2 * ip/ip6_neighbor.c: IP6 neighbor handling
4 * Copyright (c) 2010 Cisco and/or its affiliates.
5 * Licensed under the Apache License, Version 2.0 (the "License");
6 * you may not use this file except in compliance with the License.
7 * You may obtain a copy of the License at:
9 * http://www.apache.org/licenses/LICENSE-2.0
11 * Unless required by applicable law or agreed to in writing, software
12 * distributed under the License is distributed on an "AS IS" BASIS,
13 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14 * See the License for the specific language governing permissions and
15 * limitations under the License.
18 #include <vnet/ip/ip.h>
19 #include <vnet/ip/ip6_neighbor.h>
20 #include <vnet/ethernet/ethernet.h>
21 #include <vppinfra/mhash.h>
22 #include <vppinfra/md5.h>
23 #include <vnet/adj/adj.h>
24 #include <vnet/fib/fib_table.h>
25 #include <vnet/fib/ip6_fib.h>
29 * @brief IPv6 Neighbor Adjacency and Neighbor Discovery.
31 * The files contains the API and CLI code for managing IPv6 neighbor
32 * adjacency tables and neighbor discovery logic.
35 /* can't use sizeof link_layer_address, that's 8 */
36 #define ETHER_MAC_ADDR_LEN 6
38 /* advertised prefix option */
41 /* basic advertised information */
45 int adv_autonomous_flag;
46 u32 adv_valid_lifetime_in_secs;
47 u32 adv_pref_lifetime_in_secs;
49 /* advertised values are computed from these times if decrementing */
50 f64 valid_lifetime_expires;
51 f64 pref_lifetime_expires;
53 /* local information */
55 int deprecated_prefix_flag;
56 int decrement_lifetime_flag;
58 #define MIN_ADV_VALID_LIFETIME 7203 /* seconds */
59 #define DEF_ADV_VALID_LIFETIME 2592000
60 #define DEF_ADV_PREF_LIFETIME 604800
62 /* extensions are added here, mobile, DNS etc.. */
68 /* group information */
70 ip6_address_t mcast_address;
72 ip6_address_t *mcast_source_address_pool;
75 /* configured router advertisement information per ipv6 interface */
79 /* advertised config information, zero means unspecified */
83 u16 adv_router_lifetime_in_sec;
84 u32 adv_neighbor_reachable_time_in_msec;
85 u32 adv_time_in_msec_between_retransmitted_neighbor_solicitations;
90 /* source link layer option */
91 u8 link_layer_address[8];
92 u8 link_layer_addr_len;
95 ip6_radv_prefix_t *adv_prefixes_pool;
97 /* Hash table mapping address to index in interface advertised prefix pool. */
98 mhash_t address_to_prefix_index;
100 /* MLDP group information */
101 ip6_mldp_group_t *mldp_group_pool;
103 /* Hash table mapping address to index in mldp address pool. */
104 mhash_t address_to_mldp_index;
106 /* local information */
109 int send_radv; /* radv on/off on this interface - set by config */
110 int cease_radv; /* we are ceasing to send - set byf config */
112 int adv_link_layer_address;
114 int failed_device_check;
115 int all_routers_mcast;
119 adj_index_t all_nodes_adj_index;
120 adj_index_t all_routers_adj_index;
121 adj_index_t all_mldv2_routers_adj_index;
123 /* timing information */
124 #define DEF_MAX_RADV_INTERVAL 200
125 #define DEF_MIN_RADV_INTERVAL .75 * DEF_MAX_RADV_INTERVAL
126 #define DEF_CURR_HOP_LIMIT 64
127 #define DEF_DEF_RTR_LIFETIME 3 * DEF_MAX_RADV_INTERVAL
128 #define MAX_DEF_RTR_LIFETIME 9000
130 #define MAX_INITIAL_RTR_ADVERT_INTERVAL 16 /* seconds */
131 #define MAX_INITIAL_RTR_ADVERTISEMENTS 3 /*transmissions */
132 #define MIN_DELAY_BETWEEN_RAS 3 /* seconds */
133 #define MAX_DELAY_BETWEEN_RAS 1800 /* seconds */
134 #define MAX_RA_DELAY_TIME .5 /* seconds */
136 f64 max_radv_interval;
137 f64 min_radv_interval;
138 f64 min_delay_between_radv;
139 f64 max_delay_between_radv;
140 f64 max_rtr_default_lifetime;
143 f64 last_multicast_time;
144 f64 next_multicast_time;
147 u32 initial_adverts_count;
148 f64 initial_adverts_interval;
149 u32 initial_adverts_sent;
152 u32 n_advertisements_sent;
153 u32 n_solicitations_rcvd;
154 u32 n_solicitations_dropped;
156 /* Link local address to use (defaults to underlying physical for logical interfaces */
157 ip6_address_t link_local_address;
166 /* Used for nd event notification only */
169 } pending_resolution_t;
174 /* Hash tables mapping name to opcode. */
175 uword *opcode_by_name;
177 /* lite beer "glean" adjacency handling */
178 mhash_t pending_resolutions_by_address;
179 pending_resolution_t *pending_resolutions;
181 /* Mac address change notification */
182 mhash_t mac_changes_by_address;
183 pending_resolution_t *mac_changes;
185 u32 *neighbor_input_next_index_by_hw_if_index;
187 ip6_neighbor_t *neighbor_pool;
189 mhash_t neighbor_index_by_key;
191 u32 *if_radv_pool_index_by_sw_if_index;
193 ip6_radv_t *if_radv_pool;
195 /* Neighbor attack mitigation */
196 u32 limit_neighbor_cache_size;
197 u32 neighbor_delete_rotor;
199 } ip6_neighbor_main_t;
201 static ip6_neighbor_main_t ip6_neighbor_main;
202 static ip6_address_t ip6a_zero; /* ip6 address 0 */
205 format_ip6_neighbor_ip6_entry (u8 * s, va_list * va)
207 vlib_main_t *vm = va_arg (*va, vlib_main_t *);
208 ip6_neighbor_t *n = va_arg (*va, ip6_neighbor_t *);
209 vnet_main_t *vnm = vnet_get_main ();
210 vnet_sw_interface_t *si;
214 return format (s, "%=12s%=20s%=6s%=20s%=40s", "Time", "Address", "Flags",
215 "Link layer", "Interface");
217 if (n->flags & IP6_NEIGHBOR_FLAG_DYNAMIC)
218 flags = format (flags, "D");
220 if (n->flags & IP6_NEIGHBOR_FLAG_STATIC)
221 flags = format (flags, "S");
223 si = vnet_get_sw_interface (vnm, n->key.sw_if_index);
224 s = format (s, "%=12U%=20U%=6s%=20U%=40U",
225 format_vlib_cpu_time, vm, n->cpu_time_last_updated,
226 format_ip6_address, &n->key.ip6_address,
227 flags ? (char *) flags : "",
228 format_ethernet_address, n->link_layer_address,
229 format_vnet_sw_interface_name, vnm, si);
235 static clib_error_t *
236 ip6_neighbor_sw_interface_up_down (vnet_main_t * vnm,
237 u32 sw_if_index, u32 flags)
239 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
242 if (!(flags & VNET_SW_INTERFACE_FLAG_ADMIN_UP))
244 u32 i, *to_delete = 0;
247 pool_foreach (n, nm->neighbor_pool,
249 if (n->key.sw_if_index == sw_if_index)
250 vec_add1 (to_delete, n - nm->neighbor_pool);
254 for (i = 0; i < vec_len (to_delete); i++)
256 n = pool_elt_at_index (nm->neighbor_pool, to_delete[i]);
257 mhash_unset (&nm->neighbor_index_by_key, &n->key, 0);
258 fib_table_entry_delete_index (n->fib_entry_index, FIB_SOURCE_ADJ);
259 pool_put (nm->neighbor_pool, n);
262 vec_free (to_delete);
268 VNET_SW_INTERFACE_ADMIN_UP_DOWN_FUNCTION (ip6_neighbor_sw_interface_up_down);
271 unset_random_neighbor_entry (void)
273 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
274 vnet_main_t *vnm = vnet_get_main ();
275 vlib_main_t *vm = vnm->vlib_main;
279 index = pool_next_index (nm->neighbor_pool, nm->neighbor_delete_rotor);
280 nm->neighbor_delete_rotor = index;
282 /* Try again from elt 0, could happen if an intfc goes down */
285 index = pool_next_index (nm->neighbor_pool, nm->neighbor_delete_rotor);
286 nm->neighbor_delete_rotor = index;
289 /* Nothing left in the pool */
293 e = pool_elt_at_index (nm->neighbor_pool, index);
295 vnet_unset_ip6_ethernet_neighbor (vm, e->key.sw_if_index,
297 e->link_layer_address,
305 u8 link_layer_address[6];
308 } ip6_neighbor_set_unset_rpc_args_t;
310 static void ip6_neighbor_set_unset_rpc_callback
311 (ip6_neighbor_set_unset_rpc_args_t * a);
313 static void set_unset_ip6_neighbor_rpc
316 ip6_address_t * a, u8 * link_layer_addreess, int is_add, int is_static)
318 ip6_neighbor_set_unset_rpc_args_t args;
319 void vl_api_rpc_call_main_thread (void *fp, u8 * data, u32 data_length);
321 args.sw_if_index = sw_if_index;
322 args.is_add = is_add;
323 args.is_static = is_static;
324 clib_memcpy (&args.addr, a, sizeof (*a));
325 clib_memcpy (args.link_layer_address, link_layer_addreess, 6);
327 vl_api_rpc_call_main_thread (ip6_neighbor_set_unset_rpc_callback,
328 (u8 *) & args, sizeof (args));
332 ip6_nbr_probe (ip_adjacency_t * adj)
334 icmp6_neighbor_solicitation_header_t *h;
335 vnet_main_t *vnm = vnet_get_main ();
336 ip6_main_t *im = &ip6_main;
337 ip_interface_address_t *ia;
338 ip6_address_t *dst, *src;
339 vnet_hw_interface_t *hi;
340 vnet_sw_interface_t *si;
346 vm = vlib_get_main ();
348 si = vnet_get_sw_interface (vnm, adj->rewrite_header.sw_if_index);
349 dst = &adj->sub_type.nbr.next_hop.ip6;
351 if (!(si->flags & VNET_SW_INTERFACE_FLAG_ADMIN_UP))
355 src = ip6_interface_address_matching_destination (im, dst,
363 h = vlib_packet_template_get_packet (vm,
364 &im->discover_neighbor_packet_template,
367 hi = vnet_get_sup_hw_interface (vnm, adj->rewrite_header.sw_if_index);
369 h->ip.dst_address.as_u8[13] = dst->as_u8[13];
370 h->ip.dst_address.as_u8[14] = dst->as_u8[14];
371 h->ip.dst_address.as_u8[15] = dst->as_u8[15];
372 h->ip.src_address = src[0];
373 h->neighbor.target_address = dst[0];
375 clib_memcpy (h->link_layer_option.ethernet_address,
376 hi->hw_address, vec_len (hi->hw_address));
378 h->neighbor.icmp.checksum =
379 ip6_tcp_udp_icmp_compute_checksum (vm, 0, &h->ip, &bogus_length);
380 ASSERT (bogus_length == 0);
382 b = vlib_get_buffer (vm, bi);
383 vnet_buffer (b)->sw_if_index[VLIB_RX] =
384 vnet_buffer (b)->sw_if_index[VLIB_TX] = adj->rewrite_header.sw_if_index;
386 /* Add encapsulation string for software interface (e.g. ethernet header). */
387 vnet_rewrite_one_header (adj[0], h, sizeof (ethernet_header_t));
388 vlib_buffer_advance (b, -adj->rewrite_header.data_bytes);
391 vlib_frame_t *f = vlib_get_frame_to_node (vm, hi->output_node_index);
392 u32 *to_next = vlib_frame_vector_args (f);
395 vlib_put_frame_to_node (vm, hi->output_node_index, f);
400 ip6_nd_mk_complete (adj_index_t ai, ip6_neighbor_t * nbr)
402 adj_nbr_update_rewrite (ai, ADJ_NBR_REWRITE_FLAG_COMPLETE,
403 ethernet_build_rewrite (vnet_get_main (),
404 nbr->key.sw_if_index,
405 adj_get_link_type (ai),
406 nbr->link_layer_address));
410 ip6_nd_mk_incomplete (adj_index_t ai)
412 ip_adjacency_t *adj = adj_get (ai);
414 adj_nbr_update_rewrite (ai,
415 ADJ_NBR_REWRITE_FLAG_INCOMPLETE,
416 ethernet_build_rewrite (vnet_get_main (),
419 adj_get_link_type (ai),
420 VNET_REWRITE_FOR_SW_INTERFACE_ADDRESS_BROADCAST));
423 #define IP6_NBR_MK_KEY(k, sw_if_index, addr) \
425 k.sw_if_index = sw_if_index; \
426 k.ip6_address = *addr; \
430 static ip6_neighbor_t *
431 ip6_nd_find (u32 sw_if_index, const ip6_address_t * addr)
433 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
434 ip6_neighbor_t *n = NULL;
435 ip6_neighbor_key_t k;
438 IP6_NBR_MK_KEY (k, sw_if_index, addr);
440 p = mhash_get (&nm->neighbor_index_by_key, &k);
443 n = pool_elt_at_index (nm->neighbor_pool, p[0]);
450 ip6_nd_mk_complete_walk (adj_index_t ai, void *ctx)
452 ip6_neighbor_t *nbr = ctx;
454 ip6_nd_mk_complete (ai, nbr);
456 return (ADJ_WALK_RC_CONTINUE);
460 ip6_nd_mk_incomplete_walk (adj_index_t ai, void *ctx)
462 ip6_nd_mk_incomplete (ai);
464 return (ADJ_WALK_RC_CONTINUE);
468 ip6_ethernet_update_adjacency (vnet_main_t * vnm, u32 sw_if_index, u32 ai)
475 nbr = ip6_nd_find (sw_if_index, &adj->sub_type.nbr.next_hop.ip6);
479 adj_nbr_walk_nh6 (sw_if_index, &nbr->key.ip6_address,
480 ip6_nd_mk_complete_walk, nbr);
485 * no matching ND entry.
486 * construct the rewrite required to for an ND packet, and stick
487 * that in the adj's pipe to smoke.
489 adj_nbr_update_rewrite (ai,
490 ADJ_NBR_REWRITE_FLAG_INCOMPLETE,
491 ethernet_build_rewrite (vnm,
494 VNET_REWRITE_FOR_SW_INTERFACE_ADDRESS_BROADCAST));
497 * since the FIB has added this adj for a route, it makes sense it may
498 * want to forward traffic sometime soon. Let's send a speculative ND.
499 * just one. If we were to do periodically that wouldn't be bad either,
500 * but that's more code than i'm prepared to write at this time for
501 * relatively little reward.
508 vnet_set_ip6_ethernet_neighbor (vlib_main_t * vm,
511 u8 * link_layer_address,
512 uword n_bytes_link_layer_address,
515 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
516 ip6_neighbor_key_t k;
517 ip6_neighbor_t *n = 0;
518 int make_new_nd_cache_entry = 1;
521 pending_resolution_t *pr, *mc;
523 if (os_get_cpu_number ())
525 set_unset_ip6_neighbor_rpc (vm, sw_if_index, a, link_layer_address,
526 1 /* set new neighbor */ , is_static);
530 k.sw_if_index = sw_if_index;
531 k.ip6_address = a[0];
534 p = mhash_get (&nm->neighbor_index_by_key, &k);
537 n = pool_elt_at_index (nm->neighbor_pool, p[0]);
538 /* Refuse to over-write static neighbor entry. */
539 if (!is_static && (n->flags & IP6_NEIGHBOR_FLAG_STATIC))
541 make_new_nd_cache_entry = 0;
544 if (make_new_nd_cache_entry)
548 .fp_proto = FIB_PROTOCOL_IP6,
550 .ip6 = k.ip6_address,
556 pool_get (nm->neighbor_pool, n);
557 mhash_set (&nm->neighbor_index_by_key, &k, n - nm->neighbor_pool,
561 clib_memcpy (n->link_layer_address,
562 link_layer_address, n_bytes_link_layer_address);
565 * create the adj-fib. the entry in the FIB table for and to the peer.
