2 * Copyright (c) 2016 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vlibmemory/api.h>
17 #include <vnet/lisp-cp/control.h>
18 #include <vnet/lisp-cp/packets.h>
19 #include <vnet/lisp-cp/lisp_msg_serdes.h>
20 #include <vnet/lisp-gpe/lisp_gpe_fwd_entry.h>
21 #include <vnet/lisp-gpe/lisp_gpe_tenant.h>
22 #include <vnet/lisp-gpe/lisp_gpe_tunnel.h>
23 #include <vnet/fib/fib_entry.h>
24 #include <vnet/fib/fib_table.h>
25 #include <vnet/ethernet/arp_packet.h>
26 #include <vnet/ethernet/packet.h>
28 #include <openssl/evp.h>
29 #include <vnet/crypto/crypto.h>
31 #define MAX_VALUE_U24 0xffffff
33 /* mapping timer control constants (in seconds) */
34 #define TIME_UNTIL_REFETCH_OR_DELETE 20
35 #define MAPPING_TIMEOUT (((m->ttl) * 60) - TIME_UNTIL_REFETCH_OR_DELETE)
37 lisp_cp_main_t lisp_control_main;
39 u8 *format_lisp_cp_input_trace (u8 * s, va_list * args);
40 static void *send_map_request_thread_fn (void *arg);
44 LISP_CP_INPUT_NEXT_DROP,
46 } lisp_cp_input_next_t;
57 vnet_lisp_get_map_request_mode (void)
59 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
60 return lcm->map_request_mode;
64 auth_data_len_by_key_id (lisp_key_type_t key_id)
69 return SHA1_AUTH_DATA_LEN;
70 case HMAC_SHA_256_128:
71 return SHA256_AUTH_DATA_LEN;
73 clib_warning ("unsupported key type: %d!", key_id);
80 queue_map_request (gid_address_t * seid, gid_address_t * deid,
81 u8 smr_invoked, u8 is_resend);
83 ip_interface_address_t *
84 ip_interface_get_first_interface_address (ip_lookup_main_t * lm,
85 u32 sw_if_index, u8 loop)
87 vnet_main_t *vnm = vnet_get_main ();
88 vnet_sw_interface_t *swif = vnet_get_sw_interface (vnm, sw_if_index);
89 if (loop && swif->flags & VNET_SW_INTERFACE_FLAG_UNNUMBERED)
90 sw_if_index = swif->unnumbered_sw_if_index;
92 (vec_len ((lm)->if_address_pool_index_by_sw_if_index) > (sw_if_index)) ?
93 vec_elt ((lm)->if_address_pool_index_by_sw_if_index, (sw_if_index)) :
95 return pool_elt_at_index ((lm)->if_address_pool, ia);
99 ip_interface_get_first_address (ip_lookup_main_t * lm, u32 sw_if_index,
102 ip_interface_address_t *ia;
104 ia = ip_interface_get_first_interface_address (lm, sw_if_index, 1);
107 return ip_interface_address_get_address (lm, ia);
111 ip_interface_get_first_ip_address (lisp_cp_main_t * lcm, u32 sw_if_index,
112 u8 version, ip_address_t * result)
114 ip_lookup_main_t *lm;
117 lm = (version == IP4) ? &lcm->im4->lookup_main : &lcm->im6->lookup_main;
118 addr = ip_interface_get_first_address (lm, sw_if_index, version);
122 ip_address_set (result, addr, version);
127 * convert from a LISP address to a FIB prefix
130 ip_address_to_fib_prefix (const ip_address_t * addr, fib_prefix_t * prefix)
132 if (addr->version == IP4)
135 prefix->fp_proto = FIB_PROTOCOL_IP4;
136 clib_memset (&prefix->fp_addr.pad, 0, sizeof (prefix->fp_addr.pad));
137 memcpy (&prefix->fp_addr.ip4, &addr->ip, sizeof (prefix->fp_addr.ip4));
141 prefix->fp_len = 128;
142 prefix->fp_proto = FIB_PROTOCOL_IP6;
143 memcpy (&prefix->fp_addr.ip6, &addr->ip, sizeof (prefix->fp_addr.ip6));
148 * convert from a LISP to a FIB prefix
151 ip_prefix_to_fib_prefix (const ip_prefix_t * ip_prefix,
152 fib_prefix_t * fib_prefix)
154 ip_address_to_fib_prefix (&ip_prefix->addr, fib_prefix);
155 fib_prefix->fp_len = ip_prefix->len;
159 * Find the sw_if_index of the interface that would be used to egress towards
163 ip_fib_get_egress_iface_for_dst (lisp_cp_main_t * lcm, ip_address_t * dst)
165 fib_node_index_t fei;
168 ip_address_to_fib_prefix (dst, &prefix);
170 fei = fib_table_lookup (0, &prefix);
172 return (fib_entry_get_resolving_interface (fei));
176 * Find first IP of the interface that would be used to egress towards dst.
177 * Returns 1 if the address is found 0 otherwise.
180 ip_fib_get_first_egress_ip_for_dst (lisp_cp_main_t * lcm, ip_address_t * dst,
181 ip_address_t * result)
184 ip_lookup_main_t *lm;
188 ASSERT (result != 0);
190 ipver = ip_addr_version (dst);
192 lm = (ipver == IP4) ? &lcm->im4->lookup_main : &lcm->im6->lookup_main;
193 si = ip_fib_get_egress_iface_for_dst (lcm, dst);
198 /* find the first ip address */
199 addr = ip_interface_get_first_address (lm, si, ipver);
203 ip_address_set (result, addr, ipver);
208 dp_add_del_iface (lisp_cp_main_t * lcm, u32 vni, u8 is_l2, u8 is_add,
209 u8 with_default_route)
215 dp_table = hash_get (lcm->table_id_by_vni, vni);
219 clib_warning ("vni %d not associated to a vrf!", vni);
220 return VNET_API_ERROR_INVALID_VALUE;
225 dp_table = hash_get (lcm->bd_id_by_vni, vni);
228 clib_warning ("vni %d not associated to a bridge domain!", vni);
229 return VNET_API_ERROR_INVALID_VALUE;
233 /* enable/disable data-plane interface */
237 lisp_gpe_tenant_l2_iface_add_or_lock (vni, dp_table[0]);
239 lisp_gpe_tenant_l3_iface_add_or_lock (vni, dp_table[0],
245 lisp_gpe_tenant_l2_iface_unlock (vni);
247 lisp_gpe_tenant_l3_iface_unlock (vni);
254 dp_del_fwd_entry (lisp_cp_main_t * lcm, u32 dst_map_index)
256 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
259 clib_memset (a, 0, sizeof (*a));
261 feip = hash_get (lcm->fwd_entry_by_mapping_index, dst_map_index);
265 fe = pool_elt_at_index (lcm->fwd_entry_pool, feip[0]);
267 /* delete dp fwd entry */
270 a->locator_pairs = fe->locator_pairs;
271 a->vni = gid_address_vni (&fe->reid);
272 gid_address_copy (&a->rmt_eid, &fe->reid);
274 gid_address_copy (&a->lcl_eid, &fe->leid);
276 vnet_lisp_gpe_del_fwd_counters (a, feip[0]);
277 vnet_lisp_gpe_add_del_fwd_entry (a, &sw_if_index);
279 /* delete entry in fwd table */
280 hash_unset (lcm->fwd_entry_by_mapping_index, dst_map_index);
281 vec_free (fe->locator_pairs);
282 pool_put (lcm->fwd_entry_pool, fe);
286 * Finds first remote locator with best (lowest) priority that has a local
287 * peer locator with an underlying route to it.
291 get_locator_pairs (lisp_cp_main_t * lcm, mapping_t * lcl_map,
292 mapping_t * rmt_map, locator_pair_t ** locator_pairs)
294 u32 i, limitp = 0, li, found = 0, esi;
295 locator_set_t *rmt_ls, *lcl_ls;
296 ip_address_t _lcl_addr, *lcl_addr = &_lcl_addr;
297 locator_t *lp, *rmt = 0;
302 pool_elt_at_index (lcm->locator_set_pool, rmt_map->locator_set_index);
304 pool_elt_at_index (lcm->locator_set_pool, lcl_map->locator_set_index);
306 if (!rmt_ls || vec_len (rmt_ls->locator_indices) == 0)
313 /* find unvisited remote locator with best priority */
314 for (i = 0; i < vec_len (rmt_ls->locator_indices); i++)
316 if (0 != hash_get (checked, i))
319 li = vec_elt (rmt_ls->locator_indices, i);
320 lp = pool_elt_at_index (lcm->locator_pool, li);
322 /* we don't support non-IP locators for now */
323 if (gid_address_type (&lp->address) != GID_ADDR_IP_PREFIX)
326 if ((found && lp->priority == limitp)
327 || (!found && lp->priority >= limitp))
331 /* don't search for locators with lower priority and don't
332 * check this locator again*/
333 limitp = lp->priority;
334 hash_set (checked, i, 1);
338 /* check if a local locator with a route to remote locator exists */
341 /* find egress sw_if_index for rmt locator */
343 ip_fib_get_egress_iface_for_dst (lcm,
344 &gid_address_ip (&rmt->address));
345 if ((u32) ~ 0 == esi)
348 for (i = 0; i < vec_len (lcl_ls->locator_indices); i++)
350 li = vec_elt (lcl_ls->locator_indices, i);
351 locator_t *sl = pool_elt_at_index (lcm->locator_pool, li);
353 /* found local locator with the needed sw_if_index */
354 if (sl->sw_if_index == esi)
356 /* and it has an address */
357 if (0 == ip_interface_get_first_ip_address (lcm,
359 gid_address_ip_version
364 clib_memset (&pair, 0, sizeof (pair));
365 ip_address_copy (&pair.rmt_loc,
366 &gid_address_ip (&rmt->address));
367 ip_address_copy (&pair.lcl_loc, lcl_addr);
368 pair.weight = rmt->weight;
369 pair.priority = rmt->priority;
370 vec_add1 (locator_pairs[0], pair);
384 gid_address_sd_to_flat (gid_address_t * dst, gid_address_t * src,
387 ASSERT (GID_ADDR_SRC_DST == gid_address_type (src));
391 switch (fid_addr_type (fid))
393 case FID_ADDR_IP_PREF:
394 gid_address_type (dst) = GID_ADDR_IP_PREFIX;
395 gid_address_ippref (dst) = fid_addr_ippref (fid);
398 gid_address_type (dst) = GID_ADDR_MAC;
399 mac_copy (gid_address_mac (dst), fid_addr_mac (fid));
402 clib_warning ("Unsupported fid type %d!", fid_addr_type (fid));
408 vnet_lisp_map_register_state_get (void)
410 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
411 return lcm->map_registering;
415 vnet_lisp_rloc_probe_state_get (void)
417 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
418 return lcm->rloc_probing;
422 dp_add_fwd_entry (lisp_cp_main_t * lcm, u32 src_map_index, u32 dst_map_index)
424 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
425 gid_address_t *rmt_eid, *lcl_eid;
426 mapping_t *lcl_map, *rmt_map;
427 u32 sw_if_index, **rmts, rmts_idx;
428 uword *feip = 0, *dpid, *rmts_stored_idxp = 0;
430 u8 type, is_src_dst = 0;
433 clib_memset (a, 0, sizeof (*a));
435 /* remove entry if it already exists */
436 feip = hash_get (lcm->fwd_entry_by_mapping_index, dst_map_index);
438 dp_del_fwd_entry (lcm, dst_map_index);
441 * Determine local mapping and eid
443 if (lcm->flags & LISP_FLAG_PITR_MODE)
445 if (lcm->pitr_map_index != ~0)
446 lcl_map = pool_elt_at_index (lcm->mapping_pool, lcm->pitr_map_index);
449 clib_warning ("no PITR mapping configured!");
454 lcl_map = pool_elt_at_index (lcm->mapping_pool, src_map_index);
455 lcl_eid = &lcl_map->eid;
458 * Determine remote mapping and eid
460 rmt_map = pool_elt_at_index (lcm->mapping_pool, dst_map_index);
461 rmt_eid = &rmt_map->eid;
464 * Build and insert data plane forwarding entry
468 if (MR_MODE_SRC_DST == lcm->map_request_mode)
470 if (GID_ADDR_SRC_DST == gid_address_type (rmt_eid))
472 gid_address_sd_to_flat (&a->rmt_eid, rmt_eid,
473 &gid_address_sd_dst (rmt_eid));
474 gid_address_sd_to_flat (&a->lcl_eid, rmt_eid,
475 &gid_address_sd_src (rmt_eid));
479 gid_address_copy (&a->rmt_eid, rmt_eid);
480 gid_address_copy (&a->lcl_eid, lcl_eid);
485 gid_address_copy (&a->rmt_eid, rmt_eid);
487 a->vni = gid_address_vni (&a->rmt_eid);
488 a->is_src_dst = is_src_dst;
490 /* get vrf or bd_index associated to vni */
491 type = gid_address_type (&a->rmt_eid);
492 if (GID_ADDR_IP_PREFIX == type)
494 dpid = hash_get (lcm->table_id_by_vni, a->vni);
497 clib_warning ("vni %d not associated to a vrf!", a->vni);
500 a->table_id = dpid[0];
502 else if (GID_ADDR_MAC == type)
504 dpid = hash_get (lcm->bd_id_by_vni, a->vni);
507 clib_warning ("vni %d not associated to a bridge domain !", a->vni);
513 /* find best locator pair that 1) verifies LISP policy 2) are connected */
514 rv = get_locator_pairs (lcm, lcl_map, rmt_map, &a->locator_pairs);
516 /* Either rmt mapping is negative or we can't find underlay path.
517 * Try again with petr if configured */
518 if (rv == 0 && (lcm->flags & LISP_FLAG_USE_PETR))
520 rmt_map = lisp_get_petr_mapping (lcm);
521 rv = get_locator_pairs (lcm, lcl_map, rmt_map, &a->locator_pairs);
528 a->action = rmt_map->action;
531 rv = vnet_lisp_gpe_add_del_fwd_entry (a, &sw_if_index);
534 if (a->locator_pairs)
535 vec_free (a->locator_pairs);
539 /* add tunnel to fwd entry table */
540 pool_get (lcm->fwd_entry_pool, fe);
541 vnet_lisp_gpe_add_fwd_counters (a, fe - lcm->fwd_entry_pool);
543 fe->locator_pairs = a->locator_pairs;
544 gid_address_copy (&fe->reid, &a->rmt_eid);
547 gid_address_copy (&fe->leid, &a->lcl_eid);
549 gid_address_copy (&fe->leid, lcl_eid);
551 fe->is_src_dst = is_src_dst;
552 hash_set (lcm->fwd_entry_by_mapping_index, dst_map_index,
553 fe - lcm->fwd_entry_pool);
555 /* Add rmt mapping to the vector of adjacent mappings to lcl mapping */
557 hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, src_map_index);
558 if (!rmts_stored_idxp)
560 pool_get (lcm->lcl_to_rmt_adjacencies, rmts);
561 clib_memset (rmts, 0, sizeof (*rmts));
562 rmts_idx = rmts - lcm->lcl_to_rmt_adjacencies;
563 hash_set (lcm->lcl_to_rmt_adjs_by_lcl_idx, src_map_index, rmts_idx);
567 rmts_idx = (u32) (*rmts_stored_idxp);
568 rmts = pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idx);
570 vec_add1 (rmts[0], dst_map_index);
577 } fwd_entry_mt_arg_t;
580 dp_add_fwd_entry_thread_fn (void *arg)
582 fwd_entry_mt_arg_t *a = arg;
583 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
584 dp_add_fwd_entry (lcm, a->si, a->di);
589 dp_add_fwd_entry_from_mt (u32 si, u32 di)
591 fwd_entry_mt_arg_t a;
593 clib_memset (&a, 0, sizeof (a));
597 vl_api_rpc_call_main_thread (dp_add_fwd_entry_thread_fn,
598 (u8 *) & a, sizeof (a));
603 * Returns vector of adjacencies.
605 * The caller must free the vector returned by this function.
