2 * Copyright (c) 2017 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
18 * @brief IPv6 Reassembly.
20 * This file contains the source code for IPv6 reassembly.
23 #include <vppinfra/vec.h>
24 #include <vnet/vnet.h>
25 #include <vnet/ip/ip.h>
26 #include <vppinfra/bihash_48_8.h>
27 #include <vnet/ip/ip6_reassembly.h>
29 #define MSEC_PER_SEC 1000
30 #define IP6_REASS_TIMEOUT_DEFAULT_MS 100
31 #define IP6_REASS_EXPIRE_WALK_INTERVAL_DEFAULT_MS 10000 // 10 seconds default
32 #define IP6_REASS_MAX_REASSEMBLIES_DEFAULT 1024
33 #define IP6_REASS_MAX_REASSEMBLY_LENGTH_DEFAULT 3
34 #define IP6_REASS_HT_LOAD_FACTOR (0.75)
39 IP6_REASS_RC_INTERNAL_ERROR,
40 IP6_REASS_RC_TOO_MANY_FRAGMENTS,
67 u32 memory_owner_thread_index;
79 clib_bihash_kv_48_8_t kv;
84 ip6_reass_buffer_get_data_offset (vlib_buffer_t * b)
86 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
87 return vnb->ip.reass.range_first - vnb->ip.reass.fragment_first;
91 ip6_reass_buffer_get_data_len (vlib_buffer_t * b)
93 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
94 return clib_min (vnb->ip.reass.range_last, vnb->ip.reass.fragment_last) -
95 (vnb->ip.reass.fragment_first + ip6_reass_buffer_get_data_offset (b)) + 1;
102 // time when last packet was received
104 // internal id of this reassembly
106 // buffer index of first buffer in this reassembly context
108 // last octet of packet, ~0 until fragment without more_fragments arrives
109 u32 last_packet_octet;
110 // length of data collected so far
112 // trace operation counter
113 u32 trace_op_counter;
114 // next index - used by custom apps (~0 if not set)
116 // error next index - used by custom apps (~0 if not set)
117 u32 error_next_index;
118 // minimum fragment length for this reassembly - used to estimate MTU
119 u16 min_fragment_length;
120 // number of fragments for this reassembly
122 // thread owning memory for this context (whose pool contains this ctx)
123 u32 memory_owner_thread_index;
124 // thread which received fragment with offset 0 and which sends out the
125 // completed reassembly
126 u32 sendout_thread_index;
134 clib_spinlock_t lock;
135 } ip6_reass_per_thread_t;
142 u32 expire_walk_interval_ms;
143 // maximum number of fragments in one reassembly
145 // maximum number of reassemblies
149 clib_bihash_48_8_t hash;
152 ip6_reass_per_thread_t *per_thread_data;
155 vlib_main_t *vlib_main;
157 // node index of ip6-drop node
159 u32 ip6_icmp_error_idx;
160 u32 ip6_reass_expire_node_idx;
162 /** Worker handoff */
164 u32 fq_feature_index;
168 extern ip6_reass_main_t ip6_reass_main;
170 #ifndef CLIB_MARCH_VARIANT
171 ip6_reass_main_t ip6_reass_main;
172 #endif /* CLIB_MARCH_VARIANT */
176 IP6_REASSEMBLY_NEXT_INPUT,
177 IP6_REASSEMBLY_NEXT_DROP,
178 IP6_REASSEMBLY_NEXT_ICMP_ERROR,
179 IP6_REASSEMBLY_NEXT_HANDOFF,
180 IP6_REASSEMBLY_N_NEXT,
187 ICMP_ERROR_RT_EXCEEDED,
188 ICMP_ERROR_FL_TOO_BIG,
189 ICMP_ERROR_FL_NOT_MULT_8,
192 } ip6_reass_trace_operation_e;
202 } ip6_reass_range_trace_t;
206 ip6_reass_trace_operation_e action;
208 ip6_reass_range_trace_t trace_range;
218 ip6_reass_trace_details (vlib_main_t * vm, u32 bi,
219 ip6_reass_range_trace_t * trace)
221 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
222 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
223 trace->range_first = vnb->ip.reass.range_first;
224 trace->range_last = vnb->ip.reass.range_last;
225 trace->data_offset = ip6_reass_buffer_get_data_offset (b);
226 trace->data_len = ip6_reass_buffer_get_data_len (b);
