bridge: allow creating/deleting fdb entries via netlink

Use RTM_NEWNEIGH and RTM_DELNEIGH to allow updating of entries in bridge forwarding table. This allows manipulating static entries which is not possible with existing tools. Example (using bridge extensions to iproute2) # br fdb add 00:02:03:04:05:06 dev eth0 Signed-off-by: Stephen Hemminger <shemminger@vyatta.com> Signed-off-by: David S. Miller <davem@davemloft.net>
author: stephen hemminger <shemminger@vyatta.com> 2011-04-04 10:03:31 -0400
committer: David S. Miller <davem@davemloft.net> 2011-04-04 20:22:28 -0400
commit: 36fd2b63e3b4336744cf3f6a6c9543ecbec334a7 (patch)
tree: 0793a71cf90d8bb3ea1573564ad5bed485324396 /net/bridge
parent: b078f0df676233fc7ebc1ab270bd11ef5824bb64 (diff)
3 files changed, 144 insertions, 0 deletions
diff --git a/net/bridge/br_fdb.c b/net/bridge/br_fdb.c
index 5e19e61396c3..498f47c1c453 100644
--- a/net/bridge/br_fdb.c
+++ b/net/bridge/br_fdb.c
@@ -555,3 +555,142 @@ skip:
        return skb->len;
 }
+/* Create new static fdb entry */
+static int fdb_add_entry(struct net_bridge_port *source, const __u8 *addr,
+                         __u16 state)
+{
+        struct net_bridge *br = source->br;
+        struct hlist_head *head = &br->hash[br_mac_hash(addr)];
+        struct net_bridge_fdb_entry *fdb;
+        fdb = fdb_find(head, addr);
+        if (fdb)
+                return -EEXIST;
+        fdb = fdb_create(head, source, addr);
+        if (!fdb)
+                return -ENOMEM;
+        if (state & NUD_PERMANENT)
+                fdb->is_local = fdb->is_static = 1;
+        else if (state & NUD_NOARP)
+                fdb->is_static = 1;
+        return 0;
+}
+/* Add new permanent fdb entry with RTM_NEWNEIGH */
+int br_fdb_add(struct sk_buff *skb, struct nlmsghdr *nlh, void *arg)
+{
+        struct net *net = sock_net(skb->sk);
+        struct ndmsg *ndm;
+        struct nlattr *tb[NDA_MAX+1];
+        struct net_device *dev;
+        struct net_bridge_port *p;
+        const __u8 *addr;
+        int err;
+        ASSERT_RTNL();
+        err = nlmsg_parse(nlh, sizeof(*ndm), tb, NDA_MAX, NULL);
+        if (err < 0)
+                return err;
+        ndm = nlmsg_data(nlh);
+        if (ndm->ndm_ifindex == 0) {
+                pr_info("bridge: RTM_NEWNEIGH with invalid ifindex\n");
+                return -EINVAL;
+        }
+        dev = __dev_get_by_index(net, ndm->ndm_ifindex);
+        if (dev == NULL) {
+                pr_info("bridge: RTM_NEWNEIGH with unknown ifindex\n");
+                return -ENODEV;
+        }
+        if (!tb[NDA_LLADDR] || nla_len(tb[NDA_LLADDR]) != ETH_ALEN) {
+                pr_info("bridge: RTM_NEWNEIGH with invalid address\n");
+                return -EINVAL;
+        }
+        addr = nla_data(tb[NDA_LLADDR]);
+        if (!is_valid_ether_addr(addr)) {
+                pr_info("bridge: RTM_NEWNEIGH with invalid ether address\n");
+                return -EINVAL;
+        }
+        p = br_port_get_rtnl(dev);
+        if (p == NULL) {
+                pr_info("bridge: RTM_NEWNEIGH %s not a bridge port\n",
+                        dev->name);