607 * @param vni virtual network identifier
608 * @return vector of adjacencies
611 vnet_lisp_adjacencies_get_by_vni (u32 vni)
613 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
615 lisp_adjacency_t *adjs = 0, adj;
618 pool_foreach(fwd, lcm->fwd_entry_pool,
620 if (gid_address_vni (&fwd->reid) != vni)
623 gid_address_copy (&adj.reid, &fwd->reid);
624 gid_address_copy (&adj.leid, &fwd->leid);
625 vec_add1 (adjs, adj);
633 get_map_server (ip_address_t * a)
635 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
638 vec_foreach (m, lcm->map_servers)
640 if (!ip_address_cmp (&m->address, a))
649 get_map_resolver (ip_address_t * a)
651 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
654 vec_foreach (m, lcm->map_resolvers)
656 if (!ip_address_cmp (&m->address, a))
665 vnet_lisp_add_del_map_server (ip_address_t * addr, u8 is_add)
668 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
669 lisp_msmr_t _ms, *ms = &_ms;
671 if (vnet_lisp_enable_disable_status () == 0)
673 clib_warning ("LISP is disabled!");
674 return VNET_API_ERROR_LISP_DISABLED;
679 if (get_map_server (addr))
681 clib_warning ("map-server %U already exists!", format_ip_address,
686 clib_memset (ms, 0, sizeof (*ms));
687 ip_address_copy (&ms->address, addr);
688 vec_add1 (lcm->map_servers, ms[0]);
690 if (vec_len (lcm->map_servers) == 1)
691 lcm->do_map_server_election = 1;
695 for (i = 0; i < vec_len (lcm->map_servers); i++)
697 ms = vec_elt_at_index (lcm->map_servers, i);
698 if (!ip_address_cmp (&ms->address, addr))
700 if (!ip_address_cmp (&ms->address, &lcm->active_map_server))
701 lcm->do_map_server_election = 1;
703 vec_del1 (lcm->map_servers, i);
713 * Add/remove mapping to/from map-cache. Overwriting not allowed.
716 vnet_lisp_map_cache_add_del (vnet_lisp_add_del_mapping_args_t * a,
717 u32 * map_index_result)
719 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
720 u32 mi, *map_indexp, map_index, i;
721 u32 **rmts = 0, *remote_idxp, rmts_itr, remote_idx;
723 mapping_t *m, *old_map;
726 if (gid_address_type (&a->eid) == GID_ADDR_NSH)
728 if (gid_address_vni (&a->eid) != 0)
730 clib_warning ("Supported only default VNI for NSH!");
731 return VNET_API_ERROR_INVALID_ARGUMENT;
733 if (gid_address_nsh_spi (&a->eid) > MAX_VALUE_U24)
735 clib_warning ("SPI is greater than 24bit!");
736 return VNET_API_ERROR_INVALID_ARGUMENT;
740 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &a->eid);
741 old_map = mi != ~0 ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
744 /* TODO check if overwriting and take appropriate actions */
745 if (mi != GID_LOOKUP_MISS && !gid_address_cmp (&old_map->eid, &a->eid))
747 clib_warning ("eid %U found in the eid-table", format_gid_address,
749 return VNET_API_ERROR_VALUE_EXIST;
752 pool_get (lcm->mapping_pool, m);
753 gid_address_copy (&m->eid, &a->eid);
754 m->locator_set_index = a->locator_set_index;
756 m->action = a->action;
758 m->is_static = a->is_static;
759 m->key = vec_dup (a->key);
760 m->key_id = a->key_id;
761 m->authoritative = a->authoritative;
763 map_index = m - lcm->mapping_pool;
764 gid_dictionary_add_del (&lcm->mapping_index_by_gid, &a->eid, map_index,
767 if (pool_is_free_index (lcm->locator_set_pool, a->locator_set_index))
769 clib_warning ("Locator set with index %d doesn't exist",
770 a->locator_set_index);
771 return VNET_API_ERROR_INVALID_VALUE;
774 /* add eid to list of eids supported by locator-set */
775 vec_validate (lcm->locator_set_to_eids, a->locator_set_index);
776 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids,
777 a->locator_set_index);
778 vec_add1 (eid_indexes[0], map_index);
783 vec_add1 (lcm->local_mappings_indexes, map_index);
785 map_index_result[0] = map_index;
789 if (mi == GID_LOOKUP_MISS)
791 clib_warning ("eid %U not found in the eid-table",
792 format_gid_address, &a->eid);
793 return VNET_API_ERROR_INVALID_VALUE;
796 /* clear locator-set to eids binding */
797 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids,
798 a->locator_set_index);
799 for (i = 0; i < vec_len (eid_indexes[0]); i++)
801 map_indexp = vec_elt_at_index (eid_indexes[0], i);
802 if (map_indexp[0] == mi)
805 vec_del1 (eid_indexes[0], i);
807 /* remove local mark if needed */
808 m = pool_elt_at_index (lcm->mapping_pool, mi);
811 /* Remove adjacencies associated with the local mapping */
812 rmts_idxp = hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, mi);
816 pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idxp[0]);
817 vec_foreach (remote_idxp, rmts[0])
819 dp_del_fwd_entry (lcm, remote_idxp[0]);
822 pool_put (lcm->lcl_to_rmt_adjacencies, rmts);
823 hash_unset (lcm->lcl_to_rmt_adjs_by_lcl_idx, mi);
827 for (k = 0; k < vec_len (lcm->local_mappings_indexes); k++)
829 lm_indexp = vec_elt_at_index (lcm->local_mappings_indexes, k);
830 if (lm_indexp[0] == mi)
833 vec_del1 (lcm->local_mappings_indexes, k);
837 /* Remove remote (if present) from the vectors of lcl-to-rmts
838 * TODO: Address this in a more efficient way.
841 pool_foreach (rmts, lcm->lcl_to_rmt_adjacencies,
843 vec_foreach_index (rmts_itr, rmts[0])
845 remote_idx = vec_elt (rmts[0], rmts_itr);
846 if (mi == remote_idx)
848 vec_del1 (rmts[0], rmts_itr);
856 /* remove mapping from dictionary */
857 gid_dictionary_add_del (&lcm->mapping_index_by_gid, &a->eid, 0, 0);
858 gid_address_free (&m->eid);
859 pool_put_index (lcm->mapping_pool, mi);
866 * Add/update/delete mapping to/in/from map-cache.
869 vnet_lisp_add_del_local_mapping (vnet_lisp_add_del_mapping_args_t * a,
870 u32 * map_index_result)
876 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
878 if (vnet_lisp_enable_disable_status () == 0)
880 clib_warning ("LISP is disabled!");
881 return VNET_API_ERROR_LISP_DISABLED;
884 vni = gid_address_vni (&a->eid);
885 type = gid_address_type (&a->eid);
886 if (GID_ADDR_IP_PREFIX == type)
887 dp_table = hash_get (lcm->table_id_by_vni, vni);
888 else if (GID_ADDR_MAC == type)
889 dp_table = hash_get (lcm->bd_id_by_vni, vni);
891 if (!dp_table && GID_ADDR_NSH != type)
893 clib_warning ("vni %d not associated to a %s!", vni,
894 GID_ADDR_IP_PREFIX == type ? "vrf" : "bd");
895 return VNET_API_ERROR_INVALID_VALUE;
898 /* store/remove mapping from map-cache */
899 return vnet_lisp_map_cache_add_del (a, map_index_result);
903 add_l2_arp_bd (BVT (clib_bihash_kv) * kvp, void *arg)
906 u32 version = (u32) kvp->key[0];
910 u32 bd = (u32) (kvp->key[0] >> 32);
911 hash_set (ht[0], bd, 0);
915 vnet_lisp_l2_arp_bds_get (void)
917 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
920 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
921 add_l2_arp_bd, &bds);
926 add_ndp_bd (BVT (clib_bihash_kv) * kvp, void *arg)
929 u32 version = (u32) kvp->key[0];
933 u32 bd = (u32) (kvp->key[0] >> 32);
934 hash_set (ht[0], bd, 0);
938 vnet_lisp_ndp_bds_get (void)
940 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
943 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
952 } lisp_add_l2_arp_ndp_args_t;
955 add_l2_arp_entry (BVT (clib_bihash_kv) * kvp, void *arg)
957 lisp_add_l2_arp_ndp_args_t *a = arg;
958 lisp_api_l2_arp_entry_t **vector = a->vector, e;
960 u32 version = (u32) kvp->key[0];
964 u32 bd = (u32) (kvp->key[0] >> 32);
968 mac_copy (e.mac, (void *) &kvp->value);
969 e.ip4 = (u32) kvp->key[1];
970 vec_add1 (vector[0], e);
974 lisp_api_l2_arp_entry_t *
975 vnet_lisp_l2_arp_entries_get_by_bd (u32 bd)
977 lisp_api_l2_arp_entry_t *entries = 0;
978 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
979 lisp_add_l2_arp_ndp_args_t a;
984 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
985 add_l2_arp_entry, &a);
990 add_ndp_entry (BVT (clib_bihash_kv) * kvp, void *arg)
992 lisp_add_l2_arp_ndp_args_t *a = arg;
993 lisp_api_ndp_entry_t **vector = a->vector, e;
995 u32 version = (u32) kvp->key[0];
999 u32 bd = (u32) (kvp->key[0] >> 32);
1003 mac_copy (e.mac, (void *) &kvp->value);
1004 clib_memcpy (e.ip6, &kvp->key[1], 16);
1005 vec_add1 (vector[0], e);
1009 lisp_api_ndp_entry_t *
1010 vnet_lisp_ndp_entries_get_by_bd (u32 bd)
1012 lisp_api_ndp_entry_t *entries = 0;
1013 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1014 lisp_add_l2_arp_ndp_args_t a;
1016 a.vector = &entries;
1019 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
1025 vnet_lisp_add_del_l2_arp_ndp_entry (gid_address_t * key, u8 * mac, u8 is_add)
1027 if (vnet_lisp_enable_disable_status () == 0)
1029 clib_warning ("LISP is disabled!");
1030 return VNET_API_ERROR_LISP_DISABLED;
1033 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1036 u64 res = gid_dictionary_lookup (&lcm->mapping_index_by_gid, key);
1039 if (res != GID_LOOKUP_MISS_L2)
1041 clib_warning ("Entry %U exists in DB!", format_gid_address, key);
1042 return VNET_API_ERROR_ENTRY_ALREADY_EXISTS;
1044 u64 val = mac_to_u64 (mac);
1045 gid_dictionary_add_del (&lcm->mapping_index_by_gid, key, val,
1050 if (res == GID_LOOKUP_MISS_L2)
1052 clib_warning ("ONE entry %U not found - cannot delete!",
1053 format_gid_address, key);
1056 gid_dictionary_add_del (&lcm->mapping_index_by_gid, key, 0,
1064 vnet_lisp_eid_table_map (u32 vni, u32 dp_id, u8 is_l2, u8 is_add)
1066 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1067 uword *dp_idp, *vnip, **dp_table_by_vni, **vni_by_dp_table;
1069 if (vnet_lisp_enable_disable_status () == 0)
1071 clib_warning ("LISP is disabled!");
1072 return VNET_API_ERROR_LISP_DISABLED;
1075 dp_table_by_vni = is_l2 ? &lcm->bd_id_by_vni : &lcm->table_id_by_vni;
1076 vni_by_dp_table = is_l2 ? &lcm->vni_by_bd_id : &lcm->vni_by_table_id;
1078 if (!is_l2 && (vni == 0 || dp_id == 0))
1080 clib_warning ("can't add/del default vni-vrf mapping!");
1084 dp_idp = hash_get (dp_table_by_vni[0], vni);
1085 vnip = hash_get (vni_by_dp_table[0], dp_id);
1091 clib_warning ("vni %d or vrf %d already used in vrf/vni "
1092 "mapping!", vni, dp_id);
1095 hash_set (dp_table_by_vni[0], vni, dp_id);
1096 hash_set (vni_by_dp_table[0], dp_id, vni);
1098 /* create dp iface */
1099 dp_add_del_iface (lcm, vni, is_l2, 1 /* is_add */ ,
1100 1 /* with_default_route */ );
1104 if (!dp_idp || !vnip)
1106 clib_warning ("vni %d or vrf %d not used in any vrf/vni! "
1107 "mapping!", vni, dp_id);
1110 /* remove dp iface */
1111 dp_add_del_iface (lcm, vni, is_l2, 0 /* is_add */ , 0 /* unused */ );
1113 hash_unset (dp_table_by_vni[0], vni);
1114 hash_unset (vni_by_dp_table[0], dp_id);
1120 /* return 0 if the two locator sets are identical 1 otherwise */
1122 compare_locators (lisp_cp_main_t * lcm, u32 * old_ls_indexes,
1123 locator_t * new_locators)
1126 locator_t *old_loc, *new_loc;
1128 if (vec_len (old_ls_indexes) != vec_len (new_locators))
1131 for (i = 0; i < vec_len (new_locators); i++)
1133 old_li = vec_elt (old_ls_indexes, i);
1134 old_loc = pool_elt_at_index (lcm->locator_pool, old_li);
1136 new_loc = vec_elt_at_index (new_locators, i);
1138 if (locator_cmp (old_loc, new_loc))
1148 gid_address_t *eids_to_be_deleted;
1149 } remove_mapping_args_t;
1152 * Callback invoked when a sub-prefix is found
1155 remove_mapping_if_needed (u32 mi, void *arg)
1158 remove_mapping_args_t *a = arg;
1159 lisp_cp_main_t *lcm = a->lcm;
1163 m = pool_elt_at_index (lcm->mapping_pool, mi);
1167 ls = pool_elt_at_index (lcm->locator_set_pool, m->locator_set_index);
1171 if (0 != vec_len (ls->locator_indices))
1176 if (0 == vec_len (ls->locator_indices))
1181 vec_add1 (a->eids_to_be_deleted, m->eid);
1185 * This function searches map cache and looks for IP prefixes that are subset
1186 * of the provided one. If such prefix is found depending on 'is_negative'
1189 * 1) if is_negative is true and found prefix points to positive mapping,
1190 * then the mapping is removed
1191 * 2) if is_negative is false and found prefix points to negative mapping,
1192 * then the mapping is removed
1195 remove_overlapping_sub_prefixes (lisp_cp_main_t * lcm, gid_address_t * eid,
1199 remove_mapping_args_t a;
1201 clib_memset (&a, 0, sizeof (a));
1203 /* do this only in src/dst mode ... */
1204 if (MR_MODE_SRC_DST != lcm->map_request_mode)
1207 /* ... and only for IP prefix */
1208 if (GID_ADDR_SRC_DST != gid_address_type (eid)
1209 || (FID_ADDR_IP_PREF != gid_address_sd_dst_type (eid)))
1212 a.is_negative = is_negative;
1215 gid_dict_foreach_subprefix (&lcm->mapping_index_by_gid, eid,
1216 remove_mapping_if_needed, &a);
1218 vec_foreach (e, a.eids_to_be_deleted)
1220 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
1222 clib_memset (adj_args, 0, sizeof (adj_args[0]));
1223 gid_address_copy (&adj_args->reid, e);
1224 adj_args->is_add = 0;
1225 if (vnet_lisp_add_del_adjacency (adj_args))
1226 clib_warning ("failed to del adjacency!");
1228 vnet_lisp_del_mapping (e, NULL);
1231 vec_free (a.eids_to_be_deleted);
1235 mapping_delete_timer (lisp_cp_main_t * lcm, u32 mi)
1237 timing_wheel_delete (&lcm->wheel, mi);
1241 is_local_ip (lisp_cp_main_t * lcm, ip_address_t * addr)
1243 fib_node_index_t fei;
1244 fib_prefix_t prefix;
1245 fib_entry_flag_t flags;
1247 ip_address_to_fib_prefix (addr, &prefix);
1249 fei = fib_table_lookup (0, &prefix);
1250 flags = fib_entry_get_flags (fei);
1251 return (FIB_ENTRY_FLAG_LOCAL & flags);
1255 * Adds/updates mapping. Does not program forwarding.