227 trace->range_bi = bi;
231 format_ip6_reass_range_trace (u8 * s, va_list * args)
233 ip6_reass_range_trace_t *trace = va_arg (*args, ip6_reass_range_trace_t *);
234 s = format (s, "range: [%u, %u], off %d, len %u, bi %u", trace->range_first,
235 trace->range_last, trace->data_offset, trace->data_len,
241 format_ip6_reass_trace (u8 * s, va_list * args)
243 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
244 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
245 ip6_reass_trace_t *t = va_arg (*args, ip6_reass_trace_t *);
247 if (~0 != t->reass_id)
249 s = format (s, "reass id: %u, op id: %u ", t->reass_id, t->op_id);
250 indent = format_get_indent (s);
251 s = format (s, "first bi: %u, data len: %u, ip/fragment[%u, %u]",
252 t->trace_range.first_bi, t->total_data_len,
253 t->fragment_first, t->fragment_last);
258 s = format (s, "\n%Unew %U", format_white_space, indent,
259 format_ip6_reass_range_trace, &t->trace_range);
262 s = format (s, "\n%Uoverlap %U", format_white_space, indent,
263 format_ip6_reass_range_trace, &t->trace_range);
265 case ICMP_ERROR_FL_TOO_BIG:
266 s = format (s, "\n%Uicmp-error - frag_len > 65535 %U",
267 format_white_space, indent, format_ip6_reass_range_trace,
270 case ICMP_ERROR_FL_NOT_MULT_8:
271 s = format (s, "\n%Uicmp-error - frag_len mod 8 != 0 %U",
272 format_white_space, indent, format_ip6_reass_range_trace,
275 case ICMP_ERROR_RT_EXCEEDED:
276 s = format (s, "\n%Uicmp-error - reassembly time exceeded",
277 format_white_space, indent);
280 s = format (s, "\n%Ufinalize reassembly", format_white_space, indent);
284 format (s, "handoff from thread #%u to thread #%u", t->thread_id,
292 ip6_reass_add_trace (vlib_main_t * vm, vlib_node_runtime_t * node,
293 ip6_reass_main_t * rm, u32 reass_id, u32 op_id,
294 u32 bi, u32 first_bi, u32 data_len,
295 ip6_reass_trace_operation_e action, u32 thread_id_to)
297 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
298 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
299 ip6_reass_trace_t *t = vlib_add_trace (vm, node, b, sizeof (t[0]));
300 t->reass_id = reass_id;
302 ip6_reass_trace_details (vm, bi, &t->trace_range);
304 t->thread_id = vm->thread_index;
305 t->thread_id_to = thread_id_to;
306 t->fragment_first = vnb->ip.reass.fragment_first;
307 t->fragment_last = vnb->ip.reass.fragment_last;
308 t->trace_range.first_bi = first_bi;
309 t->total_data_len = data_len;
312 s = format (s, "%U", format_ip6_reass_trace, NULL, NULL, t);
313 printf ("%.*s\n", vec_len (s), s);
315 vec_reset_length (s);
320 ip6_reass_free_ctx (ip6_reass_per_thread_t * rt, ip6_reass_t * reass)
322 pool_put (rt->pool, reass);
327 ip6_reass_free (ip6_reass_main_t * rm, ip6_reass_per_thread_t * rt,
330 clib_bihash_kv_48_8_t kv;
331 kv.key[0] = reass->key.as_u64[0];
332 kv.key[1] = reass->key.as_u64[1];
333 kv.key[2] = reass->key.as_u64[2];
334 kv.key[3] = reass->key.as_u64[3];
335 kv.key[4] = reass->key.as_u64[4];
336 kv.key[5] = reass->key.as_u64[5];
337 clib_bihash_add_del_48_8 (&rm->hash, &kv, 0);
338 ip6_reass_free_ctx (rt, reass);
342 ip6_reass_drop_all (vlib_main_t * vm, vlib_node_runtime_t * node,
343 ip6_reass_main_t * rm, ip6_reass_t * reass)
345 u32 range_bi = reass->first_bi;
346 vlib_buffer_t *range_b;
347 vnet_buffer_opaque_t *range_vnb;
349 while (~0 != range_bi)
351 range_b = vlib_get_buffer (vm, range_bi);
352 range_vnb = vnet_buffer (range_b);
356 vec_add1 (to_free, bi);
357 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
