vpp.git
5 years agonat: deterministic: disallow invalid config 48/27648/3
Klement Sekera [Tue, 23 Jun 2020 13:12:33 +0000 (13:12 +0000)]
nat: deterministic: disallow invalid config

Prevent overflow if input network prefix is too small and crash on
packet #1 due to vector not being allocated/initialized.

Type: fix
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: I3494cc62ce889df48cc59cc9340b5dd70338c3a8

5 years agoudp: jump over ip4 options 51/27651/3
Florin Coras [Tue, 23 Jun 2020 21:11:01 +0000 (14:11 -0700)]
udp: jump over ip4 options

Type: improvement

Signed-off-by: Florin Coras <[email protected]>
Change-Id: I4f57a776302e11815fcea433ba8cf6724799ff65

5 years agovppinfra: fix u32x4_gather definition 50/27650/1
Damjan Marion [Tue, 23 Jun 2020 17:01:56 +0000 (19:01 +0200)]
vppinfra: fix u32x4_gather definition

Type: fix
Change-Id: I3df8d3f277bfadee95bfc329e8ce8b929a986af6
Signed-off-by: Damjan Marion <[email protected]>
5 years agovlib: debug CLI macro expander, part deux 40/27640/2
Dave Barach [Mon, 22 Jun 2020 14:02:25 +0000 (10:02 -0400)]
vlib: debug CLI macro expander, part deux

Deal with circular macro definitions instead of crashing due to stack
overflow.

Separate macro tables, per CLI session

Add documentation to the Sphinx docs

Type: improvement

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I55fc9152bd37ad0c15fa3959f38b07b63100e634

5 years agonat: fix broken test 39/27639/2
Klement Sekera [Mon, 22 Jun 2020 13:15:41 +0000 (13:15 +0000)]
nat: fix broken test

Type: fix
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: I04952865b7e2b447763d0b67d120c3d933177646

5 years agoip6-nd: punt neighbor advertisements 99/27499/2
Alexander Chernavin [Thu, 11 Jun 2020 13:57:33 +0000 (09:57 -0400)]
ip6-nd: punt neighbor advertisements

With this change, punt received neighbor advertisements instead of drop
in order to give other elements of the system an opportunity to handle
them.

Type: improvement
Change-Id: Ie6cde9eebc83e42029967141cb32ebc459fd3680
Signed-off-by: Alexander Chernavin <[email protected]>
5 years agonat: set buf error if can't create user 38/27638/1
Klement Sekera [Mon, 22 Jun 2020 12:52:29 +0000 (12:52 +0000)]
nat: set buf error if can't create user

Type: fix
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: I747d78966a7296dcbae54d54b0c165d407c8863d

5 years agoikev2: use both local and remote ID for profile lookup 85/27085/3
Filip Tehlar [Sun, 10 May 2020 05:18:37 +0000 (05:18 +0000)]
ikev2: use both local and remote ID for profile lookup

Type: fix
Ticket: VPP-1890

Change-Id: I9441d5afc38df7dabf6cccaead69dd32646d2a9e
Signed-off-by: Filip Tehlar <[email protected]>
5 years agovpp_config: Updates for 20.05 23/27623/3
John DeNisco [Fri, 19 Jun 2020 19:28:48 +0000 (15:28 -0400)]
vpp_config: Updates for 20.05

Added external dependancies package. Updated the startup.conf template.

Fix extras/scripts/check_commit_msg so it accepts '_' characters in
feature names.

Type: fix

Signed-off-by: John DeNisco <[email protected]>
Change-Id: I69c33a24b30d31e5b8081021030bff88cbaeace9
Signed-off-by: Dave Barach <[email protected]>
5 years agotests: improve lcov stats for memory_api.c 68/27568/2
Dave Barach [Mon, 15 Jun 2020 21:38:12 +0000 (17:38 -0400)]
tests: improve lcov stats for memory_api.c

Cover vl_mem_api_dead_client_scan(...), which is not so simple.  Spin
up vpp_api_test using pexpect.spawn, make it bootstrap a private
memory segment, kill vpp_api_test, and wait for the dead client
scanner to run a few times so that it declares the client dead.

The test only runs if GCOV_TESTS=yes is set in the environment.

Type: test

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I3c712fa011df2e23761a2e73c1aba0c7e50123a6

5 years agotests: add ikev2 test framework with basic test case 36/27536/5
Filip Tehlar [Sun, 26 Apr 2020 18:05:05 +0000 (18:05 +0000)]
tests: add ikev2 test framework with basic test case

Ticket: VPP-1905
Type: test

Change-Id: Ie66fbd8e37eb5e69bd61b701ed3449366bee8c84
Signed-off-by: Filip Tehlar <[email protected]>
5 years agobuild: add cmake dependency from test plugin to api 88/27588/2
Tom Seidenberg [Wed, 17 Jun 2020 21:31:44 +0000 (17:31 -0400)]
build: add cmake dependency from test plugin to api

Type: fix

Signed-off-by: Tom Seidenberg <[email protected]>
Change-Id: I00fa22733bd293e56eb6b81346fdf2d75ad9d88f

5 years agovlib: add recursive macro expander to debug cli 97/27597/2
Dave Barach [Thu, 18 Jun 2020 21:04:18 +0000 (17:04 -0400)]
vlib: add recursive macro expander to debug cli

All of the pieces have been sitting around for years.

Added several debug CLI commands:

"define <variable-name> <value>"
"undefine <variable-name>"
"show macro [noeval]"
"echo <whatever>"

Macros may refer to other macros. To defer evaluation:
"define foo \$(bar)" or some such.

The macro evaluator is not smart about "define foo \$(foo)" or more
complicated circular definitions, so don't do that.

Environment variables are available, simply use $<name-of-environment-vbl>

The macro expander has a table of (overrideable) builtin names, which
are evaluated by calling functions.