567 fib_index = ip6_main.fib_index_by_sw_if_index[n->key.sw_if_index];
568 n->fib_entry_index = fib_table_entry_update_one_path (fib_index, &pfx, FIB_SOURCE_ADJ, FIB_ENTRY_FLAG_NONE, FIB_PROTOCOL_IP6, &pfx.fp_addr, n->key.sw_if_index, ~0, 1, NULL, // no label stack
569 FIB_ROUTE_PATH_FLAG_NONE);
574 * prevent a DoS attack from the data-plane that
575 * spams us with no-op updates to the MAC address
577 if (0 == memcmp (n->link_layer_address,
578 link_layer_address, n_bytes_link_layer_address))
581 clib_memcpy (n->link_layer_address,
582 link_layer_address, n_bytes_link_layer_address);
585 /* Update time stamp and flags. */
586 n->cpu_time_last_updated = clib_cpu_time_now ();
588 n->flags |= IP6_NEIGHBOR_FLAG_STATIC;
590 n->flags |= IP6_NEIGHBOR_FLAG_DYNAMIC;
592 adj_nbr_walk_nh6 (sw_if_index,
593 &n->key.ip6_address, ip6_nd_mk_complete_walk, n);
595 /* Customer(s) waiting for this address to be resolved? */
596 p = mhash_get (&nm->pending_resolutions_by_address, a);
601 while (next_index != (u32) ~ 0)
603 pr = pool_elt_at_index (nm->pending_resolutions, next_index);
604 vlib_process_signal_event (vm, pr->node_index,
605 pr->type_opaque, pr->data);
606 next_index = pr->next_index;
607 pool_put (nm->pending_resolutions, pr);
610 mhash_unset (&nm->pending_resolutions_by_address, a, 0);
613 /* Customer(s) requesting ND event for this address? */
614 p = mhash_get (&nm->mac_changes_by_address, a);
619 while (next_index != (u32) ~ 0)
621 int (*fp) (u32, u8 *, u32, ip6_address_t *);
623 mc = pool_elt_at_index (nm->mac_changes, next_index);
624 fp = mc->data_callback;
626 /* Call the user's data callback, return 1 to suppress dup events */
629 (*fp) (mc->data, link_layer_address, sw_if_index, &ip6a_zero);
631 * Signal the resolver process, as long as the user
632 * says they want to be notified
635 vlib_process_signal_event (vm, mc->node_index,
636 mc->type_opaque, mc->data);
637 next_index = mc->next_index;
645 vnet_unset_ip6_ethernet_neighbor (vlib_main_t * vm,
648 u8 * link_layer_address,
649 uword n_bytes_link_layer_address)
651 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
652 ip6_neighbor_key_t k;
657 if (os_get_cpu_number ())
659 set_unset_ip6_neighbor_rpc (vm, sw_if_index, a, link_layer_address,
664 k.sw_if_index = sw_if_index;
665 k.ip6_address = a[0];
668 p = mhash_get (&nm->neighbor_index_by_key, &k);
675 n = pool_elt_at_index (nm->neighbor_pool, p[0]);
676 mhash_unset (&nm->neighbor_index_by_key, &n->key, 0);
678 adj_nbr_walk_nh6 (sw_if_index,
679 &n->key.ip6_address, ip6_nd_mk_incomplete_walk, NULL);
681 fib_table_entry_delete_index (n->fib_entry_index, FIB_SOURCE_ADJ);
682 pool_put (nm->neighbor_pool, n);
688 static void ip6_neighbor_set_unset_rpc_callback
689 (ip6_neighbor_set_unset_rpc_args_t * a)
691 vlib_main_t *vm = vlib_get_main ();
693 vnet_set_ip6_ethernet_neighbor (vm, a->sw_if_index, &a->addr,
694 a->link_layer_address, 6, a->is_static);
696 vnet_unset_ip6_ethernet_neighbor (vm, a->sw_if_index, &a->addr,
697 a->link_layer_address, 6);
701 ip6_neighbor_sort (void *a1, void *a2)
703 vnet_main_t *vnm = vnet_get_main ();
704 ip6_neighbor_t *n1 = a1, *n2 = a2;
706 cmp = vnet_sw_interface_compare (vnm, n1->key.sw_if_index,
707 n2->key.sw_if_index);
709 cmp = ip6_address_compare (&n1->key.ip6_address, &n2->key.ip6_address);
714 ip6_neighbors_entries (u32 sw_if_index)
716 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
717 ip6_neighbor_t *n, *ns = 0;
720 pool_foreach (n, nm->neighbor_pool,
722 if (sw_if_index != ~0 && n->key.sw_if_index != sw_if_index)
729 vec_sort_with_function (ns, ip6_neighbor_sort);
733 static clib_error_t *
734 show_ip6_neighbors (vlib_main_t * vm,
735 unformat_input_t * input, vlib_cli_command_t * cmd)
737 vnet_main_t *vnm = vnet_get_main ();
738 ip6_neighbor_t *n, *ns;
739 clib_error_t *error = 0;
742 /* Filter entries by interface if given. */
744 (void) unformat_user (input, unformat_vnet_sw_interface, vnm, &sw_if_index);
746 ns = ip6_neighbors_entries (sw_if_index);
749 vlib_cli_output (vm, "%U", format_ip6_neighbor_ip6_entry, vm, 0);
752 vlib_cli_output (vm, "%U", format_ip6_neighbor_ip6_entry, vm, n);
761 * This command is used to display the adjacent IPv6 hosts found via
762 * neighbor discovery. Optionally, limit the output to the specified
766 * Example of how to display the IPv6 neighbor adjacency table:
767 * @cliexstart{show ip6 neighbors}
768 * Time Address Flags Link layer Interface
769 * 34.0910 ::a:1:1:0:7 02:fe:6a:07:39:6f GigabitEthernet2/0/0
770 * 173.2916 ::b:5:1:c:2 02:fe:50:62:3a:94 GigabitEthernet2/0/0
771 * 886.6654 ::1:1:c:0:9 S 02:fe:e4:45:27:5b GigabitEthernet3/0/0
773 * Example of how to display the IPv6 neighbor adjacency table for given interface:
774 * @cliexstart{show ip6 neighbors GigabitEthernet2/0/0}
775 * Time Address Flags Link layer Interface
776 * 34.0910 ::a:1:1:0:7 02:fe:6a:07:39:6f GigabitEthernet2/0/0
777 * 173.2916 ::b:5:1:c:2 02:fe:50:62:3a:94 GigabitEthernet2/0/0
781 VLIB_CLI_COMMAND (show_ip6_neighbors_command, static) = {
782 .path = "show ip6 neighbors",
783 .function = show_ip6_neighbors,
784 .short_help = "show ip6 neighbors [<interface>]",
788 static clib_error_t *
789 set_ip6_neighbor (vlib_main_t * vm,
790 unformat_input_t * input, vlib_cli_command_t * cmd)
792 vnet_main_t *vnm = vnet_get_main ();
800 while (unformat_check_input (input) != UNFORMAT_END_OF_INPUT)
802 /* intfc, ip6-address, mac-address */
803 if (unformat (input, "%U %U %U",
804 unformat_vnet_sw_interface, vnm, &sw_if_index,
805 unformat_ip6_address, &addr,
806 unformat_ethernet_address, mac_address))
809 else if (unformat (input, "delete") || unformat (input, "del"))
811 else if (unformat (input, "static"))
818 return clib_error_return (0, "Missing interface, ip6 or hw address");
821 vnet_set_ip6_ethernet_neighbor (vm, sw_if_index, &addr,
822 mac_address, sizeof (mac_address),
825 vnet_unset_ip6_ethernet_neighbor (vm, sw_if_index, &addr,
826 mac_address, sizeof (mac_address));
831 * This command is used to manually add an entry to the IPv6 neighbor
832 * adjacency table. Optionally, the entry can be added as static. It is
833 * also used to remove an entry from the table. Use the '<em>show ip6
834 * neighbors</em>' command to display all learned and manually entered entries.
837 * Example of how to add a static entry to the IPv6 neighbor adjacency table:
838 * @cliexcmd{set ip6 neighbor GigabitEthernet2/0/0 ::1:1:c:0:9 02:fe:e4:45:27:5b static}
839 * Example of how to delete an entry from the IPv6 neighbor adjacency table:
840 * @cliexcmd{set ip6 neighbor del GigabitEthernet2/0/0 ::1:1:c:0:9 02:fe:e4:45:27:5b}
843 VLIB_CLI_COMMAND (set_ip6_neighbor_command, static) =
845 .path = "set ip6 neighbor",
846 .function = set_ip6_neighbor,
847 .short_help = "set ip6 neighbor [del] <interface> <ip6-address> <mac-address> [static]",
853 ICMP6_NEIGHBOR_SOLICITATION_NEXT_DROP,
854 ICMP6_NEIGHBOR_SOLICITATION_NEXT_REPLY,
855 ICMP6_NEIGHBOR_SOLICITATION_N_NEXT,
856 } icmp6_neighbor_solicitation_or_advertisement_next_t;
858 static_always_inline uword
859 icmp6_neighbor_solicitation_or_advertisement (vlib_main_t * vm,
860 vlib_node_runtime_t * node,
861 vlib_frame_t * frame,
862 uword is_solicitation)
864 vnet_main_t *vnm = vnet_get_main ();
865 ip6_main_t *im = &ip6_main;
866 uword n_packets = frame->n_vectors;
868 u32 n_left_from, n_left_to_next, next_index, n_advertisements_sent;
869 icmp6_neighbor_discovery_option_type_t option_type;
870 vlib_node_runtime_t *error_node =
871 vlib_node_get_runtime (vm, ip6_icmp_input_node.index);
874 from = vlib_frame_vector_args (frame);
875 n_left_from = n_packets;
876 next_index = node->cached_next_index;
878 if (node->flags & VLIB_NODE_FLAG_TRACE)
879 vlib_trace_frame_buffers_only (vm, node, from, frame->n_vectors,
881 sizeof (icmp6_input_trace_t));
885 ? ICMP6_NEIGHBOR_DISCOVERY_OPTION_source_link_layer_address
886 : ICMP6_NEIGHBOR_DISCOVERY_OPTION_target_link_layer_address);
887 n_advertisements_sent = 0;
889 while (n_left_from > 0)
891 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
893 while (n_left_from > 0 && n_left_to_next > 0)
897 icmp6_neighbor_solicitation_or_advertisement_header_t *h0;
898 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *o0;
899 u32 bi0, options_len0, sw_if_index0, next0, error0;
900 u32 ip6_sadd_link_local, ip6_sadd_unspecified;
904 bi0 = to_next[0] = from[0];
911 p0 = vlib_get_buffer (vm, bi0);
912 ip0 = vlib_buffer_get_current (p0);
913 h0 = ip6_next_header (ip0);
915 clib_net_to_host_u16 (ip0->payload_length) - sizeof (h0[0]);
917 error0 = ICMP6_ERROR_NONE;
918 sw_if_index0 = vnet_buffer (p0)->sw_if_index[VLIB_RX];
919 ip6_sadd_link_local =
920 ip6_address_is_link_local_unicast (&ip0->src_address);
921 ip6_sadd_unspecified =
922 ip6_address_is_unspecified (&ip0->src_address);
924 /* Check that source address is unspecified, link-local or else on-link. */
925 if (!ip6_sadd_unspecified && !ip6_sadd_link_local)
927 u32 src_adj_index0 = ip6_src_lookup_for_packet (im, p0, ip0);
929 if (ADJ_INDEX_INVALID != src_adj_index0)
931 ip_adjacency_t *adj0 =
932 ip_get_adjacency (&im->lookup_main, src_adj_index0);
934 /* Allow all realistic-looking rewrite adjacencies to pass */
935 ni0 = adj0->lookup_next_index;
936 is_rewrite0 = (ni0 >= IP_LOOKUP_NEXT_ARP) &&
937 (ni0 < IP6_LOOKUP_N_NEXT);
939 error0 = ((adj0->rewrite_header.sw_if_index != sw_if_index0
942 ICMP6_ERROR_NEIGHBOR_SOLICITATION_SOURCE_NOT_ON_LINK
948 ICMP6_ERROR_NEIGHBOR_SOLICITATION_SOURCE_NOT_ON_LINK;
952 o0 = (void *) (h0 + 1);
953 o0 = ((options_len0 == 8 && o0->header.type == option_type
954 && o0->header.n_data_u64s == 1) ? o0 : 0);
956 /* If src address unspecified or link local, donot learn neighbor MAC */
957 if (PREDICT_TRUE (error0 == ICMP6_ERROR_NONE && o0 != 0 &&
958 !ip6_sadd_unspecified && !ip6_sadd_link_local))
960 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
961 if (nm->limit_neighbor_cache_size &&
962 pool_elts (nm->neighbor_pool) >=
963 nm->limit_neighbor_cache_size)
964 unset_random_neighbor_entry ();
965 vnet_set_ip6_ethernet_neighbor (vm, sw_if_index0,
969 o0->ethernet_address,
970 sizeof (o0->ethernet_address),
974 if (is_solicitation && error0 == ICMP6_ERROR_NONE)
976 /* Check that target address is local to this router. */
977 fib_node_index_t fei;
981 ip6_fib_table_get_index_for_sw_if_index (sw_if_index0);
985 error0 = ICMP6_ERROR_NEIGHBOR_SOLICITATION_SOURCE_UNKNOWN;
989 fei = ip6_fib_table_lookup_exact_match (fib_index,
993 if (FIB_NODE_INDEX_INVALID == fei ||
994 !(FIB_ENTRY_FLAG_LOCAL &
995 fib_entry_get_flags_for_source (fei,
996 FIB_SOURCE_INTERFACE)))
999 ICMP6_ERROR_NEIGHBOR_SOLICITATION_SOURCE_UNKNOWN;
1004 if (is_solicitation)
1005 next0 = (error0 != ICMP6_ERROR_NONE
1006 ? ICMP6_NEIGHBOR_SOLICITATION_NEXT_DROP
1007 : ICMP6_NEIGHBOR_SOLICITATION_NEXT_REPLY);
1011 error0 = error0 == ICMP6_ERROR_NONE ?
1012 ICMP6_ERROR_NEIGHBOR_ADVERTISEMENTS_RX : error0;
1015 if (is_solicitation && error0 == ICMP6_ERROR_NONE)
1017 vnet_sw_interface_t *sw_if0;
1018 ethernet_interface_t *eth_if0;
1019 ethernet_header_t *eth0;
1021 /* dst address is either source address or the all-nodes mcast addr */
1022 if (!ip6_sadd_unspecified)
1023 ip0->dst_address = ip0->src_address;
1025 ip6_set_reserved_multicast_address (&ip0->dst_address,
1026 IP6_MULTICAST_SCOPE_link_local,
1027 IP6_MULTICAST_GROUP_ID_all_hosts);
1029 ip0->src_address = h0->target_address;
1030 ip0->hop_limit = 255;
1031 h0->icmp.type = ICMP6_neighbor_advertisement;
1033 sw_if0 = vnet_get_sup_sw_interface (vnm, sw_if_index0);
1034 ASSERT (sw_if0->type == VNET_SW_INTERFACE_TYPE_HARDWARE);
1036 ethernet_get_interface (ðernet_main, sw_if0->hw_if_index);
1039 clib_memcpy (o0->ethernet_address, eth_if0->address, 6);
1041 ICMP6_NEIGHBOR_DISCOVERY_OPTION_target_link_layer_address;
1044 h0->advertisement_flags = clib_host_to_net_u32
1045 (ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_SOLICITED
1046 | ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_OVERRIDE);
1048 h0->icmp.checksum = 0;
1050 ip6_tcp_udp_icmp_compute_checksum (vm, p0, ip0,
1052 ASSERT (bogus_length == 0);
1054 /* Reuse current MAC header, copy SMAC to DMAC and
1055 * interface MAC to SMAC */
1056 vlib_buffer_advance (p0, -ethernet_buffer_header_size (p0));
1057 eth0 = vlib_buffer_get_current (p0);
1058 clib_memcpy (eth0->dst_address, eth0->src_address, 6);
1060 clib_memcpy (eth0->src_address, eth_if0->address, 6);
1062 /* Setup input and output sw_if_index for packet */
1063 ASSERT (vnet_buffer (p0)->sw_if_index[VLIB_RX] == sw_if_index0);
1064 vnet_buffer (p0)->sw_if_index[VLIB_TX] = sw_if_index0;
1065 vnet_buffer (p0)->sw_if_index[VLIB_RX] =
1066 vnet_main.local_interface_sw_if_index;
1068 n_advertisements_sent++;
1071 p0->error = error_node->errors[error0];
1073 vlib_validate_buffer_enqueue_x1 (vm, node, next_index,
1074 to_next, n_left_to_next,
1078 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
1081 /* Account for advertisements sent. */
1082 vlib_error_count (vm, error_node->node_index,
1083 ICMP6_ERROR_NEIGHBOR_ADVERTISEMENTS_TX,
1084 n_advertisements_sent);
1086 return frame->n_vectors;
1089 /* for "syslogging" - use elog for now */
1090 #define foreach_log_level \
1091 _ (DEBUG, "DEBUG") \
1092 _ (INFO, "INFORMATION") \
1093 _ (NOTICE, "NOTICE") \
1094 _ (WARNING, "WARNING") \
1096 _ (CRIT, "CRITICAL") \
1097 _ (ALERT, "ALERT") \
1098 _ (EMERG, "EMERGENCY")
1102 #define _(f,s) LOG_##f,
1107 static char *log_level_strings[] = {
1113 static int logmask = 1 << LOG_DEBUG;
1116 ip6_neighbor_syslog (vlib_main_t * vm, int priority, char *fmt, ...)
1118 /* just use elog for now */
1122 if ((priority > LOG_EMERG) || !(logmask & (1 << priority)))
1128 what = va_format (0, fmt, &va);
1130 ELOG_TYPE_DECLARE (e) =
1132 .format = "ip6 nd: (%s): %s",.format_args = "T4T4",};
1137 ed = ELOG_DATA (&vm->elog_main, e);
1138 ed->s[0] = elog_string (&vm->elog_main, log_level_strings[priority]);
1139 ed->s[1] = elog_string (&vm->elog_main, (char *) what);
1145 /* ipv6 neighbor discovery - router advertisements */
1148 ICMP6_ROUTER_SOLICITATION_NEXT_DROP,
1149 ICMP6_ROUTER_SOLICITATION_NEXT_REPLY_RW,
1150 ICMP6_ROUTER_SOLICITATION_NEXT_REPLY_TX,
1151 ICMP6_ROUTER_SOLICITATION_N_NEXT,
1152 } icmp6_router_solicitation_or_advertisement_next_t;
1154 static_always_inline uword
1155 icmp6_router_solicitation (vlib_main_t * vm,
1156 vlib_node_runtime_t * node, vlib_frame_t * frame)
1158 vnet_main_t *vnm = vnet_get_main ();
1159 ip6_main_t *im = &ip6_main;
1160 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
1161 uword n_packets = frame->n_vectors;
1162 u32 *from, *to_next;
1163 u32 n_left_from, n_left_to_next, next_index;
1164 u32 n_advertisements_sent = 0;
1167 icmp6_neighbor_discovery_option_type_t option_type;
1169 vlib_node_runtime_t *error_node =
1170 vlib_node_get_runtime (vm, ip6_icmp_input_node.index);
1172 from = vlib_frame_vector_args (frame);
1173 n_left_from = n_packets;
1174 next_index = node->cached_next_index;
1176 if (node->flags & VLIB_NODE_FLAG_TRACE)
1177 vlib_trace_frame_buffers_only (vm, node, from, frame->n_vectors,
1179 sizeof (icmp6_input_trace_t));
1181 /* source may append his LL address */
1182 option_type = ICMP6_NEIGHBOR_DISCOVERY_OPTION_source_link_layer_address;
1184 while (n_left_from > 0)
1186 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
1188 while (n_left_from > 0 && n_left_to_next > 0)
1192 ip6_radv_t *radv_info = 0;
1194 icmp6_neighbor_discovery_header_t *h0;
1195 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *o0;
1197 u32 bi0, options_len0, sw_if_index0, next0, error0;
1198 u32 is_solicitation = 1, is_dropped = 0;
1199 u32 is_unspecified, is_link_local;
1201 bi0 = to_next[0] = from[0];
1206 n_left_to_next -= 1;
1208 p0 = vlib_get_buffer (vm, bi0);
1209 ip0 = vlib_buffer_get_current (p0);
1210 h0 = ip6_next_header (ip0);
1212 clib_net_to_host_u16 (ip0->payload_length) - sizeof (h0[0]);
1213 is_unspecified = ip6_address_is_unspecified (&ip0->src_address);
1215 ip6_address_is_link_local_unicast (&ip0->src_address);
1217 error0 = ICMP6_ERROR_NONE;
1218 sw_if_index0 = vnet_buffer (p0)->sw_if_index[VLIB_RX];
1220 /* check if solicitation (not from nd_timer node) */
1221 if (ip6_address_is_unspecified (&ip0->dst_address))
1222 is_solicitation = 0;
1224 /* Check that source address is unspecified, link-local or else on-link. */
1225 if (!is_unspecified && !is_link_local)
1227 u32 src_adj_index0 = ip6_src_lookup_for_packet (im, p0, ip0);
1229 if (ADJ_INDEX_INVALID != src_adj_index0)
1231 ip_adjacency_t *adj0 = ip_get_adjacency (&im->lookup_main,
1234 error0 = (adj0->rewrite_header.sw_if_index != sw_if_index0
1236 ICMP6_ERROR_ROUTER_SOLICITATION_SOURCE_NOT_ON_LINK
1241 error0 = ICMP6_ERROR_ROUTER_SOLICITATION_SOURCE_NOT_ON_LINK;
1245 /* check for source LL option and process */
1246 o0 = (void *) (h0 + 1);
1247 o0 = ((options_len0 == 8
1248 && o0->header.type == option_type
1249 && o0->header.n_data_u64s == 1) ? o0 : 0);
1251 /* if src address unspecified IGNORE any options */
1252 if (PREDICT_TRUE (error0 == ICMP6_ERROR_NONE && o0 != 0 &&
1253 !is_unspecified && !is_link_local))
1255 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
1256 if (nm->limit_neighbor_cache_size &&
1257 pool_elts (nm->neighbor_pool) >=
1258 nm->limit_neighbor_cache_size)
1259 unset_random_neighbor_entry ();
1261 vnet_set_ip6_ethernet_neighbor (vm, sw_if_index0,
1263 o0->ethernet_address,
1264 sizeof (o0->ethernet_address),
1268 /* default is to drop */
1269 next0 = ICMP6_ROUTER_SOLICITATION_NEXT_DROP;
1271 if (error0 == ICMP6_ERROR_NONE)
1273 vnet_sw_interface_t *sw_if0;
1274 ethernet_interface_t *eth_if0;
1277 sw_if0 = vnet_get_sup_sw_interface (vnm, sw_if_index0);
1278 ASSERT (sw_if0->type == VNET_SW_INTERFACE_TYPE_HARDWARE);
1280 ethernet_get_interface (ðernet_main, sw_if0->hw_if_index);
1282 /* only support ethernet interface type for now */
1284 (!eth_if0) ? ICMP6_ERROR_ROUTER_SOLICITATION_UNSUPPORTED_INTF
1287 if (error0 == ICMP6_ERROR_NONE)
1291 /* adjust the sizeof the buffer to just include the ipv6 header */
1292 p0->current_length -=
1294 sizeof (icmp6_neighbor_discovery_header_t));
1296 /* look up the radv_t information for this interface */
1297 vec_validate_init_empty
1298 (nm->if_radv_pool_index_by_sw_if_index, sw_if_index0, ~0);
1300 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index0];
1303 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
1307 ICMP6_ERROR_ROUTER_SOLICITATION_RADV_NOT_CONFIG :
1310 if (error0 == ICMP6_ERROR_NONE)
1312 f64 now = vlib_time_now (vm);
1314 /* for solicited adverts - need to rate limit */
1315 if (is_solicitation)
1317 if (0 != radv_info->last_radv_time &&
1318 (now - radv_info->last_radv_time) <
1319 MIN_DELAY_BETWEEN_RAS)
1322 radv_info->last_radv_time = now;
1326 icmp6_router_advertisement_header_t rh;
1328 rh.icmp.type = ICMP6_router_advertisement;
1330 rh.icmp.checksum = 0;
1332 rh.current_hop_limit = radv_info->curr_hop_limit;
1333 rh.router_lifetime_in_sec =
1334 clib_host_to_net_u16
1335 (radv_info->adv_router_lifetime_in_sec);
1337 time_in_msec_between_retransmitted_neighbor_solicitations
1339 clib_host_to_net_u32 (radv_info->
1340 adv_time_in_msec_between_retransmitted_neighbor_solicitations);
1341 rh.neighbor_reachable_time_in_msec =
1342 clib_host_to_net_u32 (radv_info->
1343 adv_neighbor_reachable_time_in_msec);
1346 (radv_info->adv_managed_flag) ?
1347 ICMP6_ROUTER_DISCOVERY_FLAG_ADDRESS_CONFIG_VIA_DHCP :
1350 ((radv_info->adv_other_flag) ?
1351 ICMP6_ROUTER_DISCOVERY_FLAG_OTHER_CONFIG_VIA_DHCP :
1355 u16 payload_length =
1356 sizeof (icmp6_router_advertisement_header_t);
1358 vlib_buffer_add_data (vm,
1359 p0->free_list_index,
1363 (icmp6_router_advertisement_header_t));
1365 if (radv_info->adv_link_layer_address)
1367 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t
1371 ICMP6_NEIGHBOR_DISCOVERY_OPTION_source_link_layer_address;
1372 h.header.n_data_u64s = 1;
1374 /* copy ll address */
1375 clib_memcpy (&h.ethernet_address[0],
1376 eth_if0->address, 6);
1378 vlib_buffer_add_data (vm,
1379 p0->free_list_index,
1383 (icmp6_neighbor_discovery_ethernet_link_layer_address_option_t));
1387 (icmp6_neighbor_discovery_ethernet_link_layer_address_option_t);
1390 /* add MTU option */
1391 if (radv_info->adv_link_mtu)
1393 icmp6_neighbor_discovery_mtu_option_t h;
1397 clib_host_to_net_u32 (radv_info->adv_link_mtu);
1398 h.header.type = ICMP6_NEIGHBOR_DISCOVERY_OPTION_mtu;
1399 h.header.n_data_u64s = 1;
1402 sizeof (icmp6_neighbor_discovery_mtu_option_t);
1404 vlib_buffer_add_data (vm,
1405 p0->free_list_index,
1409 (icmp6_neighbor_discovery_mtu_option_t));
1412 /* add advertised prefix options */
1413 ip6_radv_prefix_t *pr_info;
1416 pool_foreach (pr_info, radv_info->adv_prefixes_pool,
1418 if(pr_info->enabled &&
1419 (!pr_info->decrement_lifetime_flag
1420 || (pr_info->pref_lifetime_expires >0)))
1422 /* advertise this prefix */
1423 icmp6_neighbor_discovery_prefix_information_option_t h;
1425 h.header.type = ICMP6_NEIGHBOR_DISCOVERY_OPTION_prefix_information;
1426 h.header.n_data_u64s = (sizeof(icmp6_neighbor_discovery_prefix_information_option_t) >> 3);
1428 h.dst_address_length = pr_info->prefix_len;
1430 h.flags = (pr_info->adv_on_link_flag) ? ICMP6_NEIGHBOR_DISCOVERY_PREFIX_INFORMATION_FLAG_ON_LINK : 0;
1431 h.flags |= (pr_info->adv_autonomous_flag) ? ICMP6_NEIGHBOR_DISCOVERY_PREFIX_INFORMATION_AUTO : 0;
1433 if(radv_info->cease_radv && pr_info->deprecated_prefix_flag)
1435 h.valid_time = clib_host_to_net_u32(MIN_ADV_VALID_LIFETIME);
1436 h.preferred_time = 0;
1440 if(pr_info->decrement_lifetime_flag)
1442 pr_info->adv_valid_lifetime_in_secs = ((pr_info->valid_lifetime_expires > now)) ?
1443 (pr_info->valid_lifetime_expires - now) : 0;
1445 pr_info->adv_pref_lifetime_in_secs = ((pr_info->pref_lifetime_expires > now)) ?
1446 (pr_info->pref_lifetime_expires - now) : 0;
1449 h.valid_time = clib_host_to_net_u32(pr_info->adv_valid_lifetime_in_secs);
1450 h.preferred_time = clib_host_to_net_u32(pr_info->adv_pref_lifetime_in_secs) ;
1454 clib_memcpy(&h.dst_address, &pr_info->prefix, sizeof(ip6_address_t));
1456 payload_length += sizeof( icmp6_neighbor_discovery_prefix_information_option_t);
1458 vlib_buffer_add_data (vm,
1459 p0->free_list_index,
1461 (void *)&h, sizeof(icmp6_neighbor_discovery_prefix_information_option_t));
1467 /* add additional options before here */
1469 /* finish building the router advertisement... */
1470 if (!is_unspecified && radv_info->send_unicast)
1472 ip0->dst_address = ip0->src_address;
1476 /* target address is all-nodes mcast addr */
1477 ip6_set_reserved_multicast_address
1479 IP6_MULTICAST_SCOPE_link_local,
1480 IP6_MULTICAST_GROUP_ID_all_hosts);
1483 /* source address MUST be the link-local address */
1484 ip0->src_address = radv_info->link_local_address;
1486 ip0->hop_limit = 255;
1487 ip0->payload_length =
1488 clib_host_to_net_u16 (payload_length);
1490 icmp6_router_advertisement_header_t *rh0 =
1491 (icmp6_router_advertisement_header_t *) (ip0 + 1);
1492 rh0->icmp.checksum =
1493 ip6_tcp_udp_icmp_compute_checksum (vm, p0, ip0,
1495 ASSERT (bogus_length == 0);
1497 /* setup output if and adjacency */
1498 vnet_buffer (p0)->sw_if_index[VLIB_RX] =
1499 vnet_main.local_interface_sw_if_index;
1501 if (is_solicitation)
1503 ethernet_header_t *eth0;
1504 /* Reuse current MAC header, copy SMAC to DMAC and
1505 * interface MAC to SMAC */
1506 vlib_buffer_reset (p0);
1507 eth0 = vlib_buffer_get_current (p0);
1508 clib_memcpy (eth0->dst_address, eth0->src_address,
1510 clib_memcpy (eth0->src_address, eth_if0->address,
1513 is_dropped ? next0 :
1514 ICMP6_ROUTER_SOLICITATION_NEXT_REPLY_TX;
1515 vnet_buffer (p0)->sw_if_index[VLIB_TX] =
1520 adj_index0 = radv_info->all_nodes_adj_index;
1521 if (adj_index0 == 0)
1522 error0 = ICMP6_ERROR_DST_LOOKUP_MISS;
1526 is_dropped ? next0 :
1527 ICMP6_ROUTER_SOLICITATION_NEXT_REPLY_RW;
1528 vnet_buffer (p0)->ip.adj_index[VLIB_TX] =
1532 p0->flags |= VNET_BUFFER_LOCALLY_ORIGINATED;
1534 radv_info->n_solicitations_dropped += is_dropped;
1535 radv_info->n_solicitations_rcvd += is_solicitation;
1537 if ((error0 == ICMP6_ERROR_NONE) && !is_dropped)
1539 radv_info->n_advertisements_sent++;
1540 n_advertisements_sent++;
1546 p0->error = error_node->errors[error0];
1548 if (error0 != ICMP6_ERROR_NONE)
1549 vlib_error_count (vm, error_node->node_index, error0, 1);
1551 vlib_validate_buffer_enqueue_x1 (vm, node, next_index,
1552 to_next, n_left_to_next,
1557 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
1560 /* Account for router advertisements sent. */
1561 vlib_error_count (vm, error_node->node_index,
1562 ICMP6_ERROR_ROUTER_ADVERTISEMENTS_TX,
1563 n_advertisements_sent);
1565 return frame->n_vectors;
1568 /* validate advertised info for consistancy (see RFC-4861 section 6.2.7) - log any inconsistencies, packet will always be dropped */
1569 static_always_inline uword
1570 icmp6_router_advertisement (vlib_main_t * vm,
1571 vlib_node_runtime_t * node, vlib_frame_t * frame)
1573 vnet_main_t *vnm = vnet_get_main ();
1574 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
1575 uword n_packets = frame->n_vectors;
1576 u32 *from, *to_next;
1577 u32 n_left_from, n_left_to_next, next_index;
1578 u32 n_advertisements_rcvd = 0;
1580 vlib_node_runtime_t *error_node =
1581 vlib_node_get_runtime (vm, ip6_icmp_input_node.index);
1583 from = vlib_frame_vector_args (frame);
1584 n_left_from = n_packets;
1585 next_index = node->cached_next_index;
1587 if (node->flags & VLIB_NODE_FLAG_TRACE)
1588 vlib_trace_frame_buffers_only (vm, node, from, frame->n_vectors,
1590 sizeof (icmp6_input_trace_t));
1592 while (n_left_from > 0)
1594 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
1596 while (n_left_from > 0 && n_left_to_next > 0)
1600 ip6_radv_t *radv_info = 0;
1601 icmp6_router_advertisement_header_t *h0;
1602 u32 bi0, options_len0, sw_if_index0, next0, error0;
1604 bi0 = to_next[0] = from[0];
1609 n_left_to_next -= 1;
1611 p0 = vlib_get_buffer (vm, bi0);
1612 ip0 = vlib_buffer_get_current (p0);
1613 h0 = ip6_next_header (ip0);
1615 clib_net_to_host_u16 (ip0->payload_length) - sizeof (h0[0]);
1617 error0 = ICMP6_ERROR_NONE;
1618 sw_if_index0 = vnet_buffer (p0)->sw_if_index[VLIB_RX];
1620 /* Check that source address is link-local */
1621 error0 = (!ip6_address_is_link_local_unicast (&ip0->src_address)) ?
1622 ICMP6_ERROR_ROUTER_ADVERTISEMENT_SOURCE_NOT_LINK_LOCAL : error0;
1624 /* default is to drop */
1625 next0 = ICMP6_ROUTER_SOLICITATION_NEXT_DROP;
1627 n_advertisements_rcvd++;
1629 if (error0 == ICMP6_ERROR_NONE)
1631 vnet_sw_interface_t *sw_if0;
1632 ethernet_interface_t *eth_if0;
1634 sw_if0 = vnet_get_sup_sw_interface (vnm, sw_if_index0);
1635 ASSERT (sw_if0->type == VNET_SW_INTERFACE_TYPE_HARDWARE);
1637 ethernet_get_interface (ðernet_main, sw_if0->hw_if_index);
1639 /* only support ethernet interface type for now */
1641 (!eth_if0) ? ICMP6_ERROR_ROUTER_SOLICITATION_UNSUPPORTED_INTF
1644 if (error0 == ICMP6_ERROR_NONE)
1648 /* look up the radv_t information for this interface */
1649 vec_validate_init_empty
1650 (nm->if_radv_pool_index_by_sw_if_index, sw_if_index0, ~0);
1652 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index0];
1655 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
1659 ICMP6_ERROR_ROUTER_SOLICITATION_RADV_NOT_CONFIG :
1662 if (error0 == ICMP6_ERROR_NONE)
1664 /* validate advertised information */
1665 if ((h0->current_hop_limit && radv_info->curr_hop_limit)
1666 && (h0->current_hop_limit !=
1667 radv_info->curr_hop_limit))
1669 ip6_neighbor_syslog (vm, LOG_WARNING,
1670 "our AdvCurHopLimit on %U doesn't agree with %U",
1671 format_vnet_sw_if_index_name,
1678 ICMP6_ROUTER_DISCOVERY_FLAG_ADDRESS_CONFIG_VIA_DHCP)
1679 != radv_info->adv_managed_flag)
1681 ip6_neighbor_syslog (vm, LOG_WARNING,
1682 "our AdvManagedFlag on %U doesn't agree with %U",
1683 format_vnet_sw_if_index_name,
1690 ICMP6_ROUTER_DISCOVERY_FLAG_OTHER_CONFIG_VIA_DHCP)
1691 != radv_info->adv_other_flag)
1693 ip6_neighbor_syslog (vm, LOG_WARNING,
1694 "our AdvOtherConfigFlag on %U doesn't agree with %U",
1695 format_vnet_sw_if_index_name,
1702 time_in_msec_between_retransmitted_neighbor_solicitations
1704 adv_time_in_msec_between_retransmitted_neighbor_solicitations)
1706 time_in_msec_between_retransmitted_neighbor_solicitations
1708 clib_host_to_net_u32 (radv_info->
1709 adv_time_in_msec_between_retransmitted_neighbor_solicitations)))
1711 ip6_neighbor_syslog (vm, LOG_WARNING,
1712 "our AdvRetransTimer on %U doesn't agree with %U",
1713 format_vnet_sw_if_index_name,
1719 if ((h0->neighbor_reachable_time_in_msec &&
1720 radv_info->adv_neighbor_reachable_time_in_msec) &&
1721 (h0->neighbor_reachable_time_in_msec !=
1722 clib_host_to_net_u32
1723 (radv_info->adv_neighbor_reachable_time_in_msec)))
1725 ip6_neighbor_syslog (vm, LOG_WARNING,
1726 "our AdvReachableTime on %U doesn't agree with %U",
1727 format_vnet_sw_if_index_name,
1733 /* check for MTU or prefix options or .. */
1734 u8 *opt_hdr = (u8 *) (h0 + 1);
1735 while (options_len0 > 0)
1737 icmp6_neighbor_discovery_option_header_t *o0 =
1738 (icmp6_neighbor_discovery_option_header_t *)
1740 int opt_len = o0->n_data_u64s << 3;
1741 icmp6_neighbor_discovery_option_type_t option_type =
1744 if (options_len0 < 2)
1746 ip6_neighbor_syslog (vm, LOG_ERR,
1747 "malformed RA packet on %U from %U",
1748 format_vnet_sw_if_index_name,
1757 ip6_neighbor_syslog (vm, LOG_ERR,
1758 " zero length option in RA on %U from %U",
1759 format_vnet_sw_if_index_name,
1765 else if (opt_len > options_len0)
1767 ip6_neighbor_syslog (vm, LOG_ERR,
1768 "option length in RA packet greater than total length on %U from %U",
1769 format_vnet_sw_if_index_name,
1776 options_len0 -= opt_len;
1779 switch (option_type)
1781 case ICMP6_NEIGHBOR_DISCOVERY_OPTION_mtu:
1783 icmp6_neighbor_discovery_mtu_option_t *h =
1784 (icmp6_neighbor_discovery_mtu_option_t
1787 if (opt_len < sizeof (*h))
1790 if ((h->mtu && radv_info->adv_link_mtu) &&
1792 clib_host_to_net_u32
1793 (radv_info->adv_link_mtu)))
1795 ip6_neighbor_syslog (vm, LOG_WARNING,
1796 "our AdvLinkMTU on %U doesn't agree with %U",
1797 format_vnet_sw_if_index_name,
1805 case ICMP6_NEIGHBOR_DISCOVERY_OPTION_prefix_information:
1807 icmp6_neighbor_discovery_prefix_information_option_t
1809 (icmp6_neighbor_discovery_prefix_information_option_t
1812 /* validate advertised prefix options */
1813 ip6_radv_prefix_t *pr_info;
1814 u32 preferred, valid;
1816 if (opt_len < sizeof (*h))
1820 clib_net_to_host_u32 (h->preferred_time);
1821 valid = clib_net_to_host_u32 (h->valid_time);
1823 /* look for matching prefix - if we our advertising it, it better be consistant */
1825 pool_foreach (pr_info, radv_info->adv_prefixes_pool,
1829 ip6_address_mask_from_width(&mask, pr_info->prefix_len);
1831 if(pr_info->enabled &&
1832 (pr_info->prefix_len == h->dst_address_length) &&
1833 ip6_address_is_equal_masked (&pr_info->prefix, &h->dst_address, &mask))
1836 if(!pr_info->decrement_lifetime_flag &&
1837 valid != pr_info->adv_valid_lifetime_in_secs)
1839 ip6_neighbor_syslog(vm, LOG_WARNING,
1840 "our ADV validlifetime on %U for %U does not agree with %U",
1841 format_vnet_sw_if_index_name, vnm, sw_if_index0,format_ip6_address, &pr_info->prefix,
1842 format_ip6_address, &h->dst_address);
1844 if(!pr_info->decrement_lifetime_flag &&
1845 preferred != pr_info->adv_pref_lifetime_in_secs)
1847 ip6_neighbor_syslog(vm, LOG_WARNING,
1848 "our ADV preferredlifetime on %U for %U does not agree with %U",
1849 format_vnet_sw_if_index_name, vnm, sw_if_index0,format_ip6_address, &pr_info->prefix,
1850 format_ip6_address, &h->dst_address);
1867 p0->error = error_node->errors[error0];
1869 if (error0 != ICMP6_ERROR_NONE)
1870 vlib_error_count (vm, error_node->node_index, error0, 1);
1872 vlib_validate_buffer_enqueue_x1 (vm, node, next_index,
1873 to_next, n_left_to_next,
1877 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
1880 /* Account for router advertisements sent. */
1881 vlib_error_count (vm, error_node->node_index,
1882 ICMP6_ERROR_ROUTER_ADVERTISEMENTS_RX,
1883 n_advertisements_rcvd);
1885 return frame->n_vectors;
1888 /* create and initialize router advertisement parameters with default values for this intfc */
1890 ip6_neighbor_sw_interface_add_del (vnet_main_t * vnm,
1891 u32 sw_if_index, u32 is_add)
1893 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
1896 vnet_sw_interface_t *sw_if0;
1897 ethernet_interface_t *eth_if0 = 0;
1899 /* lookup radv container - ethernet interfaces only */
1900 sw_if0 = vnet_get_sup_sw_interface (vnm, sw_if_index);
1901 if (sw_if0->type == VNET_SW_INTERFACE_TYPE_HARDWARE)
1902 eth_if0 = ethernet_get_interface (ðernet_main, sw_if0->hw_if_index);
1907 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index, sw_if_index,
1909 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
1913 a = pool_elt_at_index (nm->if_radv_pool, ri);
1917 u32 i, *to_delete = 0;
1918 ip6_radv_prefix_t *p;
1919 ip6_mldp_group_t *m;
1921 /* remove adjacencies */
1922 adj_unlock (a->all_nodes_adj_index);
1923 adj_unlock (a->all_routers_adj_index);
1924 adj_unlock (a->all_mldv2_routers_adj_index);
1926 /* clean up prefix_pool */
1928 pool_foreach (p, a->adv_prefixes_pool,
1930 vec_add1 (to_delete, p - a->adv_prefixes_pool);
1934 for (i = 0; i < vec_len (to_delete); i++)
1936 p = pool_elt_at_index (a->adv_prefixes_pool, to_delete[i]);
1937 mhash_unset (&a->address_to_prefix_index, &p->prefix, 0);
1938 pool_put (a->adv_prefixes_pool, p);
1941 vec_free (to_delete);
1944 /* clean up mldp group pool */
1946 pool_foreach (m, a->mldp_group_pool,
1948 vec_add1 (to_delete, m - a->mldp_group_pool);
1952 for (i = 0; i < vec_len (to_delete); i++)
1954 m = pool_elt_at_index (a->mldp_group_pool, to_delete[i]);
1955 mhash_unset (&a->address_to_mldp_index, &m->mcast_address, 0);
1956 pool_put (a->mldp_group_pool, m);
1959 vec_free (to_delete);
1961 pool_put (nm->if_radv_pool, a);
1962 nm->if_radv_pool_index_by_sw_if_index[sw_if_index] = ~0;
1970 vnet_hw_interface_t *hw_if0;
1972 hw_if0 = vnet_get_sup_hw_interface (vnm, sw_if_index);
1974 pool_get (nm->if_radv_pool, a);
1976 ri = a - nm->if_radv_pool;
1977 nm->if_radv_pool_index_by_sw_if_index[sw_if_index] = ri;
1979 /* initialize default values (most of which are zero) */
1980 memset (a, 0, sizeof (a[0]));
1982 a->sw_if_index = sw_if_index;
1984 a->max_radv_interval = DEF_MAX_RADV_INTERVAL;
1985 a->min_radv_interval = DEF_MIN_RADV_INTERVAL;
1986 a->curr_hop_limit = DEF_CURR_HOP_LIMIT;
1987 a->adv_router_lifetime_in_sec = DEF_DEF_RTR_LIFETIME;
1989 a->adv_link_layer_address = 1; /* send ll address source address option */
1991 a->min_delay_between_radv = MIN_DELAY_BETWEEN_RAS;
1992 a->max_delay_between_radv = MAX_DELAY_BETWEEN_RAS;
1993 a->max_rtr_default_lifetime = MAX_DEF_RTR_LIFETIME;
1994 a->seed = (u32) clib_cpu_time_now ();
1995 (void) random_u32 (&a->seed);
1996 a->randomizer = clib_cpu_time_now ();
1997 (void) random_u64 (&a->randomizer);
1999 a->initial_adverts_count = MAX_INITIAL_RTR_ADVERTISEMENTS;
2000 a->initial_adverts_sent = a->initial_adverts_count - 1;
2001 a->initial_adverts_interval = MAX_INITIAL_RTR_ADVERT_INTERVAL;
2003 /* deafult is to send */
2006 /* fill in radv_info for this interface that will be needed later */
2007 a->adv_link_mtu = hw_if0->max_l3_packet_bytes[VLIB_RX];
2009 clib_memcpy (a->link_layer_address, eth_if0->address, 6);
2011 /* fill in default link-local address (this may be overridden) */
2012 ip6_link_local_address_from_ethernet_address
2013 (&a->link_local_address, eth_if0->address);
2015 mhash_init (&a->address_to_prefix_index, sizeof (uword),
2016 sizeof (ip6_address_t));
2017 mhash_init (&a->address_to_mldp_index, sizeof (uword),
2018 sizeof (ip6_address_t));
2021 u8 link_layer_address[6] = { 0x33, 0x33, 0x00, 0x00, 0x00,
2022 IP6_MULTICAST_GROUP_ID_all_hosts
2025 a->all_nodes_adj_index =
2026 adj_rewrite_add_and_lock (FIB_PROTOCOL_IP6, VNET_LINK_IP6,
2027 sw_if_index, link_layer_address);
2031 u8 link_layer_address[6] = { 0x33, 0x33, 0x00, 0x00, 0x00,
2032 IP6_MULTICAST_GROUP_ID_all_routers
2035 a->all_routers_adj_index =
2036 adj_rewrite_add_and_lock (FIB_PROTOCOL_IP6, VNET_LINK_IP6,
2037 sw_if_index, link_layer_address);
2041 u8 link_layer_address[6] = { 0x33, 0x33, 0x00, 0x00, 0x00,
2042 IP6_MULTICAST_GROUP_ID_mldv2_routers
2045 a->all_mldv2_routers_adj_index =
2046 adj_rewrite_add_and_lock (FIB_PROTOCOL_IP6,
2048 sw_if_index, link_layer_address);
2051 /* add multicast groups we will always be reporting */
2053 ip6_mldp_group_t *mcast_group_info;
2055 ip6_set_reserved_multicast_address (&addr,
2056 IP6_MULTICAST_SCOPE_link_local,
2057 IP6_MULTICAST_GROUP_ID_all_hosts);
2059 /* lookup mldp info for this interface */
2061 uword *p = mhash_get (&a->address_to_mldp_index, &addr);
2063 p ? pool_elt_at_index (a->mldp_group_pool, p[0]) : 0;
2066 if (!mcast_group_info)
2070 pool_get (a->mldp_group_pool, mcast_group_info);
2072 mi = mcast_group_info - a->mldp_group_pool;
2073 mhash_set (&a->address_to_mldp_index, &addr, mi, /* old_value */
2076 mcast_group_info->type = 4;
2077 mcast_group_info->mcast_source_address_pool = 0;
2078 mcast_group_info->num_sources = 0;
2079 clib_memcpy (&mcast_group_info->mcast_address, &addr,
2080 sizeof (ip6_address_t));
2083 ip6_set_reserved_multicast_address (&addr,
2084 IP6_MULTICAST_SCOPE_link_local,
2085 IP6_MULTICAST_GROUP_ID_all_routers);
2087 p = mhash_get (&a->address_to_mldp_index, &addr);
2089 p ? pool_elt_at_index (a->mldp_group_pool, p[0]) : 0;
2091 if (!mcast_group_info)
2095 pool_get (a->mldp_group_pool, mcast_group_info);
2097 mi = mcast_group_info - a->mldp_group_pool;
2098 mhash_set (&a->address_to_mldp_index, &addr, mi, /* old_value */
2101 mcast_group_info->type = 4;
2102 mcast_group_info->mcast_source_address_pool = 0;
2103 mcast_group_info->num_sources = 0;
2104 clib_memcpy (&mcast_group_info->mcast_address, &addr,
2105 sizeof (ip6_address_t));
2108 ip6_set_reserved_multicast_address (&addr,
2109 IP6_MULTICAST_SCOPE_link_local,
2110 IP6_MULTICAST_GROUP_ID_mldv2_routers);
2112 p = mhash_get (&a->address_to_mldp_index, &addr);
2114 p ? pool_elt_at_index (a->mldp_group_pool, p[0]) : 0;
2116 if (!mcast_group_info)
2120 pool_get (a->mldp_group_pool, mcast_group_info);
2122 mi = mcast_group_info - a->mldp_group_pool;
2123 mhash_set (&a->address_to_mldp_index, &addr, mi, /* old_value */
2126 mcast_group_info->type = 4;
2127 mcast_group_info->mcast_source_address_pool = 0;
2128 mcast_group_info->num_sources = 0;
2129 clib_memcpy (&mcast_group_info->mcast_address, &addr,
2130 sizeof (ip6_address_t));
2137 /* send an mldpv2 report */
2139 ip6_neighbor_send_mldpv2_report (u32 sw_if_index)
2141 vnet_main_t *vnm = vnet_get_main ();
2142 vlib_main_t *vm = vnm->vlib_main;
2143 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
2144 vnet_sw_interface_t *sw_if0;
2145 ethernet_interface_t *eth_if0;
2149 ip6_radv_t *radv_info;
2159 icmp6_multicast_listener_report_header_t *rh0;
2160 icmp6_multicast_listener_report_packet_t *rp0;
2162 sw_if0 = vnet_get_sup_sw_interface (vnm, sw_if_index);
2163 ASSERT (sw_if0->type == VNET_SW_INTERFACE_TYPE_HARDWARE);
2164 eth_if0 = ethernet_get_interface (ðernet_main, sw_if0->hw_if_index);
2166 if (!eth_if0 || !vnet_sw_interface_is_admin_up (vnm, sw_if_index))
2169 /* look up the radv_t information for this interface */
2170 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index, sw_if_index,
2173 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
2178 /* send report now - build a mldpv2 report packet */
2179 n_allocated = vlib_buffer_alloc_from_free_list (vm,
2182 VLIB_BUFFER_DEFAULT_FREE_LIST_INDEX);
2183 if (PREDICT_FALSE (n_allocated == 0))
2185 clib_warning ("buffer allocation failure");
2189 b0 = vlib_get_buffer (vm, bo0);
2191 /* adjust the sizeof the buffer to just include the ipv6 header */
2192 b0->current_length = sizeof (icmp6_multicast_listener_report_packet_t);
2194 payload_length = sizeof (icmp6_multicast_listener_report_header_t);
2196 b0->error = ICMP6_ERROR_NONE;
2198 rp0 = vlib_buffer_get_current (b0);
2199 ip0 = (ip6_header_t *) & rp0->ip;
2200 rh0 = (icmp6_multicast_listener_report_header_t *) & rp0->report_hdr;
2202 memset (rp0, 0x0, sizeof (icmp6_multicast_listener_report_packet_t));
2204 ip0->ip_version_traffic_class_and_flow_label =
2205 clib_host_to_net_u32 (0x6 << 28);
2207 ip0->protocol = IP_PROTOCOL_IP6_HOP_BY_HOP_OPTIONS;
2208 /* for DEBUG - vnet driver won't seem to emit router alerts */
2209 /* ip0->protocol = IP_PROTOCOL_ICMP6; */
2212 rh0->icmp.type = ICMP6_multicast_listener_report_v2;
2214 /* source address MUST be the link-local address */
2215 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
2216 ip0->src_address = radv_info->link_local_address;
2218 /* destination is all mldpv2 routers */
2219 ip6_set_reserved_multicast_address (&ip0->dst_address,
2220 IP6_MULTICAST_SCOPE_link_local,
2221 IP6_MULTICAST_GROUP_ID_mldv2_routers);
2223 /* add reports here */
2224 ip6_mldp_group_t *m;
2225 int num_addr_records = 0;
2226 icmp6_multicast_address_record_t rr;
2228 /* fill in the hop-by-hop extension header (router alert) info */
2229 rh0->ext_hdr.next_hdr = IP_PROTOCOL_ICMP6;
2230 rh0->ext_hdr.n_data_u64s = 0;
2232 rh0->alert.type = IP6_MLDP_ALERT_TYPE;
2234 rh0->alert.value = 0;
2239 rh0->icmp.checksum = 0;
2242 pool_foreach (m, radv_info->mldp_group_pool,
2245 rr.aux_data_len_u32s = 0;
2246 rr.num_sources = clib_host_to_net_u16 (m->num_sources);
2247 clib_memcpy(&rr.mcast_addr, &m->mcast_address, sizeof(ip6_address_t));
2251 vlib_buffer_add_data
2252 (vm, b0->free_list_index, bo0,
2253 (void *)&rr, sizeof(icmp6_multicast_address_record_t));
2255 payload_length += sizeof( icmp6_multicast_address_record_t);
2260 rh0->num_addr_records = clib_host_to_net_u16 (num_addr_records);
2262 /* update lengths */
2263 ip0->payload_length = clib_host_to_net_u16 (payload_length);
2265 rh0->icmp.checksum = ip6_tcp_udp_icmp_compute_checksum (vm, b0, ip0,
2267 ASSERT (bogus_length == 0);
2270 * OK to override w/ no regard for actual FIB, because
2271 * ip6-rewrite only looks at the adjacency.
2273 vnet_buffer (b0)->sw_if_index[VLIB_RX] =
2274 vnet_main.local_interface_sw_if_index;
2276 vnet_buffer (b0)->ip.adj_index[VLIB_TX] =
2277 radv_info->all_mldv2_routers_adj_index;
2278 b0->flags |= VNET_BUFFER_LOCALLY_ORIGINATED;
2280 vlib_node_t *node = vlib_get_node_by_name (vm, (u8 *) "ip6-rewrite");
2282 f = vlib_get_frame_to_node (vm, node->index);
2283 to_next = vlib_frame_vector_args (f);
2287 vlib_put_frame_to_node (vm, node->index, f);
2292 VLIB_REGISTER_NODE (ip6_icmp_router_solicitation_node,static) =
2294 .function = icmp6_router_solicitation,
2295 .name = "icmp6-router-solicitation",
2297 .vector_size = sizeof (u32),
2299 .format_trace = format_icmp6_input_trace,
2301 .n_next_nodes = ICMP6_ROUTER_SOLICITATION_N_NEXT,
2303 [ICMP6_ROUTER_SOLICITATION_NEXT_DROP] = "error-drop",
2304 [ICMP6_ROUTER_SOLICITATION_NEXT_REPLY_RW] = "ip6-rewrite",
2305 [ICMP6_ROUTER_SOLICITATION_NEXT_REPLY_TX] = "interface-output",
2310 /* send a RA or update the timer info etc.. */
2312 ip6_neighbor_process_timer_event (vlib_main_t * vm,
2313 vlib_node_runtime_t * node,
2314 vlib_frame_t * frame)
2316 vnet_main_t *vnm = vnet_get_main ();
2317 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
2318 ip6_radv_t *radv_info;
2319 vlib_frame_t *f = 0;
2320 u32 n_this_frame = 0;
2321 u32 n_left_to_next = 0;
2324 icmp6_router_solicitation_header_t *h0;
2326 f64 now = vlib_time_now (vm);
2328 /* Interface ip6 radv info list */
2330 pool_foreach (radv_info, nm->if_radv_pool,
2332 if( !vnet_sw_interface_is_admin_up (vnm, radv_info->sw_if_index))
2334 radv_info->initial_adverts_sent = radv_info->initial_adverts_count-1;
2335 radv_info->next_multicast_time = now;
2336 radv_info->last_multicast_time = now;
2337 radv_info->last_radv_time = 0;
2338 radv_info->all_routers_mcast = 0;
2342 /* Make sure that we've joined the all-routers multicast group */
2343 if(!radv_info->all_routers_mcast)
2345 /* send MDLP_REPORT_EVENT message */
2346 ip6_neighbor_send_mldpv2_report(radv_info->sw_if_index);
2347 radv_info->all_routers_mcast = 1;
2350 /* is it time to send a multicast RA on this interface? */
2351 if(radv_info->send_radv && (now >= radv_info->next_multicast_time))
2356 f64 rfn = (radv_info->max_radv_interval - radv_info->min_radv_interval) *
2357 random_f64 (&radv_info->seed) + radv_info->min_radv_interval;
2359 /* multicast send - compute next multicast send time */
2360 if( radv_info->initial_adverts_sent > 0)
2362 radv_info->initial_adverts_sent--;
2363 if(rfn > radv_info-> initial_adverts_interval)
2364 rfn = radv_info-> initial_adverts_interval;
2366 /* check to see if we are ceasing to send */
2367 if( radv_info->initial_adverts_sent == 0)
2368 if(radv_info->cease_radv)
2369 radv_info->send_radv = 0;
2372 radv_info->next_multicast_time = rfn + now;
2373 radv_info->last_multicast_time = now;
2375 /* send advert now - build a "solicted" router advert with unspecified source address */
2376 n_allocated = vlib_buffer_alloc_from_free_list
2377 (vm, &bo0, n_to_alloc, VLIB_BUFFER_DEFAULT_FREE_LIST_INDEX);
2379 if (PREDICT_FALSE(n_allocated == 0))
2381 clib_warning ("buffer allocation failure");
2384 b0 = vlib_get_buffer (vm, bo0);
2385 b0->current_length = sizeof( icmp6_router_solicitation_header_t);
2386 b0->error = ICMP6_ERROR_NONE;
2387 vnet_buffer (b0)->sw_if_index[VLIB_RX] = radv_info->sw_if_index;
2389 h0 = vlib_buffer_get_current (b0);
2391 memset (h0, 0, sizeof (icmp6_router_solicitation_header_t));
2393 h0->ip.ip_version_traffic_class_and_flow_label = clib_host_to_net_u32 (0x6 << 28);
2394 h0->ip.payload_length = clib_host_to_net_u16 (sizeof (icmp6_router_solicitation_header_t)
2395 - STRUCT_OFFSET_OF (icmp6_router_solicitation_header_t, neighbor));
2396 h0->ip.protocol = IP_PROTOCOL_ICMP6;
2397 h0->ip.hop_limit = 255;
2399 /* set src/dst address as "unspecified" this marks this packet as internally generated rather than recieved */
2400 h0->ip.src_address.as_u64[0] = 0;
2401 h0->ip.src_address.as_u64[1] = 0;
2403 h0->ip.dst_address.as_u64[0] = 0;
2404 h0->ip.dst_address.as_u64[1] = 0;
2406 h0->neighbor.icmp.type = ICMP6_router_solicitation;
2408 if (PREDICT_FALSE(f == 0))
2410 f = vlib_get_frame_to_node (vm, ip6_icmp_router_solicitation_node.index);
2411 to_next = vlib_frame_vector_args (f);
2412 n_left_to_next = VLIB_FRAME_SIZE;
2421 if (PREDICT_FALSE(n_left_to_next == 0))
2423 f->n_vectors = n_this_frame;
2424 vlib_put_frame_to_node (vm, ip6_icmp_router_solicitation_node.index, f);
2433 ASSERT (n_this_frame);
2434 f->n_vectors = n_this_frame;
2435 vlib_put_frame_to_node (vm, ip6_icmp_router_solicitation_node.index, f);
2441 ip6_icmp_neighbor_discovery_event_process (vlib_main_t * vm,
2442 vlib_node_runtime_t * node,
2443 vlib_frame_t * frame)
2446 ip6_icmp_neighbor_discovery_event_data_t *event_data;
2448 /* init code here */
2452 vlib_process_wait_for_event_or_clock (vm, 1. /* seconds */ );
2454 event_data = vlib_process_get_event_data (vm, &event_type);
2458 /* No events found: timer expired. */
2459 /* process interface list and send RAs as appropriate, update timer info */
2460 ip6_neighbor_process_timer_event (vm, node, frame);
2467 case ICMP6_ND_EVENT_INIT:
2478 _vec_len (event_data) = 0;
2481 return frame->n_vectors;
2485 VLIB_REGISTER_NODE (ip6_icmp_router_advertisement_node,static) =
2487 .function = icmp6_router_advertisement,
2488 .name = "icmp6-router-advertisement",
2490 .vector_size = sizeof (u32),
2492 .format_trace = format_icmp6_input_trace,
2501 vlib_node_registration_t ip6_icmp_neighbor_discovery_event_node = {
2503 .function = ip6_icmp_neighbor_discovery_event_process,
2504 .name = "ip6-icmp-neighbor-discovery-event-process",
2505 .type = VLIB_NODE_TYPE_PROCESS,
2509 icmp6_neighbor_solicitation (vlib_main_t * vm,
2510 vlib_node_runtime_t * node, vlib_frame_t * frame)
2512 return icmp6_neighbor_solicitation_or_advertisement (vm, node, frame,
2513 /* is_solicitation */
2518 icmp6_neighbor_advertisement (vlib_main_t * vm,
2519 vlib_node_runtime_t * node,
2520 vlib_frame_t * frame)
2522 return icmp6_neighbor_solicitation_or_advertisement (vm, node, frame,
2523 /* is_solicitation */
2528 VLIB_REGISTER_NODE (ip6_icmp_neighbor_solicitation_node,static) =
2530 .function = icmp6_neighbor_solicitation,
2531 .name = "icmp6-neighbor-solicitation",
2533 .vector_size = sizeof (u32),
2535 .format_trace = format_icmp6_input_trace,
2537 .n_next_nodes = ICMP6_NEIGHBOR_SOLICITATION_N_NEXT,
2539 [ICMP6_NEIGHBOR_SOLICITATION_NEXT_DROP] = "error-drop",
2540 [ICMP6_NEIGHBOR_SOLICITATION_NEXT_REPLY] = "interface-output",
2546 VLIB_REGISTER_NODE (ip6_icmp_neighbor_advertisement_node,static) =
2548 .function = icmp6_neighbor_advertisement,
2549 .name = "icmp6-neighbor-advertisement",
2551 .vector_size = sizeof (u32),
2553 .format_trace = format_icmp6_input_trace,
2562 /* API support functions */
2564 ip6_neighbor_ra_config (vlib_main_t * vm, u32 sw_if_index,
2565 u8 suppress, u8 managed, u8 other,
2566 u8 ll_option, u8 send_unicast, u8 cease,
2567 u8 use_lifetime, u32 lifetime,
2568 u32 initial_count, u32 initial_interval,
2569 u32 max_interval, u32 min_interval, u8 is_no)
2571 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
2575 /* look up the radv_t information for this interface */
2576 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index, sw_if_index,
2578 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
2579 error = (ri != ~0) ? 0 : VNET_API_ERROR_INVALID_SW_IF_INDEX;
2584 ip6_radv_t *radv_info;
2585 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
2587 if ((max_interval != 0) && (min_interval == 0))
2588 min_interval = .75 * max_interval;
2592 0) ? ((is_no) ? DEF_MAX_RADV_INTERVAL : max_interval) :
2593 radv_info->max_radv_interval;
2596 0) ? ((is_no) ? DEF_MIN_RADV_INTERVAL : min_interval) :
2597 radv_info->min_radv_interval;
2600 0) ? ((is_no) ? DEF_DEF_RTR_LIFETIME : lifetime) :
2601 radv_info->adv_router_lifetime_in_sec;
2605 if (lifetime > MAX_DEF_RTR_LIFETIME)
2606 lifetime = MAX_DEF_RTR_LIFETIME;
2608 if (lifetime <= max_interval)
2609 return VNET_API_ERROR_INVALID_VALUE;
2612 if (min_interval != 0)
2614 if ((min_interval > .75 * max_interval) || (min_interval < 3))
2615 return VNET_API_ERROR_INVALID_VALUE;
2618 if ((initial_count > MAX_INITIAL_RTR_ADVERTISEMENTS) ||
2619 (initial_interval > MAX_INITIAL_RTR_ADVERT_INTERVAL))
2620 return VNET_API_ERROR_INVALID_VALUE;
2623 if "flag" is set and is_no is true then restore default value else set value corresponding to "flag"
2624 if "flag" is clear don't change corresponding value
2626 radv_info->send_radv =
2627 (suppress != 0) ? ((is_no != 0) ? 1 : 0) : radv_info->send_radv;
2628 radv_info->adv_managed_flag =
2629 (managed != 0) ? ((is_no) ? 0 : 1) : radv_info->adv_managed_flag;
2630 radv_info->adv_other_flag =
2631 (other != 0) ? ((is_no) ? 0 : 1) : radv_info->adv_other_flag;
2632 radv_info->adv_link_layer_address =
2634 0) ? ((is_no) ? 1 : 0) : radv_info->adv_link_layer_address;
2635 radv_info->send_unicast =
2636 (send_unicast != 0) ? ((is_no) ? 0 : 1) : radv_info->send_unicast;
2637 radv_info->cease_radv =
2638 (cease != 0) ? ((is_no) ? 0 : 1) : radv_info->cease_radv;
2640 radv_info->min_radv_interval = min_interval;
2641 radv_info->max_radv_interval = max_interval;
2642 radv_info->adv_router_lifetime_in_sec = lifetime;
2644 radv_info->initial_adverts_count =
2646 0) ? ((is_no) ? MAX_INITIAL_RTR_ADVERTISEMENTS : initial_count) :
2647 radv_info->initial_adverts_count;
2648 radv_info->initial_adverts_interval =
2649 (initial_interval !=
2650 0) ? ((is_no) ? MAX_INITIAL_RTR_ADVERT_INTERVAL : initial_interval) :
2651 radv_info->initial_adverts_interval;
2654 if ((cease != 0) && (is_no))
2655 radv_info->send_radv = 1;
2657 radv_info->initial_adverts_sent = radv_info->initial_adverts_count - 1;
2658 radv_info->next_multicast_time = vlib_time_now (vm);
2659 radv_info->last_multicast_time = vlib_time_now (vm);
2660 radv_info->last_radv_time = 0;
2666 ip6_neighbor_ra_prefix (vlib_main_t * vm, u32 sw_if_index,
2667 ip6_address_t * prefix_addr, u8 prefix_len,
2668 u8 use_default, u32 val_lifetime, u32 pref_lifetime,
2669 u8 no_advertise, u8 off_link, u8 no_autoconfig,
2670 u8 no_onlink, u8 is_no)
2672 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
2677 /* look up the radv_t information for this interface */
2678 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index, sw_if_index,
2681 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
2683 error = (ri != ~0) ? 0 : VNET_API_ERROR_INVALID_SW_IF_INDEX;
2687 f64 now = vlib_time_now (vm);
2688 ip6_radv_t *radv_info;
2689 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
2691 /* prefix info add, delete or update */
2692 ip6_radv_prefix_t *prefix;
2694 /* lookup prefix info for this address on this interface */
2695 uword *p = mhash_get (&radv_info->address_to_prefix_index, prefix_addr);
2697 prefix = p ? pool_elt_at_index (radv_info->adv_prefixes_pool, p[0]) : 0;
2703 return VNET_API_ERROR_INVALID_VALUE; /* invalid prefix */
2705 if (prefix->prefix_len != prefix_len)
2706 return VNET_API_ERROR_INVALID_VALUE_2;
2708 /* FIXME - Should the DP do this or the CP ? */
2709 /* do specific delete processing here before returning */
2710 /* try to remove from routing table */
2712 mhash_unset (&radv_info->address_to_prefix_index, prefix_addr,
2714 pool_put (radv_info->adv_prefixes_pool, prefix);
2716 radv_info->initial_adverts_sent =
2717 radv_info->initial_adverts_count - 1;
2718 radv_info->next_multicast_time = vlib_time_now (vm);
2719 radv_info->last_multicast_time = vlib_time_now (vm);
2720 radv_info->last_radv_time = 0;
2724 /* adding or changing */
2729 pool_get (radv_info->adv_prefixes_pool, prefix);
2730 pi = prefix - radv_info->adv_prefixes_pool;
2731 mhash_set (&radv_info->address_to_prefix_index, prefix_addr, pi,
2734 memset (prefix, 0x0, sizeof (ip6_radv_prefix_t));
2736 prefix->prefix_len = prefix_len;
2737 clib_memcpy (&prefix->prefix, prefix_addr, sizeof (ip6_address_t));
2739 /* initialize default values */
2740 prefix->adv_on_link_flag = 1; /* L bit set */
2741 prefix->adv_autonomous_flag = 1; /* A bit set */
2742 prefix->adv_valid_lifetime_in_secs = DEF_ADV_VALID_LIFETIME;
2743 prefix->adv_pref_lifetime_in_secs = DEF_ADV_PREF_LIFETIME;
2744 prefix->enabled = 1;
2745 prefix->decrement_lifetime_flag = 1;
2746 prefix->deprecated_prefix_flag = 1;
2750 /* FIXME - Should the DP do this or the CP ? */
2751 /* insert prefix into routing table as a connected prefix */
2760 if (prefix->prefix_len != prefix_len)
2761 return VNET_API_ERROR_INVALID_VALUE_2;
2765 /* FIXME - Should the DP do this or the CP ? */
2766 /* remove from routing table if already there */
2770 if ((val_lifetime == ~0) || (pref_lifetime == ~0))
2772 prefix->adv_valid_lifetime_in_secs = ~0;
2773 prefix->adv_pref_lifetime_in_secs = ~0;
2774 prefix->decrement_lifetime_flag = 0;
2778 prefix->adv_valid_lifetime_in_secs = val_lifetime;;
2779 prefix->adv_pref_lifetime_in_secs = pref_lifetime;
2782 /* copy remaining */
2783 prefix->enabled = !(no_advertise != 0);
2784 prefix->adv_on_link_flag = !((off_link != 0) || (no_onlink != 0));
2785 prefix->adv_autonomous_flag = !(no_autoconfig != 0);
2789 /* fill in the expiration times */
2790 prefix->valid_lifetime_expires =
2791 now + prefix->adv_valid_lifetime_in_secs;
2792 prefix->pref_lifetime_expires = now + prefix->adv_pref_lifetime_in_secs;
2794 radv_info->initial_adverts_sent = radv_info->initial_adverts_count - 1;
2795 radv_info->next_multicast_time = vlib_time_now (vm);
2796 radv_info->last_multicast_time = vlib_time_now (vm);
2797 radv_info->last_radv_time = 0;
2803 ip6_neighbor_cmd (vlib_main_t * vm, unformat_input_t * main_input,
2804 vlib_cli_command_t * cmd)
2806 vnet_main_t *vnm = vnet_get_main ();
2807 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
2808 clib_error_t *error = 0;
2810 u8 suppress = 0, managed = 0, other = 0;
2811 u8 suppress_ll_option = 0, send_unicast = 0, cease = 0;
2812 u8 use_lifetime = 0;
2813 u32 sw_if_index, ra_lifetime = 0, ra_initial_count =
2814 0, ra_initial_interval = 0;
2815 u32 ra_max_interval = 0, ra_min_interval = 0;
2817 unformat_input_t _line_input, *line_input = &_line_input;
2818 vnet_sw_interface_t *sw_if0;
2820 int add_radv_info = 1;
2821 __attribute__ ((unused)) ip6_radv_t *radv_info = 0;
2822 ip6_address_t ip6_addr;
2826 /* Get a line of input. */
2827 if (!unformat_user (main_input, unformat_line_input, line_input))
2830 /* get basic radv info for this interface */
2831 if (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
2834 if (unformat_user (line_input,
2835 unformat_vnet_sw_interface, vnm, &sw_if_index))
2838 ethernet_interface_t *eth_if0 = 0;
2840 sw_if0 = vnet_get_sup_sw_interface (vnm, sw_if_index);
2841 if (sw_if0->type == VNET_SW_INTERFACE_TYPE_HARDWARE)
2843 ethernet_get_interface (ðernet_main, sw_if0->hw_if_index);
2848 clib_error_return (0, "Interface must be of ethernet type");
2852 /* look up the radv_t information for this interface */
2853 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index,
2856 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
2860 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
2864 error = clib_error_return (0, "unknown interface %U'",
2865 format_unformat_error, line_input);
2871 error = clib_error_return (0, "invalid interface name %U'",
2872 format_unformat_error, line_input);
2877 /* get the rest of the command */
2878 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
2880 if (unformat (line_input, "no"))
2882 else if (unformat (line_input, "prefix %U/%d",
2883 unformat_ip6_address, &ip6_addr, &addr_len))
2888 else if (unformat (line_input, "ra-managed-config-flag"))
2893 else if (unformat (line_input, "ra-other-config-flag"))
2898 else if (unformat (line_input, "ra-suppress") ||
2899 unformat (line_input, "ra-surpress"))
2904 else if (unformat (line_input, "ra-suppress-link-layer") ||
2905 unformat (line_input, "ra-surpress-link-layer"))
2907 suppress_ll_option = 1;
2910 else if (unformat (line_input, "ra-send-unicast"))
2915 else if (unformat (line_input, "ra-lifetime"))
2917 if (!unformat (line_input, "%d", &ra_lifetime))
2918 return (error = unformat_parse_error (line_input));
2922 else if (unformat (line_input, "ra-initial"))
2925 (line_input, "%d %d", &ra_initial_count, &ra_initial_interval))
2926 return (error = unformat_parse_error (line_input));
2929 else if (unformat (line_input, "ra-interval"))
2931 if (!unformat (line_input, "%d", &ra_max_interval))
2932 return (error = unformat_parse_error (line_input));
2934 if (!unformat (line_input, "%d", &ra_min_interval))
2935 ra_min_interval = 0;
2938 else if (unformat (line_input, "ra-cease"))
2944 return (unformat_parse_error (line_input));
2949 ip6_neighbor_ra_config (vm, sw_if_index,
2950 suppress, managed, other,
2951 suppress_ll_option, send_unicast, cease,
2952 use_lifetime, ra_lifetime,
2953 ra_initial_count, ra_initial_interval,
2954 ra_max_interval, ra_min_interval, is_no);
2958 u32 valid_lifetime_in_secs = 0;
2959 u32 pref_lifetime_in_secs = 0;
2960 u8 use_prefix_default_values = 0;
2961 u8 no_advertise = 0;
2963 u8 no_autoconfig = 0;
2966 /* get the rest of the command */
2967 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
2969 if (unformat (line_input, "default"))
2971 use_prefix_default_values = 1;
2974 else if (unformat (line_input, "infinite"))
2976 valid_lifetime_in_secs = ~0;
2977 pref_lifetime_in_secs = ~0;
2980 else if (unformat (line_input, "%d %d", &valid_lifetime_in_secs,
2981 &pref_lifetime_in_secs))
2988 /* get the rest of the command */
2989 while (!use_prefix_default_values &&
2990 unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
2992 if (unformat (line_input, "no-advertise"))
2994 else if (unformat (line_input, "off-link"))
2996 else if (unformat (line_input, "no-autoconfig"))
2998 else if (unformat (line_input, "no-onlink"))
3001 return (unformat_parse_error (line_input));
3004 ip6_neighbor_ra_prefix (vm, sw_if_index,
3005 &ip6_addr, addr_len,
3006 use_prefix_default_values,
3007 valid_lifetime_in_secs,
3008 pref_lifetime_in_secs,
3010 off_link, no_autoconfig, no_onlink, is_no);
3013 unformat_free (line_input);
3020 ip6_print_addrs (vlib_main_t * vm, u32 * addrs)
3022 ip_lookup_main_t *lm = &ip6_main.lookup_main;
3025 for (i = 0; i < vec_len (addrs); i++)
3027 ip_interface_address_t *a =
3028 pool_elt_at_index (lm->if_address_pool, addrs[i]);
3029 ip6_address_t *address = ip_interface_address_get_address (lm, a);
3031 vlib_cli_output (vm, "\t\t%U/%d",
3032 format_ip6_address, address, a->address_length);
3036 static clib_error_t *
3037 show_ip6_interface_cmd (vlib_main_t * vm,
3038 unformat_input_t * input, vlib_cli_command_t * cmd)
3040 vnet_main_t *vnm = vnet_get_main ();
3041 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3042 clib_error_t *error = 0;
3047 if (unformat_user (input, unformat_vnet_sw_interface, vnm, &sw_if_index))
3051 /* look up the radv_t information for this interface */
3052 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index,
3055 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
3059 ip_lookup_main_t *lm = &ip6_main.lookup_main;
3060 ip6_radv_t *radv_info;
3061 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
3063 vlib_cli_output (vm, "%U is admin %s\n",
3064 format_vnet_sw_interface_name, vnm,
3065 vnet_get_sw_interface (vnm, sw_if_index),
3066 (vnet_sw_interface_is_admin_up (vnm, sw_if_index) ?
3070 u32 *link_scope = 0, *global_scope = 0;
3071 u32 *local_scope = 0, *unknown_scope = 0;
3072 ip_interface_address_t *a;
3074 vec_validate_init_empty (lm->if_address_pool_index_by_sw_if_index,
3076 ai = lm->if_address_pool_index_by_sw_if_index[sw_if_index];
3078 while (ai != (u32) ~ 0)
3080 a = pool_elt_at_index (lm->if_address_pool, ai);
3081 ip6_address_t *address =
3082 ip_interface_address_get_address (lm, a);
3084 if (ip6_address_is_link_local_unicast (address))
3085 vec_add1 (link_scope, ai);
3086 else if (ip6_address_is_global_unicast (address))
3087 vec_add1 (global_scope, ai);
3088 else if (ip6_address_is_local_unicast (address))
3089 vec_add1 (local_scope, ai);
3091 vec_add1 (unknown_scope, ai);
3093 ai = a->next_this_sw_interface;
3096 if (vec_len (link_scope))
3098 vlib_cli_output (vm, "\tLink-local address(es):\n");
3099 ip6_print_addrs (vm, link_scope);
3100 vec_free (link_scope);
3103 if (vec_len (local_scope))
3105 vlib_cli_output (vm, "\tLocal unicast address(es):\n");
3106 ip6_print_addrs (vm, local_scope);
3107 vec_free (local_scope);
3110 if (vec_len (global_scope))
3112 vlib_cli_output (vm, "\tGlobal unicast address(es):\n");
3113 ip6_print_addrs (vm, global_scope);
3114 vec_free (global_scope);
3117 if (vec_len (unknown_scope))
3119 vlib_cli_output (vm, "\tOther-scope address(es):\n");
3120 ip6_print_addrs (vm, unknown_scope);
3121 vec_free (unknown_scope);
3124 vlib_cli_output (vm, "\tJoined group address(es):\n");
3125 ip6_mldp_group_t *m;
3127 pool_foreach (m, radv_info->mldp_group_pool,
3129 vlib_cli_output (vm, "\t\t%U\n", format_ip6_address,
3134 vlib_cli_output (vm, "\tAdvertised Prefixes:\n");
3135 ip6_radv_prefix_t *p;
3137 pool_foreach (p, radv_info->adv_prefixes_pool,
3139 vlib_cli_output (vm, "\t\tprefix %U, length %d\n",
3140 format_ip6_address, &p->prefix, p->prefix_len);
3144 vlib_cli_output (vm, "\tMTU is %d\n", radv_info->adv_link_mtu);
3145 vlib_cli_output (vm, "\tICMP error messages are unlimited\n");
3146 vlib_cli_output (vm, "\tICMP redirects are disabled\n");
3147 vlib_cli_output (vm, "\tICMP unreachables are not sent\n");
3148 vlib_cli_output (vm, "\tND DAD is disabled\n");
3149 //vlib_cli_output (vm, "\tND reachable time is %d milliseconds\n",);
3150 vlib_cli_output (vm, "\tND advertised reachable time is %d\n",
3151 radv_info->adv_neighbor_reachable_time_in_msec);
3152 vlib_cli_output (vm,
3153 "\tND advertised retransmit interval is %d (msec)\n",
3155 adv_time_in_msec_between_retransmitted_neighbor_solicitations);
3157 u32 ra_interval = radv_info->max_radv_interval;
3158 u32 ra_interval_min = radv_info->min_radv_interval;
3159 vlib_cli_output (vm,
3160 "\tND router advertisements are sent every %d seconds (min interval is %d)\n",
3161 ra_interval, ra_interval_min);
3162 vlib_cli_output (vm,
3163 "\tND router advertisements live for %d seconds\n",
3164 radv_info->adv_router_lifetime_in_sec);
3165 vlib_cli_output (vm,
3166 "\tHosts %s stateless autoconfig for addresses\n",
3167 (radv_info->adv_managed_flag) ? "use" :
3169 vlib_cli_output (vm, "\tND router advertisements sent %d\n",
3170 radv_info->n_advertisements_sent);
3171 vlib_cli_output (vm, "\tND router solicitations received %d\n",
3172 radv_info->n_solicitations_rcvd);
3173 vlib_cli_output (vm, "\tND router solicitations dropped %d\n",
3174 radv_info->n_solicitations_dropped);
3178 error = clib_error_return (0, "IPv6 not enabled on interface",
3179 format_unformat_error, input);
3187 * This command is used to display various IPv6 attributes on a given
3191 * Example of how to display IPv6 settings:
3192 * @cliexstart{show ip6 interface GigabitEthernet2/0/0}
3193 * GigabitEthernet2/0/0 is admin up
3194 * Link-local address(es):
3196 * Joined group address(es):
3201 * Advertised Prefixes:
3202 * prefix fe80::fe:28ff:fe9c:75b3, length 64
3204 * ICMP error messages are unlimited
3205 * ICMP redirects are disabled
3206 * ICMP unreachables are not sent
3207 * ND DAD is disabled
3208 * ND advertised reachable time is 0
3209 * ND advertised retransmit interval is 0 (msec)
3210 * ND router advertisements are sent every 200 seconds (min interval is 150)
3211 * ND router advertisements live for 600 seconds
3212 * Hosts use stateless autoconfig for addresses
3213 * ND router advertisements sent 19336
3214 * ND router solicitations received 0
3215 * ND router solicitations dropped 0
3217 * Example of output if IPv6 is not enabled on the interface:
3218 * @cliexstart{show ip6 interface GigabitEthernet2/0/0}
3219 * show ip6 interface: IPv6 not enabled on interface
3223 VLIB_CLI_COMMAND (show_ip6_interface_command, static) =
3225 .path = "show ip6 interface",
3226 .function = show_ip6_interface_cmd,
3227 .short_help = "show ip6 interface <interface>",
3232 disable_ip6_interface (vlib_main_t * vm, u32 sw_if_index)
3234 clib_error_t *error = 0;
3235 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3238 /* look up the radv_t information for this interface */
3239 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index, sw_if_index,
3241 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
3243 /* if not created - do nothing */
3246 vnet_main_t *vnm = vnet_get_main ();
3247 ip6_radv_t *radv_info;
3249 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
3251 /* check radv_info ref count for other ip6 addresses on this interface */
3252 if (radv_info->ref_count == 0)
3254 /* essentially "disables" ipv6 on this interface */
3255 error = ip6_add_del_interface_address (vm, sw_if_index,
3257 link_local_address, 128,
3260 ip6_neighbor_sw_interface_add_del (vnm, sw_if_index,
3268 ip6_interface_enabled (vlib_main_t * vm, u32 sw_if_index)
3270 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3273 /* look up the radv_t information for this interface */
3274 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index, sw_if_index,
3277 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
3283 enable_ip6_interface (vlib_main_t * vm, u32 sw_if_index)
3285 clib_error_t *error = 0;
3286 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3290 /* look up the radv_t information for this interface */
3291 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index, sw_if_index,
3294 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
3296 /* if not created yet */
3299 vnet_main_t *vnm = vnet_get_main ();
3300 vnet_sw_interface_t *sw_if0;
3302 sw_if0 = vnet_get_sup_sw_interface (vnm, sw_if_index);
3303 if (sw_if0->type == VNET_SW_INTERFACE_TYPE_HARDWARE)
3305 ethernet_interface_t *eth_if0;
3308 ethernet_get_interface (ðernet_main, sw_if0->hw_if_index);
3311 /* create radv_info. for this interface. This holds all the info needed for router adverts */
3313 ip6_neighbor_sw_interface_add_del (vnm, sw_if_index, is_add);
3317 ip6_radv_t *radv_info;
3318 ip6_address_t link_local_address;
3320 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
3322 ip6_link_local_address_from_ethernet_mac_address
3323 (&link_local_address, eth_if0->address);
3325 sw_if0 = vnet_get_sw_interface (vnm, sw_if_index);
3326 if (sw_if0->type == VNET_SW_INTERFACE_TYPE_SUB)
3328 /* make up an interface id */
3332 link_local_address.as_u64[0] = radv_info->randomizer;
3335 md5_add (&m, &link_local_address, 16);
3336 md5_finish (&m, digest);
3338 clib_memcpy (&link_local_address, digest, 16);
3340 radv_info->randomizer = link_local_address.as_u64[0];
3342 link_local_address.as_u64[0] =
3343 clib_host_to_net_u64 (0xFE80000000000000ULL);
3345 link_local_address.as_u8[8] &= 0xfd;
3348 /* essentially "enables" ipv6 on this interface */
3349 error = ip6_add_del_interface_address (vm, sw_if_index,
3350 &link_local_address,
3352 /* address width */ ,
3356 ip6_neighbor_sw_interface_add_del (vnm, sw_if_index,
3360 radv_info->link_local_address = link_local_address;
3369 static clib_error_t *
3370 enable_ip6_interface_cmd (vlib_main_t * vm,
3371 unformat_input_t * input, vlib_cli_command_t * cmd)
3373 vnet_main_t *vnm = vnet_get_main ();
3374 clib_error_t *error = 0;
3379 if (unformat_user (input, unformat_vnet_sw_interface, vnm, &sw_if_index))
3381 enable_ip6_interface (vm, sw_if_index);
3385 error = clib_error_return (0, "unknown interface\n'",
3386 format_unformat_error, input);
3393 * This command is used to enable IPv6 on a given interface.
3396 * Example of how enable IPv6 on a given interface:
3397 * @cliexcmd{enable ip6 interface GigabitEthernet2/0/0}
3400 VLIB_CLI_COMMAND (enable_ip6_interface_command, static) =
3402 .path = "enable ip6 interface",
3403 .function = enable_ip6_interface_cmd,
3404 .short_help = "enable ip6 interface <interface>",
3408 static clib_error_t *
3409 disable_ip6_interface_cmd (vlib_main_t * vm,
3410 unformat_input_t * input, vlib_cli_command_t * cmd)
3412 vnet_main_t *vnm = vnet_get_main ();
3413 clib_error_t *error = 0;
3418 if (unformat_user (input, unformat_vnet_sw_interface, vnm, &sw_if_index))
3420 error = disable_ip6_interface (vm, sw_if_index);
3424 error = clib_error_return (0, "unknown interface\n'",
3425 format_unformat_error, input);
3432 * This command is used to disable IPv6 on a given interface.
3435 * Example of how disable IPv6 on a given interface:
3436 * @cliexcmd{disable ip6 interface GigabitEthernet2/0/0}
3439 VLIB_CLI_COMMAND (disable_ip6_interface_command, static) =
3441 .path = "disable ip6 interface",
3442 .function = disable_ip6_interface_cmd,
3443 .short_help = "disable ip6 interface <interface>",
3448 * This command is used to configure the neighbor discovery
3449 * parameters on a given interface. Use the '<em>show ip6 interface</em>'
3450 * command to display some of the current neighbor discovery parameters
3451 * on a given interface. This command has three formats:
3454 * <b>Format 1 - Router Advertisement Options:</b> (Only one can be entered in a single command)
3456 * '<em><b>ip6 nd <interface> [no] [ra-managed-config-flag] | [ra-other-config-flag] | [ra-suppress] | [ra-suppress-link-layer] | [ra-send-unicast] | [ra-lifetime <lifetime>] | [ra-initial <cnt> <interval>] | [ra-interval <max-interval> [<min-interval>]] | [ra-cease]</b></em>'
3460 * <em>[no] ra-managed-config-flag</em> - Advertises in ICMPv6
3461 * router-advertisement messages to use stateful address
3462 * auto-configuration to obtain address information (sets the M-bit).
3463 * Default is the M-bit is not set and the '<em>no</em>' option
3464 * returns it to this default state.
3466 * <em>[no] ra-other-config-flag</em> - Indicates in ICMPv6
3467 * router-advertisement messages that hosts use stateful auto
3468 * configuration to obtain nonaddress related information (sets
3469 * the O-bit). Default is the O-bit is not set and the '<em>no</em>'
3470 * option returns it to this default state.
3472 * <em>[no] ra-suppress</em> - Disables sending ICMPv6 router-advertisement
3473 * messages. The '<em>no</em>' option implies to enable sending ICMPv6
3474 * router-advertisement messages.
3476 * <em>[no] ra-suppress-link-layer</em> - Indicates not to include the
3477 * optional source link-layer address in the ICMPv6 router-advertisement
3478 * messages. Default is to include the optional source link-layer address
3479 * and the '<em>no</em>' option returns it to this default state.
3481 * <em>[no] ra-send-unicast</em> - Use the source address of the
3482 * router-solicitation message if availiable. The default is to use
3483 * multicast address of all nodes, and the '<em>no</em>' option returns
3484 * it to this default state.
3486 * <em>[no] ra-lifetime <lifetime></em> - Advertises the lifetime of a
3487 * default router in ICMPv6 router-advertisement messages. The range is
3488 * from 0 to 9000 seconds. '<em><lifetime></em>' must be greater than
3489 * '<em><max-interval></em>'. The default value is 600 seconds and the
3490 * '<em>no</em>' option returns it to this default value.
3492 * <em>[no] ra-initial <cnt> <interval></em> - Number of initial ICMPv6
3493 * router-advertisement messages sent and the interval between each
3494 * message. Range for count is 1 - 3 and default is 3. Range for interval
3495 * is 1 to 16 seconds, and default is 16 seconds. The '<em>no</em>' option
3496 * returns both to their default value.
3498 * <em>[no] ra-interval <max-interval> [<min-interval>]</em> - Configures the
3499 * interval between sending ICMPv6 router-advertisement messages. The
3500 * range for max-interval is from 4 to 200 seconds. min-interval can not
3501 * be more than 75% of max-interval. If not set, min-interval will be
3502 * set to 75% of max-interval. The range for min-interval is from 3 to
3503 * 150 seconds. The '<em>no</em>' option returns both to their default
3506 * <em>[no] ra-cease</em> - Cease sending ICMPv6 router-advertisement messages.
3507 * The '<em>no</em>' options implies to start (or restart) sending
3508 * ICMPv6 router-advertisement messages.
3511 * <b>Format 2 - Prefix Options:</b>
3513 * '<em><b>ip6 nd <interface> [no] prefix <ip6-address>/<width> [<valid-lifetime> <pref-lifetime> | infinite] [no-advertise] [off-link] [no-autoconfig] [no-onlink]</b></em>'
3517 * <em>no</em> - All additional flags are ignored and the prefix is deleted.
3519 * <em><valid-lifetime> <pref-lifetime></em> - '<em><valid-lifetime></em>' is the
3520 * length of time in seconds during what the prefix is valid for the purpose of
3521 * on-link determination. Range is 7203 to 2592000 seconds and default is 2592000
3522 * seconds (30 days). '<em><pref-lifetime></em>' is the prefered-lifetime and is the
3523 * length of time in seconds during what addresses generated from the prefix remain
3524 * preferred. Range is 0 to 604800 seconds and default is 604800 seconds (7 days).
3526 * <em>infinite</em> - Both '<em><valid-lifetime></em>' and '<em><<pref-lifetime></em>'
3527 * are inifinte, no timeout.
3529 * <em>no-advertise</em> - Do not send full router address in prefix
3530 * advertisement. Default is to advertise (i.e. - This flag is off by default).
3532 * <em>off-link</em> - Prefix is off-link, clear L-bit in packet. Default is on-link
3533 * (i.e. - This flag is off and L-bit in packet is set by default and this prefix can
3534 * be used for on-link determination). '<em>no-onlink</em>' also controls the L-bit.
3536 * <em>no-autoconfig</em> - Do not use prefix for autoconfiguration, clear A-bit in packet.
3537 * Default is autoconfig (i.e. - This flag is off and A-bit in packet is set by default.
3539 * <em>no-onlink</em> - Do not use prefix for onlink determination, clear L-bit in packet.