1257 * @param a parameters of the new mapping
1258 * @param rlocs vector of remote locators
1259 * @param res_map_index index of the newly created mapping
1260 * @param locators_changed indicator if locators were updated in the mapping
1261 * @return return code
1264 vnet_lisp_add_mapping (vnet_lisp_add_del_mapping_args_t * a,
1266 u32 * res_map_index, u8 * is_updated)
1268 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1269 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1270 u32 mi, ls_index = 0, dst_map_index;
1274 if (vnet_lisp_enable_disable_status () == 0)
1276 clib_warning ("LISP is disabled!");
1277 return VNET_API_ERROR_LISP_DISABLED;
1281 res_map_index[0] = ~0;
1285 clib_memset (ls_args, 0, sizeof (ls_args[0]));
1287 ls_args->locators = rlocs;
1288 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &a->eid);
1289 old_map = ((u32) ~ 0 != mi) ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
1291 /* check if none of the locators match locally configured address */
1292 vec_foreach (loc, rlocs)
1294 ip_prefix_t *p = &gid_address_ippref (&loc->address);
1295 if (is_local_ip (lcm, &ip_prefix_addr (p)))
1297 clib_warning ("RLOC %U matches a local address!",
1298 format_gid_address, &loc->address);
1299 return VNET_API_ERROR_LISP_RLOC_LOCAL;
1303 /* overwrite: if mapping already exists, decide if locators should be
1304 * updated and be done */
1305 if (old_map && gid_address_cmp (&old_map->eid, &a->eid) == 0)
1307 if (!a->is_static && (old_map->is_static || old_map->local))
1309 /* do not overwrite local or static remote mappings */
1310 clib_warning ("mapping %U rejected due to collision with local "
1311 "or static remote mapping!", format_gid_address,
1316 locator_set_t *old_ls;
1318 /* update mapping attributes */
1319 old_map->action = a->action;
1320 if (old_map->action != a->action && NULL != is_updated)
1323 old_map->authoritative = a->authoritative;
1324 old_map->ttl = a->ttl;
1326 old_ls = pool_elt_at_index (lcm->locator_set_pool,
1327 old_map->locator_set_index);
1328 if (compare_locators (lcm, old_ls->locator_indices, ls_args->locators))
1330 /* set locator-set index to overwrite */
1331 ls_args->is_add = 1;
1332 ls_args->index = old_map->locator_set_index;
1333 vnet_lisp_add_del_locator_set (ls_args, 0);
1338 res_map_index[0] = mi;
1345 remove_overlapping_sub_prefixes (lcm, &a->eid, 0 == ls_args->locators);
1347 ls_args->is_add = 1;
1348 ls_args->index = ~0;
1350 vnet_lisp_add_del_locator_set (ls_args, &ls_index);
1354 a->locator_set_index = ls_index;
1355 vnet_lisp_map_cache_add_del (a, &dst_map_index);
1358 res_map_index[0] = dst_map_index;
1366 * Removes a mapping. Does not program forwarding.
1368 * @param eid end-host identifier
1369 * @param res_map_index index of the removed mapping
1370 * @return return code
1373 vnet_lisp_del_mapping (gid_address_t * eid, u32 * res_map_index)
1375 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1376 vnet_lisp_add_del_mapping_args_t _m_args, *m_args = &_m_args;
1377 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1381 clib_memset (ls_args, 0, sizeof (ls_args[0]));
1382 clib_memset (m_args, 0, sizeof (m_args[0]));
1384 res_map_index[0] = ~0;
1386 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, eid);
1387 old_map = ((u32) ~ 0 != mi) ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
1389 if (old_map == 0 || gid_address_cmp (&old_map->eid, eid) != 0)
1391 clib_warning ("cannot delete mapping for eid %U",
1392 format_gid_address, eid);
1397 gid_address_copy (&m_args->eid, eid);
1398 m_args->locator_set_index = old_map->locator_set_index;
1400 /* delete mapping associated from map-cache */
1401 vnet_lisp_map_cache_add_del (m_args, 0);
1403 ls_args->is_add = 0;
1404 ls_args->index = old_map->locator_set_index;
1406 /* delete locator set */
1407 vnet_lisp_add_del_locator_set (ls_args, 0);
1409 /* delete timer associated to the mapping if any */
1410 if (old_map->timer_set)
1411 mapping_delete_timer (lcm, mi);
1413 /* return old mapping index */
1415 res_map_index[0] = mi;
1422 vnet_lisp_clear_all_remote_adjacencies (void)
1425 u32 mi, *map_indices = 0, *map_indexp;
1426 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1427 vnet_lisp_add_del_mapping_args_t _dm_args, *dm_args = &_dm_args;
1428 vnet_lisp_add_del_locator_set_args_t _ls, *ls = &_ls;
1431 pool_foreach_index (mi, lcm->mapping_pool,
1433 vec_add1 (map_indices, mi);
1437 vec_foreach (map_indexp, map_indices)
1439 mapping_t *map = pool_elt_at_index (lcm->mapping_pool, map_indexp[0]);
1442 dp_del_fwd_entry (lcm, map_indexp[0]);
1444 dm_args->is_add = 0;
1445 gid_address_copy (&dm_args->eid, &map->eid);
1446 dm_args->locator_set_index = map->locator_set_index;
1448 /* delete mapping associated to fwd entry */
1449 vnet_lisp_map_cache_add_del (dm_args, 0);
1453 ls->index = map->locator_set_index;
1454 /* delete locator set */
1455 rv = vnet_lisp_add_del_locator_set (ls, 0);
1463 vec_free (map_indices);
1468 * Adds adjacency or removes forwarding entry associated to remote mapping.
1469 * Note that adjacencies are not stored, they only result in forwarding entries
1473 vnet_lisp_add_del_adjacency (vnet_lisp_add_del_adjacency_args_t * a)
1475 lisp_cp_main_t *lcm = &lisp_control_main;
1476 u32 local_mi, remote_mi = ~0;
1478 if (vnet_lisp_enable_disable_status () == 0)
1480 clib_warning ("LISP is disabled!");
1481 return VNET_API_ERROR_LISP_DISABLED;
1484 remote_mi = gid_dictionary_sd_lookup (&lcm->mapping_index_by_gid,
1485 &a->reid, &a->leid);
1486 if (GID_LOOKUP_MISS == remote_mi)
1488 clib_warning ("Remote eid %U not found. Cannot add adjacency!",
1489 format_gid_address, &a->reid);
1496 /* check if source eid has an associated mapping. If pitr mode is on,
1497 * just use the pitr's mapping */
1498 if (lcm->flags & LISP_FLAG_PITR_MODE)
1500 if (lcm->pitr_map_index != ~0)
1502 local_mi = lcm->pitr_map_index;
1506 /* PITR mode is on, but no mapping is configured */
1512 if (gid_address_type (&a->reid) == GID_ADDR_NSH)
1514 if (lcm->nsh_map_index == ~0)
1515 local_mi = GID_LOOKUP_MISS;
1517 local_mi = lcm->nsh_map_index;
1521 local_mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid,
1526 if (GID_LOOKUP_MISS == local_mi)
1528 clib_warning ("Local eid %U not found. Cannot add adjacency!",
1529 format_gid_address, &a->leid);
1534 /* update forwarding */
1535 dp_add_fwd_entry (lcm, local_mi, remote_mi);
1538 dp_del_fwd_entry (lcm, remote_mi);
1544 vnet_lisp_set_map_request_mode (u8 mode)
1546 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1548 if (vnet_lisp_enable_disable_status () == 0)
1550 clib_warning ("LISP is disabled!");
1551 return VNET_API_ERROR_LISP_DISABLED;
1554 if (mode >= _MR_MODE_MAX)
1556 clib_warning ("Invalid LISP map request mode %d!", mode);
1557 return VNET_API_ERROR_INVALID_ARGUMENT;
1560 lcm->map_request_mode = mode;
1565 vnet_lisp_nsh_set_locator_set (u8 * locator_set_name, u8 is_add)
1567 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1568 lisp_gpe_main_t *lgm = vnet_lisp_gpe_get_main ();
1569 u32 locator_set_index = ~0;
1573 if (vnet_lisp_enable_disable_status () == 0)
1575 clib_warning ("LISP is disabled!");
1576 return VNET_API_ERROR_LISP_DISABLED;
1581 if (lcm->nsh_map_index == (u32) ~ 0)
1583 p = hash_get_mem (lcm->locator_set_index_by_name, locator_set_name);
1586 clib_warning ("locator-set %v doesn't exist", locator_set_name);
1589 locator_set_index = p[0];
1591 pool_get (lcm->mapping_pool, m);
1592 clib_memset (m, 0, sizeof *m);
1593 m->locator_set_index = locator_set_index;
1596 lcm->nsh_map_index = m - lcm->mapping_pool;
1598 if (~0 == vnet_lisp_gpe_add_nsh_iface (lgm))
1604 if (lcm->nsh_map_index != (u32) ~ 0)
1606 /* remove NSH mapping */
1607 pool_put_index (lcm->mapping_pool, lcm->nsh_map_index);
1608 lcm->nsh_map_index = ~0;
1609 vnet_lisp_gpe_del_nsh_iface (lgm);
1616 vnet_lisp_pitr_set_locator_set (u8 * locator_set_name, u8 is_add)
1618 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1619 u32 locator_set_index = ~0;
1623 if (vnet_lisp_enable_disable_status () == 0)
1625 clib_warning ("LISP is disabled!");
1626 return VNET_API_ERROR_LISP_DISABLED;
1629 p = hash_get_mem (lcm->locator_set_index_by_name, locator_set_name);
1632 clib_warning ("locator-set %v doesn't exist", locator_set_name);
1635 locator_set_index = p[0];
1639 pool_get (lcm->mapping_pool, m);
1640 m->locator_set_index = locator_set_index;
1643 lcm->pitr_map_index = m - lcm->mapping_pool;
1647 /* remove pitr mapping */
1648 pool_put_index (lcm->mapping_pool, lcm->pitr_map_index);
1649 lcm->pitr_map_index = ~0;
1655 vnet_lisp_map_register_fallback_threshold_set (u32 value)
1657 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1660 return VNET_API_ERROR_INVALID_ARGUMENT;
1663 lcm->max_expired_map_registers = value;
1668 vnet_lisp_map_register_fallback_threshold_get (void)
1670 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1671 return lcm->max_expired_map_registers;
1675 * Configure Proxy-ETR
1677 * @param ip PETR's IP address
1678 * @param is_add Flag that indicates if this is an addition or removal
1680 * return 0 on success
1683 vnet_lisp_use_petr (ip_address_t * ip, u8 is_add)
1685 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1688 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1691 if (vnet_lisp_enable_disable_status () == 0)
1693 clib_warning ("LISP is disabled!");
1694 return VNET_API_ERROR_LISP_DISABLED;
1697 clib_memset (ls_args, 0, sizeof (*ls_args));
1701 /* Create dummy petr locator-set */
1702 clib_memset (&loc, 0, sizeof (loc));
1703 gid_address_from_ip (&loc.address, ip);
1705 loc.state = loc.weight = 1;
1708 ls_args->is_add = 1;
1709 ls_args->index = ~0;
1710 vec_add1 (ls_args->locators, loc);
1711 vnet_lisp_add_del_locator_set (ls_args, &ls_index);
1713 /* Add petr mapping */
1714 pool_get (lcm->mapping_pool, m);
1715 m->locator_set_index = ls_index;
1716 lcm->petr_map_index = m - lcm->mapping_pool;
1718 /* Enable use-petr */
1719 lcm->flags |= LISP_FLAG_USE_PETR;
1723 m = pool_elt_at_index (lcm->mapping_pool, lcm->petr_map_index);
1725 /* Remove petr locator */
1726 ls_args->is_add = 0;
1727 ls_args->index = m->locator_set_index;
1728 vnet_lisp_add_del_locator_set (ls_args, 0);
1730 /* Remove petr mapping */
1731 pool_put_index (lcm->mapping_pool, lcm->petr_map_index);
1733 /* Disable use-petr */
1734 lcm->flags &= ~LISP_FLAG_USE_PETR;
1735 lcm->petr_map_index = ~0;
1740 /* cleans locator to locator-set data and removes locators not part of
1741 * any locator-set */
1743 clean_locator_to_locator_set (lisp_cp_main_t * lcm, u32 lsi)
1745 u32 i, j, *loc_indexp, *ls_indexp, **ls_indexes, *to_be_deleted = 0;
1746 locator_set_t *ls = pool_elt_at_index (lcm->locator_set_pool, lsi);
1747 for (i = 0; i < vec_len (ls->locator_indices); i++)
1749 loc_indexp = vec_elt_at_index (ls->locator_indices, i);
1750 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets,
1752 for (j = 0; j < vec_len (ls_indexes[0]); j++)
1754 ls_indexp = vec_elt_at_index (ls_indexes[0], j);
1755 if (ls_indexp[0] == lsi)
1759 /* delete index for removed locator-set */
1760 vec_del1 (ls_indexes[0], j);
1762 /* delete locator if it's part of no locator-set */
1763 if (vec_len (ls_indexes[0]) == 0)
1765 pool_put_index (lcm->locator_pool, loc_indexp[0]);
1766 vec_add1 (to_be_deleted, i);
1772 for (i = 0; i < vec_len (to_be_deleted); i++)
1774 loc_indexp = vec_elt_at_index (to_be_deleted, i);
1775 vec_del1 (ls->locator_indices, loc_indexp[0]);
1777 vec_free (to_be_deleted);
1781 static inline uword *
1782 get_locator_set_index (vnet_lisp_add_del_locator_set_args_t * a, uword * p)
1784 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1789 /* find locator-set */
1793 p = hash_get_mem (lcm->locator_set_index_by_name, a->name);
1804 is_locator_in_locator_set (lisp_cp_main_t * lcm, locator_set_t * ls,
1810 ASSERT (ls != NULL);
1811 ASSERT (loc != NULL);
1813 vec_foreach (locit, ls->locator_indices)
1815 itloc = pool_elt_at_index (lcm->locator_pool, locit[0]);
1816 if ((ls->local && itloc->sw_if_index == loc->sw_if_index) ||
1817 (!ls->local && !gid_address_cmp (&itloc->address, &loc->address)))
1819 clib_warning ("Duplicate locator");
1820 return VNET_API_ERROR_VALUE_EXIST;
1828 update_adjacencies_by_map_index (lisp_cp_main_t * lcm,
1829 u32 mapping_index, u8 remove_only)
1833 uword *fei = 0, *rmts_idxp = 0;
1834 u32 **rmts = 0, *remote_idxp = 0, *rmts_copy = 0;
1835 vnet_lisp_add_del_adjacency_args_t _a, *a = &_a;
1836 clib_memset (a, 0, sizeof (*a));
1838 map = pool_elt_at_index (lcm->mapping_pool, mapping_index);
1842 rmts_idxp = hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, mapping_index);
1846 pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idxp[0]);
1847 rmts_copy = vec_dup (rmts[0]);
1849 vec_foreach (remote_idxp, rmts_copy)
1851 fei = hash_get (lcm->fwd_entry_by_mapping_index, remote_idxp[0]);
1855 fwd = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
1857 gid_address_copy (&a->leid, &fwd->leid);
1858 gid_address_copy (&a->reid, &fwd->reid);
1859 vnet_lisp_add_del_adjacency (a);
1864 vnet_lisp_add_del_adjacency (a);
1867 vec_free (rmts_copy);