Simple example:

echo $USER
define ip1 192.168.1.1/24
define ip2 192.168.2.1/24

loop create
loop create
set int ip address loop0 $ip1
set int ip address loop1 $ip2
show int addr
show macro
undefine ip1
undefine ip2

Type: feature

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I08a800647bac573d8ae3cfd75c40061d41c5f976

5 years agonat: remove unused code 93/27593/3
Klement Sekera [Thu, 18 Jun 2020 12:48:42 +0000 (12:48 +0000)]
nat: remove unused code

Type: refactor
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: Icc55276c8a4c256049718610cb131a34dc8d0a80

5 years agodocs: add more FEATURE.yaml documentation 87/27587/1
Dave Barach [Wed, 17 Jun 2020 20:31:34 +0000 (16:31 -0400)]
docs: add more FEATURE.yaml documentation

For src/tools/g2, src/vlibapi, and src/vlibmemory

Type: docs

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I800c3e3a1ecb011d5e692d78a015e78342706786

5 years agodocs: add more FEATURE.yaml documentation 84/27584/2
Dave Barach [Wed, 17 Jun 2020 12:41:22 +0000 (08:41 -0400)]
docs: add more FEATURE.yaml documentation

This patch documents the DNS plugin, vlib packet tracing, vnet feature
arcs, and the vppinfra library.

Type: docs

Signed-off-by: Dave Barach <[email protected]>
Change-Id: Idb16ec0593d428ce78fe8404374a823a56b4b420

5 years agonat: print hash table parameters in CLI 83/27583/2
Klement Sekera [Thu, 11 Jun 2020 14:00:52 +0000 (14:00 +0000)]
nat: print hash table parameters in CLI

Type: improvement
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: Id6ab7e2ca965e860ea3f96145a888e0f3ccf9778

5 years agobuild: multiple yaml file support 82/27582/1
Dave Barach [Wed, 17 Jun 2020 12:05:37 +0000 (08:05 -0400)]
build: multiple yaml file support

Change the yaml file matching pattern from FEATURE.yaml to
FEATURE*.yaml, so we can document multiple features in one directory.

Type: improvement

Signed-off-by: Dave Barach <[email protected]>
Change-Id: Ic62f9fb4c73330c698724244cd8b362364fce5f9

5 years agonat: add more trex test scripts 76/27576/2
Klement Sekera [Tue, 16 Jun 2020 13:28:09 +0000 (13:28 +0000)]
nat: add more trex test scripts

Type: improvement
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: Ia824d663c86d6a7c9bafe0206e9a93f93884739d

5 years agobuild: cmake cross-compilation fixes 77/27577/2
Damjan Marion [Tue, 16 Jun 2020 14:05:12 +0000 (16:05 +0200)]
build: cmake cross-compilation fixes

Type: fix
Change-Id: I40337c208375b74b4dc3c35102c5e66a6e4568e8
Signed-off-by: Damjan Marion <[email protected]>
5 years agoip-neighbor: fix MLD hash key using stack pointer 74/27574/2
Benoît Ganne [Tue, 16 Jun 2020 10:07:09 +0000 (12:07 +0200)]
ip-neighbor: fix MLD hash key using stack pointer

Use pointed value (ipv6 address) as hash key instead of pointer value
(pointer to ipv6 address on the stack).

Type: fix

Change-Id: I74a8b6d4bb552b5b344bcb50c8e830700c4ce739
Signed-off-by: Benoît Ganne <[email protected]>
5 years agomisc: fix sonarclound warnings 75/27575/4
Dave Barach [Tue, 16 Jun 2020 12:40:53 +0000 (08:40 -0400)]
misc: fix sonarclound warnings

Type: fix
Ticket: VPP-1888
Signed-off-by: Dave Barach <[email protected]>
Change-Id: I9c2fb926a5e010658088a74051c8c3462ff61734

5 years agovlib: address sanitizer support for stack switch, enable clang 99/27199/4
Damjan Marion [Thu, 21 May 2020 14:47:05 +0000 (16:47 +0200)]
vlib: address sanitizer support for stack switch, enable clang

Type: improvement
Change-Id: I81df4b61d1f0b8c1df77c1ee9bebcb491e155b69
Signed-off-by: Damjan Marion <[email protected]>
5 years agobuild: fix address sanitizer default args 73/27573/2
Benoît Ganne [Tue, 16 Jun 2020 10:05:07 +0000 (12:05 +0200)]
build: fix address sanitizer default args

Type: fix
Fixes: ec3a3f16e4cd3b33e2a409fb01b8d8826e05f9fa

Change-Id: Iea3acd93a96b4bfc9f335e37ec04c00e8fa5ff27
Signed-off-by: Benoît Ganne <[email protected]>
5 years agointerface: add minimal vpp pkt trace for error-drop 88/27488/2
Dave Barach [Wed, 10 Jun 2020 21:07:32 +0000 (17:07 -0400)]
interface: add minimal vpp pkt trace for error-drop

Provide a minimal trace [ip4/ip6 src/dst address] for dropped pkts
when the user specifies "trace add error-drop XXXX", but does not
trace pkts from the original input node.

This is a wireshark dissector problem. Packets thrown at error-drop
may be well-formed, or not. VPP must not crash, no matter what.

The minimal trace capture and decode could be enhanced. Anyone
interested in doing that must consider all of the corner-cases
involved. This version should be at least somewhat useful.

Note that "pcap trace drop ..." - and the packet generator - seem like
the right tools to use when researching more complex issues.

Type: improvement

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I961ca133980ffa2a1e5707879a443b21442ed894

5 years agonat: improve outside port selection & perf 64/27464/7
Klement Sekera [Mon, 8 Jun 2020 11:10:55 +0000 (11:10 +0000)]
nat: improve outside port selection & perf

Prefer using source port form packet as outside port if possible.

