2 * Copyright (c) 2016 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vlibmemory/api.h>
17 #include <lisp/lisp-cp/control.h>
18 #include <lisp/lisp-cp/packets.h>
19 #include <lisp/lisp-cp/lisp_msg_serdes.h>
20 #include <lisp/lisp-gpe/lisp_gpe_fwd_entry.h>
21 #include <lisp/lisp-gpe/lisp_gpe_tenant.h>
22 #include <lisp/lisp-gpe/lisp_gpe_tunnel.h>
23 #include <vnet/fib/fib_entry.h>
24 #include <vnet/fib/fib_table.h>
25 #include <vnet/ethernet/arp_packet.h>
26 #include <vnet/ethernet/packet.h>
28 #include <openssl/evp.h>
29 #include <vnet/crypto/crypto.h>
31 #define MAX_VALUE_U24 0xffffff
33 /* mapping timer control constants (in seconds) */
34 #define TIME_UNTIL_REFETCH_OR_DELETE 20
35 #define MAPPING_TIMEOUT (((m->ttl) * 60) - TIME_UNTIL_REFETCH_OR_DELETE)
37 u8 *format_lisp_cp_input_trace (u8 * s, va_list * args);
38 static void *send_map_request_thread_fn (void *arg);
42 LISP_CP_INPUT_NEXT_DROP,
44 } lisp_cp_input_next_t;
55 vnet_lisp_get_map_request_mode (void)
57 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
58 return lcm->map_request_mode;
62 auth_data_len_by_key_id (lisp_key_type_t key_id)
67 return SHA1_AUTH_DATA_LEN;
68 case HMAC_SHA_256_128:
69 return SHA256_AUTH_DATA_LEN;
71 clib_warning ("unsupported key type: %d!", key_id);
78 queue_map_request (gid_address_t * seid, gid_address_t * deid,
79 u8 smr_invoked, u8 is_resend);
81 ip_interface_address_t *
82 ip_interface_get_first_interface_address (ip_lookup_main_t * lm,
83 u32 sw_if_index, u8 loop)
85 vnet_main_t *vnm = vnet_get_main ();
86 vnet_sw_interface_t *swif = vnet_get_sw_interface (vnm, sw_if_index);
87 if (loop && swif->flags & VNET_SW_INTERFACE_FLAG_UNNUMBERED)
88 sw_if_index = swif->unnumbered_sw_if_index;
90 (vec_len ((lm)->if_address_pool_index_by_sw_if_index) > (sw_if_index)) ?
91 vec_elt ((lm)->if_address_pool_index_by_sw_if_index, (sw_if_index)) :
93 return pool_elt_at_index ((lm)->if_address_pool, ia);
97 ip_interface_get_first_address (ip_lookup_main_t * lm, u32 sw_if_index,
100 ip_interface_address_t *ia;
102 ia = ip_interface_get_first_interface_address (lm, sw_if_index, 1);
105 return ip_interface_address_get_address (lm, ia);
109 ip_interface_get_first_ip_address (lisp_cp_main_t *lcm, u32 sw_if_index,
110 ip_address_family_t version,
111 ip_address_t *result)
113 ip_lookup_main_t *lm;
116 lm = (version == AF_IP4) ? &lcm->im4->lookup_main : &lcm->im6->lookup_main;
117 addr = ip_interface_get_first_address (lm, sw_if_index, version);
121 ip_address_set (result, addr, version);
126 * Find the sw_if_index of the interface that would be used to egress towards
130 ip_fib_get_egress_iface_for_dst (lisp_cp_main_t * lcm, ip_address_t * dst)
132 fib_node_index_t fei;
135 ip_address_to_fib_prefix (dst, &prefix);
137 fei = fib_table_lookup (0, &prefix);
139 return (fib_entry_get_resolving_interface (fei));
143 * Find first IP of the interface that would be used to egress towards dst.
144 * Returns 1 if the address is found 0 otherwise.
147 ip_fib_get_first_egress_ip_for_dst (lisp_cp_main_t * lcm, ip_address_t * dst,
148 ip_address_t * result)
151 ip_lookup_main_t *lm;
153 ip_address_family_t ipver;
155 ASSERT (result != 0);
157 ipver = ip_addr_version (dst);
159 lm = (ipver == AF_IP4) ? &lcm->im4->lookup_main : &lcm->im6->lookup_main;
160 si = ip_fib_get_egress_iface_for_dst (lcm, dst);
165 /* find the first ip address */
166 addr = ip_interface_get_first_address (lm, si, ipver);
170 ip_address_set (result, addr, ipver);
175 dp_add_del_iface (lisp_cp_main_t * lcm, u32 vni, u8 is_l2, u8 is_add,
176 u8 with_default_route)
182 dp_table = hash_get (lcm->table_id_by_vni, vni);
186 clib_warning ("vni %d not associated to a vrf!", vni);
187 return VNET_API_ERROR_INVALID_VALUE;
192 dp_table = hash_get (lcm->bd_id_by_vni, vni);
195 clib_warning ("vni %d not associated to a bridge domain!", vni);
196 return VNET_API_ERROR_INVALID_VALUE;
200 /* enable/disable data-plane interface */
204 lisp_gpe_tenant_l2_iface_add_or_lock (vni, dp_table[0]);
206 lisp_gpe_tenant_l3_iface_add_or_lock (vni, dp_table[0],
212 lisp_gpe_tenant_l2_iface_unlock (vni);
214 lisp_gpe_tenant_l3_iface_unlock (vni);
221 dp_del_fwd_entry (lisp_cp_main_t * lcm, u32 dst_map_index)
223 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
226 clib_memset (a, 0, sizeof (*a));
228 feip = hash_get (lcm->fwd_entry_by_mapping_index, dst_map_index);
232 fe = pool_elt_at_index (lcm->fwd_entry_pool, feip[0]);
234 /* delete dp fwd entry */
237 a->locator_pairs = fe->locator_pairs;
238 a->vni = gid_address_vni (&fe->reid);
239 gid_address_copy (&a->rmt_eid, &fe->reid);
241 gid_address_copy (&a->lcl_eid, &fe->leid);
243 vnet_lisp_gpe_del_fwd_counters (a, feip[0]);
244 vnet_lisp_gpe_add_del_fwd_entry (a, &sw_if_index);
246 /* delete entry in fwd table */
247 hash_unset (lcm->fwd_entry_by_mapping_index, dst_map_index);
248 vec_free (fe->locator_pairs);
249 pool_put (lcm->fwd_entry_pool, fe);
253 * Finds first remote locator with best (lowest) priority that has a local
254 * peer locator with an underlying route to it.
258 get_locator_pairs (lisp_cp_main_t * lcm, mapping_t * lcl_map,
259 mapping_t * rmt_map, locator_pair_t ** locator_pairs)
261 u32 i, limitp = 0, li, found = 0, esi;
262 locator_set_t *rmt_ls, *lcl_ls;
263 ip_address_t _lcl_addr, *lcl_addr = &_lcl_addr;
264 locator_t *lp, *rmt = 0;
269 pool_elt_at_index (lcm->locator_set_pool, rmt_map->locator_set_index);
271 pool_elt_at_index (lcm->locator_set_pool, lcl_map->locator_set_index);
273 if (!rmt_ls || vec_len (rmt_ls->locator_indices) == 0)
280 /* find unvisited remote locator with best priority */
281 for (i = 0; i < vec_len (rmt_ls->locator_indices); i++)
283 if (0 != hash_get (checked, i))
286 li = vec_elt (rmt_ls->locator_indices, i);
287 lp = pool_elt_at_index (lcm->locator_pool, li);
289 /* we don't support non-IP locators for now */
290 if (gid_address_type (&lp->address) != GID_ADDR_IP_PREFIX)
293 if ((found && lp->priority == limitp)
294 || (!found && lp->priority >= limitp))
298 /* don't search for locators with lower priority and don't
299 * check this locator again*/
300 limitp = lp->priority;
301 hash_set (checked, i, 1);
305 /* check if a local locator with a route to remote locator exists */
308 /* find egress sw_if_index for rmt locator */
310 ip_fib_get_egress_iface_for_dst (lcm,
311 &gid_address_ip (&rmt->address));
312 if ((u32) ~ 0 == esi)
315 for (i = 0; i < vec_len (lcl_ls->locator_indices); i++)
317 li = vec_elt (lcl_ls->locator_indices, i);
318 locator_t *sl = pool_elt_at_index (lcm->locator_pool, li);
320 /* found local locator with the needed sw_if_index */
321 if (sl->sw_if_index == esi)
323 /* and it has an address */
324 if (0 == ip_interface_get_first_ip_address (lcm,
326 gid_address_ip_version
331 clib_memset (&pair, 0, sizeof (pair));
332 ip_address_copy (&pair.rmt_loc,
333 &gid_address_ip (&rmt->address));
334 ip_address_copy (&pair.lcl_loc, lcl_addr);
335 pair.weight = rmt->weight;
336 pair.priority = rmt->priority;
337 vec_add1 (locator_pairs[0], pair);
351 gid_address_sd_to_flat (gid_address_t * dst, gid_address_t * src,
354 ASSERT (GID_ADDR_SRC_DST == gid_address_type (src));
358 switch (fid_addr_type (fid))
360 case FID_ADDR_IP_PREF:
361 gid_address_type (dst) = GID_ADDR_IP_PREFIX;
362 gid_address_ippref (dst) = fid_addr_ippref (fid);
365 gid_address_type (dst) = GID_ADDR_MAC;
366 mac_copy (gid_address_mac (dst), fid_addr_mac (fid));
369 clib_warning ("Unsupported fid type %d!", fid_addr_type (fid));
375 vnet_lisp_map_register_state_get (void)
377 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
378 return lcm->map_registering;
382 vnet_lisp_rloc_probe_state_get (void)
384 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
385 return lcm->rloc_probing;
389 dp_add_fwd_entry (lisp_cp_main_t * lcm, u32 src_map_index, u32 dst_map_index)
391 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
392 gid_address_t *rmt_eid, *lcl_eid;
393 mapping_t *lcl_map, *rmt_map;
394 u32 sw_if_index, **rmts, rmts_idx;
395 uword *feip = 0, *dpid, *rmts_stored_idxp = 0;
397 u8 type, is_src_dst = 0;
400 clib_memset (a, 0, sizeof (*a));
402 /* remove entry if it already exists */
403 feip = hash_get (lcm->fwd_entry_by_mapping_index, dst_map_index);
405 dp_del_fwd_entry (lcm, dst_map_index);
408 * Determine local mapping and eid
410 if (lcm->flags & LISP_FLAG_PITR_MODE)
412 if (lcm->pitr_map_index != ~0)
413 lcl_map = pool_elt_at_index (lcm->mapping_pool, lcm->pitr_map_index);
416 clib_warning ("no PITR mapping configured!");
421 lcl_map = pool_elt_at_index (lcm->mapping_pool, src_map_index);
422 lcl_eid = &lcl_map->eid;
425 * Determine remote mapping and eid
427 rmt_map = pool_elt_at_index (lcm->mapping_pool, dst_map_index);
428 rmt_eid = &rmt_map->eid;
431 * Build and insert data plane forwarding entry
435 if (MR_MODE_SRC_DST == lcm->map_request_mode)
437 if (GID_ADDR_SRC_DST == gid_address_type (rmt_eid))
439 gid_address_sd_to_flat (&a->rmt_eid, rmt_eid,
440 &gid_address_sd_dst (rmt_eid));
441 gid_address_sd_to_flat (&a->lcl_eid, rmt_eid,
442 &gid_address_sd_src (rmt_eid));
446 gid_address_copy (&a->rmt_eid, rmt_eid);
447 gid_address_copy (&a->lcl_eid, lcl_eid);
452 gid_address_copy (&a->rmt_eid, rmt_eid);
454 a->vni = gid_address_vni (&a->rmt_eid);
455 a->is_src_dst = is_src_dst;
457 /* get vrf or bd_index associated to vni */
458 type = gid_address_type (&a->rmt_eid);
459 if (GID_ADDR_IP_PREFIX == type)
461 dpid = hash_get (lcm->table_id_by_vni, a->vni);
464 clib_warning ("vni %d not associated to a vrf!", a->vni);
467 a->table_id = dpid[0];
469 else if (GID_ADDR_MAC == type)
471 dpid = hash_get (lcm->bd_id_by_vni, a->vni);
474 clib_warning ("vni %d not associated to a bridge domain !", a->vni);
480 /* find best locator pair that 1) verifies LISP policy 2) are connected */
481 rv = get_locator_pairs (lcm, lcl_map, rmt_map, &a->locator_pairs);
483 /* Either rmt mapping is negative or we can't find underlay path.
484 * Try again with petr if configured */
485 if (rv == 0 && (lcm->flags & LISP_FLAG_USE_PETR))
487 rmt_map = lisp_get_petr_mapping (lcm);
488 rv = get_locator_pairs (lcm, lcl_map, rmt_map, &a->locator_pairs);
495 a->action = rmt_map->action;
498 rv = vnet_lisp_gpe_add_del_fwd_entry (a, &sw_if_index);
501 if (a->locator_pairs)
502 vec_free (a->locator_pairs);
506 /* add tunnel to fwd entry table */
507 pool_get (lcm->fwd_entry_pool, fe);
508 vnet_lisp_gpe_add_fwd_counters (a, fe - lcm->fwd_entry_pool);
510 fe->locator_pairs = a->locator_pairs;
511 gid_address_copy (&fe->reid, &a->rmt_eid);
514 gid_address_copy (&fe->leid, &a->lcl_eid);
516 gid_address_copy (&fe->leid, lcl_eid);
518 fe->is_src_dst = is_src_dst;
519 hash_set (lcm->fwd_entry_by_mapping_index, dst_map_index,
520 fe - lcm->fwd_entry_pool);
522 /* Add rmt mapping to the vector of adjacent mappings to lcl mapping */
524 hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, src_map_index);
525 if (!rmts_stored_idxp)
527 pool_get (lcm->lcl_to_rmt_adjacencies, rmts);
528 clib_memset (rmts, 0, sizeof (*rmts));
529 rmts_idx = rmts - lcm->lcl_to_rmt_adjacencies;
530 hash_set (lcm->lcl_to_rmt_adjs_by_lcl_idx, src_map_index, rmts_idx);
534 rmts_idx = (u32) (*rmts_stored_idxp);
535 rmts = pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idx);
537 vec_add1 (rmts[0], dst_map_index);
544 } fwd_entry_mt_arg_t;
547 dp_add_fwd_entry_thread_fn (void *arg)
549 fwd_entry_mt_arg_t *a = arg;
550 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
551 dp_add_fwd_entry (lcm, a->si, a->di);
556 dp_add_fwd_entry_from_mt (u32 si, u32 di)
558 fwd_entry_mt_arg_t a;
560 clib_memset (&a, 0, sizeof (a));
564 vl_api_rpc_call_main_thread (dp_add_fwd_entry_thread_fn,
565 (u8 *) & a, sizeof (a));
570 * Returns vector of adjacencies.
572 * The caller must free the vector returned by this function.
574 * @param vni virtual network identifier
575 * @return vector of adjacencies
578 vnet_lisp_adjacencies_get_by_vni (u32 vni)
580 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
582 lisp_adjacency_t *adjs = 0, adj;
584 pool_foreach (fwd, lcm->fwd_entry_pool)
586 if (gid_address_vni (&fwd->reid) != vni)
589 gid_address_copy (&adj.reid, &fwd->reid);
590 gid_address_copy (&adj.leid, &fwd->leid);
591 vec_add1 (adjs, adj);
598 get_map_server (ip_address_t * a)
600 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
603 vec_foreach (m, lcm->map_servers)
605 if (!ip_address_cmp (&m->address, a))
614 get_map_resolver (ip_address_t * a)
616 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
619 vec_foreach (m, lcm->map_resolvers)
621 if (!ip_address_cmp (&m->address, a))
630 vnet_lisp_add_del_map_server (ip_address_t * addr, u8 is_add)
633 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
634 lisp_msmr_t _ms, *ms = &_ms;
636 if (vnet_lisp_enable_disable_status () == 0)
638 clib_warning ("LISP is disabled!");
639 return VNET_API_ERROR_LISP_DISABLED;
644 if (get_map_server (addr))
646 clib_warning ("map-server %U already exists!", format_ip_address,
651 clib_memset (ms, 0, sizeof (*ms));
652 ip_address_copy (&ms->address, addr);
653 vec_add1 (lcm->map_servers, ms[0]);
655 if (vec_len (lcm->map_servers) == 1)
656 lcm->do_map_server_election = 1;
660 for (i = 0; i < vec_len (lcm->map_servers); i++)
662 ms = vec_elt_at_index (lcm->map_servers, i);
663 if (!ip_address_cmp (&ms->address, addr))
665 if (!ip_address_cmp (&ms->address, &lcm->active_map_server))
666 lcm->do_map_server_election = 1;
668 vec_del1 (lcm->map_servers, i);
678 * Add/remove mapping to/from map-cache. Overwriting not allowed.
681 vnet_lisp_map_cache_add_del (vnet_lisp_add_del_mapping_args_t * a,
682 u32 * map_index_result)
684 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
685 u32 mi, *map_indexp, map_index, i;
686 u32 **rmts = 0, *remote_idxp, rmts_itr, remote_idx;
688 mapping_t *m, *old_map;
691 if (gid_address_type (&a->eid) == GID_ADDR_NSH)
693 if (gid_address_vni (&a->eid) != 0)
695 clib_warning ("Supported only default VNI for NSH!");
696 return VNET_API_ERROR_INVALID_ARGUMENT;
698 if (gid_address_nsh_spi (&a->eid) > MAX_VALUE_U24)
700 clib_warning ("SPI is greater than 24bit!");
701 return VNET_API_ERROR_INVALID_ARGUMENT;
705 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &a->eid);
706 old_map = mi != ~0 ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
709 /* TODO check if overwriting and take appropriate actions */
710 if (mi != GID_LOOKUP_MISS && !gid_address_cmp (&old_map->eid, &a->eid))
712 clib_warning ("eid %U found in the eid-table", format_gid_address,
714 return VNET_API_ERROR_VALUE_EXIST;
717 pool_get (lcm->mapping_pool, m);
718 gid_address_copy (&m->eid, &a->eid);
719 m->locator_set_index = a->locator_set_index;
721 m->action = a->action;
723 m->is_static = a->is_static;
724 m->key = vec_dup (a->key);
725 m->key_id = a->key_id;
726 m->authoritative = a->authoritative;
728 map_index = m - lcm->mapping_pool;
729 gid_dictionary_add_del (&lcm->mapping_index_by_gid, &a->eid, map_index,
732 if (pool_is_free_index (lcm->locator_set_pool, a->locator_set_index))
734 clib_warning ("Locator set with index %d doesn't exist",
735 a->locator_set_index);
736 return VNET_API_ERROR_INVALID_VALUE;
739 /* add eid to list of eids supported by locator-set */
740 vec_validate (lcm->locator_set_to_eids, a->locator_set_index);
741 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids,
742 a->locator_set_index);
743 vec_add1 (eid_indexes[0], map_index);
748 vec_add1 (lcm->local_mappings_indexes, map_index);
750 map_index_result[0] = map_index;
754 if (mi == GID_LOOKUP_MISS)
756 clib_warning ("eid %U not found in the eid-table",
757 format_gid_address, &a->eid);
758 return VNET_API_ERROR_INVALID_VALUE;
761 /* clear locator-set to eids binding */
762 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids,
763 a->locator_set_index);
764 for (i = 0; i < vec_len (eid_indexes[0]); i++)
766 map_indexp = vec_elt_at_index (eid_indexes[0], i);
767 if (map_indexp[0] == mi)
770 vec_del1 (eid_indexes[0], i);
772 /* remove local mark if needed */
773 m = pool_elt_at_index (lcm->mapping_pool, mi);
776 /* Remove adjacencies associated with the local mapping */
777 rmts_idxp = hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, mi);
781 pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idxp[0]);
782 vec_foreach (remote_idxp, rmts[0])
784 dp_del_fwd_entry (lcm, remote_idxp[0]);
787 pool_put (lcm->lcl_to_rmt_adjacencies, rmts);
788 hash_unset (lcm->lcl_to_rmt_adjs_by_lcl_idx, mi);
792 for (k = 0; k < vec_len (lcm->local_mappings_indexes); k++)
794 lm_indexp = vec_elt_at_index (lcm->local_mappings_indexes, k);
795 if (lm_indexp[0] == mi)
798 vec_del1 (lcm->local_mappings_indexes, k);
802 /* Remove remote (if present) from the vectors of lcl-to-rmts
803 * TODO: Address this in a more efficient way.
805 pool_foreach (rmts, lcm->lcl_to_rmt_adjacencies)
807 vec_foreach_index (rmts_itr, rmts[0])
809 remote_idx = vec_elt (rmts[0], rmts_itr);
810 if (mi == remote_idx)
812 vec_del1 (rmts[0], rmts_itr);
819 /* remove mapping from dictionary */
820 gid_dictionary_add_del (&lcm->mapping_index_by_gid, &a->eid, 0, 0);
821 gid_address_free (&m->eid);
822 pool_put_index (lcm->mapping_pool, mi);
829 * Add/update/delete mapping to/in/from map-cache.
832 vnet_lisp_add_del_local_mapping (vnet_lisp_add_del_mapping_args_t * a,
833 u32 * map_index_result)
839 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
841 if (vnet_lisp_enable_disable_status () == 0)
843 clib_warning ("LISP is disabled!");
844 return VNET_API_ERROR_LISP_DISABLED;
847 vni = gid_address_vni (&a->eid);
848 type = gid_address_type (&a->eid);
849 if (GID_ADDR_IP_PREFIX == type)
850 dp_table = hash_get (lcm->table_id_by_vni, vni);
851 else if (GID_ADDR_MAC == type)
852 dp_table = hash_get (lcm->bd_id_by_vni, vni);
854 if (!dp_table && GID_ADDR_NSH != type)
856 clib_warning ("vni %d not associated to a %s!", vni,
857 GID_ADDR_IP_PREFIX == type ? "vrf" : "bd");
858 return VNET_API_ERROR_INVALID_VALUE;
861 /* store/remove mapping from map-cache */
862 return vnet_lisp_map_cache_add_del (a, map_index_result);
866 add_l2_arp_bd (BVT (clib_bihash_kv) * kvp, void *arg)
869 u32 version = (u32) kvp->key[0];
870 if (AF_IP6 == version)
871 return (BIHASH_WALK_CONTINUE);
873 u32 bd = (u32) (kvp->key[0] >> 32);
874 hash_set (ht[0], bd, 0);
875 return (BIHASH_WALK_CONTINUE);
879 vnet_lisp_l2_arp_bds_get (void)
881 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
884 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
885 add_l2_arp_bd, &bds);
890 add_ndp_bd (BVT (clib_bihash_kv) * kvp, void *arg)
893 u32 version = (u32) kvp->key[0];
894 if (AF_IP4 == version)
895 return (BIHASH_WALK_CONTINUE);
897 u32 bd = (u32) (kvp->key[0] >> 32);
898 hash_set (ht[0], bd, 0);
899 return (BIHASH_WALK_CONTINUE);
903 vnet_lisp_ndp_bds_get (void)
905 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
908 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
917 } lisp_add_l2_arp_ndp_args_t;
920 add_l2_arp_entry (BVT (clib_bihash_kv) * kvp, void *arg)
922 lisp_add_l2_arp_ndp_args_t *a = arg;
923 lisp_api_l2_arp_entry_t **vector = a->vector, e;
925 u32 version = (u32) kvp->key[0];
926 if (AF_IP6 == version)
927 return (BIHASH_WALK_CONTINUE);
929 u32 bd = (u32) (kvp->key[0] >> 32);
933 mac_copy (e.mac, (void *) &kvp->value);
934 e.ip4 = (u32) kvp->key[1];
935 vec_add1 (vector[0], e);
937 return (BIHASH_WALK_CONTINUE);
940 lisp_api_l2_arp_entry_t *
941 vnet_lisp_l2_arp_entries_get_by_bd (u32 bd)
943 lisp_api_l2_arp_entry_t *entries = 0;
944 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
945 lisp_add_l2_arp_ndp_args_t a;
950 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
951 add_l2_arp_entry, &a);
956 add_ndp_entry (BVT (clib_bihash_kv) * kvp, void *arg)
958 lisp_add_l2_arp_ndp_args_t *a = arg;
959 lisp_api_ndp_entry_t **vector = a->vector, e;
961 u32 version = (u32) kvp->key[0];
962 if (AF_IP4 == version)
963 return (BIHASH_WALK_CONTINUE);
965 u32 bd = (u32) (kvp->key[0] >> 32);
969 mac_copy (e.mac, (void *) &kvp->value);
970 clib_memcpy (e.ip6, &kvp->key[1], 16);
971 vec_add1 (vector[0], e);
973 return (BIHASH_WALK_CONTINUE);
976 lisp_api_ndp_entry_t *
977 vnet_lisp_ndp_entries_get_by_bd (u32 bd)
979 lisp_api_ndp_entry_t *entries = 0;
980 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
981 lisp_add_l2_arp_ndp_args_t a;
986 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
992 vnet_lisp_add_del_l2_arp_ndp_entry (gid_address_t * key, u8 * mac, u8 is_add)
994 if (vnet_lisp_enable_disable_status () == 0)
996 clib_warning ("LISP is disabled!");
997 return VNET_API_ERROR_LISP_DISABLED;
1000 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1003 u64 res = gid_dictionary_lookup (&lcm->mapping_index_by_gid, key);
1006 if (res != GID_LOOKUP_MISS_L2)
1008 clib_warning ("Entry %U exists in DB!", format_gid_address, key);
1009 return VNET_API_ERROR_ENTRY_ALREADY_EXISTS;
1011 u64 val = mac_to_u64 (mac);
1012 gid_dictionary_add_del (&lcm->mapping_index_by_gid, key, val,
1017 if (res == GID_LOOKUP_MISS_L2)
1019 clib_warning ("ONE entry %U not found - cannot delete!",
1020 format_gid_address, key);
1023 gid_dictionary_add_del (&lcm->mapping_index_by_gid, key, 0,
1031 vnet_lisp_eid_table_map (u32 vni, u32 dp_id, u8 is_l2, u8 is_add)
1033 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1034 uword *dp_idp, *vnip, **dp_table_by_vni, **vni_by_dp_table;
1036 if (vnet_lisp_enable_disable_status () == 0)
1038 clib_warning ("LISP is disabled!");
1039 return VNET_API_ERROR_LISP_DISABLED;
1042 dp_table_by_vni = is_l2 ? &lcm->bd_id_by_vni : &lcm->table_id_by_vni;
1043 vni_by_dp_table = is_l2 ? &lcm->vni_by_bd_id : &lcm->vni_by_table_id;
1045 if (!is_l2 && (vni == 0 || dp_id == 0))
1047 clib_warning ("can't add/del default vni-vrf mapping!");
1051 dp_idp = hash_get (dp_table_by_vni[0], vni);
1052 vnip = hash_get (vni_by_dp_table[0], dp_id);
1058 clib_warning ("vni %d or vrf %d already used in vrf/vni "
1059 "mapping!", vni, dp_id);
1062 hash_set (dp_table_by_vni[0], vni, dp_id);
1063 hash_set (vni_by_dp_table[0], dp_id, vni);
1065 /* create dp iface */
1066 dp_add_del_iface (lcm, vni, is_l2, 1 /* is_add */ ,
1067 1 /* with_default_route */ );
1071 if (!dp_idp || !vnip)
1073 clib_warning ("vni %d or vrf %d not used in any vrf/vni! "
1074 "mapping!", vni, dp_id);
1077 /* remove dp iface */
1078 dp_add_del_iface (lcm, vni, is_l2, 0 /* is_add */ , 0 /* unused */ );
1080 hash_unset (dp_table_by_vni[0], vni);
1081 hash_unset (vni_by_dp_table[0], dp_id);
1087 /* return 0 if the two locator sets are identical 1 otherwise */
1089 compare_locators (lisp_cp_main_t * lcm, u32 * old_ls_indexes,
1090 locator_t * new_locators)
1093 locator_t *old_loc, *new_loc;
1095 if (vec_len (old_ls_indexes) != vec_len (new_locators))
1098 for (i = 0; i < vec_len (new_locators); i++)
1100 old_li = vec_elt (old_ls_indexes, i);
1101 old_loc = pool_elt_at_index (lcm->locator_pool, old_li);
1103 new_loc = vec_elt_at_index (new_locators, i);
1105 if (locator_cmp (old_loc, new_loc))
1115 gid_address_t *eids_to_be_deleted;
1116 } remove_mapping_args_t;
1119 * Callback invoked when a sub-prefix is found
1122 remove_mapping_if_needed (u32 mi, void *arg)
1125 remove_mapping_args_t *a = arg;
1126 lisp_cp_main_t *lcm = a->lcm;
1130 m = pool_elt_at_index (lcm->mapping_pool, mi);
1131 ls = pool_elt_at_index (lcm->locator_set_pool, m->locator_set_index);
1135 if (0 != vec_len (ls->locator_indices))
1140 if (0 == vec_len (ls->locator_indices))
1145 vec_add1 (a->eids_to_be_deleted, m->eid);
1149 * This function searches map cache and looks for IP prefixes that are subset
1150 * of the provided one. If such prefix is found depending on 'is_negative'
1153 * 1) if is_negative is true and found prefix points to positive mapping,
1154 * then the mapping is removed
1155 * 2) if is_negative is false and found prefix points to negative mapping,
1156 * then the mapping is removed
1159 remove_overlapping_sub_prefixes (lisp_cp_main_t * lcm, gid_address_t * eid,
1163 remove_mapping_args_t a;
1165 clib_memset (&a, 0, sizeof (a));
1167 /* do this only in src/dst mode ... */
1168 if (MR_MODE_SRC_DST != lcm->map_request_mode)
1171 /* ... and only for IP prefix */
1172 if (GID_ADDR_SRC_DST != gid_address_type (eid)
1173 || (FID_ADDR_IP_PREF != gid_address_sd_dst_type (eid)))
1176 a.is_negative = is_negative;
1179 gid_dict_foreach_subprefix (&lcm->mapping_index_by_gid, eid,
1180 remove_mapping_if_needed, &a);
1182 vec_foreach (e, a.eids_to_be_deleted)
1184 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
1186 clib_memset (adj_args, 0, sizeof (adj_args[0]));
1187 gid_address_copy (&adj_args->reid, e);
1188 adj_args->is_add = 0;
1189 if (vnet_lisp_add_del_adjacency (adj_args))
1190 clib_warning ("failed to del adjacency!");
1192 vnet_lisp_del_mapping (e, NULL);
1195 vec_free (a.eids_to_be_deleted);
1199 is_local_ip (lisp_cp_main_t * lcm, ip_address_t * addr)
1201 fib_node_index_t fei;
1202 fib_prefix_t prefix;
1203 fib_entry_flag_t flags;
1205 ip_address_to_fib_prefix (addr, &prefix);
1207 fei = fib_table_lookup (0, &prefix);
1208 flags = fib_entry_get_flags (fei);
1209 return (FIB_ENTRY_FLAG_LOCAL & flags);
1213 * Adds/updates mapping. Does not program forwarding.
1215 * @param a parameters of the new mapping
1216 * @param rlocs vector of remote locators
1217 * @param res_map_index index of the newly created mapping
1218 * @param locators_changed indicator if locators were updated in the mapping
1219 * @return return code
1222 vnet_lisp_add_mapping (vnet_lisp_add_del_mapping_args_t * a,
1224 u32 * res_map_index, u8 * is_updated)
1226 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1227 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1228 u32 mi, ls_index = 0, dst_map_index;
1232 if (vnet_lisp_enable_disable_status () == 0)
1234 clib_warning ("LISP is disabled!");
1235 return VNET_API_ERROR_LISP_DISABLED;
1239 res_map_index[0] = ~0;
1243 clib_memset (ls_args, 0, sizeof (ls_args[0]));
1245 ls_args->locators = rlocs;
1246 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &a->eid);
1247 old_map = ((u32) ~ 0 != mi) ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
1249 /* check if none of the locators match locally configured address */
1250 vec_foreach (loc, rlocs)
1252 ip_prefix_t *p = &gid_address_ippref (&loc->address);
1253 if (is_local_ip (lcm, &ip_prefix_addr (p)))
1255 clib_warning ("RLOC %U matches a local address!",
1256 format_gid_address, &loc->address);
1257 return VNET_API_ERROR_LISP_RLOC_LOCAL;
1261 /* overwrite: if mapping already exists, decide if locators should be
1262 * updated and be done */
1263 if (old_map && gid_address_cmp (&old_map->eid, &a->eid) == 0)
1265 if (!a->is_static && (old_map->is_static || old_map->local))
1267 /* do not overwrite local or static remote mappings */
1268 clib_warning ("mapping %U rejected due to collision with local "
1269 "or static remote mapping!", format_gid_address,
1274 locator_set_t *old_ls;
1276 /* update mapping attributes */
1277 old_map->action = a->action;
1278 if (old_map->action != a->action && NULL != is_updated)
1281 old_map->authoritative = a->authoritative;
1282 old_map->ttl = a->ttl;
1284 old_ls = pool_elt_at_index (lcm->locator_set_pool,
1285 old_map->locator_set_index);
1286 if (compare_locators (lcm, old_ls->locator_indices, ls_args->locators))
1288 /* set locator-set index to overwrite */
1289 ls_args->is_add = 1;
1290 ls_args->index = old_map->locator_set_index;
1291 vnet_lisp_add_del_locator_set (ls_args, 0);
1296 res_map_index[0] = mi;
1303 remove_overlapping_sub_prefixes (lcm, &a->eid, 0 == ls_args->locators);
1305 ls_args->is_add = 1;
1306 ls_args->index = ~0;
1308 vnet_lisp_add_del_locator_set (ls_args, &ls_index);
1312 a->locator_set_index = ls_index;
1313 vnet_lisp_map_cache_add_del (a, &dst_map_index);
1316 res_map_index[0] = dst_map_index;
1324 * Removes a mapping. Does not program forwarding.
1326 * @param eid end-host identifier
1327 * @param res_map_index index of the removed mapping
1328 * @return return code
1331 vnet_lisp_del_mapping (gid_address_t * eid, u32 * res_map_index)
1333 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1334 vnet_lisp_add_del_mapping_args_t _m_args, *m_args = &_m_args;
1335 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1339 clib_memset (ls_args, 0, sizeof (ls_args[0]));
1340 clib_memset (m_args, 0, sizeof (m_args[0]));
1342 res_map_index[0] = ~0;
1344 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, eid);
1345 old_map = ((u32) ~ 0 != mi) ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
1347 if (old_map == 0 || gid_address_cmp (&old_map->eid, eid) != 0)
1349 clib_warning ("cannot delete mapping for eid %U",
1350 format_gid_address, eid);
1355 gid_address_copy (&m_args->eid, eid);
1356 m_args->locator_set_index = old_map->locator_set_index;
1358 ls_args->is_add = 0;
1359 ls_args->index = old_map->locator_set_index;
1361 /* delete timer associated to the mapping if any */
1362 if (old_map->timer_set)
1363 TW (tw_timer_stop) (&lcm->wheel, old_map->timer_handle);
1365 /* delete locator set */
1366 vnet_lisp_add_del_locator_set (ls_args, 0);
1368 /* delete mapping associated from map-cache */
1369 vnet_lisp_map_cache_add_del (m_args, 0);
1371 /* return old mapping index */
1373 res_map_index[0] = mi;
1380 vnet_lisp_clear_all_remote_adjacencies (void)
1383 u32 mi, *map_indices = 0, *map_indexp;
1384 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1385 vnet_lisp_add_del_mapping_args_t _dm_args, *dm_args = &_dm_args;
1386 vnet_lisp_add_del_locator_set_args_t _ls, *ls = &_ls;
1388 pool_foreach_index (mi, lcm->mapping_pool)
1390 vec_add1 (map_indices, mi);
1393 vec_foreach (map_indexp, map_indices)
1395 mapping_t *map = pool_elt_at_index (lcm->mapping_pool, map_indexp[0]);
1398 dp_del_fwd_entry (lcm, map_indexp[0]);
1400 dm_args->is_add = 0;
1401 gid_address_copy (&dm_args->eid, &map->eid);
1402 dm_args->locator_set_index = map->locator_set_index;
1404 /* delete mapping associated to fwd entry */
1405 vnet_lisp_map_cache_add_del (dm_args, 0);
1409 ls->index = map->locator_set_index;
1410 /* delete locator set */
1411 rv = vnet_lisp_add_del_locator_set (ls, 0);
1419 vec_free (map_indices);
1424 * Adds adjacency or removes forwarding entry associated to remote mapping.
1425 * Note that adjacencies are not stored, they only result in forwarding entries
1429 vnet_lisp_add_del_adjacency (vnet_lisp_add_del_adjacency_args_t * a)
1431 lisp_cp_main_t *lcm = &lisp_control_main;
1432 u32 local_mi, remote_mi = ~0;
1434 if (vnet_lisp_enable_disable_status () == 0)
1436 clib_warning ("LISP is disabled!");
1437 return VNET_API_ERROR_LISP_DISABLED;
1440 remote_mi = gid_dictionary_sd_lookup (&lcm->mapping_index_by_gid,
1441 &a->reid, &a->leid);
1442 if (GID_LOOKUP_MISS == remote_mi)
1444 clib_warning ("Remote eid %U not found. Cannot add adjacency!",
1445 format_gid_address, &a->reid);
1452 /* check if source eid has an associated mapping. If pitr mode is on,
1453 * just use the pitr's mapping */
1454 if (lcm->flags & LISP_FLAG_PITR_MODE)
1456 if (lcm->pitr_map_index != ~0)
1458 local_mi = lcm->pitr_map_index;
1462 /* PITR mode is on, but no mapping is configured */
1468 if (gid_address_type (&a->reid) == GID_ADDR_NSH)
1470 if (lcm->nsh_map_index == ~0)
1471 local_mi = GID_LOOKUP_MISS;
1473 local_mi = lcm->nsh_map_index;
1477 local_mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid,
1482 if (GID_LOOKUP_MISS == local_mi)
1484 clib_warning ("Local eid %U not found. Cannot add adjacency!",
1485 format_gid_address, &a->leid);
1490 /* update forwarding */
1491 dp_add_fwd_entry (lcm, local_mi, remote_mi);
1494 dp_del_fwd_entry (lcm, remote_mi);
1500 vnet_lisp_set_map_request_mode (u8 mode)
1502 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1504 if (vnet_lisp_enable_disable_status () == 0)
1506 clib_warning ("LISP is disabled!");
1507 return VNET_API_ERROR_LISP_DISABLED;
1510 if (mode >= _MR_MODE_MAX)
1512 clib_warning ("Invalid LISP map request mode %d!", mode);
1513 return VNET_API_ERROR_INVALID_ARGUMENT;
1516 lcm->map_request_mode = mode;
1521 vnet_lisp_nsh_set_locator_set (u8 * locator_set_name, u8 is_add)
1523 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1524 lisp_gpe_main_t *lgm = vnet_lisp_gpe_get_main ();
1525 u32 locator_set_index = ~0;
1529 if (vnet_lisp_enable_disable_status () == 0)
1531 clib_warning ("LISP is disabled!");
1532 return VNET_API_ERROR_LISP_DISABLED;
1537 if (lcm->nsh_map_index == (u32) ~ 0)
1539 p = hash_get_mem (lcm->locator_set_index_by_name, locator_set_name);
1542 clib_warning ("locator-set %v doesn't exist", locator_set_name);
1545 locator_set_index = p[0];
1547 pool_get (lcm->mapping_pool, m);
1548 clib_memset (m, 0, sizeof *m);
1549 m->locator_set_index = locator_set_index;
1552 lcm->nsh_map_index = m - lcm->mapping_pool;
1554 if (~0 == vnet_lisp_gpe_add_nsh_iface (lgm))
1560 if (lcm->nsh_map_index != (u32) ~ 0)
1562 /* remove NSH mapping */
1563 pool_put_index (lcm->mapping_pool, lcm->nsh_map_index);
1564 lcm->nsh_map_index = ~0;
1565 vnet_lisp_gpe_del_nsh_iface (lgm);
1572 vnet_lisp_pitr_set_locator_set (u8 * locator_set_name, u8 is_add)
1574 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1575 u32 locator_set_index = ~0;
1579 if (vnet_lisp_enable_disable_status () == 0)
1581 clib_warning ("LISP is disabled!");
1582 return VNET_API_ERROR_LISP_DISABLED;
1585 p = hash_get_mem (lcm->locator_set_index_by_name, locator_set_name);
1588 clib_warning ("locator-set %v doesn't exist", locator_set_name);
1591 locator_set_index = p[0];
1595 pool_get (lcm->mapping_pool, m);
1596 m->locator_set_index = locator_set_index;
1599 lcm->pitr_map_index = m - lcm->mapping_pool;
1603 /* remove pitr mapping */
1604 pool_put_index (lcm->mapping_pool, lcm->pitr_map_index);
1605 lcm->pitr_map_index = ~0;
1611 vnet_lisp_map_register_fallback_threshold_set (u32 value)
1613 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1616 return VNET_API_ERROR_INVALID_ARGUMENT;
1619 lcm->max_expired_map_registers = value;
1624 vnet_lisp_map_register_fallback_threshold_get (void)
1626 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1627 return lcm->max_expired_map_registers;
1631 * Configure Proxy-ETR
1633 * @param ip PETR's IP address
1634 * @param is_add Flag that indicates if this is an addition or removal
1636 * return 0 on success
1639 vnet_lisp_use_petr (ip_address_t * ip, u8 is_add)
1641 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1644 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1647 if (vnet_lisp_enable_disable_status () == 0)
1649 clib_warning ("LISP is disabled!");
1650 return VNET_API_ERROR_LISP_DISABLED;
1653 clib_memset (ls_args, 0, sizeof (*ls_args));
1657 /* Create placeholder petr locator-set */
1658 clib_memset (&loc, 0, sizeof (loc));
1659 gid_address_from_ip (&loc.address, ip);
1661 loc.state = loc.weight = 1;
1664 ls_args->is_add = 1;
1665 ls_args->index = ~0;
1666 vec_add1 (ls_args->locators, loc);
1667 vnet_lisp_add_del_locator_set (ls_args, &ls_index);
1669 /* Add petr mapping */
1670 pool_get (lcm->mapping_pool, m);
1671 m->locator_set_index = ls_index;
1672 lcm->petr_map_index = m - lcm->mapping_pool;
1674 /* Enable use-petr */
1675 lcm->flags |= LISP_FLAG_USE_PETR;
1679 m = pool_elt_at_index (lcm->mapping_pool, lcm->petr_map_index);
1681 /* Remove petr locator */
1682 ls_args->is_add = 0;
1683 ls_args->index = m->locator_set_index;
1684 vnet_lisp_add_del_locator_set (ls_args, 0);
1686 /* Remove petr mapping */
1687 pool_put_index (lcm->mapping_pool, lcm->petr_map_index);
1689 /* Disable use-petr */
1690 lcm->flags &= ~LISP_FLAG_USE_PETR;
1691 lcm->petr_map_index = ~0;
1696 /* cleans locator to locator-set data and removes locators not part of
1697 * any locator-set */
1699 clean_locator_to_locator_set (lisp_cp_main_t * lcm, u32 lsi)
1701 u32 i, j, *loc_indexp, *ls_indexp, **ls_indexes, *to_be_deleted = 0;
1702 locator_set_t *ls = pool_elt_at_index (lcm->locator_set_pool, lsi);
1703 for (i = 0; i < vec_len (ls->locator_indices); i++)
1705 loc_indexp = vec_elt_at_index (ls->locator_indices, i);
1706 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets,
1708 for (j = 0; j < vec_len (ls_indexes[0]); j++)
1710 ls_indexp = vec_elt_at_index (ls_indexes[0], j);
1711 if (ls_indexp[0] == lsi)
1715 /* delete index for removed locator-set */
1716 vec_del1 (ls_indexes[0], j);
1718 /* delete locator if it's part of no locator-set */
1719 if (vec_len (ls_indexes[0]) == 0)
1721 pool_put_index (lcm->locator_pool, loc_indexp[0]);
1722 vec_add1 (to_be_deleted, i);
1728 for (i = 0; i < vec_len (to_be_deleted); i++)
1730 loc_indexp = vec_elt_at_index (to_be_deleted, i);
1731 vec_del1 (ls->locator_indices, loc_indexp[0]);
1733 vec_free (to_be_deleted);
1737 static inline uword *
1738 get_locator_set_index (vnet_lisp_add_del_locator_set_args_t * a, uword * p)
1740 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1745 /* find locator-set */
1749 p = hash_get_mem (lcm->locator_set_index_by_name, a->name);
1760 is_locator_in_locator_set (lisp_cp_main_t * lcm, locator_set_t * ls,
1766 ASSERT (ls != NULL);
1767 ASSERT (loc != NULL);
1769 vec_foreach (locit, ls->locator_indices)
1771 itloc = pool_elt_at_index (lcm->locator_pool, locit[0]);
1772 if ((ls->local && itloc->sw_if_index == loc->sw_if_index) ||
1773 (!ls->local && !gid_address_cmp (&itloc->address, &loc->address)))
1775 clib_warning ("Duplicate locator");
1776 return VNET_API_ERROR_VALUE_EXIST;
1784 update_adjacencies_by_map_index (lisp_cp_main_t * lcm,
1785 u32 mapping_index, u8 remove_only)
1789 uword *fei = 0, *rmts_idxp = 0;
1790 u32 **rmts = 0, *remote_idxp = 0, *rmts_copy = 0;
1791 vnet_lisp_add_del_adjacency_args_t _a, *a = &_a;
1792 clib_memset (a, 0, sizeof (*a));
1794 map = pool_elt_at_index (lcm->mapping_pool, mapping_index);
1798 rmts_idxp = hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, mapping_index);
1802 pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idxp[0]);
1803 rmts_copy = vec_dup (rmts[0]);
1805 vec_foreach (remote_idxp, rmts_copy)
1807 fei = hash_get (lcm->fwd_entry_by_mapping_index, remote_idxp[0]);
1811 fwd = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
1813 gid_address_copy (&a->leid, &fwd->leid);
1814 gid_address_copy (&a->reid, &fwd->reid);
1815 vnet_lisp_add_del_adjacency (a);
1820 vnet_lisp_add_del_adjacency (a);
1823 vec_free (rmts_copy);
