1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /*
3 * Bridge multicast support.
4 *
5 * Copyright (c) 2010 Herbert Xu <herbert@gondor.apana.org.au>
6 */
7
8 #include <linux/err.h>
9 #include <linux/export.h>
10 #include <linux/if_ether.h>
11 #include <linux/igmp.h>
12 #include <linux/in.h>
13 #include <linux/jhash.h>
14 #include <linux/kernel.h>
15 #include <linux/log2.h>
16 #include <linux/netdevice.h>
17 #include <linux/netfilter_bridge.h>
18 #include <linux/random.h>
19 #include <linux/rculist.h>
20 #include <linux/skbuff.h>
21 #include <linux/slab.h>
22 #include <linux/timer.h>
23 #include <linux/inetdevice.h>
24 #include <linux/mroute.h>
25 #include <net/ip.h>
26 #include <net/switchdev.h>
27 #if IS_ENABLED(CONFIG_IPV6)
28 #include <linux/icmpv6.h>
29 #include <net/ipv6.h>
30 #include <net/mld.h>
31 #include <net/ip6_checksum.h>
32 #include <net/addrconf.h>
33 #endif
34 #include <trace/events/bridge.h>
35
36 #include "br_private.h"
37 #include "br_private_mcast_eht.h"
38
39 static const struct rhashtable_params br_mdb_rht_params = {
40 .head_offset = offsetof(struct net_bridge_mdb_entry, rhnode),
41 .key_offset = offsetof(struct net_bridge_mdb_entry, addr),
42 .key_len = sizeof(struct br_ip),
43 .automatic_shrinking = true,
44 };
45
46 static const struct rhashtable_params br_sg_port_rht_params = {
47 .head_offset = offsetof(struct net_bridge_port_group, rhnode),
48 .key_offset = offsetof(struct net_bridge_port_group, key),
49 .key_len = sizeof(struct net_bridge_port_group_sg_key),
50 .automatic_shrinking = true,
51 };
52
53 static void br_multicast_start_querier(struct net_bridge_mcast *brmctx,
54 struct bridge_mcast_own_query *query);
55 static void br_ip4_multicast_add_router(struct net_bridge_mcast *brmctx,
56 struct net_bridge_mcast_port *pmctx);
57 static void br_ip4_multicast_leave_group(struct net_bridge_mcast *brmctx,
58 struct net_bridge_mcast_port *pmctx,
59 __be32 group,
60 __u16 vid,
61 const unsigned char *src);
62 static void br_multicast_port_group_rexmit(struct timer_list *t);
63
64 static void
65 br_multicast_rport_del_notify(struct net_bridge_mcast_port *pmctx, bool deleted);
66 static void br_ip6_multicast_add_router(struct net_bridge_mcast *brmctx,
67 struct net_bridge_mcast_port *pmctx);
68 #if IS_ENABLED(CONFIG_IPV6)
69 static void br_ip6_multicast_leave_group(struct net_bridge_mcast *brmctx,
70 struct net_bridge_mcast_port *pmctx,
71 const struct in6_addr *group,
72 __u16 vid, const unsigned char *src);
73 #endif
74 static struct net_bridge_port_group *
75 __br_multicast_add_group(struct net_bridge_mcast *brmctx,
76 struct net_bridge_mcast_port *pmctx,
77 struct br_ip *group,
78 const unsigned char *src,
79 u8 filter_mode,
80 bool igmpv2_mldv1,
81 bool blocked);
82 static void br_multicast_find_del_pg(struct net_bridge *br,
83 struct net_bridge_port_group *pg);
84 static void __br_multicast_stop(struct net_bridge_mcast *brmctx);
85
86 static int br_mc_disabled_update(struct net_device *dev, bool value,
87 struct netlink_ext_ack *extack);
88
89 static struct net_bridge_port_group *
br_sg_port_find(struct net_bridge * br,struct net_bridge_port_group_sg_key * sg_p)90 br_sg_port_find(struct net_bridge *br,
91 struct net_bridge_port_group_sg_key *sg_p)
92 {
93 lockdep_assert_held_once(&br->multicast_lock);
94
95 return rhashtable_lookup_fast(&br->sg_port_tbl, sg_p,
96 br_sg_port_rht_params);
97 }
98
br_mdb_ip_get_rcu(struct net_bridge * br,struct br_ip * dst)99 static struct net_bridge_mdb_entry *br_mdb_ip_get_rcu(struct net_bridge *br,
100 struct br_ip *dst)
101 {
102 return rhashtable_lookup(&br->mdb_hash_tbl, dst, br_mdb_rht_params);
103 }
104
br_mdb_ip_get(struct net_bridge * br,struct br_ip * dst)105 struct net_bridge_mdb_entry *br_mdb_ip_get(struct net_bridge *br,
106 struct br_ip *dst)
107 {
108 struct net_bridge_mdb_entry *ent;
109
110 lockdep_assert_held_once(&br->multicast_lock);
111
112 rcu_read_lock();
113 ent = rhashtable_lookup(&br->mdb_hash_tbl, dst, br_mdb_rht_params);
114 rcu_read_unlock();
115
116 return ent;
117 }
118
br_mdb_ip4_get(struct net_bridge * br,__be32 dst,__u16 vid)119 static struct net_bridge_mdb_entry *br_mdb_ip4_get(struct net_bridge *br,
120 __be32 dst, __u16 vid)
121 {
122 struct br_ip br_dst;
123
124 memset(&br_dst, 0, sizeof(br_dst));
125 br_dst.dst.ip4 = dst;
126 br_dst.proto = htons(ETH_P_IP);
127 br_dst.vid = vid;
128
129 return br_mdb_ip_get(br, &br_dst);
130 }
131
132 #if IS_ENABLED(CONFIG_IPV6)
br_mdb_ip6_get(struct net_bridge * br,const struct in6_addr * dst,__u16 vid)133 static struct net_bridge_mdb_entry *br_mdb_ip6_get(struct net_bridge *br,
134 const struct in6_addr *dst,
135 __u16 vid)
136 {
137 struct br_ip br_dst;
138
139 memset(&br_dst, 0, sizeof(br_dst));
140 br_dst.dst.ip6 = *dst;
141 br_dst.proto = htons(ETH_P_IPV6);
142 br_dst.vid = vid;
143
144 return br_mdb_ip_get(br, &br_dst);
145 }
146 #endif
147
br_mdb_get(struct net_bridge_mcast * brmctx,struct sk_buff * skb,u16 vid)148 struct net_bridge_mdb_entry *br_mdb_get(struct net_bridge_mcast *brmctx,
149 struct sk_buff *skb, u16 vid)
150 {
151 struct net_bridge *br = brmctx->br;
152 struct br_ip ip;
153
154 if (!br_opt_get(br, BROPT_MULTICAST_ENABLED) ||
155 br_multicast_ctx_vlan_global_disabled(brmctx))
156 return NULL;
157
158 if (BR_INPUT_SKB_CB(skb)->igmp)
159 return NULL;
160
161 memset(&ip, 0, sizeof(ip));
162 ip.proto = skb->protocol;
163 ip.vid = vid;
164
165 switch (skb->protocol) {
166 case htons(ETH_P_IP):
167 ip.dst.ip4 = ip_hdr(skb)->daddr;
168 if (brmctx->multicast_igmp_version == 3) {
169 struct net_bridge_mdb_entry *mdb;
170
171 ip.src.ip4 = ip_hdr(skb)->saddr;
172 mdb = br_mdb_ip_get_rcu(br, &ip);
173 if (mdb)
174 return mdb;
175 ip.src.ip4 = 0;
176 }
177 break;
178 #if IS_ENABLED(CONFIG_IPV6)
179 case htons(ETH_P_IPV6):
180 ip.dst.ip6 = ipv6_hdr(skb)->daddr;
181 if (brmctx->multicast_mld_version == 2) {
182 struct net_bridge_mdb_entry *mdb;
183
184 ip.src.ip6 = ipv6_hdr(skb)->saddr;
185 mdb = br_mdb_ip_get_rcu(br, &ip);
186 if (mdb)
187 return mdb;
188 memset(&ip.src.ip6, 0, sizeof(ip.src.ip6));
189 }
190 break;
191 #endif
192 default:
193 ip.proto = 0;
194 ether_addr_copy(ip.dst.mac_addr, eth_hdr(skb)->h_dest);
195 }
196
197 return br_mdb_ip_get_rcu(br, &ip);
198 }
199
200 /* IMPORTANT: this function must be used only when the contexts cannot be
201 * passed down (e.g. timer) and must be used for read-only purposes because
202 * the vlan snooping option can change, so it can return any context
203 * (non-vlan or vlan). Its initial intended purpose is to read timer values
204 * from the *current* context based on the option. At worst that could lead
205 * to inconsistent timers when the contexts are changed, i.e. src timer
206 * which needs to re-arm with a specific delay taken from the old context
207 */
208 static struct net_bridge_mcast_port *
br_multicast_pg_to_port_ctx(const struct net_bridge_port_group * pg)209 br_multicast_pg_to_port_ctx(const struct net_bridge_port_group *pg)
210 {
211 struct net_bridge_mcast_port *pmctx = &pg->key.port->multicast_ctx;
212 struct net_bridge_vlan *vlan;
213
214 lockdep_assert_held_once(&pg->key.port->br->multicast_lock);
215
216 /* if vlan snooping is disabled use the port's multicast context */
217 if (!pg->key.addr.vid ||
218 !br_opt_get(pg->key.port->br, BROPT_MCAST_VLAN_SNOOPING_ENABLED))
219 goto out;
220
221 /* locking is tricky here, due to different rules for multicast and
222 * vlans we need to take rcu to find the vlan and make sure it has
223 * the BR_VLFLAG_MCAST_ENABLED flag set, it can only change under
224 * multicast_lock which must be already held here, so the vlan's pmctx
225 * can safely be used on return
226 */
227 rcu_read_lock();
228 vlan = br_vlan_find(nbp_vlan_group_rcu(pg->key.port), pg->key.addr.vid);
229 if (vlan && !br_multicast_port_ctx_vlan_disabled(&vlan->port_mcast_ctx))
230 pmctx = &vlan->port_mcast_ctx;
231 else
232 pmctx = NULL;
233 rcu_read_unlock();
234 out:
235 return pmctx;
236 }
237
238 static struct net_bridge_mcast_port *
br_multicast_port_vid_to_port_ctx(struct net_bridge_port * port,u16 vid)239 br_multicast_port_vid_to_port_ctx(struct net_bridge_port *port, u16 vid)
240 {
241 struct net_bridge_mcast_port *pmctx = NULL;
242 struct net_bridge_vlan *vlan;
243
244 lockdep_assert_held_once(&port->br->multicast_lock);
245
246 if (!br_opt_get(port->br, BROPT_MCAST_VLAN_SNOOPING_ENABLED))
247 return NULL;
248
249 /* Take RCU to access the vlan. */
250 rcu_read_lock();
251
252 vlan = br_vlan_find(nbp_vlan_group_rcu(port), vid);
253 if (vlan && !br_multicast_port_ctx_vlan_disabled(&vlan->port_mcast_ctx))
254 pmctx = &vlan->port_mcast_ctx;
255
256 rcu_read_unlock();
257
258 return pmctx;
259 }
260
261 /* when snooping we need to check if the contexts should be used
262 * in the following order:
263 * - if pmctx is non-NULL (port), check if it should be used
264 * - if pmctx is NULL (bridge), check if brmctx should be used
265 */
266 static bool
br_multicast_ctx_should_use(const struct net_bridge_mcast * brmctx,const struct net_bridge_mcast_port * pmctx)267 br_multicast_ctx_should_use(const struct net_bridge_mcast *brmctx,
268 const struct net_bridge_mcast_port *pmctx)
269 {
270 if (!netif_running(brmctx->br->dev))
271 return false;
272
273 if (pmctx)
274 return !br_multicast_port_ctx_state_disabled(pmctx);
275 else
276 return !br_multicast_ctx_vlan_disabled(brmctx);
277 }
278
br_port_group_equal(struct net_bridge_port_group * p,struct net_bridge_port * port,const unsigned char * src)279 static bool br_port_group_equal(struct net_bridge_port_group *p,
280 struct net_bridge_port *port,
281 const unsigned char *src)
282 {
283 if (p->key.port != port)
284 return false;
285
286 if (!(port->flags & BR_MULTICAST_TO_UNICAST))
287 return true;
288
289 return ether_addr_equal(src, p->eth_addr);
290 }
291
__fwd_add_star_excl(struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,struct br_ip * sg_ip)292 static void __fwd_add_star_excl(struct net_bridge_mcast_port *pmctx,
293 struct net_bridge_port_group *pg,
294 struct br_ip *sg_ip)
295 {
296 struct net_bridge_port_group_sg_key sg_key;
297 struct net_bridge_port_group *src_pg;
298 struct net_bridge_mcast *brmctx;
299
300 memset(&sg_key, 0, sizeof(sg_key));
301 brmctx = br_multicast_port_ctx_get_global(pmctx);
302 sg_key.port = pg->key.port;
303 sg_key.addr = *sg_ip;
304 if (br_sg_port_find(brmctx->br, &sg_key))
305 return;
306
307 src_pg = __br_multicast_add_group(brmctx, pmctx,
308 sg_ip, pg->eth_addr,
309 MCAST_INCLUDE, false, false);
310 if (IS_ERR_OR_NULL(src_pg) ||
311 src_pg->rt_protocol != RTPROT_KERNEL)
312 return;
313
314 src_pg->flags |= MDB_PG_FLAGS_STAR_EXCL;
315 }
316
__fwd_del_star_excl(struct net_bridge_port_group * pg,struct br_ip * sg_ip)317 static void __fwd_del_star_excl(struct net_bridge_port_group *pg,
318 struct br_ip *sg_ip)
319 {
320 struct net_bridge_port_group_sg_key sg_key;
321 struct net_bridge *br = pg->key.port->br;
322 struct net_bridge_port_group *src_pg;
323
324 memset(&sg_key, 0, sizeof(sg_key));
325 sg_key.port = pg->key.port;
326 sg_key.addr = *sg_ip;
327 src_pg = br_sg_port_find(br, &sg_key);
328 if (!src_pg || !(src_pg->flags & MDB_PG_FLAGS_STAR_EXCL) ||
329 src_pg->rt_protocol != RTPROT_KERNEL)
330 return;
331
332 br_multicast_find_del_pg(br, src_pg);
333 }
334
335 /* When a port group transitions to (or is added as) EXCLUDE we need to add it
336 * to all other ports' S,G entries which are not blocked by the current group
337 * for proper replication, the assumption is that any S,G blocked entries
338 * are already added so the S,G,port lookup should skip them.
339 * When a port group transitions from EXCLUDE -> INCLUDE mode or is being
340 * deleted we need to remove it from all ports' S,G entries where it was
341 * automatically installed before (i.e. where it's MDB_PG_FLAGS_STAR_EXCL).
342 */
br_multicast_star_g_handle_mode(struct net_bridge_port_group * pg,u8 filter_mode)343 void br_multicast_star_g_handle_mode(struct net_bridge_port_group *pg,
344 u8 filter_mode)
345 {
346 struct net_bridge *br = pg->key.port->br;
347 struct net_bridge_port_group *pg_lst;
348 struct net_bridge_mcast_port *pmctx;
349 struct net_bridge_mdb_entry *mp;
350 struct br_ip sg_ip;
351
352 if (WARN_ON(!br_multicast_is_star_g(&pg->key.addr)))
353 return;
354
355 mp = br_mdb_ip_get(br, &pg->key.addr);
356 if (!mp)
357 return;
358 pmctx = br_multicast_pg_to_port_ctx(pg);
359 if (!pmctx)
360 return;
361
362 memset(&sg_ip, 0, sizeof(sg_ip));
363 sg_ip = pg->key.addr;
364
365 for (pg_lst = mlock_dereference(mp->ports, br);
366 pg_lst;
367 pg_lst = mlock_dereference(pg_lst->next, br)) {
368 struct net_bridge_group_src *src_ent;
369
370 if (pg_lst == pg)
371 continue;
372 hlist_for_each_entry(src_ent, &pg_lst->src_list, node) {
373 if (!(src_ent->flags & BR_SGRP_F_INSTALLED))
374 continue;
375 sg_ip.src = src_ent->addr.src;
376 switch (filter_mode) {
377 case MCAST_INCLUDE:
378 __fwd_del_star_excl(pg, &sg_ip);
379 break;
380 case MCAST_EXCLUDE:
381 __fwd_add_star_excl(pmctx, pg, &sg_ip);
382 break;
383 }
384 }
385 }
386 }
387
388 /* called when adding a new S,G with host_joined == false by default */
br_multicast_sg_host_state(struct net_bridge_mdb_entry * star_mp,struct net_bridge_port_group * sg)389 static void br_multicast_sg_host_state(struct net_bridge_mdb_entry *star_mp,
390 struct net_bridge_port_group *sg)
391 {
392 struct net_bridge_mdb_entry *sg_mp;
393
394 if (WARN_ON(!br_multicast_is_star_g(&star_mp->addr)))
395 return;
396 if (!star_mp->host_joined)
397 return;
398
399 sg_mp = br_mdb_ip_get(star_mp->br, &sg->key.addr);
400 if (!sg_mp)
401 return;
402 sg_mp->host_joined = true;
403 }
404
405 /* set the host_joined state of all of *,G's S,G entries */
br_multicast_star_g_host_state(struct net_bridge_mdb_entry * star_mp)406 static void br_multicast_star_g_host_state(struct net_bridge_mdb_entry *star_mp)
407 {
408 struct net_bridge *br = star_mp->br;
409 struct net_bridge_mdb_entry *sg_mp;
410 struct net_bridge_port_group *pg;
411 struct br_ip sg_ip;
412
413 if (WARN_ON(!br_multicast_is_star_g(&star_mp->addr)))
414 return;
415
416 memset(&sg_ip, 0, sizeof(sg_ip));
417 sg_ip = star_mp->addr;
418 for (pg = mlock_dereference(star_mp->ports, br);
419 pg;
420 pg = mlock_dereference(pg->next, br)) {
421 struct net_bridge_group_src *src_ent;
422
423 hlist_for_each_entry(src_ent, &pg->src_list, node) {
424 if (!(src_ent->flags & BR_SGRP_F_INSTALLED))
425 continue;
426 sg_ip.src = src_ent->addr.src;
427 sg_mp = br_mdb_ip_get(br, &sg_ip);
428 if (!sg_mp)
429 continue;
430 sg_mp->host_joined = star_mp->host_joined;
431 }
432 }
433 }
434
br_multicast_sg_del_exclude_ports(struct net_bridge_mdb_entry * sgmp)435 static void br_multicast_sg_del_exclude_ports(struct net_bridge_mdb_entry *sgmp)
436 {
437 struct net_bridge_port_group __rcu **pp;
438 struct net_bridge_port_group *p;
439
440 /* *,G exclude ports are only added to S,G entries */
441 if (WARN_ON(br_multicast_is_star_g(&sgmp->addr)))
442 return;
443
444 /* we need the STAR_EXCLUDE ports if there are non-STAR_EXCLUDE ports
445 * we should ignore perm entries since they're managed by user-space
446 */
447 for (pp = &sgmp->ports;
448 (p = mlock_dereference(*pp, sgmp->br)) != NULL;
449 pp = &p->next)
450 if (!(p->flags & (MDB_PG_FLAGS_STAR_EXCL |
451 MDB_PG_FLAGS_PERMANENT)))
452 return;
453
454 /* currently the host can only have joined the *,G which means
455 * we treat it as EXCLUDE {}, so for an S,G it's considered a
456 * STAR_EXCLUDE entry and we can safely leave it
457 */
458 sgmp->host_joined = false;
459
460 for (pp = &sgmp->ports;
461 (p = mlock_dereference(*pp, sgmp->br)) != NULL;) {
462 if (!(p->flags & MDB_PG_FLAGS_PERMANENT))
463 br_multicast_del_pg(sgmp, p, pp);
464 else
465 pp = &p->next;
466 }
467 }
468
br_multicast_sg_add_exclude_ports(struct net_bridge_mdb_entry * star_mp,struct net_bridge_port_group * sg)469 void br_multicast_sg_add_exclude_ports(struct net_bridge_mdb_entry *star_mp,
470 struct net_bridge_port_group *sg)
471 {
472 struct net_bridge_port_group_sg_key sg_key;
473 struct net_bridge *br = star_mp->br;
474 struct net_bridge_mcast_port *pmctx;
475 struct net_bridge_port_group *pg;
476 struct net_bridge_mcast *brmctx;
477
478 if (WARN_ON(br_multicast_is_star_g(&sg->key.addr)))
479 return;
480 if (WARN_ON(!br_multicast_is_star_g(&star_mp->addr)))
481 return;
482
483 br_multicast_sg_host_state(star_mp, sg);
484 memset(&sg_key, 0, sizeof(sg_key));
485 sg_key.addr = sg->key.addr;
486 /* we need to add all exclude ports to the S,G */
487 for (pg = mlock_dereference(star_mp->ports, br);
488 pg;
489 pg = mlock_dereference(pg->next, br)) {
490 struct net_bridge_port_group *src_pg;
491
492 if (pg == sg || pg->filter_mode == MCAST_INCLUDE)
493 continue;
494
495 sg_key.port = pg->key.port;
496 if (br_sg_port_find(br, &sg_key))
497 continue;
498
499 pmctx = br_multicast_pg_to_port_ctx(pg);
500 if (!pmctx)
501 continue;
502 brmctx = br_multicast_port_ctx_get_global(pmctx);
503
504 src_pg = __br_multicast_add_group(brmctx, pmctx,
505 &sg->key.addr,
506 sg->eth_addr,
507 MCAST_INCLUDE, false, false);
508 if (IS_ERR_OR_NULL(src_pg) ||
509 src_pg->rt_protocol != RTPROT_KERNEL)
510 continue;
511 src_pg->flags |= MDB_PG_FLAGS_STAR_EXCL;
512 }
513 }
514
br_multicast_fwd_src_add(struct net_bridge_group_src * src)515 static void br_multicast_fwd_src_add(struct net_bridge_group_src *src)
516 {
517 struct net_bridge_mdb_entry *star_mp;
518 struct net_bridge_mcast_port *pmctx;
519 struct net_bridge_port_group *sg;
520 struct net_bridge_mcast *brmctx;
521 struct br_ip sg_ip;
522
523 if (src->flags & BR_SGRP_F_INSTALLED)
524 return;
525
526 memset(&sg_ip, 0, sizeof(sg_ip));
527 pmctx = br_multicast_pg_to_port_ctx(src->pg);
528 if (!pmctx)
529 return;
530 brmctx = br_multicast_port_ctx_get_global(pmctx);
531 sg_ip = src->pg->key.addr;
532 sg_ip.src = src->addr.src;
533
534 sg = __br_multicast_add_group(brmctx, pmctx, &sg_ip,
535 src->pg->eth_addr, MCAST_INCLUDE, false,
536 !timer_pending(&src->timer));
537 if (IS_ERR_OR_NULL(sg))
538 return;
539 src->flags |= BR_SGRP_F_INSTALLED;
540 sg->flags &= ~MDB_PG_FLAGS_STAR_EXCL;
541
542 /* if it was added by user-space as perm we can skip next steps */
543 if (sg->rt_protocol != RTPROT_KERNEL &&
544 (sg->flags & MDB_PG_FLAGS_PERMANENT))
545 return;
546
547 /* the kernel is now responsible for removing this S,G */
548 del_timer(&sg->timer);
549 star_mp = br_mdb_ip_get(src->br, &src->pg->key.addr);
550 if (!star_mp)
551 return;
552
553 br_multicast_sg_add_exclude_ports(star_mp, sg);
554 }
555
br_multicast_fwd_src_remove(struct net_bridge_group_src * src,bool fastleave)556 static void br_multicast_fwd_src_remove(struct net_bridge_group_src *src,
557 bool fastleave)
558 {
559 struct net_bridge_port_group *p, *pg = src->pg;
560 struct net_bridge_port_group __rcu **pp;
561 struct net_bridge_mdb_entry *mp;
562 struct br_ip sg_ip;
563
564 memset(&sg_ip, 0, sizeof(sg_ip));
565 sg_ip = pg->key.addr;
566 sg_ip.src = src->addr.src;
567
568 mp = br_mdb_ip_get(src->br, &sg_ip);
569 if (!mp)
570 return;
571
572 for (pp = &mp->ports;
573 (p = mlock_dereference(*pp, src->br)) != NULL;
574 pp = &p->next) {
575 if (!br_port_group_equal(p, pg->key.port, pg->eth_addr))
576 continue;
577
578 if (p->rt_protocol != RTPROT_KERNEL &&
579 (p->flags & MDB_PG_FLAGS_PERMANENT) &&
580 !(src->flags & BR_SGRP_F_USER_ADDED))
581 break;
582
583 if (fastleave)
584 p->flags |= MDB_PG_FLAGS_FAST_LEAVE;
585 br_multicast_del_pg(mp, p, pp);
586 break;
587 }
588 src->flags &= ~BR_SGRP_F_INSTALLED;
589 }
590
591 /* install S,G and based on src's timer enable or disable forwarding */
br_multicast_fwd_src_handle(struct net_bridge_group_src * src)592 static void br_multicast_fwd_src_handle(struct net_bridge_group_src *src)
593 {
594 struct net_bridge_port_group_sg_key sg_key;
595 struct net_bridge_port_group *sg;
596 u8 old_flags;
597
598 br_multicast_fwd_src_add(src);
599
600 memset(&sg_key, 0, sizeof(sg_key));
601 sg_key.addr = src->pg->key.addr;
602 sg_key.addr.src = src->addr.src;
603 sg_key.port = src->pg->key.port;
604
605 sg = br_sg_port_find(src->br, &sg_key);
606 if (!sg || (sg->flags & MDB_PG_FLAGS_PERMANENT))
607 return;
608
609 old_flags = sg->flags;
610 if (timer_pending(&src->timer))
611 sg->flags &= ~MDB_PG_FLAGS_BLOCKED;
612 else
613 sg->flags |= MDB_PG_FLAGS_BLOCKED;
614
615 if (old_flags != sg->flags) {
616 struct net_bridge_mdb_entry *sg_mp;
617
618 sg_mp = br_mdb_ip_get(src->br, &sg_key.addr);
619 if (!sg_mp)
620 return;
621 br_mdb_notify(src->br->dev, sg_mp, sg, RTM_NEWMDB);
622 }
623 }
624
br_multicast_destroy_mdb_entry(struct net_bridge_mcast_gc * gc)625 static void br_multicast_destroy_mdb_entry(struct net_bridge_mcast_gc *gc)
626 {
627 struct net_bridge_mdb_entry *mp;
628
629 mp = container_of(gc, struct net_bridge_mdb_entry, mcast_gc);
630 WARN_ON(!hlist_unhashed(&mp->mdb_node));
631 WARN_ON(mp->ports);
632
633 timer_shutdown_sync(&mp->timer);
634 kfree_rcu(mp, rcu);
635 }
636
br_multicast_del_mdb_entry(struct net_bridge_mdb_entry * mp)637 static void br_multicast_del_mdb_entry(struct net_bridge_mdb_entry *mp)
638 {
639 struct net_bridge *br = mp->br;
640
641 rhashtable_remove_fast(&br->mdb_hash_tbl, &mp->rhnode,
642 br_mdb_rht_params);
643 hlist_del_init_rcu(&mp->mdb_node);
644 hlist_add_head(&mp->mcast_gc.gc_node, &br->mcast_gc_list);
645 queue_work(system_long_wq, &br->mcast_gc_work);
646 }
647
br_multicast_group_expired(struct timer_list * t)648 static void br_multicast_group_expired(struct timer_list *t)
649 {
650 struct net_bridge_mdb_entry *mp = from_timer(mp, t, timer);
651 struct net_bridge *br = mp->br;
652
653 spin_lock(&br->multicast_lock);
654 if (hlist_unhashed(&mp->mdb_node) || !netif_running(br->dev) ||
655 timer_pending(&mp->timer))
656 goto out;
657
658 br_multicast_host_leave(mp, true);
659
660 if (mp->ports)
661 goto out;
662 br_multicast_del_mdb_entry(mp);
663 out:
664 spin_unlock(&br->multicast_lock);
665 }
666
br_multicast_destroy_group_src(struct net_bridge_mcast_gc * gc)667 static void br_multicast_destroy_group_src(struct net_bridge_mcast_gc *gc)
668 {
669 struct net_bridge_group_src *src;
670
671 src = container_of(gc, struct net_bridge_group_src, mcast_gc);
672 WARN_ON(!hlist_unhashed(&src->node));
673
674 timer_shutdown_sync(&src->timer);
675 kfree_rcu(src, rcu);
676 }
677
__br_multicast_del_group_src(struct net_bridge_group_src * src)678 void __br_multicast_del_group_src(struct net_bridge_group_src *src)
679 {
680 struct net_bridge *br = src->pg->key.port->br;
681
682 hlist_del_init_rcu(&src->node);
683 src->pg->src_ents--;
684 hlist_add_head(&src->mcast_gc.gc_node, &br->mcast_gc_list);
685 queue_work(system_long_wq, &br->mcast_gc_work);
686 }
687
br_multicast_del_group_src(struct net_bridge_group_src * src,bool fastleave)688 void br_multicast_del_group_src(struct net_bridge_group_src *src,
689 bool fastleave)
690 {
691 br_multicast_fwd_src_remove(src, fastleave);
692 __br_multicast_del_group_src(src);
693 }
694
695 static int
br_multicast_port_ngroups_inc_one(struct net_bridge_mcast_port * pmctx,struct netlink_ext_ack * extack,const char * what)696 br_multicast_port_ngroups_inc_one(struct net_bridge_mcast_port *pmctx,
697 struct netlink_ext_ack *extack,
698 const char *what)
699 {
700 u32 max = READ_ONCE(pmctx->mdb_max_entries);
701 u32 n = READ_ONCE(pmctx->mdb_n_entries);
702
703 if (max && n >= max) {
704 NL_SET_ERR_MSG_FMT_MOD(extack, "%s is already in %u groups, and mcast_max_groups=%u",
705 what, n, max);
706 return -E2BIG;
707 }
708
709 WRITE_ONCE(pmctx->mdb_n_entries, n + 1);
710 return 0;
711 }
712
br_multicast_port_ngroups_dec_one(struct net_bridge_mcast_port * pmctx)713 static void br_multicast_port_ngroups_dec_one(struct net_bridge_mcast_port *pmctx)
714 {
715 u32 n = READ_ONCE(pmctx->mdb_n_entries);
716
717 WARN_ON_ONCE(n == 0);
718 WRITE_ONCE(pmctx->mdb_n_entries, n - 1);
719 }
720
br_multicast_port_ngroups_inc(struct net_bridge_port * port,const struct br_ip * group,struct netlink_ext_ack * extack)721 static int br_multicast_port_ngroups_inc(struct net_bridge_port *port,
722 const struct br_ip *group,
723 struct netlink_ext_ack *extack)
724 {
725 struct net_bridge_mcast_port *pmctx;
726 int err;
727
728 lockdep_assert_held_once(&port->br->multicast_lock);
729
730 /* Always count on the port context. */
731 err = br_multicast_port_ngroups_inc_one(&port->multicast_ctx, extack,
732 "Port");
733 if (err) {
734 trace_br_mdb_full(port->dev, group);
735 return err;
736 }
737
738 /* Only count on the VLAN context if VID is given, and if snooping on
739 * that VLAN is enabled.