Type: improvement
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: I5c25f6a42386f38c9a6cc95bd7dda9f090b49817

5 years agogtpu: support separate rx-decap and encap-tx teid values 89/27489/3
John Lo [Thu, 11 Jun 2020 04:20:45 +0000 (00:20 -0400)]
gtpu: support separate rx-decap and encap-tx teid values

Support separate local and remote TEIDs, with local (or RX) one used
for GTPU tunnel RX/decap and remote (or TX) one used encap/TX.
Updated current gtpu API to support seperate RX/TX TEIDs and added new
gtpu_tunnel_update_tteid API to allow changing TX-TEID of an existing
GTPU tunnel.  The current tunnel field "teid" is used for RX-TEID and
a new field "tteid" is used for TX-TEID.

Type: improvement

Signed-off-by: John Lo <[email protected]>
Change-Id: I549d79750a34bb965036da298c0ca894d15c2c20

5 years agovirtio: add vhost sw_if_index filter for sw_interface_vhost_user_dump 30/27130/3
Steven Luong [Tue, 19 May 2020 00:12:56 +0000 (17:12 -0700)]
virtio: add vhost sw_if_index filter for sw_interface_vhost_user_dump

The filter sw_if_index was in the API sw_interface_vhost_user_dump. But
it was never implemented in the backend. This patch is to add the backend,
vat, and custom dump support for the filter.

Type: feature

Signed-off-by: Steven Luong <[email protected]>
Change-Id: Iaa41a7e11bfbcbb4c60092375e4b0dcf0950077b

5 years agogso: fix the udp checksum in test 83/27483/4
Mohsin Kazmi [Wed, 10 Jun 2020 10:35:05 +0000 (12:35 +0200)]
gso: fix the udp checksum in test

Type: fix

Change-Id: I7005e4763e73f3679c40f94bdab26d439cd23188
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agoapi: check id is valid for bounce checking 71/24471/4
Benoît Ganne [Tue, 21 Jan 2020 17:33:14 +0000 (18:33 +0100)]
api: check id is valid for bounce checking

If the id is invalid we cannot check whether we must free the message or
not, free it anyway.

Type: fix

Change-Id: Ie4426f601390d1e5e14c739f670e8c1e6e3aaf1e
Signed-off-by: Benoît Ganne <[email protected]>
5 years agobuild: remove un-needed script 65/27565/2
Simon Chatterjee [Mon, 15 Jun 2020 17:17:18 +0000 (17:17 +0000)]
build: remove un-needed script

The move to cmake obviates the need for this build script (and its terminology).

Type: make

Signed-off-by: Simon Chatterjee <[email protected]>
Change-Id: Ie17429bfdf5a4b02ce2b70ba3568a7445c162d38

5 years agovcl: move helper functions out of header file 37/27537/2
Florin Coras [Mon, 15 Jun 2020 14:59:40 +0000 (07:59 -0700)]
vcl: move helper functions out of header file

Type: improvement

Signed-off-by: Florin Coras <[email protected]>
Change-Id: I3889fd80b145cf80f76f6054d63247e76bdf20ff

5 years agobuild: fix the build on centos8 69/27469/2
Yichen Wang [Tue, 9 Jun 2020 00:13:01 +0000 (17:13 -0700)]
build: fix the build on centos8

Add missing dependencies and correct the building to support CentOS8

Type: make

Change-Id: Ie15b9b1174fa9b6d5ae02bace36ebc77e17d770c
Signed-off-by: Yichen Wang <[email protected]>
5 years agovxlan: remove judgement with always true 77/27477/2
Zhiyong Yang [Wed, 10 Jun 2020 13:23:50 +0000 (13:23 +0000)]
vxlan: remove judgement with always true

if ((A | B) == false)  it means both A and B are false, so for
the following code

if (PREDICT_FALSE (!good_udp1))
      {
        if ((flags1 & VNET_BUFFER_F_L4_CHECKSUM_COMPUTED) == 0)
          {
              ...
          }
      }
if ((flags1 & VNET_BUFFER_F_L4_CHECKSUM_COMPUTED) == 0) is always
true if the code run it. Remove it.

Type: improvement

Signed-off-by: Zhiyong Yang <[email protected]>
Change-Id: I6bd1e9340c7a00089fc1c9ae49773add832d309e

5 years agobuffers: fix non-default sized buffers initialization 31/27531/2
Benoît Ganne [Mon, 15 Jun 2020 10:24:36 +0000 (12:24 +0200)]
buffers: fix non-default sized buffers initialization

Type: fix

Change-Id: I4a93e1d9936414c514cb237a22624986b3ef5b3d
Signed-off-by: Benoît Ganne <[email protected]>
5 years agodpdk: cryptodev: fix non-null terminated strings 12/27412/2
Benoît Ganne [Tue, 2 Jun 2020 14:33:26 +0000 (16:33 +0200)]
dpdk: cryptodev: fix non-null terminated strings

Type: fix

Change-Id: Ib6f423e24f1a8d8439cd7e8893e4605e10984d48
Signed-off-by: Benoît Ganne <[email protected]>
5 years agoikev2: announce both 'ESN' and 'No ESN' 23/27523/2
Filip Tehlar [Sat, 6 Jun 2020 18:45:15 +0000 (18:45 +0000)]
ikev2: announce both 'ESN' and 'No ESN'

Type: fix

Change-Id: If73b88b9478b9314df6d9163c3a13724d4253c80
Signed-off-by: Filip Tehlar <[email protected]>
5 years agovlib: node recyling and node deletion missing triggering graph node sync 91/27491/6
Steven Luong [Thu, 11 Jun 2020 06:38:41 +0000 (23:38 -0700)]
vlib: node recyling and node deletion missing triggering graph node sync

When recycling a graph node vnet_register_interface, it is missing an
explicit call to vlib_worker_thread_node_runtime_update(). However,
there is an implicit call to vlib_worker_thread_node_runtime_update()
via vnet_sw_interface_set_flags_helper() if it enables a new feature on
the interface for the first time. But that implicit call is not
guaranteed. For example, if an interface is created, deleted, and
created, then it may skip the implicit call to
vlib_worker_thread_node_runtime_update(). When that happens, the graph
nodes on thread 0 are not sync'ed to the worker threads. So the worker
thread's graph nodes are out of sync momentarily with the main thread's
graph nodes until some other event happens which calls for a sync is
needed. During this window, the worker thread's graph node is
vulnerable and may experience a crash.

When deleting a graph node, we never trigger a sync to the worker
thread. A patch was committed 3 years ago via
https://gerrit.fd.io/r/c/vpp/+/7523 to fix a show run crash. In
hindsight, the approach taken by 7523 is not orthogonal. While at it,
let's fix it right for both issues with a call to
vlib_worker_thread_node_runtime_update() in the appropriate place and
remove 7523.

Type: fix
Ticket: VPPSUPP-86
Fixes: gerrit 7523 / 19e9d954bd9eb4f04d48640d6540198e84ef65d7

Signed-off-by: Steven Luong <[email protected]>
Change-Id: Ic9472bd2d3a212dbfeceb526506ed0400983a142

5 years agovirtio: interface type based improvements 83/25383/11
Mohsin Kazmi [Wed, 3 Jun 2020 16:20:17 +0000 (18:20 +0200)]
virtio: interface type based improvements

Type: improvement

Change-Id: I220ea6ab609e3c1628f5210be441d0d5e825a32c
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agoip: allocate ip4 mtrie pages in htlb memory 98/27498/2
Dave Barach [Thu, 11 Jun 2020 12:57:52 +0000 (08:57 -0400)]
ip: allocate ip4 mtrie pages in htlb memory

No change in default behavior. To use htlb pages for the ip4 mtrie,
use the "ip" command-line option "mtrie-hugetlb".

Type: improvement

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I5497e426a47200edff2c7e15563ed6a42af12e7f

5 years agoikev2: don't add DH group in ESP transform proposals 92/27492/4
Filip Tehlar [Sat, 6 Jun 2020 01:19:31 +0000 (01:19 +0000)]
ikev2: don't add DH group in ESP transform proposals

Type: fix

Anouncing DH group in esp transform proposals will enable PFS which is
not suppored now. This fixes issue during rekey when using strongswan as
responder.

Change-Id: Ib9f586113ae0ab9dc67e6ceadff43f8aac463820
Signed-off-by: Filip Tehlar <[email protected]>
5 years agonat: properly scale out2in-ed hash on init 96/27496/1
Klement Sekera [Thu, 11 Jun 2020 10:35:52 +0000 (10:35 +0000)]
nat: properly scale out2in-ed hash on init

Type: fix
Fixes: a1018c166a468f7692ab621c743503914266f508
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: I86592f73a60fd146d3764e474f975881e940c244

5 years agonat: simplify bihash buckets/mem config 44/27444/9
Klement Sekera [Fri, 27 Mar 2020 10:54:53 +0000 (11:54 +0100)]
nat: simplify bihash buckets/mem config

Derive reasonable values from max translations/max users.

Type: improvement
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: I41a96ab63ab138b4160cd60bd6df24fc73791c86

5 years agovapi: memset allocated messages to zero 72/27472/3
Klement Sekera [Tue, 9 Jun 2020 14:17:45 +0000 (14:17 +0000)]
vapi: memset allocated messages to zero

This avoids using dirty data from shared memory by client.

Type: fix
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: I96eecf655bf344ec29609cedbd8dc891b572e207

5 years agoip: reassembly: LRU algorithm should eliminate the longest unused nodes 09/27209/5
zhengdelun [Fri, 22 May 2020 07:42:28 +0000 (15:42 +0800)]
ip: reassembly: LRU algorithm should eliminate the longest unused nodes

Type: fix

Signed-off-by: zhengdelun <[email protected]>
Change-Id: I3f6240b4c0798f85960acc55a193a0cbf0c67ea4

5 years agonat: optimize prefetching 65/27465/2
Klement Sekera [Mon, 8 Jun 2020 11:28:53 +0000 (11:28 +0000)]
nat: optimize prefetching

Type: improvement
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: Iea1748e8e39d213fcb3f3b52379bd37a6dd6aa3d

5 years agotap: enable gso/csum offload for tun 51/27451/3
Mohsin Kazmi [Fri, 5 Jun 2020 12:43:38 +0000 (14:43 +0200)]
tap: enable gso/csum offload for tun

Type: improvement

Change-Id: I5b9d5ea192776f14a45bf909acc4bef7793521e8
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agovxlan: fix the inner packet checksum calculation 95/27395/3
Mohsin Kazmi [Tue, 2 Jun 2020 13:21:03 +0000 (15:21 +0200)]
vxlan: fix the inner packet checksum calculation

Type: fix

Change-Id: I1da4ace9f3e548af4b5b3373d695e4214c5df2ff
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agomisc: add code styling for vxlan encap and vxlan_packet files 94/27394/3
Mohsin Kazmi [Tue, 2 Jun 2020 13:12:30 +0000 (15:12 +0200)]
misc: add code styling for vxlan encap and vxlan_packet files

Type: style

Change-Id: Id363ccd0e51c61388fb45ef10685929f629cccbd
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agotcp: improve rtt estimation with rate sampling 59/27459/11
Florin Coras [Sun, 7 Jun 2020 20:06:56 +0000 (20:06 +0000)]
tcp: improve rtt estimation with rate sampling

Type: improvement

Signed-off-by: Florin Coras <[email protected]>
Change-Id: I25043da84b2f2b3f37024ecfedac535df3004ea5

5 years agovlib: stop inlining vlib_add_trace(...) 67/27467/2
Dave Barach [Mon, 8 Jun 2020 15:17:19 +0000 (11:17 -0400)]
vlib: stop inlining vlib_add_trace(...)

Packet tracing performance doesn't justify inlining
vlib_add_trace(...) over 500 times.

It makes a 15% text-segment size difference in a representative use-case:

Inline:
$ size .../vnet_skx.dir/ipsec/ipsec_input.c.o
   text    data     bss     dec     hex filename
   6831      80       0    6911    1aff .../vnet_skx.dir/ipsec/ipsec_input.c.o

Not inline:
$ size .../vnet_skx.dir/ipsec/ipsec_input.c.o
   text    data     bss     dec     hex filename
   5776      80       0    5856    16e0 .../vnet_skx.dir/ipsec/ipsec_input.c.o

Retain the original code as vlib_add_trace_inline, instantiate once as
vlib_add_trace.

Type: refactor
Signed-off-by: Dave Barach <[email protected]>
Change-Id: Iaf431dbf00c4aad03663d86f9dd1322e84d03962

5 years agovlib: Coverity fix 66/27466/3
Dave Barach [Mon, 8 Jun 2020 13:40:36 +0000 (09:40 -0400)]
vlib: Coverity fix

Fix a nit warning: we're not likely to create a vlib process with more
than 4gb of stack.

Type: fix
Ticket: VPP-1888

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I8bc7f64287c2802b0c286ce3d04443ac723a9a33

5 years agovxlan: Fixed checksum caclculation offset 95/27195/12
Vladimir Isaev [Thu, 21 May 2020 13:34:17 +0000 (16:34 +0300)]
vxlan: Fixed checksum caclculation offset

VXLAN uses csum_offload for IPv6 packets.

But without gso node we have csum calculated only for inner
packet.
This patch adds support for outer header csum calculation.
Checksum for inner packet should be calculated before
interface-output node (for example in vxlan node).

Type: fix

Signed-off-by: Mohsin Kazmi <[email protected]>
Signed-off-by: Vladimir Isaev <[email protected]>
Change-Id: Ica68429ede4426293769207cd83c791ebe72fe56

5 years agonat: more long read after short write optimization 00/27400/5
Klement Sekera [Tue, 19 May 2020 17:47:23 +0000 (17:47 +0000)]
nat: more long read after short write optimization

Replace whitespread (mis)use of snat_session_key_t by proper function
arguments where applicable and inline functions to calculate hash keys
instead of using structs for that. Make all hash tables use same network
byte order port so that there is no longer a discrepancy between static
mappings using host byte order while in2out/out2in tables using network
byte order.

Type: improvement
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: I80786d2f947c67824c101a13bb608f1fe1080f34

5 years agomactime: print error if feature not enabled 58/27458/1
Dave Barach [Sun, 7 Jun 2020 13:18:26 +0000 (09:18 -0400)]
mactime: print error if feature not enabled

Type: fix

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I8fbc4baefecf512573126c5085ed7a6e2e360fbe

5 years agofib: fix multiple dpo pool expand cases 54/27454/2
Dave Barach [Fri, 5 Jun 2020 13:42:50 +0000 (09:42 -0400)]
fib: fix multiple dpo pool expand cases

Add dpo_pool_barrier_sync/release, use them to clean up
thread-unsafe pool expansion cases.

Type: fix

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I09299124a25f8d541e3bb4b75375568990e9b911

5 years agofib: fix adj pool expand cases 48/27448/1
Dave Barach [Fri, 5 Jun 2020 11:06:21 +0000 (07:06 -0400)]
fib: fix adj pool expand cases

adj_alloc (...) is not thread safe when the adj pool or combined
counter vectors expand.

Type: fix

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I55710de6ecc083b7434e11798659cca9250c9131

5 years agobuild: add libssl-dev library for ubuntu 20.04 17/27417/3
Jieqiang Wang [Thu, 4 Jun 2020 06:09:57 +0000 (14:09 +0800)]
build: add libssl-dev library for ubuntu 20.04

Add the libssl-dev library for ubuntu 20.04 in Makefile.

Type: fix

Signed-off-by: Jieqiang Wang <[email protected]>
Change-Id: I4187cb041997e7457734ffdb18bdbec98a051669

5 years agofib: add barrier sync, pool/vector expand cases 07/27407/2
Dave Barach [Wed, 3 Jun 2020 12:05:15 +0000 (08:05 -0400)]
fib: add barrier sync, pool/vector expand cases

load_balance_alloc_i(...) is not thread safe when the
load_balance_pool or combined counter vectors expand.

Type: fix

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I7f295ed77350d1df0434d5ff461eedafe79131de

5 years agonat: fix coverity warning 42/27442/2
Klement Sekera [Thu, 4 Jun 2020 12:41:43 +0000 (12:41 +0000)]
nat: fix coverity warning

Type: fix

Change-Id: I0e87021b11009a955f5839bdb68af897145816c1
Signed-off-by: Klement Sekera <[email protected]>
5 years agoikev2: session cleanup after profile is deleted 88/27188/6
Filip Tehlar [Sun, 10 May 2020 22:13:55 +0000 (22:13 +0000)]
ikev2: session cleanup after profile is deleted

Type: fix

Change-Id: I3198461f3dfc13cd3cedf2b8611dc80bb6f959c8
Signed-off-by: Filip Tehlar <[email protected]>
5 years agodpdk: cleanup, add rx queue struct 13/27413/2
Damjan Marion [Wed, 3 Jun 2020 18:13:59 +0000 (20:13 +0200)]
dpdk: cleanup, add rx queue struct

Type: improvement
Change-Id: I3defde103ab245404de42d2be7abcb2c43d49a60
Signed-off-by: Damjan Marion <[email protected]>
5 years agonat: fixed input validation 10/27410/2
Filip Varga [Wed, 3 Jun 2020 13:26:41 +0000 (15:26 +0200)]
nat: fixed input validation

Ticket: VPP-1887
Type: fix

Change-Id: I341ac7b455926a106d736f4de6771aae655db82e
Signed-off-by: Filip Varga <[email protected]>
5 years agonat: add tracing for nat44-hairpinning 88/27288/5
Klement Sekera [Wed, 27 May 2020 12:41:34 +0000 (12:41 +0000)]
nat: add tracing for nat44-hairpinning