358 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
361 b->flags &= ~VLIB_BUFFER_NEXT_PRESENT;
368 range_bi = range_vnb->ip.reass.next_range_bi;
370 /* send to next_error_index */
371 if (~0 != reass->error_next_index)
373 u32 n_left_to_next, *to_next, next_index;
375 next_index = reass->error_next_index;
378 while (vec_len (to_free) > 0)
380 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
382 while (vec_len (to_free) > 0 && n_left_to_next > 0)
384 bi = vec_pop (to_free);
393 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
398 vlib_buffer_free (vm, to_free, vec_len (to_free));
404 ip6_reass_on_timeout (vlib_main_t * vm, vlib_node_runtime_t * node,
405 ip6_reass_main_t * rm, ip6_reass_t * reass,
408 if (~0 == reass->first_bi)
412 if (~0 == reass->next_index) // custom apps don't want icmp
414 vlib_buffer_t *b = vlib_get_buffer (vm, reass->first_bi);
415 if (0 == vnet_buffer (b)->ip.reass.fragment_first)
417 *icmp_bi = reass->first_bi;
418 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_IS_TRACED))
420 ip6_reass_add_trace (vm, node, rm, reass->id,
421 reass->trace_op_counter, reass->first_bi,
422 reass->first_bi, reass->data_len,
423 ICMP_ERROR_RT_EXCEEDED, ~0);
424 ++reass->trace_op_counter;
426 // fragment with offset zero received - send icmp message back
427 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
429 // separate first buffer from chain and steer it towards icmp node
430 b->flags &= ~VLIB_BUFFER_NEXT_PRESENT;
431 reass->first_bi = b->next_buffer;
435 reass->first_bi = vnet_buffer (b)->ip.reass.next_range_bi;
437 icmp6_error_set_vnet_buffer (b, ICMP6_time_exceeded,
438 ICMP6_time_exceeded_fragment_reassembly_time_exceeded,
442 ip6_reass_drop_all (vm, node, rm, reass);
445 always_inline ip6_reass_t *
446 ip6_reass_find_or_create (vlib_main_t * vm, vlib_node_runtime_t * node,
447 ip6_reass_main_t * rm, ip6_reass_per_thread_t * rt,
448 ip6_reass_kv_t * kv, u32 * icmp_bi, u8 * do_handoff)
456 now = vlib_time_now (vm);
458 if (!clib_bihash_search_48_8
459 (&rm->hash, (clib_bihash_kv_48_8_t *) kv, (clib_bihash_kv_48_8_t *) kv))
462 pool_elt_at_index (rm->per_thread_data
463 [kv->v.memory_owner_thread_index].pool,
465 if (vm->thread_index != kv->v.memory_owner_thread_index)
471 if (now > reass->last_heard + rm->timeout)
473 ip6_reass_on_timeout (vm, node, rm, reass, icmp_bi);
474 ip6_reass_free (rm, rt, reass);
481 reass->last_heard = now;
485 if (rt->reass_n >= rm->max_reass_n)
492 pool_get (rt->pool, reass);
493 clib_memset (reass, 0, sizeof (*reass));
494 reass->id = ((u64) vm->thread_index * 1000000000) + rt->id_counter;
496 reass->first_bi = ~0;
497 reass->last_packet_octet = ~0;
499 reass->next_index = ~0;
500 reass->error_next_index = ~0;
504 reass->key.as_u64[0] = ((clib_bihash_kv_48_8_t *) kv)->key[0];
505 reass->key.as_u64[1] = ((clib_bihash_kv_48_8_t *) kv)->key[1];
506 reass->key.as_u64[2] = ((clib_bihash_kv_48_8_t *) kv)->key[2];
507 reass->key.as_u64[3] = ((clib_bihash_kv_48_8_t *) kv)->key[3];
508 reass->key.as_u64[4] = ((clib_bihash_kv_48_8_t *) kv)->key[4];
509 reass->key.as_u64[5] = ((clib_bihash_kv_48_8_t *) kv)->key[5];
510 kv->v.reass_index = (reass - rt->pool);
511 kv->v.memory_owner_thread_index = vm->thread_index;
512 reass->last_heard = now;
515 clib_bihash_add_del_48_8 (&rm->hash, (clib_bihash_kv_48_8_t *) kv, 2);
518 ip6_reass_free_ctx (rt, reass);
520 // if other worker created a context already work with the other copy