1872 fei = hash_get (lcm->fwd_entry_by_mapping_index, mapping_index);
1876 fwd = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
1878 gid_address_copy (&a->leid, &fwd->leid);
1879 gid_address_copy (&a->reid, &fwd->reid);
1880 vnet_lisp_add_del_adjacency (a);
1885 vnet_lisp_add_del_adjacency (a);
1891 update_fwd_entries_by_locator_set (lisp_cp_main_t * lcm,
1892 u32 ls_index, u8 remove_only)
1897 if (vec_len (lcm->locator_set_to_eids) <= ls_index)
1900 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids, ls_index);
1902 for (i = 0; i < vec_len (eid_indexes[0]); i++)
1904 map_indexp = vec_elt_at_index (eid_indexes[0], i);
1905 update_adjacencies_by_map_index (lcm, map_indexp[0], remove_only);
1910 remove_locator_from_locator_set (locator_set_t * ls, u32 * locit,
1911 u32 ls_index, u32 loc_id)
1913 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1914 u32 **ls_indexes = NULL;
1916 ASSERT (ls != NULL);
1917 ASSERT (locit != NULL);
1919 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets, locit[0]);
1920 pool_put_index (lcm->locator_pool, locit[0]);
1921 vec_del1 (ls->locator_indices, loc_id);
1922 vec_del1 (ls_indexes[0], ls_index);
1926 vnet_lisp_add_del_locator (vnet_lisp_add_del_locator_set_args_t * a,
1927 locator_set_t * ls, u32 * ls_result)
1929 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1930 locator_t *loc = NULL, *itloc = NULL;
1931 uword _p = (u32) ~ 0, *p = &_p;
1932 u32 loc_index = ~0, ls_index = ~0, *locit = NULL, **ls_indexes = NULL;
1938 if (vnet_lisp_enable_disable_status () == 0)
1940 clib_warning ("LISP is disabled!");
1941 return VNET_API_ERROR_LISP_DISABLED;
1944 p = get_locator_set_index (a, p);
1947 clib_warning ("locator-set %v doesn't exist", a->name);
1948 return VNET_API_ERROR_INVALID_ARGUMENT;
1953 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
1956 clib_warning ("locator-set %d to be overwritten doesn't exist!",
1958 return VNET_API_ERROR_INVALID_ARGUMENT;
1965 ls_result[0] = p[0];
1967 /* allocate locators */
1968 vec_foreach (itloc, a->locators)
1970 ret = is_locator_in_locator_set (lcm, ls, itloc);
1976 pool_get (lcm->locator_pool, loc);
1978 loc_index = loc - lcm->locator_pool;
1980 vec_add1 (ls->locator_indices, loc_index);
1982 vec_validate (lcm->locator_to_locator_sets, loc_index);
1983 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets,
1985 vec_add1 (ls_indexes[0], p[0]);
1993 vec_foreach (itloc, a->locators)
1997 vec_foreach (locit, ls->locator_indices)
1999 loc = pool_elt_at_index (lcm->locator_pool, locit[0]);
2001 if (loc->local && loc->sw_if_index == itloc->sw_if_index)
2004 remove_locator_from_locator_set (ls, locit, ls_index, loc_id);
2006 if (0 == loc->local &&
2007 !gid_address_cmp (&loc->address, &itloc->address))
2010 remove_locator_from_locator_set (ls, locit, ls_index, loc_id);
2015 /* update fwd entries using this locator in DP */
2016 update_fwd_entries_by_locator_set (lcm, ls_index,
2017 vec_len (ls->locator_indices)
2030 vnet_lisp_add_del_locator_set (vnet_lisp_add_del_locator_set_args_t * a,
2033 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2035 uword _p = (u32) ~ 0, *p = &_p;
2040 if (vnet_lisp_enable_disable_status () == 0)
2042 clib_warning ("LISP is disabled!");
2043 return VNET_API_ERROR_LISP_DISABLED;
2048 p = get_locator_set_index (a, p);
2051 if (p && p[0] != (u32) ~ 0)
2053 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
2056 clib_warning ("locator-set %d to be overwritten doesn't exist!",
2061 /* clean locator to locator-set vectors and remove locators if
2062 * they're not part of another locator-set */
2063 clean_locator_to_locator_set (lcm, p[0]);
2065 /* remove locator indices from locator set */
2066 vec_free (ls->locator_indices);
2071 ls_result[0] = p[0];
2073 /* new locator-set */
2076 pool_get (lcm->locator_set_pool, ls);
2077 clib_memset (ls, 0, sizeof (*ls));
2078 ls_index = ls - lcm->locator_set_pool;
2082 ls->name = vec_dup (a->name);
2084 if (!lcm->locator_set_index_by_name)
2085 lcm->locator_set_index_by_name = hash_create_vec (
2093 hash_set_mem (lcm->locator_set_index_by_name, ls->name,
2096 /* mark as local locator-set */
2097 vec_add1 (lcm->local_locator_set_indexes, ls_index);
2099 ls->local = a->local;
2101 ls_result[0] = ls_index;
2104 ret = vnet_lisp_add_del_locator (a, ls, NULL);
2112 p = get_locator_set_index (a, p);
2115 clib_warning ("locator-set %v doesn't exists", a->name);
2119 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
2122 clib_warning ("locator-set with index %d doesn't exists", p[0]);
2126 if (lcm->mreq_itr_rlocs == p[0])
2128 clib_warning ("Can't delete the locator-set used to constrain "
2129 "the itr-rlocs in map-requests!");
2133 if (vec_len (lcm->locator_set_to_eids) != 0)
2135 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids, p[0]);
2136 if (vec_len (eid_indexes[0]) != 0)
2139 ("Can't delete a locator that supports a mapping!");
2144 /* clean locator to locator-sets data */
2145 clean_locator_to_locator_set (lcm, p[0]);
2151 vec_foreach_index (it, lcm->local_locator_set_indexes)
2153 lsi = vec_elt (lcm->local_locator_set_indexes, it);
2156 vec_del1 (lcm->local_locator_set_indexes, it);
2160 hash_unset_mem (lcm->locator_set_index_by_name, ls->name);
2162 vec_free (ls->name);
2163 vec_free (ls->locator_indices);
2164 pool_put (lcm->locator_set_pool, ls);
2170 vnet_lisp_rloc_probe_enable_disable (u8 is_enable)
2172 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2174 lcm->rloc_probing = is_enable;
2179 vnet_lisp_map_register_enable_disable (u8 is_enable)
2181 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2183 lcm->map_registering = is_enable;
2188 lisp_cp_register_dst_port (vlib_main_t * vm)
2190 udp_register_dst_port (vm, UDP_DST_PORT_lisp_cp,
2191 lisp_cp_input_node.index, 1 /* is_ip4 */ );
2192 udp_register_dst_port (vm, UDP_DST_PORT_lisp_cp6,
2193 lisp_cp_input_node.index, 0 /* is_ip4 */ );
2197 lisp_cp_unregister_dst_port (vlib_main_t * vm)
2199 udp_unregister_dst_port (vm, UDP_DST_PORT_lisp_cp, 0 /* is_ip4 */ );
2200 udp_unregister_dst_port (vm, UDP_DST_PORT_lisp_cp6, 1 /* is_ip4 */ );
2204 * lisp_cp_enable_l2_l3_ifaces
2206 * Enable all l2 and l3 ifaces
2209 lisp_cp_enable_l2_l3_ifaces (lisp_cp_main_t * lcm, u8 with_default_route)
2214 hash_foreach(vni, dp_table, lcm->table_id_by_vni, ({
2215 dp_add_del_iface(lcm, vni, /* is_l2 */ 0, /* is_add */1,
2216 with_default_route);
2218 hash_foreach(vni, dp_table, lcm->bd_id_by_vni, ({
2219 dp_add_del_iface(lcm, vni, /* is_l2 */ 1, 1,
2220 with_default_route);
2226 lisp_cp_disable_l2_l3_ifaces (lisp_cp_main_t * lcm)
2230 /* clear interface table */
2231 hash_free (lcm->fwd_entry_by_mapping_index);
2232 pool_free (lcm->fwd_entry_pool);
2233 /* Clear state tracking rmt-lcl fwd entries */
2235 pool_foreach(rmts, lcm->lcl_to_rmt_adjacencies,
2240 hash_free (lcm->lcl_to_rmt_adjs_by_lcl_idx);
2241 pool_free (lcm->lcl_to_rmt_adjacencies);
2245 vnet_lisp_enable_disable (u8 is_enable)
2247 clib_error_t *error = 0;
2248 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2249 vnet_lisp_gpe_enable_disable_args_t _a, *a = &_a;
2251 a->is_en = is_enable;
2252 error = vnet_lisp_gpe_enable_disable (a);
2255 return clib_error_return (0, "failed to %s data-plane!",
2256 a->is_en ? "enable" : "disable");
2259 /* decide what to do based on mode */
2261 if (lcm->flags & LISP_FLAG_XTR_MODE)
2265 lisp_cp_register_dst_port (lcm->vlib_main);
2266 lisp_cp_enable_l2_l3_ifaces (lcm, 1 /* with_default_route */ );
2270 lisp_cp_unregister_dst_port (lcm->vlib_main);
2271 lisp_cp_disable_l2_l3_ifaces (lcm);
2275 if (lcm->flags & LISP_FLAG_PETR_MODE)
2277 /* if in xTR mode, the LISP ports were already (un)registered above */
2278 if (!(lcm->flags & LISP_FLAG_XTR_MODE))
2281 lisp_cp_register_dst_port (lcm->vlib_main);
2283 lisp_cp_unregister_dst_port (lcm->vlib_main);
2287 if (lcm->flags & LISP_FLAG_PITR_MODE)
2291 /* install interfaces, but no default routes */
2292 lisp_cp_enable_l2_l3_ifaces (lcm, 0 /* with_default_route */ );
2296 lisp_cp_disable_l2_l3_ifaces (lcm);
2300 /* update global flag */
2301 lcm->is_enabled = is_enable;
2307 vnet_lisp_enable_disable_status (void)
2309 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2310 return lcm->is_enabled;
2314 vnet_lisp_add_del_map_resolver (vnet_lisp_add_del_map_resolver_args_t * a)
2316 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2318 lisp_msmr_t _mr, *mr = &_mr;
2320 if (vnet_lisp_enable_disable_status () == 0)
2322 clib_warning ("LISP is disabled!");
2323 return VNET_API_ERROR_LISP_DISABLED;
2329 if (get_map_resolver (&a->address))
2331 clib_warning ("map-resolver %U already exists!", format_ip_address,
2336 clib_memset (mr, 0, sizeof (*mr));
2337 ip_address_copy (&mr->address, &a->address);
2338 vec_add1 (lcm->map_resolvers, *mr);
2340 if (vec_len (lcm->map_resolvers) == 1)
2341 lcm->do_map_resolver_election = 1;
2345 for (i = 0; i < vec_len (lcm->map_resolvers); i++)
2347 mr = vec_elt_at_index (lcm->map_resolvers, i);
2348 if (!ip_address_cmp (&mr->address, &a->address))
2350 if (!ip_address_cmp (&mr->address, &lcm->active_map_resolver))
2351 lcm->do_map_resolver_election = 1;
2353 vec_del1 (lcm->map_resolvers, i);
2362 vnet_lisp_map_register_set_ttl (u32 ttl)
2364 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2365 lcm->map_register_ttl = ttl;
2370 vnet_lisp_map_register_get_ttl (void)
2372 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2373 return lcm->map_register_ttl;
2377 vnet_lisp_add_del_mreq_itr_rlocs (vnet_lisp_add_del_mreq_itr_rloc_args_t * a)
2379 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2382 if (vnet_lisp_enable_disable_status () == 0)
2384 clib_warning ("LISP is disabled!");
2385 return VNET_API_ERROR_LISP_DISABLED;
2390 p = hash_get_mem (lcm->locator_set_index_by_name, a->locator_set_name);
2393 clib_warning ("locator-set %v doesn't exist", a->locator_set_name);
2394 return VNET_API_ERROR_INVALID_ARGUMENT;
2397 lcm->mreq_itr_rlocs = p[0];
2401 lcm->mreq_itr_rlocs = ~0;
2407 /* Statistics (not really errors) */
2408 #define foreach_lisp_cp_lookup_error \
2410 _(MAP_REQUESTS_SENT, "map-request sent") \
2411 _(ARP_REPLY_TX, "ARP replies sent") \
2412 _(NDP_NEIGHBOR_ADVERTISEMENT_TX, \
2413 "neighbor advertisement sent")
2415 static char *lisp_cp_lookup_error_strings[] = {
2416 #define _(sym,string) string,
2417 foreach_lisp_cp_lookup_error
2423 #define _(sym,str) LISP_CP_LOOKUP_ERROR_##sym,
2424 foreach_lisp_cp_lookup_error
2426 LISP_CP_LOOKUP_N_ERROR,
2427 } lisp_cp_lookup_error_t;
2431 LISP_CP_LOOKUP_NEXT_DROP,
2432 LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX,
2433 LISP_CP_LOOKUP_N_NEXT,
2434 } lisp_cp_lookup_next_t;
2438 gid_address_t dst_eid;
2439 ip_address_t map_resolver_ip;
2440 } lisp_cp_lookup_trace_t;
2443 format_lisp_cp_lookup_trace (u8 * s, va_list * args)
2445 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
2446 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
2447 lisp_cp_lookup_trace_t *t = va_arg (*args, lisp_cp_lookup_trace_t *);
2449 s = format (s, "LISP-CP-LOOKUP: map-resolver: %U destination eid %U",
2450 format_ip_address, &t->map_resolver_ip, format_gid_address,
2456 get_mr_and_local_iface_ip (lisp_cp_main_t * lcm, ip_address_t * mr_ip,
2457 ip_address_t * sloc)
2462 if (vec_len (lcm->map_resolvers) == 0)
2464 clib_warning ("No map-resolver configured");
2468 /* find the first mr ip we have a route to and the ip of the
2469 * iface that has a route to it */
2470 vec_foreach (mrit, lcm->map_resolvers)
2473 if (0 != ip_fib_get_first_egress_ip_for_dst (lcm, a, sloc))
2475 ip_address_copy (mr_ip, a);
2477 /* also update globals */
2482 clib_warning ("Can't find map-resolver and local interface ip!");
2486 static gid_address_t *
2487 build_itr_rloc_list (lisp_cp_main_t * lcm, locator_set_t * loc_set)
2493 ip_interface_address_t *ia = 0;
2494 gid_address_t gid_data, *gid = &gid_data;
2495 gid_address_t *rlocs = 0;
2496 ip_prefix_t *ippref = &gid_address_ippref (gid);
2497 ip_address_t *rloc = &ip_prefix_addr (ippref);
2499 clib_memset (gid, 0, sizeof (gid[0]));
2500 gid_address_type (gid) = GID_ADDR_IP_PREFIX;
2501 for (i = 0; i < vec_len (loc_set->locator_indices); i++)
2503 loc_indexp = vec_elt_at_index (loc_set->locator_indices, i);
2504 loc = pool_elt_at_index (lcm->locator_pool, loc_indexp[0]);
2506 /* Add ipv4 locators first TODO sort them */
2509 foreach_ip_interface_address (&lcm->im4->lookup_main, ia,
2510 loc->sw_if_index, 1 /* unnumbered */,
2512 addr = ip_interface_address_get_address (&lcm->im4->lookup_main, ia);
2513 ip_address_set (rloc, addr, IP4);
2514 ip_prefix_len (ippref) = 32;
2515 ip_prefix_normalize (ippref);
2516 vec_add1 (rlocs, gid[0]);
2519 /* Add ipv6 locators */
2520 foreach_ip_interface_address (&lcm->im6->lookup_main, ia,
2521 loc->sw_if_index, 1 /* unnumbered */,
2523 addr = ip_interface_address_get_address (&lcm->im6->lookup_main, ia);
2524 ip_address_set (rloc, addr, IP6);
2525 ip_prefix_len (ippref) = 128;
2526 ip_prefix_normalize (ippref);
2527 vec_add1 (rlocs, gid[0]);
2535 static vlib_buffer_t *
2536 build_map_request (lisp_cp_main_t * lcm, gid_address_t * deid,
2537 ip_address_t * sloc, ip_address_t * rloc,
2538 gid_address_t * itr_rlocs, u64 * nonce_res, u32 * bi_res)
2542 vlib_main_t *vm = lcm->vlib_main;
2544 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2546 clib_warning ("Can't allocate buffer for Map-Request!");
2550 b = vlib_get_buffer (vm, bi);
2552 /* leave some space for the encap headers */
2553 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2556 lisp_msg_put_mreq (lcm, b, NULL, deid, itr_rlocs, 0 /* smr invoked */ ,
2557 1 /* rloc probe */ , nonce_res);
2559 /* push outer ip header */
2560 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2568 static vlib_buffer_t *
2569 build_encapsulated_map_request (lisp_cp_main_t * lcm,
2570 gid_address_t * seid, gid_address_t * deid,
2571 locator_set_t * loc_set, ip_address_t * mr_ip,
2572 ip_address_t * sloc, u8 is_smr_invoked,
2573 u64 * nonce_res, u32 * bi_res)
2577 gid_address_t *rlocs = 0;
2578 vlib_main_t *vm = lcm->vlib_main;
2580 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2582 clib_warning ("Can't allocate buffer for Map-Request!");
2586 b = vlib_get_buffer (vm, bi);
2589 /* leave some space for the encap headers */
2590 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2593 rlocs = build_itr_rloc_list (lcm, loc_set);
2595 if (MR_MODE_SRC_DST == lcm->map_request_mode
2596 && GID_ADDR_SRC_DST != gid_address_type (deid))
2599 clib_memset (&sd, 0, sizeof (sd));
2600 build_src_dst (&sd, seid, deid);
2601 lisp_msg_put_mreq (lcm, b, seid, &sd, rlocs, is_smr_invoked,
2602 0 /* rloc probe */ , nonce_res);
2607 lisp_msg_put_mreq (lcm, b, seid, deid, rlocs, is_smr_invoked,
2608 0 /* rloc probe */ , nonce_res);
2611 /* push ecm: udp-ip-lisp */
2612 lisp_msg_push_ecm (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, seid, deid);
2614 /* push outer ip header */
2615 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2625 reset_pending_mr_counters (pending_map_request_t * r)
2627 r->time_to_expire = PENDING_MREQ_EXPIRATION_TIME;
2631 #define foreach_msmr \
2637 elect_map_ ## name (lisp_cp_main_t * lcm) \
2640 vec_foreach (mr, lcm->map_ ## name ## s) \
2644 ip_address_copy (&lcm->active_map_ ##name, &mr->address); \
2645 lcm->do_map_ ## name ## _election = 0; \
2654 free_map_register_records (mapping_t * maps)
2657 vec_foreach (map, maps) vec_free (map->locators);
2663 add_locators (lisp_cp_main_t * lcm, mapping_t * m, u32 locator_set_index,
2664 ip_address_t * probed_loc)
2667 locator_t *loc, new;
2668 ip_interface_address_t *ia = 0;
2670 ip_address_t *new_ip = &gid_address_ip (&new.address);
2673 locator_set_t *ls = pool_elt_at_index (lcm->locator_set_pool,
2675 vec_foreach (li, ls->locator_indices)
2677 loc = pool_elt_at_index (lcm->locator_pool, li[0]);
2682 foreach_ip_interface_address (&lcm->im4->lookup_main, ia,
2683 loc->sw_if_index, 1 /* unnumbered */,
2685 addr = ip_interface_address_get_address (&lcm->im4->lookup_main,
2687 ip_address_set (new_ip, addr, IP4);
2690 /* Add ipv6 locators */
2691 foreach_ip_interface_address (&lcm->im6->lookup_main, ia,
2692 loc->sw_if_index, 1 /* unnumbered */,
2694 addr = ip_interface_address_get_address (&lcm->im6->lookup_main,
2696 ip_address_set (new_ip, addr, IP6);
2700 if (probed_loc && ip_address_cmp (probed_loc, new_ip) == 0)
2703 vec_add1 (m->locators, new);
2708 build_map_register_record_list (lisp_cp_main_t * lcm)
2710 mapping_t *recs = 0, rec, *m;
2713 pool_foreach(m, lcm->mapping_pool,
2715 /* for now build only local mappings */
2720 add_locators (lcm, &rec, m->locator_set_index, NULL);
2721 vec_add1 (recs, rec);
2728 static vnet_crypto_alg_t
2729 lisp_key_type_to_crypto_alg (lisp_key_type_t key_id)
2734 return VNET_CRYPTO_ALG_HMAC_SHA1;
2735 case HMAC_SHA_256_128:
2736 return VNET_CRYPTO_ALG_HMAC_SHA256;
2738 clib_warning ("unsupported encryption key type: %d!", key_id);
2741 return VNET_CRYPTO_ALG_NONE;
2744 static vnet_crypto_op_id_t
2745 lisp_key_type_to_crypto_op (lisp_key_type_t key_id)
2750 return VNET_CRYPTO_OP_SHA1_HMAC;
2751 case HMAC_SHA_256_128:
2752 return VNET_CRYPTO_OP_SHA256_HMAC;
2754 clib_warning ("unsupported encryption key type: %d!", key_id);
2757 return VNET_CRYPTO_OP_NONE;
2761 update_map_register_auth_data (map_register_hdr_t * map_reg_hdr,
2762 lisp_key_type_t key_id, u8 * key,
2763 u16 auth_data_len, u32 msg_len)
2765 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2766 MREG_KEY_ID (map_reg_hdr) = clib_host_to_net_u16 (key_id);
2767 MREG_AUTH_DATA_LEN (map_reg_hdr) = clib_host_to_net_u16 (auth_data_len);
2768 vnet_crypto_op_t _op, *op = &_op;
2769 vnet_crypto_key_index_t ki;
2771 vnet_crypto_op_init (op, lisp_key_type_to_crypto_op (key_id));
2773 op->digest = MREG_DATA (map_reg_hdr);
2774 op->src = (u8 *) map_reg_hdr;
2778 ki = vnet_crypto_key_add (lcm->vlib_main,
2779 lisp_key_type_to_crypto_alg (key_id), key,
2784 vnet_crypto_process_ops (lcm->vlib_main, op, 1);
2785 vnet_crypto_key_del (lcm->vlib_main, ki);
2790 static vlib_buffer_t *
2791 build_map_register (lisp_cp_main_t * lcm, ip_address_t * sloc,
2792 ip_address_t * ms_ip, u64 * nonce_res, u8 want_map_notif,
2793 mapping_t * records, lisp_key_type_t key_id, u8 * key,
2798 u32 bi, auth_data_len = 0, msg_len = 0;
2799 vlib_main_t *vm = lcm->vlib_main;
2801 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2803 clib_warning ("Can't allocate buffer for Map-Register!");
2807 b = vlib_get_buffer (vm, bi);
2809 /* leave some space for the encap headers */
2810 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2812 auth_data_len = auth_data_len_by_key_id (key_id);
2813 map_reg_hdr = lisp_msg_put_map_register (b, records, want_map_notif,
2814 auth_data_len, nonce_res,
2817 update_map_register_auth_data (map_reg_hdr, key_id, key, auth_data_len,
2820 /* push outer ip header */
2821 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2830 get_egress_map_ ##name## _ip (lisp_cp_main_t * lcm, ip_address_t * ip) \
2833 while (lcm->do_map_ ## name ## _election \
2834 | (0 == ip_fib_get_first_egress_ip_for_dst \
2835 (lcm, &lcm->active_map_ ##name, ip))) \
2837 if (0 == elect_map_ ## name (lcm)) \
2838 /* all map resolvers/servers are down */ \
2840 /* restart MR/MS checking by marking all of them up */ \
2841 vec_foreach (mr, lcm->map_ ## name ## s) mr->is_down = 0; \
2850 /* CP output statistics */
2851 #define foreach_lisp_cp_output_error \
2852 _(MAP_REGISTERS_SENT, "map-registers sent") \
2853 _(MAP_REQUESTS_SENT, "map-requests sent") \
2854 _(RLOC_PROBES_SENT, "rloc-probes sent")
2855 static char *lisp_cp_output_error_strings[] = {
2856 #define _(sym,string) string,
2857 foreach_lisp_cp_output_error
2863 #define _(sym,str) LISP_CP_OUTPUT_ERROR_##sym,
2864 foreach_lisp_cp_output_error
2866 LISP_CP_OUTPUT_N_ERROR,
2867 } lisp_cp_output_error_t;
2870 lisp_cp_output (vlib_main_t * vm, vlib_node_runtime_t * node,
2871 vlib_frame_t * from_frame)
2876 /* dummy node used only for statistics */
2878 VLIB_REGISTER_NODE (lisp_cp_output_node) = {
2879 .function = lisp_cp_output,
2880 .name = "lisp-cp-output",
2881 .vector_size = sizeof (u32),
2882 .format_trace = format_lisp_cp_input_trace,
2883 .type = VLIB_NODE_TYPE_INTERNAL,
2885 .n_errors = LISP_CP_OUTPUT_N_ERROR,
2886 .error_strings = lisp_cp_output_error_strings,
2888 .n_next_nodes = LISP_CP_INPUT_N_NEXT,
2891 [LISP_CP_INPUT_NEXT_DROP] = "error-drop",
2897 send_rloc_probe (lisp_cp_main_t * lcm, gid_address_t * deid,
2898 u32 local_locator_set_index, ip_address_t * sloc,
2899 ip_address_t * rloc)
2906 u32 next_index, *to_next;
2907 gid_address_t *itr_rlocs;
2909 ls = pool_elt_at_index (lcm->locator_set_pool, local_locator_set_index);
2910 itr_rlocs = build_itr_rloc_list (lcm, ls);
2912 b = build_map_request (lcm, deid, sloc, rloc, itr_rlocs, &nonce, &bi);
2913 vec_free (itr_rlocs);
2917 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
2919 next_index = (ip_addr_version (rloc) == IP4) ?
2920 ip4_lookup_node.index : ip6_lookup_node.index;
2922 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
2924 /* Enqueue the packet */
2925 to_next = vlib_frame_vector_args (f);
2928 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
2934 send_rloc_probes (lisp_cp_main_t * lcm)
2940 u32 si, rloc_probes_sent = 0;
2943 pool_foreach (e, lcm->fwd_entry_pool,
2945 if (vec_len (e->locator_pairs) == 0)
2948 si = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &e->leid);
2951 clib_warning ("internal error: cannot find local eid %U in "
2952 "map-cache!", format_gid_address, &e->leid);
2955 lm = pool_elt_at_index (lcm->mapping_pool, si);
2957 /* get the best (lowest) priority */
2958 lprio = e->locator_pairs[0].priority;
2960 /* send rloc-probe for pair(s) with the best remote locator priority */
2961 vec_foreach (lp, e->locator_pairs)
2963 if (lp->priority != lprio)
2966 /* get first remote locator */
2967 send_rloc_probe (lcm, &e->reid, lm->locator_set_index, &lp->lcl_loc,
2974 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
2975 LISP_CP_OUTPUT_ERROR_RLOC_PROBES_SENT,
2981 send_map_register (lisp_cp_main_t * lcm, u8 want_map_notif)
2983 pending_map_register_t *pmr;
2984 u32 bi, map_registers_sent = 0;
2989 u32 next_index, *to_next;
2990 mapping_t *records, *r, *group, *k;
2992 if (get_egress_map_server_ip (lcm, &sloc) < 0)
2995 records = build_map_register_record_list (lcm);
2999 vec_foreach (r, records)
3002 u8 key_id = r->key_id;
3005 continue; /* no secret key -> map-register cannot be sent */
3008 vec_add1 (group, r[0]);
3010 /* group mappings that share common key */
3011 for (k = r + 1; k < vec_end (records); k++)
3013 if (k->key_id != r->key_id)
3016 if (vec_is_equal (k->key, r->key))
3018 vec_add1 (group, k[0]);
3019 k->key = 0; /* don't process this mapping again */
3023 b = build_map_register (lcm, &sloc, &lcm->active_map_server, &nonce,
3024 want_map_notif, group, key_id, key, &bi);
3029 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
3031 next_index = (ip_addr_version (&lcm->active_map_server) == IP4) ?
3032 ip4_lookup_node.index : ip6_lookup_node.index;
3034 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
3036 /* Enqueue the packet */
3037 to_next = vlib_frame_vector_args (f);
3040 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
3041 map_registers_sent++;
3043 pool_get (lcm->pending_map_registers_pool, pmr);
3044 clib_memset (pmr, 0, sizeof (*pmr));
3045 pmr->time_to_expire = PENDING_MREG_EXPIRATION_TIME;
3046 hash_set (lcm->map_register_messages_by_nonce, nonce,
3047 pmr - lcm->pending_map_registers_pool);
3049 free_map_register_records (records);
3051 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
3052 LISP_CP_OUTPUT_ERROR_MAP_REGISTERS_SENT,
3053 map_registers_sent);
3058 #define send_encapsulated_map_request(lcm, seid, deid, smr) \
3059 _send_encapsulated_map_request(lcm, seid, deid, smr, 0)
3061 #define resend_encapsulated_map_request(lcm, seid, deid, smr) \
3062 _send_encapsulated_map_request(lcm, seid, deid, smr, 1)
3065 _send_encapsulated_map_request (lisp_cp_main_t * lcm,
3066 gid_address_t * seid, gid_address_t * deid,
3067 u8 is_smr_invoked, u8 is_resend)
3069 u32 next_index, bi = 0, *to_next, map_index;
3073 locator_set_t *loc_set;
3075 pending_map_request_t *pmr, *duplicate_pmr = 0;
3079 /* if there is already a pending request remember it */
3082 pool_foreach(pmr, lcm->pending_map_requests_pool,
3084 if (!gid_address_cmp (&pmr->src, seid)
3085 && !gid_address_cmp (&pmr->dst, deid))
3087 duplicate_pmr = pmr;
3093 if (!is_resend && duplicate_pmr)
3095 /* don't send the request if there is a pending map request already */
3099 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
3101 /* get locator-set for seid */
3102 if (!pitr_mode && gid_address_type (deid) != GID_ADDR_NSH)
3104 map_index = gid_dictionary_lookup (&lcm->mapping_index_by_gid, seid);
3105 if (map_index == ~0)
3107 clib_warning ("No local mapping found in eid-table for %U!",
3108 format_gid_address, seid);
3112 map = pool_elt_at_index (lcm->mapping_pool, map_index);
3117 ("Mapping found for src eid %U is not marked as local!",
3118 format_gid_address, seid);
3121 ls_index = map->locator_set_index;
3127 if (lcm->pitr_map_index != ~0)
3130 pool_elt_at_index (lcm->mapping_pool, lcm->pitr_map_index);
3131 ls_index = map->locator_set_index;
3140 if (lcm->nsh_map_index == (u32) ~ 0)
3142 clib_warning ("No locator-set defined for NSH!");
3147 map = pool_elt_at_index (lcm->mapping_pool, lcm->nsh_map_index);
3148 ls_index = map->locator_set_index;
3153 /* overwrite locator set if map-request itr-rlocs configured */
3154 if (~0 != lcm->mreq_itr_rlocs)
3156 ls_index = lcm->mreq_itr_rlocs;
3159 loc_set = pool_elt_at_index (lcm->locator_set_pool, ls_index);
3161 if (get_egress_map_resolver_ip (lcm, &sloc) < 0)
3164 duplicate_pmr->to_be_removed = 1;
3168 /* build the encapsulated map request */
3169 b = build_encapsulated_map_request (lcm, seid, deid, loc_set,
3170 &lcm->active_map_resolver,
3171 &sloc, is_smr_invoked, &nonce, &bi);
3176 /* set fib index to default and lookup node */
3177 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
3178 next_index = (ip_addr_version (&lcm->active_map_resolver) == IP4) ?
3179 ip4_lookup_node.index : ip6_lookup_node.index;
3181 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
3183 /* Enqueue the packet */
3184 to_next = vlib_frame_vector_args (f);
3187 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
3189 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
3190 LISP_CP_OUTPUT_ERROR_MAP_REQUESTS_SENT, 1);
3193 /* if there is a pending request already update it */
3195 if (clib_fifo_elts (duplicate_pmr->nonces) >= PENDING_MREQ_QUEUE_LEN)
3197 /* remove the oldest nonce */
3198 u64 CLIB_UNUSED (tmp), *nonce_del;
3199 nonce_del = clib_fifo_head (duplicate_pmr->nonces);
3200 hash_unset (lcm->pending_map_requests_by_nonce, nonce_del[0]);
3201 clib_fifo_sub1 (duplicate_pmr->nonces, tmp);
3204 clib_fifo_add1 (duplicate_pmr->nonces, nonce);
3205 hash_set (lcm->pending_map_requests_by_nonce, nonce,
3206 duplicate_pmr - lcm->pending_map_requests_pool);
3210 /* add map-request to pending requests table */
3211 pool_get (lcm->pending_map_requests_pool, pmr);
3212 clib_memset (pmr, 0, sizeof (*pmr));
3213 gid_address_copy (&pmr->src, seid);
3214 gid_address_copy (&pmr->dst, deid);
3215 clib_fifo_add1 (pmr->nonces, nonce);
3216 pmr->is_smr_invoked = is_smr_invoked;
3217 reset_pending_mr_counters (pmr);
3218 hash_set (lcm->pending_map_requests_by_nonce, nonce,
3219 pmr - lcm->pending_map_requests_pool);
3226 get_src_and_dst_ip (void *hdr, ip_address_t * src, ip_address_t * dst)
3228 ip4_header_t *ip4 = hdr;
3231 if ((ip4->ip_version_and_header_length & 0xF0) == 0x40)
3233 ip_address_set (src, &ip4->src_address, IP4);
3234 ip_address_set (dst, &ip4->dst_address, IP4);
3239 ip_address_set (src, &ip6->src_address, IP6);
3240 ip_address_set (dst, &ip6->dst_address, IP6);
3245 lisp_get_vni_from_buffer_ip (lisp_cp_main_t * lcm, vlib_buffer_t * b,
3249 u32 vni = ~0, table_id = ~0;
3251 table_id = fib_table_get_table_id_for_sw_if_index ((version ==
3252 IP4 ? FIB_PROTOCOL_IP4 :
3258 vnip = hash_get (lcm->vni_by_table_id, table_id);
3262 clib_warning ("vrf %d is not mapped to any vni!", table_id);
3268 lisp_get_bd_from_buffer_eth (vlib_buffer_t * b)
3272 l2input_main_t *l2im = &l2input_main;
3273 l2_input_config_t *config;
3274 l2_bridge_domain_t *bd_config;
3276 sw_if_index0 = vnet_buffer (b)->sw_if_index[VLIB_RX];
3277 config = vec_elt_at_index (l2im->configs, sw_if_index0);
3278 bd_config = vec_elt_at_index (l2im->bd_configs, config->bd_index);
3280 return bd_config->bd_id;
3284 lisp_get_vni_from_buffer_eth (lisp_cp_main_t * lcm, vlib_buffer_t * b)
3288 u32 bd = lisp_get_bd_from_buffer_eth (b);
3290 vnip = hash_get (lcm->vni_by_bd_id, bd);
3294 clib_warning ("bridge domain %d is not mapped to any vni!", bd);
3300 get_src_and_dst_eids_from_buffer (lisp_cp_main_t * lcm, vlib_buffer_t * b,
3301 gid_address_t * src, gid_address_t * dst,
3304 ethernet_header_t *eh;
3306 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *opt;
3308 clib_memset (src, 0, sizeof (*src));
3309 clib_memset (dst, 0, sizeof (*dst));
3311 gid_address_type (dst) = GID_ADDR_NO_ADDRESS;
3312 gid_address_type (src) = GID_ADDR_NO_ADDRESS;
3314 if (LISP_AFI_IP == type || LISP_AFI_IP6 == type)
3317 u8 version, preflen;
3319 gid_address_type (src) = GID_ADDR_IP_PREFIX;
3320 gid_address_type (dst) = GID_ADDR_IP_PREFIX;
3322 ip = vlib_buffer_get_current (b);
3323 get_src_and_dst_ip (ip, &gid_address_ip (src), &gid_address_ip (dst));
3325 version = gid_address_ip_version (src);
3326 preflen = ip_address_max_len (version);
3327 gid_address_ippref_len (src) = preflen;
3328 gid_address_ippref_len (dst) = preflen;
3330 vni = lisp_get_vni_from_buffer_ip (lcm, b, version);
3331 gid_address_vni (dst) = vni;
3332 gid_address_vni (src) = vni;
3334 else if (LISP_AFI_MAC == type)
3336 ethernet_arp_header_t *ah;
3338 eh = vlib_buffer_get_current (b);
3340 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_ARP)
3342 ah = (ethernet_arp_header_t *) (((u8 *) eh) + sizeof (*eh));
3343 gid_address_type (dst) = GID_ADDR_ARP;
3345 if (clib_net_to_host_u16 (ah->opcode)
3346 != ETHERNET_ARP_OPCODE_request)
3348 clib_memset (&gid_address_arp_ndp_ip (dst), 0,
3349 sizeof (ip_address_t));
3350 ip_addr_version (&gid_address_arp_ndp_ip (dst)) = IP4;
3351 gid_address_arp_ndp_bd (dst) = ~0;
3355 gid_address_arp_bd (dst) = lisp_get_bd_from_buffer_eth (b);
3356 clib_memcpy (&gid_address_arp_ip4 (dst),
3357 &ah->ip4_over_ethernet[1].ip4, 4);
3361 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_IP6)
3364 ip = (ip6_header_t *) (eh + 1);
3366 if (IP_PROTOCOL_ICMP6 == ip->protocol)
3368 icmp6_neighbor_solicitation_or_advertisement_header_t *ndh;
3369 ndh = ip6_next_header (ip);
3370 if (ndh->icmp.type == ICMP6_neighbor_solicitation)
3372 gid_address_type (dst) = GID_ADDR_NDP;
3374 /* check that source link layer address option is present */
3375 opt = (void *) (ndh + 1);
3376 if ((opt->header.type !=
3377 ICMP6_NEIGHBOR_DISCOVERY_OPTION_source_link_layer_address)
3378 || (opt->header.n_data_u64s != 1))
3380 clib_memset (&gid_address_arp_ndp_ip (dst), 0,
3381 sizeof (ip_address_t));
3382 ip_addr_version (&gid_address_arp_ndp_ip (dst)) =
3384 gid_address_arp_ndp_bd (dst) = ~0;
3385 gid_address_type (src) = GID_ADDR_NO_ADDRESS;
3389 gid_address_ndp_bd (dst) =
3390 lisp_get_bd_from_buffer_eth (b);
3391 ip_address_set (&gid_address_arp_ndp_ip (dst),
3392 &ndh->target_address, IP6);
3398 gid_address_type (src) = GID_ADDR_MAC;
3399 gid_address_type (dst) = GID_ADDR_MAC;
3400 mac_copy (&gid_address_mac (src), eh->src_address);
3401 mac_copy (&gid_address_mac (dst), eh->dst_address);
3404 vni = lisp_get_vni_from_buffer_eth (lcm, b);
3406 gid_address_vni (dst) = vni;
3407 gid_address_vni (src) = vni;
3410 else if (LISP_AFI_LCAF == type)
3413 eh = vlib_buffer_get_current (b);
3415 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_NSH)
3417 nh = (lisp_nsh_hdr_t *) (((u8 *) eh) + sizeof (*eh));
3418 u32 spi = clib_net_to_host_u32 (nh->spi_si << 8);
3419 u8 si = (u8) clib_net_to_host_u32 (nh->spi_si);
3420 gid_address_nsh_spi (dst) = spi;
3421 gid_address_nsh_si (dst) = si;
3423 gid_address_type (dst) = GID_ADDR_NSH;
3424 gid_address_type (src) = GID_ADDR_NSH;
3430 lisp_cp_lookup_inline (vlib_main_t * vm,
3431 vlib_node_runtime_t * node,
3432 vlib_frame_t * from_frame, int overlay)
3434 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *opt;
3435 u32 *from, *to_next, di, si;
3436 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3438 uword n_left_from, n_left_to_next;
3439 vnet_main_t *vnm = vnet_get_main ();
3441 from = vlib_frame_vector_args (from_frame);
3442 n_left_from = from_frame->n_vectors;
3443 next_index = node->cached_next_index;
3445 while (n_left_from > 0)
3447 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
3449 while (n_left_from > 0 && n_left_to_next > 0)
3451 u32 pi0, sw_if_index0, next0;
3454 gid_address_t src, dst;
3455 ethernet_arp_header_t *arp0;
3456 ethernet_header_t *eth0;
3457 vnet_hw_interface_t *hw_if0;
3458 ethernet_header_t *eh0;
3459 icmp6_neighbor_solicitation_or_advertisement_header_t *ndh;
3467 n_left_to_next -= 1;
3469 b0 = vlib_get_buffer (vm, pi0);
3471 /* src/dst eid pair */
3472 get_src_and_dst_eids_from_buffer (lcm, b0, &src, &dst, overlay);
3474 if (gid_address_type (&dst) == GID_ADDR_ARP)
3476 mac0 = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
3477 if (GID_LOOKUP_MISS_L2 == mac0)
3480 /* send ARP reply */
3481 sw_if_index0 = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3482 vnet_buffer (b0)->sw_if_index[VLIB_TX] = sw_if_index0;
3484 hw_if0 = vnet_get_sup_hw_interface (vnm, sw_if_index0);
3486 eth0 = vlib_buffer_get_current (b0);
3487 arp0 = (ethernet_arp_header_t *) (((u8 *) eth0)
3489 arp0->opcode = clib_host_to_net_u16 (ETHERNET_ARP_OPCODE_reply);
3490 arp0->ip4_over_ethernet[1] = arp0->ip4_over_ethernet[0];
3491 mac_address_from_u64 (&arp0->ip4_over_ethernet[0].mac, mac0);
3492 clib_memcpy (&arp0->ip4_over_ethernet[0].ip4,
3493 &gid_address_arp_ip4 (&dst), 4);
3495 /* Hardware must be ethernet-like. */
3496 ASSERT (vec_len (hw_if0->hw_address) == 6);
3498 clib_memcpy (eth0->dst_address, eth0->src_address, 6);
3499 clib_memcpy (eth0->src_address, hw_if0->hw_address, 6);
3501 b0->error = node->errors[LISP_CP_LOOKUP_ERROR_ARP_REPLY_TX];
3502 next0 = LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX;
3505 else if (gid_address_type (&dst) == GID_ADDR_NDP)
3507 mac0 = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
3508 if (GID_LOOKUP_MISS_L2 == mac0)
3511 sw_if_index0 = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3512 vnet_buffer (b0)->sw_if_index[VLIB_TX] = sw_if_index0;
3514 eh0 = vlib_buffer_get_current (b0);
3515 ip0 = (ip6_header_t *) (eh0 + 1);
3516 ndh = ip6_next_header (ip0);
3518 ip0->dst_address = ip0->src_address;
3519 ip0->src_address = ndh->target_address;
3520 ip0->hop_limit = 255;
3521 opt = (void *) (ndh + 1);
3523 ICMP6_NEIGHBOR_DISCOVERY_OPTION_target_link_layer_address;
3524 clib_memcpy (opt->ethernet_address, (u8 *) & mac0, 6);
3525 ndh->icmp.type = ICMP6_neighbor_advertisement;
3526 ndh->advertisement_flags = clib_host_to_net_u32
3527 (ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_SOLICITED |
3528 ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_OVERRIDE);
3529 ndh->icmp.checksum = 0;
3530 ndh->icmp.checksum =
3531 ip6_tcp_udp_icmp_compute_checksum (vm, b0, ip0,
3533 clib_memcpy (eh0->dst_address, eh0->src_address, 6);
3534 clib_memcpy (eh0->src_address, (u8 *) & mac0, 6);
3537 [LISP_CP_LOOKUP_ERROR_NDP_NEIGHBOR_ADVERTISEMENT_TX];
3538 next0 = LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX;
3542 /* if we have remote mapping for destination already in map-cache
3543 add forwarding tunnel directly. If not send a map-request */
3544 di = gid_dictionary_sd_lookup (&lcm->mapping_index_by_gid, &dst,
3548 mapping_t *m = vec_elt_at_index (lcm->mapping_pool, di);
3549 /* send a map-request also in case of negative mapping entry
3550 with corresponding action */
3551 if (m->action == LISP_SEND_MAP_REQUEST)
3553 /* send map-request */
3554 queue_map_request (&src, &dst, 0 /* smr_invoked */ ,
3555 0 /* is_resend */ );
3559 if (GID_ADDR_NSH != gid_address_type (&dst))
3561 si = gid_dictionary_lookup (&lcm->mapping_index_by_gid,
3565 si = lcm->nsh_map_index;
3569 dp_add_fwd_entry_from_mt (si, di);
3575 /* send map-request */
3576 queue_map_request (&src, &dst, 0 /* smr_invoked */ ,
3577 0 /* is_resend */ );
3581 b0->error = node->errors[LISP_CP_LOOKUP_ERROR_DROP];
3582 next0 = LISP_CP_LOOKUP_NEXT_DROP;
3584 if (PREDICT_FALSE (b0->flags & VLIB_BUFFER_IS_TRACED))
3586 lisp_cp_lookup_trace_t *tr = vlib_add_trace (vm, node, b0,
3589 clib_memset (tr, 0, sizeof (*tr));
3590 gid_address_copy (&tr->dst_eid, &dst);
3591 ip_address_copy (&tr->map_resolver_ip,
3592 &lcm->active_map_resolver);
3594 gid_address_free (&dst);
3595 gid_address_free (&src);
3596 vlib_validate_buffer_enqueue_x1 (vm, node, next_index,
3598 n_left_to_next, pi0, next0);
3601 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
3603 return from_frame->n_vectors;
3607 lisp_cp_lookup_ip4 (vlib_main_t * vm,
3608 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3610 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_IP));
3614 lisp_cp_lookup_ip6 (vlib_main_t * vm,
3615 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3617 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_IP6));
3621 lisp_cp_lookup_l2 (vlib_main_t * vm,
3622 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3624 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_MAC));
3628 lisp_cp_lookup_nsh (vlib_main_t * vm,
3629 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3631 /* TODO decide if NSH should be propagated as LCAF or not */
3632 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_LCAF));
3636 VLIB_REGISTER_NODE (lisp_cp_lookup_ip4_node) = {
3637 .function = lisp_cp_lookup_ip4,
3638 .name = "lisp-cp-lookup-ip4",
3639 .vector_size = sizeof (u32),
3640 .format_trace = format_lisp_cp_lookup_trace,
3641 .type = VLIB_NODE_TYPE_INTERNAL,
3643 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3644 .error_strings = lisp_cp_lookup_error_strings,
3646 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3649 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3650 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3656 VLIB_REGISTER_NODE (lisp_cp_lookup_ip6_node) = {
3657 .function = lisp_cp_lookup_ip6,
3658 .name = "lisp-cp-lookup-ip6",
3659 .vector_size = sizeof (u32),
3660 .format_trace = format_lisp_cp_lookup_trace,
3661 .type = VLIB_NODE_TYPE_INTERNAL,
3663 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3664 .error_strings = lisp_cp_lookup_error_strings,
3666 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3669 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3670 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3676 VLIB_REGISTER_NODE (lisp_cp_lookup_l2_node) = {
3677 .function = lisp_cp_lookup_l2,
3678 .name = "lisp-cp-lookup-l2",
3679 .vector_size = sizeof (u32),
3680 .format_trace = format_lisp_cp_lookup_trace,
3681 .type = VLIB_NODE_TYPE_INTERNAL,
3683 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3684 .error_strings = lisp_cp_lookup_error_strings,
3686 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3689 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3690 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3696 VLIB_REGISTER_NODE (lisp_cp_lookup_nsh_node) = {
3697 .function = lisp_cp_lookup_nsh,
3698 .name = "lisp-cp-lookup-nsh",
3699 .vector_size = sizeof (u32),
3700 .format_trace = format_lisp_cp_lookup_trace,
3701 .type = VLIB_NODE_TYPE_INTERNAL,
3703 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3704 .error_strings = lisp_cp_lookup_error_strings,
3706 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3709 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3710 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3715 /* lisp_cp_input statistics */
3716 #define foreach_lisp_cp_input_error \
3718 _(RLOC_PROBE_REQ_RECEIVED, "rloc-probe requests received") \
3719 _(RLOC_PROBE_REP_RECEIVED, "rloc-probe replies received") \
3720 _(MAP_NOTIFIES_RECEIVED, "map-notifies received") \
3721 _(MAP_REPLIES_RECEIVED, "map-replies received")
3723 static char *lisp_cp_input_error_strings[] = {
3724 #define _(sym,string) string,
3725 foreach_lisp_cp_input_error
3731 #define _(sym,str) LISP_CP_INPUT_ERROR_##sym,
3732 foreach_lisp_cp_input_error
3734 LISP_CP_INPUT_N_ERROR,
3735 } lisp_cp_input_error_t;
3739 gid_address_t dst_eid;
3740 ip4_address_t map_resolver_ip;
3741 } lisp_cp_input_trace_t;
3744 format_lisp_cp_input_trace (u8 * s, va_list * args)
3746 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
3747 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
3748 CLIB_UNUSED (lisp_cp_input_trace_t * t) =
3749 va_arg (*args, lisp_cp_input_trace_t *);
3751 s = format (s, "LISP-CP-INPUT: TODO");
3756 remove_expired_mapping (lisp_cp_main_t * lcm, u32 mi)
3759 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
3760 clib_memset (adj_args, 0, sizeof (adj_args[0]));
3762 m = pool_elt_at_index (lcm->mapping_pool, mi);
3764 gid_address_copy (&adj_args->reid, &m->eid);
3765 adj_args->is_add = 0;
3766 if (vnet_lisp_add_del_adjacency (adj_args))
3767 clib_warning ("failed to del adjacency!");
3769 vnet_lisp_del_mapping (&m->eid, NULL);
3770 mapping_delete_timer (lcm, mi);
3774 mapping_start_expiration_timer (lisp_cp_main_t * lcm, u32 mi,
3775 f64 expiration_time)
3778 u64 now = clib_cpu_time_now ();
3779 u64 cpu_cps = lcm->vlib_main->clib_time.clocks_per_second;
3780 u64 exp_clock_time = now + expiration_time * cpu_cps;
3782 m = pool_elt_at_index (lcm->mapping_pool, mi);
3785 timing_wheel_insert (&lcm->wheel, exp_clock_time, mi);
3789 process_expired_mapping (lisp_cp_main_t * lcm, u32 mi)
3792 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
3793 mapping_t *m = pool_elt_at_index (lcm->mapping_pool, mi);
3799 if (m->delete_after_expiration)
3801 remove_expired_mapping (lcm, mi);
3805 fei = hash_get (lcm->fwd_entry_by_mapping_index, mi);
3809 fe = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
3811 clib_memset (a, 0, sizeof (*a));
3812 a->rmt_eid = fe->reid;
3814 a->lcl_eid = fe->leid;
3815 a->vni = gid_address_vni (&fe->reid);
3817 rv = vnet_lisp_gpe_get_fwd_stats (a, &c);
3821 if (m->almost_expired)
3823 m->almost_expired = 0; /* reset flag */
3826 if (m->packets != c.packets)
3828 /* mapping is in use, re-fetch */
3829 map_request_args_t mr_args;
3830 clib_memset (&mr_args, 0, sizeof (mr_args));
3831 mr_args.seid = fe->leid;
3832 mr_args.deid = fe->reid;
3834 send_map_request_thread_fn (&mr_args);
3837 remove_expired_mapping (lcm, mi);
3840 remove_expired_mapping (lcm, mi);
3844 m->almost_expired = 1;
3845 mapping_start_expiration_timer (lcm, mi, TIME_UNTIL_REFETCH_OR_DELETE);
3849 m->packets = c.packets;
3851 m->delete_after_expiration = 1;
3856 map_records_arg_free (map_records_arg_t * a)
3858 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3860 vec_foreach (m, a->mappings)
3862 vec_free (m->locators);
3863 gid_address_free (&m->eid);
3865 pool_put (lcm->map_records_args_pool[vlib_get_thread_index ()], a);
3869 process_map_reply (map_records_arg_t * a)
3872 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3873 u32 dst_map_index = 0;
3874 pending_map_request_t *pmr;
3879 if (a->is_rloc_probe)
3882 /* Check pending requests table and nonce */
3883 pmr_index = hash_get (lcm->pending_map_requests_by_nonce, a->nonce);
3886 clib_warning ("No pending map-request entry with nonce %lu!", a->nonce);
3889 pmr = pool_elt_at_index (lcm->pending_map_requests_pool, pmr_index[0]);
3891 vec_foreach (m, a->mappings)
3893 vnet_lisp_add_del_mapping_args_t _m_args, *m_args = &_m_args;
3894 clib_memset (m_args, 0, sizeof (m_args[0]));
3895 gid_address_copy (&m_args->eid, &m->eid);
3896 m_args->action = m->action;
3897 m_args->authoritative = m->authoritative;
3898 m_args->ttl = m->ttl;
3899 m_args->is_static = 0;
3901 /* insert/update mappings cache */
3902 vnet_lisp_add_mapping (m_args, m->locators, &dst_map_index, &is_changed);
3904 if (dst_map_index == (u32) ~ 0)
3909 /* try to program forwarding only if mapping saved or updated */
3910 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
3911 clib_memset (adj_args, 0, sizeof (adj_args[0]));
3913 gid_address_copy (&adj_args->leid, &pmr->src);
3914 gid_address_copy (&adj_args->reid, &m->eid);
3915 adj_args->is_add = 1;
3917 if (vnet_lisp_add_del_adjacency (adj_args))
3918 clib_warning ("failed to add adjacency!");
3921 if ((u32) ~ 0 != m->ttl)
3922 mapping_start_expiration_timer (lcm, dst_map_index,
3923 (m->ttl == 0) ? 0 : MAPPING_TIMEOUT);
3926 /* remove pending map request entry */
3929 clib_fifo_foreach (noncep, pmr->nonces, ({
3930 hash_unset(lcm->pending_map_requests_by_nonce, noncep[0]);
3934 clib_fifo_free (pmr->nonces);
3935 pool_put (lcm->pending_map_requests_pool, pmr);
3943 is_auth_data_valid (map_notify_hdr_t * h, u32 msg_len,
3944 lisp_key_type_t key_id, u8 * key)
3946 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3950 vnet_crypto_op_t _op, *op = &_op;
3951 vnet_crypto_key_index_t ki;
3952 u8 out[EVP_MAX_MD_SIZE] = { 0, };
3954 auth_data_len = auth_data_len_by_key_id (key_id);
3955 if ((u16) ~ 0 == auth_data_len)
3957 clib_warning ("invalid length for key_id %d!", key_id);
3961 /* save auth data */
3962 vec_validate (auth_data, auth_data_len - 1);
3963 clib_memcpy (auth_data, MNOTIFY_DATA (h), auth_data_len);
3965 /* clear auth data */
3966 clib_memset (MNOTIFY_DATA (h), 0, auth_data_len);
3968 vnet_crypto_op_init (op, lisp_key_type_to_crypto_op (key_id));
3975 ki = vnet_crypto_key_add (lcm->vlib_main,
3976 lisp_key_type_to_crypto_alg (key_id), key,
3981 vnet_crypto_process_ops (lcm->vlib_main, op, 1);
3982 vnet_crypto_key_del (lcm->vlib_main, ki);
3984 result = memcmp (out, auth_data, auth_data_len);
3986 vec_free (auth_data);
3992 process_map_notify (map_records_arg_t * a)
3994 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3997 pmr_index = hash_get (lcm->map_register_messages_by_nonce, a->nonce);
4000 clib_warning ("No pending map-register entry with nonce %lu!",
4006 pool_put_index (lcm->pending_map_registers_pool, pmr_index[0]);
4007 hash_unset (lcm->map_register_messages_by_nonce, a->nonce);
4009 /* reset map-notify counter */
4010 lcm->expired_map_registers = 0;
4014 get_mapping (lisp_cp_main_t * lcm, gid_address_t * e)
4018 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, e);
4021 clib_warning ("eid %U not found in map-cache!", unformat_gid_address,
4025 return pool_elt_at_index (lcm->mapping_pool, mi);
4029 * When map-notify is received it is necessary that all EIDs in the record
4030 * list share common key. The key is then used to verify authentication
4031 * data in map-notify message.
4034 map_record_integrity_check (lisp_cp_main_t * lcm, mapping_t * maps,
4035 u32 key_id, u8 ** key_out)
4037 u32 i, len = vec_len (maps);
4040 /* get key of the first mapping */
4041 m = get_mapping (lcm, &maps[0].eid);
4045 key_out[0] = m->key;
4047 for (i = 1; i < len; i++)
4049 m = get_mapping (lcm, &maps[i].eid);
4053 if (key_id != m->key_id || vec_cmp (m->key, key_out[0]))
4055 clib_warning ("keys does not match! %v, %v", key_out[0], m->key);
4063 parse_map_records (vlib_buffer_t * b, map_records_arg_t * a, u8 count)
4065 locator_t *locators = 0;
4071 clib_memset (&m, 0, sizeof (m));
4073 /* parse record eid */
4074 for (i = 0; i < count; i++)
4077 len = lisp_msg_parse_mapping_record (b, &deid, &locators, NULL);
4080 clib_warning ("Failed to parse mapping record!");
4081 vec_foreach (loc, locators) locator_free (loc);
4082 vec_free (locators);
4086 m.locators = locators;
4087 gid_address_copy (&m.eid, &deid);
4088 vec_add1 (a->mappings, m);
4094 static map_records_arg_t *
4095 map_record_args_get ()
4097 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4098 map_records_arg_t *rec;
4102 pool_foreach (rec, lcm->map_records_args_pool[vlib_get_thread_index()], ({
4104 map_records_arg_free (rec);
4108 pool_get (lcm->map_records_args_pool[vlib_get_thread_index ()], rec);
4112 static map_records_arg_t *
4113 parse_map_notify (vlib_buffer_t * b)
4116 map_notify_hdr_t *mnotif_hdr;
4117 lisp_key_type_t key_id;
4118 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4121 u16 auth_data_len = 0;
4123 map_records_arg_t *a;
4125 a = map_record_args_get ();
4126 clib_memset (a, 0, sizeof (*a));
4127 mnotif_hdr = vlib_buffer_get_current (b);
4128 vlib_buffer_pull (b, sizeof (*mnotif_hdr));
4129 clib_memset (&deid, 0, sizeof (deid));
4131 a->nonce = MNOTIFY_NONCE (mnotif_hdr);
4132 key_id = clib_net_to_host_u16 (MNOTIFY_KEY_ID (mnotif_hdr));
4133 auth_data_len = auth_data_len_by_key_id (key_id);
4135 /* advance buffer by authentication data */
4136 vlib_buffer_pull (b, auth_data_len);
4138 record_count = MNOTIFY_REC_COUNT (mnotif_hdr);
4139 rc = parse_map_records (b, a, record_count);
4142 map_records_arg_free (a);
4146 rc = map_record_integrity_check (lcm, a->mappings, key_id, &key);
4149 map_records_arg_free (a);
4153 /* verify authentication data */
4154 if (!is_auth_data_valid (mnotif_hdr, vlib_buffer_get_tail (b)
4155 - (u8 *) mnotif_hdr, key_id, key))
4157 clib_warning ("Map-notify auth data verification failed for nonce "
4158 "0x%lx!", a->nonce);
4159 map_records_arg_free (a);
4165 static vlib_buffer_t *
4166 build_map_reply (lisp_cp_main_t * lcm, ip_address_t * sloc,
4167 ip_address_t * dst, u64 nonce, u8 probe_bit,
4168 mapping_t * records, u16 dst_port, u32 * bi_res)
4172 vlib_main_t *vm = lcm->vlib_main;
4174 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
4176 clib_warning ("Can't allocate buffer for Map-Register!");
4180 b = vlib_get_buffer (vm, bi);
4182 /* leave some space for the encap headers */
4183 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
4185 lisp_msg_put_map_reply (b, records, nonce, probe_bit);
4187 /* push outer ip header */
4188 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, dst_port, sloc, dst, 1);
4195 send_map_reply (lisp_cp_main_t * lcm, u32 mi, ip_address_t * dst,
4196 u8 probe_bit, u64 nonce, u16 dst_port,
4197 ip_address_t * probed_loc)
4203 u32 next_index, *to_next;
4204 mapping_t *records = 0, *m;
4206 m = pool_elt_at_index (lcm->mapping_pool, mi);
4210 vec_add1 (records, m[0]);
4211 add_locators (lcm, &records[0], m->locator_set_index, probed_loc);
4212 clib_memset (&src, 0, sizeof (src));
4214 if (!ip_fib_get_first_egress_ip_for_dst (lcm, dst, &src))
4216 clib_warning ("can't find interface address for %U", format_ip_address,
4221 b = build_map_reply (lcm, &src, dst, nonce, probe_bit, records, dst_port,
4225 free_map_register_records (records);
4227 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
4228 next_index = (ip_addr_version (&lcm->active_map_resolver) == IP4) ?
4229 ip4_lookup_node.index : ip6_lookup_node.index;
4231 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
4233 /* Enqueue the packet */
4234 to_next = vlib_frame_vector_args (f);
4237 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
4242 find_ip_header (vlib_buffer_t * b, u8 ** ip_hdr)
4244 const i32 start = vnet_buffer (b)->l3_hdr_offset;
4245 if (start < 0 && start < -sizeof (b->pre_data))
4251 *ip_hdr = b->data + start;
4252 if ((u8 *) * ip_hdr > (u8 *) vlib_buffer_get_current (b))
4257 process_map_request (vlib_main_t * vm, vlib_node_runtime_t * node,
4258 lisp_cp_main_t * lcm, vlib_buffer_t * b)
4261 ip_address_t *dst_loc = 0, probed_loc, src_loc;
4263 map_request_hdr_t *mreq_hdr;
4264 gid_address_t src, dst;
4266 u32 i, len = 0, rloc_probe_recv = 0;
4267 gid_address_t *itr_rlocs = 0;
4269 mreq_hdr = vlib_buffer_get_current (b);
4270 if (!MREQ_SMR (mreq_hdr) && !MREQ_RLOC_PROBE (mreq_hdr))
4273 ("Only SMR Map-Requests and RLOC probe supported for now!");
4277 vlib_buffer_pull (b, sizeof (*mreq_hdr));
4278 nonce = MREQ_NONCE (mreq_hdr);
4281 len = lisp_msg_parse_addr (b, &src);
4285 len = lisp_msg_parse_itr_rlocs (b, &itr_rlocs,
4286 MREQ_ITR_RLOC_COUNT (mreq_hdr) + 1);
4290 /* parse eid records and send SMR-invoked map-requests */
4291 for (i = 0; i < MREQ_REC_COUNT (mreq_hdr); i++)
4293 clib_memset (&dst, 0, sizeof (dst));
4294 len = lisp_msg_parse_eid_rec (b, &dst);
4297 clib_warning ("Can't parse map-request EID-record");
4301 if (MREQ_SMR (mreq_hdr))
4303 /* send SMR-invoked map-requests */
4304 queue_map_request (&dst, &src, 1 /* invoked */ , 0 /* resend */ );
4306 else if (MREQ_RLOC_PROBE (mreq_hdr))
4308 find_ip_header (b, &ip_hdr);
4311 clib_warning ("Cannot find the IP header!");
4315 clib_memset (&m, 0, sizeof (m));
4316 u32 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
4318 // TODO: select best locator; for now use the first one
4319 dst_loc = &gid_address_ip (&itr_rlocs[0]);
4321 /* get src/dst IP addresses */
4322 get_src_and_dst_ip (ip_hdr, &src_loc, &probed_loc);
4324 // TODO get source port from buffer
4325 u16 src_port = LISP_CONTROL_PORT;
4327 send_map_reply (lcm, mi, dst_loc, 1 /* probe-bit */ , nonce,
4328 src_port, &probed_loc);
4333 vlib_node_increment_counter (vm, node->node_index,
4334 LISP_CP_INPUT_ERROR_RLOC_PROBE_REQ_RECEIVED,
4336 vec_free (itr_rlocs);
4340 parse_map_reply (vlib_buffer_t * b)
4347 map_reply_hdr_t *mrep_hdr;
4348 map_records_arg_t *a;
4350 a = map_record_args_get ();
4351 clib_memset (a, 0, sizeof (*a));
4353 locator_t *locators;
4355 mrep_hdr = vlib_buffer_get_current (b);
4356 a->nonce = MREP_NONCE (mrep_hdr);
4357 a->is_rloc_probe = MREP_RLOC_PROBE (mrep_hdr);
4358 if (!vlib_buffer_has_space (b, sizeof (*mrep_hdr)))
4363 vlib_buffer_pull (b, sizeof (*mrep_hdr));
4365 for (i = 0; i < MREP_REC_COUNT (mrep_hdr); i++)
4367 clib_memset (&m, 0, sizeof (m));
4369 h = vlib_buffer_get_current (b);
4371 m.ttl = clib_net_to_host_u32 (MAP_REC_TTL (h));
4372 m.action = MAP_REC_ACTION (h);
4373 m.authoritative = MAP_REC_AUTH (h);
4375 len = lisp_msg_parse_mapping_record (b, &deid, &locators, &probed);
4378 clib_warning ("Failed to parse mapping record!");
4379 map_records_arg_free (a);
4383 m.locators = locators;
4384 gid_address_copy (&m.eid, &deid);
4385 vec_add1 (a->mappings, m);
4391 queue_map_reply_for_processing (map_records_arg_t * a)
4393 vl_api_rpc_call_main_thread (process_map_reply, (u8 *) a, sizeof (*a));
4397 queue_map_notify_for_processing (map_records_arg_t * a)
4399 vl_api_rpc_call_main_thread (process_map_notify, (u8 *) a, sizeof (a[0]));
4403 lisp_cp_input (vlib_main_t * vm, vlib_node_runtime_t * node,
4404 vlib_frame_t * from_frame)
4406 u32 n_left_from, *from, *to_next_drop, rloc_probe_rep_recv = 0,
4407 map_notifies_recv = 0;
4408 lisp_msg_type_e type;
4409 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4410 map_records_arg_t *a;
4412 from = vlib_frame_vector_args (from_frame);
4413 n_left_from = from_frame->n_vectors;
4416 while (n_left_from > 0)
4418 u32 n_left_to_next_drop;
4420 vlib_get_next_frame (vm, node, LISP_CP_INPUT_NEXT_DROP,
4421 to_next_drop, n_left_to_next_drop);
4422 while (n_left_from > 0 && n_left_to_next_drop > 0)
4430 to_next_drop[0] = bi0;
4432 n_left_to_next_drop -= 1;
4434 b0 = vlib_get_buffer (vm, bi0);
4436 type = lisp_msg_type (vlib_buffer_get_current (b0));
4439 case LISP_MAP_REPLY:
4440 a = parse_map_reply (b0);
4443 if (a->is_rloc_probe)
4444 rloc_probe_rep_recv++;
4445 queue_map_reply_for_processing (a);
4448 case LISP_MAP_REQUEST:
4449 process_map_request (vm, node, lcm, b0);
4451 case LISP_MAP_NOTIFY:
4452 a = parse_map_notify (b0);
4455 map_notifies_recv++;
4456 queue_map_notify_for_processing (a);
4460 clib_warning ("Unsupported LISP message type %d", type);
4464 b0->error = node->errors[LISP_CP_INPUT_ERROR_DROP];
4466 if (PREDICT_FALSE (b0->flags & VLIB_BUFFER_IS_TRACED))
4472 vlib_put_next_frame (vm, node, LISP_CP_INPUT_NEXT_DROP,
4473 n_left_to_next_drop);
4475 vlib_node_increment_counter (vm, node->node_index,
4476 LISP_CP_INPUT_ERROR_RLOC_PROBE_REP_RECEIVED,
4477 rloc_probe_rep_recv);
4478 vlib_node_increment_counter (vm, node->node_index,
4479 LISP_CP_INPUT_ERROR_MAP_NOTIFIES_RECEIVED,
4481 return from_frame->n_vectors;
4485 VLIB_REGISTER_NODE (lisp_cp_input_node) = {
4486 .function = lisp_cp_input,
4487 .name = "lisp-cp-input",
4488 .vector_size = sizeof (u32),
4489 .format_trace = format_lisp_cp_input_trace,
4490 .type = VLIB_NODE_TYPE_INTERNAL,
4492 .n_errors = LISP_CP_INPUT_N_ERROR,
4493 .error_strings = lisp_cp_input_error_strings,
4495 .n_next_nodes = LISP_CP_INPUT_N_NEXT,
4498 [LISP_CP_INPUT_NEXT_DROP] = "error-drop",
4504 lisp_cp_init (vlib_main_t * vm)
4506 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4507 clib_error_t *error = 0;
4508 vlib_thread_main_t *vtm = vlib_get_thread_main ();
4511 if ((error = vlib_call_init_function (vm, lisp_gpe_init)))
4514 lcm->im4 = &ip4_main;
4515 lcm->im6 = &ip6_main;
4516 lcm->vlib_main = vm;
4517 lcm->vnet_main = vnet_get_main ();
4518 lcm->mreq_itr_rlocs = ~0;
4520 lcm->pitr_map_index = ~0;
4521 lcm->petr_map_index = ~0;
4522 clib_memset (&lcm->active_map_resolver, 0,
4523 sizeof (lcm->active_map_resolver));
4524 clib_memset (&lcm->active_map_server, 0, sizeof (lcm->active_map_server));
4526 gid_dictionary_init (&lcm->mapping_index_by_gid);
4527 lcm->do_map_resolver_election = 1;
4528 lcm->do_map_server_election = 1;
4529 lcm->map_request_mode = MR_MODE_DST_ONLY;
4531 num_threads = 1 /* main thread */ + vtm->n_threads;
4532 vec_validate (lcm->map_records_args_pool, num_threads - 1);
4534 /* default vrf mapped to vni 0 */
4535 hash_set (lcm->table_id_by_vni, 0, 0);
4536 hash_set (lcm->vni_by_table_id, 0, 0);
4538 u64 now = clib_cpu_time_now ();
4539 timing_wheel_init (&lcm->wheel, now, vm->clib_time.clocks_per_second);
4540 lcm->nsh_map_index = ~0;
4541 lcm->map_register_ttl = MAP_REGISTER_DEFAULT_TTL;
4542 lcm->max_expired_map_registers = MAX_EXPIRED_MAP_REGISTERS_DEFAULT;
4543 lcm->expired_map_registers = 0;
4544 lcm->transport_protocol = LISP_TRANSPORT_PROTOCOL_UDP;
4545 lcm->flags |= LISP_FLAG_XTR_MODE;
4550 lisp_stats_api_fill (lisp_cp_main_t * lcm, lisp_gpe_main_t * lgm,
4551 lisp_api_stats_t * stat, lisp_stats_key_t * key,
4555 vlib_combined_counter_main_t *cm = &lgm->counters;
4556 lisp_gpe_fwd_entry_key_t fwd_key;
4557 const lisp_gpe_tunnel_t *lgt;
4560 clib_memset (stat, 0, sizeof (*stat));
4561 clib_memset (&fwd_key, 0, sizeof (fwd_key));
4563 fe = pool_elt_at_index (lcm->fwd_entry_pool, key->fwd_entry_index);
4566 gid_to_dp_address (&fe->reid, &stat->deid);
4567 gid_to_dp_address (&fe->leid, &stat->seid);
4568 stat->vni = gid_address_vni (&fe->reid);
4570 lgt = lisp_gpe_tunnel_get (key->tunnel_index);
4571 stat->loc_rloc = lgt->key->lcl;
4572 stat->rmt_rloc = lgt->key->rmt;
4574 vlib_get_combined_counter (cm, stats_index, &v);
4580 vnet_lisp_get_stats (void)
4582 lisp_gpe_main_t *lgm = vnet_lisp_gpe_get_main ();
4583 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4584 lisp_api_stats_t *stats = 0, stat;
4585 lisp_stats_key_t *key;
4589 hash_foreach_mem (key, index, lgm->lisp_stats_index_by_key,
4591 if (lisp_stats_api_fill (lcm, lgm, &stat, key, index))
4592 vec_add1 (stats, stat);
4600 send_map_request_thread_fn (void *arg)
4602 map_request_args_t *a = arg;
4603 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4606 resend_encapsulated_map_request (lcm, &a->seid, &a->deid, a->smr_invoked);
4608 send_encapsulated_map_request (lcm, &a->seid, &a->deid, a->smr_invoked);
4614 queue_map_request (gid_address_t * seid, gid_address_t * deid,
4615 u8 smr_invoked, u8 is_resend)
4617 map_request_args_t a;
4619 a.is_resend = is_resend;
4620 gid_address_copy (&a.seid, seid);
4621 gid_address_copy (&a.deid, deid);
4622 a.smr_invoked = smr_invoked;
4624 vl_api_rpc_call_main_thread (send_map_request_thread_fn,
4625 (u8 *) & a, sizeof (a));
4630 * Take an action with a pending map request depending on expiration time
4631 * and re-try counters.
4634 update_pending_request (pending_map_request_t * r, f64 dt)
4636 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4639 if (r->time_to_expire - dt < 0)
4640 /* it's time to decide what to do with this pending request */
4642 if (r->retries_num >= NUMBER_OF_RETRIES)
4643 /* too many retries -> assume current map resolver is not available */
4645 mr = get_map_resolver (&lcm->active_map_resolver);
4648 clib_warning ("Map resolver %U not found - probably deleted "
4649 "by the user recently.", format_ip_address,
4650 &lcm->active_map_resolver);
4654 clib_warning ("map resolver %U is unreachable, ignoring",
4655 format_ip_address, &lcm->active_map_resolver);
4657 /* mark current map resolver unavailable so it won't be
4658 * selected next time */
4660 mr->last_update = vlib_time_now (lcm->vlib_main);
4663 reset_pending_mr_counters (r);
4664 elect_map_resolver (lcm);
4666 /* try to find a next eligible map resolver and re-send */
4667 queue_map_request (&r->src, &r->dst, r->is_smr_invoked,
4673 queue_map_request (&r->src, &r->dst, r->is_smr_invoked,
4676 r->time_to_expire = PENDING_MREQ_EXPIRATION_TIME;
4680 r->time_to_expire -= dt;
4684 remove_dead_pending_map_requests (lisp_cp_main_t * lcm)
4687 pending_map_request_t *pmr;
4688 u32 *to_be_removed = 0, *pmr_index;
4691 pool_foreach (pmr, lcm->pending_map_requests_pool,
4693 if (pmr->to_be_removed)
4695 clib_fifo_foreach (nonce, pmr->nonces, ({
4696 hash_unset (lcm->pending_map_requests_by_nonce, nonce[0]);
4699 vec_add1 (to_be_removed, pmr - lcm->pending_map_requests_pool);
4704 vec_foreach (pmr_index, to_be_removed)
4705 pool_put_index (lcm->pending_map_requests_pool, pmr_index[0]);
4707 vec_free (to_be_removed);
4711 update_rloc_probing (lisp_cp_main_t * lcm, f64 dt)
4713 static f64 time_left = RLOC_PROBING_INTERVAL;
4715 if (!lcm->is_enabled || !lcm->rloc_probing)
4721 time_left = RLOC_PROBING_INTERVAL;
4722 send_rloc_probes (lcm);
4727 update_pending_map_register (pending_map_register_t * r, f64 dt, u8 * del_all)
4729 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4733 r->time_to_expire -= dt;
4735 if (r->time_to_expire < 0)
4737 lcm->expired_map_registers++;
4739 if (lcm->expired_map_registers >= lcm->max_expired_map_registers)
4741 ms = get_map_server (&lcm->active_map_server);
4744 clib_warning ("Map server %U not found - probably deleted "
4745 "by the user recently.", format_ip_address,
4746 &lcm->active_map_server);
4750 clib_warning ("map server %U is unreachable, ignoring",
4751 format_ip_address, &lcm->active_map_server);
4753 /* mark current map server unavailable so it won't be
4754 * elected next time */
4756 ms->last_update = vlib_time_now (lcm->vlib_main);
4759 elect_map_server (lcm);
4761 /* indication for deleting all pending map registers */
4763 lcm->expired_map_registers = 0;
4768 /* delete pending map register */
4776 update_map_register (lisp_cp_main_t * lcm, f64 dt)
4778 u32 *to_be_removed = 0, *pmr_index;
4779 static f64 time_left = QUICK_MAP_REGISTER_INTERVAL;
4780 static u64 mreg_sent_counter = 0;
4782 pending_map_register_t *pmr;
4785 if (!lcm->is_enabled || !lcm->map_registering)
4789 pool_foreach (pmr, lcm->pending_map_registers_pool,
4791 if (!update_pending_map_register (pmr, dt, &del_all))
4795 vec_add1 (to_be_removed, pmr - lcm->pending_map_registers_pool);
4802 /* delete all pending map register messages so they won't
4803 * trigger another map server election.. */
4804 pool_free (lcm->pending_map_registers_pool);
4805 hash_free (lcm->map_register_messages_by_nonce);
4807 /* ..and trigger registration against next map server (if any) */
4812 vec_foreach (pmr_index, to_be_removed)
4813 pool_put_index (lcm->pending_map_registers_pool, pmr_index[0]);
4816 vec_free (to_be_removed);
4821 if (mreg_sent_counter >= QUICK_MAP_REGISTER_MSG_COUNT)
4822 time_left = MAP_REGISTER_INTERVAL;
4825 mreg_sent_counter++;
4826 time_left = QUICK_MAP_REGISTER_INTERVAL;
4828 send_map_register (lcm, 1 /* want map notify */ );
4833 send_map_resolver_service (vlib_main_t * vm,
4834 vlib_node_runtime_t * rt, vlib_frame_t * f)
4838 pending_map_request_t *pmr;
4839 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4843 vlib_process_wait_for_event_or_clock (vm, period);
4845 /* currently no signals are expected - just wait for clock */
4846 (void) vlib_process_get_events (vm, 0);
4849 pool_foreach (pmr, lcm->pending_map_requests_pool,
4851 if (!pmr->to_be_removed)
4852 update_pending_request (pmr, period);
4856 remove_dead_pending_map_requests (lcm);
4858 update_map_register (lcm, period);
4859 update_rloc_probing (lcm, period);
4861 u64 now = clib_cpu_time_now ();
4863 expired = timing_wheel_advance (&lcm->wheel, now, expired, 0);
4864 if (vec_len (expired) > 0)
4867 vec_foreach (mi, expired)
4869 process_expired_mapping (lcm, mi[0]);
4871 _vec_len (expired) = 0;
4880 vnet_lisp_stats_enable_disable (u8 enable)
4882 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4884 if (vnet_lisp_enable_disable_status () == 0)
4885 return VNET_API_ERROR_LISP_DISABLED;
4888 lcm->flags |= LISP_FLAG_STATS_ENABLED;
4890 lcm->flags &= ~LISP_FLAG_STATS_ENABLED;
4896 vnet_lisp_stats_enable_disable_state (void)
4898 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4900 if (vnet_lisp_enable_disable_status () == 0)
4901 return VNET_API_ERROR_LISP_DISABLED;
4903 return lcm->flags & LISP_FLAG_STATS_ENABLED;
4907 VLIB_REGISTER_NODE (lisp_retry_service_node,static) = {
4908 .function = send_map_resolver_service,
4909 .type = VLIB_NODE_TYPE_PROCESS,
4910 .name = "lisp-retry-service",
4911 .process_log2_n_stack_bytes = 16,
4916 vnet_lisp_set_transport_protocol (u8 protocol)
4918 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4920 if (protocol < LISP_TRANSPORT_PROTOCOL_UDP ||
4921 protocol > LISP_TRANSPORT_PROTOCOL_API)
4922 return VNET_API_ERROR_INVALID_ARGUMENT;
4924 lcm->transport_protocol = protocol;
4928 lisp_transport_protocol_t
4929 vnet_lisp_get_transport_protocol (void)
4931 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4932 return lcm->transport_protocol;
4936 vnet_lisp_enable_disable_xtr_mode (u8 is_enabled)
4938 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4939 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
4940 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
4941 u8 petr_mode = lcm->flags & LISP_FLAG_PETR_MODE;
4943 if (pitr_mode && is_enabled)
4944 return VNET_API_ERROR_INVALID_ARGUMENT;
4946 if (is_enabled && xtr_mode)
4948 if (!is_enabled && !xtr_mode)
4955 lisp_cp_register_dst_port (lcm->vlib_main);
4957 lisp_cp_enable_l2_l3_ifaces (lcm, 1 /* with_default_route */ );
4958 lcm->flags |= LISP_FLAG_XTR_MODE;
4964 lisp_cp_unregister_dst_port (lcm->vlib_main);
4966 lisp_cp_disable_l2_l3_ifaces (lcm);
4967 lcm->flags &= ~LISP_FLAG_XTR_MODE;
4973 vnet_lisp_enable_disable_pitr_mode (u8 is_enabled)
4975 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4976 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
4977 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
4979 if (xtr_mode && is_enabled)
4980 return VNET_API_ERROR_INVALID_VALUE;
4982 if (is_enabled && pitr_mode)
4984 if (!is_enabled && !pitr_mode)
4989 /* create iface, no default route */
4990 lisp_cp_enable_l2_l3_ifaces (lcm, 0 /* with_default_route */ );
4991 lcm->flags |= LISP_FLAG_PITR_MODE;
4995 lisp_cp_disable_l2_l3_ifaces (lcm);
4996 lcm->flags &= ~LISP_FLAG_PITR_MODE;
5002 vnet_lisp_enable_disable_petr_mode (u8 is_enabled)
5004 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
5005 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
5006 u8 petr_mode = lcm->flags & LISP_FLAG_PETR_MODE;
5008 if (is_enabled && petr_mode)
5010 if (!is_enabled && !petr_mode)
5017 lisp_cp_register_dst_port (lcm->vlib_main);
5019 lcm->flags |= LISP_FLAG_PETR_MODE;
5025 lisp_cp_unregister_dst_port (lcm->vlib_main);
5027 lcm->flags &= ~LISP_FLAG_PETR_MODE;
5033 vnet_lisp_get_xtr_mode (void)
5035 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
5036 return (lcm->flags & LISP_FLAG_XTR_MODE);
5040 vnet_lisp_get_pitr_mode (void)
5042 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
5043 return (lcm->flags & LISP_FLAG_PITR_MODE);
5047 vnet_lisp_get_petr_mode (void)
5049 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
5050 return (lcm->flags & LISP_FLAG_PETR_MODE);
5053 VLIB_INIT_FUNCTION (lisp_cp_init);
5056 * fd.io coding-style-patch-verification: ON
5059 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob