Received: by 2002:a89:413:0:b0:1fd:dba5:e537 with SMTP id m19csp815132lqs;
        Fri, 14 Jun 2024 06:36:25 -0700 (PDT)
X-Forwarded-Encrypted: i=3; AJvYcCWHqWuPmtP+quFwyb/UtePTz/L4iBrITLHKk/neA3k+A7kR8c5zurDaUrjVk6H9uCD2T01voO0NJ3eOT9XIIlAfHfQhWfaO2yVFCEz90g==
X-Google-Smtp-Source: AGHT+IGYb4baQM/r5Tiifkv0haOY+i+wwlfFSdWmMWecwT1R0F4wsWjgnnJU36lYJ+HPGG+ZJWZn
X-Received: by 2002:a17:906:259a:b0:a6f:606b:f987 with SMTP id a640c23a62f3a-a6f60dc3641mr159979166b.48.1718372184952;
        Fri, 14 Jun 2024 06:36:24 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1718372184; cv=pass;
        d=google.com; s=arc-20160816;
        b=QbP1TZO4wtObA1BB9l3nPRPNrChKpaRLhffNiRtRBpKuaDOn+Ko39+TLCIHaJbMm2I
         d/77FbFCSyJjIn2H8Y2R45l8yinziwzOYY1YXF6LO6isNyNZBUdIqHWK6GCv8T6Rfbpi
         5i/K6flbrNr7PaJG4ctydI41tCwrAyxXO4qJ6LFe1PQS1xD/rhq0ggy2u079XbCNxlQ0
         DXJBbC9YS+bx286Q5uaJYYb+WPnLziPCnKOshn69JIPnf8BD19XuTa//oYBt1wi2tmCE
         HRYTtfELtU+h9j1zbWxifVmkQiIAV8s0troX1N6TayNvLgG3w5OVojDUMuM9E5bGPDqz
         sodA==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-transfer-encoding:mime-version:list-unsubscribe
         :list-subscribe:list-id:precedence:message-id:date:subject:cc:to
         :from:dkim-signature;
        bh=GK8h6NQNP7JzdpPbE6t/kIzMjg5w4wGbCy5qhXBbtjs=;
        fh=MgE7GoOxRX6Pn7WSVgcmyCRKSqgxHyf9pkZXdwTOVNU=;
        b=ja2qxcHkUWfBF2apzK+FXTQ8DWLt3OzYOiuCYK/aQSRCwjisJx4KCpg0UT7g8e6SJV
         ecPMiyM8BNmK64Tyu1pj8wefIB19n5hGqBIQsI+9GLQQVv44gCK8CWpU37p+yCkkBYCB
         8k8QKH9V7JfFCPHSMgOrFeYGZztMVu+7mtlke5fsL4izIB5hj7s8mq/qgRzSihpMciIq
         LBUXgiUmQjKlYI53Fbxm1YTsuhwGiT9mhfYKAo0Z2cZ0jgEo0rl6ALCJqe+0YbW+g56d
         mHowGu6HZ1ly6GmC+t2F4jzWwzERkKcaC/N1bWZXXtadXLtzQaVr/8B9cmj1E1IRwzVZ
         1IRA==;
        dara=google.com
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@canonical.com header.s=20210705 header.b=f4k+PHYQ;
       arc=pass (i=1 spf=pass spfdomain=canonical.com dkim=pass dkdomain=canonical.com dmarc=pass fromdomain=canonical.com);
       spf=pass (google.com: domain of linux-kernel+bounces-214948-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-214948-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=canonical.com
Return-Path: <linux-kernel+bounces-214948-linux.lists.archive=gmail.com@vger.kernel.org>
Received: from am.mirrors.kernel.org (am.mirrors.kernel.org. [2604:1380:4601:e00::3])
        by mx.google.com with ESMTPS id 4fb4d7f45d1cf-57cb742c66bsi1708388a12.289.2024.06.14.06.36.24
        for <linux.lists.archive@gmail.com>
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Fri, 14 Jun 2024 06:36:24 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel+bounces-214948-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) client-ip=2604:1380:4601:e00::3;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@canonical.com header.s=20210705 header.b=f4k+PHYQ;
       arc=pass (i=1 spf=pass spfdomain=canonical.com dkim=pass dkdomain=canonical.com dmarc=pass fromdomain=canonical.com);
       spf=pass (google.com: domain of linux-kernel+bounces-214948-linux.lists.archive=gmail.com@vger.kernel.org designates 2604:1380:4601:e00::3 as permitted sender) smtp.mailfrom="linux-kernel+bounces-214948-linux.lists.archive=gmail.com@vger.kernel.org";
       dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=canonical.com
Received: from smtp.subspace.kernel.org (wormhole.subspace.kernel.org [52.25.139.140])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by am.mirrors.kernel.org (Postfix) with ESMTPS id 7E4C41F25F61
	for <linux.lists.archive@gmail.com>; Fri, 14 Jun 2024 13:36:24 +0000 (UTC)
Received: from localhost.localdomain (localhost.localdomain [127.0.0.1])
	by smtp.subspace.kernel.org (Postfix) with ESMTP id 5A8824A1E;
	Fri, 14 Jun 2024 13:36:16 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org;
	dkim=pass (2048-bit key) header.d=canonical.com header.i=@canonical.com header.b="f4k+PHYQ"
Received: from smtp-relay-internal-1.canonical.com (smtp-relay-internal-1.canonical.com [185.125.188.123])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by smtp.subspace.kernel.org (Postfix) with ESMTPS id E62C74A22
	for <linux-kernel@vger.kernel.org>; Fri, 14 Jun 2024 13:36:10 +0000 (UTC)
Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=185.125.188.123
ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116;
	t=1718372175; cv=none; b=GtfQNIZM9g44jm3txebzPw4Yu3vmTIPRBLm/8SwCUxoUmupKe5Cu2sbji17WF9QoJcpoZU0BLCCdElEFIU97tZw3GB3JdmAfVcikB6ihgWuGjTpyACr78M69LRgUpSoj+umazjVVgR+CH5PLS0t+Wb6JMTvzqoIH+5YJG10DX7k=
ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org;
	s=arc-20240116; t=1718372175; c=relaxed/simple;
	bh=0Fyw2oi0PJ4zgHdtg5qFlJ/sWYDmUatojKDZyeTNDfs=;
	h=From:To:Cc:Subject:Date:Message-ID:MIME-Version; b=erugMZNx1PstzCJvRK95uHyrHgM+mUkZl/3jDloiD7Nap72JqRyDViQl1KDhX/loV+P0BYzREClXHjgtkOees6i7BJzZ1wXCB9z742R5UmVuaIxtVWA3vi87b+CHyOL7PAFvebLfabC1nowZUZuguTuPLLh6kchCxyQ27OsyJxc=
ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=canonical.com; spf=pass smtp.mailfrom=canonical.com; dkim=pass (2048-bit key) header.d=canonical.com header.i=@canonical.com header.b=f4k+PHYQ; arc=none smtp.client-ip=185.125.188.123
Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=canonical.com
Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=canonical.com
Received: from mail-pl1-f197.google.com (mail-pl1-f197.google.com [209.85.214.197])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256)
	(No client certificate requested)
	by smtp-relay-internal-1.canonical.com (Postfix) with ESMTPS id 1F87F3FE58
	for <linux-kernel@vger.kernel.org>; Fri, 14 Jun 2024 13:36:07 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=canonical.com;
	s=20210705; t=1718372167;
	bh=GK8h6NQNP7JzdpPbE6t/kIzMjg5w4wGbCy5qhXBbtjs=;
	h=From:To:Cc:Subject:Date:Message-ID:MIME-Version;
	b=f4k+PHYQZAkfzFW/yI86pWfmERS7dAI9o/dG8wWwiAd8vHvZ86BHcEPtE+ujbtCCO
	 doHrSt7oKaKlOGck0OtpYJpv9DG9T4XjG6OTx7h09VYaSuwmGbwvNOixhsXmxWjEuI
	 ywahsuPSX4AxBqNcLY3I9cUaSdrRXv8xOIqIAMP2lX2p2GwBbA4k+o5a0ynxa7dD0S
	 FjY0V1MTFFKqeNfY6e97htZkrYJ78VYerWl6AQ3wBzODyM5zt1Fi/ezYn7WuFahD8V
	 D7glNCGiKcEXUHGsNG55+oel5Yz/hZuOI7sywf0t4NuWwXuDKb2AaOGmA7WwVRAVvP
	 BVEKmvCPMnHgQ==
Received: by mail-pl1-f197.google.com with SMTP id d9443c01a7336-1f733390185so16495935ad.3
        for <linux-kernel@vger.kernel.org>; Fri, 14 Jun 2024 06:36:07 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1718372166; x=1718976966;
        h=content-transfer-encoding:mime-version:message-id:date:subject:cc
         :to:from:x-gm-message-state:from:to:cc:subject:date:message-id
         :reply-to;
        bh=GK8h6NQNP7JzdpPbE6t/kIzMjg5w4wGbCy5qhXBbtjs=;
        b=X4nfBdckAmqJM9itl1ysw/S7Llv5vy+HwZcoVyAQltHAnZq41e6jDnWSjWcFkG7hIL
         wa1b1kL1pRwW9HPv+TNXkWpF0nWHgCE92KjNlwvs+A/wzr20Xe1TyydnH5CByd55Re/N
         JWbE5RLih3hHIqFRBJ6bOJ/n7amqIfSLQVEKZbsDOJfYwMuhbtJJRQnjFejYjFKZo/wI
         btV4hjmerW+QYInHL/ISpj1Fpgs1NRv3VHJMo4usA53XvbRCIXW1OAEF3+fR+ZPkqqJO
         8Ox/SzTbOqJGZslF0EYVsvxUIk+IHSa7Kza/3zMrHpqbuVd7Ym6a3YP0+gNrM0Bt057K
         g2og==
X-Forwarded-Encrypted: i=1; AJvYcCWr7NljwwHA3bVy/PYaimU/6hg7CCbY4Yhz1Ahk0Y+JNZoObnfmzs3nKHqdsQtCE0BEFY8vcv8cuQKbd5SJTsrmvOgVUwxnpDvAHFMq
X-Gm-Message-State: AOJu0YwDBtpiurGbfeQUjkwG9VHY5U1vJchhTRsBgvjqHLoml2SAnwQB
	sEl4edV4CRwMwKRmzXUryHEFaLJZcaEtyfEYoKdWLNwl+8tETTWvcTPStyohymeZL4/pRy+r/Qh
	7w3uxzW7NcxFY/gqmDvPDhnlHQcx376Zk8RpxdkGk//ilyT6qi7QaHqxz7g336yI3MssPBP/eJ6
	DkKg==
X-Received: by 2002:a17:902:e5ca:b0:1f7:187f:cb5b with SMTP id d9443c01a7336-1f8629ff097mr30877715ad.64.1718372165628;
        Fri, 14 Jun 2024 06:36:05 -0700 (PDT)
X-Received: by 2002:a17:902:e5ca:b0:1f7:187f:cb5b with SMTP id d9443c01a7336-1f8629ff097mr30877395ad.64.1718372165174;
        Fri, 14 Jun 2024 06:36:05 -0700 (PDT)
Received: from chengendu.. (2001-b011-381c-305c-a26c-f5ac-1961-dcaf.dynamic-ip6.hinet.net. [2001:b011:381c:305c:a26c:f5ac:1961:dcaf])
        by smtp.gmail.com with ESMTPSA id d9443c01a7336-1f855f28fd8sm32000895ad.252.2024.06.14.06.36.00
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Fri, 14 Jun 2024 06:36:04 -0700 (PDT)
From: Chengen Du <chengen.du@canonical.com>
To: willemdebruijn.kernel@gmail.com
Cc: davem@davemloft.net,
	edumazet@google.com,
	kuba@kernel.org,
	pabeni@redhat.com,
	kaber@trash.net,
	netdev@vger.kernel.org,
	linux-kernel@vger.kernel.org,
	Chengen Du <chengen.du@canonical.com>,
	stable@vger.kernel.org
Subject: [PATCH v7] af_packet: Handle outgoing VLAN packets without hardware offloading
Date: Fri, 14 Jun 2024 21:35:45 +0800
Message-ID: <20240614133545.85626-1-chengen.du@canonical.com>
X-Mailer: git-send-email 2.43.0
Precedence: bulk
X-Mailing-List: linux-kernel@vger.kernel.org
List-Id: <linux-kernel.vger.kernel.org>
List-Subscribe: <mailto:linux-kernel+subscribe@vger.kernel.org>
List-Unsubscribe: <mailto:linux-kernel+unsubscribe@vger.kernel.org>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

The issue initially stems from libpcap. The ethertype will be overwritten
as the VLAN TPID if the network interface lacks hardware VLAN offloading.
In the outbound packet path, if hardware VLAN offloading is unavailable,
the VLAN tag is inserted into the payload but then cleared from the sk_buff
struct. Consequently, this can lead to a false negative when checking for
the presence of a VLAN tag, causing the packet sniffing outcome to lack
VLAN tag information (i.e., TCI-TPID). As a result, the packet capturing
tool may be unable to parse packets as expected.

The TCI-TPID is missing because the prb_fill_vlan_info() function does not
modify the tp_vlan_tci/tp_vlan_tpid values, as the information is in the
payload and not in the sk_buff struct. The skb_vlan_tag_present() function
only checks vlan_all in the sk_buff struct. In cooked mode, the L2 header
is stripped, preventing the packet capturing tool from determining the
correct TCI-TPID value. Additionally, the protocol in SLL is incorrect,
which means the packet capturing tool cannot parse the L3 header correctly.

Link: https://github.com/the-tcpdump-group/libpcap/issues/1105
Link: https://lore.kernel.org/netdev/20240520070348.26725-1-chengen.du@canonical.com/T/#u
Fixes: 393e52e33c6c ("packet: deliver VLAN TCI to userspace")
Cc: stable@vger.kernel.org
Signed-off-by: Chengen Du <chengen.du@canonical.com>
---
 net/packet/af_packet.c | 93 +++++++++++++++++++++++++++++++++++++++++-
 1 file changed, 91 insertions(+), 2 deletions(-)

diff --git a/net/packet/af_packet.c b/net/packet/af_packet.c
index ea3ebc160e25..41d6ebb38774 100644
--- a/net/packet/af_packet.c
+++ b/net/packet/af_packet.c
@@ -538,6 +538,69 @@ static void *packet_current_frame(struct packet_sock *po,
 	return packet_lookup_frame(po, rb, rb->head, status);
 }
 
+static u16 vlan_get_tci(struct sk_buff *skb, struct net_device *dev)
+{
+	struct vlan_hdr vhdr, *vh;
+	u8 *skb_orig_data = skb->data;
+	int skb_orig_len = skb->len;
+	unsigned int header_len;
+
+	if (!dev) {
+		if (!skb->dev)
+			return 0;
+		dev = skb->dev;
+	}
+
+	/* In the SOCK_DGRAM scenario, skb data starts at the network
+	 * protocol, which is after the VLAN headers. The outer VLAN
+	 * header is at the hard_header_len offset in non-variable
+	 * length link layer headers. If it's a VLAN device, the
+	 * min_header_len should be used to exclude the VLAN header
+	 * size.
+	 */
+	if (dev->min_header_len == dev->hard_header_len)
+		header_len = dev->hard_header_len;
+	else if (is_vlan_dev(dev))
+		header_len = dev->min_header_len;
+	else
+		return 0;
+
+	skb_push(skb, skb->data - skb_mac_header(skb));
+	vh = skb_header_pointer(skb, header_len, sizeof(vhdr), &vhdr);
+	if (skb_orig_data != skb->data) {
+		skb->data = skb_orig_data;
+		skb->len = skb_orig_len;
+	}
+	if (unlikely(!vh))
+		return 0;
+
+	return ntohs(vh->h_vlan_TCI);
+}
+
+static __be16 vlan_get_protocol_dgram(struct sk_buff *skb)
+{
+	__be16 proto = skb->protocol;
+
+	if (unlikely(eth_type_vlan(proto))) {
+		u8 *skb_orig_data = skb->data;
+		int skb_orig_len = skb->len;
+
+		/* In the SOCK_DGRAM scenario, skb data starts at the network
+		 * protocol, which is after the VLAN headers. The protocol must
+		 * point to the network protocol to accurately reflect the real
+		 * scenario.
+		 */
+		skb_push(skb, skb->data - skb_mac_header(skb));
+		proto = __vlan_get_protocol(skb, proto, NULL);
+		if (skb_orig_data != skb->data) {
+			skb->data = skb_orig_data;
+			skb->len = skb_orig_len;
+		}
+	}
+
+	return proto;
+}
+
 static void prb_del_retire_blk_timer(struct tpacket_kbdq_core *pkc)
 {
 	del_timer_sync(&pkc->retire_blk_timer);
@@ -1007,10 +1070,16 @@ static void prb_clear_rxhash(struct tpacket_kbdq_core *pkc,
 static void prb_fill_vlan_info(struct tpacket_kbdq_core *pkc,
 			struct tpacket3_hdr *ppd)
 {
+	struct packet_sock *po = container_of(pkc, struct packet_sock, rx_ring.prb_bdqc);
+
 	if (skb_vlan_tag_present(pkc->skb)) {
 		ppd->hv1.tp_vlan_tci = skb_vlan_tag_get(pkc->skb);
 		ppd->hv1.tp_vlan_tpid = ntohs(pkc->skb->vlan_proto);
 		ppd->tp_status = TP_STATUS_VLAN_VALID | TP_STATUS_VLAN_TPID_VALID;
+	} else if (unlikely(po->sk.sk_type == SOCK_DGRAM && eth_type_vlan(pkc->skb->protocol))) {
+		ppd->hv1.tp_vlan_tci = vlan_get_tci(pkc->skb, NULL);
+		ppd->hv1.tp_vlan_tpid = ntohs(pkc->skb->protocol);
+		ppd->tp_status = TP_STATUS_VLAN_VALID | TP_STATUS_VLAN_TPID_VALID;
 	} else {
 		ppd->hv1.tp_vlan_tci = 0;
 		ppd->hv1.tp_vlan_tpid = 0;
@@ -2428,6 +2497,10 @@ static int tpacket_rcv(struct sk_buff *skb, struct net_device *dev,
 			h.h2->tp_vlan_tci = skb_vlan_tag_get(skb);
 			h.h2->tp_vlan_tpid = ntohs(skb->vlan_proto);
 			status |= TP_STATUS_VLAN_VALID | TP_STATUS_VLAN_TPID_VALID;
+		} else if (unlikely(sk->sk_type == SOCK_DGRAM && eth_type_vlan(skb->protocol))) {
+			h.h2->tp_vlan_tci = vlan_get_tci(skb, NULL);
+			h.h2->tp_vlan_tpid = ntohs(skb->protocol);
+			status |= TP_STATUS_VLAN_VALID | TP_STATUS_VLAN_TPID_VALID;
 		} else {
 			h.h2->tp_vlan_tci = 0;
 			h.h2->tp_vlan_tpid = 0;
@@ -2457,7 +2530,8 @@ static int tpacket_rcv(struct sk_buff *skb, struct net_device *dev,
 	sll->sll_halen = dev_parse_header(skb, sll->sll_addr);
 	sll->sll_family = AF_PACKET;
 	sll->sll_hatype = dev->type;
-	sll->sll_protocol = skb->protocol;
+	sll->sll_protocol = (sk->sk_type == SOCK_DGRAM) ?
+		vlan_get_protocol_dgram(skb) : skb->protocol;
 	sll->sll_pkttype = skb->pkt_type;
 	if (unlikely(packet_sock_flag(po, PACKET_SOCK_ORIGDEV)))
 		sll->sll_ifindex = orig_dev->ifindex;
@@ -3482,7 +3556,8 @@ static int packet_recvmsg(struct socket *sock, struct msghdr *msg, size_t len,
 		/* Original length was stored in sockaddr_ll fields */
 		origlen = PACKET_SKB_CB(skb)->sa.origlen;
 		sll->sll_family = AF_PACKET;
-		sll->sll_protocol = skb->protocol;
+		sll->sll_protocol = (sock->type == SOCK_DGRAM) ?
+			vlan_get_protocol_dgram(skb) : skb->protocol;
 	}
 
 	sock_recv_cmsgs(msg, sk, skb);
@@ -3539,6 +3614,20 @@ static int packet_recvmsg(struct socket *sock, struct msghdr *msg, size_t len,
 			aux.tp_vlan_tci = skb_vlan_tag_get(skb);
 			aux.tp_vlan_tpid = ntohs(skb->vlan_proto);
 			aux.tp_status |= TP_STATUS_VLAN_VALID | TP_STATUS_VLAN_TPID_VALID;
+		} else if (unlikely(sock->type == SOCK_DGRAM && eth_type_vlan(skb->protocol))) {
+			struct sockaddr_ll *sll = &PACKET_SKB_CB(skb)->sa.ll;
+			struct net_device *dev;
+
+			dev = dev_get_by_index(sock_net(sk), sll->sll_ifindex);
+			if (dev) {
+				aux.tp_vlan_tci = vlan_get_tci(skb, dev);
+				aux.tp_vlan_tpid = ntohs(skb->protocol);
+				aux.tp_status |= TP_STATUS_VLAN_VALID | TP_STATUS_VLAN_TPID_VALID;
+				dev_put(dev);
+			} else {
+				aux.tp_vlan_tci = 0;
+				aux.tp_vlan_tpid = 0;
+			}
 		} else {
 			aux.tp_vlan_tci = 0;
 			aux.tp_vlan_tpid = 0;
-- 
2.43.0