+                return -EINVAL;
+        }
+        spin_lock_bh(&p->br->hash_lock);
+        err = fdb_add_entry(p, addr, ndm->ndm_state);
+        spin_unlock_bh(&p->br->hash_lock);
+        return err;
+}
+static int fdb_delete_by_addr(struct net_bridge_port *p, const u8 *addr)
+{
+        struct net_bridge *br = p->br;
+        struct hlist_head *head = &br->hash[br_mac_hash(addr)];
+        struct net_bridge_fdb_entry *fdb;
+        fdb = fdb_find(head, addr);
+        if (!fdb)
+                return -ENOENT;
+        fdb_delete(fdb);
+        return 0;
+}
+/* Remove neighbor entry with RTM_DELNEIGH */
+int br_fdb_delete(struct sk_buff *skb, struct nlmsghdr *nlh, void *arg)
+{
+        struct net *net = sock_net(skb->sk);
+        struct ndmsg *ndm;
+        struct net_bridge_port *p;
+        struct nlattr *llattr;
+        const __u8 *addr;
+        struct net_device *dev;
+        int err;
+        ASSERT_RTNL();
+        if (nlmsg_len(nlh) < sizeof(*ndm))
+                return -EINVAL;
+        ndm = nlmsg_data(nlh);
+        if (ndm->ndm_ifindex == 0) {
+                pr_info("bridge: RTM_DELNEIGH with invalid ifindex\n");
+                return -EINVAL;
+        }
+        dev = __dev_get_by_index(net, ndm->ndm_ifindex);
+        if (dev == NULL) {
+                pr_info("bridge: RTM_DELNEIGH with unknown ifindex\n");
+                return -ENODEV;
+        }
+        llattr = nlmsg_find_attr(nlh, sizeof(*ndm), NDA_LLADDR);
+        if (llattr == NULL || nla_len(llattr) != ETH_ALEN) {
+                pr_info("bridge: RTM_DELNEIGH with invalid address\n");
+                return -EINVAL;
+        }
+        addr = nla_data(llattr);
+        p = br_port_get_rtnl(dev);
+        if (p == NULL) {
+                pr_info("bridge: RTM_DELNEIGH %s not a bridge port\n",
+                        dev->name);
+                return -EINVAL;
+        }
+        spin_lock_bh(&p->br->hash_lock);
+        err = fdb_delete_by_addr(p, addr);
+        spin_unlock_bh(&p->br->hash_lock);
+        return err;
+}
diff --git a/net/bridge/br_netlink.c b/net/bridge/br_netlink.c
index cedcafd115f3..fb7d5a7478fe 100644
--- a/net/bridge/br_netlink.c
+++ b/net/bridge/br_netlink.c
@@ -196,6 +196,9 @@ int __init br_netlink_init(void)
        /* Only the first call to __rtnl_register can fail */
        __rtnl_register(PF_BRIDGE, RTM_SETLINK, br_rtm_setlink, NULL);
+        __rtnl_register(PF_BRIDGE, RTM_NEWNEIGH, br_fdb_add, NULL);
+        __rtnl_register(PF_BRIDGE, RTM_DELNEIGH, br_fdb_delete, NULL);
        __rtnl_register(PF_BRIDGE, RTM_GETNEIGH, NULL, br_fdb_dump);
        return 0;
diff --git a/net/bridge/br_private.h b/net/bridge/br_private.h
index 884d245a205a..4bbe0d14c9a2 100644
--- a/net/bridge/br_private.h
+++ b/net/bridge/br_private.h
@@ -355,6 +355,8 @@ extern void br_fdb_update(struct net_bridge *br,
                          struct net_bridge_port *source,
                          const unsigned char *addr);
 extern int br_fdb_dump(struct sk_buff *skb, struct netlink_callback *cb);
+extern int br_fdb_add(struct sk_buff *skb, struct nlmsghdr *nlh, void *arg);
+extern int br_fdb_delete(struct sk_buff *skb, struct nlmsghdr *nlh, void *arg);
 /* br_forward.c */
 extern void br_deliver(const struct net_bridge_port *to,
author	stephen hemminger <shemminger@vyatta.com>	2011-04-04 10:03:31 -0400
committer	David S. Miller <davem@davemloft.net>	2011-04-04 20:22:28 -0400
commit	36fd2b63e3b4336744cf3f6a6c9543ecbec334a7 (patch)
tree	0793a71cf90d8bb3ea1573564ad5bed485324396 /net/bridge
parent	b078f0df676233fc7ebc1ab270bd11ef5824bb64 (diff)

diff --git a/net/bridge/br_fdb.c b/net/bridge/br_fdb.c index 5e19e61396c3..498f47c1c453 100644 --- a/net/bridge/br_fdb.c +++ b/net/bridge/br_fdb.c
@@ -555,3 +555,142 @@ skip:
555		555
556	return skb->len;	556	return skb->len;
557	}	557	}
		558
		559	/* Create new static fdb entry */
		560	static int fdb_add_entry(struct net_bridge_port source, const __u8 addr,
		561	__u16 state)
		562	{
		563	struct net_bridge *br = source->br;
		564	struct hlist_head *head = &br->hash[br_mac_hash(addr)];
		565	struct net_bridge_fdb_entry *fdb;
		566
		567	fdb = fdb_find(head, addr);
		568	if (fdb)
		569	return -EEXIST;
		570
		571	fdb = fdb_create(head, source, addr);
		572	if (!fdb)
		573	return -ENOMEM;
		574
		575	if (state & NUD_PERMANENT)
		576	fdb->is_local = fdb->is_static = 1;
		577	else if (state & NUD_NOARP)
		578	fdb->is_static = 1;
		579	return 0;
		580	}
		581
		582	/* Add new permanent fdb entry with RTM_NEWNEIGH */
		583	int br_fdb_add(struct sk_buff skb, struct nlmsghdr nlh, void *arg)
		584	{
		585	struct net *net = sock_net(skb->sk);
		586	struct ndmsg *ndm;
		587	struct nlattr *tb[NDA_MAX+1];
		588	struct net_device *dev;
		589	struct net_bridge_port *p;
		590	const __u8 *addr;
		591	int err;
		592
		593	ASSERT_RTNL();
		594	err = nlmsg_parse(nlh, sizeof(*ndm), tb, NDA_MAX, NULL);
		595	if (err < 0)
		596	return err;
		597
		598	ndm = nlmsg_data(nlh);
		599	if (ndm->ndm_ifindex == 0) {
		600	pr_info("bridge: RTM_NEWNEIGH with invalid ifindex\n");
		601	return -EINVAL;
		602	}
		603
		604	dev = __dev_get_by_index(net, ndm->ndm_ifindex);
		605	if (dev == NULL) {
		606	pr_info("bridge: RTM_NEWNEIGH with unknown ifindex\n");
		607	return -ENODEV;
		608	}
		609
		610	if (!tb[NDA_LLADDR] \|\| nla_len(tb[NDA_LLADDR]) != ETH_ALEN) {
		611	pr_info("bridge: RTM_NEWNEIGH with invalid address\n");
		612	return -EINVAL;
		613	}
		614
		615	addr = nla_data(tb[NDA_LLADDR]);
		616	if (!is_valid_ether_addr(addr)) {
		617	pr_info("bridge: RTM_NEWNEIGH with invalid ether address\n");
		618	return -EINVAL;
		619	}
		620
		621	p = br_port_get_rtnl(dev);
		622	if (p == NULL) {
		623	pr_info("bridge: RTM_NEWNEIGH %s not a bridge port\n",
		624	dev->name);
		625	return -EINVAL;
		626	}
		627
		628	spin_lock_bh(&p->br->hash_lock);
		629	err = fdb_add_entry(p, addr, ndm->ndm_state);
		630	spin_unlock_bh(&p->br->hash_lock);
		631
		632	return err;
		633	}
		634
		635	static int fdb_delete_by_addr(struct net_bridge_port p, const u8 addr)
		636	{
		637	struct net_bridge *br = p->br;
		638	struct hlist_head *head = &br->hash[br_mac_hash(addr)];
		639	struct net_bridge_fdb_entry *fdb;
		640
		641	fdb = fdb_find(head, addr);
		642	if (!fdb)
		643	return -ENOENT;
		644
		645	fdb_delete(fdb);
		646	return 0;
		647	}
		648
		649	/* Remove neighbor entry with RTM_DELNEIGH */
		650	int br_fdb_delete(struct sk_buff skb, struct nlmsghdr nlh, void *arg)
		651	{
		652	struct net *net = sock_net(skb->sk);
		653	struct ndmsg *ndm;
		654	struct net_bridge_port *p;
		655	struct nlattr *llattr;
		656	const __u8 *addr;
		657	struct net_device *dev;
		658	int err;
		659
		660	ASSERT_RTNL();
		661	if (nlmsg_len(nlh) < sizeof(*ndm))
		662	return -EINVAL;
		663
		664	ndm = nlmsg_data(nlh);
		665	if (ndm->ndm_ifindex == 0) {
		666	pr_info("bridge: RTM_DELNEIGH with invalid ifindex\n");
		667	return -EINVAL;
		668	}
		669
		670	dev = __dev_get_by_index(net, ndm->ndm_ifindex);
		671	if (dev == NULL) {
		672	pr_info("bridge: RTM_DELNEIGH with unknown ifindex\n");
		673	return -ENODEV;
		674	}
		675
		676	llattr = nlmsg_find_attr(nlh, sizeof(*ndm), NDA_LLADDR);
		677	if (llattr == NULL \|\| nla_len(llattr) != ETH_ALEN) {
		678	pr_info("bridge: RTM_DELNEIGH with invalid address\n");
		679	return -EINVAL;
		680	}
		681
		682	addr = nla_data(llattr);
		683
		684	p = br_port_get_rtnl(dev);
		685	if (p == NULL) {
		686	pr_info("bridge: RTM_DELNEIGH %s not a bridge port\n",
		687	dev->name);
		688	return -EINVAL;
		689	}
		690
		691	spin_lock_bh(&p->br->hash_lock);
		692	err = fdb_delete_by_addr(p, addr);
		693	spin_unlock_bh(&p->br->hash_lock);
		694
		695	return err;
		696	}


diff --git a/net/bridge/br_netlink.c b/net/bridge/br_netlink.c index cedcafd115f3..fb7d5a7478fe 100644 --- a/net/bridge/br_netlink.c +++ b/net/bridge/br_netlink.c
@@ -196,6 +196,9 @@ int __init br_netlink_init(void)
196		196
197	/* Only the first call to __rtnl_register can fail */	197	/* Only the first call to __rtnl_register can fail */
198	__rtnl_register(PF_BRIDGE, RTM_SETLINK, br_rtm_setlink, NULL);	198	__rtnl_register(PF_BRIDGE, RTM_SETLINK, br_rtm_setlink, NULL);
		199
		200	__rtnl_register(PF_BRIDGE, RTM_NEWNEIGH, br_fdb_add, NULL);
		201	__rtnl_register(PF_BRIDGE, RTM_DELNEIGH, br_fdb_delete, NULL);
199	__rtnl_register(PF_BRIDGE, RTM_GETNEIGH, NULL, br_fdb_dump);	202	__rtnl_register(PF_BRIDGE, RTM_GETNEIGH, NULL, br_fdb_dump);
200		203
201	return 0;	204	return 0;


diff --git a/net/bridge/br_private.h b/net/bridge/br_private.h index 884d245a205a..4bbe0d14c9a2 100644 --- a/net/bridge/br_private.h +++ b/net/bridge/br_private.h
@@ -355,6 +355,8 @@ extern void br_fdb_update(struct net_bridge *br,
355	struct net_bridge_port *source,	355	struct net_bridge_port *source,
356	const unsigned char *addr);	356	const unsigned char *addr);
357	extern int br_fdb_dump(struct sk_buff skb, struct netlink_callback cb);	357	extern int br_fdb_dump(struct sk_buff skb, struct netlink_callback cb);
		358	extern int br_fdb_add(struct sk_buff skb, struct nlmsghdr nlh, void *arg);
		359	extern int br_fdb_delete(struct sk_buff skb, struct nlmsghdr nlh, void *arg);
358		360
359	/* br_forward.c */	361	/* br_forward.c */
360	extern void br_deliver(const struct net_bridge_port *to,	362	extern void br_deliver(const struct net_bridge_port *to,