Type: improvement
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: Ife437f959e29d3de88bd7ee77221ada86fb03e80

5 years agodocs: improve handoff queue writeup 93/27393/2
Dave Barach [Tue, 2 Jun 2020 12:57:36 +0000 (08:57 -0400)]
docs: improve handoff queue writeup

Type: docs
Signed-off-by: Dave Barach <[email protected]>
Change-Id: I4d63a0fbbdb3cc00eac9116f122e5b831d059e33

5 years agovlib: improve node interrupt handling 04/27404/2
Damjan Marion [Wed, 3 Jun 2020 10:20:41 +0000 (12:20 +0200)]
vlib: improve node interrupt handling

 - add ability to pass data together with interrupt
 - avoid locking for local interrupts (same thread)

Type: improvement

Change-Id: I73a2ab2e716bb887a1f02c87788ae83e329f9b40
Signed-off-by: Damjan Marion <[email protected]>
5 years agonat: refactor mss_clamping to not depend on snat_main_t 02/27402/1
Ole Troan [Wed, 3 Jun 2020 09:47:55 +0000 (11:47 +0200)]
nat: refactor mss_clamping to not depend on snat_main_t

Type: refactor
Signed-off-by: Ole Troan <[email protected]>
Change-Id: I1110e425859a4f1f07952c91b50f263cb7323836

5 years agobash: functions to set up csit and sandbox env 67/26767/8
Andrew Yourtchenko [Wed, 29 Apr 2020 16:48:24 +0000 (16:48 +0000)]
bash: functions to set up csit and sandbox env

Type: test

Change-Id: Iceaebfe2faf29a893b9571069212e951273c3d2b
Signed-off-by: Andrew Yourtchenko <[email protected]>
Signed-off-by: John DeNisco <[email protected]>
Signed-off-by: Dave Wallace <[email protected]>
5 years agoikev2: remove unused hash computation 52/27352/3
Filip Tehlar [Mon, 25 May 2020 21:35:55 +0000 (21:35 +0000)]
ikev2: remove unused hash computation

Type: improvement

Change-Id: I99c2383dd0d30efd1837f3d10ff2e4cf3a784283
Signed-off-by: Filip Tehlar <[email protected]>
5 years agoip: fix IPv6 mask to prefix length conversion 16/27016/3
Andreas Schultz [Tue, 12 May 2020 12:41:16 +0000 (14:41 +0200)]
ip: fix IPv6 mask to prefix length conversion

make sure we don't pass a 0 (zero) to log2.

Type: fix

Signed-off-by: Andreas Schultz <[email protected]>
Change-Id: Ib3386ad4686835d3836f48294cee4058e897847a

5 years agonat: update ip4-udp src port for checksum == 0 pkts 47/27347/2
Dave Barach [Fri, 29 May 2020 20:34:50 +0000 (16:34 -0400)]
nat: update ip4-udp src port for checksum == 0 pkts

Otherwise, the out2in path will discard return-path traffic with
probability 1.0.

Type: fix
Fixes: gerrit 23963 / f126e746fc01c75bc99329d10ce9127b26b23814

Signed-off-by: Dave Barach <[email protected]>
Change-Id: I621ed99329c04ef358035747dde599c0016b58f5

5 years agolisp: fix api_format reference 48/27348/1
Paul Vinciguerra [Fri, 29 May 2020 23:01:18 +0000 (19:01 -0400)]
lisp: fix api_format reference

Type: fix
Ticket: VPP-1885

Change-Id: I474fffd4d36f439a19d475a8cb20171ca88274ec
Signed-off-by: Paul Vinciguerra <[email protected]>
5 years agobonding: Revert adjust link state 46/27346/2
Matthew Smith [Fri, 29 May 2020 17:29:45 +0000 (12:29 -0500)]
bonding: Revert adjust link state

This reverts commit 9121c415a91904be50071ec55143d9c89b2f1b91.

Reason for revert: causes deadlock with multiple worker threads

Type: fix

Change-Id: Icf3d6d343d99d887abacbaa03acbf04d4628514e
Signed-off-by: Matthew Smith <[email protected]>
5 years agolisp: fix api_format 45/27345/2
Florin Coras [Fri, 29 May 2020 16:18:57 +0000 (16:18 +0000)]
lisp: fix api_format

Type: fix
Ticket: VPP-1885
Fixes: 58db6e1

Signed-off-by: Florin Coras <[email protected]>
Change-Id: I6431e49b315e09490fed8fd70ac53872836c6a09

5 years agolisp: fix custom dump 32/27332/9
Florin Coras [Thu, 28 May 2020 18:01:26 +0000 (18:01 +0000)]
lisp: fix custom dump

Type: fix
Ticket: VPP-1886
Fixes: 58db6e1

Signed-off-by: Florin Coras <[email protected]>
Change-Id: Ic40018a756e57bfec05ffbc5e30d18f4feb315db

5 years agofib: Safe adj walk 44/27344/2
Neale Ranns [Fri, 29 May 2020 14:19:41 +0000 (10:19 -0400)]
fib: Safe adj walk

Type: fix

the hash walk does not give the same guarantees as the bihash so
walk in a safe manner.

Change-Id: Idfe48c3a84ab3a341d887f7d196bc81ba34ae8b0
Signed-off-by: Neale Ranns <[email protected]>
5 years agogso: add checksum and payload size testing 34/27334/2
Mohsin Kazmi [Thu, 28 May 2020 18:49:46 +0000 (20:49 +0200)]
gso: add checksum and payload size testing

Type: test

Change-Id: I9e4f7cf44d465712aa26e5dd6a0ff38588964a39
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agogso: fix flag for inner header 33/27333/2
Mohsin Kazmi [Thu, 28 May 2020 18:56:43 +0000 (20:56 +0200)]
gso: fix flag for inner header

Type: fix

Change-Id: Ic3fc488521636f7f7c9402a20db45fdb599adaae
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agodocs: Minor updates to feature.yaml files 94/27194/3
John DeNisco [Thu, 21 May 2020 13:00:04 +0000 (09:00 -0400)]
docs: Minor updates to feature.yaml files

Type: docs

Signed-off-by: John DeNisco <[email protected]>
Change-Id: Iba106d33d34766b91e46980e7237fbdfc3710b8b

5 years agodocs: Minor fixes in publish_docs.sh and sanitizer.rst 40/27340/2
John DeNisco [Fri, 29 May 2020 12:56:38 +0000 (08:56 -0400)]
docs: Minor fixes in publish_docs.sh and sanitizer.rst

Fix a warning in sanitizer.rst and publish_docs.sh

Type: fix

Signed-off-by: John DeNisco <[email protected]>
Change-Id: I66d724f52a7b724a97a894e1cd35c1239aeedcdf

5 years agomisc: ipfix-export unformat u16 collector_port fix 80/27280/11
Elias Rudberg [Tue, 26 May 2020 23:03:46 +0000 (01:03 +0200)]
misc: ipfix-export unformat u16 collector_port fix

Use %U and unformat_udp_port instead of %u for unformat() call for
u16 collector_port number in set_ipfix_exporter_command_fn() to
avoid corruption of other variables which can happen if unformat()
with %u is used with a 16-bit variable. This avoids crash due to
corrupted fib_index value.

Type: fix

Signed-off-by: Elias Rudberg <[email protected]>
Change-Id: Id54273fcc458a7f9c5aa4025aa91711f160c1c1a

5 years agomisc: fix the pretty print for api trace 27/27327/2
Mohsin Kazmi [Thu, 28 May 2020 10:37:56 +0000 (12:37 +0200)]
misc: fix the pretty print for api trace

Type: style

Change-Id: I4ef8ba30be2696e8f63d5305027d2aa629cbdb88
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agomisc: Avoid sample.md from in the VPP docs, clean up the extraneous copy 05/27305/3
Andrew Yourtchenko [Thu, 21 May 2020 17:05:41 +0000 (17:05 +0000)]
misc: Avoid sample.md from in the VPP docs, clean up the extraneous copy

I had cleaned up the sample.md previously for 20.01, but when later
that was merged to master, the file was renamed. So, fix this issue.

Change-Id: I6347685af216901fbfdd445606735b9bf79f8fe5
Type: docs
Signed-off-by: Andrew Yourtchenko <[email protected]>
(cherry picked from commit e2e3c38be6d91c3deb15373992cd5a764e773060)

5 years agotap: fix rx queue index 69/27269/2
Mohsin Kazmi [Tue, 26 May 2020 12:34:34 +0000 (14:34 +0200)]
tap: fix rx queue index

Type: fix

Change-Id: I5601bdeb47d08118476ff7bd29435d2c1dba34b9
Signed-off-by: Mohsin Kazmi <[email protected]>
5 years agodhcp: use per-thread vlib main instead of global one 83/27183/3
Benoît Ganne [Wed, 20 May 2020 16:53:50 +0000 (18:53 +0200)]
dhcp: use per-thread vlib main instead of global one

Type: fix

Change-Id: I8890aa5cc3c576fc9fb68735549dfab721714310
Signed-off-by: Benoît Ganne <[email protected]>
5 years agodhcp: vat support for the dhcp_client_dump API 75/27275/3
Dave Barach [Tue, 26 May 2020 15:19:28 +0000 (11:19 -0400)]
dhcp: vat support for the dhcp_client_dump API

Also: permanently solve ordering issues with the vpp builtin vat
plugin loader, by explicitly loading vat plugins once we're sure that
all data plane plugins have registered their APIs / API message
handlers.

Fix compilation / link errors when the vpp builtin vat plugin loader
is disbled by cmake configuration.

Type: fix

Signed-off-by: Dave Barach <[email protected]>
Change-Id: Id553c63ae860ebfc196c5ad4b55c19e08fec2c9e
Signed-off-by: Ole Troan <[email protected]>
5 years agobuild: make address sanitizer options configurable with cmake 02/27202/3
Damjan Marion [Thu, 21 May 2020 17:09:13 +0000 (19:09 +0200)]
build: make address sanitizer options configurable with cmake

Type: improvement
Change-Id: I9ee0407e0634f773862dd65ff5d5594814294c2c
Signed-off-by: Damjan Marion <[email protected]>
5 years agoipsec: Add/Del IPSec SA is not MP safe 90/27290/2
Neale Ranns [Wed, 27 May 2020 15:17:24 +0000 (15:17 +0000)]
ipsec: Add/Del IPSec SA is not MP safe

Type: fix

we can probably do better, but for now this is needed

Signed-off-by: Neale Ranns <[email protected]>
Change-Id: I07161f5ac07a70a0e6db6608ba31659d9bc2c9ed

5 years agoethernet: fix DMAC check and skip unnecessary ones (VPP-1868) 27/27027/11
John Lo [Wed, 13 May 2020 02:34:39 +0000 (22:34 -0400)]
ethernet: fix DMAC check and skip unnecessary ones (VPP-1868)

Fix and optimize DMAC check in ethernet-input node to utilize NIC or
driver which support L3 DMAC-filtering mode so that DMAC check can be
bypassed safely for interfaces/sub-interfaces in L3 mode.
Checking of interface in L3-DMAC-filtering state to avoid DMAC check
require the following:
a) Fix interface driver init sequence for devices which supports L3
   DMAC-filtering to indicate its capability and initialize interface
   to L3 DMAC-filtering state.
b) Fix ethernet_set_flags() function and its associated callback
   flags_change() functions registered by various drivers in interface
   infra to provide proper L3 DMAC filtering status.
Maintain interface/sub-interface L3 config count so DMAC checks can be
bypassed if L3 forwarding is not setup on any main/sub-interfaces.