3540 * Default is on-link (i.e. - This flag is off and L-bit in packet is set by default and
3541 * this prefix can be used for on-link determination). '<em>off-link</em>' also controls
3545 * <b>Format 3: - Default of Prefix:</b>
3547 * '<em><b>ip6 nd <interface> [no] prefix <ip6-address>/<width> default</b></em>'
3549 * When a new prefix is added (or existing one is being overwritten) <em>default</em>
3550 * uses default values for the prefix. If <em>no</em> is used, the <em>default</em>
3551 * is ignored and the prefix is deleted.
3555 * Example of how set a router advertisement option:
3556 * @cliexcmd{ip6 nd GigabitEthernet2/0/0 ra-interval 100 20}
3557 * Example of how to add a prefix:
3558 * @cliexcmd{ip6 nd GigabitEthernet2/0/0 prefix fe80::fe:28ff:fe9c:75b3/64 infinite no-advertise}
3559 * Example of how to delete a prefix:
3560 * @cliexcmd{ip6 nd GigabitEthernet2/0/0 no prefix fe80::fe:28ff:fe9c:75b3/64}
3563 VLIB_CLI_COMMAND (ip6_nd_command, static) =
3566 .short_help = "ip6 nd <interface> ...",
3567 .function = ip6_neighbor_cmd,
3572 set_ip6_link_local_address (vlib_main_t * vm,
3573 u32 sw_if_index, ip6_address_t * address)
3575 clib_error_t *error = 0;
3576 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3578 ip6_radv_t *radv_info;
3579 vnet_main_t *vnm = vnet_get_main ();
3581 if (!ip6_address_is_link_local_unicast (address))
3583 vnm->api_errno = VNET_API_ERROR_ADDRESS_NOT_LINK_LOCAL;
3584 return (error = clib_error_return (0, "address not link-local",
3585 format_unformat_error));
3588 /* call enable ipv6 */
3589 enable_ip6_interface (vm, sw_if_index);
3591 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
3595 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
3597 /* save if link local address (overwrite default) */
3599 /* delete the old one */
3600 error = ip6_add_del_interface_address (vm, sw_if_index,
3601 &radv_info->link_local_address,
3602 128, 1 /* is_del */ );
3606 /* add the new one */
3607 error = ip6_add_del_interface_address (vm, sw_if_index,
3613 radv_info->link_local_address = *address;
3619 vnm->api_errno = VNET_API_ERROR_IP6_NOT_ENABLED;
3620 error = clib_error_return (0, "ip6 not enabled for interface",
3621 format_unformat_error);
3627 set_ip6_link_local_address_cmd (vlib_main_t * vm,
3628 unformat_input_t * input,
3629 vlib_cli_command_t * cmd)
3631 vnet_main_t *vnm = vnet_get_main ();
3632 clib_error_t *error = 0;
3634 ip6_address_t ip6_addr;
3636 if (unformat_user (input, unformat_vnet_sw_interface, vnm, &sw_if_index))
3638 /* get the rest of the command */
3639 while (unformat_check_input (input) != UNFORMAT_END_OF_INPUT)
3641 if (unformat (input, "%U", unformat_ip6_address, &ip6_addr))
3644 return (unformat_parse_error (input));
3647 error = set_ip6_link_local_address (vm, sw_if_index, &ip6_addr);
3652 * This command is used to assign an IPv6 Link-local address to an
3653 * interface. This command will enable IPv6 on an interface if it
3654 * is not already enabled. Use the '<em>show ip6 interface</em>' command
3655 * to display the assigned Link-local address.
3658 * Example of how to assign an IPv6 Link-local address to an interface:
3659 * @cliexcmd{set ip6 link-local address GigabitEthernet2/0/0 FE80::AB8}
3662 VLIB_CLI_COMMAND (set_ip6_link_local_address_command, static) =
3664 .path = "set ip6 link-local address",
3665 .short_help = "set ip6 link-local address <interface> <ip6-address>",
3666 .function = set_ip6_link_local_address_cmd,
3670 /* callback when an interface address is added or deleted */
3672 ip6_neighbor_add_del_interface_address (ip6_main_t * im,
3675 ip6_address_t * address,
3677 u32 if_address_index, u32 is_delete)
3679 vnet_main_t *vnm = vnet_get_main ();
3680 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3682 vlib_main_t *vm = vnm->vlib_main;
3683 ip6_radv_t *radv_info;
3685 ip6_mldp_group_t *mcast_group_info;
3687 /* create solicited node multicast address for this interface adddress */
3688 ip6_set_solicited_node_multicast_address (&a, 0);
3690 a.as_u8[0xd] = address->as_u8[0xd];
3691 a.as_u8[0xe] = address->as_u8[0xe];
3692 a.as_u8[0xf] = address->as_u8[0xf];
3696 /* try to create radv_info - does nothing if ipv6 already enabled */
3697 enable_ip6_interface (vm, sw_if_index);
3699 /* look up the radv_t information for this interface */
3700 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index,
3702 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
3706 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
3709 if (!ip6_address_is_link_local_unicast (address))
3710 radv_info->ref_count++;
3712 /* lookup prefix info for this address on this interface */
3713 uword *p = mhash_get (&radv_info->address_to_mldp_index, &a);
3715 p ? pool_elt_at_index (radv_info->mldp_group_pool, p[0]) : 0;
3717 /* add -solicted node multicast address */
3718 if (!mcast_group_info)
3722 pool_get (radv_info->mldp_group_pool, mcast_group_info);
3724 mi = mcast_group_info - radv_info->mldp_group_pool;
3725 mhash_set (&radv_info->address_to_mldp_index, &a, mi,
3728 mcast_group_info->type = 4;
3729 mcast_group_info->mcast_source_address_pool = 0;
3730 mcast_group_info->num_sources = 0;
3731 clib_memcpy (&mcast_group_info->mcast_address, &a,
3732 sizeof (ip6_address_t));
3740 /* look up the radv_t information for this interface */
3741 vec_validate_init_empty (nm->if_radv_pool_index_by_sw_if_index,
3743 ri = nm->if_radv_pool_index_by_sw_if_index[sw_if_index];
3747 radv_info = pool_elt_at_index (nm->if_radv_pool, ri);
3749 /* lookup prefix info for this address on this interface */
3750 uword *p = mhash_get (&radv_info->address_to_mldp_index, &a);
3752 p ? pool_elt_at_index (radv_info->mldp_group_pool, p[0]) : 0;
3754 if (mcast_group_info)
3756 mhash_unset (&radv_info->address_to_mldp_index, &a,
3758 pool_put (radv_info->mldp_group_pool, mcast_group_info);
3761 /* if interface up send MLDP "report" */
3762 radv_info->all_routers_mcast = 0;
3765 if (!ip6_address_is_link_local_unicast (address))
3766 radv_info->ref_count--;
3772 ip6_set_neighbor_limit (u32 neighbor_limit)
3774 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3776 nm->limit_neighbor_cache_size = neighbor_limit;
3780 static clib_error_t *
3781 ip6_neighbor_init (vlib_main_t * vm)
3783 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3784 ip6_main_t *im = &ip6_main;
3786 mhash_init (&nm->neighbor_index_by_key,
3787 /* value size */ sizeof (uword),
3788 /* key size */ sizeof (ip6_neighbor_key_t));
3790 icmp6_register_type (vm, ICMP6_neighbor_solicitation,
3791 ip6_icmp_neighbor_solicitation_node.index);
3792 icmp6_register_type (vm, ICMP6_neighbor_advertisement,
3793 ip6_icmp_neighbor_advertisement_node.index);
3794 icmp6_register_type (vm, ICMP6_router_solicitation,
3795 ip6_icmp_router_solicitation_node.index);
3796 icmp6_register_type (vm, ICMP6_router_advertisement,
3797 ip6_icmp_router_advertisement_node.index);
3799 /* handler node for ip6 neighbor discovery events and timers */
3800 vlib_register_node (vm, &ip6_icmp_neighbor_discovery_event_node);
3802 /* add call backs */
3803 ip6_add_del_interface_address_callback_t cb;
3804 memset (&cb, 0x0, sizeof (ip6_add_del_interface_address_callback_t));
3806 /* when an interface address changes... */
3807 cb.function = ip6_neighbor_add_del_interface_address;
3808 cb.function_opaque = 0;
3809 vec_add1 (im->add_del_interface_address_callbacks, cb);
3811 mhash_init (&nm->pending_resolutions_by_address,
3812 /* value size */ sizeof (uword),
3813 /* key size */ sizeof (ip6_address_t));
3815 mhash_init (&nm->mac_changes_by_address,
3816 /* value size */ sizeof (uword),
3817 /* key size */ sizeof (ip6_address_t));
3819 /* default, configurable */
3820 nm->limit_neighbor_cache_size = 50000;
3823 /* $$$$ Hack fix for today */
3824 vec_validate_init_empty
3825 (im->discover_neighbor_next_index_by_hw_if_index, 32, 0 /* drop */ );
3831 VLIB_INIT_FUNCTION (ip6_neighbor_init);
3835 vnet_register_ip6_neighbor_resolution_event (vnet_main_t * vnm,
3838 uword type_opaque, uword data)
3840 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3841 ip6_address_t *address = address_arg;
3843 pending_resolution_t *pr;
3845 pool_get (nm->pending_resolutions, pr);
3847 pr->next_index = ~0;
3848 pr->node_index = node_index;
3849 pr->type_opaque = type_opaque;
3852 p = mhash_get (&nm->pending_resolutions_by_address, address);
3855 /* Insert new resolution at the head of the list */
3856 pr->next_index = p[0];
3857 mhash_unset (&nm->pending_resolutions_by_address, address, 0);
3860 mhash_set (&nm->pending_resolutions_by_address, address,
3861 pr - nm->pending_resolutions, 0 /* old value */ );
3865 vnet_add_del_ip6_nd_change_event (vnet_main_t * vnm,
3866 void *data_callback,
3870 uword type_opaque, uword data, int is_add)
3872 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3873 ip6_address_t *address = address_arg;
3875 pending_resolution_t *mc;
3876 void (*fp) (u32, u8 *) = data_callback;
3880 pool_get (nm->mac_changes, mc);
3882 mc->next_index = ~0;
3883 mc->node_index = node_index;
3884 mc->type_opaque = type_opaque;
3886 mc->data_callback = data_callback;
3889 p = mhash_get (&nm->mac_changes_by_address, address);
3892 /* Insert new resolution at the head of the list */
3893 mc->next_index = p[0];
3894 mhash_unset (&nm->mac_changes_by_address, address, 0);
3897 mhash_set (&nm->mac_changes_by_address, address,
3898 mc - nm->mac_changes, 0);
3904 pending_resolution_t *mc_last = 0;
3906 p = mhash_get (&nm->mac_changes_by_address, address);
3908 return VNET_API_ERROR_NO_SUCH_ENTRY;
3912 while (index != (u32) ~ 0)
3914 mc = pool_elt_at_index (nm->mac_changes, index);
3915 if (mc->node_index == node_index &&
3916 mc->type_opaque == type_opaque && mc->pid == pid)
3918 /* Clients may need to clean up pool entries, too */
3920 (*fp) (mc->data, 0 /* no new mac addrs */ );
3923 mhash_unset (&nm->mac_changes_by_address, address, 0);
3924 if (mc->next_index != ~0)
3925 mhash_set (&nm->mac_changes_by_address, address,
3927 pool_put (nm->mac_changes, mc);
3933 mc_last->next_index = mc->next_index;
3934 pool_put (nm->mac_changes, mc);
3939 index = mc->next_index;
3942 return VNET_API_ERROR_NO_SUCH_ENTRY;
3947 vnet_ip6_nd_term (vlib_main_t * vm,
3948 vlib_node_runtime_t * node,
3950 ethernet_header_t * eth,
3951 ip6_header_t * ip, u32 sw_if_index, u16 bd_index, u8 shg)
3953 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
3954 icmp6_neighbor_solicitation_or_advertisement_header_t *ndh;
3955 pending_resolution_t *mc;
3958 ndh = ip6_next_header (ip);
3959 if (ndh->icmp.type != ICMP6_neighbor_solicitation &&
3960 ndh->icmp.type != ICMP6_neighbor_advertisement)
3963 if (PREDICT_FALSE ((node->flags & VLIB_NODE_FLAG_TRACE) &&
3964 (p0->flags & VLIB_BUFFER_IS_TRACED)))
3966 u8 *t0 = vlib_add_trace (vm, node, p0,
3967 sizeof (icmp6_input_trace_t));
3968 clib_memcpy (t0, ip, sizeof (icmp6_input_trace_t));
3971 /* Check if anyone want ND events for L2 BDs */
3972 p = mhash_get (&nm->mac_changes_by_address, &ip6a_zero);
3973 if (p && shg == 0 && /* Only SHG 0 interface which is more likely local */
3974 !ip6_address_is_link_local_unicast (&ip->src_address))
3976 u32 next_index = p[0];
3977 while (next_index != (u32) ~ 0)
3979 int (*fp) (u32, u8 *, u32, ip6_address_t *);
3981 mc = pool_elt_at_index (nm->mac_changes, next_index);
3982 fp = mc->data_callback;
3983 /* Call the callback, return 1 to suppress dup events */
3985 rv = (*fp) (mc->data,
3986 eth->src_address, sw_if_index, &ip->src_address);
3987 /* Signal the resolver process */
3989 vlib_process_signal_event (vm, mc->node_index,
3990 mc->type_opaque, mc->data);
3991 next_index = mc->next_index;
3995 /* Check if MAC entry exsist for solicited target IP */
3996 if (ndh->icmp.type == ICMP6_neighbor_solicitation)
3998 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *opt;
3999 l2_bridge_domain_t *bd_config;
4002 opt = (void *) (ndh + 1);
4003 if ((opt->header.type !=
4004 ICMP6_NEIGHBOR_DISCOVERY_OPTION_source_link_layer_address) ||
4005 (opt->header.n_data_u64s != 1))
4006 return 0; /* source link layer address option not present */
4008 bd_config = vec_elt_at_index (l2input_main.bd_configs, bd_index);
4010 (u8 *) hash_get_mem (bd_config->mac_by_ip6, &ndh->target_address);
4012 { /* found ip-mac entry, generate eighbor advertisement response */
4014 vlib_node_runtime_t *error_node =
4015 vlib_node_get_runtime (vm, ip6_icmp_input_node.index);
4016 ip->dst_address = ip->src_address;
4017 ip->src_address = ndh->target_address;
4018 ip->hop_limit = 255;
4020 ICMP6_NEIGHBOR_DISCOVERY_OPTION_target_link_layer_address;
4021 clib_memcpy (opt->ethernet_address, macp, 6);
4022 ndh->icmp.type = ICMP6_neighbor_advertisement;
4023 ndh->advertisement_flags = clib_host_to_net_u32
4024 (ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_SOLICITED |
4025 ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_OVERRIDE);
4026 ndh->icmp.checksum = 0;
4027 ndh->icmp.checksum =
4028 ip6_tcp_udp_icmp_compute_checksum (vm, p0, ip, &bogus_length);
4029 clib_memcpy (eth->dst_address, eth->src_address, 6);
4030 clib_memcpy (eth->src_address, macp, 6);
4031 vlib_error_count (vm, error_node->node_index,
4032 ICMP6_ERROR_NEIGHBOR_ADVERTISEMENTS_TX, 1);
4042 ethernet_ndp_change_mac (u32 sw_if_index)
4044 ip6_neighbor_main_t *nm = &ip6_neighbor_main;
4048 pool_foreach (n, nm->neighbor_pool,
4050 if (n->key.sw_if_index == sw_if_index)
4052 adj_nbr_walk_nh6 (sw_if_index,
4053 &n->key.ip6_address,
4054 ip6_nd_mk_complete_walk, n);
4061 * fd.io coding-style-patch-verification: ON
4064 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob