diff --git a/package/gluon-mesh-batman-adv/files/lib/netifd/proto/gluon_bat0.sh b/package/gluon-mesh-batman-adv/files/lib/netifd/proto/gluon_bat0.sh index 8424050f64..91ea0d3567 100755 --- a/package/gluon-mesh-batman-adv/files/lib/netifd/proto/gluon_bat0.sh +++ b/package/gluon-mesh-batman-adv/files/lib/netifd/proto/gluon_bat0.sh @@ -47,6 +47,7 @@ proto_gluon_bat0_setup() { batctl orig_interval 5000 batctl hop_penalty "$(lookup_uci 'gluon.mesh_batman_adv.hop_penalty' 15)" + batctl noflood_mark 0x4/0x4 case "$gw_mode" in server) diff --git a/patches/packages/routing/0002-batman-adv-Introduce-no-noflood-mark.patch b/patches/packages/routing/0002-batman-adv-Introduce-no-noflood-mark.patch new file mode 100644 index 0000000000..d6ec957120 --- /dev/null +++ b/patches/packages/routing/0002-batman-adv-Introduce-no-noflood-mark.patch @@ -0,0 +1,157 @@ +From: Linus Lüssing +Date: Sun, 10 Nov 2024 19:34:26 +0100 +Subject: batman-adv: Introduce no noflood mark + +This mark prevents a multicast packet being flooded through the whole +mesh. The advantage of marking certain multicast packets via e.g. +ebtables instead of dropping is then the following: + +This allows an administrator to let specific multicast packets pass as +long as they are forwarded to a limited number of nodes only and are +therefore creating no burdon to unrelated nodes. + +Signed-off-by: Linus Lüssing + +diff --git a/batman-adv/patches/2002-batman-adv-Introduce-no-noflood-mark.patch b/batman-adv/patches/2002-batman-adv-Introduce-no-noflood-mark.patch +new file mode 100644 +index 0000000000000000000000000000000000000000..6058bff5bb4d07c78a82f59b47213a52b04d6a1e +--- /dev/null ++++ b/batman-adv/patches/2002-batman-adv-Introduce-no-noflood-mark.patch +@@ -0,0 +1,137 @@ ++From: Linus Lüssing ++Date: Sat, 31 Mar 2018 03:36:19 +0200 ++Subject: batman-adv: Introduce no noflood mark ++ ++This mark prevents a multicast packet being flooded through the whole ++mesh. The advantage of marking certain multicast packets via e.g. ++ebtables instead of dropping is then the following: ++ ++This allows an administrator to let specific multicast packets pass as ++long as they are forwarded to a limited number of nodes only and are ++therefore creating no burdon to unrelated nodes. ++ ++Signed-off-by: Linus Lüssing ++ ++--- a/include/uapi/linux/batman_adv.h +++++ b/include/uapi/linux/batman_adv.h ++@@ -481,6 +481,18 @@ enum batadv_nl_attrs { ++ */ ++ BATADV_ATTR_MULTICAST_FANOUT, ++ +++ /** +++ * @BATADV_ATTR_NOFLOOD_MARK: the noflood mark which allows to tag +++ * frames which should never be broadcast flooded through the mesh. +++ */ +++ BATADV_ATTR_NOFLOOD_MARK, +++ +++ /** +++ * @BATADV_ATTR_NOFLOOD_MASK: the noflood (bit)mask which allows to tag +++ * frames which should never be broadcast flooded through the mesh. +++ */ +++ BATADV_ATTR_NOFLOOD_MASK, +++ ++ /* add attributes above here, update the policy in netlink.c */ ++ ++ /** ++--- a/net/batman-adv/netlink.c +++++ b/net/batman-adv/netlink.c ++@@ -133,6 +133,8 @@ static const struct nla_policy batadv_ne ++ [BATADV_ATTR_AP_ISOLATION_ENABLED] = { .type = NLA_U8 }, ++ [BATADV_ATTR_ISOLATION_MARK] = { .type = NLA_U32 }, ++ [BATADV_ATTR_ISOLATION_MASK] = { .type = NLA_U32 }, +++ [BATADV_ATTR_NOFLOOD_MARK] = { .type = NLA_U32 }, +++ [BATADV_ATTR_NOFLOOD_MASK] = { .type = NLA_U32 }, ++ [BATADV_ATTR_BONDING_ENABLED] = { .type = NLA_U8 }, ++ [BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED] = { .type = NLA_U8 }, ++ [BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED] = { .type = NLA_U8 }, ++@@ -285,6 +287,14 @@ static int batadv_netlink_mesh_fill(stru ++ bat_priv->isolation_mark_mask)) ++ goto nla_put_failure; ++ +++ if (nla_put_u32(msg, BATADV_ATTR_NOFLOOD_MARK, +++ bat_priv->noflood_mark)) +++ goto nla_put_failure; +++ +++ if (nla_put_u32(msg, BATADV_ATTR_NOFLOOD_MASK, +++ bat_priv->noflood_mark_mask)) +++ goto nla_put_failure; +++ ++ if (nla_put_u8(msg, BATADV_ATTR_BONDING_ENABLED, ++ !!atomic_read(&bat_priv->bonding))) ++ goto nla_put_failure; ++@@ -463,6 +473,18 @@ static int batadv_netlink_set_mesh(struc ++ bat_priv->isolation_mark_mask = nla_get_u32(attr); ++ } ++ +++ if (info->attrs[BATADV_ATTR_NOFLOOD_MARK]) { +++ attr = info->attrs[BATADV_ATTR_NOFLOOD_MARK]; +++ +++ bat_priv->noflood_mark = nla_get_u32(attr); +++ } +++ +++ if (info->attrs[BATADV_ATTR_NOFLOOD_MASK]) { +++ attr = info->attrs[BATADV_ATTR_NOFLOOD_MASK]; +++ +++ bat_priv->noflood_mark_mask = nla_get_u32(attr); +++ } +++ ++ if (info->attrs[BATADV_ATTR_BONDING_ENABLED]) { ++ attr = info->attrs[BATADV_ATTR_BONDING_ENABLED]; ++ ++--- a/net/batman-adv/soft-interface.c +++++ b/net/batman-adv/soft-interface.c ++@@ -177,6 +177,23 @@ static void batadv_interface_set_rx_mode ++ { ++ } ++ +++/** +++ * batadv_send_skb_has_noflood_mark() - check if packet has a noflood mark +++ * @bat_priv: the bat priv with all the soft interface information +++ * @skb: the packet to check +++ * +++ * Return: True if the skb's mark matches a configured noflood mark and +++ * noflood mark mask. False otherwise. +++ */ +++static bool +++batadv_skb_has_noflood_mark(struct batadv_priv *bat_priv, struct sk_buff *skb) +++{ +++ u32 match_mark = skb->mark & bat_priv->noflood_mark_mask; +++ +++ return bat_priv->noflood_mark_mask && +++ match_mark == bat_priv->noflood_mark; +++} +++ ++ static netdev_tx_t batadv_interface_tx(struct sk_buff *skb, ++ struct net_device *soft_iface) ++ { ++@@ -333,6 +350,9 @@ send: ++ if (batadv_dat_snoop_outgoing_arp_request(bat_priv, skb)) ++ brd_delay = msecs_to_jiffies(ARP_REQ_DELAY); ++ +++ if (batadv_skb_has_noflood_mark(bat_priv, skb)) +++ goto dropped; +++ ++ if (batadv_skb_head_push(skb, sizeof(*bcast_packet)) < 0) ++ goto dropped; ++ ++--- a/net/batman-adv/types.h +++++ b/net/batman-adv/types.h ++@@ -1711,6 +1711,18 @@ struct batadv_priv { ++ */ ++ u32 isolation_mark_mask; ++ +++ /** +++ * @noflood_mark: the skb->mark value used to allow directed targeting +++ * only +++ */ +++ u32 noflood_mark; +++ +++ /** +++ * @noflood_mark_mask: bitmask identifying the bits in skb->mark to be +++ * used for the noflood mark +++ */ +++ u32 noflood_mark_mask; +++ ++ /** @bcast_seqno: last sent broadcast packet sequence number */ ++ atomic_t bcast_seqno; ++ diff --git a/patches/packages/routing/0003-batctl-Add-noflood_mark-command.patch b/patches/packages/routing/0003-batctl-Add-noflood_mark-command.patch new file mode 100644 index 0000000000..d6d3537fc2 --- /dev/null +++ b/patches/packages/routing/0003-batctl-Add-noflood_mark-command.patch @@ -0,0 +1,231 @@ +From: Linus Lüssing +Date: Sun, 10 Nov 2024 19:35:52 +0100 +Subject: batctl: Add noflood_mark command + +Adds support for the new 'noflood_mark' setting in batman-adv. + +Signed-off-by: Linus Lüssing + +diff --git a/batctl/patches/2002-batctl-Add-noflood_mark-command.patch b/batctl/patches/2002-batctl-Add-noflood_mark-command.patch +new file mode 100644 +index 0000000000000000000000000000000000000000..d4498603785a21a71951a6195cd96661be44d685 +--- /dev/null ++++ b/batctl/patches/2002-batctl-Add-noflood_mark-command.patch +@@ -0,0 +1,217 @@ ++From 12884631753aa24d9e36c5d65950320ecab61384 Mon Sep 17 00:00:00 2001 ++From: =?UTF-8?q?Linus=20L=C3=BCssing?= ++Date: Fri, 26 Apr 2019 19:27:38 +0200 ++Subject: [PATCH] batctl: Add noflood_mark command ++MIME-Version: 1.0 ++Content-Type: text/plain; charset=UTF-8 ++Content-Transfer-Encoding: 8bit ++ ++Adds support for the new 'noflood_mark' setting in batman-adv. ++ ++Signed-off-by: Linus Lüssing ++--- ++ Makefile | 1 + ++ README.rst | 15 ++++++ ++ batman_adv.h | 12 +++++ ++ noflood_mark.c | 140 +++++++++++++++++++++++++++++++++++++++++++++++++ ++ 4 files changed, 168 insertions(+) ++ create mode 100644 noflood_mark.c ++ ++--- a/Makefile +++++ b/Makefile ++@@ -69,6 +69,7 @@ $(eval $(call add_command,multicast_mode ++ $(eval $(call add_command,neighbors,y)) ++ $(eval $(call add_command,neighbors_json,y)) ++ $(eval $(call add_command,network_coding,y)) +++$(eval $(call add_command,noflood_mark,y)) ++ $(eval $(call add_command,orig_interval,y)) ++ $(eval $(call add_command,originators,y)) ++ $(eval $(call add_command,originators_json,y)) ++--- a/README.rst +++++ b/README.rst ++@@ -430,6 +430,21 @@ Example:: ++ ++ ++ +++batctl noflood_mark +++======================= +++ +++display or modify noflood_mark setting +++ +++Usage:: +++ +++ batctl noflood_mark|nf $value[/0x$mask] +++ +++* Example 1: ``batctl nf 0x00000001/0xffffffff`` +++* Example 2: ``batctl nf 0x00040000/0xffff0000`` +++* Example 3: ``batctl nf 16`` +++* Example 4: ``batctl nf 0x0f`` +++ +++ ++ batctl translocal ++ ----------------- ++ ++--- a/batman_adv.h +++++ b/batman_adv.h ++@@ -481,6 +481,18 @@ enum batadv_nl_attrs { ++ */ ++ BATADV_ATTR_MULTICAST_FANOUT, ++ +++ /** +++ * @BATADV_ATTR_NOFLOOD_MARK: the noflood mark which allows to tag +++ * frames which should never be broadcast flooded through the mesh. +++ */ +++ BATADV_ATTR_NOFLOOD_MARK, +++ +++ /** +++ * @BATADV_ATTR_NOFLOOD_MASK: the noflood (bit)mask which allows to tag +++ * frames which should never be broadcast flooded through the mesh. +++ */ +++ BATADV_ATTR_NOFLOOD_MASK, +++ ++ /* add attributes above here, update the policy in netlink.c */ ++ ++ /** ++--- /dev/null +++++ b/noflood_mark.c ++@@ -0,0 +1,140 @@ +++// SPDX-License-Identifier: GPL-2.0 +++/* Copyright (C) 2009-2019 B.A.T.M.A.N. contributors: +++ * +++ * Antonio Quartulli +++ * Linus Lüssing +++ * +++ * License-Filename: LICENSES/preferred/GPL-2.0 +++ */ +++ +++#include +++#include +++#include +++#include +++ +++#include "main.h" +++#include "sys.h" +++ +++static struct noflood_mark_data { +++ uint32_t noflood_mark; +++ uint32_t noflood_mask; +++} noflood_mark; +++ +++static int parse_noflood_mark(struct state *state, int argc, char *argv[]) +++{ +++ struct settings_data *settings = state->cmd->arg; +++ struct noflood_mark_data *data = settings->data; +++ char *mask_ptr; +++ char buff[256]; +++ uint32_t mark; +++ uint32_t mask; +++ char *endptr; +++ +++ if (argc != 2) { +++ fprintf(stderr, "Error - incorrect number of arguments (expected 1)\n"); +++ return -EINVAL; +++ } +++ +++ strncpy(buff, argv[1], sizeof(buff)); +++ buff[sizeof(buff) - 1] = '\0'; +++ +++ /* parse the mask if it has been specified, otherwise assume the mask is +++ * the biggest possible +++ */ +++ mask = 0xFFFFFFFF; +++ mask_ptr = strchr(buff, '/'); +++ if (mask_ptr) { +++ *mask_ptr = '\0'; +++ mask_ptr++; +++ +++ /* the mask must be entered in hex base as it is going to be a +++ * bitmask and not a prefix length +++ */ +++ mask = strtoul(mask_ptr, &endptr, 16); +++ if (!endptr || *endptr != '\0') +++ goto inval_format; +++ } +++ +++ /* the mark can be entered in any base */ +++ mark = strtoul(buff, &endptr, 0); +++ if (!endptr || *endptr != '\0') +++ goto inval_format; +++ +++ data->noflood_mask = mask; +++ /* erase bits not covered by the mask */ +++ data->noflood_mark = mark & mask; +++ +++ return 0; +++ +++inval_format: +++ fprintf(stderr, "Error - incorrect number of arguments (expected 1)\n"); +++ fprintf(stderr, "The following formats for mark(/mask) are allowed:\n"); +++ fprintf(stderr, " * 0x12345678\n"); +++ fprintf(stderr, " * 0x12345678/0xabcdef09\n"); +++ return -EINVAL; +++} +++ +++static int print_noflood_mark(struct nl_msg *msg, void *arg) +++{ +++ struct nlattr *attrs[BATADV_ATTR_MAX + 1]; +++ struct nlmsghdr *nlh = nlmsg_hdr(msg); +++ struct genlmsghdr *ghdr; +++ int *result = arg; +++ +++ if (!genlmsg_valid_hdr(nlh, 0)) +++ return NL_OK; +++ +++ ghdr = nlmsg_data(nlh); +++ +++ if (nla_parse(attrs, BATADV_ATTR_MAX, genlmsg_attrdata(ghdr, 0), +++ genlmsg_len(ghdr), batadv_netlink_policy)) { +++ return NL_OK; +++ } +++ +++ if (!attrs[BATADV_ATTR_NOFLOOD_MARK] || +++ !attrs[BATADV_ATTR_NOFLOOD_MASK]) +++ return NL_OK; +++ +++ printf("0x%08x/0x%08x\n", +++ nla_get_u32(attrs[BATADV_ATTR_NOFLOOD_MARK]), +++ nla_get_u32(attrs[BATADV_ATTR_NOFLOOD_MASK])); +++ +++ *result = 0; +++ return NL_STOP; +++} +++ +++static int get_noflood_mark(struct state *state) +++{ +++ return sys_simple_nlquery(state, BATADV_CMD_GET_MESH, +++ NULL, print_noflood_mark); +++} +++ +++static int set_attrs_noflood_mark(struct nl_msg *msg, void *arg) +++{ +++ struct state *state = arg; +++ struct settings_data *settings = state->cmd->arg; +++ struct noflood_mark_data *data = settings->data; +++ +++ nla_put_u32(msg, BATADV_ATTR_NOFLOOD_MARK, data->noflood_mark); +++ nla_put_u32(msg, BATADV_ATTR_NOFLOOD_MASK, data->noflood_mask); +++ +++ return 0; +++} +++ +++static int set_noflood_mark(struct state *state) +++{ +++ return sys_simple_nlquery(state, BATADV_CMD_SET_MESH, +++ set_attrs_noflood_mark, NULL); +++} +++ +++static struct settings_data batctl_settings_noflood_mark = { +++ .data = &noflood_mark, +++ .parse = parse_noflood_mark, +++ .netlink_get = get_noflood_mark, +++ .netlink_set = set_noflood_mark, +++}; +++ +++COMMAND_NAMED(SUBCOMMAND, noflood_mark, "nf", handle_sys_setting, +++ COMMAND_FLAG_MESH_IFACE | COMMAND_FLAG_NETLINK, +++ &batctl_settings_noflood_mark, +++ "[mark] \tdisplay or modify noflood_mark setting");