1828 fei = hash_get (lcm->fwd_entry_by_mapping_index, mapping_index);
1832 fwd = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
1834 gid_address_copy (&a->leid, &fwd->leid);
1835 gid_address_copy (&a->reid, &fwd->reid);
1836 vnet_lisp_add_del_adjacency (a);
1841 vnet_lisp_add_del_adjacency (a);
1847 update_fwd_entries_by_locator_set (lisp_cp_main_t * lcm,
1848 u32 ls_index, u8 remove_only)
1853 if (vec_len (lcm->locator_set_to_eids) <= ls_index)
1856 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids, ls_index);
1858 for (i = 0; i < vec_len (eid_indexes[0]); i++)
1860 map_indexp = vec_elt_at_index (eid_indexes[0], i);
1861 update_adjacencies_by_map_index (lcm, map_indexp[0], remove_only);
1866 remove_locator_from_locator_set (locator_set_t * ls, u32 * locit,
1867 u32 ls_index, u32 loc_id)
1869 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1870 u32 **ls_indexes = NULL;
1872 ASSERT (ls != NULL);
1873 ASSERT (locit != NULL);
1875 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets, locit[0]);
1876 pool_put_index (lcm->locator_pool, locit[0]);
1877 vec_del1 (ls->locator_indices, loc_id);
1878 vec_del1 (ls_indexes[0], ls_index);
1882 vnet_lisp_add_del_locator (vnet_lisp_add_del_locator_set_args_t * a,
1883 locator_set_t * ls, u32 * ls_result)
1885 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1886 locator_t *loc = NULL, *itloc = NULL;
1887 uword _p = (u32) ~ 0, *p = &_p;
1888 u32 loc_index = ~0, ls_index = ~0, *locit = NULL, **ls_indexes = NULL;
1894 if (vnet_lisp_enable_disable_status () == 0)
1896 clib_warning ("LISP is disabled!");
1897 return VNET_API_ERROR_LISP_DISABLED;
1900 p = get_locator_set_index (a, p);
1903 clib_warning ("locator-set %v doesn't exist", a->name);
1904 return VNET_API_ERROR_INVALID_ARGUMENT;
1909 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
1912 clib_warning ("locator-set %d to be overwritten doesn't exist!",
1914 return VNET_API_ERROR_INVALID_ARGUMENT;
1921 ls_result[0] = p[0];
1923 /* allocate locators */
1924 vec_foreach (itloc, a->locators)
1926 ret = is_locator_in_locator_set (lcm, ls, itloc);
1932 pool_get (lcm->locator_pool, loc);
1934 loc_index = loc - lcm->locator_pool;
1936 vec_add1 (ls->locator_indices, loc_index);
1938 vec_validate (lcm->locator_to_locator_sets, loc_index);
1939 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets,
1941 vec_add1 (ls_indexes[0], p[0]);
1949 vec_foreach (itloc, a->locators)
1953 vec_foreach (locit, ls->locator_indices)
1955 loc = pool_elt_at_index (lcm->locator_pool, locit[0]);
1957 if (loc->local && loc->sw_if_index == itloc->sw_if_index)
1960 remove_locator_from_locator_set (ls, locit, ls_index, loc_id);
1962 else if (0 == loc->local &&
1963 !gid_address_cmp (&loc->address, &itloc->address))
1966 remove_locator_from_locator_set (ls, locit, ls_index, loc_id);
1971 /* update fwd entries using this locator in DP */
1972 update_fwd_entries_by_locator_set (lcm, ls_index,
1973 vec_len (ls->locator_indices)
1986 vnet_lisp_add_del_locator_set (vnet_lisp_add_del_locator_set_args_t * a,
1989 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1991 uword _p = (u32) ~ 0, *p = &_p;
1996 if (vnet_lisp_enable_disable_status () == 0)
1998 clib_warning ("LISP is disabled!");
1999 return VNET_API_ERROR_LISP_DISABLED;
2004 p = get_locator_set_index (a, p);
2007 if (p && p[0] != (u32) ~ 0)
2009 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
2012 clib_warning ("locator-set %d to be overwritten doesn't exist!",
2017 /* clean locator to locator-set vectors and remove locators if
2018 * they're not part of another locator-set */
2019 clean_locator_to_locator_set (lcm, p[0]);
2021 /* remove locator indices from locator set */
2022 vec_free (ls->locator_indices);
2027 ls_result[0] = p[0];
2029 /* new locator-set */
2032 pool_get (lcm->locator_set_pool, ls);
2033 clib_memset (ls, 0, sizeof (*ls));
2034 ls_index = ls - lcm->locator_set_pool;
2038 ls->name = vec_dup (a->name);
2040 if (!lcm->locator_set_index_by_name)
2041 lcm->locator_set_index_by_name =
2042 hash_create_vec ( /* size */ 0, sizeof (ls->name[0]),
2044 hash_set_mem (lcm->locator_set_index_by_name, ls->name,
2047 /* mark as local locator-set */
2048 vec_add1 (lcm->local_locator_set_indexes, ls_index);
2050 ls->local = a->local;
2052 ls_result[0] = ls_index;
2055 ret = vnet_lisp_add_del_locator (a, ls, NULL);
2063 p = get_locator_set_index (a, p);
2066 clib_warning ("locator-set %v doesn't exists", a->name);
2070 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
2073 clib_warning ("locator-set with index %d doesn't exists", p[0]);
2077 if (lcm->mreq_itr_rlocs == p[0])
2079 clib_warning ("Can't delete the locator-set used to constrain "
2080 "the itr-rlocs in map-requests!");
2084 if (vec_len (lcm->locator_set_to_eids) != 0)
2086 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids, p[0]);
2087 if (vec_len (eid_indexes[0]) != 0)
2090 ("Can't delete a locator that supports a mapping!");
2095 /* clean locator to locator-sets data */
2096 clean_locator_to_locator_set (lcm, p[0]);
2102 vec_foreach_index (it, lcm->local_locator_set_indexes)
2104 lsi = vec_elt (lcm->local_locator_set_indexes, it);
2107 vec_del1 (lcm->local_locator_set_indexes, it);
2111 hash_unset_mem (lcm->locator_set_index_by_name, ls->name);
2113 vec_free (ls->name);
2114 vec_free (ls->locator_indices);
2115 pool_put (lcm->locator_set_pool, ls);
2121 vnet_lisp_rloc_probe_enable_disable (u8 is_enable)
2123 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2125 lcm->rloc_probing = is_enable;
2130 vnet_lisp_map_register_enable_disable (u8 is_enable)
2132 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2134 lcm->map_registering = is_enable;
2139 lisp_cp_register_dst_port (vlib_main_t * vm)
2141 udp_register_dst_port (vm, UDP_DST_PORT_lisp_cp,
2142 lisp_cp_input_node.index, 1 /* is_ip4 */ );
2143 udp_register_dst_port (vm, UDP_DST_PORT_lisp_cp6,
2144 lisp_cp_input_node.index, 0 /* is_ip4 */ );
2148 lisp_cp_unregister_dst_port (vlib_main_t * vm)
2150 udp_unregister_dst_port (vm, UDP_DST_PORT_lisp_cp, 0 /* is_ip4 */ );
2151 udp_unregister_dst_port (vm, UDP_DST_PORT_lisp_cp6, 1 /* is_ip4 */ );
2155 * lisp_cp_enable_l2_l3_ifaces
2157 * Enable all l2 and l3 ifaces
2160 lisp_cp_enable_l2_l3_ifaces (lisp_cp_main_t * lcm, u8 with_default_route)
2164 hash_foreach(vni, dp_table, lcm->table_id_by_vni, ({
2165 dp_add_del_iface(lcm, vni, /* is_l2 */ 0, /* is_add */1,
2166 with_default_route);
2168 hash_foreach(vni, dp_table, lcm->bd_id_by_vni, ({
2169 dp_add_del_iface(lcm, vni, /* is_l2 */ 1, 1,
2170 with_default_route);
2175 lisp_cp_disable_l2_l3_ifaces (lisp_cp_main_t * lcm)
2179 /* clear interface table */
2180 hash_free (lcm->fwd_entry_by_mapping_index);
2181 pool_free (lcm->fwd_entry_pool);
2182 /* Clear state tracking rmt-lcl fwd entries */
2183 pool_foreach (rmts, lcm->lcl_to_rmt_adjacencies)
2187 hash_free (lcm->lcl_to_rmt_adjs_by_lcl_idx);
2188 pool_free (lcm->lcl_to_rmt_adjacencies);
2192 vnet_lisp_enable_disable (u8 is_enable)
2194 clib_error_t *error = 0;
2195 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2196 vnet_lisp_gpe_enable_disable_args_t _a, *a = &_a;
2198 a->is_en = is_enable;
2199 error = vnet_lisp_gpe_enable_disable (a);
2202 return clib_error_return (0, "failed to %s data-plane!",
2203 a->is_en ? "enable" : "disable");
2206 /* decide what to do based on mode */
2208 if (lcm->flags & LISP_FLAG_XTR_MODE)
2212 lisp_cp_register_dst_port (lcm->vlib_main);
2213 lisp_cp_enable_l2_l3_ifaces (lcm, 1 /* with_default_route */ );
2217 lisp_cp_unregister_dst_port (lcm->vlib_main);
2218 lisp_cp_disable_l2_l3_ifaces (lcm);
2222 if (lcm->flags & LISP_FLAG_PETR_MODE)
2224 /* if in xTR mode, the LISP ports were already (un)registered above */
2225 if (!(lcm->flags & LISP_FLAG_XTR_MODE))
2228 lisp_cp_register_dst_port (lcm->vlib_main);
2230 lisp_cp_unregister_dst_port (lcm->vlib_main);
2234 if (lcm->flags & LISP_FLAG_PITR_MODE)
2238 /* install interfaces, but no default routes */
2239 lisp_cp_enable_l2_l3_ifaces (lcm, 0 /* with_default_route */ );
2243 lisp_cp_disable_l2_l3_ifaces (lcm);
2248 vnet_lisp_create_retry_process (lcm);
2250 /* update global flag */
2251 lcm->is_enabled = is_enable;
2257 vnet_lisp_enable_disable_status (void)
2259 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2260 return lcm->is_enabled;
2264 vnet_lisp_add_del_map_resolver (vnet_lisp_add_del_map_resolver_args_t * a)
2266 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2268 lisp_msmr_t _mr, *mr = &_mr;
2270 if (vnet_lisp_enable_disable_status () == 0)
2272 clib_warning ("LISP is disabled!");
2273 return VNET_API_ERROR_LISP_DISABLED;
2279 if (get_map_resolver (&a->address))
2281 clib_warning ("map-resolver %U already exists!", format_ip_address,
2286 clib_memset (mr, 0, sizeof (*mr));
2287 ip_address_copy (&mr->address, &a->address);
2288 vec_add1 (lcm->map_resolvers, *mr);
2290 if (vec_len (lcm->map_resolvers) == 1)
2291 lcm->do_map_resolver_election = 1;
2295 for (i = 0; i < vec_len (lcm->map_resolvers); i++)
2297 mr = vec_elt_at_index (lcm->map_resolvers, i);
2298 if (!ip_address_cmp (&mr->address, &a->address))
2300 if (!ip_address_cmp (&mr->address, &lcm->active_map_resolver))
2301 lcm->do_map_resolver_election = 1;
2303 vec_del1 (lcm->map_resolvers, i);
2312 vnet_lisp_map_register_set_ttl (u32 ttl)
2314 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2315 lcm->map_register_ttl = ttl;
2320 vnet_lisp_map_register_get_ttl (void)
2322 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2323 return lcm->map_register_ttl;
2327 vnet_lisp_add_del_mreq_itr_rlocs (vnet_lisp_add_del_mreq_itr_rloc_args_t * a)
2329 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2332 if (vnet_lisp_enable_disable_status () == 0)
2334 clib_warning ("LISP is disabled!");
2335 return VNET_API_ERROR_LISP_DISABLED;
2340 p = hash_get_mem (lcm->locator_set_index_by_name, a->locator_set_name);
2343 clib_warning ("locator-set %v doesn't exist", a->locator_set_name);
2344 return VNET_API_ERROR_INVALID_ARGUMENT;
2347 lcm->mreq_itr_rlocs = p[0];
2351 lcm->mreq_itr_rlocs = ~0;
2357 /* Statistics (not really errors) */
2358 #define foreach_lisp_cp_lookup_error \
2360 _(MAP_REQUESTS_SENT, "map-request sent") \
2361 _(ARP_REPLY_TX, "ARP replies sent") \
2362 _(NDP_NEIGHBOR_ADVERTISEMENT_TX, \
2363 "neighbor advertisement sent")
2365 static char *lisp_cp_lookup_error_strings[] = {
2366 #define _(sym,string) string,
2367 foreach_lisp_cp_lookup_error
2373 #define _(sym,str) LISP_CP_LOOKUP_ERROR_##sym,
2374 foreach_lisp_cp_lookup_error
2376 LISP_CP_LOOKUP_N_ERROR,
2377 } lisp_cp_lookup_error_t;
2381 LISP_CP_LOOKUP_NEXT_DROP,
2382 LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX,
2383 LISP_CP_LOOKUP_N_NEXT,
2384 } lisp_cp_lookup_next_t;
2388 gid_address_t dst_eid;
2389 ip_address_t map_resolver_ip;
2390 } lisp_cp_lookup_trace_t;
2393 format_lisp_cp_lookup_trace (u8 * s, va_list * args)
2395 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
2396 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
2397 lisp_cp_lookup_trace_t *t = va_arg (*args, lisp_cp_lookup_trace_t *);
2399 s = format (s, "LISP-CP-LOOKUP: map-resolver: %U destination eid %U",
2400 format_ip_address, &t->map_resolver_ip, format_gid_address,
2406 get_mr_and_local_iface_ip (lisp_cp_main_t * lcm, ip_address_t * mr_ip,
2407 ip_address_t * sloc)
2412 if (vec_len (lcm->map_resolvers) == 0)
2414 clib_warning ("No map-resolver configured");
2418 /* find the first mr ip we have a route to and the ip of the
2419 * iface that has a route to it */
2420 vec_foreach (mrit, lcm->map_resolvers)
2423 if (0 != ip_fib_get_first_egress_ip_for_dst (lcm, a, sloc))
2425 ip_address_copy (mr_ip, a);
2427 /* also update globals */
2432 clib_warning ("Can't find map-resolver and local interface ip!");
2436 static gid_address_t *
2437 build_itr_rloc_list (lisp_cp_main_t * lcm, locator_set_t * loc_set)
2443 ip_interface_address_t *ia = 0;
2444 gid_address_t gid_data, *gid = &gid_data;
2445 gid_address_t *rlocs = 0;
2446 ip_prefix_t *ippref = &gid_address_ippref (gid);
2447 ip_address_t *rloc = &ip_prefix_addr (ippref);
2449 clib_memset (gid, 0, sizeof (gid[0]));
2450 gid_address_type (gid) = GID_ADDR_IP_PREFIX;
2451 for (i = 0; i < vec_len (loc_set->locator_indices); i++)
2453 loc_indexp = vec_elt_at_index (loc_set->locator_indices, i);
2454 loc = pool_elt_at_index (lcm->locator_pool, loc_indexp[0]);
2456 /* Add ipv4 locators first TODO sort them */
2458 foreach_ip_interface_address (&lcm->im4->lookup_main, ia,
2459 loc->sw_if_index, 1 /* unnumbered */,
2461 addr = ip_interface_address_get_address (&lcm->im4->lookup_main, ia);
2462 ip_address_set (rloc, addr, AF_IP4);
2463 ip_prefix_len (ippref) = 32;
2464 ip_prefix_normalize (ippref);
2465 vec_add1 (rlocs, gid[0]);
2468 /* Add ipv6 locators */
2469 foreach_ip_interface_address (&lcm->im6->lookup_main, ia,
2470 loc->sw_if_index, 1 /* unnumbered */,
2472 addr = ip_interface_address_get_address (&lcm->im6->lookup_main, ia);
2473 ip_address_set (rloc, addr, AF_IP6);
2474 ip_prefix_len (ippref) = 128;
2475 ip_prefix_normalize (ippref);
2476 vec_add1 (rlocs, gid[0]);
2483 static vlib_buffer_t *
2484 build_map_request (lisp_cp_main_t * lcm, gid_address_t * deid,
2485 ip_address_t * sloc, ip_address_t * rloc,
2486 gid_address_t * itr_rlocs, u64 * nonce_res, u32 * bi_res)
2490 vlib_main_t *vm = lcm->vlib_main;
2492 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2494 clib_warning ("Can't allocate buffer for Map-Request!");
2498 b = vlib_get_buffer (vm, bi);
2500 /* leave some space for the encap headers */
2501 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2504 lisp_msg_put_mreq (lcm, b, NULL, deid, itr_rlocs, 0 /* smr invoked */ ,
2505 1 /* rloc probe */ , nonce_res);
2507 /* push outer ip header */
2508 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2516 static vlib_buffer_t *
2517 build_encapsulated_map_request (lisp_cp_main_t * lcm,
2518 gid_address_t * seid, gid_address_t * deid,
2519 locator_set_t * loc_set, ip_address_t * mr_ip,
2520 ip_address_t * sloc, u8 is_smr_invoked,
2521 u64 * nonce_res, u32 * bi_res)
2525 gid_address_t *rlocs = 0;
2526 vlib_main_t *vm = lcm->vlib_main;
2528 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2530 clib_warning ("Can't allocate buffer for Map-Request!");
2534 b = vlib_get_buffer (vm, bi);
2537 /* leave some space for the encap headers */
2538 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2541 rlocs = build_itr_rloc_list (lcm, loc_set);
2543 if (MR_MODE_SRC_DST == lcm->map_request_mode
2544 && GID_ADDR_SRC_DST != gid_address_type (deid))
2547 clib_memset (&sd, 0, sizeof (sd));
2548 build_src_dst (&sd, seid, deid);
2549 lisp_msg_put_mreq (lcm, b, seid, &sd, rlocs, is_smr_invoked,
2550 0 /* rloc probe */ , nonce_res);
2555 lisp_msg_put_mreq (lcm, b, seid, deid, rlocs, is_smr_invoked,
2556 0 /* rloc probe */ , nonce_res);
2559 /* push ecm: udp-ip-lisp */
2560 lisp_msg_push_ecm (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, seid, deid);
2562 /* push outer ip header */
2563 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2573 reset_pending_mr_counters (pending_map_request_t * r)
2575 r->time_to_expire = PENDING_MREQ_EXPIRATION_TIME;
2579 #define foreach_msmr \
2585 elect_map_ ## name (lisp_cp_main_t * lcm) \
2588 vec_foreach (mr, lcm->map_ ## name ## s) \
2592 ip_address_copy (&lcm->active_map_ ##name, &mr->address); \
2593 lcm->do_map_ ## name ## _election = 0; \
2602 free_map_register_records (mapping_t * maps)
2605 vec_foreach (map, maps) vec_free (map->locators);
2611 add_locators (lisp_cp_main_t * lcm, mapping_t * m, u32 locator_set_index,
2612 ip_address_t * probed_loc)
2615 locator_t *loc, new;
2616 ip_interface_address_t *ia = 0;
2618 ip_address_t *new_ip = &gid_address_ip (&new.address);
2621 locator_set_t *ls = pool_elt_at_index (lcm->locator_set_pool,
2623 vec_foreach (li, ls->locator_indices)
2625 loc = pool_elt_at_index (lcm->locator_pool, li[0]);
2629 foreach_ip_interface_address (&lcm->im4->lookup_main, ia,
2630 loc->sw_if_index, 1 /* unnumbered */,
2632 addr = ip_interface_address_get_address (&lcm->im4->lookup_main,
2634 ip_address_set (new_ip, addr, AF_IP4);
2637 /* Add ipv6 locators */
2638 foreach_ip_interface_address (&lcm->im6->lookup_main, ia,
2639 loc->sw_if_index, 1 /* unnumbered */,
2641 addr = ip_interface_address_get_address (&lcm->im6->lookup_main,
2643 ip_address_set (new_ip, addr, AF_IP6);
2646 if (probed_loc && ip_address_cmp (probed_loc, new_ip) == 0)
2649 vec_add1 (m->locators, new);
2654 build_map_register_record_list (lisp_cp_main_t * lcm)
2656 mapping_t *recs = 0, rec, *m;
2658 pool_foreach (m, lcm->mapping_pool)
2660 /* for now build only local mappings */
2665 add_locators (lcm, &rec, m->locator_set_index, NULL);
2666 vec_add1 (recs, rec);
2672 static vnet_crypto_alg_t
2673 lisp_key_type_to_crypto_alg (lisp_key_type_t key_id)
2678 return VNET_CRYPTO_ALG_HMAC_SHA1;
2679 case HMAC_SHA_256_128:
2680 return VNET_CRYPTO_ALG_HMAC_SHA256;
2682 clib_warning ("unsupported encryption key type: %d!", key_id);
2685 return VNET_CRYPTO_ALG_NONE;
2688 static vnet_crypto_op_id_t
2689 lisp_key_type_to_crypto_op (lisp_key_type_t key_id)
2694 return VNET_CRYPTO_OP_SHA1_HMAC;
2695 case HMAC_SHA_256_128:
2696 return VNET_CRYPTO_OP_SHA256_HMAC;
2698 clib_warning ("unsupported encryption key type: %d!", key_id);
2701 return VNET_CRYPTO_OP_NONE;
2705 update_map_register_auth_data (map_register_hdr_t * map_reg_hdr,
2706 lisp_key_type_t key_id, u8 * key,
2707 u16 auth_data_len, u32 msg_len)
2709 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2710 MREG_KEY_ID (map_reg_hdr) = clib_host_to_net_u16 (key_id);
2711 MREG_AUTH_DATA_LEN (map_reg_hdr) = clib_host_to_net_u16 (auth_data_len);
2712 vnet_crypto_op_t _op, *op = &_op;
2713 vnet_crypto_key_index_t ki;
2715 vnet_crypto_op_init (op, lisp_key_type_to_crypto_op (key_id));
2717 op->digest = MREG_DATA (map_reg_hdr);
2718 op->src = (u8 *) map_reg_hdr;
2722 ki = vnet_crypto_key_add (lcm->vlib_main,
2723 lisp_key_type_to_crypto_alg (key_id), key,
2728 vnet_crypto_process_ops (lcm->vlib_main, op, 1);
2729 vnet_crypto_key_del (lcm->vlib_main, ki);
2734 static vlib_buffer_t *
2735 build_map_register (lisp_cp_main_t * lcm, ip_address_t * sloc,
2736 ip_address_t * ms_ip, u64 * nonce_res, u8 want_map_notif,
2737 mapping_t * records, lisp_key_type_t key_id, u8 * key,
2742 u32 bi, auth_data_len = 0, msg_len = 0;
2743 vlib_main_t *vm = lcm->vlib_main;
2745 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2747 clib_warning ("Can't allocate buffer for Map-Register!");
2751 b = vlib_get_buffer (vm, bi);
2753 /* leave some space for the encap headers */
2754 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2756 auth_data_len = auth_data_len_by_key_id (key_id);
2757 map_reg_hdr = lisp_msg_put_map_register (b, records, want_map_notif,
2758 auth_data_len, nonce_res,
2761 update_map_register_auth_data (map_reg_hdr, key_id, key, auth_data_len,
2764 /* push outer ip header */
2765 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2774 get_egress_map_ ##name## _ip (lisp_cp_main_t * lcm, ip_address_t * ip) \
2777 while (lcm->do_map_ ## name ## _election \
2778 | (0 == ip_fib_get_first_egress_ip_for_dst \
2779 (lcm, &lcm->active_map_ ##name, ip))) \
2781 if (0 == elect_map_ ## name (lcm)) \
2782 /* all map resolvers/servers are down */ \
2784 /* restart MR/MS checking by marking all of them up */ \
2785 vec_foreach (mr, lcm->map_ ## name ## s) mr->is_down = 0; \
2794 /* CP output statistics */
2795 #define foreach_lisp_cp_output_error \
2796 _(MAP_REGISTERS_SENT, "map-registers sent") \
2797 _(MAP_REQUESTS_SENT, "map-requests sent") \
2798 _(RLOC_PROBES_SENT, "rloc-probes sent")
2799 static char *lisp_cp_output_error_strings[] = {
2800 #define _(sym,string) string,
2801 foreach_lisp_cp_output_error
2807 #define _(sym,str) LISP_CP_OUTPUT_ERROR_##sym,
2808 foreach_lisp_cp_output_error
2810 LISP_CP_OUTPUT_N_ERROR,
2811 } lisp_cp_output_error_t;
2814 lisp_cp_output (vlib_main_t * vm, vlib_node_runtime_t * node,
2815 vlib_frame_t * from_frame)
2820 /* placeholder node used only for statistics */
2821 VLIB_REGISTER_NODE (lisp_cp_output_node) = {
2822 .function = lisp_cp_output,
2823 .name = "lisp-cp-output",
2824 .vector_size = sizeof (u32),
2825 .format_trace = format_lisp_cp_input_trace,
2826 .type = VLIB_NODE_TYPE_INTERNAL,
2828 .n_errors = LISP_CP_OUTPUT_N_ERROR,
2829 .error_strings = lisp_cp_output_error_strings,
2831 .n_next_nodes = LISP_CP_INPUT_N_NEXT,
2834 [LISP_CP_INPUT_NEXT_DROP] = "error-drop",
2839 send_rloc_probe (lisp_cp_main_t * lcm, gid_address_t * deid,
2840 u32 local_locator_set_index, ip_address_t * sloc,
2841 ip_address_t * rloc)
2848 u32 next_index, *to_next;
2849 gid_address_t *itr_rlocs;
2851 ls = pool_elt_at_index (lcm->locator_set_pool, local_locator_set_index);
2852 itr_rlocs = build_itr_rloc_list (lcm, ls);
2854 b = build_map_request (lcm, deid, sloc, rloc, itr_rlocs, &nonce, &bi);
2855 vec_free (itr_rlocs);
2859 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
2861 next_index = (ip_addr_version (rloc) == AF_IP4) ?
2862 ip4_lookup_node.index : ip6_lookup_node.index;
2864 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
2866 /* Enqueue the packet */
2867 to_next = vlib_frame_vector_args (f);
2870 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
2876 send_rloc_probes (lisp_cp_main_t * lcm)
2882 u32 si, rloc_probes_sent = 0;
2884 pool_foreach (e, lcm->fwd_entry_pool)
2886 if (vec_len (e->locator_pairs) == 0)
2889 si = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &e->leid);
2892 clib_warning ("internal error: cannot find local eid %U in "
2893 "map-cache!", format_gid_address, &e->leid);
2896 lm = pool_elt_at_index (lcm->mapping_pool, si);
2898 /* get the best (lowest) priority */
2899 lprio = e->locator_pairs[0].priority;
2901 /* send rloc-probe for pair(s) with the best remote locator priority */
2902 vec_foreach (lp, e->locator_pairs)
2904 if (lp->priority != lprio)
2907 /* get first remote locator */
2908 send_rloc_probe (lcm, &e->reid, lm->locator_set_index, &lp->lcl_loc,
2914 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
2915 LISP_CP_OUTPUT_ERROR_RLOC_PROBES_SENT,
2921 send_map_register (lisp_cp_main_t * lcm, u8 want_map_notif)
2923 pending_map_register_t *pmr;
2924 u32 bi, map_registers_sent = 0;
2929 u32 next_index, *to_next;
2930 mapping_t *records, *r, *group, *k;
2932 if (get_egress_map_server_ip (lcm, &sloc) < 0)
2935 records = build_map_register_record_list (lcm);
2939 vec_foreach (r, records)
2942 u8 key_id = r->key_id;
2945 continue; /* no secret key -> map-register cannot be sent */
2948 vec_add1 (group, r[0]);
2950 /* group mappings that share common key */
2951 for (k = r + 1; k < vec_end (records); k++)
2953 if (k->key_id != r->key_id)
2956 if (vec_is_equal (k->key, r->key))
2958 vec_add1 (group, k[0]);
2959 k->key = 0; /* don't process this mapping again */
2963 b = build_map_register (lcm, &sloc, &lcm->active_map_server, &nonce,
2964 want_map_notif, group, key_id, key, &bi);
2969 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
2971 next_index = (ip_addr_version (&lcm->active_map_server) == AF_IP4) ?
2972 ip4_lookup_node.index : ip6_lookup_node.index;
2974 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
2976 /* Enqueue the packet */
2977 to_next = vlib_frame_vector_args (f);
2980 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
2981 map_registers_sent++;
2983 pool_get (lcm->pending_map_registers_pool, pmr);
2984 clib_memset (pmr, 0, sizeof (*pmr));
2985 pmr->time_to_expire = PENDING_MREG_EXPIRATION_TIME;
2986 hash_set (lcm->map_register_messages_by_nonce, nonce,
2987 pmr - lcm->pending_map_registers_pool);
2989 free_map_register_records (records);
2991 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
2992 LISP_CP_OUTPUT_ERROR_MAP_REGISTERS_SENT,
2993 map_registers_sent);
2998 #define send_encapsulated_map_request(lcm, seid, deid, smr) \
2999 _send_encapsulated_map_request(lcm, seid, deid, smr, 0)
3001 #define resend_encapsulated_map_request(lcm, seid, deid, smr) \
3002 _send_encapsulated_map_request(lcm, seid, deid, smr, 1)
3005 _send_encapsulated_map_request (lisp_cp_main_t * lcm,
3006 gid_address_t * seid, gid_address_t * deid,
3007 u8 is_smr_invoked, u8 is_resend)
3009 u32 next_index, bi = 0, *to_next, map_index;
3013 locator_set_t *loc_set;
3015 pending_map_request_t *pmr, *duplicate_pmr = 0;
3019 /* if there is already a pending request remember it */
3021 pool_foreach (pmr, lcm->pending_map_requests_pool)
3023 if (!gid_address_cmp (&pmr->src, seid)
3024 && !gid_address_cmp (&pmr->dst, deid))
3026 duplicate_pmr = pmr;
3031 if (!is_resend && duplicate_pmr)
3033 /* don't send the request if there is a pending map request already */
3037 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
3039 /* get locator-set for seid */
3040 if (!pitr_mode && gid_address_type (deid) != GID_ADDR_NSH)
3042 map_index = gid_dictionary_lookup (&lcm->mapping_index_by_gid, seid);
3043 if (map_index == ~0)
3045 clib_warning ("No local mapping found in eid-table for %U!",
3046 format_gid_address, seid);
3050 map = pool_elt_at_index (lcm->mapping_pool, map_index);
3055 ("Mapping found for src eid %U is not marked as local!",
3056 format_gid_address, seid);
3059 ls_index = map->locator_set_index;
3065 if (lcm->pitr_map_index != ~0)
3068 pool_elt_at_index (lcm->mapping_pool, lcm->pitr_map_index);
3069 ls_index = map->locator_set_index;
3078 if (lcm->nsh_map_index == (u32) ~ 0)
3080 clib_warning ("No locator-set defined for NSH!");
3085 map = pool_elt_at_index (lcm->mapping_pool, lcm->nsh_map_index);
3086 ls_index = map->locator_set_index;
3091 /* overwrite locator set if map-request itr-rlocs configured */
3092 if (~0 != lcm->mreq_itr_rlocs)
3094 ls_index = lcm->mreq_itr_rlocs;
3097 loc_set = pool_elt_at_index (lcm->locator_set_pool, ls_index);
3099 if (get_egress_map_resolver_ip (lcm, &sloc) < 0)
3102 duplicate_pmr->to_be_removed = 1;
3106 /* build the encapsulated map request */
3107 b = build_encapsulated_map_request (lcm, seid, deid, loc_set,
3108 &lcm->active_map_resolver,
3109 &sloc, is_smr_invoked, &nonce, &bi);
3114 /* set fib index to default and lookup node */
3115 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
3116 next_index = (ip_addr_version (&lcm->active_map_resolver) == AF_IP4) ?
3117 ip4_lookup_node.index : ip6_lookup_node.index;
3119 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
3121 /* Enqueue the packet */
3122 to_next = vlib_frame_vector_args (f);
3125 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
3127 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
3128 LISP_CP_OUTPUT_ERROR_MAP_REQUESTS_SENT, 1);
3131 /* if there is a pending request already update it */
3133 if (clib_fifo_elts (duplicate_pmr->nonces) >= PENDING_MREQ_QUEUE_LEN)
3135 /* remove the oldest nonce */
3136 u64 CLIB_UNUSED (tmp), *nonce_del;
3137 nonce_del = clib_fifo_head (duplicate_pmr->nonces);
3138 hash_unset (lcm->pending_map_requests_by_nonce, nonce_del[0]);
3139 clib_fifo_sub1 (duplicate_pmr->nonces, tmp);
3142 clib_fifo_add1 (duplicate_pmr->nonces, nonce);
3143 hash_set (lcm->pending_map_requests_by_nonce, nonce,
3144 duplicate_pmr - lcm->pending_map_requests_pool);
3148 /* add map-request to pending requests table */
3149 pool_get (lcm->pending_map_requests_pool, pmr);
3150 clib_memset (pmr, 0, sizeof (*pmr));
3151 gid_address_copy (&pmr->src, seid);
3152 gid_address_copy (&pmr->dst, deid);
3153 clib_fifo_add1 (pmr->nonces, nonce);
3154 pmr->is_smr_invoked = is_smr_invoked;
3155 reset_pending_mr_counters (pmr);
3156 hash_set (lcm->pending_map_requests_by_nonce, nonce,
3157 pmr - lcm->pending_map_requests_pool);
3164 get_src_and_dst_ip (void *hdr, ip_address_t * src, ip_address_t * dst)
3166 ip4_header_t *ip4 = hdr;
3169 if ((ip4->ip_version_and_header_length & 0xF0) == 0x40)
3171 ip_address_set (src, &ip4->src_address, AF_IP4);
3172 ip_address_set (dst, &ip4->dst_address, AF_IP4);
3177 ip_address_set (src, &ip6->src_address, AF_IP6);
3178 ip_address_set (dst, &ip6->dst_address, AF_IP6);
3183 lisp_get_vni_from_buffer_ip (lisp_cp_main_t * lcm, vlib_buffer_t * b,
3187 u32 vni = ~0, table_id = ~0;
3189 table_id = fib_table_get_table_id_for_sw_if_index ((version ==
3197 vnip = hash_get (lcm->vni_by_table_id, table_id);
3201 clib_warning ("vrf %d is not mapped to any vni!", table_id);
3207 lisp_get_bd_from_buffer_eth (vlib_buffer_t * b)
3211 l2input_main_t *l2im = &l2input_main;
3212 l2_input_config_t *config;
3213 l2_bridge_domain_t *bd_config;
3215 sw_if_index0 = vnet_buffer (b)->sw_if_index[VLIB_RX];
3216 config = vec_elt_at_index (l2im->configs, sw_if_index0);
3217 bd_config = vec_elt_at_index (l2im->bd_configs, config->bd_index);
3219 return bd_config->bd_id;
3223 lisp_get_vni_from_buffer_eth (lisp_cp_main_t * lcm, vlib_buffer_t * b)
3227 u32 bd = lisp_get_bd_from_buffer_eth (b);
3229 vnip = hash_get (lcm->vni_by_bd_id, bd);
3233 clib_warning ("bridge domain %d is not mapped to any vni!", bd);
3239 get_src_and_dst_eids_from_buffer (lisp_cp_main_t * lcm, vlib_buffer_t * b,
3240 gid_address_t * src, gid_address_t * dst,
3243 ethernet_header_t *eh;
3245 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *opt;
3247 clib_memset (src, 0, sizeof (*src));
3248 clib_memset (dst, 0, sizeof (*dst));
3250 gid_address_type (dst) = GID_ADDR_NO_ADDRESS;
3251 gid_address_type (src) = GID_ADDR_NO_ADDRESS;
3253 if (LISP_AFI_IP == type || LISP_AFI_IP6 == type)
3256 u8 version, preflen;
3258 gid_address_type (src) = GID_ADDR_IP_PREFIX;
3259 gid_address_type (dst) = GID_ADDR_IP_PREFIX;
3261 ip = vlib_buffer_get_current (b);
3262 get_src_and_dst_ip (ip, &gid_address_ip (src), &gid_address_ip (dst));
3264 version = gid_address_ip_version (src);
3265 preflen = ip_address_max_len (version);
3266 gid_address_ippref_len (src) = preflen;
3267 gid_address_ippref_len (dst) = preflen;
3269 vni = lisp_get_vni_from_buffer_ip (lcm, b, version);
3270 gid_address_vni (dst) = vni;
3271 gid_address_vni (src) = vni;
3273 else if (LISP_AFI_MAC == type)
3275 ethernet_arp_header_t *ah;
3277 eh = vlib_buffer_get_current (b);
3279 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_ARP)
3281 ah = (ethernet_arp_header_t *) (((u8 *) eh) + sizeof (*eh));
3282 gid_address_type (dst) = GID_ADDR_ARP;
3284 if (clib_net_to_host_u16 (ah->opcode)
3285 != ETHERNET_ARP_OPCODE_request)
3287 clib_memset (&gid_address_arp_ndp_ip (dst), 0,
3288 sizeof (ip_address_t));
3289 ip_addr_version (&gid_address_arp_ndp_ip (dst)) = AF_IP4;
3290 gid_address_arp_ndp_bd (dst) = ~0;
3294 gid_address_arp_bd (dst) = lisp_get_bd_from_buffer_eth (b);
3295 clib_memcpy (&gid_address_arp_ip4 (dst),
3296 &ah->ip4_over_ethernet[1].ip4, 4);
3300 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_IP6)
3303 ip = (ip6_header_t *) (eh + 1);
3305 if (IP_PROTOCOL_ICMP6 == ip->protocol)
3307 icmp6_neighbor_solicitation_or_advertisement_header_t *ndh;
3308 ndh = ip6_next_header (ip);
3309 if (ndh->icmp.type == ICMP6_neighbor_solicitation)
3311 gid_address_type (dst) = GID_ADDR_NDP;
3313 /* check that source link layer address option is present */
3314 opt = (void *) (ndh + 1);
3315 if ((opt->header.type !=
3316 ICMP6_NEIGHBOR_DISCOVERY_OPTION_source_link_layer_address)
3317 || (opt->header.n_data_u64s != 1))
3319 clib_memset (&gid_address_arp_ndp_ip (dst), 0,
3320 sizeof (ip_address_t));
3321 ip_addr_version (&gid_address_arp_ndp_ip (dst)) =
3323 gid_address_arp_ndp_bd (dst) = ~0;
3324 gid_address_type (src) = GID_ADDR_NO_ADDRESS;
3328 gid_address_ndp_bd (dst) =
3329 lisp_get_bd_from_buffer_eth (b);
3330 ip_address_set (&gid_address_arp_ndp_ip (dst),
3331 &ndh->target_address, AF_IP6);
3337 gid_address_type (src) = GID_ADDR_MAC;
3338 gid_address_type (dst) = GID_ADDR_MAC;
3339 mac_copy (&gid_address_mac (src), eh->src_address);
3340 mac_copy (&gid_address_mac (dst), eh->dst_address);
3343 vni = lisp_get_vni_from_buffer_eth (lcm, b);
3345 gid_address_vni (dst) = vni;
3346 gid_address_vni (src) = vni;
3349 else if (LISP_AFI_LCAF == type)
3352 eh = vlib_buffer_get_current (b);
3354 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_NSH)
3356 nh = (lisp_nsh_hdr_t *) (((u8 *) eh) + sizeof (*eh));
3357 u32 spi = clib_net_to_host_u32 (nh->spi_si << 8);
3358 u8 si = (u8) clib_net_to_host_u32 (nh->spi_si);
3359 gid_address_nsh_spi (dst) = spi;
3360 gid_address_nsh_si (dst) = si;
3362 gid_address_type (dst) = GID_ADDR_NSH;
3363 gid_address_type (src) = GID_ADDR_NSH;
3369 lisp_cp_lookup_inline (vlib_main_t * vm,
3370 vlib_node_runtime_t * node,
3371 vlib_frame_t * from_frame, int overlay)
3373 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *opt;
3374 u32 *from, *to_next, di, si;
3375 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3377 uword n_left_from, n_left_to_next;
3378 vnet_main_t *vnm = vnet_get_main ();
3380 from = vlib_frame_vector_args (from_frame);
3381 n_left_from = from_frame->n_vectors;
3382 next_index = node->cached_next_index;
3384 while (n_left_from > 0)
3386 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
3388 while (n_left_from > 0 && n_left_to_next > 0)
3390 u32 pi0, sw_if_index0, next0;
3393 gid_address_t src, dst;
3394 ethernet_arp_header_t *arp0;
3395 ethernet_header_t *eth0;
3396 vnet_hw_interface_t *hw_if0;
3397 ethernet_header_t *eh0;
3398 icmp6_neighbor_solicitation_or_advertisement_header_t *ndh;
3406 n_left_to_next -= 1;
3408 b0 = vlib_get_buffer (vm, pi0);
3410 /* src/dst eid pair */
3411 get_src_and_dst_eids_from_buffer (lcm, b0, &src, &dst, overlay);
3413 if (gid_address_type (&dst) == GID_ADDR_ARP)
3415 mac0 = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
3416 if (GID_LOOKUP_MISS_L2 == mac0)
3419 /* send ARP reply */
3420 sw_if_index0 = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3421 vnet_buffer (b0)->sw_if_index[VLIB_TX] = sw_if_index0;
3423 hw_if0 = vnet_get_sup_hw_interface (vnm, sw_if_index0);
3425 eth0 = vlib_buffer_get_current (b0);
3426 arp0 = (ethernet_arp_header_t *) (((u8 *) eth0)
3428 arp0->opcode = clib_host_to_net_u16 (ETHERNET_ARP_OPCODE_reply);
3429 arp0->ip4_over_ethernet[1] = arp0->ip4_over_ethernet[0];
3430 mac_address_from_u64 (&arp0->ip4_over_ethernet[0].mac, mac0);
3431 clib_memcpy (&arp0->ip4_over_ethernet[0].ip4,
3432 &gid_address_arp_ip4 (&dst), 4);
3434 /* Hardware must be ethernet-like. */
3435 ASSERT (vec_len (hw_if0->hw_address) == 6);
3437 clib_memcpy (eth0->dst_address, eth0->src_address, 6);
3438 clib_memcpy (eth0->src_address, hw_if0->hw_address, 6);
3440 b0->error = node->errors[LISP_CP_LOOKUP_ERROR_ARP_REPLY_TX];
3441 next0 = LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX;
3444 else if (gid_address_type (&dst) == GID_ADDR_NDP)
3446 mac0 = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
3447 if (GID_LOOKUP_MISS_L2 == mac0)
3450 sw_if_index0 = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3451 vnet_buffer (b0)->sw_if_index[VLIB_TX] = sw_if_index0;
3453 eh0 = vlib_buffer_get_current (b0);
3454 ip0 = (ip6_header_t *) (eh0 + 1);
3455 ndh = ip6_next_header (ip0);
3457 ip0->dst_address = ip0->src_address;
3458 ip0->src_address = ndh->target_address;
3459 ip0->hop_limit = 255;
3460 opt = (void *) (ndh + 1);
3462 ICMP6_NEIGHBOR_DISCOVERY_OPTION_target_link_layer_address;
3463 clib_memcpy (opt->ethernet_address, (u8 *) & mac0, 6);
3464 ndh->icmp.type = ICMP6_neighbor_advertisement;
3465 ndh->advertisement_flags = clib_host_to_net_u32
3466 (ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_SOLICITED |
3467 ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_OVERRIDE);
3468 ndh->icmp.checksum = 0;
3469 ndh->icmp.checksum =
3470 ip6_tcp_udp_icmp_compute_checksum (vm, b0, ip0,
3472 clib_memcpy (eh0->dst_address, eh0->src_address, 6);
3473 clib_memcpy (eh0->src_address, (u8 *) & mac0, 6);
3476 [LISP_CP_LOOKUP_ERROR_NDP_NEIGHBOR_ADVERTISEMENT_TX];
3477 next0 = LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX;
3481 /* if we have remote mapping for destination already in map-cache
3482 add forwarding tunnel directly. If not send a map-request */
3483 di = gid_dictionary_sd_lookup (&lcm->mapping_index_by_gid, &dst,
3487 mapping_t *m = vec_elt_at_index (lcm->mapping_pool, di);
3488 /* send a map-request also in case of negative mapping entry
3489 with corresponding action */
3490 if (m->action == LISP_SEND_MAP_REQUEST)
3492 /* send map-request */
3493 queue_map_request (&src, &dst, 0 /* smr_invoked */ ,
3494 0 /* is_resend */ );
3498 if (GID_ADDR_NSH != gid_address_type (&dst))
3500 si = gid_dictionary_lookup (&lcm->mapping_index_by_gid,
3504 si = lcm->nsh_map_index;
3508 dp_add_fwd_entry_from_mt (si, di);
3514 /* send map-request */
3515 queue_map_request (&src, &dst, 0 /* smr_invoked */ ,
3516 0 /* is_resend */ );
3520 b0->error = node->errors[LISP_CP_LOOKUP_ERROR_DROP];
3521 next0 = LISP_CP_LOOKUP_NEXT_DROP;
3523 if (PREDICT_FALSE (b0->flags & VLIB_BUFFER_IS_TRACED))
3525 lisp_cp_lookup_trace_t *tr = vlib_add_trace (vm, node, b0,
3528 clib_memset (tr, 0, sizeof (*tr));
3529 if ((gid_address_type (&dst) == GID_ADDR_NDP) ||
3530 (gid_address_type (&dst) == GID_ADDR_ARP))
3531 clib_memcpy (&tr->dst_eid, &dst, sizeof (gid_address_t));
3533 gid_address_copy (&tr->dst_eid, &dst);
3534 ip_address_copy (&tr->map_resolver_ip,
3535 &lcm->active_map_resolver);
3537 gid_address_free (&dst);
3538 gid_address_free (&src);
3539 vlib_validate_buffer_enqueue_x1 (vm, node, next_index,
3541 n_left_to_next, pi0, next0);
3544 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
3546 return from_frame->n_vectors;
3550 lisp_cp_lookup_ip4 (vlib_main_t * vm,
3551 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3553 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_IP));
3557 lisp_cp_lookup_ip6 (vlib_main_t * vm,
3558 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3560 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_IP6));
3564 lisp_cp_lookup_l2 (vlib_main_t * vm,
3565 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3567 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_MAC));
3571 lisp_cp_lookup_nsh (vlib_main_t * vm,
3572 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3574 /* TODO decide if NSH should be propagated as LCAF or not */
3575 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_LCAF));
3578 VLIB_REGISTER_NODE (lisp_cp_lookup_ip4_node) = {
3579 .function = lisp_cp_lookup_ip4,
3580 .name = "lisp-cp-lookup-ip4",
3581 .vector_size = sizeof (u32),
3582 .format_trace = format_lisp_cp_lookup_trace,
3583 .type = VLIB_NODE_TYPE_INTERNAL,
3585 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3586 .error_strings = lisp_cp_lookup_error_strings,
3588 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3591 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3592 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3596 VLIB_REGISTER_NODE (lisp_cp_lookup_ip6_node) = {
3597 .function = lisp_cp_lookup_ip6,
3598 .name = "lisp-cp-lookup-ip6",
3599 .vector_size = sizeof (u32),
3600 .format_trace = format_lisp_cp_lookup_trace,
3601 .type = VLIB_NODE_TYPE_INTERNAL,
3603 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3604 .error_strings = lisp_cp_lookup_error_strings,
3606 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3609 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3610 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3614 VLIB_REGISTER_NODE (lisp_cp_lookup_l2_node) = {
3615 .function = lisp_cp_lookup_l2,
3616 .name = "lisp-cp-lookup-l2",
3617 .vector_size = sizeof (u32),
3618 .format_trace = format_lisp_cp_lookup_trace,
3619 .type = VLIB_NODE_TYPE_INTERNAL,
3621 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3622 .error_strings = lisp_cp_lookup_error_strings,
3624 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3627 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3628 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3632 VLIB_REGISTER_NODE (lisp_cp_lookup_nsh_node) = {
3633 .function = lisp_cp_lookup_nsh,
3634 .name = "lisp-cp-lookup-nsh",
3635 .vector_size = sizeof (u32),
3636 .format_trace = format_lisp_cp_lookup_trace,
3637 .type = VLIB_NODE_TYPE_INTERNAL,
3639 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3640 .error_strings = lisp_cp_lookup_error_strings,
3642 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3645 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3646 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3650 /* lisp_cp_input statistics */
3651 #define foreach_lisp_cp_input_error \
3653 _(RLOC_PROBE_REQ_RECEIVED, "rloc-probe requests received") \
3654 _(RLOC_PROBE_REP_RECEIVED, "rloc-probe replies received") \
3655 _(MAP_NOTIFIES_RECEIVED, "map-notifies received") \
3656 _(MAP_REPLIES_RECEIVED, "map-replies received")
3658 static char *lisp_cp_input_error_strings[] = {
3659 #define _(sym,string) string,
3660 foreach_lisp_cp_input_error
3666 #define _(sym,str) LISP_CP_INPUT_ERROR_##sym,
3667 foreach_lisp_cp_input_error
3669 LISP_CP_INPUT_N_ERROR,
3670 } lisp_cp_input_error_t;
3674 gid_address_t dst_eid;
3675 ip4_address_t map_resolver_ip;
3676 } lisp_cp_input_trace_t;
3679 format_lisp_cp_input_trace (u8 * s, va_list * args)
3681 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
3682 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
3683 CLIB_UNUSED (lisp_cp_input_trace_t * t) =
3684 va_arg (*args, lisp_cp_input_trace_t *);
3686 s = format (s, "LISP-CP-INPUT: TODO");
3691 remove_expired_mapping (lisp_cp_main_t * lcm, u32 mi)
3694 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
3695 clib_memset (adj_args, 0, sizeof (adj_args[0]));
3697 m = pool_elt_at_index (lcm->mapping_pool, mi);
3699 gid_address_copy (&adj_args->reid, &m->eid);
3700 adj_args->is_add = 0;
3701 if (vnet_lisp_add_del_adjacency (adj_args))
3702 clib_warning ("failed to del adjacency!");
3704 TW (tw_timer_stop) (&lcm->wheel, m->timer_handle);
3705 vnet_lisp_del_mapping (&m->eid, NULL);
3709 mapping_start_expiration_timer (lisp_cp_main_t * lcm, u32 mi,
3710 f64 expiration_time)
3713 u64 now = clib_cpu_time_now ();
3714 u64 cpu_cps = lcm->vlib_main->clib_time.clocks_per_second;
3715 u64 exp_clock_time = now + expiration_time * cpu_cps;
3717 m = pool_elt_at_index (lcm->mapping_pool, mi);
3720 m->timer_handle = TW (tw_timer_start) (&lcm->wheel, mi, 0, exp_clock_time);
3724 process_expired_mapping (lisp_cp_main_t * lcm, u32 mi)
3727 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
3728 mapping_t *m = pool_elt_at_index (lcm->mapping_pool, mi);
3734 if (m->delete_after_expiration)
3736 remove_expired_mapping (lcm, mi);
3740 fei = hash_get (lcm->fwd_entry_by_mapping_index, mi);
3744 fe = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
3746 clib_memset (a, 0, sizeof (*a));
3747 a->rmt_eid = fe->reid;
3749 a->lcl_eid = fe->leid;
3750 a->vni = gid_address_vni (&fe->reid);
3752 rv = vnet_lisp_gpe_get_fwd_stats (a, &c);
3756 if (m->almost_expired)
3758 m->almost_expired = 0; /* reset flag */
3761 if (m->packets != c.packets)
3763 /* mapping is in use, re-fetch */
3764 map_request_args_t mr_args;
3765 clib_memset (&mr_args, 0, sizeof (mr_args));
3766 mr_args.seid = fe->leid;
3767 mr_args.deid = fe->reid;
3769 send_map_request_thread_fn (&mr_args);
3772 remove_expired_mapping (lcm, mi);
3775 remove_expired_mapping (lcm, mi);
3779 m->almost_expired = 1;
3780 mapping_start_expiration_timer (lcm, mi, TIME_UNTIL_REFETCH_OR_DELETE);
3784 m->packets = c.packets;
3786 m->delete_after_expiration = 1;
3791 map_records_arg_free (map_records_arg_t * a)
3793 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3795 vec_foreach (m, a->mappings)
3797 vec_free (m->locators);
3798 gid_address_free (&m->eid);
3800 pool_put (lcm->map_records_args_pool[vlib_get_thread_index ()], a);
3804 process_map_reply (map_records_arg_t * a)
3807 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3808 u32 dst_map_index = 0;
3809 pending_map_request_t *pmr;
3814 if (a->is_rloc_probe)
3817 /* Check pending requests table and nonce */
3818 pmr_index = hash_get (lcm->pending_map_requests_by_nonce, a->nonce);
3821 clib_warning ("No pending map-request entry with nonce %lu!", a->nonce);
3824 pmr = pool_elt_at_index (lcm->pending_map_requests_pool, pmr_index[0]);
3826 vec_foreach (m, a->mappings)
3828 vnet_lisp_add_del_mapping_args_t _m_args, *m_args = &_m_args;
3829 clib_memset (m_args, 0, sizeof (m_args[0]));
3830 gid_address_copy (&m_args->eid, &m->eid);
3831 m_args->action = m->action;
3832 m_args->authoritative = m->authoritative;
3833 m_args->ttl = m->ttl;
3834 m_args->is_static = 0;
3836 /* insert/update mappings cache */
3837 vnet_lisp_add_mapping (m_args, m->locators, &dst_map_index, &is_changed);
3839 if (dst_map_index == (u32) ~ 0)
3844 /* try to program forwarding only if mapping saved or updated */
3845 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
3846 clib_memset (adj_args, 0, sizeof (adj_args[0]));
3848 gid_address_copy (&adj_args->leid, &pmr->src);
3849 gid_address_copy (&adj_args->reid, &m->eid);
3850 adj_args->is_add = 1;
3852 if (vnet_lisp_add_del_adjacency (adj_args))
3853 clib_warning ("failed to add adjacency!");
3856 if ((u32) ~ 0 != m->ttl)
3857 mapping_start_expiration_timer (lcm, dst_map_index,
3858 (m->ttl == 0) ? 0 : MAPPING_TIMEOUT);
3861 /* remove pending map request entry */
3863 clib_fifo_foreach (noncep, pmr->nonces, ({
3864 hash_unset(lcm->pending_map_requests_by_nonce, noncep[0]);
3867 clib_fifo_free (pmr->nonces);
3868 pool_put (lcm->pending_map_requests_pool, pmr);
3876 is_auth_data_valid (map_notify_hdr_t * h, u32 msg_len,
3877 lisp_key_type_t key_id, u8 * key)
3879 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3883 vnet_crypto_op_t _op, *op = &_op;
3884 vnet_crypto_key_index_t ki;
3885 u8 out[EVP_MAX_MD_SIZE] = { 0, };
3887 auth_data_len = auth_data_len_by_key_id (key_id);
3888 if ((u16) ~ 0 == auth_data_len)
3890 clib_warning ("invalid length for key_id %d!", key_id);
3894 /* save auth data */
3895 vec_validate (auth_data, auth_data_len - 1);
3896 clib_memcpy (auth_data, MNOTIFY_DATA (h), auth_data_len);
3898 /* clear auth data */
3899 clib_memset (MNOTIFY_DATA (h), 0, auth_data_len);
3901 vnet_crypto_op_init (op, lisp_key_type_to_crypto_op (key_id));
3908 ki = vnet_crypto_key_add (lcm->vlib_main,
3909 lisp_key_type_to_crypto_alg (key_id), key,
3914 vnet_crypto_process_ops (lcm->vlib_main, op, 1);
3915 vnet_crypto_key_del (lcm->vlib_main, ki);
3917 result = memcmp (out, auth_data, auth_data_len);
3919 vec_free (auth_data);
3925 process_map_notify (map_records_arg_t * a)
3927 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3930 pmr_index = hash_get (lcm->map_register_messages_by_nonce, a->nonce);
3933 clib_warning ("No pending map-register entry with nonce %lu!",
3939 pool_put_index (lcm->pending_map_registers_pool, pmr_index[0]);
3940 hash_unset (lcm->map_register_messages_by_nonce, a->nonce);
3942 /* reset map-notify counter */
3943 lcm->expired_map_registers = 0;
3947 get_mapping (lisp_cp_main_t * lcm, gid_address_t * e)
3951 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, e);
3954 clib_warning ("eid %U not found in map-cache!", unformat_gid_address,
3958 return pool_elt_at_index (lcm->mapping_pool, mi);
3962 * When map-notify is received it is necessary that all EIDs in the record
3963 * list share common key. The key is then used to verify authentication
3964 * data in map-notify message.
3967 map_record_integrity_check (lisp_cp_main_t * lcm, mapping_t * maps,
3968 u32 key_id, u8 ** key_out)
3970 u32 i, len = vec_len (maps);
3973 /* get key of the first mapping */
3974 m = get_mapping (lcm, &maps[0].eid);
3978 key_out[0] = m->key;
3980 for (i = 1; i < len; i++)
3982 m = get_mapping (lcm, &maps[i].eid);
3986 if (key_id != m->key_id || vec_cmp (m->key, key_out[0]))
3988 clib_warning ("keys does not match! %v, %v", key_out[0], m->key);
3996 parse_map_records (vlib_buffer_t * b, map_records_arg_t * a, u8 count)
3998 locator_t *locators = 0;
4004 clib_memset (&m, 0, sizeof (m));
4006 /* parse record eid */
4007 for (i = 0; i < count; i++)
4010 len = lisp_msg_parse_mapping_record (b, &deid, &locators, NULL);
4013 clib_warning ("Failed to parse mapping record!");
4014 vec_foreach (loc, locators) locator_free (loc);
4015 vec_free (locators);
4019 m.locators = locators;
4020 gid_address_copy (&m.eid, &deid);
4021 vec_add1 (a->mappings, m);
4027 static map_records_arg_t *
4028 map_record_args_get ()
4030 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4031 map_records_arg_t *rec;
4034 pool_foreach (rec, lcm->map_records_args_pool[vlib_get_thread_index()]) {
4036 map_records_arg_free (rec);
4039 pool_get (lcm->map_records_args_pool[vlib_get_thread_index ()], rec);
4043 static map_records_arg_t *
4044 parse_map_notify (vlib_buffer_t * b)
4047 map_notify_hdr_t *mnotif_hdr;
4048 lisp_key_type_t key_id;
4049 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4052 u16 auth_data_len = 0;
4054 map_records_arg_t *a;
4056 a = map_record_args_get ();
4057 clib_memset (a, 0, sizeof (*a));
4058 mnotif_hdr = vlib_buffer_get_current (b);
4059 vlib_buffer_pull (b, sizeof (*mnotif_hdr));
4060 clib_memset (&deid, 0, sizeof (deid));
4062 a->nonce = MNOTIFY_NONCE (mnotif_hdr);
4063 key_id = clib_net_to_host_u16 (MNOTIFY_KEY_ID (mnotif_hdr));
4064 auth_data_len = auth_data_len_by_key_id (key_id);
4066 /* advance buffer by authentication data */
4067 vlib_buffer_pull (b, auth_data_len);
4069 record_count = MNOTIFY_REC_COUNT (mnotif_hdr);
4070 rc = parse_map_records (b, a, record_count);
4073 map_records_arg_free (a);
4077 rc = map_record_integrity_check (lcm, a->mappings, key_id, &key);
4080 map_records_arg_free (a);
4084 /* verify authentication data */
4085 if (!is_auth_data_valid (mnotif_hdr, vlib_buffer_get_tail (b)
4086 - (u8 *) mnotif_hdr, key_id, key))
4088 clib_warning ("Map-notify auth data verification failed for nonce "
4089 "0x%lx!", a->nonce);
4090 map_records_arg_free (a);
4096 static vlib_buffer_t *
4097 build_map_reply (lisp_cp_main_t * lcm, ip_address_t * sloc,
4098 ip_address_t * dst, u64 nonce, u8 probe_bit,
4099 mapping_t * records, u16 dst_port, u32 * bi_res)
4103 vlib_main_t *vm = lcm->vlib_main;
4105 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
4107 clib_warning ("Can't allocate buffer for Map-Register!");
4111 b = vlib_get_buffer (vm, bi);
4113 /* leave some space for the encap headers */
4114 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
4116 lisp_msg_put_map_reply (b, records, nonce, probe_bit);
4118 /* push outer ip header */
4119 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, dst_port, sloc, dst, 1);
4126 send_map_reply (lisp_cp_main_t * lcm, u32 mi, ip_address_t * dst,
4127 u8 probe_bit, u64 nonce, u16 dst_port,
4128 ip_address_t * probed_loc)
4134 u32 next_index, *to_next;
4135 mapping_t *records = 0, *m;
4137 m = pool_elt_at_index (lcm->mapping_pool, mi);
4138 vec_add1 (records, m[0]);
4139 add_locators (lcm, &records[0], m->locator_set_index, probed_loc);
4140 clib_memset (&src, 0, sizeof (src));
4142 if (!ip_fib_get_first_egress_ip_for_dst (lcm, dst, &src))
4144 clib_warning ("can't find interface address for %U", format_ip_address,
4149 b = build_map_reply (lcm, &src, dst, nonce, probe_bit, records, dst_port,
4153 free_map_register_records (records);
4155 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
4156 next_index = (ip_addr_version (&lcm->active_map_resolver) == AF_IP4) ?
4157 ip4_lookup_node.index : ip6_lookup_node.index;
4159 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
4161 /* Enqueue the packet */
4162 to_next = vlib_frame_vector_args (f);
4165 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
4170 find_ip_header (vlib_buffer_t * b, u8 ** ip_hdr)
4172 const i32 start = vnet_buffer (b)->l3_hdr_offset;
4173 if (start < 0 && start < -sizeof (b->pre_data))
4179 *ip_hdr = b->data + start;
4180 if ((u8 *) * ip_hdr > (u8 *) vlib_buffer_get_current (b))
4185 process_map_request (vlib_main_t * vm, vlib_node_runtime_t * node,
4186 lisp_cp_main_t * lcm, vlib_buffer_t * b)
4189 ip_address_t *dst_loc = 0, probed_loc, src_loc;
4191 map_request_hdr_t *mreq_hdr;
4192 gid_address_t src, dst;
4194 u32 i, len = 0, rloc_probe_recv = 0;
4195 gid_address_t *itr_rlocs = 0;
4197 mreq_hdr = vlib_buffer_get_current (b);
4198 if (!MREQ_SMR (mreq_hdr) && !MREQ_RLOC_PROBE (mreq_hdr))
4201 ("Only SMR Map-Requests and RLOC probe supported for now!");
4205 vlib_buffer_pull (b, sizeof (*mreq_hdr));
4206 nonce = MREQ_NONCE (mreq_hdr);
4209 len = lisp_msg_parse_addr (b, &src);
4213 len = lisp_msg_parse_itr_rlocs (b, &itr_rlocs,
4214 MREQ_ITR_RLOC_COUNT (mreq_hdr) + 1);
4218 /* parse eid records and send SMR-invoked map-requests */
4219 for (i = 0; i < MREQ_REC_COUNT (mreq_hdr); i++)
4221 clib_memset (&dst, 0, sizeof (dst));
4222 len = lisp_msg_parse_eid_rec (b, &dst);
4225 clib_warning ("Can't parse map-request EID-record");
4229 if (MREQ_SMR (mreq_hdr))
4231 /* send SMR-invoked map-requests */
4232 queue_map_request (&dst, &src, 1 /* invoked */ , 0 /* resend */ );
4234 else if (MREQ_RLOC_PROBE (mreq_hdr))
4236 find_ip_header (b, &ip_hdr);
4239 clib_warning ("Cannot find the IP header!");
4243 clib_memset (&m, 0, sizeof (m));
4244 u32 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
4245 if (GID_LOOKUP_MISS == mi)
4247 clib_warning ("Cannot find mapping index by gid!");
4251 // TODO: select best locator; for now use the first one
4252 dst_loc = &gid_address_ip (&itr_rlocs[0]);
4254 /* get src/dst IP addresses */
4255 get_src_and_dst_ip (ip_hdr, &src_loc, &probed_loc);
4257 // TODO get source port from buffer
4258 u16 src_port = LISP_CONTROL_PORT;
4260 send_map_reply (lcm, mi, dst_loc, 1 /* probe-bit */ , nonce,
4261 src_port, &probed_loc);
4266 vlib_node_increment_counter (vm, node->node_index,
4267 LISP_CP_INPUT_ERROR_RLOC_PROBE_REQ_RECEIVED,
4269 vec_free (itr_rlocs);
4273 parse_map_reply (vlib_buffer_t * b)
4280 map_reply_hdr_t *mrep_hdr;
4281 map_records_arg_t *a;
4283 a = map_record_args_get ();
4284 clib_memset (a, 0, sizeof (*a));
4286 locator_t *locators;
4288 mrep_hdr = vlib_buffer_get_current (b);
4289 a->nonce = MREP_NONCE (mrep_hdr);
4290 a->is_rloc_probe = MREP_RLOC_PROBE (mrep_hdr);
4291 if (!vlib_buffer_has_space (b, sizeof (*mrep_hdr)))
4293 map_records_arg_free (a);
4296 vlib_buffer_pull (b, sizeof (*mrep_hdr));
4298 for (i = 0; i < MREP_REC_COUNT (mrep_hdr); i++)
4300 clib_memset (&m, 0, sizeof (m));
4302 h = vlib_buffer_get_current (b);
4304 m.ttl = clib_net_to_host_u32 (MAP_REC_TTL (h));
4305 m.action = MAP_REC_ACTION (h);
4306 m.authoritative = MAP_REC_AUTH (h);
4308 len = lisp_msg_parse_mapping_record (b, &deid, &locators, &probed);
4311 clib_warning ("Failed to parse mapping record!");
4312 map_records_arg_free (a);
4316 m.locators = locators;
4317 gid_address_copy (&m.eid, &deid);
4318 vec_add1 (a->mappings, m);
4324 queue_map_reply_for_processing (map_records_arg_t * a)
4326 vl_api_rpc_call_main_thread (process_map_reply, (u8 *) a, sizeof (*a));
4330 queue_map_notify_for_processing (map_records_arg_t * a)
4332 vl_api_rpc_call_main_thread (process_map_notify, (u8 *) a, sizeof (a[0]));
4336 lisp_cp_input (vlib_main_t * vm, vlib_node_runtime_t * node,
4337 vlib_frame_t * from_frame)
4339 u32 n_left_from, *from, *to_next_drop, rloc_probe_rep_recv = 0,
4340 map_notifies_recv = 0;
4341 lisp_msg_type_e type;
4342 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4343 map_records_arg_t *a;
4345 from = vlib_frame_vector_args (from_frame);
4346 n_left_from = from_frame->n_vectors;
4349 while (n_left_from > 0)
4351 u32 n_left_to_next_drop;
4353 vlib_get_next_frame (vm, node, LISP_CP_INPUT_NEXT_DROP,
4354 to_next_drop, n_left_to_next_drop);
4355 while (n_left_from > 0 && n_left_to_next_drop > 0)
4363 to_next_drop[0] = bi0;
4365 n_left_to_next_drop -= 1;
4367 b0 = vlib_get_buffer (vm, bi0);
4369 type = lisp_msg_type (vlib_buffer_get_current (b0));
4372 case LISP_MAP_REPLY:
4373 a = parse_map_reply (b0);
4376 if (a->is_rloc_probe)
4377 rloc_probe_rep_recv++;
4378 queue_map_reply_for_processing (a);
4381 case LISP_MAP_REQUEST:
4382 process_map_request (vm, node, lcm, b0);
4384 case LISP_MAP_NOTIFY:
4385 a = parse_map_notify (b0);
4388 map_notifies_recv++;
4389 queue_map_notify_for_processing (a);
4393 clib_warning ("Unsupported LISP message type %d", type);
4397 b0->error = node->errors[LISP_CP_INPUT_ERROR_DROP];
4399 if (PREDICT_FALSE (b0->flags & VLIB_BUFFER_IS_TRACED))
4405 vlib_put_next_frame (vm, node, LISP_CP_INPUT_NEXT_DROP,
4406 n_left_to_next_drop);
4408 vlib_node_increment_counter (vm, node->node_index,
4409 LISP_CP_INPUT_ERROR_RLOC_PROBE_REP_RECEIVED,
4410 rloc_probe_rep_recv);
4411 vlib_node_increment_counter (vm, node->node_index,
4412 LISP_CP_INPUT_ERROR_MAP_NOTIFIES_RECEIVED,
4414 return from_frame->n_vectors;
4417 VLIB_REGISTER_NODE (lisp_cp_input_node) = {
4418 .function = lisp_cp_input,
4419 .name = "lisp-cp-input",
4420 .vector_size = sizeof (u32),
4421 .format_trace = format_lisp_cp_input_trace,
4422 .type = VLIB_NODE_TYPE_INTERNAL,
4424 .n_errors = LISP_CP_INPUT_N_ERROR,
4425 .error_strings = lisp_cp_input_error_strings,
4427 .n_next_nodes = LISP_CP_INPUT_N_NEXT,
4430 [LISP_CP_INPUT_NEXT_DROP] = "error-drop",
4435 lisp_cp_init (vlib_main_t * vm)
4437 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4438 clib_error_t *error = 0;
4439 vlib_thread_main_t *vtm = vlib_get_thread_main ();
4442 if ((error = vlib_call_init_function (vm, lisp_gpe_init)))
4445 lcm->im4 = &ip4_main;
4446 lcm->im6 = &ip6_main;
4447 lcm->vlib_main = vm;
4448 lcm->vnet_main = vnet_get_main ();
4449 lcm->mreq_itr_rlocs = ~0;
4451 lcm->pitr_map_index = ~0;
4452 lcm->petr_map_index = ~0;
4453 clib_memset (&lcm->active_map_resolver, 0,
4454 sizeof (lcm->active_map_resolver));
4455 clib_memset (&lcm->active_map_server, 0, sizeof (lcm->active_map_server));
4457 gid_dictionary_init (&lcm->mapping_index_by_gid);
4458 lcm->do_map_resolver_election = 1;
4459 lcm->do_map_server_election = 1;
4460 lcm->map_request_mode = MR_MODE_DST_ONLY;
4462 num_threads = 1 /* main thread */ + vtm->n_threads;
4463 vec_validate (lcm->map_records_args_pool, num_threads - 1);
4465 /* default vrf mapped to vni 0 */
4466 hash_set (lcm->table_id_by_vni, 0, 0);
4467 hash_set (lcm->vni_by_table_id, 0, 0);
4469 TW (tw_timer_wheel_init) (&lcm->wheel, 0 /* no callback */ ,
4470 1e-3 /* timer period 1ms */ ,
4471 ~0 /* max expirations per call */ );
4472 lcm->nsh_map_index = ~0;
4473 lcm->map_register_ttl = MAP_REGISTER_DEFAULT_TTL;
4474 lcm->max_expired_map_registers = MAX_EXPIRED_MAP_REGISTERS_DEFAULT;
4475 lcm->expired_map_registers = 0;
4476 lcm->transport_protocol = LISP_TRANSPORT_PROTOCOL_UDP;
4477 lcm->flags |= LISP_FLAG_XTR_MODE;
4482 lisp_stats_api_fill (lisp_cp_main_t * lcm, lisp_gpe_main_t * lgm,
4483 lisp_api_stats_t * stat, lisp_stats_key_t * key,
4487 vlib_combined_counter_main_t *cm = &lgm->counters;
4488 lisp_gpe_fwd_entry_key_t fwd_key;
4489 const lisp_gpe_tunnel_t *lgt;
4492 clib_memset (stat, 0, sizeof (*stat));
4493 clib_memset (&fwd_key, 0, sizeof (fwd_key));
4495 fe = pool_elt_at_index (lcm->fwd_entry_pool, key->fwd_entry_index);
4498 gid_to_dp_address (&fe->reid, &stat->deid);
4499 gid_to_dp_address (&fe->leid, &stat->seid);
4500 stat->vni = gid_address_vni (&fe->reid);
4502 lgt = lisp_gpe_tunnel_get (key->tunnel_index);
4503 stat->loc_rloc = lgt->key->lcl;
4504 stat->rmt_rloc = lgt->key->rmt;
4506 vlib_get_combined_counter (cm, stats_index, &v);
4512 vnet_lisp_get_stats (void)
4514 lisp_gpe_main_t *lgm = vnet_lisp_gpe_get_main ();
4515 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4516 lisp_api_stats_t *stats = 0, stat;
4517 lisp_stats_key_t *key;
4520 hash_foreach_mem (key, index, lgm->lisp_stats_index_by_key,
4522 if (lisp_stats_api_fill (lcm, lgm, &stat, key, index))
4523 vec_add1 (stats, stat);
4530 send_map_request_thread_fn (void *arg)
4532 map_request_args_t *a = arg;
4533 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4536 resend_encapsulated_map_request (lcm, &a->seid, &a->deid, a->smr_invoked);
4538 send_encapsulated_map_request (lcm, &a->seid, &a->deid, a->smr_invoked);
4544 queue_map_request (gid_address_t * seid, gid_address_t * deid,
4545 u8 smr_invoked, u8 is_resend)
4547 map_request_args_t a;
4549 a.is_resend = is_resend;
4550 gid_address_copy (&a.seid, seid);
4551 gid_address_copy (&a.deid, deid);
4552 a.smr_invoked = smr_invoked;
4554 vl_api_rpc_call_main_thread (send_map_request_thread_fn,
4555 (u8 *) & a, sizeof (a));
4560 * Take an action with a pending map request depending on expiration time
4561 * and re-try counters.
4564 update_pending_request (pending_map_request_t * r, f64 dt)
4566 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4569 if (r->time_to_expire - dt < 0)
4570 /* it's time to decide what to do with this pending request */
4572 if (r->retries_num >= NUMBER_OF_RETRIES)
4573 /* too many retries -> assume current map resolver is not available */
4575 mr = get_map_resolver (&lcm->active_map_resolver);
4578 clib_warning ("Map resolver %U not found - probably deleted "
4579 "by the user recently.", format_ip_address,
4580 &lcm->active_map_resolver);
4584 clib_warning ("map resolver %U is unreachable, ignoring",
4585 format_ip_address, &lcm->active_map_resolver);
4587 /* mark current map resolver unavailable so it won't be
4588 * selected next time */
4590 mr->last_update = vlib_time_now (lcm->vlib_main);
4593 reset_pending_mr_counters (r);
4594 elect_map_resolver (lcm);
4596 /* try to find a next eligible map resolver and re-send */
4597 queue_map_request (&r->src, &r->dst, r->is_smr_invoked,
4603 queue_map_request (&r->src, &r->dst, r->is_smr_invoked,
4606 r->time_to_expire = PENDING_MREQ_EXPIRATION_TIME;
4610 r->time_to_expire -= dt;
4614 remove_dead_pending_map_requests (lisp_cp_main_t * lcm)
4617 pending_map_request_t *pmr;
4618 u32 *to_be_removed = 0, *pmr_index;
4620 pool_foreach (pmr, lcm->pending_map_requests_pool)
4622 if (pmr->to_be_removed)
4624 clib_fifo_foreach (nonce, pmr->nonces, ({
4625 hash_unset (lcm->pending_map_requests_by_nonce, nonce[0]);
4628 vec_add1 (to_be_removed, pmr - lcm->pending_map_requests_pool);
4632 vec_foreach (pmr_index, to_be_removed)
4633 pool_put_index (lcm->pending_map_requests_pool, pmr_index[0]);
4635 vec_free (to_be_removed);
4639 update_rloc_probing (lisp_cp_main_t * lcm, f64 dt)
4641 static f64 time_left = RLOC_PROBING_INTERVAL;
4643 if (!lcm->is_enabled || !lcm->rloc_probing)
4649 time_left = RLOC_PROBING_INTERVAL;
4650 send_rloc_probes (lcm);
4655 update_pending_map_register (pending_map_register_t * r, f64 dt, u8 * del_all)
4657 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4661 r->time_to_expire -= dt;
4663 if (r->time_to_expire < 0)
4665 lcm->expired_map_registers++;
4667 if (lcm->expired_map_registers >= lcm->max_expired_map_registers)
4669 ms = get_map_server (&lcm->active_map_server);
4672 clib_warning ("Map server %U not found - probably deleted "
4673 "by the user recently.", format_ip_address,
4674 &lcm->active_map_server);
4678 clib_warning ("map server %U is unreachable, ignoring",
4679 format_ip_address, &lcm->active_map_server);
4681 /* mark current map server unavailable so it won't be
4682 * elected next time */
4684 ms->last_update = vlib_time_now (lcm->vlib_main);
4687 elect_map_server (lcm);
4689 /* indication for deleting all pending map registers */
4691 lcm->expired_map_registers = 0;
4696 /* delete pending map register */
4704 update_map_register (lisp_cp_main_t * lcm, f64 dt)
4706 u32 *to_be_removed = 0, *pmr_index;
4707 static f64 time_left = QUICK_MAP_REGISTER_INTERVAL;
4708 static u64 mreg_sent_counter = 0;
4710 pending_map_register_t *pmr;
4713 if (!lcm->is_enabled || !lcm->map_registering)
4716 pool_foreach (pmr, lcm->pending_map_registers_pool)
4718 if (!update_pending_map_register (pmr, dt, &del_all))
4722 vec_add1 (to_be_removed, pmr - lcm->pending_map_registers_pool);
4728 /* delete all pending map register messages so they won't
4729 * trigger another map server election.. */
4730 pool_free (lcm->pending_map_registers_pool);
4731 hash_free (lcm->map_register_messages_by_nonce);
4733 /* ..and trigger registration against next map server (if any) */
4738 vec_foreach (pmr_index, to_be_removed)
4739 pool_put_index (lcm->pending_map_registers_pool, pmr_index[0]);
4742 vec_free (to_be_removed);
4747 if (mreg_sent_counter >= QUICK_MAP_REGISTER_MSG_COUNT)
4748 time_left = MAP_REGISTER_INTERVAL;
4751 mreg_sent_counter++;
4752 time_left = QUICK_MAP_REGISTER_INTERVAL;
4754 send_map_register (lcm, 1 /* want map notify */ );
4759 send_map_resolver_service (vlib_main_t * vm,
4760 vlib_node_runtime_t * rt, vlib_frame_t * f)
4764 pending_map_request_t *pmr;
4765 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4769 vlib_process_wait_for_event_or_clock (vm, period);
4771 /* currently no signals are expected - just wait for clock */
4772 (void) vlib_process_get_events (vm, 0);
4774 pool_foreach (pmr, lcm->pending_map_requests_pool)
4776 if (!pmr->to_be_removed)
4777 update_pending_request (pmr, period);
4780 remove_dead_pending_map_requests (lcm);
4782 update_map_register (lcm, period);
4783 update_rloc_probing (lcm, period);
4785 expired = TW (tw_timer_expire_timers_vec) (&lcm->wheel,
4786 vlib_time_now (vm), expired);
4787 if (vec_len (expired) > 0)
4790 vec_foreach (mi, expired)
4792 process_expired_mapping (lcm, mi[0]);
4794 vec_set_len (expired, 0);
4803 vnet_lisp_stats_enable_disable (u8 enable)
4805 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4807 if (vnet_lisp_enable_disable_status () == 0)
4808 return VNET_API_ERROR_LISP_DISABLED;
4811 lcm->flags |= LISP_FLAG_STATS_ENABLED;
4813 lcm->flags &= ~LISP_FLAG_STATS_ENABLED;
4819 vnet_lisp_stats_enable_disable_state (void)
4821 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4823 if (vnet_lisp_enable_disable_status () == 0)
4824 return VNET_API_ERROR_LISP_DISABLED;
4826 return lcm->flags & LISP_FLAG_STATS_ENABLED;
4830 vnet_lisp_create_retry_process (lisp_cp_main_t * lcm)
4832 if (lcm->retry_service_index)
4835 lcm->retry_service_index = vlib_process_create (vlib_get_main (),
4836 "lisp-retry-service",
4837 send_map_resolver_service,
4838 16 /* stack_bytes */ );
4842 vnet_lisp_set_transport_protocol (u8 protocol)
4844 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4846 if (protocol < LISP_TRANSPORT_PROTOCOL_UDP ||
4847 protocol > LISP_TRANSPORT_PROTOCOL_API)
4848 return VNET_API_ERROR_INVALID_ARGUMENT;
4850 lcm->transport_protocol = protocol;
4854 lisp_transport_protocol_t
4855 vnet_lisp_get_transport_protocol (void)
4857 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4858 return lcm->transport_protocol;
4862 vnet_lisp_enable_disable_xtr_mode (u8 is_enabled)
4864 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4865 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
4866 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
4867 u8 petr_mode = lcm->flags & LISP_FLAG_PETR_MODE;
4869 if (pitr_mode && is_enabled)
4870 return VNET_API_ERROR_INVALID_ARGUMENT;
4872 if (is_enabled && xtr_mode)
4874 if (!is_enabled && !xtr_mode)
4881 lisp_cp_register_dst_port (lcm->vlib_main);
4883 lisp_cp_enable_l2_l3_ifaces (lcm, 1 /* with_default_route */ );
4884 lcm->flags |= LISP_FLAG_XTR_MODE;
4890 lisp_cp_unregister_dst_port (lcm->vlib_main);
4892 lisp_cp_disable_l2_l3_ifaces (lcm);
4893 lcm->flags &= ~LISP_FLAG_XTR_MODE;
4899 vnet_lisp_enable_disable_pitr_mode (u8 is_enabled)
4901 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4902 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
4903 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
4905 if (xtr_mode && is_enabled)
4906 return VNET_API_ERROR_INVALID_VALUE;
4908 if (is_enabled && pitr_mode)
4910 if (!is_enabled && !pitr_mode)
4915 /* create iface, no default route */
4916 lisp_cp_enable_l2_l3_ifaces (lcm, 0 /* with_default_route */ );
4917 lcm->flags |= LISP_FLAG_PITR_MODE;
4921 lisp_cp_disable_l2_l3_ifaces (lcm);
4922 lcm->flags &= ~LISP_FLAG_PITR_MODE;
4928 vnet_lisp_enable_disable_petr_mode (u8 is_enabled)
4930 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4931 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
4932 u8 petr_mode = lcm->flags & LISP_FLAG_PETR_MODE;
4934 if (is_enabled && petr_mode)
4936 if (!is_enabled && !petr_mode)
4943 lisp_cp_register_dst_port (lcm->vlib_main);
4945 lcm->flags |= LISP_FLAG_PETR_MODE;
4951 lisp_cp_unregister_dst_port (lcm->vlib_main);
4953 lcm->flags &= ~LISP_FLAG_PETR_MODE;
4959 vnet_lisp_get_xtr_mode (void)
4961 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4962 return (lcm->flags & LISP_FLAG_XTR_MODE);
4966 vnet_lisp_get_pitr_mode (void)
4968 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4969 return (lcm->flags & LISP_FLAG_PITR_MODE);
4973 vnet_lisp_get_petr_mode (void)
4975 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4976 return (lcm->flags & LISP_FLAG_PETR_MODE);
4979 VLIB_INIT_FUNCTION (lisp_cp_init);
4982 * fd.io coding-style-patch-verification: ON
4985 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob