1/* 2 * Bridge netlink control interface 3 * 4 * Authors: 5 * Stephen Hemminger <shemminger@osdl.org> 6 * 7 * This program is free software; you can redistribute it and/or 8 * modify it under the terms of the GNU General Public License 9 * as published by the Free Software Foundation; either version 10 * 2 of the License, or (at your option) any later version. 11 */ 12 13#include <linux/kernel.h> 14#include <linux/slab.h> 15#include <linux/etherdevice.h> 16#include <net/rtnetlink.h> 17#include <net/net_namespace.h> 18#include <net/sock.h> 19#include <uapi/linux/if_bridge.h> 20 21#include "br_private.h" 22#include "br_private_stp.h" 23 24static inline size_t br_port_info_size(void) 25{ 26 return nla_total_size(1) /* IFLA_BRPORT_STATE */ 27 + nla_total_size(2) /* IFLA_BRPORT_PRIORITY */ 28 + nla_total_size(4) /* IFLA_BRPORT_COST */ 29 + nla_total_size(1) /* IFLA_BRPORT_MODE */ 30 + nla_total_size(1) /* IFLA_BRPORT_GUARD */ 31 + nla_total_size(1) /* IFLA_BRPORT_PROTECT */ 32 + nla_total_size(1) /* IFLA_BRPORT_FAST_LEAVE */ 33 + nla_total_size(1) /* IFLA_BRPORT_LEARNING */ 34 + nla_total_size(1) /* IFLA_BRPORT_UNICAST_FLOOD */ 35 + 0; 36} 37 38static inline size_t br_nlmsg_size(void) 39{ 40 return NLMSG_ALIGN(sizeof(struct ifinfomsg)) 41 + nla_total_size(IFNAMSIZ) /* IFLA_IFNAME */ 42 + nla_total_size(MAX_ADDR_LEN) /* IFLA_ADDRESS */ 43 + nla_total_size(4) /* IFLA_MASTER */ 44 + nla_total_size(4) /* IFLA_MTU */ 45 + nla_total_size(4) /* IFLA_LINK */ 46 + nla_total_size(1) /* IFLA_OPERSTATE */ 47 + nla_total_size(br_port_info_size()); /* IFLA_PROTINFO */ 48} 49 50static int br_port_fill_attrs(struct sk_buff *skb, 51 const struct net_bridge_port *p) 52{ 53 u8 mode = !!(p->flags & BR_HAIRPIN_MODE); 54 55 if (nla_put_u8(skb, IFLA_BRPORT_STATE, p->state) || 56 nla_put_u16(skb, IFLA_BRPORT_PRIORITY, p->priority) || 57 nla_put_u32(skb, IFLA_BRPORT_COST, p->path_cost) || 58 nla_put_u8(skb, IFLA_BRPORT_MODE, mode) || 59 nla_put_u8(skb, IFLA_BRPORT_GUARD, !!(p->flags & BR_BPDU_GUARD)) || 60 nla_put_u8(skb, IFLA_BRPORT_PROTECT, !!(p->flags & BR_ROOT_BLOCK)) || 61 nla_put_u8(skb, IFLA_BRPORT_FAST_LEAVE, !!(p->flags & BR_MULTICAST_FAST_LEAVE)) || 62 nla_put_u8(skb, IFLA_BRPORT_LEARNING, !!(p->flags & BR_LEARNING)) || 63 nla_put_u8(skb, IFLA_BRPORT_UNICAST_FLOOD, !!(p->flags & BR_FLOOD))) 64 return -EMSGSIZE; 65 66 return 0; 67} 68 69/* 70 * Create one netlink message for one interface 71 * Contains port and master info as well as carrier and bridge state. 72 */ 73static int br_fill_ifinfo(struct sk_buff *skb, 74 const struct net_bridge_port *port, 75 u32 pid, u32 seq, int event, unsigned int flags, 76 u32 filter_mask, const struct net_device *dev) 77{ 78 const struct net_bridge *br; 79 struct ifinfomsg *hdr; 80 struct nlmsghdr *nlh; 81 u8 operstate = netif_running(dev) ? dev->operstate : IF_OPER_DOWN; 82 83 if (port) 84 br = port->br; 85 else 86 br = netdev_priv(dev); 87 88 br_debug(br, "br_fill_info event %d port %s master %s\n", 89 event, dev->name, br->dev->name); 90 91 nlh = nlmsg_put(skb, pid, seq, event, sizeof(*hdr), flags); 92 if (nlh == NULL) 93 return -EMSGSIZE; 94 95 hdr = nlmsg_data(nlh); 96 hdr->ifi_family = AF_BRIDGE; 97 hdr->__ifi_pad = 0; 98 hdr->ifi_type = dev->type; 99 hdr->ifi_index = dev->ifindex; 100 hdr->ifi_flags = dev_get_flags(dev); 101 hdr->ifi_change = 0; 102 103 if (nla_put_string(skb, IFLA_IFNAME, dev->name) || 104 nla_put_u32(skb, IFLA_MASTER, br->dev->ifindex) || 105 nla_put_u32(skb, IFLA_MTU, dev->mtu) || 106 nla_put_u8(skb, IFLA_OPERSTATE, operstate) || 107 (dev->addr_len && 108 nla_put(skb, IFLA_ADDRESS, dev->addr_len, dev->dev_addr)) || 109 (dev->ifindex != dev->iflink && 110 nla_put_u32(skb, IFLA_LINK, dev->iflink))) 111 goto nla_put_failure; 112 113 if (event == RTM_NEWLINK && port) { 114 struct nlattr *nest 115 = nla_nest_start(skb, IFLA_PROTINFO | NLA_F_NESTED); 116 117 if (nest == NULL || br_port_fill_attrs(skb, port) < 0) 118 goto nla_put_failure; 119 nla_nest_end(skb, nest); 120 } 121 122 /* Check if the VID information is requested */ 123 if (filter_mask & RTEXT_FILTER_BRVLAN) { 124 struct nlattr *af; 125 const struct net_port_vlans *pv; 126 struct bridge_vlan_info vinfo; 127 u16 vid; 128 u16 pvid; 129 130 if (port) 131 pv = nbp_get_vlan_info(port); 132 else 133 pv = br_get_vlan_info(br); 134 135 if (!pv || bitmap_empty(pv->vlan_bitmap, VLAN_N_VID)) 136 goto done; 137 138 af = nla_nest_start(skb, IFLA_AF_SPEC); 139 if (!af) 140 goto nla_put_failure; 141 142 pvid = br_get_pvid(pv); 143 for_each_set_bit(vid, pv->vlan_bitmap, VLAN_N_VID) { 144 vinfo.vid = vid; 145 vinfo.flags = 0; 146 if (vid == pvid) 147 vinfo.flags |= BRIDGE_VLAN_INFO_PVID; 148 149 if (test_bit(vid, pv->untagged_bitmap)) 150 vinfo.flags |= BRIDGE_VLAN_INFO_UNTAGGED; 151 152 if (nla_put(skb, IFLA_BRIDGE_VLAN_INFO, 153 sizeof(vinfo), &vinfo)) 154 goto nla_put_failure; 155 } 156 157 nla_nest_end(skb, af); 158 } 159 160done: 161 return nlmsg_end(skb, nlh); 162 163nla_put_failure: 164 nlmsg_cancel(skb, nlh); 165 return -EMSGSIZE; 166} 167 168/* 169 * Notify listeners of a change in port information 170 */ 171void br_ifinfo_notify(int event, struct net_bridge_port *port) 172{ 173 struct net *net; 174 struct sk_buff *skb; 175 int err = -ENOBUFS; 176 177 if (!port) 178 return; 179 180 net = dev_net(port->dev); 181 br_debug(port->br, "port %u(%s) event %d\n", 182 (unsigned int)port->port_no, port->dev->name, event); 183 184 skb = nlmsg_new(br_nlmsg_size(), GFP_ATOMIC); 185 if (skb == NULL) 186 goto errout; 187 188 err = br_fill_ifinfo(skb, port, 0, 0, event, 0, 0, port->dev); 189 if (err < 0) { 190 /* -EMSGSIZE implies BUG in br_nlmsg_size() */ 191 WARN_ON(err == -EMSGSIZE); 192 kfree_skb(skb); 193 goto errout; 194 } 195 rtnl_notify(skb, net, 0, RTNLGRP_LINK, NULL, GFP_ATOMIC); 196 return; 197errout: 198 rtnl_set_sk_err(net, RTNLGRP_LINK, err); 199} 200 201 202/* 203 * Dump information about all ports, in response to GETLINK 204 */ 205int br_getlink(struct sk_buff *skb, u32 pid, u32 seq, 206 struct net_device *dev, u32 filter_mask) 207{ 208 int err = 0; 209 struct net_bridge_port *port = br_port_get_rtnl(dev); 210 211 if (!port && !(filter_mask & RTEXT_FILTER_BRVLAN)) 212 goto out; 213 214 err = br_fill_ifinfo(skb, port, pid, seq, RTM_NEWLINK, NLM_F_MULTI, 215 filter_mask, dev); 216out: 217 return err; 218} 219 220static const struct nla_policy ifla_br_policy[IFLA_MAX+1] = { 221 [IFLA_BRIDGE_FLAGS] = { .type = NLA_U16 }, 222 [IFLA_BRIDGE_MODE] = { .type = NLA_U16 }, 223 [IFLA_BRIDGE_VLAN_INFO] = { .type = NLA_BINARY, 224 .len = sizeof(struct bridge_vlan_info), }, 225}; 226 227static int br_afspec(struct net_bridge *br, 228 struct net_bridge_port *p, 229 struct nlattr *af_spec, 230 int cmd) 231{ 232 struct nlattr *tb[IFLA_BRIDGE_MAX+1]; 233 int err = 0; 234 235 err = nla_parse_nested(tb, IFLA_BRIDGE_MAX, af_spec, ifla_br_policy); 236 if (err) 237 return err; 238 239 if (tb[IFLA_BRIDGE_VLAN_INFO]) { 240 struct bridge_vlan_info *vinfo; 241 242 vinfo = nla_data(tb[IFLA_BRIDGE_VLAN_INFO]); 243 244 if (!vinfo->vid || vinfo->vid >= VLAN_VID_MASK) 245 return -EINVAL; 246 247 switch (cmd) { 248 case RTM_SETLINK: 249 if (p) { 250 err = nbp_vlan_add(p, vinfo->vid, vinfo->flags); 251 if (err) 252 break; 253 254 if (vinfo->flags & BRIDGE_VLAN_INFO_MASTER) 255 err = br_vlan_add(p->br, vinfo->vid, 256 vinfo->flags); 257 } else 258 err = br_vlan_add(br, vinfo->vid, vinfo->flags); 259 260 break; 261 262 case RTM_DELLINK: 263 if (p) { 264 nbp_vlan_delete(p, vinfo->vid); 265 if (vinfo->flags & BRIDGE_VLAN_INFO_MASTER) 266 br_vlan_delete(p->br, vinfo->vid); 267 } else 268 br_vlan_delete(br, vinfo->vid); 269 break; 270 } 271 } 272 273 return err; 274} 275 276static const struct nla_policy br_port_policy[IFLA_BRPORT_MAX + 1] = { 277 [IFLA_BRPORT_STATE] = { .type = NLA_U8 }, 278 [IFLA_BRPORT_COST] = { .type = NLA_U32 }, 279 [IFLA_BRPORT_PRIORITY] = { .type = NLA_U16 }, 280 [IFLA_BRPORT_MODE] = { .type = NLA_U8 }, 281 [IFLA_BRPORT_GUARD] = { .type = NLA_U8 }, 282 [IFLA_BRPORT_PROTECT] = { .type = NLA_U8 }, 283 [IFLA_BRPORT_FAST_LEAVE]= { .type = NLA_U8 }, 284 [IFLA_BRPORT_LEARNING] = { .type = NLA_U8 }, 285 [IFLA_BRPORT_UNICAST_FLOOD] = { .type = NLA_U8 }, 286}; 287 288/* Change the state of the port and notify spanning tree */ 289static int br_set_port_state(struct net_bridge_port *p, u8 state) 290{ 291 if (state > BR_STATE_BLOCKING) 292 return -EINVAL; 293 294 /* if kernel STP is running, don't allow changes */ 295 if (p->br->stp_enabled == BR_KERNEL_STP) 296 return -EBUSY; 297 298 /* if device is not up, change is not allowed 299 * if link is not present, only allowable state is disabled 300 */ 301 if (!netif_running(p->dev) || 302 (!netif_oper_up(p->dev) && state != BR_STATE_DISABLED)) 303 return -ENETDOWN; 304 305 br_set_state(p, state); 306 br_log_state(p); 307 br_port_state_selection(p->br); 308 return 0; 309} 310 311/* Set/clear or port flags based on attribute */ 312static void br_set_port_flag(struct net_bridge_port *p, struct nlattr *tb[], 313 int attrtype, unsigned long mask) 314{ 315 if (tb[attrtype]) { 316 u8 flag = nla_get_u8(tb[attrtype]); 317 if (flag) 318 p->flags |= mask; 319 else 320 p->flags &= ~mask; 321 } 322} 323 324/* Process bridge protocol info on port */ 325static int br_setport(struct net_bridge_port *p, struct nlattr *tb[]) 326{ 327 int err; 328 unsigned long old_flags = p->flags; 329 330 br_set_port_flag(p, tb, IFLA_BRPORT_MODE, BR_HAIRPIN_MODE); 331 br_set_port_flag(p, tb, IFLA_BRPORT_GUARD, BR_BPDU_GUARD); 332 br_set_port_flag(p, tb, IFLA_BRPORT_FAST_LEAVE, BR_MULTICAST_FAST_LEAVE); 333 br_set_port_flag(p, tb, IFLA_BRPORT_PROTECT, BR_ROOT_BLOCK); 334 br_set_port_flag(p, tb, IFLA_BRPORT_LEARNING, BR_LEARNING); 335 br_set_port_flag(p, tb, IFLA_BRPORT_UNICAST_FLOOD, BR_FLOOD); 336 337 if (tb[IFLA_BRPORT_COST]) { 338 err = br_stp_set_path_cost(p, nla_get_u32(tb[IFLA_BRPORT_COST])); 339 if (err) 340 return err; 341 } 342 343 if (tb[IFLA_BRPORT_PRIORITY]) { 344 err = br_stp_set_port_priority(p, nla_get_u16(tb[IFLA_BRPORT_PRIORITY])); 345 if (err) 346 return err; 347 } 348 349 if (tb[IFLA_BRPORT_STATE]) { 350 err = br_set_port_state(p, nla_get_u8(tb[IFLA_BRPORT_STATE])); 351 if (err) 352 return err; 353 } 354 355 br_port_flags_change(p, old_flags ^ p->flags); 356 return 0; 357} 358 359/* Change state and parameters on port. */ 360int br_setlink(struct net_device *dev, struct nlmsghdr *nlh) 361{ 362 struct nlattr *protinfo; 363 struct nlattr *afspec; 364 struct net_bridge_port *p; 365 struct nlattr *tb[IFLA_BRPORT_MAX + 1]; 366 int err = 0; 367 368 protinfo = nlmsg_find_attr(nlh, sizeof(struct ifinfomsg), IFLA_PROTINFO); 369 afspec = nlmsg_find_attr(nlh, sizeof(struct ifinfomsg), IFLA_AF_SPEC); 370 if (!protinfo && !afspec) 371 return 0; 372 373 p = br_port_get_rtnl(dev); 374 /* We want to accept dev as bridge itself if the AF_SPEC 375 * is set to see if someone is setting vlan info on the bridge 376 */ 377 if (!p && !afspec) 378 return -EINVAL; 379 380 if (p && protinfo) { 381 if (protinfo->nla_type & NLA_F_NESTED) { 382 err = nla_parse_nested(tb, IFLA_BRPORT_MAX, 383 protinfo, br_port_policy); 384 if (err) 385 return err; 386 387 spin_lock_bh(&p->br->lock); 388 err = br_setport(p, tb); 389 spin_unlock_bh(&p->br->lock); 390 } else { 391 /* Binary compatibility with old RSTP */ 392 if (nla_len(protinfo) < sizeof(u8)) 393 return -EINVAL; 394 395 spin_lock_bh(&p->br->lock); 396 err = br_set_port_state(p, nla_get_u8(protinfo)); 397 spin_unlock_bh(&p->br->lock); 398 } 399 if (err) 400 goto out; 401 } 402 403 if (afspec) { 404 err = br_afspec((struct net_bridge *)netdev_priv(dev), p, 405 afspec, RTM_SETLINK); 406 } 407 408 if (err == 0) 409 br_ifinfo_notify(RTM_NEWLINK, p); 410 411out: 412 return err; 413} 414 415/* Delete port information */ 416int br_dellink(struct net_device *dev, struct nlmsghdr *nlh) 417{ 418 struct nlattr *afspec; 419 struct net_bridge_port *p; 420 int err; 421 422 afspec = nlmsg_find_attr(nlh, sizeof(struct ifinfomsg), IFLA_AF_SPEC); 423 if (!afspec) 424 return 0; 425 426 p = br_port_get_rtnl(dev); 427 /* We want to accept dev as bridge itself as well */ 428 if (!p && !(dev->priv_flags & IFF_EBRIDGE)) 429 return -EINVAL; 430 431 err = br_afspec((struct net_bridge *)netdev_priv(dev), p, 432 afspec, RTM_DELLINK); 433 434 return err; 435} 436static int br_validate(struct nlattr *tb[], struct nlattr *data[]) 437{ 438 if (tb[IFLA_ADDRESS]) { 439 if (nla_len(tb[IFLA_ADDRESS]) != ETH_ALEN) 440 return -EINVAL; 441 if (!is_valid_ether_addr(nla_data(tb[IFLA_ADDRESS]))) 442 return -EADDRNOTAVAIL; 443 } 444 445 return 0; 446} 447 448static int br_dev_newlink(struct net *src_net, struct net_device *dev, 449 struct nlattr *tb[], struct nlattr *data[]) 450{ 451 struct net_bridge *br = netdev_priv(dev); 452 453 if (tb[IFLA_ADDRESS]) { 454 spin_lock_bh(&br->lock); 455 br_stp_change_bridge_id(br, nla_data(tb[IFLA_ADDRESS])); 456 spin_unlock_bh(&br->lock); 457 } 458 459 return register_netdevice(dev); 460} 461 462static int br_port_slave_changelink(struct net_device *brdev, 463 struct net_device *dev, 464 struct nlattr *tb[], 465 struct nlattr *data[]) 466{ 467 if (!data) 468 return 0; 469 return br_setport(br_port_get_rtnl(dev), data); 470} 471 472static int br_port_fill_slave_info(struct sk_buff *skb, 473 const struct net_device *brdev, 474 const struct net_device *dev) 475{ 476 return br_port_fill_attrs(skb, br_port_get_rtnl(dev)); 477} 478 479static size_t br_port_get_slave_size(const struct net_device *brdev, 480 const struct net_device *dev) 481{ 482 return br_port_info_size(); 483} 484 485static const struct nla_policy br_policy[IFLA_BR_MAX + 1] = { 486 [IFLA_BR_FORWARD_DELAY] = { .type = NLA_U32 }, 487 [IFLA_BR_HELLO_TIME] = { .type = NLA_U32 }, 488 [IFLA_BR_MAX_AGE] = { .type = NLA_U32 }, 489}; 490 491static int br_changelink(struct net_device *brdev, struct nlattr *tb[], 492 struct nlattr *data[]) 493{ 494 struct net_bridge *br = netdev_priv(brdev); 495 int err; 496 497 if (!data) 498 return 0; 499 500 if (data[IFLA_BR_FORWARD_DELAY]) { 501 err = br_set_forward_delay(br, nla_get_u32(data[IFLA_BR_FORWARD_DELAY])); 502 if (err) 503 return err; 504 } 505 506 if (data[IFLA_BR_HELLO_TIME]) { 507 err = br_set_hello_time(br, nla_get_u32(data[IFLA_BR_HELLO_TIME])); 508 if (err) 509 return err; 510 } 511 512 if (data[IFLA_BR_MAX_AGE]) { 513 err = br_set_max_age(br, nla_get_u32(data[IFLA_BR_MAX_AGE])); 514 if (err) 515 return err; 516 } 517 518 return 0; 519} 520 521static size_t br_get_size(const struct net_device *brdev) 522{ 523 return nla_total_size(sizeof(u32)) + /* IFLA_BR_FORWARD_DELAY */ 524 nla_total_size(sizeof(u32)) + /* IFLA_BR_HELLO_TIME */ 525 nla_total_size(sizeof(u32)) + /* IFLA_BR_MAX_AGE */ 526 0; 527} 528 529static int br_fill_info(struct sk_buff *skb, const struct net_device *brdev) 530{ 531 struct net_bridge *br = netdev_priv(brdev); 532 u32 forward_delay = jiffies_to_clock_t(br->forward_delay); 533 u32 hello_time = jiffies_to_clock_t(br->hello_time); 534 u32 age_time = jiffies_to_clock_t(br->max_age); 535 536 if (nla_put_u32(skb, IFLA_BR_FORWARD_DELAY, forward_delay) || 537 nla_put_u32(skb, IFLA_BR_HELLO_TIME, hello_time) || 538 nla_put_u32(skb, IFLA_BR_MAX_AGE, age_time)) 539 return -EMSGSIZE; 540 541 return 0; 542} 543 544static size_t br_get_link_af_size(const struct net_device *dev) 545{ 546 struct net_port_vlans *pv; 547 548 if (br_port_exists(dev)) 549 pv = nbp_get_vlan_info(br_port_get_rtnl(dev)); 550 else if (dev->priv_flags & IFF_EBRIDGE) 551 pv = br_get_vlan_info((struct net_bridge *)netdev_priv(dev)); 552 else 553 return 0; 554 555 if (!pv) 556 return 0; 557 558 /* Each VLAN is returned in bridge_vlan_info along with flags */ 559 return pv->num_vlans * nla_total_size(sizeof(struct bridge_vlan_info)); 560} 561 562static struct rtnl_af_ops br_af_ops = { 563 .family = AF_BRIDGE, 564 .get_link_af_size = br_get_link_af_size, 565}; 566 567struct rtnl_link_ops br_link_ops __read_mostly = { 568 .kind = "bridge", 569 .priv_size = sizeof(struct net_bridge), 570 .setup = br_dev_setup, 571 .maxtype = IFLA_BRPORT_MAX, 572 .policy = br_policy, 573 .validate = br_validate, 574 .newlink = br_dev_newlink, 575 .changelink = br_changelink, 576 .dellink = br_dev_delete, 577 .get_size = br_get_size, 578 .fill_info = br_fill_info, 579 580 .slave_maxtype = IFLA_BRPORT_MAX, 581 .slave_policy = br_port_policy, 582 .slave_changelink = br_port_slave_changelink, 583 .get_slave_size = br_port_get_slave_size, 584 .fill_slave_info = br_port_fill_slave_info, 585}; 586 587int __init br_netlink_init(void) 588{ 589 int err; 590 591 br_mdb_init(); 592 rtnl_af_register(&br_af_ops); 593 594 err = rtnl_link_register(&br_link_ops); 595 if (err) 596 goto out_af; 597 598 return 0; 599 600out_af: 601 rtnl_af_unregister(&br_af_ops); 602 br_mdb_uninit(); 603 return err; 604} 605 606void br_netlink_fini(void) 607{ 608 br_mdb_uninit(); 609 rtnl_af_unregister(&br_af_ops); 610 rtnl_link_unregister(&br_link_ops); 611} 612