Type: fix
Ticket: VPP-1868

Signed-off-by: John Lo <[email protected]>
Change-Id: I204d90459c13e9e486cfcba4e64e3d479bc9f2ae

5 years agodpdk: bump to DPDK v20.05 79/27279/2
Damjan Marion [Tue, 26 May 2020 22:37:49 +0000 (00:37 +0200)]
dpdk: bump to DPDK v20.05

Type: improvement
Change-Id: I5f89fc3d994bd85d2c5138069ea2c58661814228
Signed-off-by: Damjan Marion <[email protected]>
5 years agovppinfra: fix SIGBUS in bihash init when running unpriviledged, take two 89/27289/1
Damjan Marion [Wed, 27 May 2020 14:43:35 +0000 (16:43 +0200)]
vppinfra: fix SIGBUS in bihash init when running unpriviledged, take two

Looks like MAP_LOCK is not enough, so call mlock(...) instead....

Type: fix
Change-Id: I1bc668a2bf3c861ca1c2d376c0fb6bfea87d4f48
Signed-off-by: Damjan Marion <[email protected]>
5 years agoip: reassembly: use correct IP header offset 66/27266/4
Klement Sekera [Tue, 26 May 2020 10:38:05 +0000 (10:38 +0000)]
ip: reassembly: use correct IP header offset

Type: fix
Ticket: VPP-1883
Signed-off-by: Klement Sekera <[email protected]>
Change-Id: Icf50a645e114fa3b7bd974f8c82f5ceebfcedcd7

5 years agobonding: adjust link state based on active slaves 41/27141/4
Matthew Smith [Mon, 18 May 2020 15:54:17 +0000 (10:54 -0500)]
bonding: adjust link state based on active slaves

Type: improvement

Bond link state is being maintained inconsistently. It is initially set to
up.  If the bond interface admin state is set to down, the link state is
set to down. If the bond interface admin state is set to up, the link
state is only set to up if there are active slave interfaces at that point.
If slaves become active at some later time, it does not get updated. Its
next chance to be updated is the next time the bond interface is set to
admin up.

To address this, do not set the link state to up after creating a bond.
Adjust the link state as slave interfaces are attached or detached
based on whether the bond is getting its first active slave or losing
its last one.

Unit test added to verify correct maintenance of link state.

Change-Id: I31f17321f7f0e727e1ab1e01713423af6566dad9
Signed-off-by: Matthew Smith <[email protected]>
5 years agonat: fix regarding vm arg for vlib_time_now call 81/27281/3
Elias Rudberg [Wed, 27 May 2020 00:15:53 +0000 (02:15 +0200)]
nat: fix regarding vm arg for vlib_time_now call

Change in snat_ipfix_header_create() to use thread-specific
vlib_main_t *vm pointer to avoid problems with different threads
accessing the same vlib_main_t data structure. This avoids
assertion failure when vlib_time_now() is called with a vm
corresponding to a different thread.

Type: fix

Signed-off-by: Elias Rudberg <[email protected]>
Change-Id: I2096c1debb5688d3b97e5ed9a0ea78d94053d8b7

5 years agoapi: make vpp api handlers endian independent 19/27119/6
Ole Troan [Mon, 18 May 2020 09:14:05 +0000 (11:14 +0200)]
api: make vpp api handlers endian independent

Add a new boolean to signal that the API infrastructure should performan any required
endian conversions for the API handler.

  am->is_autoendian[mm->msg_id_base + VL_API_MAP_ADD_DOMAIN] = 1;

Similarly add new REPLY_ macros that perform endian conversion.

These changes do not change the on-the-wire encoding of the API messages, and therefore the API CRC is not changed.

Type: feature
Signed-off-by: Ole Troan <[email protected]>
Change-Id: I7588f8ccb38b2d1e8d85ea17be99bac43f756267
Signed-off-by: Ole Troan <[email protected]>
5 years agovcl: fix ldp fcntl64 78/27278/8
Florin Coras [Tue, 26 May 2020 19:45:45 +0000 (19:45 +0000)]
vcl: fix ldp fcntl64

Type: fix

Signed-off-by: Florin Coras <[email protected]>
Change-Id: I342d8f928fcc7de74f9bd288c1a5d63ea1f90020

5 years agofib: Fix interpose source reactivate 63/27263/3
Neale Ranns [Tue, 26 May 2020 08:52:55 +0000 (08:52 +0000)]
fib: Fix interpose source reactivate

Type: fix

when the interpose is on an adj-fib and the cover is removed the adj
source will not install. this lead to no path list being found for the
interpose source and a crash. pick a drop path list in this case.

Signed-off-by: Neale Ranns <[email protected]>
Change-Id: Ied217da043926c913657080f5ffb151201225d23

5 years agofib: Use basic hash for adjacency neighbour table 30/27230/2
Neale Ranns [Mon, 25 May 2020 09:09:36 +0000 (09:09 +0000)]
fib: Use basic hash for adjacency neighbour table

Type: improvement

a bihash per-interface used too much memory.

Change-Id: I447bb66c0907e1632fa5d886a3600e518663c39e
Signed-off-by: Neale Ranns <[email protected]>
5 years agovcl: do not propagate epoll events if session closed 38/27238/7
Florin Coras [Tue, 26 May 2020 00:47:52 +0000 (00:47 +0000)]
vcl: do not propagate epoll events if session closed

Type: fix

Signed-off-by: Florin Coras <[email protected]>
Change-Id: I1e9652b476bbc07852b4e701a948c36a0d8c67fa

5 years agopci: improve vfio logging 34/27234/2
Damjan Marion [Mon, 25 May 2020 17:31:42 +0000 (19:31 +0200)]
pci: improve vfio logging

Type: improvement
Change-Id: Ic49a43651b80b79fa278e29964da5cb2ead2a818
Signed-off-by: Damjan Marion <[email protected]>