicast_toin(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2557 static bool br_multicast_toin(struct net_bridge_mcast *brmctx,
2558 struct net_bridge_mcast_port *pmctx,
2559 struct net_bridge_port_group *pg, void *h_addr,
2560 void *srcs, u32 nsrcs, size_t addr_size,
2561 int grec_type)
2562 {
2563 bool changed = false;
2564
2565 switch (pg->filter_mode) {
2566 case MCAST_INCLUDE:
2567 changed = __grp_src_toin_incl(brmctx, pmctx, pg, h_addr, srcs,
2568 nsrcs, addr_size, grec_type);
2569 break;
2570 case MCAST_EXCLUDE:
2571 changed = __grp_src_toin_excl(brmctx, pmctx, pg, h_addr, srcs,
2572 nsrcs, addr_size, grec_type);
2573 break;
2574 }
2575
2576 if (br_multicast_eht_should_del_pg(pg)) {
2577 pg->flags |= MDB_PG_FLAGS_FAST_LEAVE;
2578 br_multicast_find_del_pg(pg->key.port->br, pg);
2579 /* a notification has already been sent and we shouldn't
2580 * access pg after the delete so we have to return false
2581 */
2582 changed = false;
2583 }
2584
2585 return changed;
2586 }
2587
2588 /* State Msg type New state Actions
2589 * INCLUDE (A) TO_EX (B) EXCLUDE (A*B,B-A) (B-A)=0
2590 * Delete (A-B)
2591 * Send Q(G,A*B)
2592 * Group Timer=GMI
2593 */
__grp_src_toex_incl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2594 static void __grp_src_toex_incl(struct net_bridge_mcast *brmctx,
2595 struct net_bridge_mcast_port *pmctx,
2596 struct net_bridge_port_group *pg, void *h_addr,
2597 void *srcs, u32 nsrcs, size_t addr_size,
2598 int grec_type)
2599 {
2600 struct net_bridge_group_src *ent;
2601 u32 src_idx, to_send = 0;
2602 struct br_ip src_ip;
2603
2604 hlist_for_each_entry(ent, &pg->src_list, node)
2605 ent->flags = (ent->flags & ~BR_SGRP_F_SEND) | BR_SGRP_F_DELETE;
2606
2607 memset(&src_ip, 0, sizeof(src_ip));
2608 src_ip.proto = pg->key.addr.proto;
2609 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2610 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2611 ent = br_multicast_find_group_src(pg, &src_ip);
2612 if (ent) {
2613 ent->flags = (ent->flags & ~BR_SGRP_F_DELETE) |
2614 BR_SGRP_F_SEND;
2615 to_send++;
2616 } else {
2617 ent = br_multicast_new_group_src(pg, &src_ip);
2618 }
2619 if (ent)
2620 br_multicast_fwd_src_handle(ent);
2621 }
2622
2623 br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2624 grec_type);
2625
2626 __grp_src_delete_marked(pg);
2627 if (to_send)
2628 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2629 }
2630
2631 /* State Msg type New state Actions
2632 * EXCLUDE (X,Y) TO_EX (A) EXCLUDE (A-Y,Y*A) (A-X-Y)=Group Timer
2633 * Delete (X-A)
2634 * Delete (Y-A)
2635 * Send Q(G,A-Y)
2636 * Group Timer=GMI
2637 */
__grp_src_toex_excl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2638 static bool __grp_src_toex_excl(struct net_bridge_mcast *brmctx,
2639 struct net_bridge_mcast_port *pmctx,
2640 struct net_bridge_port_group *pg, void *h_addr,
2641 void *srcs, u32 nsrcs, size_t addr_size,
2642 int grec_type)
2643 {
2644 struct net_bridge_group_src *ent;
2645 u32 src_idx, to_send = 0;
2646 bool changed = false;
2647 struct br_ip src_ip;
2648
2649 hlist_for_each_entry(ent, &pg->src_list, node)
2650 ent->flags = (ent->flags & ~BR_SGRP_F_SEND) | BR_SGRP_F_DELETE;
2651
2652 memset(&src_ip, 0, sizeof(src_ip));
2653 src_ip.proto = pg->key.addr.proto;
2654 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2655 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2656 ent = br_multicast_find_group_src(pg, &src_ip);
2657 if (ent) {
2658 ent->flags &= ~BR_SGRP_F_DELETE;
2659 } else {
2660 ent = br_multicast_new_group_src(pg, &src_ip);
2661 if (ent) {
2662 __grp_src_mod_timer(ent, pg->timer.expires);
2663 changed = true;
2664 }
2665 }
2666 if (ent && timer_pending(&ent->timer)) {
2667 ent->flags |= BR_SGRP_F_SEND;
2668 to_send++;
2669 }
2670 }
2671
2672 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2673 grec_type))
2674 changed = true;
2675
2676 if (__grp_src_delete_marked(pg))
2677 changed = true;
2678 if (to_send)
2679 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2680
2681 return changed;
2682 }
2683
br_multicast_toex(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2684 static bool br_multicast_toex(struct net_bridge_mcast *brmctx,
2685 struct net_bridge_mcast_port *pmctx,
2686 struct net_bridge_port_group *pg, void *h_addr,
2687 void *srcs, u32 nsrcs, size_t addr_size,
2688 int grec_type)
2689 {
2690 bool changed = false;
2691
2692 switch (pg->filter_mode) {
2693 case MCAST_INCLUDE:
2694 __grp_src_toex_incl(brmctx, pmctx, pg, h_addr, srcs, nsrcs,
2695 addr_size, grec_type);
2696 br_multicast_star_g_handle_mode(pg, MCAST_EXCLUDE);
2697 changed = true;
2698 break;
2699 case MCAST_EXCLUDE:
2700 changed = __grp_src_toex_excl(brmctx, pmctx, pg, h_addr, srcs,
2701 nsrcs, addr_size, grec_type);
2702 break;
2703 }
2704
2705 pg->filter_mode = MCAST_EXCLUDE;
2706 mod_timer(&pg->timer, jiffies + br_multicast_gmi(brmctx));
2707
2708 return changed;
2709 }
2710
2711 /* State Msg type New state Actions
2712 * INCLUDE (A) BLOCK (B) INCLUDE (A) Send Q(G,A*B)
2713 */
__grp_src_block_incl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2714 static bool __grp_src_block_incl(struct net_bridge_mcast *brmctx,
2715 struct net_bridge_mcast_port *pmctx,
2716 struct net_bridge_port_group *pg, void *h_addr,
2717 void *srcs, u32 nsrcs, size_t addr_size, int grec_type)
2718 {
2719 struct net_bridge_group_src *ent;
2720 u32 src_idx, to_send = 0;
2721 bool changed = false;
2722 struct br_ip src_ip;
2723
2724 hlist_for_each_entry(ent, &pg->src_list, node)
2725 ent->flags &= ~BR_SGRP_F_SEND;
2726
2727 memset(&src_ip, 0, sizeof(src_ip));
2728 src_ip.proto = pg->key.addr.proto;
2729 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2730 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2731 ent = br_multicast_find_group_src(pg, &src_ip);
2732 if (ent) {
2733 ent->flags |= BR_SGRP_F_SEND;
2734 to_send++;
2735 }
2736 }
2737
2738 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2739 grec_type))
2740 changed = true;
2741
2742 if (to_send)
2743 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2744
2745 return changed;
2746 }
2747
2748 /* State Msg type New state Actions
2749 * EXCLUDE (X,Y) BLOCK (A) EXCLUDE (X+(A-Y),Y) (A-X-Y)=Group Timer
2750 * Send Q(G,A-Y)
2751 */
__grp_src_block_excl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2752 static bool __grp_src_block_excl(struct net_bridge_mcast *brmctx,
2753 struct net_bridge_mcast_port *pmctx,
2754 struct net_bridge_port_group *pg, void *h_addr,
2755 void *srcs, u32 nsrcs, size_t addr_size, int grec_type)
2756 {
2757 struct net_bridge_group_src *ent;
2758 u32 src_idx, to_send = 0;
2759 bool changed = false;
2760 struct br_ip src_ip;
2761
2762 hlist_for_each_entry(ent, &pg->src_list, node)
2763 ent->flags &= ~BR_SGRP_F_SEND;
2764
2765 memset(&src_ip, 0, sizeof(src_ip));
2766 src_ip.proto = pg->key.addr.proto;
2767 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2768 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2769 ent = br_multicast_find_group_src(pg, &src_ip);
2770 if (!ent) {
2771 ent = br_multicast_new_group_src(pg, &src_ip);
2772 if (ent) {
2773 __grp_src_mod_timer(ent, pg->timer.expires);
2774 changed = true;
2775 }
2776 }
2777 if (ent && timer_pending(&ent->timer)) {
2778 ent->flags |= BR_SGRP_F_SEND;
2779 to_send++;
2780 }
2781 }
2782
2783 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2784 grec_type))
2785 changed = true;
2786
2787 if (to_send)
2788 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2789
2790 return changed;
2791 }
2792
br_multicast_block(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2793 static bool br_multicast_block(struct net_bridge_mcast *brmctx,
2794 struct net_bridge_mcast_port *pmctx,
2795 struct net_bridge_port_group *pg, void *h_addr,
2796 void *srcs, u32 nsrcs, size_t addr_size, int grec_type)
2797 {
2798 bool changed = false;
2799
2800 switch (pg->filter_mode) {
2801 case MCAST_INCLUDE:
2802 changed = __grp_src_block_incl(brmctx, pmctx, pg, h_addr, srcs,
2803 nsrcs, addr_size, grec_type);
2804 break;
2805 case MCAST_EXCLUDE:
2806 changed = __grp_src_block_excl(brmctx, pmctx, pg, h_addr, srcs,
2807 nsrcs, addr_size, grec_type);
2808 break;
2809 }
2810
2811 if ((pg->filter_mode == MCAST_INCLUDE && hlist_empty(&pg->src_list)) ||
2812 br_multicast_eht_should_del_pg(pg)) {
2813 if (br_multicast_eht_should_del_pg(pg))
2814 pg->flags |= MDB_PG_FLAGS_FAST_LEAVE;
2815 br_multicast_find_del_pg(pg->key.port->br, pg);
2816 /* a notification has already been sent and we shouldn't
2817 * access pg after the delete so we have to return false
2818 */
2819 changed = false;
2820 }
2821
2822 return changed;
2823 }
2824
2825 static struct net_bridge_port_group *
br_multicast_find_port(struct net_bridge_mdb_entry * mp,struct net_bridge_port * p,const unsigned char * src)2826 br_multicast_find_port(struct net_bridge_mdb_entry *mp,
2827 struct net_bridge_port *p,
2828 const unsigned char *src)
2829 {
2830 struct net_bridge *br __maybe_unused = mp->br;
2831 struct net_bridge_port_group *pg;
2832
2833 for (pg = mlock_dereference(mp->ports, br);
2834 pg;
2835 pg = mlock_dereference(pg->next, br))
2836 if (br_port_group_equal(pg, p, src))
2837 return pg;
2838
2839 return NULL;
2840 }
2841
br_ip4_multicast_igmp3_report(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)2842 static int br_ip4_multicast_igmp3_report(struct net_bridge_mcast *brmctx,
2843 struct net_bridge_mcast_port *pmctx,
2844 struct sk_buff *skb,
2845 u16 vid)
2846 {
2847 bool igmpv2 = brmctx->multicast_igmp_version == 2;
2848 struct net_bridge_mdb_entry *mdst;
2849 struct net_bridge_port_group *pg;
2850 const unsigned char *src;
2851 struct igmpv3_report *ih;
2852 struct igmpv3_grec *grec;
2853 int i, len, num, type;
2854 __be32 group, *h_addr;
2855 bool changed = false;
2856 int err = 0;
2857 u16 nsrcs;
2858
2859 ih = igmpv3_report_hdr(skb);
2860 num = ntohs(ih->ngrec);
2861 len = skb_transport_offset(skb) + sizeof(*ih);
2862
2863 for (i = 0; i < num; i++) {
2864 len += sizeof(*grec);
2865 if (!ip_mc_may_pull(skb, len))
2866 return -EINVAL;
2867
2868 grec = (void *)(skb->data + len - sizeof(*grec));
2869 group = grec->grec_mca;
2870 type = grec->grec_type;
2871 nsrcs = ntohs(grec->grec_nsrcs);
2872
2873 len += nsrcs * 4;
2874 if (!ip_mc_may_pull(skb, len))
2875 return -EINVAL;
2876
2877 switch (type) {
2878 case IGMPV3_MODE_IS_INCLUDE:
2879 case IGMPV3_MODE_IS_EXCLUDE:
2880 case IGMPV3_CHANGE_TO_INCLUDE:
2881 case IGMPV3_CHANGE_TO_EXCLUDE:
2882 case IGMPV3_ALLOW_NEW_SOURCES:
2883 case IGMPV3_BLOCK_OLD_SOURCES:
2884 break;
2885
2886 default:
2887 continue;
2888 }
2889
2890 src = eth_hdr(skb)->h_source;
2891 if (nsrcs == 0 &&
2892 (type == IGMPV3_CHANGE_TO_INCLUDE ||
2893 type == IGMPV3_MODE_IS_INCLUDE)) {
2894 if (!pmctx || igmpv2) {
2895 br_ip4_multicast_leave_group(brmctx, pmctx,
2896 group, vid, src);
2897 continue;
2898 }
2899 } else {
2900 err = br_ip4_multicast_add_group(brmctx, pmctx, group,
2901 vid, src, igmpv2);
2902 if (err)
2903 break;
2904 }
2905
2906 if (!pmctx || igmpv2)
2907 continue;
2908
2909 spin_lock(&brmctx->br->multicast_lock);
2910 if (!br_multicast_ctx_should_use(brmctx, pmctx))
2911 goto unlock_continue;
2912
2913 mdst = br_mdb_ip4_get(brmctx->br, group, vid);
2914 if (!mdst)
2915 goto unlock_continue;
2916 pg = br_multicast_find_port(mdst, pmctx->port, src);
2917 if (!pg || (pg->flags & MDB_PG_FLAGS_PERMANENT))
2918 goto unlock_continue;
2919 /* reload grec and host addr */
2920 grec = (void *)(skb->data + len - sizeof(*grec) - (nsrcs * 4));
2921 h_addr = &ip_hdr(skb)->saddr;
2922 switch (type) {
2923 case IGMPV3_ALLOW_NEW_SOURCES:
2924 changed = br_multicast_isinc_allow(brmctx, pg, h_addr,
2925 grec->grec_src,
2926 nsrcs, sizeof(__be32), type);
2927 break;
2928 case IGMPV3_MODE_IS_INCLUDE:
2929 changed = br_multicast_isinc_allow(brmctx, pg, h_addr,
2930 grec->grec_src,
2931 nsrcs, sizeof(__be32), type);
2932 break;
2933 case IGMPV3_MODE_IS_EXCLUDE:
2934 changed = br_multicast_isexc(brmctx, pg, h_addr,
2935 grec->grec_src,
2936 nsrcs, sizeof(__be32), type);
2937 break;
2938 case IGMPV3_CHANGE_TO_INCLUDE:
2939 changed = br_multicast_toin(brmctx, pmctx, pg, h_addr,
2940 grec->grec_src,
2941 nsrcs, sizeof(__be32), type);
2942 break;
2943 case IGMPV3_CHANGE_TO_EXCLUDE:
2944 changed = br_multicast_toex(brmctx, pmctx, pg, h_addr,
2945 grec->grec_src,
2946 nsrcs, sizeof(__be32), type);
2947 break;
2948 case IGMPV3_BLOCK_OLD_SOURCES:
2949 changed = br_multicast_block(brmctx, pmctx, pg, h_addr,
2950 grec->grec_src,
2951 nsrcs, sizeof(__be32), type);
2952 break;
2953 }
2954 if (changed)
2955 br_mdb_notify(brmctx->br->dev, mdst, pg, RTM_NEWMDB);
2956 unlock_continue:
2957 spin_unlock(&brmctx->br->multicast_lock);
2958 }
2959
2960 return err;
2961 }
2962
2963 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_mld2_report(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)2964 static int br_ip6_multicast_mld2_report(struct net_bridge_mcast *brmctx,
2965 struct net_bridge_mcast_port *pmctx,
2966 struct sk_buff *skb,
2967 u16 vid)
2968 {
2969 bool mldv1 = brmctx->multicast_mld_version == 1;
2970 struct net_bridge_mdb_entry *mdst;
2971 struct net_bridge_port_group *pg;
2972 unsigned int nsrcs_offset;
2973 struct mld2_report *mld2r;
2974 const unsigned char *src;
2975 struct in6_addr *h_addr;
2976 struct mld2_grec *grec;
2977 unsigned int grec_len;
2978 bool changed = false;
2979 int i, len, num;
2980 int err = 0;
2981
2982 if (!ipv6_mc_may_pull(skb, sizeof(*mld2r)))
2983 return -EINVAL;
2984
2985 mld2r = (struct mld2_report *)icmp6_hdr(skb);
2986 num = ntohs(mld2r->mld2r_ngrec);
2987 len = skb_transport_offset(skb) + sizeof(*mld2r);
2988
2989 for (i = 0; i < num; i++) {
2990 __be16 *_nsrcs, __nsrcs;
2991 u16 nsrcs;
2992
2993 nsrcs_offset = len + offsetof(struct mld2_grec, grec_nsrcs);
2994
2995 if (skb_transport_offset(skb) + ipv6_transport_len(skb) <
2996 nsrcs_offset + sizeof(__nsrcs))
2997 return -EINVAL;
2998
2999 _nsrcs = skb_header_pointer(skb, nsrcs_offset,
3000 sizeof(__nsrcs), &__nsrcs);
3001 if (!_nsrcs)
3002 return -EINVAL;
3003
3004 nsrcs = ntohs(*_nsrcs);
3005 grec_len = struct_size(grec, grec_src, nsrcs);
3006
3007 if (!ipv6_mc_may_pull(skb, len + grec_len))
3008 return -EINVAL;
3009
3010 grec = (struct mld2_grec *)(skb->data + len);
3011 len += grec_len;
3012
3013 switch (grec->grec_type) {
3014 case MLD2_MODE_IS_INCLUDE:
3015 case MLD2_MODE_IS_EXCLUDE:
3016 case MLD2_CHANGE_TO_INCLUDE:
3017 case MLD2_CHANGE_TO_EXCLUDE:
3018 case MLD2_ALLOW_NEW_SOURCES:
3019 case MLD2_BLOCK_OLD_SOURCES:
3020 break;
3021
3022 default:
3023 continue;
3024 }
3025
3026 src = eth_hdr(skb)->h_source;
3027 if ((grec->grec_type == MLD2_CHANGE_TO_INCLUDE ||
3028 grec->grec_type == MLD2_MODE_IS_INCLUDE) &&
3029 nsrcs == 0) {
3030 if (!pmctx || mldv1) {
3031 br_ip6_multicast_leave_group(brmctx, pmctx,
3032 &grec->grec_mca,
3033 vid, src);
3034 continue;
3035 }
3036 } else {
3037 err = br_ip6_multicast_add_group(brmctx, pmctx,
3038 &grec->grec_mca, vid,
3039 src, mldv1);
3040 if (err)
3041 break;
3042 }
3043
3044 if (!pmctx || mldv1)
3045 continue;
3046
3047 spin_lock(&brmctx->br->multicast_lock);
3048 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3049 goto unlock_continue;
3050
3051 mdst = br_mdb_ip6_get(brmctx->br, &grec->grec_mca, vid);
3052 if (!mdst)
3053 goto unlock_continue;
3054 pg = br_multicast_find_port(mdst, pmctx->port, src);
3055 if (!pg || (pg->flags & MDB_PG_FLAGS_PERMANENT))
3056 goto unlock_continue;
3057 h_addr = &ipv6_hdr(skb)->saddr;
3058 switch (grec->grec_type) {
3059 case MLD2_ALLOW_NEW_SOURCES:
3060 changed = br_multicast_isinc_allow(brmctx, pg, h_addr,
3061 grec->grec_src, nsrcs,
3062 sizeof(struct in6_addr),
3063 grec->grec_type);
3064 break;
3065 case MLD2_MODE_IS_INCLUDE:
3066 changed = br_multicast_isinc_allow(brmctx, pg, h_addr,
3067 grec->grec_src, nsrcs,
3068 sizeof(struct in6_addr),
3069 grec->grec_type);
3070 break;
3071 case MLD2_MODE_IS_EXCLUDE:
3072 changed = br_multicast_isexc(brmctx, pg, h_addr,
3073 grec->grec_src, nsrcs,
3074 sizeof(struct in6_addr),
3075 grec->grec_type);
3076 break;
3077 case MLD2_CHANGE_TO_INCLUDE:
3078 changed = br_multicast_toin(brmctx, pmctx, pg, h_addr,
3079 grec->grec_src, nsrcs,
3080 sizeof(struct in6_addr),
3081 grec->grec_type);
3082 break;
3083 case MLD2_CHANGE_TO_EXCLUDE:
3084 changed = br_multicast_toex(brmctx, pmctx, pg, h_addr,
3085 grec->grec_src, nsrcs,
3086 sizeof(struct in6_addr),
3087 grec->grec_type);
3088 break;
3089 case MLD2_BLOCK_OLD_SOURCES:
3090 changed = br_multicast_block(brmctx, pmctx, pg, h_addr,
3091 grec->grec_src, nsrcs,
3092 sizeof(struct in6_addr),
3093 grec->grec_type);
3094 break;
3095 }
3096 if (changed)
3097 br_mdb_notify(brmctx->br->dev, mdst, pg, RTM_NEWMDB);
3098 unlock_continue:
3099 spin_unlock(&brmctx->br->multicast_lock);
3100 }
3101
3102 return err;
3103 }
3104 #endif
3105
br_multicast_select_querier(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct br_ip * saddr)3106 static bool br_multicast_select_querier(struct net_bridge_mcast *brmctx,
3107 struct net_bridge_mcast_port *pmctx,
3108 struct br_ip *saddr)
3109 {
3110 int port_ifidx = pmctx ? pmctx->port->dev->ifindex : 0;
3111 struct timer_list *own_timer, *other_timer;
3112 struct bridge_mcast_querier *querier;
3113
3114 switch (saddr->proto) {
3115 case htons(ETH_P_IP):
3116 querier = &brmctx->ip4_querier;
3117 own_timer = &brmctx->ip4_own_query.timer;
3118 other_timer = &brmctx->ip4_other_query.timer;
3119 if (!querier->addr.src.ip4 ||
3120 ntohl(saddr->src.ip4) <= ntohl(querier->addr.src.ip4))
3121 goto update;
3122 break;
3123 #if IS_ENABLED(CONFIG_IPV6)
3124 case htons(ETH_P_IPV6):
3125 querier = &brmctx->ip6_querier;
3126 own_timer = &brmctx->ip6_own_query.timer;
3127 other_timer = &brmctx->ip6_other_query.timer;
3128 if (ipv6_addr_cmp(&saddr->src.ip6, &querier->addr.src.ip6) <= 0)
3129 goto update;
3130 break;
3131 #endif
3132 default:
3133 return false;
3134 }
3135
3136 if (!timer_pending(own_timer) && !timer_pending(other_timer))
3137 goto update;
3138
3139 return false;
3140
3141 update:
3142 br_multicast_update_querier(brmctx, querier, port_ifidx, saddr);
3143
3144 return true;
3145 }
3146
3147 static struct net_bridge_port *
__br_multicast_get_querier_port(struct net_bridge * br,const struct bridge_mcast_querier * querier)3148 __br_multicast_get_querier_port(struct net_bridge *br,
3149 const struct bridge_mcast_querier *querier)
3150 {
3151 int port_ifidx = READ_ONCE(querier->port_ifidx);
3152 struct net_bridge_port *p;
3153 struct net_device *dev;
3154
3155 if (port_ifidx == 0)
3156 return NULL;
3157
3158 dev = dev_get_by_index_rcu(dev_net(br->dev), port_ifidx);
3159 if (!dev)
3160 return NULL;
3161 p = br_port_get_rtnl_rcu(dev);
3162 if (!p || p->br != br)
3163 return NULL;
3164
3165 return p;
3166 }
3167
br_multicast_querier_state_size(void)3168 size_t br_multicast_querier_state_size(void)
3169 {
3170 return nla_total_size(0) + /* nest attribute */
3171 nla_total_size(sizeof(__be32)) + /* BRIDGE_QUERIER_IP_ADDRESS */
3172 nla_total_size(sizeof(int)) + /* BRIDGE_QUERIER_IP_PORT */
3173 nla_total_size_64bit(sizeof(u64)) + /* BRIDGE_QUERIER_IP_OTHER_TIMER */
3174 #if IS_ENABLED(CONFIG_IPV6)
3175 nla_total_size(sizeof(struct in6_addr)) + /* BRIDGE_QUERIER_IPV6_ADDRESS */
3176 nla_total_size(sizeof(int)) + /* BRIDGE_QUERIER_IPV6_PORT */
3177 nla_total_size_64bit(sizeof(u64)) + /* BRIDGE_QUERIER_IPV6_OTHER_TIMER */
3178 #endif
3179 0;
3180 }
3181
3182 /* protected by rtnl or rcu */
br_multicast_dump_querier_state(struct sk_buff * skb,const struct net_bridge_mcast * brmctx,int nest_attr)3183 int br_multicast_dump_querier_state(struct sk_buff *skb,
3184 const struct net_bridge_mcast *brmctx,
3185 int nest_attr)
3186 {
3187 struct bridge_mcast_querier querier = {};
3188 struct net_bridge_port *p;
3189 struct nlattr *nest;
3190
3191 if (!br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED) ||
3192 br_multicast_ctx_vlan_global_disabled(brmctx))
3193 return 0;
3194
3195 nest = nla_nest_start(skb, nest_attr);
3196 if (!nest)
3197 return -EMSGSIZE;
3198
3199 rcu_read_lock();
3200 if (!brmctx->multicast_querier &&
3201 !timer_pending(&brmctx->ip4_other_query.timer))
3202 goto out_v6;
3203
3204 br_multicast_read_querier(&brmctx->ip4_querier, &querier);
3205 if (nla_put_in_addr(skb, BRIDGE_QUERIER_IP_ADDRESS,
3206 querier.addr.src.ip4)) {
3207 rcu_read_unlock();
3208 goto out_err;
3209 }
3210
3211 p = __br_multicast_get_querier_port(brmctx->br, &querier);
3212 if (timer_pending(&brmctx->ip4_other_query.timer) &&
3213 (nla_put_u64_64bit(skb, BRIDGE_QUERIER_IP_OTHER_TIMER,
3214 br_timer_value(&brmctx->ip4_other_query.timer),
3215 BRIDGE_QUERIER_PAD) ||
3216 (p && nla_put_u32(skb, BRIDGE_QUERIER_IP_PORT, p->dev->ifindex)))) {
3217 rcu_read_unlock();
3218 goto out_err;
3219 }
3220
3221 out_v6:
3222 #if IS_ENABLED(CONFIG_IPV6)
3223 if (!brmctx->multicast_querier &&
3224 !timer_pending(&brmctx->ip6_other_query.timer))
3225 goto out;
3226
3227 br_multicast_read_querier(&brmctx->ip6_querier, &querier);
3228 if (nla_put_in6_addr(skb, BRIDGE_QUERIER_IPV6_ADDRESS,
3229 &querier.addr.src.ip6)) {
3230 rcu_read_unlock();
3231 goto out_err;
3232 }
3233
3234 p = __br_multicast_get_querier_port(brmctx->br, &querier);
3235 if (timer_pending(&brmctx->ip6_other_query.timer) &&
3236 (nla_put_u64_64bit(skb, BRIDGE_QUERIER_IPV6_OTHER_TIMER,
3237 br_timer_value(&brmctx->ip6_other_query.timer),
3238 BRIDGE_QUERIER_PAD) ||
3239 (p && nla_put_u32(skb, BRIDGE_QUERIER_IPV6_PORT,
3240 p->dev->ifindex)))) {
3241 rcu_read_unlock();
3242 goto out_err;
3243 }
3244 out:
3245 #endif
3246 rcu_read_unlock();
3247 nla_nest_end(skb, nest);
3248 if (!nla_len(nest))
3249 nla_nest_cancel(skb, nest);
3250
3251 return 0;
3252
3253 out_err:
3254 nla_nest_cancel(skb, nest);
3255 return -EMSGSIZE;
3256 }
3257
3258 static void
br_multicast_update_query_timer(struct net_bridge_mcast * brmctx,struct bridge_mcast_other_query * query,unsigned long max_delay)3259 br_multicast_update_query_timer(struct net_bridge_mcast *brmctx,
3260 struct bridge_mcast_other_query *query,
3261 unsigned long max_delay)
3262 {
3263 if (!timer_pending(&query->timer))
3264 mod_timer(&query->delay_timer, jiffies + max_delay);
3265
3266 mod_timer(&query->timer, jiffies + brmctx->multicast_querier_interval);
3267 }
3268
br_port_mc_router_state_change(struct net_bridge_port * p,bool is_mc_router)3269 static void br_port_mc_router_state_change(struct net_bridge_port *p,
3270 bool is_mc_router)
3271 {
3272 struct switchdev_attr attr = {
3273 .orig_dev = p->dev,
3274 .id = SWITCHDEV_ATTR_ID_PORT_MROUTER,
3275 .flags = SWITCHDEV_F_DEFER,
3276 .u.mrouter = is_mc_router,
3277 };
3278
3279 switchdev_port_attr_set(p->dev, &attr, NULL);
3280 }
3281
3282 static struct net_bridge_port *
br_multicast_rport_from_node(struct net_bridge_mcast * brmctx,struct hlist_head * mc_router_list,struct hlist_node * rlist)3283 br_multicast_rport_from_node(struct net_bridge_mcast *brmctx,
3284 struct hlist_head *mc_router_list,
3285 struct hlist_node *rlist)
3286 {
3287 struct net_bridge_mcast_port *pmctx;
3288
3289 #if IS_ENABLED(CONFIG_IPV6)
3290 if (mc_router_list == &brmctx->ip6_mc_router_list)
3291 pmctx = hlist_entry(rlist, struct net_bridge_mcast_port,
3292 ip6_rlist);
3293 else
3294 #endif
3295 pmctx = hlist_entry(rlist, struct net_bridge_mcast_port,
3296 ip4_rlist);
3297
3298 return pmctx->port;
3299 }
3300
3301 static struct hlist_node *
br_multicast_get_rport_slot(struct net_bridge_mcast * brmctx,struct net_bridge_port * port,struct hlist_head * mc_router_list)3302 br_multicast_get_rport_slot(struct net_bridge_mcast *brmctx,
3303 struct net_bridge_port *port,
3304 struct hlist_head *mc_router_list)
3305
3306 {
3307 struct hlist_node *slot = NULL;
3308 struct net_bridge_port *p;
3309 struct hlist_node *rlist;
3310
3311 hlist_for_each(rlist, mc_router_list) {
3312 p = br_multicast_rport_from_node(brmctx, mc_router_list, rlist);
3313
3314 if ((unsigned long)port >= (unsigned long)p)
3315 break;
3316
3317 slot = rlist;
3318 }
3319
3320 return slot;
3321 }
3322
br_multicast_no_router_otherpf(struct net_bridge_mcast_port * pmctx,struct hlist_node * rnode)3323 static bool br_multicast_no_router_otherpf(struct net_bridge_mcast_port *pmctx,
3324 struct hlist_node *rnode)
3325 {
3326 #if IS_ENABLED(CONFIG_IPV6)
3327 if (rnode != &pmctx->ip6_rlist)
3328 return hlist_unhashed(&pmctx->ip6_rlist);
3329 else
3330 return hlist_unhashed(&pmctx->ip4_rlist);
3331 #else
3332 return true;
3333 #endif
3334 }
3335
3336 /* Add port to router_list
3337 * list is maintained ordered by pointer value
3338 * and locked by br->multicast_lock and RCU
3339 */
br_multicast_add_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct hlist_node * rlist,struct hlist_head * mc_router_list)3340 static void br_multicast_add_router(struct net_bridge_mcast *brmctx,
3341 struct net_bridge_mcast_port *pmctx,
3342 struct hlist_node *rlist,
3343 struct hlist_head *mc_router_list)
3344 {
3345 struct hlist_node *slot;
3346
3347 if (!hlist_unhashed(rlist))
3348 return;
3349
3350 slot = br_multicast_get_rport_slot(brmctx, pmctx->port, mc_router_list);
3351
3352 if (slot)
3353 hlist_add_behind_rcu(rlist, slot);
3354 else
3355 hlist_add_head_rcu(rlist, mc_router_list);
3356
3357 /* For backwards compatibility for now, only notify if we
3358 * switched from no IPv4/IPv6 multicast router to a new
3359 * IPv4 or IPv6 multicast router.
3360 */
3361 if (br_multicast_no_router_otherpf(pmctx, rlist)) {
3362 br_rtr_notify(pmctx->port->br->dev, pmctx, RTM_NEWMDB);
3363 br_port_mc_router_state_change(pmctx->port, true);
3364 }
3365 }
3366
3367 /* Add port to router_list
3368 * list is maintained ordered by pointer value
3369 * and locked by br->multicast_lock and RCU
3370 */
br_ip4_multicast_add_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx)3371 static void br_ip4_multicast_add_router(struct net_bridge_mcast *brmctx,
3372 struct net_bridge_mcast_port *pmctx)
3373 {
3374 br_multicast_add_router(brmctx, pmctx, &pmctx->ip4_rlist,
3375 &brmctx->ip4_mc_router_list);
3376 }
3377
3378 /* Add port to router_list
3379 * list is maintained ordered by pointer value
3380 * and locked by br->multicast_lock and RCU
3381 */
br_ip6_multicast_add_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx)3382 static void br_ip6_multicast_add_router(struct net_bridge_mcast *brmctx,
3383 struct net_bridge_mcast_port *pmctx)
3384 {
3385 #if IS_ENABLED(CONFIG_IPV6)
3386 br_multicast_add_router(brmctx, pmctx, &pmctx->ip6_rlist,
3387 &brmctx->ip6_mc_router_list);
3388 #endif
3389 }
3390
br_multicast_mark_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct timer_list * timer,struct hlist_node * rlist,struct hlist_head * mc_router_list)3391 static void br_multicast_mark_router(struct net_bridge_mcast *brmctx,
3392 struct net_bridge_mcast_port *pmctx,
3393 struct timer_list *timer,
3394 struct hlist_node *rlist,
3395 struct hlist_head *mc_router_list)
3396 {
3397 unsigned long now = jiffies;
3398
3399 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3400 return;
3401
3402 if (!pmctx) {
3403 if (brmctx->multicast_router == MDB_RTR_TYPE_TEMP_QUERY) {
3404 if (!br_ip4_multicast_is_router(brmctx) &&
3405 !br_ip6_multicast_is_router(brmctx))
3406 br_mc_router_state_change(brmctx->br, true);
3407 mod_timer(timer, now + brmctx->multicast_querier_interval);
3408 }
3409 return;
3410 }
3411
3412 if (pmctx->multicast_router == MDB_RTR_TYPE_DISABLED ||
3413 pmctx->multicast_router == MDB_RTR_TYPE_PERM)
3414 return;
3415
3416 br_multicast_add_router(brmctx, pmctx, rlist, mc_router_list);
3417 mod_timer(timer, now + brmctx->multicast_querier_interval);
3418 }
3419
br_ip4_multicast_mark_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx)3420 static void br_ip4_multicast_mark_router(struct net_bridge_mcast *brmctx,
3421 struct net_bridge_mcast_port *pmctx)
3422 {
3423 struct timer_list *timer = &brmctx->ip4_mc_router_timer;
3424 struct hlist_node *rlist = NULL;
3425
3426 if (pmctx) {
3427 timer = &pmctx->ip4_mc_router_timer;
3428 rlist = &pmctx->ip4_rlist;
3429 }
3430
3431 br_multicast_mark_router(brmctx, pmctx, timer, rlist,
3432 &brmctx->ip4_mc_router_list);
3433 }
3434
br_ip6_multicast_mark_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx)3435 static void br_ip6_multicast_mark_router(struct net_bridge_mcast *brmctx,
3436 struct net_bridge_mcast_port *pmctx)
3437 {
3438 #if IS_ENABLED(CONFIG_IPV6)
3439 struct timer_list *timer = &brmctx->ip6_mc_router_timer;
3440 struct hlist_node *rlist = NULL;
3441
3442 if (pmctx) {
3443 timer = &pmctx->ip6_mc_router_timer;
3444 rlist = &pmctx->ip6_rlist;
3445 }
3446
3447 br_multicast_mark_router(brmctx, pmctx, timer, rlist,
3448 &brmctx->ip6_mc_router_list);
3449 #endif
3450 }
3451
3452 static void
br_ip4_multicast_query_received(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct bridge_mcast_other_query * query,struct br_ip * saddr,unsigned long max_delay)3453 br_ip4_multicast_query_received(struct net_bridge_mcast *brmctx,
3454 struct net_bridge_mcast_port *pmctx,
3455 struct bridge_mcast_other_query *query,
3456 struct br_ip *saddr,
3457 unsigned long max_delay)
3458 {
3459 if (!br_multicast_select_querier(brmctx, pmctx, saddr))
3460 return;
3461
3462 br_multicast_update_query_timer(brmctx, query, max_delay);
3463 br_ip4_multicast_mark_router(brmctx, pmctx);
3464 }
3465
3466 #if IS_ENABLED(CONFIG_IPV6)
3467 static void
br_ip6_multicast_query_received(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct bridge_mcast_other_query * query,struct br_ip * saddr,unsigned long max_delay)3468 br_ip6_multicast_query_received(struct net_bridge_mcast *brmctx,
3469 struct net_bridge_mcast_port *pmctx,
3470 struct bridge_mcast_other_query *query,
3471 struct br_ip *saddr,
3472 unsigned long max_delay)
3473 {
3474 if (!br_multicast_select_querier(brmctx, pmctx, saddr))
3475 return;
3476
3477 br_multicast_update_query_timer(brmctx, query, max_delay);
3478 br_ip6_multicast_mark_router(brmctx, pmctx);
3479 }
3480 #endif
3481
br_ip4_multicast_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)3482 static void br_ip4_multicast_query(struct net_bridge_mcast *brmctx,
3483 struct net_bridge_mcast_port *pmctx,
3484 struct sk_buff *skb,
3485 u16 vid)
3486 {
3487 unsigned int transport_len = ip_transport_len(skb);
3488 const struct iphdr *iph = ip_hdr(skb);
3489 struct igmphdr *ih = igmp_hdr(skb);
3490 struct net_bridge_mdb_entry *mp;
3491 struct igmpv3_query *ih3;
3492 struct net_bridge_port_group *p;
3493 struct net_bridge_port_group __rcu **pp;
3494 struct br_ip saddr = {};
3495 unsigned long max_delay;
3496 unsigned long now = jiffies;
3497 __be32 group;
3498
3499 spin_lock(&brmctx->br->multicast_lock);
3500 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3501 goto out;
3502
3503 group = ih->group;
3504
3505 if (transport_len == sizeof(*ih)) {
3506 max_delay = ih->code * (HZ / IGMP_TIMER_SCALE);
3507
3508 if (!max_delay) {
3509 max_delay = 10 * HZ;
3510 group = 0;
3511 }
3512 } else if (transport_len >= sizeof(*ih3)) {
3513 ih3 = igmpv3_query_hdr(skb);
3514 if (ih3->nsrcs ||
3515 (brmctx->multicast_igmp_version == 3 && group &&
3516 ih3->suppress))
3517 goto out;
3518
3519 max_delay = ih3->code ?
3520 IGMPV3_MRC(ih3->code) * (HZ / IGMP_TIMER_SCALE) : 1;
3521 } else {
3522 goto out;
3523 }
3524
3525 if (!group) {
3526 saddr.proto = htons(ETH_P_IP);
3527 saddr.src.ip4 = iph->saddr;
3528
3529 br_ip4_multicast_query_received(brmctx, pmctx,
3530 &brmctx->ip4_other_query,
3531 &saddr, max_delay);
3532 goto out;
3533 }
3534
3535 mp = br_mdb_ip4_get(brmctx->br, group, vid);
3536 if (!mp)
3537 goto out;
3538
3539 max_delay *= brmctx->multicast_last_member_count;
3540
3541 if (mp->host_joined &&
3542 (timer_pending(&mp->timer) ?
3543 time_after(mp->timer.expires, now + max_delay) :
3544 try_to_del_timer_sync(&mp->timer) >= 0))
3545 mod_timer(&mp->timer, now + max_delay);
3546
3547 for (pp = &mp->ports;
3548 (p = mlock_dereference(*pp, brmctx->br)) != NULL;
3549 pp = &p->next) {
3550 if (timer_pending(&p->timer) ?
3551 time_after(p->timer.expires, now + max_delay) :
3552 try_to_del_timer_sync(&p->timer) >= 0 &&
3553 (brmctx->multicast_igmp_version == 2 ||
3554 p->filter_mode == MCAST_EXCLUDE))
3555 mod_timer(&p->timer, now + max_delay);
3556 }
3557
3558 out:
3559 spin_unlock(&brmctx->br->multicast_lock);
3560 }
3561
3562 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)3563 static int br_ip6_multicast_query(struct net_bridge_mcast *brmctx,
3564 struct net_bridge_mcast_port *pmctx,
3565 struct sk_buff *skb,
3566 u16 vid)
3567 {
3568 unsigned int transport_len = ipv6_transport_len(skb);
3569 struct mld_msg *mld;
3570 struct net_bridge_mdb_entry *mp;
3571 struct mld2_query *mld2q;
3572 struct net_bridge_port_group *p;
3573 struct net_bridge_port_group __rcu **pp;
3574 struct br_ip saddr = {};
3575 unsigned long max_delay;
3576 unsigned long now = jiffies;
3577 unsigned int offset = skb_transport_offset(skb);
3578 const struct in6_addr *group = NULL;
3579 bool is_general_query;
3580 int err = 0;
3581
3582 spin_lock(&brmctx->br->multicast_lock);
3583 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3584 goto out;
3585
3586 if (transport_len == sizeof(*mld)) {
3587 if (!pskb_may_pull(skb, offset + sizeof(*mld))) {
3588 err = -EINVAL;
3589 goto out;
3590 }
3591 mld = (struct mld_msg *) icmp6_hdr(skb);
3592 max_delay = msecs_to_jiffies(ntohs(mld->mld_maxdelay));
3593 if (max_delay)
3594 group = &mld->mld_mca;
3595 } else {
3596 if (!pskb_may_pull(skb, offset + sizeof(*mld2q))) {
3597 err = -EINVAL;
3598 goto out;
3599 }
3600 mld2q = (struct mld2_query *)icmp6_hdr(skb);
3601 if (!mld2q->mld2q_nsrcs)
3602 group = &mld2q->mld2q_mca;
3603 if (brmctx->multicast_mld_version == 2 &&
3604 !ipv6_addr_any(&mld2q->mld2q_mca) &&
3605 mld2q->mld2q_suppress)
3606 goto out;
3607
3608 max_delay = max(msecs_to_jiffies(mldv2_mrc(mld2q)), 1UL);
3609 }
3610
3611 is_general_query = group && ipv6_addr_any(group);
3612
3613 if (is_general_query) {
3614 saddr.proto = htons(ETH_P_IPV6);
3615 saddr.src.ip6 = ipv6_hdr(skb)->saddr;
3616
3617 br_ip6_multicast_query_received(brmctx, pmctx,
3618 &brmctx->ip6_other_query,
3619 &saddr, max_delay);
3620 goto out;
3621 } else if (!group) {
3622 goto out;
3623 }
3624
3625 mp = br_mdb_ip6_get(brmctx->br, group, vid);
3626 if (!mp)
3627 goto out;
3628
3629 max_delay *= brmctx->multicast_last_member_count;
3630 if (mp->host_joined &&
3631 (timer_pending(&mp->timer) ?
3632 time_after(mp->timer.expires, now + max_delay) :
3633 try_to_del_timer_sync(&mp->timer) >= 0))
3634 mod_timer(&mp->timer, now + max_delay);
3635
3636 for (pp = &mp->ports;
3637 (p = mlock_dereference(*pp, brmctx->br)) != NULL;
3638 pp = &p->next) {
3639 if (timer_pending(&p->timer) ?
3640 time_after(p->timer.expires, now + max_delay) :
3641 try_to_del_timer_sync(&p->timer) >= 0 &&
3642 (brmctx->multicast_mld_version == 1 ||
3643 p->filter_mode == MCAST_EXCLUDE))
3644 mod_timer(&p->timer, now + max_delay);
3645 }
3646
3647 out:
3648 spin_unlock(&brmctx->br->multicast_lock);
3649 return err;
3650 }
3651 #endif
3652
3653 static void
br_multicast_leave_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct br_ip * group,struct bridge_mcast_other_query * other_query,struct bridge_mcast_own_query * own_query,const unsigned char * src)3654 br_multicast_leave_group(struct net_bridge_mcast *brmctx,
3655 struct net_bridge_mcast_port *pmctx,
3656 struct br_ip *group,
3657 struct bridge_mcast_other_query *other_query,
3658 struct bridge_mcast_own_query *own_query,
3659 const unsigned char *src)
3660 {
3661 struct net_bridge_mdb_entry *mp;
3662 struct net_bridge_port_group *p;
3663 unsigned long now;
3664 unsigned long time;
3665
3666 spin_lock(&brmctx->br->multicast_lock);
3667 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3668 goto out;
3669
3670 mp = br_mdb_ip_get(brmctx->br, group);
3671 if (!mp)
3672 goto out;
3673
3674 if (pmctx && (pmctx->port->flags & BR_MULTICAST_FAST_LEAVE)) {
3675 struct net_bridge_port_group __rcu **pp;
3676
3677 for (pp = &mp->ports;
3678 (p = mlock_dereference(*pp, brmctx->br)) != NULL;
3679 pp = &p->next) {
3680 if (!br_port_group_equal(p, pmctx->port, src))
3681 continue;
3682
3683 if (p->flags & MDB_PG_FLAGS_PERMANENT)
3684 break;
3685
3686 p->flags |= MDB_PG_FLAGS_FAST_LEAVE;
3687 br_multicast_del_pg(mp, p, pp);
3688 }
3689 goto out;
3690 }
3691
3692 if (timer_pending(&other_query->timer))
3693 goto out;
3694
3695 if (brmctx->multicast_querier) {
3696 __br_multicast_send_query(brmctx, pmctx, NULL, NULL, &mp->addr,
3697 false, 0, NULL);
3698
3699 time = jiffies + brmctx->multicast_last_member_count *
3700 brmctx->multicast_last_member_interval;
3701
3702 mod_timer(&own_query->timer, time);
3703
3704 for (p = mlock_dereference(mp->ports, brmctx->br);
3705 p != NULL && pmctx != NULL;
3706 p = mlock_dereference(p->next, brmctx->br)) {
3707 if (!br_port_group_equal(p, pmctx->port, src))
3708 continue;
3709
3710 if (!hlist_unhashed(&p->mglist) &&
3711 (timer_pending(&p->timer) ?
3712 time_after(p->timer.expires, time) :
3713 try_to_del_timer_sync(&p->timer) >= 0)) {
3714 mod_timer(&p->timer, time);
3715 }
3716
3717 break;
3718 }
3719 }
3720
3721 now = jiffies;
3722 time = now + brmctx->multicast_last_member_count *
3723 brmctx->multicast_last_member_interval;
3724
3725 if (!pmctx) {
3726 if (mp->host_joined &&
3727 (timer_pending(&mp->timer) ?
3728 time_after(mp->timer.expires, time) :
3729 try_to_del_timer_sync(&mp->timer) >= 0)) {
3730 mod_timer(&mp->timer, time);
3731 }
3732
3733 goto out;
3734 }
3735
3736 for (p = mlock_dereference(mp->ports, brmctx->br);
3737 p != NULL;
3738 p = mlock_dereference(p->next, brmctx->br)) {
3739 if (p->key.port != pmctx->port)
3740 continue;
3741
3742 if (!hlist_unhashed(&p->mglist) &&
3743 (timer_pending(&p->timer) ?
3744 time_after(p->timer.expires, time) :
3745 try_to_del_timer_sync(&p->timer) >= 0)) {
3746 mod_timer(&p->timer, time);
3747 }
3748
3749 break;
3750 }
3751 out:
3752 spin_unlock(&brmctx->br->multicast_lock);
3753 }
3754
br_ip4_multicast_leave_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,__be32 group,__u16 vid,const unsigned char * src)3755 static void br_ip4_multicast_leave_group(struct net_bridge_mcast *brmctx,
3756 struct net_bridge_mcast_port *pmctx,
3757 __be32 group,
3758 __u16 vid,
3759 const unsigned char *src)
3760 {
3761 struct br_ip br_group;
3762 struct bridge_mcast_own_query *own_query;
3763
3764 if (ipv4_is_local_multicast(group))
3765 return;
3766
3767 own_query = pmctx ? &pmctx->ip4_own_query : &brmctx->ip4_own_query;
3768
3769 memset(&br_group, 0, sizeof(br_group));
3770 br_group.dst.ip4 = group;
3771 br_group.proto = htons(ETH_P_IP);
3772 br_group.vid = vid;
3773
3774 br_multicast_leave_group(brmctx, pmctx, &br_group,
3775 &brmctx->ip4_other_query,
3776 own_query, src);
3777 }
3778
3779 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_leave_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,const struct in6_addr * group,__u16 vid,const unsigned char * src)3780 static void br_ip6_multicast_leave_group(struct net_bridge_mcast *brmctx,
3781 struct net_bridge_mcast_port *pmctx,
3782 const struct in6_addr *group,
3783 __u16 vid,
3784 const unsigned char *src)
3785 {
3786 struct br_ip br_group;
3787 struct bridge_mcast_own_query *own_query;
3788
3789 if (ipv6_addr_is_ll_all_nodes(group))
3790 return;
3791
3792 own_query = pmctx ? &pmctx->ip6_own_query : &brmctx->ip6_own_query;
3793
3794 memset(&br_group, 0, sizeof(br_group));
3795 br_group.dst.ip6 = *group;
3796 br_group.proto = htons(ETH_P_IPV6);
3797 br_group.vid = vid;
3798
3799 br_multicast_leave_group(brmctx, pmctx, &br_group,
3800 &brmctx->ip6_other_query,
3801 own_query, src);
3802 }
3803 #endif
3804
br_multicast_err_count(const struct net_bridge * br,const struct net_bridge_port * p,__be16 proto)3805 static void br_multicast_err_count(const struct net_bridge *br,
3806 const struct net_bridge_port *p,
3807 __be16 proto)
3808 {
3809 struct bridge_mcast_stats __percpu *stats;
3810 struct bridge_mcast_stats *pstats;
3811
3812 if (!br_opt_get(br, BROPT_MULTICAST_STATS_ENABLED))
3813 return;
3814
3815 if (p)
3816 stats = p->mcast_stats;
3817 else
3818 stats = br->mcast_stats;
3819 if (WARN_ON(!stats))
3820 return;
3821
3822 pstats = this_cpu_ptr(stats);
3823
3824 u64_stats_update_begin(&pstats->syncp);
3825 switch (proto) {
3826 case htons(ETH_P_IP):
3827 pstats->mstats.igmp_parse_errors++;
3828 break;
3829 #if IS_ENABLED(CONFIG_IPV6)
3830 case htons(ETH_P_IPV6):
3831 pstats->mstats.mld_parse_errors++;
3832 break;
3833 #endif
3834 }
3835 u64_stats_update_end(&pstats->syncp);
3836 }
3837
br_multicast_pim(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,const struct sk_buff * skb)3838 static void br_multicast_pim(struct net_bridge_mcast *brmctx,
3839 struct net_bridge_mcast_port *pmctx,
3840 const struct sk_buff *skb)
3841 {
3842 unsigned int offset = skb_transport_offset(skb);
3843 struct pimhdr *pimhdr, _pimhdr;
3844
3845 pimhdr = skb_header_pointer(skb, offset, sizeof(_pimhdr), &_pimhdr);
3846 if (!pimhdr || pim_hdr_version(pimhdr) != PIM_VERSION ||
3847 pim_hdr_type(pimhdr) != PIM_TYPE_HELLO)
3848 return;
3849
3850 spin_lock(&brmctx->br->multicast_lock);
3851 br_ip4_multicast_mark_router(brmctx, pmctx);
3852 spin_unlock(&brmctx->br->multicast_lock);
3853 }
3854
br_ip4_multicast_mrd_rcv(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb)3855 static int br_ip4_multicast_mrd_rcv(struct net_bridge_mcast *brmctx,
3856 struct net_bridge_mcast_port *pmctx,
3857 struct sk_buff *skb)
3858 {
3859 if (ip_hdr(skb)->protocol != IPPROTO_IGMP ||
3860 igmp_hdr(skb)->type != IGMP_MRDISC_ADV)
3861 return -ENOMSG;
3862
3863 spin_lock(&brmctx->br->multicast_lock);
3864 br_ip4_multicast_mark_router(brmctx, pmctx);
3865 spin_unlock(&brmctx->br->multicast_lock);
3866
3867 return 0;
3868 }
3869
br_multicast_ipv4_rcv(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)3870 static int br_multicast_ipv4_rcv(struct net_bridge_mcast *brmctx,
3871 struct net_bridge_mcast_port *pmctx,
3872 struct sk_buff *skb,
3873 u16 vid)
3874 {
3875 struct net_bridge_port *p = pmctx ? pmctx->port : NULL;
3876 const unsigned char *src;
3877 struct igmphdr *ih;
3878 int err;
3879
3880 err = ip_mc_check_igmp(skb);
3881
3882 if (err == -ENOMSG) {
3883 if (!ipv4_is_local_multicast(ip_hdr(skb)->daddr)) {
3884 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
3885 } else if (pim_ipv4_all_pim_routers(ip_hdr(skb)->daddr)) {
3886 if (ip_hdr(skb)->protocol == IPPROTO_PIM)
3887 br_multicast_pim(brmctx, pmctx, skb);
3888 } else if (ipv4_is_all_snoopers(ip_hdr(skb)->daddr)) {
3889 br_ip4_multicast_mrd_rcv(brmctx, pmctx, skb);
3890 }
3891
3892 return 0;
3893 } else if (err < 0) {
3894 br_multicast_err_count(brmctx->br, p, skb->protocol);
3895 return err;
3896 }
3897
3898 ih = igmp_hdr(skb);
3899 src = eth_hdr(skb)->h_source;
3900 BR_INPUT_SKB_CB(skb)->igmp = ih->type;
3901
3902 switch (ih->type) {
3903 case IGMP_HOST_MEMBERSHIP_REPORT:
3904 case IGMPV2_HOST_MEMBERSHIP_REPORT:
3905 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
3906 err = br_ip4_multicast_add_group(brmctx, pmctx, ih->group, vid,
3907 src, true);
3908 break;
3909 case IGMPV3_HOST_MEMBERSHIP_REPORT:
3910 err = br_ip4_multicast_igmp3_report(brmctx, pmctx, skb, vid);
3911 break;
3912 case IGMP_HOST_MEMBERSHIP_QUERY:
3913 br_ip4_multicast_query(brmctx, pmctx, skb, vid);
3914 break;
3915 case IGMP_HOST_LEAVE_MESSAGE:
3916 br_ip4_multicast_leave_group(brmctx, pmctx, ih->group, vid, src);
3917 break;
3918 }
3919
3920 br_multicast_count(brmctx->br, p, skb, BR_INPUT_SKB_CB(skb)->igmp,
3921 BR_MCAST_DIR_RX);
3922
3923 return err;
3924 }
3925
3926 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_mrd_rcv(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb)3927 static void br_ip6_multicast_mrd_rcv(struct net_bridge_mcast *brmctx,
3928 struct net_bridge_mcast_port *pmctx,
3929 struct sk_buff *skb)
3930 {
3931 if (icmp6_hdr(skb)->icmp6_type != ICMPV6_MRDISC_ADV)
3932 return;
3933
3934 spin_lock(&brmctx->br->multicast_lock);
3935 br_ip6_multicast_mark_router(brmctx, pmctx);
3936 spin_unlock(&brmctx->br->multicast_lock);
3937 }
3938
br_multicast_ipv6_rcv(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)3939 static int br_multicast_ipv6_rcv(struct net_bridge_mcast *brmctx,
3940 struct net_bridge_mcast_port *pmctx,
3941 struct sk_buff *skb,
3942 u16 vid)
3943 {
3944 struct net_bridge_port *p = pmctx ? pmctx->port : NULL;
3945 const unsigned char *src;
3946 struct mld_msg *mld;
3947 int err;
3948
3949 err = ipv6_mc_check_mld(skb);
3950
3951 if (err == -ENOMSG || err == -ENODATA) {
3952 if (!ipv6_addr_is_ll_all_nodes(&ipv6_hdr(skb)->daddr))
3953 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
3954 if (err == -ENODATA &&
3955 ipv6_addr_is_all_snoopers(&ipv6_hdr(skb)->daddr))
3956 br_ip6_multicast_mrd_rcv(brmctx, pmctx, skb);
3957
3958 return 0;
3959 } else if (err < 0) {
3960 br_multicast_err_count(brmctx->br, p, skb->protocol);
3961 return err;
3962 }
3963
3964 mld = (struct mld_msg *)skb_transport_header(skb);
3965 BR_INPUT_SKB_CB(skb)->igmp = mld->mld_type;
3966
3967 switch (mld->mld_type) {
3968 case ICMPV6_MGM_REPORT:
3969 src = eth_hdr(skb)->h_source;
3970 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
3971 err = br_ip6_multicast_add_group(brmctx, pmctx, &mld->mld_mca,
3972 vid, src, true);
3973 break;
3974 case ICMPV6_MLD2_REPORT:
3975 err = br_ip6_multicast_mld2_report(brmctx, pmctx, skb, vid);
3976 break;
3977 case ICMPV6_MGM_QUERY:
3978 err = br_ip6_multicast_query(brmctx, pmctx, skb, vid);
3979 break;
3980 case ICMPV6_MGM_REDUCTION:
3981 src = eth_hdr(skb)->h_source;
3982 br_ip6_multicast_leave_group(brmctx, pmctx, &mld->mld_mca, vid,
3983 src);
3984 break;
3985 }
3986
3987 br_multicast_count(brmctx->br, p, skb, BR_INPUT_SKB_CB(skb)->igmp,
3988 BR_MCAST_DIR_RX);
3989
3990 return err;
3991 }
3992 #endif
3993
br_multicast_rcv(struct net_bridge_mcast ** brmctx,struct net_bridge_mcast_port ** pmctx,struct net_bridge_vlan * vlan,struct sk_buff * skb,u16 vid)3994 int br_multicast_rcv(struct net_bridge_mcast **brmctx,
3995 struct net_bridge_mcast_port **pmctx,
3996 struct net_bridge_vlan *vlan,
3997 struct sk_buff *skb, u16 vid)
3998 {
3999 int ret = 0;
4000
4001 BR_INPUT_SKB_CB(skb)->igmp = 0;
4002 BR_INPUT_SKB_CB(skb)->mrouters_only = 0;
4003
4004 if (!br_opt_get((*brmctx)->br, BROPT_MULTICAST_ENABLED))
4005 return 0;
4006
4007 if (br_opt_get((*brmctx)->br, BROPT_MCAST_VLAN_SNOOPING_ENABLED) && vlan) {
4008 const struct net_bridge_vlan *masterv;
4009
4010 /* the vlan has the master flag set only when transmitting
4011 * through the bridge device
4012 */
4013 if (br_vlan_is_master(vlan)) {
4014 masterv = vlan;
4015 *brmctx = &vlan->br_mcast_ctx;
4016 *pmctx = NULL;
4017 } else {
4018 masterv = vlan->brvlan;
4019 *brmctx = &vlan->brvlan->br_mcast_ctx;
4020 *pmctx = &vlan->port_mcast_ctx;
4021 }
4022
4023 if (!(masterv->priv_flags & BR_VLFLAG_GLOBAL_MCAST_ENABLED))
4024 return 0;
4025 }
4026
4027 switch (skb->protocol) {
4028 case htons(ETH_P_IP):
4029 ret = br_multicast_ipv4_rcv(*brmctx, *pmctx, skb, vid);
4030 break;
4031 #if IS_ENABLED(CONFIG_IPV6)
4032 case htons(ETH_P_IPV6):
4033 ret = br_multicast_ipv6_rcv(*brmctx, *pmctx, skb, vid);
4034 break;
4035 #endif
4036 }
4037
4038 return ret;
4039 }
4040
br_multicast_query_expired(struct net_bridge_mcast * brmctx,struct bridge_mcast_own_query * query,struct bridge_mcast_querier * querier)4041 static void br_multicast_query_expired(struct net_bridge_mcast *brmctx,
4042 struct bridge_mcast_own_query *query,
4043 struct bridge_mcast_querier *querier)
4044 {
4045 spin_lock(&brmctx->br->multicast_lock);
4046 if (br_multicast_ctx_vlan_disabled(brmctx))
4047 goto out;
4048
4049 if (query->startup_sent < brmctx->multicast_startup_query_count)
4050 query->startup_sent++;
4051
4052 br_multicast_send_query(brmctx, NULL, query);
4053 out:
4054 spin_unlock(&brmctx->br->multicast_lock);
4055 }
4056
br_ip4_multicast_query_expired(struct timer_list * t)4057 static void br_ip4_multicast_query_expired(struct timer_list *t)
4058 {
4059 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
4060 ip4_own_query.timer);
4061
4062 br_multicast_query_expired(brmctx, &brmctx->ip4_own_query,
4063 &brmctx->ip4_querier);
4064 }
4065
4066 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_query_expired(struct timer_list * t)4067 static void br_ip6_multicast_query_expired(struct timer_list *t)
4068 {
4069 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
4070 ip6_own_query.timer);
4071
4072 br_multicast_query_expired(brmctx, &brmctx->ip6_own_query,
4073 &brmctx->ip6_querier);
4074 }
4075 #endif
4076
br_multicast_gc_work(struct work_struct * work)4077 static void br_multicast_gc_work(struct work_struct *work)
4078 {
4079 struct net_bridge *br = container_of(work, struct net_bridge,
4080 mcast_gc_work);
4081 HLIST_HEAD(deleted_head);
4082
4083 spin_lock_bh(&br->multicast_lock);
4084 hlist_move_list(&br->mcast_gc_list, &deleted_head);
4085 spin_unlock_bh(&br->multicast_lock);
4086
4087 br_multicast_gc(&deleted_head);
4088 }
4089
br_multicast_ctx_init(struct net_bridge * br,struct net_bridge_vlan * vlan,struct net_bridge_mcast * brmctx)4090 void br_multicast_ctx_init(struct net_bridge *br,
4091 struct net_bridge_vlan *vlan,
4092 struct net_bridge_mcast *brmctx)
4093 {
4094 brmctx->br = br;
4095 brmctx->vlan = vlan;
4096 brmctx->multicast_router = MDB_RTR_TYPE_TEMP_QUERY;
4097 brmctx->multicast_last_member_count = 2;
4098 brmctx->multicast_startup_query_count = 2;
4099
4100 brmctx->multicast_last_member_interval = HZ;
4101 brmctx->multicast_query_response_interval = 10 * HZ;
4102 brmctx->multicast_startup_query_interval = 125 * HZ / 4;
4103 brmctx->multicast_query_interval = 125 * HZ;
4104 brmctx->multicast_querier_interval = 255 * HZ;
4105 brmctx->multicast_membership_interval = 260 * HZ;
4106
4107 brmctx->ip4_querier.port_ifidx = 0;
4108 seqcount_spinlock_init(&brmctx->ip4_querier.seq, &br->multicast_lock);
4109 brmctx->multicast_igmp_version = 2;
4110 #if IS_ENABLED(CONFIG_IPV6)
4111 brmctx->multicast_mld_version = 1;
4112 brmctx->ip6_querier.port_ifidx = 0;
4113 seqcount_spinlock_init(&brmctx->ip6_querier.seq, &br->multicast_lock);
4114 #endif
4115
4116 timer_setup(&brmctx->ip4_mc_router_timer,
4117 br_ip4_multicast_local_router_expired, 0);
4118 timer_setup(&brmctx->ip4_other_query.timer,
4119 br_ip4_multicast_querier_expired, 0);
4120 timer_setup(&brmctx->ip4_other_query.delay_timer,
4121 br_multicast_query_delay_expired, 0);
4122 timer_setup(&brmctx->ip4_own_query.timer,
4123 br_ip4_multicast_query_expired, 0);
4124 #if IS_ENABLED(CONFIG_IPV6)
4125 timer_setup(&brmctx->ip6_mc_router_timer,
4126 br_ip6_multicast_local_router_expired, 0);
4127 timer_setup(&brmctx->ip6_other_query.timer,
4128 br_ip6_multicast_querier_expired, 0);
4129 timer_setup(&brmctx->ip6_other_query.delay_timer,
4130 br_multicast_query_delay_expired, 0);
4131 timer_setup(&brmctx->ip6_own_query.timer,
4132 br_ip6_multicast_query_expired, 0);
4133 #endif
4134 }
4135
br_multicast_ctx_deinit(struct net_bridge_mcast * brmctx)4136 void br_multicast_ctx_deinit(struct net_bridge_mcast *brmctx)
4137 {
4138 __br_multicast_stop(brmctx);
4139 }
4140
br_multicast_init(struct net_bridge * br)4141 void br_multicast_init(struct net_bridge *br)
4142 {
4143 br->hash_max = BR_MULTICAST_DEFAULT_HASH_MAX;
4144
4145 br_multicast_ctx_init(br, NULL, &br->multicast_ctx);
4146
4147 br_opt_toggle(br, BROPT_MULTICAST_ENABLED, true);
4148 br_opt_toggle(br, BROPT_HAS_IPV6_ADDR, true);
4149
4150 spin_lock_init(&br->multicast_lock);
4151 INIT_HLIST_HEAD(&br->mdb_list);
4152 INIT_HLIST_HEAD(&br->mcast_gc_list);
4153 INIT_WORK(&br->mcast_gc_work, br_multicast_gc_work);
4154 }
4155
br_ip4_multicast_join_snoopers(struct net_bridge * br)4156 static void br_ip4_multicast_join_snoopers(struct net_bridge *br)
4157 {
4158 struct in_device *in_dev = in_dev_get(br->dev);
4159
4160 if (!in_dev)
4161 return;
4162
4163 __ip_mc_inc_group(in_dev, htonl(INADDR_ALLSNOOPERS_GROUP), GFP_ATOMIC);
4164 in_dev_put(in_dev);
4165 }
4166
4167 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_join_snoopers(struct net_bridge * br)4168 static void br_ip6_multicast_join_snoopers(struct net_bridge *br)
4169 {
4170 struct in6_addr addr;
4171
4172 ipv6_addr_set(&addr, htonl(0xff020000), 0, 0, htonl(0x6a));
4173 ipv6_dev_mc_inc(br->dev, &addr);
4174 }
4175 #else
br_ip6_multicast_join_snoopers(struct net_bridge * br)4176 static inline void br_ip6_multicast_join_snoopers(struct net_bridge *br)
4177 {
4178 }
4179 #endif
4180
br_multicast_join_snoopers(struct net_bridge * br)4181 void br_multicast_join_snoopers(struct net_bridge *br)
4182 {
4183 br_ip4_multicast_join_snoopers(br);
4184 br_ip6_multicast_join_snoopers(br);
4185 }
4186
br_ip4_multicast_leave_snoopers(struct net_bridge * br)4187 static void br_ip4_multicast_leave_snoopers(struct net_bridge *br)
4188 {
4189 struct in_device *in_dev = in_dev_get(br->dev);
4190
4191 if (WARN_ON(!in_dev))
4192 return;
4193
4194 __ip_mc_dec_group(in_dev, htonl(INADDR_ALLSNOOPERS_GROUP), GFP_ATOMIC);
4195 in_dev_put(in_dev);
4196 }
4197
4198 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_leave_snoopers(struct net_bridge * br)4199 static void br_ip6_multicast_leave_snoopers(struct net_bridge *br)
4200 {
4201 struct in6_addr addr;
4202
4203 ipv6_addr_set(&addr, htonl(0xff020000), 0, 0, htonl(0x6a));
4204 ipv6_dev_mc_dec(br->dev, &addr);
4205 }
4206 #else
br_ip6_multicast_leave_snoopers(struct net_bridge * br)4207 static inline void br_ip6_multicast_leave_snoopers(struct net_bridge *br)
4208 {
4209 }
4210 #endif
4211
br_multicast_leave_snoopers(struct net_bridge * br)4212 void br_multicast_leave_snoopers(struct net_bridge *br)
4213 {
4214 br_ip4_multicast_leave_snoopers(br);
4215 br_ip6_multicast_leave_snoopers(br);
4216 }
4217
__br_multicast_open_query(struct net_bridge * br,struct bridge_mcast_own_query * query)4218 static void __br_multicast_open_query(struct net_bridge *br,
4219 struct bridge_mcast_own_query *query)
4220 {
4221 query->startup_sent = 0;
4222
4223 if (!br_opt_get(br, BROPT_MULTICAST_ENABLED))
4224 return;
4225
4226 mod_timer(&query->timer, jiffies);
4227 }
4228
__br_multicast_open(struct net_bridge_mcast * brmctx)4229 static void __br_multicast_open(struct net_bridge_mcast *brmctx)
4230 {
4231 __br_multicast_open_query(brmctx->br, &brmctx->ip4_own_query);
4232 #if IS_ENABLED(CONFIG_IPV6)
4233 __br_multicast_open_query(brmctx->br, &brmctx->ip6_own_query);
4234 #endif
4235 }
4236
br_multicast_open(struct net_bridge * br)4237 void br_multicast_open(struct net_bridge *br)
4238 {
4239 ASSERT_RTNL();
4240
4241 if (br_opt_get(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED)) {
4242 struct net_bridge_vlan_group *vg;
4243 struct net_bridge_vlan *vlan;
4244
4245 vg = br_vlan_group(br);
4246 if (vg) {
4247 list_for_each_entry(vlan, &vg->vlan_list, vlist) {
4248 struct net_bridge_mcast *brmctx;
4249
4250 brmctx = &vlan->br_mcast_ctx;
4251 if (br_vlan_is_brentry(vlan) &&
4252 !br_multicast_ctx_vlan_disabled(brmctx))
4253 __br_multicast_open(&vlan->br_mcast_ctx);
4254 }
4255 }
4256 } else {
4257 __br_multicast_open(&br->multicast_ctx);
4258 }
4259 }
4260
__br_multicast_stop(struct net_bridge_mcast * brmctx)4261 static void __br_multicast_stop(struct net_bridge_mcast *brmctx)
4262 {
4263 del_timer_sync(&brmctx->ip4_mc_router_timer);
4264 del_timer_sync(&brmctx->ip4_other_query.timer);
4265 del_timer_sync(&brmctx->ip4_other_query.delay_timer);
4266 del_timer_sync(&brmctx->ip4_own_query.timer);
4267 #if IS_ENABLED(CONFIG_IPV6)
4268 del_timer_sync(&brmctx->ip6_mc_router_timer);
4269 del_timer_sync(&brmctx->ip6_other_query.timer);
4270 del_timer_sync(&brmctx->ip6_other_query.delay_timer);
4271 del_timer_sync(&brmctx->ip6_own_query.timer);
4272 #endif
4273 }
4274
br_multicast_update_vlan_mcast_ctx(struct net_bridge_vlan * v,u8 state)4275 void br_multicast_update_vlan_mcast_ctx(struct net_bridge_vlan *v, u8 state)
4276 {
4277 #if IS_ENABLED(CONFIG_BRIDGE_VLAN_FILTERING)
4278 struct net_bridge *br;
4279
4280 if (!br_vlan_should_use(v))
4281 return;
4282
4283 if (br_vlan_is_master(v))
4284 return;
4285
4286 br = v->port->br;
4287
4288 if (!br_opt_get(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED))
4289 return;
4290
4291 if (br_vlan_state_allowed(state, true))
4292 br_multicast_enable_port_ctx(&v->port_mcast_ctx);
4293
4294 /* Multicast is not disabled for the vlan when it goes in
4295 * blocking state because the timers will expire and stop by
4296 * themselves without sending more queries.
4297 */
4298 #endif
4299 }
4300
br_multicast_toggle_one_vlan(struct net_bridge_vlan * vlan,bool on)4301 void br_multicast_toggle_one_vlan(struct net_bridge_vlan *vlan, bool on)
4302 {
4303 struct net_bridge *br;
4304
4305 /* it's okay to check for the flag without the multicast lock because it
4306 * can only change under RTNL -> multicast_lock, we need the latter to
4307 * sync with timers and packets
4308 */
4309 if (on == !!(vlan->priv_flags & BR_VLFLAG_MCAST_ENABLED))
4310 return;
4311
4312 if (br_vlan_is_master(vlan)) {
4313 br = vlan->br;
4314
4315 if (!br_vlan_is_brentry(vlan) ||
4316 (on &&
4317 br_multicast_ctx_vlan_global_disabled(&vlan->br_mcast_ctx)))
4318 return;
4319
4320 spin_lock_bh(&br->multicast_lock);
4321 vlan->priv_flags ^= BR_VLFLAG_MCAST_ENABLED;
4322 spin_unlock_bh(&br->multicast_lock);
4323
4324 if (on)
4325 __br_multicast_open(&vlan->br_mcast_ctx);
4326 else
4327 __br_multicast_stop(&vlan->br_mcast_ctx);
4328 } else {
4329 struct net_bridge_mcast *brmctx;
4330
4331 brmctx = br_multicast_port_ctx_get_global(&vlan->port_mcast_ctx);
4332 if (on && br_multicast_ctx_vlan_global_disabled(brmctx))
4333 return;
4334
4335 br = vlan->port->br;
4336 spin_lock_bh(&br->multicast_lock);
4337 vlan->priv_flags ^= BR_VLFLAG_MCAST_ENABLED;
4338 if (on)
4339 __br_multicast_enable_port_ctx(&vlan->port_mcast_ctx);
4340 else
4341 __br_multicast_disable_port_ctx(&vlan->port_mcast_ctx);
4342 spin_unlock_bh(&br->multicast_lock);
4343 }
4344 }
4345
br_multicast_toggle_vlan(struct net_bridge_vlan * vlan,bool on)4346 static void br_multicast_toggle_vlan(struct net_bridge_vlan *vlan, bool on)
4347 {
4348 struct net_bridge_port *p;
4349
4350 if (WARN_ON_ONCE(!br_vlan_is_master(vlan)))
4351 return;
4352
4353 list_for_each_entry(p, &vlan->br->port_list, list) {
4354 struct net_bridge_vlan *vport;
4355
4356 vport = br_vlan_find(nbp_vlan_group(p), vlan->vid);
4357 if (!vport)
4358 continue;
4359 br_multicast_toggle_one_vlan(vport, on);
4360 }
4361
4362 if (br_vlan_is_brentry(vlan))
4363 br_multicast_toggle_one_vlan(vlan, on);
4364 }
4365
br_multicast_toggle_vlan_snooping(struct net_bridge * br,bool on,struct netlink_ext_ack * extack)4366 int br_multicast_toggle_vlan_snooping(struct net_bridge *br, bool on,
4367 struct netlink_ext_ack *extack)
4368 {
4369 struct net_bridge_vlan_group *vg;
4370 struct net_bridge_vlan *vlan;
4371 struct net_bridge_port *p;
4372
4373 if (br_opt_get(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED) == on)
4374 return 0;
4375
4376 if (on && !br_opt_get(br, BROPT_VLAN_ENABLED)) {
4377 NL_SET_ERR_MSG_MOD(extack, "Cannot enable multicast vlan snooping with vlan filtering disabled");
4378 return -EINVAL;
4379 }
4380
4381 vg = br_vlan_group(br);
4382 if (!vg)
4383 return 0;
4384
4385 br_opt_toggle(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED, on);
4386
4387 /* disable/enable non-vlan mcast contexts based on vlan snooping */
4388 if (on)
4389 __br_multicast_stop(&br->multicast_ctx);
4390 else
4391 __br_multicast_open(&br->multicast_ctx);
4392 list_for_each_entry(p, &br->port_list, list) {
4393 if (on)
4394 br_multicast_disable_port_ctx(&p->multicast_ctx);
4395 else
4396 br_multicast_enable_port_ctx(&p->multicast_ctx);
4397 }
4398
4399 list_for_each_entry(vlan, &vg->vlan_list, vlist)
4400 br_multicast_toggle_vlan(vlan, on);
4401
4402 return 0;
4403 }
4404
br_multicast_toggle_global_vlan(struct net_bridge_vlan * vlan,bool on)4405 bool br_multicast_toggle_global_vlan(struct net_bridge_vlan *vlan, bool on)
4406 {
4407 ASSERT_RTNL();
4408
4409 /* BR_VLFLAG_GLOBAL_MCAST_ENABLED relies on eventual consistency and
4410 * requires only RTNL to change
4411 */
4412 if (on == !!(vlan->priv_flags & BR_VLFLAG_GLOBAL_MCAST_ENABLED))
4413 return false;
4414
4415 vlan->priv_flags ^= BR_VLFLAG_GLOBAL_MCAST_ENABLED;
4416 br_multicast_toggle_vlan(vlan, on);
4417
4418 return true;
4419 }
4420
br_multicast_stop(struct net_bridge * br)4421 void br_multicast_stop(struct net_bridge *br)
4422 {
4423 ASSERT_RTNL();
4424
4425 if (br_opt_get(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED)) {
4426 struct net_bridge_vlan_group *vg;
4427 struct net_bridge_vlan *vlan;
4428
4429 vg = br_vlan_group(br);
4430 if (vg) {
4431 list_for_each_entry(vlan, &vg->vlan_list, vlist) {
4432 struct net_bridge_mcast *brmctx;
4433
4434 brmctx = &vlan->br_mcast_ctx;
4435 if (br_vlan_is_brentry(vlan) &&
4436 !br_multicast_ctx_vlan_disabled(brmctx))
4437 __br_multicast_stop(&vlan->br_mcast_ctx);
4438 }
4439 }
4440 } else {
4441 __br_multicast_stop(&br->multicast_ctx);
4442 }
4443 }
4444
br_multicast_dev_del(struct net_bridge * br)4445 void br_multicast_dev_del(struct net_bridge *br)
4446 {
4447 struct net_bridge_mdb_entry *mp;
4448 HLIST_HEAD(deleted_head);
4449 struct hlist_node *tmp;
4450
4451 spin_lock_bh(&br->multicast_lock);
4452 hlist_for_each_entry_safe(mp, tmp, &br->mdb_list, mdb_node)
4453 br_multicast_del_mdb_entry(mp);
4454 hlist_move_list(&br->mcast_gc_list, &deleted_head);
4455 spin_unlock_bh(&br->multicast_lock);
4456
4457 br_multicast_ctx_deinit(&br->multicast_ctx);
4458 br_multicast_gc(&deleted_head);
4459 cancel_work_sync(&br->mcast_gc_work);
4460
4461 rcu_barrier();
4462 }
4463
br_multicast_set_router(struct net_bridge_mcast * brmctx,unsigned long val)4464 int br_multicast_set_router(struct net_bridge_mcast *brmctx, unsigned long val)
4465 {
4466 int err = -EINVAL;
4467
4468 spin_lock_bh(&brmctx->br->multicast_lock);
4469
4470 switch (val) {
4471 case MDB_RTR_TYPE_DISABLED:
4472 case MDB_RTR_TYPE_PERM:
4473 br_mc_router_state_change(brmctx->br, val == MDB_RTR_TYPE_PERM);
4474 del_timer(&brmctx->ip4_mc_router_timer);
4475 #if IS_ENABLED(CONFIG_IPV6)
4476 del_timer(&brmctx->ip6_mc_router_timer);
4477 #endif
4478 brmctx->multicast_router = val;
4479 err = 0;
4480 break;
4481 case MDB_RTR_TYPE_TEMP_QUERY:
4482 if (brmctx->multicast_router != MDB_RTR_TYPE_TEMP_QUERY)
4483 br_mc_router_state_change(brmctx->br, false);
4484 brmctx->multicast_router = val;
4485 err = 0;
4486 break;
4487 }
4488
4489 spin_unlock_bh(&brmctx->br->multicast_lock);
4490
4491 return err;
4492 }
4493
4494 static void
br_multicast_rport_del_notify(struct net_bridge_mcast_port * pmctx,bool deleted)4495 br_multicast_rport_del_notify(struct net_bridge_mcast_port *pmctx, bool deleted)
4496 {
4497 if (!deleted)
4498 return;
4499
4500 /* For backwards compatibility for now, only notify if there is
4501 * no multicast router anymore for both IPv4 and IPv6.
4502 */
4503 if (!hlist_unhashed(&pmctx->ip4_rlist))
4504 return;
4505 #if IS_ENABLED(CONFIG_IPV6)
4506 if (!hlist_unhashed(&pmctx->ip6_rlist))
4507 return;
4508 #endif
4509
4510 br_rtr_notify(pmctx->port->br->dev, pmctx, RTM_DELMDB);
4511 br_port_mc_router_state_change(pmctx->port, false);
4512
4513 /* don't allow timer refresh */
4514 if (pmctx->multicast_router == MDB_RTR_TYPE_TEMP)
4515 pmctx->multicast_router = MDB_RTR_TYPE_TEMP_QUERY;
4516 }
4517
br_multicast_set_port_router(struct net_bridge_mcast_port * pmctx,unsigned long val)4518 int br_multicast_set_port_router(struct net_bridge_mcast_port *pmctx,
4519 unsigned long val)
4520 {
4521 struct net_bridge_mcast *brmctx;
4522 unsigned long now = jiffies;
4523 int err = -EINVAL;
4524 bool del = false;
4525
4526 brmctx = br_multicast_port_ctx_get_global(pmctx);
4527 spin_lock_bh(&brmctx->br->multicast_lock);
4528 if (pmctx->multicast_router == val) {
4529 /* Refresh the temp router port timer */
4530 if (pmctx->multicast_router == MDB_RTR_TYPE_TEMP) {
4531 mod_timer(&pmctx->ip4_mc_router_timer,
4532 now + brmctx->multicast_querier_interval);
4533 #if IS_ENABLED(CONFIG_IPV6)
4534 mod_timer(&pmctx->ip6_mc_router_timer,
4535 now + brmctx->multicast_querier_interval);
4536 #endif
4537 }
4538 err = 0;
4539 goto unlock;
4540 }
4541 switch (val) {
4542 case MDB_RTR_TYPE_DISABLED:
4543 pmctx->multicast_router = MDB_RTR_TYPE_DISABLED;
4544 del |= br_ip4_multicast_rport_del(pmctx);
4545 del_timer(&pmctx->ip4_mc_router_timer);
4546 del |= br_ip6_multicast_rport_del(pmctx);
4547 #if IS_ENABLED(CONFIG_IPV6)
4548 del_timer(&pmctx->ip6_mc_router_timer);
4549 #endif
4550 br_multicast_rport_del_notify(pmctx, del);
4551 break;
4552 case MDB_RTR_TYPE_TEMP_QUERY:
4553 pmctx->multicast_router = MDB_RTR_TYPE_TEMP_QUERY;
4554 del |= br_ip4_multicast_rport_del(pmctx);
4555 del |= br_ip6_multicast_rport_del(pmctx);
4556 br_multicast_rport_del_notify(pmctx, del);
4557 break;
4558 case MDB_RTR_TYPE_PERM:
4559 pmctx->multicast_router = MDB_RTR_TYPE_PERM;
4560 del_timer(&pmctx->ip4_mc_router_timer);
4561 br_ip4_multicast_add_router(brmctx, pmctx);
4562 #if IS_ENABLED(CONFIG_IPV6)
4563 del_timer(&pmctx->ip6_mc_router_timer);
4564 #endif
4565 br_ip6_multicast_add_router(brmctx, pmctx);
4566 break;
4567 case MDB_RTR_TYPE_TEMP:
4568 pmctx->multicast_router = MDB_RTR_TYPE_TEMP;
4569 br_ip4_multicast_mark_router(brmctx, pmctx);
4570 br_ip6_multicast_mark_router(brmctx, pmctx);
4571 break;
4572 default:
4573 goto unlock;
4574 }
4575 err = 0;
4576 unlock:
4577 spin_unlock_bh(&brmctx->br->multicast_lock);
4578
4579 return err;
4580 }
4581
br_multicast_set_vlan_router(struct net_bridge_vlan * v,u8 mcast_router)4582 int br_multicast_set_vlan_router(struct net_bridge_vlan *v, u8 mcast_router)
4583 {
4584 int err;
4585
4586 if (br_vlan_is_master(v))
4587 err = br_multicast_set_router(&v->br_mcast_ctx, mcast_router);
4588 else
4589 err = br_multicast_set_port_router(&v->port_mcast_ctx,
4590 mcast_router);
4591
4592 return err;
4593 }
4594
br_multicast_start_querier(struct net_bridge_mcast * brmctx,struct bridge_mcast_own_query * query)4595 static void br_multicast_start_querier(struct net_bridge_mcast *brmctx,
4596 struct bridge_mcast_own_query *query)
4597 {
4598 struct net_bridge_port *port;
4599
4600 if (!br_multicast_ctx_matches_vlan_snooping(brmctx))
4601 return;
4602
4603 __br_multicast_open_query(brmctx->br, query);
4604
4605 rcu_read_lock();
4606 list_for_each_entry_rcu(port, &brmctx->br->port_list, list) {
4607 struct bridge_mcast_own_query *ip4_own_query;
4608 #if IS_ENABLED(CONFIG_IPV6)
4609 struct bridge_mcast_own_query *ip6_own_query;
4610 #endif
4611
4612 if (br_multicast_port_ctx_state_stopped(&port->multicast_ctx))
4613 continue;
4614
4615 if (br_multicast_ctx_is_vlan(brmctx)) {
4616 struct net_bridge_vlan *vlan;
4617
4618 vlan = br_vlan_find(nbp_vlan_group_rcu(port),
4619 brmctx->vlan->vid);
4620 if (!vlan ||
4621 br_multicast_port_ctx_state_stopped(&vlan->port_mcast_ctx))
4622 continue;
4623
4624 ip4_own_query = &vlan->port_mcast_ctx.ip4_own_query;
4625 #if IS_ENABLED(CONFIG_IPV6)
4626 ip6_own_query = &vlan->port_mcast_ctx.ip6_own_query;
4627 #endif
4628 } else {
4629 ip4_own_query = &port->multicast_ctx.ip4_own_query;
4630 #if IS_ENABLED(CONFIG_IPV6)
4631 ip6_own_query = &port->multicast_ctx.ip6_own_query;
4632 #endif
4633 }
4634
4635 if (query == &brmctx->ip4_own_query)
4636 br_multicast_enable(ip4_own_query);
4637 #if IS_ENABLED(CONFIG_IPV6)
4638 else
4639 br_multicast_enable(ip6_own_query);
4640 #endif
4641 }
4642 rcu_read_unlock();
4643 }
4644
br_multicast_toggle(struct net_bridge * br,unsigned long val,struct netlink_ext_ack * extack)4645 int br_multicast_toggle(struct net_bridge *br, unsigned long val,
4646 struct netlink_ext_ack *extack)
4647 {
4648 struct net_bridge_port *port;
4649 bool change_snoopers = false;
4650 int err = 0;
4651
4652 spin_lock_bh(&br->multicast_lock);
4653 if (!!br_opt_get(br, BROPT_MULTICAST_ENABLED) == !!val)
4654 goto unlock;
4655
4656 err = br_mc_disabled_update(br->dev, val, extack);
4657 if (err == -EOPNOTSUPP)
4658 err = 0;
4659 if (err)
4660 goto unlock;
4661
4662 br_opt_toggle(br, BROPT_MULTICAST_ENABLED, !!val);
4663 if (!br_opt_get(br, BROPT_MULTICAST_ENABLED)) {
4664 change_snoopers = true;
4665 goto unlock;
4666 }
4667
4668 if (!netif_running(br->dev))
4669 goto unlock;
4670
4671 br_multicast_open(br);
4672 list_for_each_entry(port, &br->port_list, list)
4673 __br_multicast_enable_port_ctx(&port->multicast_ctx);
4674
4675 change_snoopers = true;
4676
4677 unlock:
4678 spin_unlock_bh(&br->multicast_lock);
4679
4680 /* br_multicast_join_snoopers has the potential to cause
4681 * an MLD Report/Leave to be delivered to br_multicast_rcv,
4682 * which would in turn call br_multicast_add_group, which would
4683 * attempt to acquire multicast_lock. This function should be
4684 * called after the lock has been released to avoid deadlocks on
4685 * multicast_lock.
4686 *
4687 * br_multicast_leave_snoopers does not have the problem since
4688 * br_multicast_rcv first checks BROPT_MULTICAST_ENABLED, and
4689 * returns without calling br_multicast_ipv4/6_rcv if it's not
4690 * enabled. Moved both functions out just for symmetry.
4691 */
4692 if (change_snoopers) {
4693 if (br_opt_get(br, BROPT_MULTICAST_ENABLED))
4694 br_multicast_join_snoopers(br);
4695 else
4696 br_multicast_leave_snoopers(br);
4697 }
4698
4699 return err;
4700 }
4701
br_multicast_enabled(const struct net_device * dev)4702 bool br_multicast_enabled(const struct net_device *dev)
4703 {
4704 struct net_bridge *br = netdev_priv(dev);
4705
4706 return !!br_opt_get(br, BROPT_MULTICAST_ENABLED);
4707 }
4708 EXPORT_SYMBOL_GPL(br_multicast_enabled);
4709
br_multicast_router(const struct net_device * dev)4710 bool br_multicast_router(const struct net_device *dev)
4711 {
4712 struct net_bridge *br = netdev_priv(dev);
4713 bool is_router;
4714
4715 spin_lock_bh(&br->multicast_lock);
4716 is_router = br_multicast_is_router(&br->multicast_ctx, NULL);
4717 spin_unlock_bh(&br->multicast_lock);
4718 return is_router;
4719 }
4720 EXPORT_SYMBOL_GPL(br_multicast_router);
4721
br_multicast_set_querier(struct net_bridge_mcast * brmctx,unsigned long val)4722 int br_multicast_set_querier(struct net_bridge_mcast *brmctx, unsigned long val)
4723 {
4724 unsigned long max_delay;
4725
4726 val = !!val;
4727
4728 spin_lock_bh(&brmctx->br->multicast_lock);
4729 if (brmctx->multicast_querier == val)
4730 goto unlock;
4731
4732 WRITE_ONCE(brmctx->multicast_querier, val);
4733 if (!val)
4734 goto unlock;
4735
4736 max_delay = brmctx->multicast_query_response_interval;
4737
4738 if (!timer_pending(&brmctx->ip4_other_query.timer))
4739 mod_timer(&brmctx->ip4_other_query.delay_timer,
4740 jiffies + max_delay);
4741
4742 br_multicast_start_querier(brmctx, &brmctx->ip4_own_query);
4743
4744 #if IS_ENABLED(CONFIG_IPV6)
4745 if (!timer_pending(&brmctx->ip6_other_query.timer))
4746 mod_timer(&brmctx->ip6_other_query.delay_timer,
4747 jiffies + max_delay);
4748
4749 br_multicast_start_querier(brmctx, &brmctx->ip6_own_query);
4750 #endif
4751
4752 unlock:
4753 spin_unlock_bh(&brmctx->br->multicast_lock);
4754
4755 return 0;
4756 }
4757
br_multicast_set_igmp_version(struct net_bridge_mcast * brmctx,unsigned long val)4758 int br_multicast_set_igmp_version(struct net_bridge_mcast *brmctx,
4759 unsigned long val)
4760 {
4761 /* Currently we support only version 2 and 3 */
4762 switch (val) {
4763 case 2:
4764 case 3:
4765 break;
4766 default:
4767 return -EINVAL;
4768 }
4769
4770 spin_lock_bh(&brmctx->br->multicast_lock);
4771 brmctx->multicast_igmp_version = val;
4772 spin_unlock_bh(&brmctx->br->multicast_lock);
4773
4774 return 0;
4775 }
4776
4777 #if IS_ENABLED(CONFIG_IPV6)
br_multicast_set_mld_version(struct net_bridge_mcast * brmctx,unsigned long val)4778 int br_multicast_set_mld_version(struct net_bridge_mcast *brmctx,
4779 unsigned long val)
4780 {
4781 /* Currently we support version 1 and 2 */
4782 switch (val) {
4783 case 1:
4784 case 2:
4785 break;
4786 default:
4787 return -EINVAL;
4788 }
4789
4790 spin_lock_bh(&brmctx->br->multicast_lock);
4791 brmctx->multicast_mld_version = val;
4792 spin_unlock_bh(&brmctx->br->multicast_lock);
4793
4794 return 0;
4795 }
4796 #endif
4797
br_multicast_set_query_intvl(struct net_bridge_mcast * brmctx,unsigned long val)4798 void br_multicast_set_query_intvl(struct net_bridge_mcast *brmctx,
4799 unsigned long val)
4800 {
4801 unsigned long intvl_jiffies = clock_t_to_jiffies(val);
4802
4803 if (intvl_jiffies < BR_MULTICAST_QUERY_INTVL_MIN) {
4804 br_info(brmctx->br,
4805 "trying to set multicast query interval below minimum, setting to %lu (%ums)\n",
4806 jiffies_to_clock_t(BR_MULTICAST_QUERY_INTVL_MIN),
4807 jiffies_to_msecs(BR_MULTICAST_QUERY_INTVL_MIN));
4808 intvl_jiffies = BR_MULTICAST_QUERY_INTVL_MIN;
4809 }
4810
4811 if (intvl_jiffies > BR_MULTICAST_QUERY_INTVL_MAX) {
4812 br_info(brmctx->br,
4813 "trying to set multicast query interval above maximum, setting to %lu (%ums)\n",
4814 jiffies_to_clock_t(BR_MULTICAST_QUERY_INTVL_MAX),
4815 jiffies_to_msecs(BR_MULTICAST_QUERY_INTVL_MAX));
4816 intvl_jiffies = BR_MULTICAST_QUERY_INTVL_MAX;
4817 }
4818
4819 brmctx->multicast_query_interval = intvl_jiffies;
4820 }
4821
br_multicast_set_startup_query_intvl(struct net_bridge_mcast * brmctx,unsigned long val)4822 void br_multicast_set_startup_query_intvl(struct net_bridge_mcast *brmctx,
4823 unsigned long val)
4824 {
4825 unsigned long intvl_jiffies = clock_t_to_jiffies(val);
4826
4827 if (intvl_jiffies < BR_MULTICAST_STARTUP_QUERY_INTVL_MIN) {
4828 br_info(brmctx->br,
4829 "trying to set multicast startup query interval below minimum, setting to %lu (%ums)\n",
4830 jiffies_to_clock_t(BR_MULTICAST_STARTUP_QUERY_INTVL_MIN),
4831 jiffies_to_msecs(BR_MULTICAST_STARTUP_QUERY_INTVL_MIN));
4832 intvl_jiffies = BR_MULTICAST_STARTUP_QUERY_INTVL_MIN;
4833 }
4834
4835 if (intvl_jiffies > BR_MULTICAST_STARTUP_QUERY_INTVL_MAX) {
4836 br_info(brmctx->br,
4837 "trying to set multicast startup query interval above maximum, setting to %lu (%ums)\n",
4838 jiffies_to_clock_t(BR_MULTICAST_STARTUP_QUERY_INTVL_MAX),
4839 jiffies_to_msecs(BR_MULTICAST_STARTUP_QUERY_INTVL_MAX));
4840 intvl_jiffies = BR_MULTICAST_STARTUP_QUERY_INTVL_MAX;
4841 }
4842
4843 brmctx->multicast_startup_query_interval = intvl_jiffies;
4844 }
4845
4846 /**
4847 * br_multicast_list_adjacent - Returns snooped multicast addresses
4848 * @dev: The bridge port adjacent to which to retrieve addresses
4849 * @br_ip_list: The list to store found, snooped multicast IP addresses in
4850 *
4851 * Creates a list of IP addresses (struct br_ip_list) sensed by the multicast
4852 * snooping feature on all bridge ports of dev's bridge device, excluding
4853 * the addresses from dev itself.
4854 *
4855 * Returns the number of items added to br_ip_list.
4856 *
4857 * Notes:
4858 * - br_ip_list needs to be initialized by caller
4859 * - br_ip_list might contain duplicates in the end
4860 * (needs to be taken care of by caller)
4861 * - br_ip_list needs to be freed by caller
4862 */
br_multicast_list_adjacent(struct net_device * dev,struct list_head * br_ip_list)4863 int br_multicast_list_adjacent(struct net_device *dev,
4864 struct list_head *br_ip_list)
4865 {
4866 struct net_bridge *br;
4867 struct net_bridge_port *port;
4868 struct net_bridge_port_group *group;
4869 struct br_ip_list *entry;
4870 int count = 0;
4871
4872 rcu_read_lock();
4873 if (!br_ip_list || !netif_is_bridge_port(dev))
4874 goto unlock;
4875
4876 port = br_port_get_rcu(dev);
4877 if (!port || !port->br)
4878 goto unlock;
4879
4880 br = port->br;
4881
4882 list_for_each_entry_rcu(port, &br->port_list, list) {
4883 if (!port->dev || port->dev == dev)
4884 continue;
4885
4886 hlist_for_each_entry_rcu(group, &port->mglist, mglist) {
4887 entry = kmalloc(sizeof(*entry), GFP_ATOMIC);
4888 if (!entry)
4889 goto unlock;
4890
4891 entry->addr = group->key.addr;
4892 list_add(&entry->list, br_ip_list);
4893 count++;
4894 }
4895 }
4896
4897 unlock:
4898 rcu_read_unlock();
4899 return count;
4900 }
4901 EXPORT_SYMBOL_GPL(br_multicast_list_adjacent);
4902
4903 /**
4904 * br_multicast_has_querier_anywhere - Checks for a querier on a bridge
4905 * @dev: The bridge port providing the bridge on which to check for a querier
4906 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
4907 *
4908 * Checks whether the given interface has a bridge on top and if so returns
4909 * true if a valid querier exists anywhere on the bridged link layer.
4910 * Otherwise returns false.
4911 */
br_multicast_has_querier_anywhere(struct net_device * dev,int proto)4912 bool br_multicast_has_querier_anywhere(struct net_device *dev, int proto)
4913 {
4914 struct net_bridge *br;
4915 struct net_bridge_port *port;
4916 struct ethhdr eth;
4917 bool ret = false;
4918
4919 rcu_read_lock();
4920 if (!netif_is_bridge_port(dev))
4921 goto unlock;
4922
4923 port = br_port_get_rcu(dev);
4924 if (!port || !port->br)
4925 goto unlock;
4926
4927 br = port->br;
4928
4929 memset(ð, 0, sizeof(eth));
4930 eth.h_proto = htons(proto);
4931
4932 ret = br_multicast_querier_exists(&br->multicast_ctx, ð, NULL);
4933
4934 unlock:
4935 rcu_read_unlock();
4936 return ret;
4937 }
4938 EXPORT_SYMBOL_GPL(br_multicast_has_querier_anywhere);
4939
4940 /**
4941 * br_multicast_has_querier_adjacent - Checks for a querier behind a bridge port
4942 * @dev: The bridge port adjacent to which to check for a querier
4943 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
4944 *
4945 * Checks whether the given interface has a bridge on top and if so returns
4946 * true if a selected querier is behind one of the other ports of this
4947 * bridge. Otherwise returns false.
4948 */
br_multicast_has_querier_adjacent(struct net_device * dev,int proto)4949 bool br_multicast_has_querier_adjacent(struct net_device *dev, int proto)
4950 {
4951 struct net_bridge_mcast *brmctx;
4952 struct net_bridge *br;
4953 struct net_bridge_port *port;
4954 bool ret = false;
4955 int port_ifidx;
4956
4957 rcu_read_lock();
4958 if (!netif_is_bridge_port(dev))
4959 goto unlock;
4960
4961 port = br_port_get_rcu(dev);
4962 if (!port || !port->br)
4963 goto unlock;
4964
4965 br = port->br;
4966 brmctx = &br->multicast_ctx;
4967
4968 switch (proto) {
4969 case ETH_P_IP:
4970 port_ifidx = brmctx->ip4_querier.port_ifidx;
4971 if (!timer_pending(&brmctx->ip4_other_query.timer) ||
4972 port_ifidx == port->dev->ifindex)
4973 goto unlock;
4974 break;
4975 #if IS_ENABLED(CONFIG_IPV6)
4976 case ETH_P_IPV6:
4977 port_ifidx = brmctx->ip6_querier.port_ifidx;
4978 if (!timer_pending(&brmctx->ip6_other_query.timer) ||
4979 port_ifidx == port->dev->ifindex)
4980 goto unlock;
4981 break;
4982 #endif
4983 default:
4984 goto unlock;
4985 }
4986
4987 ret = true;
4988 unlock:
4989 rcu_read_unlock();
4990 return ret;
4991 }
4992 EXPORT_SYMBOL_GPL(br_multicast_has_querier_adjacent);
4993
4994 /**
4995 * br_multicast_has_router_adjacent - Checks for a router behind a bridge port
4996 * @dev: The bridge port adjacent to which to check for a multicast router
4997 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
4998 *
4999 * Checks whether the given interface has a bridge on top and if so returns
5000 * true if a multicast router is behind one of the other ports of this
5001 * bridge. Otherwise returns false.
5002 */
br_multicast_has_router_adjacent(struct net_device * dev,int proto)5003 bool br_multicast_has_router_adjacent(struct net_device *dev, int proto)
5004 {
5005 struct net_bridge_mcast_port *pmctx;
5006 struct net_bridge_mcast *brmctx;
5007 struct net_bridge_port *port;
5008 bool ret = false;
5009
5010 rcu_read_lock();
5011 port = br_port_get_check_rcu(dev);
5012 if (!port)
5013 goto unlock;
5014
5015 brmctx = &port->br->multicast_ctx;
5016 switch (proto) {
5017 case ETH_P_IP:
5018 hlist_for_each_entry_rcu(pmctx, &brmctx->ip4_mc_router_list,
5019 ip4_rlist) {
5020 if (pmctx->port == port)
5021 continue;
5022
5023 ret = true;
5024 goto unlock;
5025 }
5026 break;
5027 #if IS_ENABLED(CONFIG_IPV6)
5028 case ETH_P_IPV6:
5029 hlist_for_each_entry_rcu(pmctx, &brmctx->ip6_mc_router_list,
5030 ip6_rlist) {
5031 if (pmctx->port == port)
5032 continue;
5033
5034 ret = true;
5035 goto unlock;
5036 }
5037 break;
5038 #endif
5039 default:
5040 /* when compiled without IPv6 support, be conservative and
5041 * always assume presence of an IPv6 multicast router
5042 */
5043 ret = true;
5044 }
5045
5046 unlock:
5047 rcu_read_unlock();
5048 return ret;
5049 }
5050 EXPORT_SYMBOL_GPL(br_multicast_has_router_adjacent);
5051
br_mcast_stats_add(struct bridge_mcast_stats __percpu * stats,const struct sk_buff * skb,u8 type,u8 dir)5052 static void br_mcast_stats_add(struct bridge_mcast_stats __percpu *stats,
5053 const struct sk_buff *skb, u8 type, u8 dir)
5054 {
5055 struct bridge_mcast_stats *pstats = this_cpu_ptr(stats);
5056 __be16 proto = skb->protocol;
5057 unsigned int t_len;
5058
5059 u64_stats_update_begin(&pstats->syncp);
5060 switch (proto) {
5061 case htons(ETH_P_IP):
5062 t_len = ntohs(ip_hdr(skb)->tot_len) - ip_hdrlen(skb);
5063 switch (type) {
5064 case IGMP_HOST_MEMBERSHIP_REPORT:
5065 pstats->mstats.igmp_v1reports[dir]++;
5066 break;
5067 case IGMPV2_HOST_MEMBERSHIP_REPORT:
5068 pstats->mstats.igmp_v2reports[dir]++;
5069 break;
5070 case IGMPV3_HOST_MEMBERSHIP_REPORT:
5071 pstats->mstats.igmp_v3reports[dir]++;
5072 break;
5073 case IGMP_HOST_MEMBERSHIP_QUERY:
5074 if (t_len != sizeof(struct igmphdr)) {
5075 pstats->mstats.igmp_v3queries[dir]++;
5076 } else {
5077 unsigned int offset = skb_transport_offset(skb);
5078 struct igmphdr *ih, _ihdr;
5079
5080 ih = skb_header_pointer(skb, offset,
5081 sizeof(_ihdr), &_ihdr);
5082 if (!ih)
5083 break;
5084 if (!ih->code)
5085 pstats->mstats.igmp_v1queries[dir]++;
5086 else
5087 pstats->mstats.igmp_v2queries[dir]++;
5088 }
5089 break;
5090 case IGMP_HOST_LEAVE_MESSAGE:
5091 pstats->mstats.igmp_leaves[dir]++;
5092 break;
5093 }
5094 break;
5095 #if IS_ENABLED(CONFIG_IPV6)
5096 case htons(ETH_P_IPV6):
5097 t_len = ntohs(ipv6_hdr(skb)->payload_len) +
5098 sizeof(struct ipv6hdr);
5099 t_len -= skb_network_header_len(skb);
5100 switch (type) {
5101 case ICMPV6_MGM_REPORT:
5102 pstats->mstats.mld_v1reports[dir]++;
5103 break;
5104 case ICMPV6_MLD2_REPORT:
5105 pstats->mstats.mld_v2reports[dir]++;
5106 break;
5107 case ICMPV6_MGM_QUERY:
5108 if (t_len != sizeof(struct mld_msg))
5109 pstats->mstats.mld_v2queries[dir]++;
5110 else
5111 pstats->mstats.mld_v1queries[dir]++;
5112 break;
5113 case ICMPV6_MGM_REDUCTION:
5114 pstats->mstats.mld_leaves[dir]++;
5115 break;
5116 }
5117 break;
5118 #endif /* CONFIG_IPV6 */
5119 }
5120 u64_stats_update_end(&pstats->syncp);
5121 }
5122
br_multicast_count(struct net_bridge * br,const struct net_bridge_port * p,const struct sk_buff * skb,u8 type,u8 dir)5123 void br_multicast_count(struct net_bridge *br,
5124 const struct net_bridge_port *p,
5125 const struct sk_buff *skb, u8 type, u8 dir)
5126 {
5127 struct bridge_mcast_stats __percpu *stats;
5128
5129 /* if multicast_disabled is true then igmp type can't be set */
5130 if (!type || !br_opt_get(br, BROPT_MULTICAST_STATS_ENABLED))
5131 return;
5132
5133 if (p)
5134 stats = p->mcast_stats;
5135 else
5136 stats = br->mcast_stats;
5137 if (WARN_ON(!stats))
5138 return;
5139
5140 br_mcast_stats_add(stats, skb, type, dir);
5141 }
5142
br_multicast_init_stats(struct net_bridge * br)5143 int br_multicast_init_stats(struct net_bridge *br)
5144 {
5145 br->mcast_stats = netdev_alloc_pcpu_stats(struct bridge_mcast_stats);
5146 if (!br->mcast_stats)
5147 return -ENOMEM;
5148
5149 return 0;
5150 }
5151
br_multicast_uninit_stats(struct net_bridge * br)5152 void br_multicast_uninit_stats(struct net_bridge *br)
5153 {
5154 free_percpu(br->mcast_stats);
5155 }
5156
5157 /* noinline for https://llvm.org/pr45802#c9 */
mcast_stats_add_dir(u64 * dst,u64 * src)5158 static noinline_for_stack void mcast_stats_add_dir(u64 *dst, u64 *src)
5159 {
5160 dst[BR_MCAST_DIR_RX] += src[BR_MCAST_DIR_RX];
5161 dst[BR_MCAST_DIR_TX] += src[BR_MCAST_DIR_TX];
5162 }
5163
br_multicast_get_stats(const struct net_bridge * br,const struct net_bridge_port * p,struct br_mcast_stats * dest)5164 void br_multicast_get_stats(const struct net_bridge *br,
5165 const struct net_bridge_port *p,
5166 struct br_mcast_stats *dest)
5167 {
5168 struct bridge_mcast_stats __percpu *stats;
5169 struct br_mcast_stats tdst;
5170 int i;
5171
5172 memset(dest, 0, sizeof(*dest));
5173 if (p)
5174 stats = p->mcast_stats;
5175 else
5176 stats = br->mcast_stats;
5177 if (WARN_ON(!stats))
5178 return;
5179
5180 memset(&tdst, 0, sizeof(tdst));
5181 for_each_possible_cpu(i) {
5182 struct bridge_mcast_stats *cpu_stats = per_cpu_ptr(stats, i);
5183 struct br_mcast_stats temp;
5184 unsigned int start;
5185
5186 do {
5187 start = u64_stats_fetch_begin(&cpu_stats->syncp);
5188 memcpy(&temp, &cpu_stats->mstats, sizeof(temp));
5189 } while (u64_stats_fetch_retry(&cpu_stats->syncp, start));
5190
5191 mcast_stats_add_dir(tdst.igmp_v1queries, temp.igmp_v1queries);
5192 mcast_stats_add_dir(tdst.igmp_v2queries, temp.igmp_v2queries);
5193 mcast_stats_add_dir(tdst.igmp_v3queries, temp.igmp_v3queries);
5194 mcast_stats_add_dir(tdst.igmp_leaves, temp.igmp_leaves);
5195 mcast_stats_add_dir(tdst.igmp_v1reports, temp.igmp_v1reports);
5196 mcast_stats_add_dir(tdst.igmp_v2reports, temp.igmp_v2reports);
5197 mcast_stats_add_dir(tdst.igmp_v3reports, temp.igmp_v3reports);
5198 tdst.igmp_parse_errors += temp.igmp_parse_errors;
5199
5200 mcast_stats_add_dir(tdst.mld_v1queries, temp.mld_v1queries);
5201 mcast_stats_add_dir(tdst.mld_v2queries, temp.mld_v2queries);
5202 mcast_stats_add_dir(tdst.mld_leaves, temp.mld_leaves);
5203 mcast_stats_add_dir(tdst.mld_v1reports, temp.mld_v1reports);
5204 mcast_stats_add_dir(tdst.mld_v2reports, temp.mld_v2reports);
5205 tdst.mld_parse_errors += temp.mld_parse_errors;
5206 }
5207 memcpy(dest, &tdst, sizeof(*dest));
5208 }
5209
br_mdb_hash_init(struct net_bridge * br)5210 int br_mdb_hash_init(struct net_bridge *br)
5211 {
5212 int err;
5213
5214 err = rhashtable_init(&br->sg_port_tbl, &br_sg_port_rht_params);
5215 if (err)
5216 return err;
5217
5218 err = rhashtable_init(&br->mdb_hash_tbl, &br_mdb_rht_params);
5219 if (err) {
5220 rhashtable_destroy(&br->sg_port_tbl);
5221 return err;
5222 }
5223
5224 return 0;
5225 }
5226
br_mdb_hash_fini(struct net_bridge * br)5227 void br_mdb_hash_fini(struct net_bridge *br)
5228 {
5229 rhashtable_destroy(&br->sg_port_tbl);
5230 rhashtable_destroy(&br->mdb_hash_tbl);
5231 }
5232