740 */
741 if (!group->vid)
742 return 0;
743
744 pmctx = br_multicast_port_vid_to_port_ctx(port, group->vid);
745 if (!pmctx)
746 return 0;
747
748 err = br_multicast_port_ngroups_inc_one(pmctx, extack, "Port-VLAN");
749 if (err) {
750 trace_br_mdb_full(port->dev, group);
751 goto dec_one_out;
752 }
753
754 return 0;
755
756 dec_one_out:
757 br_multicast_port_ngroups_dec_one(&port->multicast_ctx);
758 return err;
759 }
760
br_multicast_port_ngroups_dec(struct net_bridge_port * port,u16 vid)761 static void br_multicast_port_ngroups_dec(struct net_bridge_port *port, u16 vid)
762 {
763 struct net_bridge_mcast_port *pmctx;
764
765 lockdep_assert_held_once(&port->br->multicast_lock);
766
767 if (vid) {
768 pmctx = br_multicast_port_vid_to_port_ctx(port, vid);
769 if (pmctx)
770 br_multicast_port_ngroups_dec_one(pmctx);
771 }
772 br_multicast_port_ngroups_dec_one(&port->multicast_ctx);
773 }
774
br_multicast_ngroups_get(const struct net_bridge_mcast_port * pmctx)775 u32 br_multicast_ngroups_get(const struct net_bridge_mcast_port *pmctx)
776 {
777 return READ_ONCE(pmctx->mdb_n_entries);
778 }
779
br_multicast_ngroups_set_max(struct net_bridge_mcast_port * pmctx,u32 max)780 void br_multicast_ngroups_set_max(struct net_bridge_mcast_port *pmctx, u32 max)
781 {
782 WRITE_ONCE(pmctx->mdb_max_entries, max);
783 }
784
br_multicast_ngroups_get_max(const struct net_bridge_mcast_port * pmctx)785 u32 br_multicast_ngroups_get_max(const struct net_bridge_mcast_port *pmctx)
786 {
787 return READ_ONCE(pmctx->mdb_max_entries);
788 }
789
br_multicast_destroy_port_group(struct net_bridge_mcast_gc * gc)790 static void br_multicast_destroy_port_group(struct net_bridge_mcast_gc *gc)
791 {
792 struct net_bridge_port_group *pg;
793
794 pg = container_of(gc, struct net_bridge_port_group, mcast_gc);
795 WARN_ON(!hlist_unhashed(&pg->mglist));
796 WARN_ON(!hlist_empty(&pg->src_list));
797
798 timer_shutdown_sync(&pg->rexmit_timer);
799 timer_shutdown_sync(&pg->timer);
800 kfree_rcu(pg, rcu);
801 }
802
br_multicast_del_pg(struct net_bridge_mdb_entry * mp,struct net_bridge_port_group * pg,struct net_bridge_port_group __rcu ** pp)803 void br_multicast_del_pg(struct net_bridge_mdb_entry *mp,
804 struct net_bridge_port_group *pg,
805 struct net_bridge_port_group __rcu **pp)
806 {
807 struct net_bridge *br = pg->key.port->br;
808 struct net_bridge_group_src *ent;
809 struct hlist_node *tmp;
810
811 rcu_assign_pointer(*pp, pg->next);
812 hlist_del_init(&pg->mglist);
813 br_multicast_eht_clean_sets(pg);
814 hlist_for_each_entry_safe(ent, tmp, &pg->src_list, node)
815 br_multicast_del_group_src(ent, false);
816 br_mdb_notify(br->dev, mp, pg, RTM_DELMDB);
817 if (!br_multicast_is_star_g(&mp->addr)) {
818 rhashtable_remove_fast(&br->sg_port_tbl, &pg->rhnode,
819 br_sg_port_rht_params);
820 br_multicast_sg_del_exclude_ports(mp);
821 } else {
822 br_multicast_star_g_handle_mode(pg, MCAST_INCLUDE);
823 }
824 br_multicast_port_ngroups_dec(pg->key.port, pg->key.addr.vid);
825 hlist_add_head(&pg->mcast_gc.gc_node, &br->mcast_gc_list);
826 queue_work(system_long_wq, &br->mcast_gc_work);
827
828 if (!mp->ports && !mp->host_joined && netif_running(br->dev))
829 mod_timer(&mp->timer, jiffies);
830 }
831
br_multicast_find_del_pg(struct net_bridge * br,struct net_bridge_port_group * pg)832 static void br_multicast_find_del_pg(struct net_bridge *br,
833 struct net_bridge_port_group *pg)
834 {
835 struct net_bridge_port_group __rcu **pp;
836 struct net_bridge_mdb_entry *mp;
837 struct net_bridge_port_group *p;
838
839 mp = br_mdb_ip_get(br, &pg->key.addr);
840 if (WARN_ON(!mp))
841 return;
842
843 for (pp = &mp->ports;
844 (p = mlock_dereference(*pp, br)) != NULL;
845 pp = &p->next) {
846 if (p != pg)
847 continue;
848
849 br_multicast_del_pg(mp, pg, pp);
850 return;
851 }
852
853 WARN_ON(1);
854 }
855
br_multicast_port_group_expired(struct timer_list * t)856 static void br_multicast_port_group_expired(struct timer_list *t)
857 {
858 struct net_bridge_port_group *pg = from_timer(pg, t, timer);
859 struct net_bridge_group_src *src_ent;
860 struct net_bridge *br = pg->key.port->br;
861 struct hlist_node *tmp;
862 bool changed;
863
864 spin_lock(&br->multicast_lock);
865 if (!netif_running(br->dev) || timer_pending(&pg->timer) ||
866 hlist_unhashed(&pg->mglist) || pg->flags & MDB_PG_FLAGS_PERMANENT)
867 goto out;
868
869 changed = !!(pg->filter_mode == MCAST_EXCLUDE);
870 pg->filter_mode = MCAST_INCLUDE;
871 hlist_for_each_entry_safe(src_ent, tmp, &pg->src_list, node) {
872 if (!timer_pending(&src_ent->timer)) {
873 br_multicast_del_group_src(src_ent, false);
874 changed = true;
875 }
876 }
877
878 if (hlist_empty(&pg->src_list)) {
879 br_multicast_find_del_pg(br, pg);
880 } else if (changed) {
881 struct net_bridge_mdb_entry *mp = br_mdb_ip_get(br, &pg->key.addr);
882
883 if (changed && br_multicast_is_star_g(&pg->key.addr))
884 br_multicast_star_g_handle_mode(pg, MCAST_INCLUDE);
885
886 if (WARN_ON(!mp))
887 goto out;
888 br_mdb_notify(br->dev, mp, pg, RTM_NEWMDB);
889 }
890 out:
891 spin_unlock(&br->multicast_lock);
892 }
893
br_multicast_gc(struct hlist_head * head)894 static void br_multicast_gc(struct hlist_head *head)
895 {
896 struct net_bridge_mcast_gc *gcent;
897 struct hlist_node *tmp;
898
899 hlist_for_each_entry_safe(gcent, tmp, head, gc_node) {
900 hlist_del_init(&gcent->gc_node);
901 gcent->destroy(gcent);
902 }
903 }
904
__br_multicast_query_handle_vlan(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb)905 static void __br_multicast_query_handle_vlan(struct net_bridge_mcast *brmctx,
906 struct net_bridge_mcast_port *pmctx,
907 struct sk_buff *skb)
908 {
909 struct net_bridge_vlan *vlan = NULL;
910
911 if (pmctx && br_multicast_port_ctx_is_vlan(pmctx))
912 vlan = pmctx->vlan;
913 else if (br_multicast_ctx_is_vlan(brmctx))
914 vlan = brmctx->vlan;
915
916 if (vlan && !(vlan->flags & BRIDGE_VLAN_INFO_UNTAGGED)) {
917 u16 vlan_proto;
918
919 if (br_vlan_get_proto(brmctx->br->dev, &vlan_proto) != 0)
920 return;
921 __vlan_hwaccel_put_tag(skb, htons(vlan_proto), vlan->vid);
922 }
923 }
924
br_ip4_multicast_alloc_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,__be32 ip_dst,__be32 group,bool with_srcs,bool over_lmqt,u8 sflag,u8 * igmp_type,bool * need_rexmit)925 static struct sk_buff *br_ip4_multicast_alloc_query(struct net_bridge_mcast *brmctx,
926 struct net_bridge_mcast_port *pmctx,
927 struct net_bridge_port_group *pg,
928 __be32 ip_dst, __be32 group,
929 bool with_srcs, bool over_lmqt,
930 u8 sflag, u8 *igmp_type,
931 bool *need_rexmit)
932 {
933 struct net_bridge_port *p = pg ? pg->key.port : NULL;
934 struct net_bridge_group_src *ent;
935 size_t pkt_size, igmp_hdr_size;
936 unsigned long now = jiffies;
937 struct igmpv3_query *ihv3;
938 void *csum_start = NULL;
939 __sum16 *csum = NULL;
940 struct sk_buff *skb;
941 struct igmphdr *ih;
942 struct ethhdr *eth;
943 unsigned long lmqt;
944 struct iphdr *iph;
945 u16 lmqt_srcs = 0;
946
947 igmp_hdr_size = sizeof(*ih);
948 if (brmctx->multicast_igmp_version == 3) {
949 igmp_hdr_size = sizeof(*ihv3);
950 if (pg && with_srcs) {
951 lmqt = now + (brmctx->multicast_last_member_interval *
952 brmctx->multicast_last_member_count);
953 hlist_for_each_entry(ent, &pg->src_list, node) {
954 if (over_lmqt == time_after(ent->timer.expires,
955 lmqt) &&
956 ent->src_query_rexmit_cnt > 0)
957 lmqt_srcs++;
958 }
959
960 if (!lmqt_srcs)
961 return NULL;
962 igmp_hdr_size += lmqt_srcs * sizeof(__be32);
963 }
964 }
965
966 pkt_size = sizeof(*eth) + sizeof(*iph) + 4 + igmp_hdr_size;
967 if ((p && pkt_size > p->dev->mtu) ||
968 pkt_size > brmctx->br->dev->mtu)
969 return NULL;
970
971 skb = netdev_alloc_skb_ip_align(brmctx->br->dev, pkt_size);
972 if (!skb)
973 goto out;
974
975 __br_multicast_query_handle_vlan(brmctx, pmctx, skb);
976 skb->protocol = htons(ETH_P_IP);
977
978 skb_reset_mac_header(skb);
979 eth = eth_hdr(skb);
980
981 ether_addr_copy(eth->h_source, brmctx->br->dev->dev_addr);
982 ip_eth_mc_map(ip_dst, eth->h_dest);
983 eth->h_proto = htons(ETH_P_IP);
984 skb_put(skb, sizeof(*eth));
985
986 skb_set_network_header(skb, skb->len);
987 iph = ip_hdr(skb);
988 iph->tot_len = htons(pkt_size - sizeof(*eth));
989
990 iph->version = 4;
991 iph->ihl = 6;
992 iph->tos = 0xc0;
993 iph->id = 0;
994 iph->frag_off = htons(IP_DF);
995 iph->ttl = 1;
996 iph->protocol = IPPROTO_IGMP;
997 iph->saddr = br_opt_get(brmctx->br, BROPT_MULTICAST_QUERY_USE_IFADDR) ?
998 inet_select_addr(brmctx->br->dev, 0, RT_SCOPE_LINK) : 0;
999 iph->daddr = ip_dst;
1000 ((u8 *)&iph[1])[0] = IPOPT_RA;
1001 ((u8 *)&iph[1])[1] = 4;
1002 ((u8 *)&iph[1])[2] = 0;
1003 ((u8 *)&iph[1])[3] = 0;
1004 ip_send_check(iph);
1005 skb_put(skb, 24);
1006
1007 skb_set_transport_header(skb, skb->len);
1008 *igmp_type = IGMP_HOST_MEMBERSHIP_QUERY;
1009
1010 switch (brmctx->multicast_igmp_version) {
1011 case 2:
1012 ih = igmp_hdr(skb);
1013 ih->type = IGMP_HOST_MEMBERSHIP_QUERY;
1014 ih->code = (group ? brmctx->multicast_last_member_interval :
1015 brmctx->multicast_query_response_interval) /
1016 (HZ / IGMP_TIMER_SCALE);
1017 ih->group = group;
1018 ih->csum = 0;
1019 csum = &ih->csum;
1020 csum_start = (void *)ih;
1021 break;
1022 case 3:
1023 ihv3 = igmpv3_query_hdr(skb);
1024 ihv3->type = IGMP_HOST_MEMBERSHIP_QUERY;
1025 ihv3->code = (group ? brmctx->multicast_last_member_interval :
1026 brmctx->multicast_query_response_interval) /
1027 (HZ / IGMP_TIMER_SCALE);
1028 ihv3->group = group;
1029 ihv3->qqic = brmctx->multicast_query_interval / HZ;
1030 ihv3->nsrcs = htons(lmqt_srcs);
1031 ihv3->resv = 0;
1032 ihv3->suppress = sflag;
1033 ihv3->qrv = 2;
1034 ihv3->csum = 0;
1035 csum = &ihv3->csum;
1036 csum_start = (void *)ihv3;
1037 if (!pg || !with_srcs)
1038 break;
1039
1040 lmqt_srcs = 0;
1041 hlist_for_each_entry(ent, &pg->src_list, node) {
1042 if (over_lmqt == time_after(ent->timer.expires,
1043 lmqt) &&
1044 ent->src_query_rexmit_cnt > 0) {
1045 ihv3->srcs[lmqt_srcs++] = ent->addr.src.ip4;
1046 ent->src_query_rexmit_cnt--;
1047 if (need_rexmit && ent->src_query_rexmit_cnt)
1048 *need_rexmit = true;
1049 }
1050 }
1051 if (WARN_ON(lmqt_srcs != ntohs(ihv3->nsrcs))) {
1052 kfree_skb(skb);
1053 return NULL;
1054 }
1055 break;
1056 }
1057
1058 if (WARN_ON(!csum || !csum_start)) {
1059 kfree_skb(skb);
1060 return NULL;
1061 }
1062
1063 *csum = ip_compute_csum(csum_start, igmp_hdr_size);
1064 skb_put(skb, igmp_hdr_size);
1065 __skb_pull(skb, sizeof(*eth));
1066
1067 out:
1068 return skb;
1069 }
1070
1071 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_alloc_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,const struct in6_addr * ip6_dst,const struct in6_addr * group,bool with_srcs,bool over_llqt,u8 sflag,u8 * igmp_type,bool * need_rexmit)1072 static struct sk_buff *br_ip6_multicast_alloc_query(struct net_bridge_mcast *brmctx,
1073 struct net_bridge_mcast_port *pmctx,
1074 struct net_bridge_port_group *pg,
1075 const struct in6_addr *ip6_dst,
1076 const struct in6_addr *group,
1077 bool with_srcs, bool over_llqt,
1078 u8 sflag, u8 *igmp_type,
1079 bool *need_rexmit)
1080 {
1081 struct net_bridge_port *p = pg ? pg->key.port : NULL;
1082 struct net_bridge_group_src *ent;
1083 size_t pkt_size, mld_hdr_size;
1084 unsigned long now = jiffies;
1085 struct mld2_query *mld2q;
1086 void *csum_start = NULL;
1087 unsigned long interval;
1088 __sum16 *csum = NULL;
1089 struct ipv6hdr *ip6h;
1090 struct mld_msg *mldq;
1091 struct sk_buff *skb;
1092 unsigned long llqt;
1093 struct ethhdr *eth;
1094 u16 llqt_srcs = 0;
1095 u8 *hopopt;
1096
1097 mld_hdr_size = sizeof(*mldq);
1098 if (brmctx->multicast_mld_version == 2) {
1099 mld_hdr_size = sizeof(*mld2q);
1100 if (pg && with_srcs) {
1101 llqt = now + (brmctx->multicast_last_member_interval *
1102 brmctx->multicast_last_member_count);
1103 hlist_for_each_entry(ent, &pg->src_list, node) {
1104 if (over_llqt == time_after(ent->timer.expires,
1105 llqt) &&
1106 ent->src_query_rexmit_cnt > 0)
1107 llqt_srcs++;
1108 }
1109
1110 if (!llqt_srcs)
1111 return NULL;
1112 mld_hdr_size += llqt_srcs * sizeof(struct in6_addr);
1113 }
1114 }
1115
1116 pkt_size = sizeof(*eth) + sizeof(*ip6h) + 8 + mld_hdr_size;
1117 if ((p && pkt_size > p->dev->mtu) ||
1118 pkt_size > brmctx->br->dev->mtu)
1119 return NULL;
1120
1121 skb = netdev_alloc_skb_ip_align(brmctx->br->dev, pkt_size);
1122 if (!skb)
1123 goto out;
1124
1125 __br_multicast_query_handle_vlan(brmctx, pmctx, skb);
1126 skb->protocol = htons(ETH_P_IPV6);
1127
1128 /* Ethernet header */
1129 skb_reset_mac_header(skb);
1130 eth = eth_hdr(skb);
1131
1132 ether_addr_copy(eth->h_source, brmctx->br->dev->dev_addr);
1133 eth->h_proto = htons(ETH_P_IPV6);
1134 skb_put(skb, sizeof(*eth));
1135
1136 /* IPv6 header + HbH option */
1137 skb_set_network_header(skb, skb->len);
1138 ip6h = ipv6_hdr(skb);
1139
1140 *(__force __be32 *)ip6h = htonl(0x60000000);
1141 ip6h->payload_len = htons(8 + mld_hdr_size);
1142 ip6h->nexthdr = IPPROTO_HOPOPTS;
1143 ip6h->hop_limit = 1;
1144 ip6h->daddr = *ip6_dst;
1145 if (ipv6_dev_get_saddr(dev_net(brmctx->br->dev), brmctx->br->dev,
1146 &ip6h->daddr, 0, &ip6h->saddr)) {
1147 kfree_skb(skb);
1148 br_opt_toggle(brmctx->br, BROPT_HAS_IPV6_ADDR, false);
1149 return NULL;
1150 }
1151
1152 br_opt_toggle(brmctx->br, BROPT_HAS_IPV6_ADDR, true);
1153 ipv6_eth_mc_map(&ip6h->daddr, eth->h_dest);
1154
1155 hopopt = (u8 *)(ip6h + 1);
1156 hopopt[0] = IPPROTO_ICMPV6; /* next hdr */
1157 hopopt[1] = 0; /* length of HbH */
1158 hopopt[2] = IPV6_TLV_ROUTERALERT; /* Router Alert */
1159 hopopt[3] = 2; /* Length of RA Option */
1160 hopopt[4] = 0; /* Type = 0x0000 (MLD) */
1161 hopopt[5] = 0;
1162 hopopt[6] = IPV6_TLV_PAD1; /* Pad1 */
1163 hopopt[7] = IPV6_TLV_PAD1; /* Pad1 */
1164
1165 skb_put(skb, sizeof(*ip6h) + 8);
1166
1167 /* ICMPv6 */
1168 skb_set_transport_header(skb, skb->len);
1169 interval = ipv6_addr_any(group) ?
1170 brmctx->multicast_query_response_interval :
1171 brmctx->multicast_last_member_interval;
1172 *igmp_type = ICMPV6_MGM_QUERY;
1173 switch (brmctx->multicast_mld_version) {
1174 case 1:
1175 mldq = (struct mld_msg *)icmp6_hdr(skb);
1176 mldq->mld_type = ICMPV6_MGM_QUERY;
1177 mldq->mld_code = 0;
1178 mldq->mld_cksum = 0;
1179 mldq->mld_maxdelay = htons((u16)jiffies_to_msecs(interval));
1180 mldq->mld_reserved = 0;
1181 mldq->mld_mca = *group;
1182 csum = &mldq->mld_cksum;
1183 csum_start = (void *)mldq;
1184 break;
1185 case 2:
1186 mld2q = (struct mld2_query *)icmp6_hdr(skb);
1187 mld2q->mld2q_mrc = htons((u16)jiffies_to_msecs(interval));
1188 mld2q->mld2q_type = ICMPV6_MGM_QUERY;
1189 mld2q->mld2q_code = 0;
1190 mld2q->mld2q_cksum = 0;
1191 mld2q->mld2q_resv1 = 0;
1192 mld2q->mld2q_resv2 = 0;
1193 mld2q->mld2q_suppress = sflag;
1194 mld2q->mld2q_qrv = 2;
1195 mld2q->mld2q_nsrcs = htons(llqt_srcs);
1196 mld2q->mld2q_qqic = brmctx->multicast_query_interval / HZ;
1197 mld2q->mld2q_mca = *group;
1198 csum = &mld2q->mld2q_cksum;
1199 csum_start = (void *)mld2q;
1200 if (!pg || !with_srcs)
1201 break;
1202
1203 llqt_srcs = 0;
1204 hlist_for_each_entry(ent, &pg->src_list, node) {
1205 if (over_llqt == time_after(ent->timer.expires,
1206 llqt) &&
1207 ent->src_query_rexmit_cnt > 0) {
1208 mld2q->mld2q_srcs[llqt_srcs++] = ent->addr.src.ip6;
1209 ent->src_query_rexmit_cnt--;
1210 if (need_rexmit && ent->src_query_rexmit_cnt)
1211 *need_rexmit = true;
1212 }
1213 }
1214 if (WARN_ON(llqt_srcs != ntohs(mld2q->mld2q_nsrcs))) {
1215 kfree_skb(skb);
1216 return NULL;
1217 }
1218 break;
1219 }
1220
1221 if (WARN_ON(!csum || !csum_start)) {
1222 kfree_skb(skb);
1223 return NULL;
1224 }
1225
1226 *csum = csum_ipv6_magic(&ip6h->saddr, &ip6h->daddr, mld_hdr_size,
1227 IPPROTO_ICMPV6,
1228 csum_partial(csum_start, mld_hdr_size, 0));
1229 skb_put(skb, mld_hdr_size);
1230 __skb_pull(skb, sizeof(*eth));
1231
1232 out:
1233 return skb;
1234 }
1235 #endif
1236
br_multicast_alloc_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,struct br_ip * ip_dst,struct br_ip * group,bool with_srcs,bool over_lmqt,u8 sflag,u8 * igmp_type,bool * need_rexmit)1237 static struct sk_buff *br_multicast_alloc_query(struct net_bridge_mcast *brmctx,
1238 struct net_bridge_mcast_port *pmctx,
1239 struct net_bridge_port_group *pg,
1240 struct br_ip *ip_dst,
1241 struct br_ip *group,
1242 bool with_srcs, bool over_lmqt,
1243 u8 sflag, u8 *igmp_type,
1244 bool *need_rexmit)
1245 {
1246 __be32 ip4_dst;
1247
1248 switch (group->proto) {
1249 case htons(ETH_P_IP):
1250 ip4_dst = ip_dst ? ip_dst->dst.ip4 : htonl(INADDR_ALLHOSTS_GROUP);
1251 return br_ip4_multicast_alloc_query(brmctx, pmctx, pg,
1252 ip4_dst, group->dst.ip4,
1253 with_srcs, over_lmqt,
1254 sflag, igmp_type,
1255 need_rexmit);
1256 #if IS_ENABLED(CONFIG_IPV6)
1257 case htons(ETH_P_IPV6): {
1258 struct in6_addr ip6_dst;
1259
1260 if (ip_dst)
1261 ip6_dst = ip_dst->dst.ip6;
1262 else
1263 ipv6_addr_set(&ip6_dst, htonl(0xff020000), 0, 0,
1264 htonl(1));
1265
1266 return br_ip6_multicast_alloc_query(brmctx, pmctx, pg,
1267 &ip6_dst, &group->dst.ip6,
1268 with_srcs, over_lmqt,
1269 sflag, igmp_type,
1270 need_rexmit);
1271 }
1272 #endif
1273 }
1274 return NULL;
1275 }
1276
br_multicast_new_group(struct net_bridge * br,struct br_ip * group)1277 struct net_bridge_mdb_entry *br_multicast_new_group(struct net_bridge *br,
1278 struct br_ip *group)
1279 {
1280 struct net_bridge_mdb_entry *mp;
1281 int err;
1282
1283 mp = br_mdb_ip_get(br, group);
1284 if (mp)
1285 return mp;
1286
1287 if (atomic_read(&br->mdb_hash_tbl.nelems) >= br->hash_max) {
1288 trace_br_mdb_full(br->dev, group);
1289 br_mc_disabled_update(br->dev, false, NULL);
1290 br_opt_toggle(br, BROPT_MULTICAST_ENABLED, false);
1291 return ERR_PTR(-E2BIG);
1292 }
1293
1294 mp = kzalloc(sizeof(*mp), GFP_ATOMIC);
1295 if (unlikely(!mp))
1296 return ERR_PTR(-ENOMEM);
1297
1298 mp->br = br;
1299 mp->addr = *group;
1300 mp->mcast_gc.destroy = br_multicast_destroy_mdb_entry;
1301 timer_setup(&mp->timer, br_multicast_group_expired, 0);
1302 err = rhashtable_lookup_insert_fast(&br->mdb_hash_tbl, &mp->rhnode,
1303 br_mdb_rht_params);
1304 if (err) {
1305 kfree(mp);
1306 mp = ERR_PTR(err);
1307 } else {
1308 hlist_add_head_rcu(&mp->mdb_node, &br->mdb_list);
1309 }
1310
1311 return mp;
1312 }
1313
br_multicast_group_src_expired(struct timer_list * t)1314 static void br_multicast_group_src_expired(struct timer_list *t)
1315 {
1316 struct net_bridge_group_src *src = from_timer(src, t, timer);
1317 struct net_bridge_port_group *pg;
1318 struct net_bridge *br = src->br;
1319
1320 spin_lock(&br->multicast_lock);
1321 if (hlist_unhashed(&src->node) || !netif_running(br->dev) ||
1322 timer_pending(&src->timer))
1323 goto out;
1324
1325 pg = src->pg;
1326 if (pg->filter_mode == MCAST_INCLUDE) {
1327 br_multicast_del_group_src(src, false);
1328 if (!hlist_empty(&pg->src_list))
1329 goto out;
1330 br_multicast_find_del_pg(br, pg);
1331 } else {
1332 br_multicast_fwd_src_handle(src);
1333 }
1334
1335 out:
1336 spin_unlock(&br->multicast_lock);
1337 }
1338
1339 struct net_bridge_group_src *
br_multicast_find_group_src(struct net_bridge_port_group * pg,struct br_ip * ip)1340 br_multicast_find_group_src(struct net_bridge_port_group *pg, struct br_ip *ip)
1341 {
1342 struct net_bridge_group_src *ent;
1343
1344 switch (ip->proto) {
1345 case htons(ETH_P_IP):
1346 hlist_for_each_entry(ent, &pg->src_list, node)
1347 if (ip->src.ip4 == ent->addr.src.ip4)
1348 return ent;
1349 break;
1350 #if IS_ENABLED(CONFIG_IPV6)
1351 case htons(ETH_P_IPV6):
1352 hlist_for_each_entry(ent, &pg->src_list, node)
1353 if (!ipv6_addr_cmp(&ent->addr.src.ip6, &ip->src.ip6))
1354 return ent;
1355 break;
1356 #endif
1357 }
1358
1359 return NULL;
1360 }
1361
1362 struct net_bridge_group_src *
br_multicast_new_group_src(struct net_bridge_port_group * pg,struct br_ip * src_ip)1363 br_multicast_new_group_src(struct net_bridge_port_group *pg, struct br_ip *src_ip)
1364 {
1365 struct net_bridge_group_src *grp_src;
1366
1367 if (unlikely(pg->src_ents >= PG_SRC_ENT_LIMIT))
1368 return NULL;
1369
1370 switch (src_ip->proto) {
1371 case htons(ETH_P_IP):
1372 if (ipv4_is_zeronet(src_ip->src.ip4) ||
1373 ipv4_is_multicast(src_ip->src.ip4))
1374 return NULL;
1375 break;
1376 #if IS_ENABLED(CONFIG_IPV6)
1377 case htons(ETH_P_IPV6):
1378 if (ipv6_addr_any(&src_ip->src.ip6) ||
1379 ipv6_addr_is_multicast(&src_ip->src.ip6))
1380 return NULL;
1381 break;
1382 #endif
1383 }
1384
1385 grp_src = kzalloc(sizeof(*grp_src), GFP_ATOMIC);
1386 if (unlikely(!grp_src))
1387 return NULL;
1388
1389 grp_src->pg = pg;
1390 grp_src->br = pg->key.port->br;
1391 grp_src->addr = *src_ip;
1392 grp_src->mcast_gc.destroy = br_multicast_destroy_group_src;
1393 timer_setup(&grp_src->timer, br_multicast_group_src_expired, 0);
1394
1395 hlist_add_head_rcu(&grp_src->node, &pg->src_list);
1396 pg->src_ents++;
1397
1398 return grp_src;
1399 }
1400
br_multicast_new_port_group(struct net_bridge_port * port,const struct br_ip * group,struct net_bridge_port_group __rcu * next,unsigned char flags,const unsigned char * src,u8 filter_mode,u8 rt_protocol,struct netlink_ext_ack * extack)1401 struct net_bridge_port_group *br_multicast_new_port_group(
1402 struct net_bridge_port *port,
1403 const struct br_ip *group,
1404 struct net_bridge_port_group __rcu *next,
1405 unsigned char flags,
1406 const unsigned char *src,
1407 u8 filter_mode,
1408 u8 rt_protocol,
1409 struct netlink_ext_ack *extack)
1410 {
1411 struct net_bridge_port_group *p;
1412 int err;
1413
1414 err = br_multicast_port_ngroups_inc(port, group, extack);
1415 if (err)
1416 return NULL;
1417
1418 p = kzalloc(sizeof(*p), GFP_ATOMIC);
1419 if (unlikely(!p)) {
1420 NL_SET_ERR_MSG_MOD(extack, "Couldn't allocate new port group");
1421 goto dec_out;
1422 }
1423
1424 p->key.addr = *group;
1425 p->key.port = port;
1426 p->flags = flags;
1427 p->filter_mode = filter_mode;
1428 p->rt_protocol = rt_protocol;
1429 p->eht_host_tree = RB_ROOT;
1430 p->eht_set_tree = RB_ROOT;
1431 p->mcast_gc.destroy = br_multicast_destroy_port_group;
1432 INIT_HLIST_HEAD(&p->src_list);
1433
1434 if (!br_multicast_is_star_g(group) &&
1435 rhashtable_lookup_insert_fast(&port->br->sg_port_tbl, &p->rhnode,
1436 br_sg_port_rht_params)) {
1437 NL_SET_ERR_MSG_MOD(extack, "Couldn't insert new port group");
1438 goto free_out;
1439 }
1440
1441 rcu_assign_pointer(p->next, next);
1442 timer_setup(&p->timer, br_multicast_port_group_expired, 0);
1443 timer_setup(&p->rexmit_timer, br_multicast_port_group_rexmit, 0);
1444 hlist_add_head(&p->mglist, &port->mglist);
1445
1446 if (src)
1447 memcpy(p->eth_addr, src, ETH_ALEN);
1448 else
1449 eth_broadcast_addr(p->eth_addr);
1450
1451 return p;
1452
1453 free_out:
1454 kfree(p);
1455 dec_out:
1456 br_multicast_port_ngroups_dec(port, group->vid);
1457 return NULL;
1458 }
1459
br_multicast_del_port_group(struct net_bridge_port_group * p)1460 void br_multicast_del_port_group(struct net_bridge_port_group *p)
1461 {
1462 struct net_bridge_port *port = p->key.port;
1463 __u16 vid = p->key.addr.vid;
1464
1465 hlist_del_init(&p->mglist);
1466 if (!br_multicast_is_star_g(&p->key.addr))
1467 rhashtable_remove_fast(&port->br->sg_port_tbl, &p->rhnode,
1468 br_sg_port_rht_params);
1469 kfree(p);
1470 br_multicast_port_ngroups_dec(port, vid);
1471 }
1472
br_multicast_host_join(const struct net_bridge_mcast * brmctx,struct net_bridge_mdb_entry * mp,bool notify)1473 void br_multicast_host_join(const struct net_bridge_mcast *brmctx,
1474 struct net_bridge_mdb_entry *mp, bool notify)
1475 {
1476 if (!mp->host_joined) {
1477 mp->host_joined = true;
1478 if (br_multicast_is_star_g(&mp->addr))
1479 br_multicast_star_g_host_state(mp);
1480 if (notify)
1481 br_mdb_notify(mp->br->dev, mp, NULL, RTM_NEWMDB);
1482 }
1483
1484 if (br_group_is_l2(&mp->addr))
1485 return;
1486
1487 mod_timer(&mp->timer, jiffies + brmctx->multicast_membership_interval);
1488 }
1489
br_multicast_host_leave(struct net_bridge_mdb_entry * mp,bool notify)1490 void br_multicast_host_leave(struct net_bridge_mdb_entry *mp, bool notify)
1491 {
1492 if (!mp->host_joined)
1493 return;
1494
1495 mp->host_joined = false;
1496 if (br_multicast_is_star_g(&mp->addr))
1497 br_multicast_star_g_host_state(mp);
1498 if (notify)
1499 br_mdb_notify(mp->br->dev, mp, NULL, RTM_DELMDB);
1500 }
1501
1502 static struct net_bridge_port_group *
__br_multicast_add_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct br_ip * group,const unsigned char * src,u8 filter_mode,bool igmpv2_mldv1,bool blocked)1503 __br_multicast_add_group(struct net_bridge_mcast *brmctx,
1504 struct net_bridge_mcast_port *pmctx,
1505 struct br_ip *group,
1506 const unsigned char *src,
1507 u8 filter_mode,
1508 bool igmpv2_mldv1,
1509 bool blocked)
1510 {
1511 struct net_bridge_port_group __rcu **pp;
1512 struct net_bridge_port_group *p = NULL;
1513 struct net_bridge_mdb_entry *mp;
1514 unsigned long now = jiffies;
1515
1516 if (!br_multicast_ctx_should_use(brmctx, pmctx))
1517 goto out;
1518
1519 mp = br_multicast_new_group(brmctx->br, group);
1520 if (IS_ERR(mp))
1521 return ERR_CAST(mp);
1522
1523 if (!pmctx) {
1524 br_multicast_host_join(brmctx, mp, true);
1525 goto out;
1526 }
1527
1528 for (pp = &mp->ports;
1529 (p = mlock_dereference(*pp, brmctx->br)) != NULL;
1530 pp = &p->next) {
1531 if (br_port_group_equal(p, pmctx->port, src))
1532 goto found;
1533 if ((unsigned long)p->key.port < (unsigned long)pmctx->port)
1534 break;
1535 }
1536
1537 p = br_multicast_new_port_group(pmctx->port, group, *pp, 0, src,
1538 filter_mode, RTPROT_KERNEL, NULL);
1539 if (unlikely(!p)) {
1540 p = ERR_PTR(-ENOMEM);
1541 goto out;
1542 }
1543 rcu_assign_pointer(*pp, p);
1544 if (blocked)
1545 p->flags |= MDB_PG_FLAGS_BLOCKED;
1546 br_mdb_notify(brmctx->br->dev, mp, p, RTM_NEWMDB);
1547
1548 found:
1549 if (igmpv2_mldv1)
1550 mod_timer(&p->timer,
1551 now + brmctx->multicast_membership_interval);
1552
1553 out:
1554 return p;
1555 }
1556
br_multicast_add_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct br_ip * group,const unsigned char * src,u8 filter_mode,bool igmpv2_mldv1)1557 static int br_multicast_add_group(struct net_bridge_mcast *brmctx,
1558 struct net_bridge_mcast_port *pmctx,
1559 struct br_ip *group,
1560 const unsigned char *src,
1561 u8 filter_mode,
1562 bool igmpv2_mldv1)
1563 {
1564 struct net_bridge_port_group *pg;
1565 int err;
1566
1567 spin_lock(&brmctx->br->multicast_lock);
1568 pg = __br_multicast_add_group(brmctx, pmctx, group, src, filter_mode,
1569 igmpv2_mldv1, false);
1570 /* NULL is considered valid for host joined groups */
1571 err = PTR_ERR_OR_ZERO(pg);
1572 spin_unlock(&brmctx->br->multicast_lock);
1573
1574 return err;
1575 }
1576
br_ip4_multicast_add_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,__be32 group,__u16 vid,const unsigned char * src,bool igmpv2)1577 static int br_ip4_multicast_add_group(struct net_bridge_mcast *brmctx,
1578 struct net_bridge_mcast_port *pmctx,
1579 __be32 group,
1580 __u16 vid,
1581 const unsigned char *src,
1582 bool igmpv2)
1583 {
1584 struct br_ip br_group;
1585 u8 filter_mode;
1586
1587 if (ipv4_is_local_multicast(group))
1588 return 0;
1589
1590 memset(&br_group, 0, sizeof(br_group));
1591 br_group.dst.ip4 = group;
1592 br_group.proto = htons(ETH_P_IP);
1593 br_group.vid = vid;
1594 filter_mode = igmpv2 ? MCAST_EXCLUDE : MCAST_INCLUDE;
1595
1596 return br_multicast_add_group(brmctx, pmctx, &br_group, src,
1597 filter_mode, igmpv2);
1598 }
1599
1600 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_add_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,const struct in6_addr * group,__u16 vid,const unsigned char * src,bool mldv1)1601 static int br_ip6_multicast_add_group(struct net_bridge_mcast *brmctx,
1602 struct net_bridge_mcast_port *pmctx,
1603 const struct in6_addr *group,
1604 __u16 vid,
1605 const unsigned char *src,
1606 bool mldv1)
1607 {
1608 struct br_ip br_group;
1609 u8 filter_mode;
1610
1611 if (ipv6_addr_is_ll_all_nodes(group))
1612 return 0;
1613
1614 memset(&br_group, 0, sizeof(br_group));
1615 br_group.dst.ip6 = *group;
1616 br_group.proto = htons(ETH_P_IPV6);
1617 br_group.vid = vid;
1618 filter_mode = mldv1 ? MCAST_EXCLUDE : MCAST_INCLUDE;
1619
1620 return br_multicast_add_group(brmctx, pmctx, &br_group, src,
1621 filter_mode, mldv1);
1622 }
1623 #endif
1624
br_multicast_rport_del(struct hlist_node * rlist)1625 static bool br_multicast_rport_del(struct hlist_node *rlist)
1626 {
1627 if (hlist_unhashed(rlist))
1628 return false;
1629
1630 hlist_del_init_rcu(rlist);
1631 return true;
1632 }
1633
br_ip4_multicast_rport_del(struct net_bridge_mcast_port * pmctx)1634 static bool br_ip4_multicast_rport_del(struct net_bridge_mcast_port *pmctx)
1635 {
1636 return br_multicast_rport_del(&pmctx->ip4_rlist);
1637 }
1638
br_ip6_multicast_rport_del(struct net_bridge_mcast_port * pmctx)1639 static bool br_ip6_multicast_rport_del(struct net_bridge_mcast_port *pmctx)
1640 {
1641 #if IS_ENABLED(CONFIG_IPV6)
1642 return br_multicast_rport_del(&pmctx->ip6_rlist);
1643 #else
1644 return false;
1645 #endif
1646 }
1647
br_multicast_router_expired(struct net_bridge_mcast_port * pmctx,struct timer_list * t,struct hlist_node * rlist)1648 static void br_multicast_router_expired(struct net_bridge_mcast_port *pmctx,
1649 struct timer_list *t,
1650 struct hlist_node *rlist)
1651 {
1652 struct net_bridge *br = pmctx->port->br;
1653 bool del;
1654
1655 spin_lock(&br->multicast_lock);
1656 if (pmctx->multicast_router == MDB_RTR_TYPE_DISABLED ||
1657 pmctx->multicast_router == MDB_RTR_TYPE_PERM ||
1658 timer_pending(t))
1659 goto out;
1660
1661 del = br_multicast_rport_del(rlist);
1662 br_multicast_rport_del_notify(pmctx, del);
1663 out:
1664 spin_unlock(&br->multicast_lock);
1665 }
1666
br_ip4_multicast_router_expired(struct timer_list * t)1667 static void br_ip4_multicast_router_expired(struct timer_list *t)
1668 {
1669 struct net_bridge_mcast_port *pmctx = from_timer(pmctx, t,
1670 ip4_mc_router_timer);
1671
1672 br_multicast_router_expired(pmctx, t, &pmctx->ip4_rlist);
1673 }
1674
1675 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_router_expired(struct timer_list * t)1676 static void br_ip6_multicast_router_expired(struct timer_list *t)
1677 {
1678 struct net_bridge_mcast_port *pmctx = from_timer(pmctx, t,
1679 ip6_mc_router_timer);
1680
1681 br_multicast_router_expired(pmctx, t, &pmctx->ip6_rlist);
1682 }
1683 #endif
1684
br_mc_router_state_change(struct net_bridge * p,bool is_mc_router)1685 static void br_mc_router_state_change(struct net_bridge *p,
1686 bool is_mc_router)
1687 {
1688 struct switchdev_attr attr = {
1689 .orig_dev = p->dev,
1690 .id = SWITCHDEV_ATTR_ID_BRIDGE_MROUTER,
1691 .flags = SWITCHDEV_F_DEFER,
1692 .u.mrouter = is_mc_router,
1693 };
1694
1695 switchdev_port_attr_set(p->dev, &attr, NULL);
1696 }
1697
br_multicast_local_router_expired(struct net_bridge_mcast * brmctx,struct timer_list * timer)1698 static void br_multicast_local_router_expired(struct net_bridge_mcast *brmctx,
1699 struct timer_list *timer)
1700 {
1701 spin_lock(&brmctx->br->multicast_lock);
1702 if (brmctx->multicast_router == MDB_RTR_TYPE_DISABLED ||
1703 brmctx->multicast_router == MDB_RTR_TYPE_PERM ||
1704 br_ip4_multicast_is_router(brmctx) ||
1705 br_ip6_multicast_is_router(brmctx))
1706 goto out;
1707
1708 br_mc_router_state_change(brmctx->br, false);
1709 out:
1710 spin_unlock(&brmctx->br->multicast_lock);
1711 }
1712
br_ip4_multicast_local_router_expired(struct timer_list * t)1713 static void br_ip4_multicast_local_router_expired(struct timer_list *t)
1714 {
1715 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
1716 ip4_mc_router_timer);
1717
1718 br_multicast_local_router_expired(brmctx, t);
1719 }
1720
1721 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_local_router_expired(struct timer_list * t)1722 static void br_ip6_multicast_local_router_expired(struct timer_list *t)
1723 {
1724 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
1725 ip6_mc_router_timer);
1726
1727 br_multicast_local_router_expired(brmctx, t);
1728 }
1729 #endif
1730
br_multicast_querier_expired(struct net_bridge_mcast * brmctx,struct bridge_mcast_own_query * query)1731 static void br_multicast_querier_expired(struct net_bridge_mcast *brmctx,
1732 struct bridge_mcast_own_query *query)
1733 {
1734 spin_lock(&brmctx->br->multicast_lock);
1735 if (!netif_running(brmctx->br->dev) ||
1736 br_multicast_ctx_vlan_global_disabled(brmctx) ||
1737 !br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED))
1738 goto out;
1739
1740 br_multicast_start_querier(brmctx, query);
1741
1742 out:
1743 spin_unlock(&brmctx->br->multicast_lock);
1744 }
1745
br_ip4_multicast_querier_expired(struct timer_list * t)1746 static void br_ip4_multicast_querier_expired(struct timer_list *t)
1747 {
1748 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
1749 ip4_other_query.timer);
1750
1751 br_multicast_querier_expired(brmctx, &brmctx->ip4_own_query);
1752 }
1753
1754 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_querier_expired(struct timer_list * t)1755 static void br_ip6_multicast_querier_expired(struct timer_list *t)
1756 {
1757 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
1758 ip6_other_query.timer);
1759
1760 br_multicast_querier_expired(brmctx, &brmctx->ip6_own_query);
1761 }
1762 #endif
1763
br_multicast_query_delay_expired(struct timer_list * t)1764 static void br_multicast_query_delay_expired(struct timer_list *t)
1765 {
1766 }
1767
br_multicast_select_own_querier(struct net_bridge_mcast * brmctx,struct br_ip * ip,struct sk_buff * skb)1768 static void br_multicast_select_own_querier(struct net_bridge_mcast *brmctx,
1769 struct br_ip *ip,
1770 struct sk_buff *skb)
1771 {
1772 if (ip->proto == htons(ETH_P_IP))
1773 brmctx->ip4_querier.addr.src.ip4 = ip_hdr(skb)->saddr;
1774 #if IS_ENABLED(CONFIG_IPV6)
1775 else
1776 brmctx->ip6_querier.addr.src.ip6 = ipv6_hdr(skb)->saddr;
1777 #endif
1778 }
1779
__br_multicast_send_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,struct br_ip * ip_dst,struct br_ip * group,bool with_srcs,u8 sflag,bool * need_rexmit)1780 static void __br_multicast_send_query(struct net_bridge_mcast *brmctx,
1781 struct net_bridge_mcast_port *pmctx,
1782 struct net_bridge_port_group *pg,
1783 struct br_ip *ip_dst,
1784 struct br_ip *group,
1785 bool with_srcs,
1786 u8 sflag,
1787 bool *need_rexmit)
1788 {
1789 bool over_lmqt = !!sflag;
1790 struct sk_buff *skb;
1791 u8 igmp_type;
1792
1793 if (!br_multicast_ctx_should_use(brmctx, pmctx) ||
1794 !br_multicast_ctx_matches_vlan_snooping(brmctx))
1795 return;
1796
1797 again_under_lmqt:
1798 skb = br_multicast_alloc_query(brmctx, pmctx, pg, ip_dst, group,
1799 with_srcs, over_lmqt, sflag, &igmp_type,
1800 need_rexmit);
1801 if (!skb)
1802 return;
1803
1804 if (pmctx) {
1805 skb->dev = pmctx->port->dev;
1806 br_multicast_count(brmctx->br, pmctx->port, skb, igmp_type,
1807 BR_MCAST_DIR_TX);
1808 NF_HOOK(NFPROTO_BRIDGE, NF_BR_LOCAL_OUT,
1809 dev_net(pmctx->port->dev), NULL, skb, NULL, skb->dev,
1810 br_dev_queue_push_xmit);
1811
1812 if (over_lmqt && with_srcs && sflag) {
1813 over_lmqt = false;
1814 goto again_under_lmqt;
1815 }
1816 } else {
1817 br_multicast_select_own_querier(brmctx, group, skb);
1818 br_multicast_count(brmctx->br, NULL, skb, igmp_type,
1819 BR_MCAST_DIR_RX);
1820 netif_rx(skb);
1821 }
1822 }
1823
br_multicast_read_querier(const struct bridge_mcast_querier * querier,struct bridge_mcast_querier * dest)1824 static void br_multicast_read_querier(const struct bridge_mcast_querier *querier,
1825 struct bridge_mcast_querier *dest)
1826 {
1827 unsigned int seq;
1828
1829 memset(dest, 0, sizeof(*dest));
1830 do {
1831 seq = read_seqcount_begin(&querier->seq);
1832 dest->port_ifidx = querier->port_ifidx;
1833 memcpy(&dest->addr, &querier->addr, sizeof(struct br_ip));
1834 } while (read_seqcount_retry(&querier->seq, seq));
1835 }
1836
br_multicast_update_querier(struct net_bridge_mcast * brmctx,struct bridge_mcast_querier * querier,int ifindex,struct br_ip * saddr)1837 static void br_multicast_update_querier(struct net_bridge_mcast *brmctx,
1838 struct bridge_mcast_querier *querier,
1839 int ifindex,
1840 struct br_ip *saddr)
1841 {
1842 write_seqcount_begin(&querier->seq);
1843 querier->port_ifidx = ifindex;
1844 memcpy(&querier->addr, saddr, sizeof(*saddr));
1845 write_seqcount_end(&querier->seq);
1846 }
1847
br_multicast_send_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct bridge_mcast_own_query * own_query)1848 static void br_multicast_send_query(struct net_bridge_mcast *brmctx,
1849 struct net_bridge_mcast_port *pmctx,
1850 struct bridge_mcast_own_query *own_query)
1851 {
1852 struct bridge_mcast_other_query *other_query = NULL;
1853 struct bridge_mcast_querier *querier;
1854 struct br_ip br_group;
1855 unsigned long time;
1856
1857 if (!br_multicast_ctx_should_use(brmctx, pmctx) ||
1858 !br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED) ||
1859 !brmctx->multicast_querier)
1860 return;
1861
1862 memset(&br_group.dst, 0, sizeof(br_group.dst));
1863
1864 if (pmctx ? (own_query == &pmctx->ip4_own_query) :
1865 (own_query == &brmctx->ip4_own_query)) {
1866 querier = &brmctx->ip4_querier;
1867 other_query = &brmctx->ip4_other_query;
1868 br_group.proto = htons(ETH_P_IP);
1869 #if IS_ENABLED(CONFIG_IPV6)
1870 } else {
1871 querier = &brmctx->ip6_querier;
1872 other_query = &brmctx->ip6_other_query;
1873 br_group.proto = htons(ETH_P_IPV6);
1874 #endif
1875 }
1876
1877 if (!other_query || timer_pending(&other_query->timer))
1878 return;
1879
1880 /* we're about to select ourselves as querier */
1881 if (!pmctx && querier->port_ifidx) {
1882 struct br_ip zeroip = {};
1883
1884 br_multicast_update_querier(brmctx, querier, 0, &zeroip);
1885 }
1886
1887 __br_multicast_send_query(brmctx, pmctx, NULL, NULL, &br_group, false,
1888 0, NULL);
1889
1890 time = jiffies;
1891 time += own_query->startup_sent < brmctx->multicast_startup_query_count ?
1892 brmctx->multicast_startup_query_interval :
1893 brmctx->multicast_query_interval;
1894 mod_timer(&own_query->timer, time);
1895 }
1896
1897 static void
br_multicast_port_query_expired(struct net_bridge_mcast_port * pmctx,struct bridge_mcast_own_query * query)1898 br_multicast_port_query_expired(struct net_bridge_mcast_port *pmctx,
1899 struct bridge_mcast_own_query *query)
1900 {
1901 struct net_bridge *br = pmctx->port->br;
1902 struct net_bridge_mcast *brmctx;
1903
1904 spin_lock(&br->multicast_lock);
1905 if (br_multicast_port_ctx_state_stopped(pmctx))
1906 goto out;
1907
1908 brmctx = br_multicast_port_ctx_get_global(pmctx);
1909 if (query->startup_sent < brmctx->multicast_startup_query_count)
1910 query->startup_sent++;
1911
1912 br_multicast_send_query(brmctx, pmctx, query);
1913
1914 out:
1915 spin_unlock(&br->multicast_lock);
1916 }
1917
br_ip4_multicast_port_query_expired(struct timer_list * t)1918 static void br_ip4_multicast_port_query_expired(struct timer_list *t)
1919 {
1920 struct net_bridge_mcast_port *pmctx = from_timer(pmctx, t,
1921 ip4_own_query.timer);
1922
1923 br_multicast_port_query_expired(pmctx, &pmctx->ip4_own_query);
1924 }
1925
1926 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_port_query_expired(struct timer_list * t)1927 static void br_ip6_multicast_port_query_expired(struct timer_list *t)
1928 {
1929 struct net_bridge_mcast_port *pmctx = from_timer(pmctx, t,
1930 ip6_own_query.timer);
1931
1932 br_multicast_port_query_expired(pmctx, &pmctx->ip6_own_query);
1933 }
1934 #endif
1935
br_multicast_port_group_rexmit(struct timer_list * t)1936 static void br_multicast_port_group_rexmit(struct timer_list *t)
1937 {
1938 struct net_bridge_port_group *pg = from_timer(pg, t, rexmit_timer);
1939 struct bridge_mcast_other_query *other_query = NULL;
1940 struct net_bridge *br = pg->key.port->br;
1941 struct net_bridge_mcast_port *pmctx;
1942 struct net_bridge_mcast *brmctx;
1943 bool need_rexmit = false;
1944
1945 spin_lock(&br->multicast_lock);
1946 if (!netif_running(br->dev) || hlist_unhashed(&pg->mglist) ||
1947 !br_opt_get(br, BROPT_MULTICAST_ENABLED))
1948 goto out;
1949
1950 pmctx = br_multicast_pg_to_port_ctx(pg);
1951 if (!pmctx)
1952 goto out;
1953 brmctx = br_multicast_port_ctx_get_global(pmctx);
1954 if (!brmctx->multicast_querier)
1955 goto out;
1956
1957 if (pg->key.addr.proto == htons(ETH_P_IP))
1958 other_query = &brmctx->ip4_other_query;
1959 #if IS_ENABLED(CONFIG_IPV6)
1960 else
1961 other_query = &brmctx->ip6_other_query;
1962 #endif
1963
1964 if (!other_query || timer_pending(&other_query->timer))
1965 goto out;
1966
1967 if (pg->grp_query_rexmit_cnt) {
1968 pg->grp_query_rexmit_cnt--;
1969 __br_multicast_send_query(brmctx, pmctx, pg, &pg->key.addr,
1970 &pg->key.addr, false, 1, NULL);
1971 }
1972 __br_multicast_send_query(brmctx, pmctx, pg, &pg->key.addr,
1973 &pg->key.addr, true, 0, &need_rexmit);
1974
1975 if (pg->grp_query_rexmit_cnt || need_rexmit)
1976 mod_timer(&pg->rexmit_timer, jiffies +
1977 brmctx->multicast_last_member_interval);
1978 out:
1979 spin_unlock(&br->multicast_lock);
1980 }
1981
br_mc_disabled_update(struct net_device * dev,bool value,struct netlink_ext_ack * extack)1982 static int br_mc_disabled_update(struct net_device *dev, bool value,
1983 struct netlink_ext_ack *extack)
1984 {
1985 struct switchdev_attr attr = {
1986 .orig_dev = dev,
1987 .id = SWITCHDEV_ATTR_ID_BRIDGE_MC_DISABLED,
1988 .flags = SWITCHDEV_F_DEFER,
1989 .u.mc_disabled = !value,
1990 };
1991
1992 return switchdev_port_attr_set(dev, &attr, extack);
1993 }
1994
br_multicast_port_ctx_init(struct net_bridge_port * port,struct net_bridge_vlan * vlan,struct net_bridge_mcast_port * pmctx)1995 void br_multicast_port_ctx_init(struct net_bridge_port *port,
1996 struct net_bridge_vlan *vlan,
1997 struct net_bridge_mcast_port *pmctx)
1998 {
1999 pmctx->port = port;
2000 pmctx->vlan = vlan;
2001 pmctx->multicast_router = MDB_RTR_TYPE_TEMP_QUERY;
2002 timer_setup(&pmctx->ip4_mc_router_timer,
2003 br_ip4_multicast_router_expired, 0);
2004 timer_setup(&pmctx->ip4_own_query.timer,
2005 br_ip4_multicast_port_query_expired, 0);
2006 #if IS_ENABLED(CONFIG_IPV6)
2007 timer_setup(&pmctx->ip6_mc_router_timer,
2008 br_ip6_multicast_router_expired, 0);
2009 timer_setup(&pmctx->ip6_own_query.timer,
2010 br_ip6_multicast_port_query_expired, 0);
2011 #endif
2012 }
2013
br_multicast_port_ctx_deinit(struct net_bridge_mcast_port * pmctx)2014 void br_multicast_port_ctx_deinit(struct net_bridge_mcast_port *pmctx)
2015 {
2016 #if IS_ENABLED(CONFIG_IPV6)
2017 del_timer_sync(&pmctx->ip6_mc_router_timer);
2018 #endif
2019 del_timer_sync(&pmctx->ip4_mc_router_timer);
2020 }
2021
br_multicast_add_port(struct net_bridge_port * port)2022 int br_multicast_add_port(struct net_bridge_port *port)
2023 {
2024 int err;
2025
2026 port->multicast_eht_hosts_limit = BR_MCAST_DEFAULT_EHT_HOSTS_LIMIT;
2027 br_multicast_port_ctx_init(port, NULL, &port->multicast_ctx);
2028
2029 err = br_mc_disabled_update(port->dev,
2030 br_opt_get(port->br,
2031 BROPT_MULTICAST_ENABLED),
2032 NULL);
2033 if (err && err != -EOPNOTSUPP)
2034 return err;
2035
2036 port->mcast_stats = netdev_alloc_pcpu_stats(struct bridge_mcast_stats);
2037 if (!port->mcast_stats)
2038 return -ENOMEM;
2039
2040 return 0;
2041 }
2042
br_multicast_del_port(struct net_bridge_port * port)2043 void br_multicast_del_port(struct net_bridge_port *port)
2044 {
2045 struct net_bridge *br = port->br;
2046 struct net_bridge_port_group *pg;
2047 struct hlist_node *n;
2048
2049 /* Take care of the remaining groups, only perm ones should be left */
2050 spin_lock_bh(&br->multicast_lock);
2051 hlist_for_each_entry_safe(pg, n, &port->mglist, mglist)
2052 br_multicast_find_del_pg(br, pg);
2053 spin_unlock_bh(&br->multicast_lock);
2054 flush_work(&br->mcast_gc_work);
2055 br_multicast_port_ctx_deinit(&port->multicast_ctx);
2056 free_percpu(port->mcast_stats);
2057 }
2058
br_multicast_enable(struct bridge_mcast_own_query * query)2059 static void br_multicast_enable(struct bridge_mcast_own_query *query)
2060 {
2061 query->startup_sent = 0;
2062
2063 if (try_to_del_timer_sync(&query->timer) >= 0 ||
2064 del_timer(&query->timer))
2065 mod_timer(&query->timer, jiffies);
2066 }
2067
__br_multicast_enable_port_ctx(struct net_bridge_mcast_port * pmctx)2068 static void __br_multicast_enable_port_ctx(struct net_bridge_mcast_port *pmctx)
2069 {
2070 struct net_bridge *br = pmctx->port->br;
2071 struct net_bridge_mcast *brmctx;
2072
2073 brmctx = br_multicast_port_ctx_get_global(pmctx);
2074 if (!br_opt_get(br, BROPT_MULTICAST_ENABLED) ||
2075 !netif_running(br->dev))
2076 return;
2077
2078 br_multicast_enable(&pmctx->ip4_own_query);
2079 #if IS_ENABLED(CONFIG_IPV6)
2080 br_multicast_enable(&pmctx->ip6_own_query);
2081 #endif
2082 if (pmctx->multicast_router == MDB_RTR_TYPE_PERM) {
2083 br_ip4_multicast_add_router(brmctx, pmctx);
2084 br_ip6_multicast_add_router(brmctx, pmctx);
2085 }
2086
2087 if (br_multicast_port_ctx_is_vlan(pmctx)) {
2088 struct net_bridge_port_group *pg;
2089 u32 n = 0;
2090
2091 /* The mcast_n_groups counter might be wrong. First,
2092 * BR_VLFLAG_MCAST_ENABLED is toggled before temporary entries
2093 * are flushed, thus mcast_n_groups after the toggle does not
2094 * reflect the true values. And second, permanent entries added
2095 * while BR_VLFLAG_MCAST_ENABLED was disabled, are not reflected
2096 * either. Thus we have to refresh the counter.
2097 */
2098
2099 hlist_for_each_entry(pg, &pmctx->port->mglist, mglist) {
2100 if (pg->key.addr.vid == pmctx->vlan->vid)
2101 n++;
2102 }
2103 WRITE_ONCE(pmctx->mdb_n_entries, n);
2104 }
2105 }
2106
br_multicast_enable_port_ctx(struct net_bridge_mcast_port * pmctx)2107 static void br_multicast_enable_port_ctx(struct net_bridge_mcast_port *pmctx)
2108 {
2109 struct net_bridge *br = pmctx->port->br;
2110
2111 spin_lock_bh(&br->multicast_lock);
2112 if (br_multicast_port_ctx_is_vlan(pmctx) &&
2113 !(pmctx->vlan->priv_flags & BR_VLFLAG_MCAST_ENABLED)) {
2114 spin_unlock_bh(&br->multicast_lock);
2115 return;
2116 }
2117 __br_multicast_enable_port_ctx(pmctx);
2118 spin_unlock_bh(&br->multicast_lock);
2119 }
2120
__br_multicast_disable_port_ctx(struct net_bridge_mcast_port * pmctx)2121 static void __br_multicast_disable_port_ctx(struct net_bridge_mcast_port *pmctx)
2122 {
2123 struct net_bridge_port_group *pg;
2124 struct hlist_node *n;
2125 bool del = false;
2126
2127 hlist_for_each_entry_safe(pg, n, &pmctx->port->mglist, mglist)
2128 if (!(pg->flags & MDB_PG_FLAGS_PERMANENT) &&
2129 (!br_multicast_port_ctx_is_vlan(pmctx) ||
2130 pg->key.addr.vid == pmctx->vlan->vid))
2131 br_multicast_find_del_pg(pmctx->port->br, pg);
2132
2133 del |= br_ip4_multicast_rport_del(pmctx);
2134 del_timer(&pmctx->ip4_mc_router_timer);
2135 del_timer(&pmctx->ip4_own_query.timer);
2136 del |= br_ip6_multicast_rport_del(pmctx);
2137 #if IS_ENABLED(CONFIG_IPV6)
2138 del_timer(&pmctx->ip6_mc_router_timer);
2139 del_timer(&pmctx->ip6_own_query.timer);
2140 #endif
2141 br_multicast_rport_del_notify(pmctx, del);
2142 }
2143
br_multicast_disable_port_ctx(struct net_bridge_mcast_port * pmctx)2144 static void br_multicast_disable_port_ctx(struct net_bridge_mcast_port *pmctx)
2145 {
2146 struct net_bridge *br = pmctx->port->br;
2147
2148 spin_lock_bh(&br->multicast_lock);
2149 if (br_multicast_port_ctx_is_vlan(pmctx) &&
2150 !(pmctx->vlan->priv_flags & BR_VLFLAG_MCAST_ENABLED)) {
2151 spin_unlock_bh(&br->multicast_lock);
2152 return;
2153 }
2154
2155 __br_multicast_disable_port_ctx(pmctx);
2156 spin_unlock_bh(&br->multicast_lock);
2157 }
2158
br_multicast_toggle_port(struct net_bridge_port * port,bool on)2159 static void br_multicast_toggle_port(struct net_bridge_port *port, bool on)
2160 {
2161 #if IS_ENABLED(CONFIG_BRIDGE_VLAN_FILTERING)
2162 if (br_opt_get(port->br, BROPT_MCAST_VLAN_SNOOPING_ENABLED)) {
2163 struct net_bridge_vlan_group *vg;
2164 struct net_bridge_vlan *vlan;
2165
2166 rcu_read_lock();
2167 vg = nbp_vlan_group_rcu(port);
2168 if (!vg) {
2169 rcu_read_unlock();
2170 return;
2171 }
2172
2173 /* iterate each vlan, toggle vlan multicast context */
2174 list_for_each_entry_rcu(vlan, &vg->vlan_list, vlist) {
2175 struct net_bridge_mcast_port *pmctx =
2176 &vlan->port_mcast_ctx;
2177 u8 state = br_vlan_get_state(vlan);
2178 /* enable vlan multicast context when state is
2179 * LEARNING or FORWARDING
2180 */
2181 if (on && br_vlan_state_allowed(state, true))
2182 br_multicast_enable_port_ctx(pmctx);
2183 else
2184 br_multicast_disable_port_ctx(pmctx);
2185 }
2186 rcu_read_unlock();
2187 return;
2188 }
2189 #endif
2190 /* toggle port multicast context when vlan snooping is disabled */
2191 if (on)
2192 br_multicast_enable_port_ctx(&port->multicast_ctx);
2193 else
2194 br_multicast_disable_port_ctx(&port->multicast_ctx);
2195 }
2196
br_multicast_enable_port(struct net_bridge_port * port)2197 void br_multicast_enable_port(struct net_bridge_port *port)
2198 {
2199 br_multicast_toggle_port(port, true);
2200 }
2201
br_multicast_disable_port(struct net_bridge_port * port)2202 void br_multicast_disable_port(struct net_bridge_port *port)
2203 {
2204 br_multicast_toggle_port(port, false);
2205 }
2206
__grp_src_delete_marked(struct net_bridge_port_group * pg)2207 static int __grp_src_delete_marked(struct net_bridge_port_group *pg)
2208 {
2209 struct net_bridge_group_src *ent;
2210 struct hlist_node *tmp;
2211 int deleted = 0;
2212
2213 hlist_for_each_entry_safe(ent, tmp, &pg->src_list, node)
2214 if (ent->flags & BR_SGRP_F_DELETE) {
2215 br_multicast_del_group_src(ent, false);
2216 deleted++;
2217 }
2218
2219 return deleted;
2220 }
2221
__grp_src_mod_timer(struct net_bridge_group_src * src,unsigned long expires)2222 static void __grp_src_mod_timer(struct net_bridge_group_src *src,
2223 unsigned long expires)
2224 {
2225 mod_timer(&src->timer, expires);
2226 br_multicast_fwd_src_handle(src);
2227 }
2228
__grp_src_query_marked_and_rexmit(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg)2229 static void __grp_src_query_marked_and_rexmit(struct net_bridge_mcast *brmctx,
2230 struct net_bridge_mcast_port *pmctx,
2231 struct net_bridge_port_group *pg)
2232 {
2233 struct bridge_mcast_other_query *other_query = NULL;
2234 u32 lmqc = brmctx->multicast_last_member_count;
2235 unsigned long lmqt, lmi, now = jiffies;
2236 struct net_bridge_group_src *ent;
2237
2238 if (!netif_running(brmctx->br->dev) ||
2239 !br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED))
2240 return;
2241
2242 if (pg->key.addr.proto == htons(ETH_P_IP))
2243 other_query = &brmctx->ip4_other_query;
2244 #if IS_ENABLED(CONFIG_IPV6)
2245 else
2246 other_query = &brmctx->ip6_other_query;
2247 #endif
2248
2249 lmqt = now + br_multicast_lmqt(brmctx);
2250 hlist_for_each_entry(ent, &pg->src_list, node) {
2251 if (ent->flags & BR_SGRP_F_SEND) {
2252 ent->flags &= ~BR_SGRP_F_SEND;
2253 if (ent->timer.expires > lmqt) {
2254 if (brmctx->multicast_querier &&
2255 other_query &&
2256 !timer_pending(&other_query->timer))
2257 ent->src_query_rexmit_cnt = lmqc;
2258 __grp_src_mod_timer(ent, lmqt);
2259 }
2260 }
2261 }
2262
2263 if (!brmctx->multicast_querier ||
2264 !other_query || timer_pending(&other_query->timer))
2265 return;
2266
2267 __br_multicast_send_query(brmctx, pmctx, pg, &pg->key.addr,
2268 &pg->key.addr, true, 1, NULL);
2269
2270 lmi = now + brmctx->multicast_last_member_interval;
2271 if (!timer_pending(&pg->rexmit_timer) ||
2272 time_after(pg->rexmit_timer.expires, lmi))
2273 mod_timer(&pg->rexmit_timer, lmi);
2274 }
2275
__grp_send_query_and_rexmit(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg)2276 static void __grp_send_query_and_rexmit(struct net_bridge_mcast *brmctx,
2277 struct net_bridge_mcast_port *pmctx,
2278 struct net_bridge_port_group *pg)
2279 {
2280 struct bridge_mcast_other_query *other_query = NULL;
2281 unsigned long now = jiffies, lmi;
2282
2283 if (!netif_running(brmctx->br->dev) ||
2284 !br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED))
2285 return;
2286
2287 if (pg->key.addr.proto == htons(ETH_P_IP))
2288 other_query = &brmctx->ip4_other_query;
2289 #if IS_ENABLED(CONFIG_IPV6)
2290 else
2291 other_query = &brmctx->ip6_other_query;
2292 #endif
2293
2294 if (brmctx->multicast_querier &&
2295 other_query && !timer_pending(&other_query->timer)) {
2296 lmi = now + brmctx->multicast_last_member_interval;
2297 pg->grp_query_rexmit_cnt = brmctx->multicast_last_member_count - 1;
2298 __br_multicast_send_query(brmctx, pmctx, pg, &pg->key.addr,
2299 &pg->key.addr, false, 0, NULL);
2300 if (!timer_pending(&pg->rexmit_timer) ||
2301 time_after(pg->rexmit_timer.expires, lmi))
2302 mod_timer(&pg->rexmit_timer, lmi);
2303 }
2304
2305 if (pg->filter_mode == MCAST_EXCLUDE &&
2306 (!timer_pending(&pg->timer) ||
2307 time_after(pg->timer.expires, now + br_multicast_lmqt(brmctx))))
2308 mod_timer(&pg->timer, now + br_multicast_lmqt(brmctx));
2309 }
2310
2311 /* State Msg type New state Actions
2312 * INCLUDE (A) IS_IN (B) INCLUDE (A+B) (B)=GMI
2313 * INCLUDE (A) ALLOW (B) INCLUDE (A+B) (B)=GMI
2314 * EXCLUDE (X,Y) ALLOW (A) EXCLUDE (X+A,Y-A) (A)=GMI
2315 */
br_multicast_isinc_allow(const struct net_bridge_mcast * brmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2316 static bool br_multicast_isinc_allow(const struct net_bridge_mcast *brmctx,
2317 struct net_bridge_port_group *pg, void *h_addr,
2318 void *srcs, u32 nsrcs, size_t addr_size,
2319 int grec_type)
2320 {
2321 struct net_bridge_group_src *ent;
2322 unsigned long now = jiffies;
2323 bool changed = false;
2324 struct br_ip src_ip;
2325 u32 src_idx;
2326
2327 memset(&src_ip, 0, sizeof(src_ip));
2328 src_ip.proto = pg->key.addr.proto;
2329 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2330 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2331 ent = br_multicast_find_group_src(pg, &src_ip);
2332 if (!ent) {
2333 ent = br_multicast_new_group_src(pg, &src_ip);
2334 if (ent)
2335 changed = true;
2336 }
2337
2338 if (ent)
2339 __grp_src_mod_timer(ent, now + br_multicast_gmi(brmctx));
2340 }
2341
2342 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2343 grec_type))
2344 changed = true;
2345
2346 return changed;
2347 }
2348
2349 /* State Msg type New state Actions
2350 * INCLUDE (A) IS_EX (B) EXCLUDE (A*B,B-A) (B-A)=0
2351 * Delete (A-B)
2352 * Group Timer=GMI
2353 */
__grp_src_isexc_incl(const struct net_bridge_mcast * brmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2354 static void __grp_src_isexc_incl(const struct net_bridge_mcast *brmctx,
2355 struct net_bridge_port_group *pg, void *h_addr,
2356 void *srcs, u32 nsrcs, size_t addr_size,
2357 int grec_type)
2358 {
2359 struct net_bridge_group_src *ent;
2360 struct br_ip src_ip;
2361 u32 src_idx;
2362
2363 hlist_for_each_entry(ent, &pg->src_list, node)
2364 ent->flags |= BR_SGRP_F_DELETE;
2365
2366 memset(&src_ip, 0, sizeof(src_ip));
2367 src_ip.proto = pg->key.addr.proto;
2368 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2369 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2370 ent = br_multicast_find_group_src(pg, &src_ip);
2371 if (ent)
2372 ent->flags &= ~BR_SGRP_F_DELETE;
2373 else
2374 ent = br_multicast_new_group_src(pg, &src_ip);
2375 if (ent)
2376 br_multicast_fwd_src_handle(ent);
2377 }
2378
2379 br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2380 grec_type);
2381
2382 __grp_src_delete_marked(pg);
2383 }
2384
2385 /* State Msg type New state Actions
2386 * EXCLUDE (X,Y) IS_EX (A) EXCLUDE (A-Y,Y*A) (A-X-Y)=GMI
2387 * Delete (X-A)
2388 * Delete (Y-A)
2389 * Group Timer=GMI
2390 */
__grp_src_isexc_excl(const struct net_bridge_mcast * brmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2391 static bool __grp_src_isexc_excl(const struct net_bridge_mcast *brmctx,
2392 struct net_bridge_port_group *pg, void *h_addr,
2393 void *srcs, u32 nsrcs, size_t addr_size,
2394 int grec_type)
2395 {
2396 struct net_bridge_group_src *ent;
2397 unsigned long now = jiffies;
2398 bool changed = false;
2399 struct br_ip src_ip;
2400 u32 src_idx;
2401
2402 hlist_for_each_entry(ent, &pg->src_list, node)
2403 ent->flags |= BR_SGRP_F_DELETE;
2404
2405 memset(&src_ip, 0, sizeof(src_ip));
2406 src_ip.proto = pg->key.addr.proto;
2407 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2408 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2409 ent = br_multicast_find_group_src(pg, &src_ip);
2410 if (ent) {
2411 ent->flags &= ~BR_SGRP_F_DELETE;
2412 } else {
2413 ent = br_multicast_new_group_src(pg, &src_ip);
2414 if (ent) {
2415 __grp_src_mod_timer(ent,
2416 now + br_multicast_gmi(brmctx));
2417 changed = true;
2418 }
2419 }
2420 }
2421
2422 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2423 grec_type))
2424 changed = true;
2425
2426 if (__grp_src_delete_marked(pg))
2427 changed = true;
2428
2429 return changed;
2430 }
2431
br_multicast_isexc(const struct net_bridge_mcast * brmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2432 static bool br_multicast_isexc(const struct net_bridge_mcast *brmctx,
2433 struct net_bridge_port_group *pg, void *h_addr,
2434 void *srcs, u32 nsrcs, size_t addr_size,
2435 int grec_type)
2436 {
2437 bool changed = false;
2438
2439 switch (pg->filter_mode) {
2440 case MCAST_INCLUDE:
2441 __grp_src_isexc_incl(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2442 grec_type);
2443 br_multicast_star_g_handle_mode(pg, MCAST_EXCLUDE);
2444 changed = true;
2445 break;
2446 case MCAST_EXCLUDE:
2447 changed = __grp_src_isexc_excl(brmctx, pg, h_addr, srcs, nsrcs,
2448 addr_size, grec_type);
2449 break;
2450 }
2451
2452 pg->filter_mode = MCAST_EXCLUDE;
2453 mod_timer(&pg->timer, jiffies + br_multicast_gmi(brmctx));
2454
2455 return changed;
2456 }
2457
2458 /* State Msg type New state Actions
2459 * INCLUDE (A) TO_IN (B) INCLUDE (A+B) (B)=GMI
2460 * Send Q(G,A-B)
2461 */
__grp_src_toin_incl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2462 static bool __grp_src_toin_incl(struct net_bridge_mcast *brmctx,
2463 struct net_bridge_mcast_port *pmctx,
2464 struct net_bridge_port_group *pg, void *h_addr,
2465 void *srcs, u32 nsrcs, size_t addr_size,
2466 int grec_type)
2467 {
2468 u32 src_idx, to_send = pg->src_ents;
2469 struct net_bridge_group_src *ent;
2470 unsigned long now = jiffies;
2471 bool changed = false;
2472 struct br_ip src_ip;
2473
2474 hlist_for_each_entry(ent, &pg->src_list, node)
2475 ent->flags |= BR_SGRP_F_SEND;
2476
2477 memset(&src_ip, 0, sizeof(src_ip));
2478 src_ip.proto = pg->key.addr.proto;
2479 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2480 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2481 ent = br_multicast_find_group_src(pg, &src_ip);
2482 if (ent) {
2483 ent->flags &= ~BR_SGRP_F_SEND;
2484 to_send--;
2485 } else {
2486 ent = br_multicast_new_group_src(pg, &src_ip);
2487 if (ent)
2488 changed = true;
2489 }
2490 if (ent)
2491 __grp_src_mod_timer(ent, now + br_multicast_gmi(brmctx));
2492 }
2493
2494 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2495 grec_type))
2496 changed = true;
2497
2498 if (to_send)
2499 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2500
2501 return changed;
2502 }
2503
2504 /* State Msg type New state Actions
2505 * EXCLUDE (X,Y) TO_IN (A) EXCLUDE (X+A,Y-A) (A)=GMI
2506 * Send Q(G,X-A)
2507 * Send Q(G)
2508 */
__grp_src_toin_excl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2509 static bool __grp_src_toin_excl(struct net_bridge_mcast *brmctx,
2510 struct net_bridge_mcast_port *pmctx,
2511 struct net_bridge_port_group *pg, void *h_addr,
2512 void *srcs, u32 nsrcs, size_t addr_size,
2513 int grec_type)
2514 {
2515 u32 src_idx, to_send = pg->src_ents;
2516 struct net_bridge_group_src *ent;
2517 unsigned long now = jiffies;
2518 bool changed = false;
2519 struct br_ip src_ip;
2520
2521 hlist_for_each_entry(ent, &pg->src_list, node)
2522 if (timer_pending(&ent->timer))
2523 ent->flags |= BR_SGRP_F_SEND;
2524
2525 memset(&src_ip, 0, sizeof(src_ip));
2526 src_ip.proto = pg->key.addr.proto;
2527 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2528 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2529 ent = br_multicast_find_group_src(pg, &src_ip);
2530 if (ent) {
2531 if (timer_pending(&ent->timer)) {
2532 ent->flags &= ~BR_SGRP_F_SEND;
2533 to_send--;
2534 }
2535 } else {
2536 ent = br_multicast_new_group_src(pg, &src_ip);
2537 if (ent)
2538 changed = true;
2539 }
2540 if (ent)
2541 __grp_src_mod_timer(ent, now + br_multicast_gmi(brmctx));
2542 }
2543
2544 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2545 grec_type))
2546 changed = true;
2547
2548 if (to_send)
2549 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2550
2551 __grp_send_query_and_rexmit(brmctx, pmctx, pg);
2552
2553 return changed;
2554 }
2555
br_multicast_toin(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2556 static bool br_multicast_toin(struct net_bridge_mcast *brmctx,
2557 struct net_bridge_mcast_port *pmctx,
2558 struct net_bridge_port_group *pg, void *h_addr,
2559 void *srcs, u32 nsrcs, size_t addr_size,
2560 int grec_type)
2561 {
2562 bool changed = false;
2563
2564 switch (pg->filter_mode) {
2565 case MCAST_INCLUDE:
2566 changed = __grp_src_toin_incl(brmctx, pmctx, pg, h_addr, srcs,
2567 nsrcs, addr_size, grec_type);
2568 break;
2569 case MCAST_EXCLUDE:
2570 changed = __grp_src_toin_excl(brmctx, pmctx, pg, h_addr, srcs,
2571 nsrcs, addr_size, grec_type);
2572 break;
2573 }
2574
2575 if (br_multicast_eht_should_del_pg(pg)) {
2576 pg->flags |= MDB_PG_FLAGS_FAST_LEAVE;
2577 br_multicast_find_del_pg(pg->key.port->br, pg);
2578 /* a notification has already been sent and we shouldn't
2579 * access pg after the delete so we have to return false
2580 */
2581 changed = false;
2582 }
2583
2584 return changed;
2585 }
2586
2587 /* State Msg type New state Actions
2588 * INCLUDE (A) TO_EX (B) EXCLUDE (A*B,B-A) (B-A)=0
2589 * Delete (A-B)
2590 * Send Q(G,A*B)
2591 * Group Timer=GMI
2592 */
__grp_src_toex_incl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2593 static void __grp_src_toex_incl(struct net_bridge_mcast *brmctx,
2594 struct net_bridge_mcast_port *pmctx,
2595 struct net_bridge_port_group *pg, void *h_addr,
2596 void *srcs, u32 nsrcs, size_t addr_size,
2597 int grec_type)
2598 {
2599 struct net_bridge_group_src *ent;
2600 u32 src_idx, to_send = 0;
2601 struct br_ip src_ip;
2602
2603 hlist_for_each_entry(ent, &pg->src_list, node)
2604 ent->flags = (ent->flags & ~BR_SGRP_F_SEND) | BR_SGRP_F_DELETE;
2605
2606 memset(&src_ip, 0, sizeof(src_ip));
2607 src_ip.proto = pg->key.addr.proto;
2608 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2609 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2610 ent = br_multicast_find_group_src(pg, &src_ip);
2611 if (ent) {
2612 ent->flags = (ent->flags & ~BR_SGRP_F_DELETE) |
2613 BR_SGRP_F_SEND;
2614 to_send++;
2615 } else {
2616 ent = br_multicast_new_group_src(pg, &src_ip);
2617 }
2618 if (ent)
2619 br_multicast_fwd_src_handle(ent);
2620 }
2621
2622 br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2623 grec_type);
2624
2625 __grp_src_delete_marked(pg);
2626 if (to_send)
2627 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2628 }
2629
2630 /* State Msg type New state Actions
2631 * EXCLUDE (X,Y) TO_EX (A) EXCLUDE (A-Y,Y*A) (A-X-Y)=Group Timer
2632 * Delete (X-A)
2633 * Delete (Y-A)
2634 * Send Q(G,A-Y)
2635 * Group Timer=GMI
2636 */
__grp_src_toex_excl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2637 static bool __grp_src_toex_excl(struct net_bridge_mcast *brmctx,
2638 struct net_bridge_mcast_port *pmctx,
2639 struct net_bridge_port_group *pg, void *h_addr,
2640 void *srcs, u32 nsrcs, size_t addr_size,
2641 int grec_type)
2642 {
2643 struct net_bridge_group_src *ent;
2644 u32 src_idx, to_send = 0;
2645 bool changed = false;
2646 struct br_ip src_ip;
2647
2648 hlist_for_each_entry(ent, &pg->src_list, node)
2649 ent->flags = (ent->flags & ~BR_SGRP_F_SEND) | BR_SGRP_F_DELETE;
2650
2651 memset(&src_ip, 0, sizeof(src_ip));
2652 src_ip.proto = pg->key.addr.proto;
2653 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2654 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2655 ent = br_multicast_find_group_src(pg, &src_ip);
2656 if (ent) {
2657 ent->flags &= ~BR_SGRP_F_DELETE;
2658 } else {
2659 ent = br_multicast_new_group_src(pg, &src_ip);
2660 if (ent) {
2661 __grp_src_mod_timer(ent, pg->timer.expires);
2662 changed = true;
2663 }
2664 }
2665 if (ent && timer_pending(&ent->timer)) {
2666 ent->flags |= BR_SGRP_F_SEND;
2667 to_send++;
2668 }
2669 }
2670
2671 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2672 grec_type))
2673 changed = true;
2674
2675 if (__grp_src_delete_marked(pg))
2676 changed = true;
2677 if (to_send)
2678 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2679
2680 return changed;
2681 }
2682
br_multicast_toex(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2683 static bool br_multicast_toex(struct net_bridge_mcast *brmctx,
2684 struct net_bridge_mcast_port *pmctx,
2685 struct net_bridge_port_group *pg, void *h_addr,
2686 void *srcs, u32 nsrcs, size_t addr_size,
2687 int grec_type)
2688 {
2689 bool changed = false;
2690
2691 switch (pg->filter_mode) {
2692 case MCAST_INCLUDE:
2693 __grp_src_toex_incl(brmctx, pmctx, pg, h_addr, srcs, nsrcs,
2694 addr_size, grec_type);
2695 br_multicast_star_g_handle_mode(pg, MCAST_EXCLUDE);
2696 changed = true;
2697 break;
2698 case MCAST_EXCLUDE:
2699 changed = __grp_src_toex_excl(brmctx, pmctx, pg, h_addr, srcs,
2700 nsrcs, addr_size, grec_type);
2701 break;
2702 }
2703
2704 pg->filter_mode = MCAST_EXCLUDE;
2705 mod_timer(&pg->timer, jiffies + br_multicast_gmi(brmctx));
2706
2707 return changed;
2708 }
2709
2710 /* State Msg type New state Actions
2711 * INCLUDE (A) BLOCK (B) INCLUDE (A) Send Q(G,A*B)
2712 */
__grp_src_block_incl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2713 static bool __grp_src_block_incl(struct net_bridge_mcast *brmctx,
2714 struct net_bridge_mcast_port *pmctx,
2715 struct net_bridge_port_group *pg, void *h_addr,
2716 void *srcs, u32 nsrcs, size_t addr_size, int grec_type)
2717 {
2718 struct net_bridge_group_src *ent;
2719 u32 src_idx, to_send = 0;
2720 bool changed = false;
2721 struct br_ip src_ip;
2722
2723 hlist_for_each_entry(ent, &pg->src_list, node)
2724 ent->flags &= ~BR_SGRP_F_SEND;
2725
2726 memset(&src_ip, 0, sizeof(src_ip));
2727 src_ip.proto = pg->key.addr.proto;
2728 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2729 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2730 ent = br_multicast_find_group_src(pg, &src_ip);
2731 if (ent) {
2732 ent->flags |= BR_SGRP_F_SEND;
2733 to_send++;
2734 }
2735 }
2736
2737 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2738 grec_type))
2739 changed = true;
2740
2741 if (to_send)
2742 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2743
2744 return changed;
2745 }
2746
2747 /* State Msg type New state Actions
2748 * EXCLUDE (X,Y) BLOCK (A) EXCLUDE (X+(A-Y),Y) (A-X-Y)=Group Timer
2749 * Send Q(G,A-Y)
2750 */
__grp_src_block_excl(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2751 static bool __grp_src_block_excl(struct net_bridge_mcast *brmctx,
2752 struct net_bridge_mcast_port *pmctx,
2753 struct net_bridge_port_group *pg, void *h_addr,
2754 void *srcs, u32 nsrcs, size_t addr_size, int grec_type)
2755 {
2756 struct net_bridge_group_src *ent;
2757 u32 src_idx, to_send = 0;
2758 bool changed = false;
2759 struct br_ip src_ip;
2760
2761 hlist_for_each_entry(ent, &pg->src_list, node)
2762 ent->flags &= ~BR_SGRP_F_SEND;
2763
2764 memset(&src_ip, 0, sizeof(src_ip));
2765 src_ip.proto = pg->key.addr.proto;
2766 for (src_idx = 0; src_idx < nsrcs; src_idx++) {
2767 memcpy(&src_ip.src, srcs + (src_idx * addr_size), addr_size);
2768 ent = br_multicast_find_group_src(pg, &src_ip);
2769 if (!ent) {
2770 ent = br_multicast_new_group_src(pg, &src_ip);
2771 if (ent) {
2772 __grp_src_mod_timer(ent, pg->timer.expires);
2773 changed = true;
2774 }
2775 }
2776 if (ent && timer_pending(&ent->timer)) {
2777 ent->flags |= BR_SGRP_F_SEND;
2778 to_send++;
2779 }
2780 }
2781
2782 if (br_multicast_eht_handle(brmctx, pg, h_addr, srcs, nsrcs, addr_size,
2783 grec_type))
2784 changed = true;
2785
2786 if (to_send)
2787 __grp_src_query_marked_and_rexmit(brmctx, pmctx, pg);
2788
2789 return changed;
2790 }
2791
br_multicast_block(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct net_bridge_port_group * pg,void * h_addr,void * srcs,u32 nsrcs,size_t addr_size,int grec_type)2792 static bool br_multicast_block(struct net_bridge_mcast *brmctx,
2793 struct net_bridge_mcast_port *pmctx,
2794 struct net_bridge_port_group *pg, void *h_addr,
2795 void *srcs, u32 nsrcs, size_t addr_size, int grec_type)
2796 {
2797 bool changed = false;
2798
2799 switch (pg->filter_mode) {
2800 case MCAST_INCLUDE:
2801 changed = __grp_src_block_incl(brmctx, pmctx, pg, h_addr, srcs,
2802 nsrcs, addr_size, grec_type);
2803 break;
2804 case MCAST_EXCLUDE:
2805 changed = __grp_src_block_excl(brmctx, pmctx, pg, h_addr, srcs,
2806 nsrcs, addr_size, grec_type);
2807 break;
2808 }
2809
2810 if ((pg->filter_mode == MCAST_INCLUDE && hlist_empty(&pg->src_list)) ||
2811 br_multicast_eht_should_del_pg(pg)) {
2812 if (br_multicast_eht_should_del_pg(pg))
2813 pg->flags |= MDB_PG_FLAGS_FAST_LEAVE;
2814 br_multicast_find_del_pg(pg->key.port->br, pg);
2815 /* a notification has already been sent and we shouldn't
2816 * access pg after the delete so we have to return false
2817 */
2818 changed = false;
2819 }
2820
2821 return changed;
2822 }
2823
2824 static struct net_bridge_port_group *
br_multicast_find_port(struct net_bridge_mdb_entry * mp,struct net_bridge_port * p,const unsigned char * src)2825 br_multicast_find_port(struct net_bridge_mdb_entry *mp,
2826 struct net_bridge_port *p,
2827 const unsigned char *src)
2828 {
2829 struct net_bridge *br __maybe_unused = mp->br;
2830 struct net_bridge_port_group *pg;
2831
2832 for (pg = mlock_dereference(mp->ports, br);
2833 pg;
2834 pg = mlock_dereference(pg->next, br))
2835 if (br_port_group_equal(pg, p, src))
2836 return pg;
2837
2838 return NULL;
2839 }
2840
br_ip4_multicast_igmp3_report(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)2841 static int br_ip4_multicast_igmp3_report(struct net_bridge_mcast *brmctx,
2842 struct net_bridge_mcast_port *pmctx,
2843 struct sk_buff *skb,
2844 u16 vid)
2845 {
2846 bool igmpv2 = brmctx->multicast_igmp_version == 2;
2847 struct net_bridge_mdb_entry *mdst;
2848 struct net_bridge_port_group *pg;
2849 const unsigned char *src;
2850 struct igmpv3_report *ih;
2851 struct igmpv3_grec *grec;
2852 int i, len, num, type;
2853 __be32 group, *h_addr;
2854 bool changed = false;
2855 int err = 0;
2856 u16 nsrcs;
2857
2858 ih = igmpv3_report_hdr(skb);
2859 num = ntohs(ih->ngrec);
2860 len = skb_transport_offset(skb) + sizeof(*ih);
2861
2862 for (i = 0; i < num; i++) {
2863 len += sizeof(*grec);
2864 if (!ip_mc_may_pull(skb, len))
2865 return -EINVAL;
2866
2867 grec = (void *)(skb->data + len - sizeof(*grec));
2868 group = grec->grec_mca;
2869 type = grec->grec_type;
2870 nsrcs = ntohs(grec->grec_nsrcs);
2871
2872 len += nsrcs * 4;
2873 if (!ip_mc_may_pull(skb, len))
2874 return -EINVAL;
2875
2876 switch (type) {
2877 case IGMPV3_MODE_IS_INCLUDE:
2878 case IGMPV3_MODE_IS_EXCLUDE:
2879 case IGMPV3_CHANGE_TO_INCLUDE:
2880 case IGMPV3_CHANGE_TO_EXCLUDE:
2881 case IGMPV3_ALLOW_NEW_SOURCES:
2882 case IGMPV3_BLOCK_OLD_SOURCES:
2883 break;
2884
2885 default:
2886 continue;
2887 }
2888
2889 src = eth_hdr(skb)->h_source;
2890 if (nsrcs == 0 &&
2891 (type == IGMPV3_CHANGE_TO_INCLUDE ||
2892 type == IGMPV3_MODE_IS_INCLUDE)) {
2893 if (!pmctx || igmpv2) {
2894 br_ip4_multicast_leave_group(brmctx, pmctx,
2895 group, vid, src);
2896 continue;
2897 }
2898 } else {
2899 err = br_ip4_multicast_add_group(brmctx, pmctx, group,
2900 vid, src, igmpv2);
2901 if (err)
2902 break;
2903 }
2904
2905 if (!pmctx || igmpv2)
2906 continue;
2907
2908 spin_lock(&brmctx->br->multicast_lock);
2909 if (!br_multicast_ctx_should_use(brmctx, pmctx))
2910 goto unlock_continue;
2911
2912 mdst = br_mdb_ip4_get(brmctx->br, group, vid);
2913 if (!mdst)
2914 goto unlock_continue;
2915 pg = br_multicast_find_port(mdst, pmctx->port, src);
2916 if (!pg || (pg->flags & MDB_PG_FLAGS_PERMANENT))
2917 goto unlock_continue;
2918 /* reload grec and host addr */
2919 grec = (void *)(skb->data + len - sizeof(*grec) - (nsrcs * 4));
2920 h_addr = &ip_hdr(skb)->saddr;
2921 switch (type) {
2922 case IGMPV3_ALLOW_NEW_SOURCES:
2923 changed = br_multicast_isinc_allow(brmctx, pg, h_addr,
2924 grec->grec_src,
2925 nsrcs, sizeof(__be32), type);
2926 break;
2927 case IGMPV3_MODE_IS_INCLUDE:
2928 changed = br_multicast_isinc_allow(brmctx, pg, h_addr,
2929 grec->grec_src,
2930 nsrcs, sizeof(__be32), type);
2931 break;
2932 case IGMPV3_MODE_IS_EXCLUDE:
2933 changed = br_multicast_isexc(brmctx, pg, h_addr,
2934 grec->grec_src,
2935 nsrcs, sizeof(__be32), type);
2936 break;
2937 case IGMPV3_CHANGE_TO_INCLUDE:
2938 changed = br_multicast_toin(brmctx, pmctx, pg, h_addr,
2939 grec->grec_src,
2940 nsrcs, sizeof(__be32), type);
2941 break;
2942 case IGMPV3_CHANGE_TO_EXCLUDE:
2943 changed = br_multicast_toex(brmctx, pmctx, pg, h_addr,
2944 grec->grec_src,
2945 nsrcs, sizeof(__be32), type);
2946 break;
2947 case IGMPV3_BLOCK_OLD_SOURCES:
2948 changed = br_multicast_block(brmctx, pmctx, pg, h_addr,
2949 grec->grec_src,
2950 nsrcs, sizeof(__be32), type);
2951 break;
2952 }
2953 if (changed)
2954 br_mdb_notify(brmctx->br->dev, mdst, pg, RTM_NEWMDB);
2955 unlock_continue:
2956 spin_unlock(&brmctx->br->multicast_lock);
2957 }
2958
2959 return err;
2960 }
2961
2962 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_mld2_report(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)2963 static int br_ip6_multicast_mld2_report(struct net_bridge_mcast *brmctx,
2964 struct net_bridge_mcast_port *pmctx,
2965 struct sk_buff *skb,
2966 u16 vid)
2967 {
2968 bool mldv1 = brmctx->multicast_mld_version == 1;
2969 struct net_bridge_mdb_entry *mdst;
2970 struct net_bridge_port_group *pg;
2971 unsigned int nsrcs_offset;
2972 struct mld2_report *mld2r;
2973 const unsigned char *src;
2974 struct in6_addr *h_addr;
2975 struct mld2_grec *grec;
2976 unsigned int grec_len;
2977 bool changed = false;
2978 int i, len, num;
2979 int err = 0;
2980
2981 if (!ipv6_mc_may_pull(skb, sizeof(*mld2r)))
2982 return -EINVAL;
2983
2984 mld2r = (struct mld2_report *)icmp6_hdr(skb);
2985 num = ntohs(mld2r->mld2r_ngrec);
2986 len = skb_transport_offset(skb) + sizeof(*mld2r);
2987
2988 for (i = 0; i < num; i++) {
2989 __be16 *_nsrcs, __nsrcs;
2990 u16 nsrcs;
2991
2992 nsrcs_offset = len + offsetof(struct mld2_grec, grec_nsrcs);
2993
2994 if (skb_transport_offset(skb) + ipv6_transport_len(skb) <
2995 nsrcs_offset + sizeof(__nsrcs))
2996 return -EINVAL;
2997
2998 _nsrcs = skb_header_pointer(skb, nsrcs_offset,
2999 sizeof(__nsrcs), &__nsrcs);
3000 if (!_nsrcs)
3001 return -EINVAL;
3002
3003 nsrcs = ntohs(*_nsrcs);
3004 grec_len = struct_size(grec, grec_src, nsrcs);
3005
3006 if (!ipv6_mc_may_pull(skb, len + grec_len))
3007 return -EINVAL;
3008
3009 grec = (struct mld2_grec *)(skb->data + len);
3010 len += grec_len;
3011
3012 switch (grec->grec_type) {
3013 case MLD2_MODE_IS_INCLUDE:
3014 case MLD2_MODE_IS_EXCLUDE:
3015 case MLD2_CHANGE_TO_INCLUDE:
3016 case MLD2_CHANGE_TO_EXCLUDE:
3017 case MLD2_ALLOW_NEW_SOURCES:
3018 case MLD2_BLOCK_OLD_SOURCES:
3019 break;
3020
3021 default:
3022 continue;
3023 }
3024
3025 src = eth_hdr(skb)->h_source;
3026 if ((grec->grec_type == MLD2_CHANGE_TO_INCLUDE ||
3027 grec->grec_type == MLD2_MODE_IS_INCLUDE) &&
3028 nsrcs == 0) {
3029 if (!pmctx || mldv1) {
3030 br_ip6_multicast_leave_group(brmctx, pmctx,
3031 &grec->grec_mca,
3032 vid, src);
3033 continue;
3034 }
3035 } else {
3036 err = br_ip6_multicast_add_group(brmctx, pmctx,
3037 &grec->grec_mca, vid,
3038 src, mldv1);
3039 if (err)
3040 break;
3041 }
3042
3043 if (!pmctx || mldv1)
3044 continue;
3045
3046 spin_lock(&brmctx->br->multicast_lock);
3047 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3048 goto unlock_continue;
3049
3050 mdst = br_mdb_ip6_get(brmctx->br, &grec->grec_mca, vid);
3051 if (!mdst)
3052 goto unlock_continue;
3053 pg = br_multicast_find_port(mdst, pmctx->port, src);
3054 if (!pg || (pg->flags & MDB_PG_FLAGS_PERMANENT))
3055 goto unlock_continue;
3056 h_addr = &ipv6_hdr(skb)->saddr;
3057 switch (grec->grec_type) {
3058 case MLD2_ALLOW_NEW_SOURCES:
3059 changed = br_multicast_isinc_allow(brmctx, pg, h_addr,
3060 grec->grec_src, nsrcs,
3061 sizeof(struct in6_addr),
3062 grec->grec_type);
3063 break;
3064 case MLD2_MODE_IS_INCLUDE:
3065 changed = br_multicast_isinc_allow(brmctx, pg, h_addr,
3066 grec->grec_src, nsrcs,
3067 sizeof(struct in6_addr),
3068 grec->grec_type);
3069 break;
3070 case MLD2_MODE_IS_EXCLUDE:
3071 changed = br_multicast_isexc(brmctx, pg, h_addr,
3072 grec->grec_src, nsrcs,
3073 sizeof(struct in6_addr),
3074 grec->grec_type);
3075 break;
3076 case MLD2_CHANGE_TO_INCLUDE:
3077 changed = br_multicast_toin(brmctx, pmctx, pg, h_addr,
3078 grec->grec_src, nsrcs,
3079 sizeof(struct in6_addr),
3080 grec->grec_type);
3081 break;
3082 case MLD2_CHANGE_TO_EXCLUDE:
3083 changed = br_multicast_toex(brmctx, pmctx, pg, h_addr,
3084 grec->grec_src, nsrcs,
3085 sizeof(struct in6_addr),
3086 grec->grec_type);
3087 break;
3088 case MLD2_BLOCK_OLD_SOURCES:
3089 changed = br_multicast_block(brmctx, pmctx, pg, h_addr,
3090 grec->grec_src, nsrcs,
3091 sizeof(struct in6_addr),
3092 grec->grec_type);
3093 break;
3094 }
3095 if (changed)
3096 br_mdb_notify(brmctx->br->dev, mdst, pg, RTM_NEWMDB);
3097 unlock_continue:
3098 spin_unlock(&brmctx->br->multicast_lock);
3099 }
3100
3101 return err;
3102 }
3103 #endif
3104
br_multicast_select_querier(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct br_ip * saddr)3105 static bool br_multicast_select_querier(struct net_bridge_mcast *brmctx,
3106 struct net_bridge_mcast_port *pmctx,
3107 struct br_ip *saddr)
3108 {
3109 int port_ifidx = pmctx ? pmctx->port->dev->ifindex : 0;
3110 struct timer_list *own_timer, *other_timer;
3111 struct bridge_mcast_querier *querier;
3112
3113 switch (saddr->proto) {
3114 case htons(ETH_P_IP):
3115 querier = &brmctx->ip4_querier;
3116 own_timer = &brmctx->ip4_own_query.timer;
3117 other_timer = &brmctx->ip4_other_query.timer;
3118 if (!querier->addr.src.ip4 ||
3119 ntohl(saddr->src.ip4) <= ntohl(querier->addr.src.ip4))
3120 goto update;
3121 break;
3122 #if IS_ENABLED(CONFIG_IPV6)
3123 case htons(ETH_P_IPV6):
3124 querier = &brmctx->ip6_querier;
3125 own_timer = &brmctx->ip6_own_query.timer;
3126 other_timer = &brmctx->ip6_other_query.timer;
3127 if (ipv6_addr_cmp(&saddr->src.ip6, &querier->addr.src.ip6) <= 0)
3128 goto update;
3129 break;
3130 #endif
3131 default:
3132 return false;
3133 }
3134
3135 if (!timer_pending(own_timer) && !timer_pending(other_timer))
3136 goto update;
3137
3138 return false;
3139
3140 update:
3141 br_multicast_update_querier(brmctx, querier, port_ifidx, saddr);
3142
3143 return true;
3144 }
3145
3146 static struct net_bridge_port *
__br_multicast_get_querier_port(struct net_bridge * br,const struct bridge_mcast_querier * querier)3147 __br_multicast_get_querier_port(struct net_bridge *br,
3148 const struct bridge_mcast_querier *querier)
3149 {
3150 int port_ifidx = READ_ONCE(querier->port_ifidx);
3151 struct net_bridge_port *p;
3152 struct net_device *dev;
3153
3154 if (port_ifidx == 0)
3155 return NULL;
3156
3157 dev = dev_get_by_index_rcu(dev_net(br->dev), port_ifidx);
3158 if (!dev)
3159 return NULL;
3160 p = br_port_get_rtnl_rcu(dev);
3161 if (!p || p->br != br)
3162 return NULL;
3163
3164 return p;
3165 }
3166
br_multicast_querier_state_size(void)3167 size_t br_multicast_querier_state_size(void)
3168 {
3169 return nla_total_size(0) + /* nest attribute */
3170 nla_total_size(sizeof(__be32)) + /* BRIDGE_QUERIER_IP_ADDRESS */
3171 nla_total_size(sizeof(int)) + /* BRIDGE_QUERIER_IP_PORT */
3172 nla_total_size_64bit(sizeof(u64)) + /* BRIDGE_QUERIER_IP_OTHER_TIMER */
3173 #if IS_ENABLED(CONFIG_IPV6)
3174 nla_total_size(sizeof(struct in6_addr)) + /* BRIDGE_QUERIER_IPV6_ADDRESS */
3175 nla_total_size(sizeof(int)) + /* BRIDGE_QUERIER_IPV6_PORT */
3176 nla_total_size_64bit(sizeof(u64)) + /* BRIDGE_QUERIER_IPV6_OTHER_TIMER */
3177 #endif
3178 0;
3179 }
3180
3181 /* protected by rtnl or rcu */
br_multicast_dump_querier_state(struct sk_buff * skb,const struct net_bridge_mcast * brmctx,int nest_attr)3182 int br_multicast_dump_querier_state(struct sk_buff *skb,
3183 const struct net_bridge_mcast *brmctx,
3184 int nest_attr)
3185 {
3186 struct bridge_mcast_querier querier = {};
3187 struct net_bridge_port *p;
3188 struct nlattr *nest;
3189
3190 if (!br_opt_get(brmctx->br, BROPT_MULTICAST_ENABLED) ||
3191 br_multicast_ctx_vlan_global_disabled(brmctx))
3192 return 0;
3193
3194 nest = nla_nest_start(skb, nest_attr);
3195 if (!nest)
3196 return -EMSGSIZE;
3197
3198 rcu_read_lock();
3199 if (!brmctx->multicast_querier &&
3200 !timer_pending(&brmctx->ip4_other_query.timer))
3201 goto out_v6;
3202
3203 br_multicast_read_querier(&brmctx->ip4_querier, &querier);
3204 if (nla_put_in_addr(skb, BRIDGE_QUERIER_IP_ADDRESS,
3205 querier.addr.src.ip4)) {
3206 rcu_read_unlock();
3207 goto out_err;
3208 }
3209
3210 p = __br_multicast_get_querier_port(brmctx->br, &querier);
3211 if (timer_pending(&brmctx->ip4_other_query.timer) &&
3212 (nla_put_u64_64bit(skb, BRIDGE_QUERIER_IP_OTHER_TIMER,
3213 br_timer_value(&brmctx->ip4_other_query.timer),
3214 BRIDGE_QUERIER_PAD) ||
3215 (p && nla_put_u32(skb, BRIDGE_QUERIER_IP_PORT, p->dev->ifindex)))) {
3216 rcu_read_unlock();
3217 goto out_err;
3218 }
3219
3220 out_v6:
3221 #if IS_ENABLED(CONFIG_IPV6)
3222 if (!brmctx->multicast_querier &&
3223 !timer_pending(&brmctx->ip6_other_query.timer))
3224 goto out;
3225
3226 br_multicast_read_querier(&brmctx->ip6_querier, &querier);
3227 if (nla_put_in6_addr(skb, BRIDGE_QUERIER_IPV6_ADDRESS,
3228 &querier.addr.src.ip6)) {
3229 rcu_read_unlock();
3230 goto out_err;
3231 }
3232
3233 p = __br_multicast_get_querier_port(brmctx->br, &querier);
3234 if (timer_pending(&brmctx->ip6_other_query.timer) &&
3235 (nla_put_u64_64bit(skb, BRIDGE_QUERIER_IPV6_OTHER_TIMER,
3236 br_timer_value(&brmctx->ip6_other_query.timer),
3237 BRIDGE_QUERIER_PAD) ||
3238 (p && nla_put_u32(skb, BRIDGE_QUERIER_IPV6_PORT,
3239 p->dev->ifindex)))) {
3240 rcu_read_unlock();
3241 goto out_err;
3242 }
3243 out:
3244 #endif
3245 rcu_read_unlock();
3246 nla_nest_end(skb, nest);
3247 if (!nla_len(nest))
3248 nla_nest_cancel(skb, nest);
3249
3250 return 0;
3251
3252 out_err:
3253 nla_nest_cancel(skb, nest);
3254 return -EMSGSIZE;
3255 }
3256
3257 static void
br_multicast_update_query_timer(struct net_bridge_mcast * brmctx,struct bridge_mcast_other_query * query,unsigned long max_delay)3258 br_multicast_update_query_timer(struct net_bridge_mcast *brmctx,
3259 struct bridge_mcast_other_query *query,
3260 unsigned long max_delay)
3261 {
3262 if (!timer_pending(&query->timer))
3263 mod_timer(&query->delay_timer, jiffies + max_delay);
3264
3265 mod_timer(&query->timer, jiffies + brmctx->multicast_querier_interval);
3266 }
3267
br_port_mc_router_state_change(struct net_bridge_port * p,bool is_mc_router)3268 static void br_port_mc_router_state_change(struct net_bridge_port *p,
3269 bool is_mc_router)
3270 {
3271 struct switchdev_attr attr = {
3272 .orig_dev = p->dev,
3273 .id = SWITCHDEV_ATTR_ID_PORT_MROUTER,
3274 .flags = SWITCHDEV_F_DEFER,
3275 .u.mrouter = is_mc_router,
3276 };
3277
3278 switchdev_port_attr_set(p->dev, &attr, NULL);
3279 }
3280
3281 static struct net_bridge_port *
br_multicast_rport_from_node(struct net_bridge_mcast * brmctx,struct hlist_head * mc_router_list,struct hlist_node * rlist)3282 br_multicast_rport_from_node(struct net_bridge_mcast *brmctx,
3283 struct hlist_head *mc_router_list,
3284 struct hlist_node *rlist)
3285 {
3286 struct net_bridge_mcast_port *pmctx;
3287
3288 #if IS_ENABLED(CONFIG_IPV6)
3289 if (mc_router_list == &brmctx->ip6_mc_router_list)
3290 pmctx = hlist_entry(rlist, struct net_bridge_mcast_port,
3291 ip6_rlist);
3292 else
3293 #endif
3294 pmctx = hlist_entry(rlist, struct net_bridge_mcast_port,
3295 ip4_rlist);
3296
3297 return pmctx->port;
3298 }
3299
3300 static struct hlist_node *
br_multicast_get_rport_slot(struct net_bridge_mcast * brmctx,struct net_bridge_port * port,struct hlist_head * mc_router_list)3301 br_multicast_get_rport_slot(struct net_bridge_mcast *brmctx,
3302 struct net_bridge_port *port,
3303 struct hlist_head *mc_router_list)
3304
3305 {
3306 struct hlist_node *slot = NULL;
3307 struct net_bridge_port *p;
3308 struct hlist_node *rlist;
3309
3310 hlist_for_each(rlist, mc_router_list) {
3311 p = br_multicast_rport_from_node(brmctx, mc_router_list, rlist);
3312
3313 if ((unsigned long)port >= (unsigned long)p)
3314 break;
3315
3316 slot = rlist;
3317 }
3318
3319 return slot;
3320 }
3321
br_multicast_no_router_otherpf(struct net_bridge_mcast_port * pmctx,struct hlist_node * rnode)3322 static bool br_multicast_no_router_otherpf(struct net_bridge_mcast_port *pmctx,
3323 struct hlist_node *rnode)
3324 {
3325 #if IS_ENABLED(CONFIG_IPV6)
3326 if (rnode != &pmctx->ip6_rlist)
3327 return hlist_unhashed(&pmctx->ip6_rlist);
3328 else
3329 return hlist_unhashed(&pmctx->ip4_rlist);
3330 #else
3331 return true;
3332 #endif
3333 }
3334
3335 /* Add port to router_list
3336 * list is maintained ordered by pointer value
3337 * and locked by br->multicast_lock and RCU
3338 */
br_multicast_add_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct hlist_node * rlist,struct hlist_head * mc_router_list)3339 static void br_multicast_add_router(struct net_bridge_mcast *brmctx,
3340 struct net_bridge_mcast_port *pmctx,
3341 struct hlist_node *rlist,
3342 struct hlist_head *mc_router_list)
3343 {
3344 struct hlist_node *slot;
3345
3346 if (!hlist_unhashed(rlist))
3347 return;
3348
3349 slot = br_multicast_get_rport_slot(brmctx, pmctx->port, mc_router_list);
3350
3351 if (slot)
3352 hlist_add_behind_rcu(rlist, slot);
3353 else
3354 hlist_add_head_rcu(rlist, mc_router_list);
3355
3356 /* For backwards compatibility for now, only notify if we
3357 * switched from no IPv4/IPv6 multicast router to a new
3358 * IPv4 or IPv6 multicast router.
3359 */
3360 if (br_multicast_no_router_otherpf(pmctx, rlist)) {
3361 br_rtr_notify(pmctx->port->br->dev, pmctx, RTM_NEWMDB);
3362 br_port_mc_router_state_change(pmctx->port, true);
3363 }
3364 }
3365
3366 /* Add port to router_list
3367 * list is maintained ordered by pointer value
3368 * and locked by br->multicast_lock and RCU
3369 */
br_ip4_multicast_add_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx)3370 static void br_ip4_multicast_add_router(struct net_bridge_mcast *brmctx,
3371 struct net_bridge_mcast_port *pmctx)
3372 {
3373 br_multicast_add_router(brmctx, pmctx, &pmctx->ip4_rlist,
3374 &brmctx->ip4_mc_router_list);
3375 }
3376
3377 /* Add port to router_list
3378 * list is maintained ordered by pointer value
3379 * and locked by br->multicast_lock and RCU
3380 */
br_ip6_multicast_add_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx)3381 static void br_ip6_multicast_add_router(struct net_bridge_mcast *brmctx,
3382 struct net_bridge_mcast_port *pmctx)
3383 {
3384 #if IS_ENABLED(CONFIG_IPV6)
3385 br_multicast_add_router(brmctx, pmctx, &pmctx->ip6_rlist,
3386 &brmctx->ip6_mc_router_list);
3387 #endif
3388 }
3389
br_multicast_mark_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct timer_list * timer,struct hlist_node * rlist,struct hlist_head * mc_router_list)3390 static void br_multicast_mark_router(struct net_bridge_mcast *brmctx,
3391 struct net_bridge_mcast_port *pmctx,
3392 struct timer_list *timer,
3393 struct hlist_node *rlist,
3394 struct hlist_head *mc_router_list)
3395 {
3396 unsigned long now = jiffies;
3397
3398 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3399 return;
3400
3401 if (!pmctx) {
3402 if (brmctx->multicast_router == MDB_RTR_TYPE_TEMP_QUERY) {
3403 if (!br_ip4_multicast_is_router(brmctx) &&
3404 !br_ip6_multicast_is_router(brmctx))
3405 br_mc_router_state_change(brmctx->br, true);
3406 mod_timer(timer, now + brmctx->multicast_querier_interval);
3407 }
3408 return;
3409 }
3410
3411 if (pmctx->multicast_router == MDB_RTR_TYPE_DISABLED ||
3412 pmctx->multicast_router == MDB_RTR_TYPE_PERM)
3413 return;
3414
3415 br_multicast_add_router(brmctx, pmctx, rlist, mc_router_list);
3416 mod_timer(timer, now + brmctx->multicast_querier_interval);
3417 }
3418
br_ip4_multicast_mark_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx)3419 static void br_ip4_multicast_mark_router(struct net_bridge_mcast *brmctx,
3420 struct net_bridge_mcast_port *pmctx)
3421 {
3422 struct timer_list *timer = &brmctx->ip4_mc_router_timer;
3423 struct hlist_node *rlist = NULL;
3424
3425 if (pmctx) {
3426 timer = &pmctx->ip4_mc_router_timer;
3427 rlist = &pmctx->ip4_rlist;
3428 }
3429
3430 br_multicast_mark_router(brmctx, pmctx, timer, rlist,
3431 &brmctx->ip4_mc_router_list);
3432 }
3433
br_ip6_multicast_mark_router(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx)3434 static void br_ip6_multicast_mark_router(struct net_bridge_mcast *brmctx,
3435 struct net_bridge_mcast_port *pmctx)
3436 {
3437 #if IS_ENABLED(CONFIG_IPV6)
3438 struct timer_list *timer = &brmctx->ip6_mc_router_timer;
3439 struct hlist_node *rlist = NULL;
3440
3441 if (pmctx) {
3442 timer = &pmctx->ip6_mc_router_timer;
3443 rlist = &pmctx->ip6_rlist;
3444 }
3445
3446 br_multicast_mark_router(brmctx, pmctx, timer, rlist,
3447 &brmctx->ip6_mc_router_list);
3448 #endif
3449 }
3450
3451 static void
br_ip4_multicast_query_received(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct bridge_mcast_other_query * query,struct br_ip * saddr,unsigned long max_delay)3452 br_ip4_multicast_query_received(struct net_bridge_mcast *brmctx,
3453 struct net_bridge_mcast_port *pmctx,
3454 struct bridge_mcast_other_query *query,
3455 struct br_ip *saddr,
3456 unsigned long max_delay)
3457 {
3458 if (!br_multicast_select_querier(brmctx, pmctx, saddr))
3459 return;
3460
3461 br_multicast_update_query_timer(brmctx, query, max_delay);
3462 br_ip4_multicast_mark_router(brmctx, pmctx);
3463 }
3464
3465 #if IS_ENABLED(CONFIG_IPV6)
3466 static void
br_ip6_multicast_query_received(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct bridge_mcast_other_query * query,struct br_ip * saddr,unsigned long max_delay)3467 br_ip6_multicast_query_received(struct net_bridge_mcast *brmctx,
3468 struct net_bridge_mcast_port *pmctx,
3469 struct bridge_mcast_other_query *query,
3470 struct br_ip *saddr,
3471 unsigned long max_delay)
3472 {
3473 if (!br_multicast_select_querier(brmctx, pmctx, saddr))
3474 return;
3475
3476 br_multicast_update_query_timer(brmctx, query, max_delay);
3477 br_ip6_multicast_mark_router(brmctx, pmctx);
3478 }
3479 #endif
3480
br_ip4_multicast_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)3481 static void br_ip4_multicast_query(struct net_bridge_mcast *brmctx,
3482 struct net_bridge_mcast_port *pmctx,
3483 struct sk_buff *skb,
3484 u16 vid)
3485 {
3486 unsigned int transport_len = ip_transport_len(skb);
3487 const struct iphdr *iph = ip_hdr(skb);
3488 struct igmphdr *ih = igmp_hdr(skb);
3489 struct net_bridge_mdb_entry *mp;
3490 struct igmpv3_query *ih3;
3491 struct net_bridge_port_group *p;
3492 struct net_bridge_port_group __rcu **pp;
3493 struct br_ip saddr = {};
3494 unsigned long max_delay;
3495 unsigned long now = jiffies;
3496 __be32 group;
3497
3498 spin_lock(&brmctx->br->multicast_lock);
3499 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3500 goto out;
3501
3502 group = ih->group;
3503
3504 if (transport_len == sizeof(*ih)) {
3505 max_delay = ih->code * (HZ / IGMP_TIMER_SCALE);
3506
3507 if (!max_delay) {
3508 max_delay = 10 * HZ;
3509 group = 0;
3510 }
3511 } else if (transport_len >= sizeof(*ih3)) {
3512 ih3 = igmpv3_query_hdr(skb);
3513 if (ih3->nsrcs ||
3514 (brmctx->multicast_igmp_version == 3 && group &&
3515 ih3->suppress))
3516 goto out;
3517
3518 max_delay = ih3->code ?
3519 IGMPV3_MRC(ih3->code) * (HZ / IGMP_TIMER_SCALE) : 1;
3520 } else {
3521 goto out;
3522 }
3523
3524 if (!group) {
3525 saddr.proto = htons(ETH_P_IP);
3526 saddr.src.ip4 = iph->saddr;
3527
3528 br_ip4_multicast_query_received(brmctx, pmctx,
3529 &brmctx->ip4_other_query,
3530 &saddr, max_delay);
3531 goto out;
3532 }
3533
3534 mp = br_mdb_ip4_get(brmctx->br, group, vid);
3535 if (!mp)
3536 goto out;
3537
3538 max_delay *= brmctx->multicast_last_member_count;
3539
3540 if (mp->host_joined &&
3541 (timer_pending(&mp->timer) ?
3542 time_after(mp->timer.expires, now + max_delay) :
3543 try_to_del_timer_sync(&mp->timer) >= 0))
3544 mod_timer(&mp->timer, now + max_delay);
3545
3546 for (pp = &mp->ports;
3547 (p = mlock_dereference(*pp, brmctx->br)) != NULL;
3548 pp = &p->next) {
3549 if (timer_pending(&p->timer) ?
3550 time_after(p->timer.expires, now + max_delay) :
3551 try_to_del_timer_sync(&p->timer) >= 0 &&
3552 (brmctx->multicast_igmp_version == 2 ||
3553 p->filter_mode == MCAST_EXCLUDE))
3554 mod_timer(&p->timer, now + max_delay);
3555 }
3556
3557 out:
3558 spin_unlock(&brmctx->br->multicast_lock);
3559 }
3560
3561 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_query(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)3562 static int br_ip6_multicast_query(struct net_bridge_mcast *brmctx,
3563 struct net_bridge_mcast_port *pmctx,
3564 struct sk_buff *skb,
3565 u16 vid)
3566 {
3567 unsigned int transport_len = ipv6_transport_len(skb);
3568 struct mld_msg *mld;
3569 struct net_bridge_mdb_entry *mp;
3570 struct mld2_query *mld2q;
3571 struct net_bridge_port_group *p;
3572 struct net_bridge_port_group __rcu **pp;
3573 struct br_ip saddr = {};
3574 unsigned long max_delay;
3575 unsigned long now = jiffies;
3576 unsigned int offset = skb_transport_offset(skb);
3577 const struct in6_addr *group = NULL;
3578 bool is_general_query;
3579 int err = 0;
3580
3581 spin_lock(&brmctx->br->multicast_lock);
3582 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3583 goto out;
3584
3585 if (transport_len == sizeof(*mld)) {
3586 if (!pskb_may_pull(skb, offset + sizeof(*mld))) {
3587 err = -EINVAL;
3588 goto out;
3589 }
3590 mld = (struct mld_msg *) icmp6_hdr(skb);
3591 max_delay = msecs_to_jiffies(ntohs(mld->mld_maxdelay));
3592 if (max_delay)
3593 group = &mld->mld_mca;
3594 } else {
3595 if (!pskb_may_pull(skb, offset + sizeof(*mld2q))) {
3596 err = -EINVAL;
3597 goto out;
3598 }
3599 mld2q = (struct mld2_query *)icmp6_hdr(skb);
3600 if (!mld2q->mld2q_nsrcs)
3601 group = &mld2q->mld2q_mca;
3602 if (brmctx->multicast_mld_version == 2 &&
3603 !ipv6_addr_any(&mld2q->mld2q_mca) &&
3604 mld2q->mld2q_suppress)
3605 goto out;
3606
3607 max_delay = max(msecs_to_jiffies(mldv2_mrc(mld2q)), 1UL);
3608 }
3609
3610 is_general_query = group && ipv6_addr_any(group);
3611
3612 if (is_general_query) {
3613 saddr.proto = htons(ETH_P_IPV6);
3614 saddr.src.ip6 = ipv6_hdr(skb)->saddr;
3615
3616 br_ip6_multicast_query_received(brmctx, pmctx,
3617 &brmctx->ip6_other_query,
3618 &saddr, max_delay);
3619 goto out;
3620 } else if (!group) {
3621 goto out;
3622 }
3623
3624 mp = br_mdb_ip6_get(brmctx->br, group, vid);
3625 if (!mp)
3626 goto out;
3627
3628 max_delay *= brmctx->multicast_last_member_count;
3629 if (mp->host_joined &&
3630 (timer_pending(&mp->timer) ?
3631 time_after(mp->timer.expires, now + max_delay) :
3632 try_to_del_timer_sync(&mp->timer) >= 0))
3633 mod_timer(&mp->timer, now + max_delay);
3634
3635 for (pp = &mp->ports;
3636 (p = mlock_dereference(*pp, brmctx->br)) != NULL;
3637 pp = &p->next) {
3638 if (timer_pending(&p->timer) ?
3639 time_after(p->timer.expires, now + max_delay) :
3640 try_to_del_timer_sync(&p->timer) >= 0 &&
3641 (brmctx->multicast_mld_version == 1 ||
3642 p->filter_mode == MCAST_EXCLUDE))
3643 mod_timer(&p->timer, now + max_delay);
3644 }
3645
3646 out:
3647 spin_unlock(&brmctx->br->multicast_lock);
3648 return err;
3649 }
3650 #endif
3651
3652 static void
br_multicast_leave_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct br_ip * group,struct bridge_mcast_other_query * other_query,struct bridge_mcast_own_query * own_query,const unsigned char * src)3653 br_multicast_leave_group(struct net_bridge_mcast *brmctx,
3654 struct net_bridge_mcast_port *pmctx,
3655 struct br_ip *group,
3656 struct bridge_mcast_other_query *other_query,
3657 struct bridge_mcast_own_query *own_query,
3658 const unsigned char *src)
3659 {
3660 struct net_bridge_mdb_entry *mp;
3661 struct net_bridge_port_group *p;
3662 unsigned long now;
3663 unsigned long time;
3664
3665 spin_lock(&brmctx->br->multicast_lock);
3666 if (!br_multicast_ctx_should_use(brmctx, pmctx))
3667 goto out;
3668
3669 mp = br_mdb_ip_get(brmctx->br, group);
3670 if (!mp)
3671 goto out;
3672
3673 if (pmctx && (pmctx->port->flags & BR_MULTICAST_FAST_LEAVE)) {
3674 struct net_bridge_port_group __rcu **pp;
3675
3676 for (pp = &mp->ports;
3677 (p = mlock_dereference(*pp, brmctx->br)) != NULL;
3678 pp = &p->next) {
3679 if (!br_port_group_equal(p, pmctx->port, src))
3680 continue;
3681
3682 if (p->flags & MDB_PG_FLAGS_PERMANENT)
3683 break;
3684
3685 p->flags |= MDB_PG_FLAGS_FAST_LEAVE;
3686 br_multicast_del_pg(mp, p, pp);
3687 }
3688 goto out;
3689 }
3690
3691 if (timer_pending(&other_query->timer))
3692 goto out;
3693
3694 if (brmctx->multicast_querier) {
3695 __br_multicast_send_query(brmctx, pmctx, NULL, NULL, &mp->addr,
3696 false, 0, NULL);
3697
3698 time = jiffies + brmctx->multicast_last_member_count *
3699 brmctx->multicast_last_member_interval;
3700
3701 mod_timer(&own_query->timer, time);
3702
3703 for (p = mlock_dereference(mp->ports, brmctx->br);
3704 p != NULL && pmctx != NULL;
3705 p = mlock_dereference(p->next, brmctx->br)) {
3706 if (!br_port_group_equal(p, pmctx->port, src))
3707 continue;
3708
3709 if (!hlist_unhashed(&p->mglist) &&
3710 (timer_pending(&p->timer) ?
3711 time_after(p->timer.expires, time) :
3712 try_to_del_timer_sync(&p->timer) >= 0)) {
3713 mod_timer(&p->timer, time);
3714 }
3715
3716 break;
3717 }
3718 }
3719
3720 now = jiffies;
3721 time = now + brmctx->multicast_last_member_count *
3722 brmctx->multicast_last_member_interval;
3723
3724 if (!pmctx) {
3725 if (mp->host_joined &&
3726 (timer_pending(&mp->timer) ?
3727 time_after(mp->timer.expires, time) :
3728 try_to_del_timer_sync(&mp->timer) >= 0)) {
3729 mod_timer(&mp->timer, time);
3730 }
3731
3732 goto out;
3733 }
3734
3735 for (p = mlock_dereference(mp->ports, brmctx->br);
3736 p != NULL;
3737 p = mlock_dereference(p->next, brmctx->br)) {
3738 if (p->key.port != pmctx->port)
3739 continue;
3740
3741 if (!hlist_unhashed(&p->mglist) &&
3742 (timer_pending(&p->timer) ?
3743 time_after(p->timer.expires, time) :
3744 try_to_del_timer_sync(&p->timer) >= 0)) {
3745 mod_timer(&p->timer, time);
3746 }
3747
3748 break;
3749 }
3750 out:
3751 spin_unlock(&brmctx->br->multicast_lock);
3752 }
3753
br_ip4_multicast_leave_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,__be32 group,__u16 vid,const unsigned char * src)3754 static void br_ip4_multicast_leave_group(struct net_bridge_mcast *brmctx,
3755 struct net_bridge_mcast_port *pmctx,
3756 __be32 group,
3757 __u16 vid,
3758 const unsigned char *src)
3759 {
3760 struct br_ip br_group;
3761 struct bridge_mcast_own_query *own_query;
3762
3763 if (ipv4_is_local_multicast(group))
3764 return;
3765
3766 own_query = pmctx ? &pmctx->ip4_own_query : &brmctx->ip4_own_query;
3767
3768 memset(&br_group, 0, sizeof(br_group));
3769 br_group.dst.ip4 = group;
3770 br_group.proto = htons(ETH_P_IP);
3771 br_group.vid = vid;
3772
3773 br_multicast_leave_group(brmctx, pmctx, &br_group,
3774 &brmctx->ip4_other_query,
3775 own_query, src);
3776 }
3777
3778 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_leave_group(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,const struct in6_addr * group,__u16 vid,const unsigned char * src)3779 static void br_ip6_multicast_leave_group(struct net_bridge_mcast *brmctx,
3780 struct net_bridge_mcast_port *pmctx,
3781 const struct in6_addr *group,
3782 __u16 vid,
3783 const unsigned char *src)
3784 {
3785 struct br_ip br_group;
3786 struct bridge_mcast_own_query *own_query;
3787
3788 if (ipv6_addr_is_ll_all_nodes(group))
3789 return;
3790
3791 own_query = pmctx ? &pmctx->ip6_own_query : &brmctx->ip6_own_query;
3792
3793 memset(&br_group, 0, sizeof(br_group));
3794 br_group.dst.ip6 = *group;
3795 br_group.proto = htons(ETH_P_IPV6);
3796 br_group.vid = vid;
3797
3798 br_multicast_leave_group(brmctx, pmctx, &br_group,
3799 &brmctx->ip6_other_query,
3800 own_query, src);
3801 }
3802 #endif
3803
br_multicast_err_count(const struct net_bridge * br,const struct net_bridge_port * p,__be16 proto)3804 static void br_multicast_err_count(const struct net_bridge *br,
3805 const struct net_bridge_port *p,
3806 __be16 proto)
3807 {
3808 struct bridge_mcast_stats __percpu *stats;
3809 struct bridge_mcast_stats *pstats;
3810
3811 if (!br_opt_get(br, BROPT_MULTICAST_STATS_ENABLED))
3812 return;
3813
3814 if (p)
3815 stats = p->mcast_stats;
3816 else
3817 stats = br->mcast_stats;
3818 if (WARN_ON(!stats))
3819 return;
3820
3821 pstats = this_cpu_ptr(stats);
3822
3823 u64_stats_update_begin(&pstats->syncp);
3824 switch (proto) {
3825 case htons(ETH_P_IP):
3826 pstats->mstats.igmp_parse_errors++;
3827 break;
3828 #if IS_ENABLED(CONFIG_IPV6)
3829 case htons(ETH_P_IPV6):
3830 pstats->mstats.mld_parse_errors++;
3831 break;
3832 #endif
3833 }
3834 u64_stats_update_end(&pstats->syncp);
3835 }
3836
br_multicast_pim(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,const struct sk_buff * skb)3837 static void br_multicast_pim(struct net_bridge_mcast *brmctx,
3838 struct net_bridge_mcast_port *pmctx,
3839 const struct sk_buff *skb)
3840 {
3841 unsigned int offset = skb_transport_offset(skb);
3842 struct pimhdr *pimhdr, _pimhdr;
3843
3844 pimhdr = skb_header_pointer(skb, offset, sizeof(_pimhdr), &_pimhdr);
3845 if (!pimhdr || pim_hdr_version(pimhdr) != PIM_VERSION ||
3846 pim_hdr_type(pimhdr) != PIM_TYPE_HELLO)
3847 return;
3848
3849 spin_lock(&brmctx->br->multicast_lock);
3850 br_ip4_multicast_mark_router(brmctx, pmctx);
3851 spin_unlock(&brmctx->br->multicast_lock);
3852 }
3853
br_ip4_multicast_mrd_rcv(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb)3854 static int br_ip4_multicast_mrd_rcv(struct net_bridge_mcast *brmctx,
3855 struct net_bridge_mcast_port *pmctx,
3856 struct sk_buff *skb)
3857 {
3858 if (ip_hdr(skb)->protocol != IPPROTO_IGMP ||
3859 igmp_hdr(skb)->type != IGMP_MRDISC_ADV)
3860 return -ENOMSG;
3861
3862 spin_lock(&brmctx->br->multicast_lock);
3863 br_ip4_multicast_mark_router(brmctx, pmctx);
3864 spin_unlock(&brmctx->br->multicast_lock);
3865
3866 return 0;
3867 }
3868
br_multicast_ipv4_rcv(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)3869 static int br_multicast_ipv4_rcv(struct net_bridge_mcast *brmctx,
3870 struct net_bridge_mcast_port *pmctx,
3871 struct sk_buff *skb,
3872 u16 vid)
3873 {
3874 struct net_bridge_port *p = pmctx ? pmctx->port : NULL;
3875 const unsigned char *src;
3876 struct igmphdr *ih;
3877 int err;
3878
3879 err = ip_mc_check_igmp(skb);
3880
3881 if (err == -ENOMSG) {
3882 if (!ipv4_is_local_multicast(ip_hdr(skb)->daddr)) {
3883 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
3884 } else if (pim_ipv4_all_pim_routers(ip_hdr(skb)->daddr)) {
3885 if (ip_hdr(skb)->protocol == IPPROTO_PIM)
3886 br_multicast_pim(brmctx, pmctx, skb);
3887 } else if (ipv4_is_all_snoopers(ip_hdr(skb)->daddr)) {
3888 br_ip4_multicast_mrd_rcv(brmctx, pmctx, skb);
3889 }
3890
3891 return 0;
3892 } else if (err < 0) {
3893 br_multicast_err_count(brmctx->br, p, skb->protocol);
3894 return err;
3895 }
3896
3897 ih = igmp_hdr(skb);
3898 src = eth_hdr(skb)->h_source;
3899 BR_INPUT_SKB_CB(skb)->igmp = ih->type;
3900
3901 switch (ih->type) {
3902 case IGMP_HOST_MEMBERSHIP_REPORT:
3903 case IGMPV2_HOST_MEMBERSHIP_REPORT:
3904 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
3905 err = br_ip4_multicast_add_group(brmctx, pmctx, ih->group, vid,
3906 src, true);
3907 break;
3908 case IGMPV3_HOST_MEMBERSHIP_REPORT:
3909 err = br_ip4_multicast_igmp3_report(brmctx, pmctx, skb, vid);
3910 break;
3911 case IGMP_HOST_MEMBERSHIP_QUERY:
3912 br_ip4_multicast_query(brmctx, pmctx, skb, vid);
3913 break;
3914 case IGMP_HOST_LEAVE_MESSAGE:
3915 br_ip4_multicast_leave_group(brmctx, pmctx, ih->group, vid, src);
3916 break;
3917 }
3918
3919 br_multicast_count(brmctx->br, p, skb, BR_INPUT_SKB_CB(skb)->igmp,
3920 BR_MCAST_DIR_RX);
3921
3922 return err;
3923 }
3924
3925 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_mrd_rcv(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb)3926 static void br_ip6_multicast_mrd_rcv(struct net_bridge_mcast *brmctx,
3927 struct net_bridge_mcast_port *pmctx,
3928 struct sk_buff *skb)
3929 {
3930 if (icmp6_hdr(skb)->icmp6_type != ICMPV6_MRDISC_ADV)
3931 return;
3932
3933 spin_lock(&brmctx->br->multicast_lock);
3934 br_ip6_multicast_mark_router(brmctx, pmctx);
3935 spin_unlock(&brmctx->br->multicast_lock);
3936 }
3937
br_multicast_ipv6_rcv(struct net_bridge_mcast * brmctx,struct net_bridge_mcast_port * pmctx,struct sk_buff * skb,u16 vid)3938 static int br_multicast_ipv6_rcv(struct net_bridge_mcast *brmctx,
3939 struct net_bridge_mcast_port *pmctx,
3940 struct sk_buff *skb,
3941 u16 vid)
3942 {
3943 struct net_bridge_port *p = pmctx ? pmctx->port : NULL;
3944 const unsigned char *src;
3945 struct mld_msg *mld;
3946 int err;
3947
3948 err = ipv6_mc_check_mld(skb);
3949
3950 if (err == -ENOMSG || err == -ENODATA) {
3951 if (!ipv6_addr_is_ll_all_nodes(&ipv6_hdr(skb)->daddr))
3952 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
3953 if (err == -ENODATA &&
3954 ipv6_addr_is_all_snoopers(&ipv6_hdr(skb)->daddr))
3955 br_ip6_multicast_mrd_rcv(brmctx, pmctx, skb);
3956
3957 return 0;
3958 } else if (err < 0) {
3959 br_multicast_err_count(brmctx->br, p, skb->protocol);
3960 return err;
3961 }
3962
3963 mld = (struct mld_msg *)skb_transport_header(skb);
3964 BR_INPUT_SKB_CB(skb)->igmp = mld->mld_type;
3965
3966 switch (mld->mld_type) {
3967 case ICMPV6_MGM_REPORT:
3968 src = eth_hdr(skb)->h_source;
3969 BR_INPUT_SKB_CB(skb)->mrouters_only = 1;
3970 err = br_ip6_multicast_add_group(brmctx, pmctx, &mld->mld_mca,
3971 vid, src, true);
3972 break;
3973 case ICMPV6_MLD2_REPORT:
3974 err = br_ip6_multicast_mld2_report(brmctx, pmctx, skb, vid);
3975 break;
3976 case ICMPV6_MGM_QUERY:
3977 err = br_ip6_multicast_query(brmctx, pmctx, skb, vid);
3978 break;
3979 case ICMPV6_MGM_REDUCTION:
3980 src = eth_hdr(skb)->h_source;
3981 br_ip6_multicast_leave_group(brmctx, pmctx, &mld->mld_mca, vid,
3982 src);
3983 break;
3984 }
3985
3986 br_multicast_count(brmctx->br, p, skb, BR_INPUT_SKB_CB(skb)->igmp,
3987 BR_MCAST_DIR_RX);
3988
3989 return err;
3990 }
3991 #endif
3992
br_multicast_rcv(struct net_bridge_mcast ** brmctx,struct net_bridge_mcast_port ** pmctx,struct net_bridge_vlan * vlan,struct sk_buff * skb,u16 vid)3993 int br_multicast_rcv(struct net_bridge_mcast **brmctx,
3994 struct net_bridge_mcast_port **pmctx,
3995 struct net_bridge_vlan *vlan,
3996 struct sk_buff *skb, u16 vid)
3997 {
3998 int ret = 0;
3999
4000 BR_INPUT_SKB_CB(skb)->igmp = 0;
4001 BR_INPUT_SKB_CB(skb)->mrouters_only = 0;
4002
4003 if (!br_opt_get((*brmctx)->br, BROPT_MULTICAST_ENABLED))
4004 return 0;
4005
4006 if (br_opt_get((*brmctx)->br, BROPT_MCAST_VLAN_SNOOPING_ENABLED) && vlan) {
4007 const struct net_bridge_vlan *masterv;
4008
4009 /* the vlan has the master flag set only when transmitting
4010 * through the bridge device
4011 */
4012 if (br_vlan_is_master(vlan)) {
4013 masterv = vlan;
4014 *brmctx = &vlan->br_mcast_ctx;
4015 *pmctx = NULL;
4016 } else {
4017 masterv = vlan->brvlan;
4018 *brmctx = &vlan->brvlan->br_mcast_ctx;
4019 *pmctx = &vlan->port_mcast_ctx;
4020 }
4021
4022 if (!(masterv->priv_flags & BR_VLFLAG_GLOBAL_MCAST_ENABLED))
4023 return 0;
4024 }
4025
4026 switch (skb->protocol) {
4027 case htons(ETH_P_IP):
4028 ret = br_multicast_ipv4_rcv(*brmctx, *pmctx, skb, vid);
4029 break;
4030 #if IS_ENABLED(CONFIG_IPV6)
4031 case htons(ETH_P_IPV6):
4032 ret = br_multicast_ipv6_rcv(*brmctx, *pmctx, skb, vid);
4033 break;
4034 #endif
4035 }
4036
4037 return ret;
4038 }
4039
br_multicast_query_expired(struct net_bridge_mcast * brmctx,struct bridge_mcast_own_query * query,struct bridge_mcast_querier * querier)4040 static void br_multicast_query_expired(struct net_bridge_mcast *brmctx,
4041 struct bridge_mcast_own_query *query,
4042 struct bridge_mcast_querier *querier)
4043 {
4044 spin_lock(&brmctx->br->multicast_lock);
4045 if (br_multicast_ctx_vlan_disabled(brmctx))
4046 goto out;
4047
4048 if (query->startup_sent < brmctx->multicast_startup_query_count)
4049 query->startup_sent++;
4050
4051 br_multicast_send_query(brmctx, NULL, query);
4052 out:
4053 spin_unlock(&brmctx->br->multicast_lock);
4054 }
4055
br_ip4_multicast_query_expired(struct timer_list * t)4056 static void br_ip4_multicast_query_expired(struct timer_list *t)
4057 {
4058 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
4059 ip4_own_query.timer);
4060
4061 br_multicast_query_expired(brmctx, &brmctx->ip4_own_query,
4062 &brmctx->ip4_querier);
4063 }
4064
4065 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_query_expired(struct timer_list * t)4066 static void br_ip6_multicast_query_expired(struct timer_list *t)
4067 {
4068 struct net_bridge_mcast *brmctx = from_timer(brmctx, t,
4069 ip6_own_query.timer);
4070
4071 br_multicast_query_expired(brmctx, &brmctx->ip6_own_query,
4072 &brmctx->ip6_querier);
4073 }
4074 #endif
4075
br_multicast_gc_work(struct work_struct * work)4076 static void br_multicast_gc_work(struct work_struct *work)
4077 {
4078 struct net_bridge *br = container_of(work, struct net_bridge,
4079 mcast_gc_work);
4080 HLIST_HEAD(deleted_head);
4081
4082 spin_lock_bh(&br->multicast_lock);
4083 hlist_move_list(&br->mcast_gc_list, &deleted_head);
4084 spin_unlock_bh(&br->multicast_lock);
4085
4086 br_multicast_gc(&deleted_head);
4087 }
4088
br_multicast_ctx_init(struct net_bridge * br,struct net_bridge_vlan * vlan,struct net_bridge_mcast * brmctx)4089 void br_multicast_ctx_init(struct net_bridge *br,
4090 struct net_bridge_vlan *vlan,
4091 struct net_bridge_mcast *brmctx)
4092 {
4093 brmctx->br = br;
4094 brmctx->vlan = vlan;
4095 brmctx->multicast_router = MDB_RTR_TYPE_TEMP_QUERY;
4096 brmctx->multicast_last_member_count = 2;
4097 brmctx->multicast_startup_query_count = 2;
4098
4099 brmctx->multicast_last_member_interval = HZ;
4100 brmctx->multicast_query_response_interval = 10 * HZ;
4101 brmctx->multicast_startup_query_interval = 125 * HZ / 4;
4102 brmctx->multicast_query_interval = 125 * HZ;
4103 brmctx->multicast_querier_interval = 255 * HZ;
4104 brmctx->multicast_membership_interval = 260 * HZ;
4105
4106 brmctx->ip4_querier.port_ifidx = 0;
4107 seqcount_spinlock_init(&brmctx->ip4_querier.seq, &br->multicast_lock);
4108 brmctx->multicast_igmp_version = 2;
4109 #if IS_ENABLED(CONFIG_IPV6)
4110 brmctx->multicast_mld_version = 1;
4111 brmctx->ip6_querier.port_ifidx = 0;
4112 seqcount_spinlock_init(&brmctx->ip6_querier.seq, &br->multicast_lock);
4113 #endif
4114
4115 timer_setup(&brmctx->ip4_mc_router_timer,
4116 br_ip4_multicast_local_router_expired, 0);
4117 timer_setup(&brmctx->ip4_other_query.timer,
4118 br_ip4_multicast_querier_expired, 0);
4119 timer_setup(&brmctx->ip4_other_query.delay_timer,
4120 br_multicast_query_delay_expired, 0);
4121 timer_setup(&brmctx->ip4_own_query.timer,
4122 br_ip4_multicast_query_expired, 0);
4123 #if IS_ENABLED(CONFIG_IPV6)
4124 timer_setup(&brmctx->ip6_mc_router_timer,
4125 br_ip6_multicast_local_router_expired, 0);
4126 timer_setup(&brmctx->ip6_other_query.timer,
4127 br_ip6_multicast_querier_expired, 0);
4128 timer_setup(&brmctx->ip6_other_query.delay_timer,
4129 br_multicast_query_delay_expired, 0);
4130 timer_setup(&brmctx->ip6_own_query.timer,
4131 br_ip6_multicast_query_expired, 0);
4132 #endif
4133 }
4134
br_multicast_ctx_deinit(struct net_bridge_mcast * brmctx)4135 void br_multicast_ctx_deinit(struct net_bridge_mcast *brmctx)
4136 {
4137 __br_multicast_stop(brmctx);
4138 }
4139
br_multicast_init(struct net_bridge * br)4140 void br_multicast_init(struct net_bridge *br)
4141 {
4142 br->hash_max = BR_MULTICAST_DEFAULT_HASH_MAX;
4143
4144 br_multicast_ctx_init(br, NULL, &br->multicast_ctx);
4145
4146 br_opt_toggle(br, BROPT_MULTICAST_ENABLED, true);
4147 br_opt_toggle(br, BROPT_HAS_IPV6_ADDR, true);
4148
4149 spin_lock_init(&br->multicast_lock);
4150 INIT_HLIST_HEAD(&br->mdb_list);
4151 INIT_HLIST_HEAD(&br->mcast_gc_list);
4152 INIT_WORK(&br->mcast_gc_work, br_multicast_gc_work);
4153 }
4154
br_ip4_multicast_join_snoopers(struct net_bridge * br)4155 static void br_ip4_multicast_join_snoopers(struct net_bridge *br)
4156 {
4157 struct in_device *in_dev = in_dev_get(br->dev);
4158
4159 if (!in_dev)
4160 return;
4161
4162 __ip_mc_inc_group(in_dev, htonl(INADDR_ALLSNOOPERS_GROUP), GFP_ATOMIC);
4163 in_dev_put(in_dev);
4164 }
4165
4166 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_join_snoopers(struct net_bridge * br)4167 static void br_ip6_multicast_join_snoopers(struct net_bridge *br)
4168 {
4169 struct in6_addr addr;
4170
4171 ipv6_addr_set(&addr, htonl(0xff020000), 0, 0, htonl(0x6a));
4172 ipv6_dev_mc_inc(br->dev, &addr);
4173 }
4174 #else
br_ip6_multicast_join_snoopers(struct net_bridge * br)4175 static inline void br_ip6_multicast_join_snoopers(struct net_bridge *br)
4176 {
4177 }
4178 #endif
4179
br_multicast_join_snoopers(struct net_bridge * br)4180 void br_multicast_join_snoopers(struct net_bridge *br)
4181 {
4182 br_ip4_multicast_join_snoopers(br);
4183 br_ip6_multicast_join_snoopers(br);
4184 }
4185
br_ip4_multicast_leave_snoopers(struct net_bridge * br)4186 static void br_ip4_multicast_leave_snoopers(struct net_bridge *br)
4187 {
4188 struct in_device *in_dev = in_dev_get(br->dev);
4189
4190 if (WARN_ON(!in_dev))
4191 return;
4192
4193 __ip_mc_dec_group(in_dev, htonl(INADDR_ALLSNOOPERS_GROUP), GFP_ATOMIC);
4194 in_dev_put(in_dev);
4195 }
4196
4197 #if IS_ENABLED(CONFIG_IPV6)
br_ip6_multicast_leave_snoopers(struct net_bridge * br)4198 static void br_ip6_multicast_leave_snoopers(struct net_bridge *br)
4199 {
4200 struct in6_addr addr;
4201
4202 ipv6_addr_set(&addr, htonl(0xff020000), 0, 0, htonl(0x6a));
4203 ipv6_dev_mc_dec(br->dev, &addr);
4204 }
4205 #else
br_ip6_multicast_leave_snoopers(struct net_bridge * br)4206 static inline void br_ip6_multicast_leave_snoopers(struct net_bridge *br)
4207 {
4208 }
4209 #endif
4210
br_multicast_leave_snoopers(struct net_bridge * br)4211 void br_multicast_leave_snoopers(struct net_bridge *br)
4212 {
4213 br_ip4_multicast_leave_snoopers(br);
4214 br_ip6_multicast_leave_snoopers(br);
4215 }
4216
__br_multicast_open_query(struct net_bridge * br,struct bridge_mcast_own_query * query)4217 static void __br_multicast_open_query(struct net_bridge *br,
4218 struct bridge_mcast_own_query *query)
4219 {
4220 query->startup_sent = 0;
4221
4222 if (!br_opt_get(br, BROPT_MULTICAST_ENABLED))
4223 return;
4224
4225 mod_timer(&query->timer, jiffies);
4226 }
4227
__br_multicast_open(struct net_bridge_mcast * brmctx)4228 static void __br_multicast_open(struct net_bridge_mcast *brmctx)
4229 {
4230 __br_multicast_open_query(brmctx->br, &brmctx->ip4_own_query);
4231 #if IS_ENABLED(CONFIG_IPV6)
4232 __br_multicast_open_query(brmctx->br, &brmctx->ip6_own_query);
4233 #endif
4234 }
4235
br_multicast_open(struct net_bridge * br)4236 void br_multicast_open(struct net_bridge *br)
4237 {
4238 ASSERT_RTNL();
4239
4240 if (br_opt_get(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED)) {
4241 struct net_bridge_vlan_group *vg;
4242 struct net_bridge_vlan *vlan;
4243
4244 vg = br_vlan_group(br);
4245 if (vg) {
4246 list_for_each_entry(vlan, &vg->vlan_list, vlist) {
4247 struct net_bridge_mcast *brmctx;
4248
4249 brmctx = &vlan->br_mcast_ctx;
4250 if (br_vlan_is_brentry(vlan) &&
4251 !br_multicast_ctx_vlan_disabled(brmctx))
4252 __br_multicast_open(&vlan->br_mcast_ctx);
4253 }
4254 }
4255 } else {
4256 __br_multicast_open(&br->multicast_ctx);
4257 }
4258 }
4259
__br_multicast_stop(struct net_bridge_mcast * brmctx)4260 static void __br_multicast_stop(struct net_bridge_mcast *brmctx)
4261 {
4262 del_timer_sync(&brmctx->ip4_mc_router_timer);
4263 del_timer_sync(&brmctx->ip4_other_query.timer);
4264 del_timer_sync(&brmctx->ip4_other_query.delay_timer);
4265 del_timer_sync(&brmctx->ip4_own_query.timer);
4266 #if IS_ENABLED(CONFIG_IPV6)
4267 del_timer_sync(&brmctx->ip6_mc_router_timer);
4268 del_timer_sync(&brmctx->ip6_other_query.timer);
4269 del_timer_sync(&brmctx->ip6_other_query.delay_timer);
4270 del_timer_sync(&brmctx->ip6_own_query.timer);
4271 #endif
4272 }
4273
br_multicast_update_vlan_mcast_ctx(struct net_bridge_vlan * v,u8 state)4274 void br_multicast_update_vlan_mcast_ctx(struct net_bridge_vlan *v, u8 state)
4275 {
4276 #if IS_ENABLED(CONFIG_BRIDGE_VLAN_FILTERING)
4277 struct net_bridge *br;
4278
4279 if (!br_vlan_should_use(v))
4280 return;
4281
4282 if (br_vlan_is_master(v))
4283 return;
4284
4285 br = v->port->br;
4286
4287 if (!br_opt_get(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED))
4288 return;
4289
4290 if (br_vlan_state_allowed(state, true))
4291 br_multicast_enable_port_ctx(&v->port_mcast_ctx);
4292
4293 /* Multicast is not disabled for the vlan when it goes in
4294 * blocking state because the timers will expire and stop by
4295 * themselves without sending more queries.
4296 */
4297 #endif
4298 }
4299
br_multicast_toggle_one_vlan(struct net_bridge_vlan * vlan,bool on)4300 void br_multicast_toggle_one_vlan(struct net_bridge_vlan *vlan, bool on)
4301 {
4302 struct net_bridge *br;
4303
4304 /* it's okay to check for the flag without the multicast lock because it
4305 * can only change under RTNL -> multicast_lock, we need the latter to
4306 * sync with timers and packets
4307 */
4308 if (on == !!(vlan->priv_flags & BR_VLFLAG_MCAST_ENABLED))
4309 return;
4310
4311 if (br_vlan_is_master(vlan)) {
4312 br = vlan->br;
4313
4314 if (!br_vlan_is_brentry(vlan) ||
4315 (on &&
4316 br_multicast_ctx_vlan_global_disabled(&vlan->br_mcast_ctx)))
4317 return;
4318
4319 spin_lock_bh(&br->multicast_lock);
4320 vlan->priv_flags ^= BR_VLFLAG_MCAST_ENABLED;
4321 spin_unlock_bh(&br->multicast_lock);
4322
4323 if (on)
4324 __br_multicast_open(&vlan->br_mcast_ctx);
4325 else
4326 __br_multicast_stop(&vlan->br_mcast_ctx);
4327 } else {
4328 struct net_bridge_mcast *brmctx;
4329
4330 brmctx = br_multicast_port_ctx_get_global(&vlan->port_mcast_ctx);
4331 if (on && br_multicast_ctx_vlan_global_disabled(brmctx))
4332 return;
4333
4334 br = vlan->port->br;
4335 spin_lock_bh(&br->multicast_lock);
4336 vlan->priv_flags ^= BR_VLFLAG_MCAST_ENABLED;
4337 if (on)
4338 __br_multicast_enable_port_ctx(&vlan->port_mcast_ctx);
4339 else
4340 __br_multicast_disable_port_ctx(&vlan->port_mcast_ctx);
4341 spin_unlock_bh(&br->multicast_lock);
4342 }
4343 }
4344
br_multicast_toggle_vlan(struct net_bridge_vlan * vlan,bool on)4345 static void br_multicast_toggle_vlan(struct net_bridge_vlan *vlan, bool on)
4346 {
4347 struct net_bridge_port *p;
4348
4349 if (WARN_ON_ONCE(!br_vlan_is_master(vlan)))
4350 return;
4351
4352 list_for_each_entry(p, &vlan->br->port_list, list) {
4353 struct net_bridge_vlan *vport;
4354
4355 vport = br_vlan_find(nbp_vlan_group(p), vlan->vid);
4356 if (!vport)
4357 continue;
4358 br_multicast_toggle_one_vlan(vport, on);
4359 }
4360
4361 if (br_vlan_is_brentry(vlan))
4362 br_multicast_toggle_one_vlan(vlan, on);
4363 }
4364
br_multicast_toggle_vlan_snooping(struct net_bridge * br,bool on,struct netlink_ext_ack * extack)4365 int br_multicast_toggle_vlan_snooping(struct net_bridge *br, bool on,
4366 struct netlink_ext_ack *extack)
4367 {
4368 struct net_bridge_vlan_group *vg;
4369 struct net_bridge_vlan *vlan;
4370 struct net_bridge_port *p;
4371
4372 if (br_opt_get(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED) == on)
4373 return 0;
4374
4375 if (on && !br_opt_get(br, BROPT_VLAN_ENABLED)) {
4376 NL_SET_ERR_MSG_MOD(extack, "Cannot enable multicast vlan snooping with vlan filtering disabled");
4377 return -EINVAL;
4378 }
4379
4380 vg = br_vlan_group(br);
4381 if (!vg)
4382 return 0;
4383
4384 br_opt_toggle(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED, on);
4385
4386 /* disable/enable non-vlan mcast contexts based on vlan snooping */
4387 if (on)
4388 __br_multicast_stop(&br->multicast_ctx);
4389 else
4390 __br_multicast_open(&br->multicast_ctx);
4391 list_for_each_entry(p, &br->port_list, list) {
4392 if (on)
4393 br_multicast_disable_port_ctx(&p->multicast_ctx);
4394 else
4395 br_multicast_enable_port_ctx(&p->multicast_ctx);
4396 }
4397
4398 list_for_each_entry(vlan, &vg->vlan_list, vlist)
4399 br_multicast_toggle_vlan(vlan, on);
4400
4401 return 0;
4402 }
4403
br_multicast_toggle_global_vlan(struct net_bridge_vlan * vlan,bool on)4404 bool br_multicast_toggle_global_vlan(struct net_bridge_vlan *vlan, bool on)
4405 {
4406 ASSERT_RTNL();
4407
4408 /* BR_VLFLAG_GLOBAL_MCAST_ENABLED relies on eventual consistency and
4409 * requires only RTNL to change
4410 */
4411 if (on == !!(vlan->priv_flags & BR_VLFLAG_GLOBAL_MCAST_ENABLED))
4412 return false;
4413
4414 vlan->priv_flags ^= BR_VLFLAG_GLOBAL_MCAST_ENABLED;
4415 br_multicast_toggle_vlan(vlan, on);
4416
4417 return true;
4418 }
4419
br_multicast_stop(struct net_bridge * br)4420 void br_multicast_stop(struct net_bridge *br)
4421 {
4422 ASSERT_RTNL();
4423
4424 if (br_opt_get(br, BROPT_MCAST_VLAN_SNOOPING_ENABLED)) {
4425 struct net_bridge_vlan_group *vg;
4426 struct net_bridge_vlan *vlan;
4427
4428 vg = br_vlan_group(br);
4429 if (vg) {
4430 list_for_each_entry(vlan, &vg->vlan_list, vlist) {
4431 struct net_bridge_mcast *brmctx;
4432
4433 brmctx = &vlan->br_mcast_ctx;
4434 if (br_vlan_is_brentry(vlan) &&
4435 !br_multicast_ctx_vlan_disabled(brmctx))
4436 __br_multicast_stop(&vlan->br_mcast_ctx);
4437 }
4438 }
4439 } else {
4440 __br_multicast_stop(&br->multicast_ctx);
4441 }
4442 }
4443
br_multicast_dev_del(struct net_bridge * br)4444 void br_multicast_dev_del(struct net_bridge *br)
4445 {
4446 struct net_bridge_mdb_entry *mp;
4447 HLIST_HEAD(deleted_head);
4448 struct hlist_node *tmp;
4449
4450 spin_lock_bh(&br->multicast_lock);
4451 hlist_for_each_entry_safe(mp, tmp, &br->mdb_list, mdb_node)
4452 br_multicast_del_mdb_entry(mp);
4453 hlist_move_list(&br->mcast_gc_list, &deleted_head);
4454 spin_unlock_bh(&br->multicast_lock);
4455
4456 br_multicast_ctx_deinit(&br->multicast_ctx);
4457 br_multicast_gc(&deleted_head);
4458 cancel_work_sync(&br->mcast_gc_work);
4459
4460 rcu_barrier();
4461 }
4462
br_multicast_set_router(struct net_bridge_mcast * brmctx,unsigned long val)4463 int br_multicast_set_router(struct net_bridge_mcast *brmctx, unsigned long val)
4464 {
4465 int err = -EINVAL;
4466
4467 spin_lock_bh(&brmctx->br->multicast_lock);
4468
4469 switch (val) {
4470 case MDB_RTR_TYPE_DISABLED:
4471 case MDB_RTR_TYPE_PERM:
4472 br_mc_router_state_change(brmctx->br, val == MDB_RTR_TYPE_PERM);
4473 del_timer(&brmctx->ip4_mc_router_timer);
4474 #if IS_ENABLED(CONFIG_IPV6)
4475 del_timer(&brmctx->ip6_mc_router_timer);
4476 #endif
4477 brmctx->multicast_router = val;
4478 err = 0;
4479 break;
4480 case MDB_RTR_TYPE_TEMP_QUERY:
4481 if (brmctx->multicast_router != MDB_RTR_TYPE_TEMP_QUERY)
4482 br_mc_router_state_change(brmctx->br, false);
4483 brmctx->multicast_router = val;
4484 err = 0;
4485 break;
4486 }
4487
4488 spin_unlock_bh(&brmctx->br->multicast_lock);
4489
4490 return err;
4491 }
4492
4493 static void
br_multicast_rport_del_notify(struct net_bridge_mcast_port * pmctx,bool deleted)4494 br_multicast_rport_del_notify(struct net_bridge_mcast_port *pmctx, bool deleted)
4495 {
4496 if (!deleted)
4497 return;
4498
4499 /* For backwards compatibility for now, only notify if there is
4500 * no multicast router anymore for both IPv4 and IPv6.
4501 */
4502 if (!hlist_unhashed(&pmctx->ip4_rlist))
4503 return;
4504 #if IS_ENABLED(CONFIG_IPV6)
4505 if (!hlist_unhashed(&pmctx->ip6_rlist))
4506 return;
4507 #endif
4508
4509 br_rtr_notify(pmctx->port->br->dev, pmctx, RTM_DELMDB);
4510 br_port_mc_router_state_change(pmctx->port, false);
4511
4512 /* don't allow timer refresh */
4513 if (pmctx->multicast_router == MDB_RTR_TYPE_TEMP)
4514 pmctx->multicast_router = MDB_RTR_TYPE_TEMP_QUERY;
4515 }
4516
br_multicast_set_port_router(struct net_bridge_mcast_port * pmctx,unsigned long val)4517 int br_multicast_set_port_router(struct net_bridge_mcast_port *pmctx,
4518 unsigned long val)
4519 {
4520 struct net_bridge_mcast *brmctx;
4521 unsigned long now = jiffies;
4522 int err = -EINVAL;
4523 bool del = false;
4524
4525 brmctx = br_multicast_port_ctx_get_global(pmctx);
4526 spin_lock_bh(&brmctx->br->multicast_lock);
4527 if (pmctx->multicast_router == val) {
4528 /* Refresh the temp router port timer */
4529 if (pmctx->multicast_router == MDB_RTR_TYPE_TEMP) {
4530 mod_timer(&pmctx->ip4_mc_router_timer,
4531 now + brmctx->multicast_querier_interval);
4532 #if IS_ENABLED(CONFIG_IPV6)
4533 mod_timer(&pmctx->ip6_mc_router_timer,
4534 now + brmctx->multicast_querier_interval);
4535 #endif
4536 }
4537 err = 0;
4538 goto unlock;
4539 }
4540 switch (val) {
4541 case MDB_RTR_TYPE_DISABLED:
4542 pmctx->multicast_router = MDB_RTR_TYPE_DISABLED;
4543 del |= br_ip4_multicast_rport_del(pmctx);
4544 del_timer(&pmctx->ip4_mc_router_timer);
4545 del |= br_ip6_multicast_rport_del(pmctx);
4546 #if IS_ENABLED(CONFIG_IPV6)
4547 del_timer(&pmctx->ip6_mc_router_timer);
4548 #endif
4549 br_multicast_rport_del_notify(pmctx, del);
4550 break;
4551 case MDB_RTR_TYPE_TEMP_QUERY:
4552 pmctx->multicast_router = MDB_RTR_TYPE_TEMP_QUERY;
4553 del |= br_ip4_multicast_rport_del(pmctx);
4554 del |= br_ip6_multicast_rport_del(pmctx);
4555 br_multicast_rport_del_notify(pmctx, del);
4556 break;
4557 case MDB_RTR_TYPE_PERM:
4558 pmctx->multicast_router = MDB_RTR_TYPE_PERM;
4559 del_timer(&pmctx->ip4_mc_router_timer);
4560 br_ip4_multicast_add_router(brmctx, pmctx);
4561 #if IS_ENABLED(CONFIG_IPV6)
4562 del_timer(&pmctx->ip6_mc_router_timer);
4563 #endif
4564 br_ip6_multicast_add_router(brmctx, pmctx);
4565 break;
4566 case MDB_RTR_TYPE_TEMP:
4567 pmctx->multicast_router = MDB_RTR_TYPE_TEMP;
4568 br_ip4_multicast_mark_router(brmctx, pmctx);
4569 br_ip6_multicast_mark_router(brmctx, pmctx);
4570 break;
4571 default:
4572 goto unlock;
4573 }
4574 err = 0;
4575 unlock:
4576 spin_unlock_bh(&brmctx->br->multicast_lock);
4577
4578 return err;
4579 }
4580
br_multicast_set_vlan_router(struct net_bridge_vlan * v,u8 mcast_router)4581 int br_multicast_set_vlan_router(struct net_bridge_vlan *v, u8 mcast_router)
4582 {
4583 int err;
4584
4585 if (br_vlan_is_master(v))
4586 err = br_multicast_set_router(&v->br_mcast_ctx, mcast_router);
4587 else
4588 err = br_multicast_set_port_router(&v->port_mcast_ctx,
4589 mcast_router);
4590
4591 return err;
4592 }
4593
br_multicast_start_querier(struct net_bridge_mcast * brmctx,struct bridge_mcast_own_query * query)4594 static void br_multicast_start_querier(struct net_bridge_mcast *brmctx,
4595 struct bridge_mcast_own_query *query)
4596 {
4597 struct net_bridge_port *port;
4598
4599 if (!br_multicast_ctx_matches_vlan_snooping(brmctx))
4600 return;
4601
4602 __br_multicast_open_query(brmctx->br, query);
4603
4604 rcu_read_lock();
4605 list_for_each_entry_rcu(port, &brmctx->br->port_list, list) {
4606 struct bridge_mcast_own_query *ip4_own_query;
4607 #if IS_ENABLED(CONFIG_IPV6)
4608 struct bridge_mcast_own_query *ip6_own_query;
4609 #endif
4610
4611 if (br_multicast_port_ctx_state_stopped(&port->multicast_ctx))
4612 continue;
4613
4614 if (br_multicast_ctx_is_vlan(brmctx)) {
4615 struct net_bridge_vlan *vlan;
4616
4617 vlan = br_vlan_find(nbp_vlan_group_rcu(port),
4618 brmctx->vlan->vid);
4619 if (!vlan ||
4620 br_multicast_port_ctx_state_stopped(&vlan->port_mcast_ctx))
4621 continue;
4622
4623 ip4_own_query = &vlan->port_mcast_ctx.ip4_own_query;
4624 #if IS_ENABLED(CONFIG_IPV6)
4625 ip6_own_query = &vlan->port_mcast_ctx.ip6_own_query;
4626 #endif
4627 } else {
4628 ip4_own_query = &port->multicast_ctx.ip4_own_query;
4629 #if IS_ENABLED(CONFIG_IPV6)
4630 ip6_own_query = &port->multicast_ctx.ip6_own_query;
4631 #endif
4632 }
4633
4634 if (query == &brmctx->ip4_own_query)
4635 br_multicast_enable(ip4_own_query);
4636 #if IS_ENABLED(CONFIG_IPV6)
4637 else
4638 br_multicast_enable(ip6_own_query);
4639 #endif
4640 }
4641 rcu_read_unlock();
4642 }
4643
br_multicast_toggle(struct net_bridge * br,unsigned long val,struct netlink_ext_ack * extack)4644 int br_multicast_toggle(struct net_bridge *br, unsigned long val,
4645 struct netlink_ext_ack *extack)
4646 {
4647 struct net_bridge_port *port;
4648 bool change_snoopers = false;
4649 int err = 0;
4650
4651 spin_lock_bh(&br->multicast_lock);
4652 if (!!br_opt_get(br, BROPT_MULTICAST_ENABLED) == !!val)
4653 goto unlock;
4654
4655 err = br_mc_disabled_update(br->dev, val, extack);
4656 if (err == -EOPNOTSUPP)
4657 err = 0;
4658 if (err)
4659 goto unlock;
4660
4661 br_opt_toggle(br, BROPT_MULTICAST_ENABLED, !!val);
4662 if (!br_opt_get(br, BROPT_MULTICAST_ENABLED)) {
4663 change_snoopers = true;
4664 goto unlock;
4665 }
4666
4667 if (!netif_running(br->dev))
4668 goto unlock;
4669
4670 br_multicast_open(br);
4671 list_for_each_entry(port, &br->port_list, list)
4672 __br_multicast_enable_port_ctx(&port->multicast_ctx);
4673
4674 change_snoopers = true;
4675
4676 unlock:
4677 spin_unlock_bh(&br->multicast_lock);
4678
4679 /* br_multicast_join_snoopers has the potential to cause
4680 * an MLD Report/Leave to be delivered to br_multicast_rcv,
4681 * which would in turn call br_multicast_add_group, which would
4682 * attempt to acquire multicast_lock. This function should be
4683 * called after the lock has been released to avoid deadlocks on
4684 * multicast_lock.
4685 *
4686 * br_multicast_leave_snoopers does not have the problem since
4687 * br_multicast_rcv first checks BROPT_MULTICAST_ENABLED, and
4688 * returns without calling br_multicast_ipv4/6_rcv if it's not
4689 * enabled. Moved both functions out just for symmetry.
4690 */
4691 if (change_snoopers) {
4692 if (br_opt_get(br, BROPT_MULTICAST_ENABLED))
4693 br_multicast_join_snoopers(br);
4694 else
4695 br_multicast_leave_snoopers(br);
4696 }
4697
4698 return err;
4699 }
4700
br_multicast_enabled(const struct net_device * dev)4701 bool br_multicast_enabled(const struct net_device *dev)
4702 {
4703 struct net_bridge *br = netdev_priv(dev);
4704
4705 return !!br_opt_get(br, BROPT_MULTICAST_ENABLED);
4706 }
4707 EXPORT_SYMBOL_GPL(br_multicast_enabled);
4708
br_multicast_router(const struct net_device * dev)4709 bool br_multicast_router(const struct net_device *dev)
4710 {
4711 struct net_bridge *br = netdev_priv(dev);
4712 bool is_router;
4713
4714 spin_lock_bh(&br->multicast_lock);
4715 is_router = br_multicast_is_router(&br->multicast_ctx, NULL);
4716 spin_unlock_bh(&br->multicast_lock);
4717 return is_router;
4718 }
4719 EXPORT_SYMBOL_GPL(br_multicast_router);
4720
br_multicast_set_querier(struct net_bridge_mcast * brmctx,unsigned long val)4721 int br_multicast_set_querier(struct net_bridge_mcast *brmctx, unsigned long val)
4722 {
4723 unsigned long max_delay;
4724
4725 val = !!val;
4726
4727 spin_lock_bh(&brmctx->br->multicast_lock);
4728 if (brmctx->multicast_querier == val)
4729 goto unlock;
4730
4731 WRITE_ONCE(brmctx->multicast_querier, val);
4732 if (!val)
4733 goto unlock;
4734
4735 max_delay = brmctx->multicast_query_response_interval;
4736
4737 if (!timer_pending(&brmctx->ip4_other_query.timer))
4738 mod_timer(&brmctx->ip4_other_query.delay_timer,
4739 jiffies + max_delay);
4740
4741 br_multicast_start_querier(brmctx, &brmctx->ip4_own_query);
4742
4743 #if IS_ENABLED(CONFIG_IPV6)
4744 if (!timer_pending(&brmctx->ip6_other_query.timer))
4745 mod_timer(&brmctx->ip6_other_query.delay_timer,
4746 jiffies + max_delay);
4747
4748 br_multicast_start_querier(brmctx, &brmctx->ip6_own_query);
4749 #endif
4750
4751 unlock:
4752 spin_unlock_bh(&brmctx->br->multicast_lock);
4753
4754 return 0;
4755 }
4756
br_multicast_set_igmp_version(struct net_bridge_mcast * brmctx,unsigned long val)4757 int br_multicast_set_igmp_version(struct net_bridge_mcast *brmctx,
4758 unsigned long val)
4759 {
4760 /* Currently we support only version 2 and 3 */
4761 switch (val) {
4762 case 2:
4763 case 3:
4764 break;
4765 default:
4766 return -EINVAL;
4767 }
4768
4769 spin_lock_bh(&brmctx->br->multicast_lock);
4770 brmctx->multicast_igmp_version = val;
4771 spin_unlock_bh(&brmctx->br->multicast_lock);
4772
4773 return 0;
4774 }
4775
4776 #if IS_ENABLED(CONFIG_IPV6)
br_multicast_set_mld_version(struct net_bridge_mcast * brmctx,unsigned long val)4777 int br_multicast_set_mld_version(struct net_bridge_mcast *brmctx,
4778 unsigned long val)
4779 {
4780 /* Currently we support version 1 and 2 */
4781 switch (val) {
4782 case 1:
4783 case 2:
4784 break;
4785 default:
4786 return -EINVAL;
4787 }
4788
4789 spin_lock_bh(&brmctx->br->multicast_lock);
4790 brmctx->multicast_mld_version = val;
4791 spin_unlock_bh(&brmctx->br->multicast_lock);
4792
4793 return 0;
4794 }
4795 #endif
4796
br_multicast_set_query_intvl(struct net_bridge_mcast * brmctx,unsigned long val)4797 void br_multicast_set_query_intvl(struct net_bridge_mcast *brmctx,
4798 unsigned long val)
4799 {
4800 unsigned long intvl_jiffies = clock_t_to_jiffies(val);
4801
4802 if (intvl_jiffies < BR_MULTICAST_QUERY_INTVL_MIN) {
4803 br_info(brmctx->br,
4804 "trying to set multicast query interval below minimum, setting to %lu (%ums)\n",
4805 jiffies_to_clock_t(BR_MULTICAST_QUERY_INTVL_MIN),
4806 jiffies_to_msecs(BR_MULTICAST_QUERY_INTVL_MIN));
4807 intvl_jiffies = BR_MULTICAST_QUERY_INTVL_MIN;
4808 }
4809
4810 brmctx->multicast_query_interval = intvl_jiffies;
4811 }
4812
br_multicast_set_startup_query_intvl(struct net_bridge_mcast * brmctx,unsigned long val)4813 void br_multicast_set_startup_query_intvl(struct net_bridge_mcast *brmctx,
4814 unsigned long val)
4815 {
4816 unsigned long intvl_jiffies = clock_t_to_jiffies(val);
4817
4818 if (intvl_jiffies < BR_MULTICAST_STARTUP_QUERY_INTVL_MIN) {
4819 br_info(brmctx->br,
4820 "trying to set multicast startup query interval below minimum, setting to %lu (%ums)\n",
4821 jiffies_to_clock_t(BR_MULTICAST_STARTUP_QUERY_INTVL_MIN),
4822 jiffies_to_msecs(BR_MULTICAST_STARTUP_QUERY_INTVL_MIN));
4823 intvl_jiffies = BR_MULTICAST_STARTUP_QUERY_INTVL_MIN;
4824 }
4825
4826 brmctx->multicast_startup_query_interval = intvl_jiffies;
4827 }
4828
4829 /**
4830 * br_multicast_list_adjacent - Returns snooped multicast addresses
4831 * @dev: The bridge port adjacent to which to retrieve addresses
4832 * @br_ip_list: The list to store found, snooped multicast IP addresses in
4833 *
4834 * Creates a list of IP addresses (struct br_ip_list) sensed by the multicast
4835 * snooping feature on all bridge ports of dev's bridge device, excluding
4836 * the addresses from dev itself.
4837 *
4838 * Returns the number of items added to br_ip_list.
4839 *
4840 * Notes:
4841 * - br_ip_list needs to be initialized by caller
4842 * - br_ip_list might contain duplicates in the end
4843 * (needs to be taken care of by caller)
4844 * - br_ip_list needs to be freed by caller
4845 */
br_multicast_list_adjacent(struct net_device * dev,struct list_head * br_ip_list)4846 int br_multicast_list_adjacent(struct net_device *dev,
4847 struct list_head *br_ip_list)
4848 {
4849 struct net_bridge *br;
4850 struct net_bridge_port *port;
4851 struct net_bridge_port_group *group;
4852 struct br_ip_list *entry;
4853 int count = 0;
4854
4855 rcu_read_lock();
4856 if (!br_ip_list || !netif_is_bridge_port(dev))
4857 goto unlock;
4858
4859 port = br_port_get_rcu(dev);
4860 if (!port || !port->br)
4861 goto unlock;
4862
4863 br = port->br;
4864
4865 list_for_each_entry_rcu(port, &br->port_list, list) {
4866 if (!port->dev || port->dev == dev)
4867 continue;
4868
4869 hlist_for_each_entry_rcu(group, &port->mglist, mglist) {
4870 entry = kmalloc(sizeof(*entry), GFP_ATOMIC);
4871 if (!entry)
4872 goto unlock;
4873
4874 entry->addr = group->key.addr;
4875 list_add(&entry->list, br_ip_list);
4876 count++;
4877 }
4878 }
4879
4880 unlock:
4881 rcu_read_unlock();
4882 return count;
4883 }
4884 EXPORT_SYMBOL_GPL(br_multicast_list_adjacent);
4885
4886 /**
4887 * br_multicast_has_querier_anywhere - Checks for a querier on a bridge
4888 * @dev: The bridge port providing the bridge on which to check for a querier
4889 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
4890 *
4891 * Checks whether the given interface has a bridge on top and if so returns
4892 * true if a valid querier exists anywhere on the bridged link layer.
4893 * Otherwise returns false.
4894 */
br_multicast_has_querier_anywhere(struct net_device * dev,int proto)4895 bool br_multicast_has_querier_anywhere(struct net_device *dev, int proto)
4896 {
4897 struct net_bridge *br;
4898 struct net_bridge_port *port;
4899 struct ethhdr eth;
4900 bool ret = false;
4901
4902 rcu_read_lock();
4903 if (!netif_is_bridge_port(dev))
4904 goto unlock;
4905
4906 port = br_port_get_rcu(dev);
4907 if (!port || !port->br)
4908 goto unlock;
4909
4910 br = port->br;
4911
4912 memset(ð, 0, sizeof(eth));
4913 eth.h_proto = htons(proto);
4914
4915 ret = br_multicast_querier_exists(&br->multicast_ctx, ð, NULL);
4916
4917 unlock:
4918 rcu_read_unlock();
4919 return ret;
4920 }
4921 EXPORT_SYMBOL_GPL(br_multicast_has_querier_anywhere);
4922
4923 /**
4924 * br_multicast_has_querier_adjacent - Checks for a querier behind a bridge port
4925 * @dev: The bridge port adjacent to which to check for a querier
4926 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
4927 *
4928 * Checks whether the given interface has a bridge on top and if so returns
4929 * true if a selected querier is behind one of the other ports of this
4930 * bridge. Otherwise returns false.
4931 */
br_multicast_has_querier_adjacent(struct net_device * dev,int proto)4932 bool br_multicast_has_querier_adjacent(struct net_device *dev, int proto)
4933 {
4934 struct net_bridge_mcast *brmctx;
4935 struct net_bridge *br;
4936 struct net_bridge_port *port;
4937 bool ret = false;
4938 int port_ifidx;
4939
4940 rcu_read_lock();
4941 if (!netif_is_bridge_port(dev))
4942 goto unlock;
4943
4944 port = br_port_get_rcu(dev);
4945 if (!port || !port->br)
4946 goto unlock;
4947
4948 br = port->br;
4949 brmctx = &br->multicast_ctx;
4950
4951 switch (proto) {
4952 case ETH_P_IP:
4953 port_ifidx = brmctx->ip4_querier.port_ifidx;
4954 if (!timer_pending(&brmctx->ip4_other_query.timer) ||
4955 port_ifidx == port->dev->ifindex)
4956 goto unlock;
4957 break;
4958 #if IS_ENABLED(CONFIG_IPV6)
4959 case ETH_P_IPV6:
4960 port_ifidx = brmctx->ip6_querier.port_ifidx;
4961 if (!timer_pending(&brmctx->ip6_other_query.timer) ||
4962 port_ifidx == port->dev->ifindex)
4963 goto unlock;
4964 break;
4965 #endif
4966 default:
4967 goto unlock;
4968 }
4969
4970 ret = true;
4971 unlock:
4972 rcu_read_unlock();
4973 return ret;
4974 }
4975 EXPORT_SYMBOL_GPL(br_multicast_has_querier_adjacent);
4976
4977 /**
4978 * br_multicast_has_router_adjacent - Checks for a router behind a bridge port
4979 * @dev: The bridge port adjacent to which to check for a multicast router
4980 * @proto: The protocol family to check for: IGMP -> ETH_P_IP, MLD -> ETH_P_IPV6
4981 *
4982 * Checks whether the given interface has a bridge on top and if so returns
4983 * true if a multicast router is behind one of the other ports of this
4984 * bridge. Otherwise returns false.
4985 */
br_multicast_has_router_adjacent(struct net_device * dev,int proto)4986 bool br_multicast_has_router_adjacent(struct net_device *dev, int proto)
4987 {
4988 struct net_bridge_mcast_port *pmctx;
4989 struct net_bridge_mcast *brmctx;
4990 struct net_bridge_port *port;
4991 bool ret = false;
4992
4993 rcu_read_lock();
4994 port = br_port_get_check_rcu(dev);
4995 if (!port)
4996 goto unlock;
4997
4998 brmctx = &port->br->multicast_ctx;
4999 switch (proto) {
5000 case ETH_P_IP:
5001 hlist_for_each_entry_rcu(pmctx, &brmctx->ip4_mc_router_list,
5002 ip4_rlist) {
5003 if (pmctx->port == port)
5004 continue;
5005
5006 ret = true;
5007 goto unlock;
5008 }
5009 break;
5010 #if IS_ENABLED(CONFIG_IPV6)
5011 case ETH_P_IPV6:
5012 hlist_for_each_entry_rcu(pmctx, &brmctx->ip6_mc_router_list,
5013 ip6_rlist) {
5014 if (pmctx->port == port)
5015 continue;
5016
5017 ret = true;
5018 goto unlock;
5019 }
5020 break;
5021 #endif
5022 default:
5023 /* when compiled without IPv6 support, be conservative and
5024 * always assume presence of an IPv6 multicast router
5025 */
5026 ret = true;
5027 }
5028
5029 unlock:
5030 rcu_read_unlock();
5031 return ret;
5032 }
5033 EXPORT_SYMBOL_GPL(br_multicast_has_router_adjacent);
5034
br_mcast_stats_add(struct bridge_mcast_stats __percpu * stats,const struct sk_buff * skb,u8 type,u8 dir)5035 static void br_mcast_stats_add(struct bridge_mcast_stats __percpu *stats,
5036 const struct sk_buff *skb, u8 type, u8 dir)
5037 {
5038 struct bridge_mcast_stats *pstats = this_cpu_ptr(stats);
5039 __be16 proto = skb->protocol;
5040 unsigned int t_len;
5041
5042 u64_stats_update_begin(&pstats->syncp);
5043 switch (proto) {
5044 case htons(ETH_P_IP):
5045 t_len = ntohs(ip_hdr(skb)->tot_len) - ip_hdrlen(skb);
5046 switch (type) {
5047 case IGMP_HOST_MEMBERSHIP_REPORT:
5048 pstats->mstats.igmp_v1reports[dir]++;
5049 break;
5050 case IGMPV2_HOST_MEMBERSHIP_REPORT:
5051 pstats->mstats.igmp_v2reports[dir]++;
5052 break;
5053 case IGMPV3_HOST_MEMBERSHIP_REPORT:
5054 pstats->mstats.igmp_v3reports[dir]++;
5055 break;
5056 case IGMP_HOST_MEMBERSHIP_QUERY:
5057 if (t_len != sizeof(struct igmphdr)) {
5058 pstats->mstats.igmp_v3queries[dir]++;
5059 } else {
5060 unsigned int offset = skb_transport_offset(skb);
5061 struct igmphdr *ih, _ihdr;
5062
5063 ih = skb_header_pointer(skb, offset,
5064 sizeof(_ihdr), &_ihdr);
5065 if (!ih)
5066 break;
5067 if (!ih->code)
5068 pstats->mstats.igmp_v1queries[dir]++;
5069 else
5070 pstats->mstats.igmp_v2queries[dir]++;
5071 }
5072 break;
5073 case IGMP_HOST_LEAVE_MESSAGE:
5074 pstats->mstats.igmp_leaves[dir]++;
5075 break;
5076 }
5077 break;
5078 #if IS_ENABLED(CONFIG_IPV6)
5079 case htons(ETH_P_IPV6):
5080 t_len = ntohs(ipv6_hdr(skb)->payload_len) +
5081 sizeof(struct ipv6hdr);
5082 t_len -= skb_network_header_len(skb);
5083 switch (type) {
5084 case ICMPV6_MGM_REPORT:
5085 pstats->mstats.mld_v1reports[dir]++;
5086 break;
5087 case ICMPV6_MLD2_REPORT:
5088 pstats->mstats.mld_v2reports[dir]++;
5089 break;
5090 case ICMPV6_MGM_QUERY:
5091 if (t_len != sizeof(struct mld_msg))
5092 pstats->mstats.mld_v2queries[dir]++;
5093 else
5094 pstats->mstats.mld_v1queries[dir]++;
5095 break;
5096 case ICMPV6_MGM_REDUCTION:
5097 pstats->mstats.mld_leaves[dir]++;
5098 break;
5099 }
5100 break;
5101 #endif /* CONFIG_IPV6 */
5102 }
5103 u64_stats_update_end(&pstats->syncp);
5104 }
5105
br_multicast_count(struct net_bridge * br,const struct net_bridge_port * p,const struct sk_buff * skb,u8 type,u8 dir)5106 void br_multicast_count(struct net_bridge *br,
5107 const struct net_bridge_port *p,
5108 const struct sk_buff *skb, u8 type, u8 dir)
5109 {
5110 struct bridge_mcast_stats __percpu *stats;
5111
5112 /* if multicast_disabled is true then igmp type can't be set */
5113 if (!type || !br_opt_get(br, BROPT_MULTICAST_STATS_ENABLED))
5114 return;
5115
5116 if (p)
5117 stats = p->mcast_stats;
5118 else
5119 stats = br->mcast_stats;
5120 if (WARN_ON(!stats))
5121 return;
5122
5123 br_mcast_stats_add(stats, skb, type, dir);
5124 }
5125
br_multicast_init_stats(struct net_bridge * br)5126 int br_multicast_init_stats(struct net_bridge *br)
5127 {
5128 br->mcast_stats = netdev_alloc_pcpu_stats(struct bridge_mcast_stats);
5129 if (!br->mcast_stats)
5130 return -ENOMEM;
5131
5132 return 0;
5133 }
5134
br_multicast_uninit_stats(struct net_bridge * br)5135 void br_multicast_uninit_stats(struct net_bridge *br)
5136 {
5137 free_percpu(br->mcast_stats);
5138 }
5139
5140 /* noinline for https://bugs.llvm.org/show_bug.cgi?id=45802#c9 */
mcast_stats_add_dir(u64 * dst,u64 * src)5141 static noinline_for_stack void mcast_stats_add_dir(u64 *dst, u64 *src)
5142 {
5143 dst[BR_MCAST_DIR_RX] += src[BR_MCAST_DIR_RX];
5144 dst[BR_MCAST_DIR_TX] += src[BR_MCAST_DIR_TX];
5145 }
5146
br_multicast_get_stats(const struct net_bridge * br,const struct net_bridge_port * p,struct br_mcast_stats * dest)5147 void br_multicast_get_stats(const struct net_bridge *br,
5148 const struct net_bridge_port *p,
5149 struct br_mcast_stats *dest)
5150 {
5151 struct bridge_mcast_stats __percpu *stats;
5152 struct br_mcast_stats tdst;
5153 int i;
5154
5155 memset(dest, 0, sizeof(*dest));
5156 if (p)
5157 stats = p->mcast_stats;
5158 else
5159 stats = br->mcast_stats;
5160 if (WARN_ON(!stats))
5161 return;
5162
5163 memset(&tdst, 0, sizeof(tdst));
5164 for_each_possible_cpu(i) {
5165 struct bridge_mcast_stats *cpu_stats = per_cpu_ptr(stats, i);
5166 struct br_mcast_stats temp;
5167 unsigned int start;
5168
5169 do {
5170 start = u64_stats_fetch_begin(&cpu_stats->syncp);
5171 memcpy(&temp, &cpu_stats->mstats, sizeof(temp));
5172 } while (u64_stats_fetch_retry(&cpu_stats->syncp, start));
5173
5174 mcast_stats_add_dir(tdst.igmp_v1queries, temp.igmp_v1queries);
5175 mcast_stats_add_dir(tdst.igmp_v2queries, temp.igmp_v2queries);
5176 mcast_stats_add_dir(tdst.igmp_v3queries, temp.igmp_v3queries);
5177 mcast_stats_add_dir(tdst.igmp_leaves, temp.igmp_leaves);
5178 mcast_stats_add_dir(tdst.igmp_v1reports, temp.igmp_v1reports);
5179 mcast_stats_add_dir(tdst.igmp_v2reports, temp.igmp_v2reports);
5180 mcast_stats_add_dir(tdst.igmp_v3reports, temp.igmp_v3reports);
5181 tdst.igmp_parse_errors += temp.igmp_parse_errors;
5182
5183 mcast_stats_add_dir(tdst.mld_v1queries, temp.mld_v1queries);
5184 mcast_stats_add_dir(tdst.mld_v2queries, temp.mld_v2queries);
5185 mcast_stats_add_dir(tdst.mld_leaves, temp.mld_leaves);
5186 mcast_stats_add_dir(tdst.mld_v1reports, temp.mld_v1reports);
5187 mcast_stats_add_dir(tdst.mld_v2reports, temp.mld_v2reports);
5188 tdst.mld_parse_errors += temp.mld_parse_errors;
5189 }
5190 memcpy(dest, &tdst, sizeof(*dest));
5191 }
5192
br_mdb_hash_init(struct net_bridge * br)5193 int br_mdb_hash_init(struct net_bridge *br)
5194 {
5195 int err;
5196
5197 err = rhashtable_init(&br->sg_port_tbl, &br_sg_port_rht_params);
5198 if (err)
5199 return err;
5200
5201 err = rhashtable_init(&br->mdb_hash_tbl, &br_mdb_rht_params);
5202 if (err) {
5203 rhashtable_destroy(&br->sg_port_tbl);
5204 return err;
5205 }
5206
5207 return 0;
5208 }
5209
br_mdb_hash_fini(struct net_bridge * br)5210 void br_mdb_hash_fini(struct net_bridge *br)
5211 {
5212 rhashtable_destroy(&br->sg_port_tbl);
5213 rhashtable_destroy(&br->mdb_hash_tbl);
5214 }
5215