528 always_inline ip6_reass_rc_t
529 ip6_reass_finalize (vlib_main_t * vm, vlib_node_runtime_t * node,
530 ip6_reass_main_t * rm, ip6_reass_per_thread_t * rt,
531 ip6_reass_t * reass, u32 * bi0, u32 * next0, u32 * error0,
534 *bi0 = reass->first_bi;
535 *error0 = IP6_ERROR_NONE;
536 ip6_frag_hdr_t *frag_hdr;
537 vlib_buffer_t *last_b = NULL;
538 u32 sub_chain_bi = reass->first_bi;
539 u32 total_length = 0;
542 u32 *vec_drop_compress = NULL;
543 ip6_reass_rc_t rv = IP6_REASS_RC_OK;
546 u32 tmp_bi = sub_chain_bi;
547 vlib_buffer_t *tmp = vlib_get_buffer (vm, tmp_bi);
548 vnet_buffer_opaque_t *vnb = vnet_buffer (tmp);
549 if (!(vnb->ip.reass.range_first >= vnb->ip.reass.fragment_first) &&
550 !(vnb->ip.reass.range_last > vnb->ip.reass.fragment_first))
552 rv = IP6_REASS_RC_INTERNAL_ERROR;
553 goto free_buffers_and_return;
556 u32 data_len = ip6_reass_buffer_get_data_len (tmp);
557 u32 trim_front = vnet_buffer (tmp)->ip.reass.ip6_frag_hdr_offset +
558 sizeof (*frag_hdr) + ip6_reass_buffer_get_data_offset (tmp);
560 vlib_buffer_length_in_chain (vm, tmp) - trim_front - data_len;
561 if (tmp_bi == reass->first_bi)
563 /* first buffer - keep ip6 header */
564 if (0 != ip6_reass_buffer_get_data_offset (tmp))
566 rv = IP6_REASS_RC_INTERNAL_ERROR;
567 goto free_buffers_and_return;
570 trim_end = vlib_buffer_length_in_chain (vm, tmp) - data_len -
571 (vnet_buffer (tmp)->ip.reass.ip6_frag_hdr_offset +
573 if (!(vlib_buffer_length_in_chain (vm, tmp) - trim_end > 0))
575 rv = IP6_REASS_RC_INTERNAL_ERROR;
576 goto free_buffers_and_return;
580 vlib_buffer_length_in_chain (vm, tmp) - trim_front - trim_end;
586 if (trim_front > tmp->current_length)
588 /* drop whole buffer */
589 vec_add1 (vec_drop_compress, tmp_bi);
590 trim_front -= tmp->current_length;
591 if (!(tmp->flags & VLIB_BUFFER_NEXT_PRESENT))
593 rv = IP6_REASS_RC_INTERNAL_ERROR;
594 goto free_buffers_and_return;
596 tmp->flags &= ~VLIB_BUFFER_NEXT_PRESENT;
597 tmp_bi = tmp->next_buffer;
598 tmp = vlib_get_buffer (vm, tmp_bi);
603 vlib_buffer_advance (tmp, trim_front);
611 last_b->flags |= VLIB_BUFFER_NEXT_PRESENT;
612 last_b->next_buffer = tmp_bi;
615 if (keep_data <= tmp->current_length)
617 tmp->current_length = keep_data;
622 keep_data -= tmp->current_length;
623 if (!(tmp->flags & VLIB_BUFFER_NEXT_PRESENT))
625 rv = IP6_REASS_RC_INTERNAL_ERROR;
626 goto free_buffers_and_return;
629 total_length += tmp->current_length;
633 vec_add1 (vec_drop_compress, tmp_bi);
634 if (reass->first_bi == tmp_bi)
636 rv = IP6_REASS_RC_INTERNAL_ERROR;
637 goto free_buffers_and_return;
641 if (tmp->flags & VLIB_BUFFER_NEXT_PRESENT)
643 tmp_bi = tmp->next_buffer;
644 tmp = vlib_get_buffer (vm, tmp->next_buffer);
652 vnet_buffer (vlib_get_buffer (vm, sub_chain_bi))->ip.
655 while (~0 != sub_chain_bi);
659 rv = IP6_REASS_RC_INTERNAL_ERROR;
660 goto free_buffers_and_return;
662 last_b->flags &= ~VLIB_BUFFER_NEXT_PRESENT;
663 vlib_buffer_t *first_b = vlib_get_buffer (vm, reass->first_bi);
664 if (total_length < first_b->current_length)
666 rv = IP6_REASS_RC_INTERNAL_ERROR;
667 goto free_buffers_and_return;
669 total_length -= first_b->current_length;
670 first_b->flags |= VLIB_BUFFER_TOTAL_LENGTH_VALID;
671 first_b->total_length_not_including_first_buffer = total_length;
672 // drop fragment header
673 vnet_buffer_opaque_t *first_b_vnb = vnet_buffer (first_b);
674 ip6_header_t *ip = vlib_buffer_get_current (first_b);
675 u16 ip6_frag_hdr_offset = first_b_vnb->ip.reass.ip6_frag_hdr_offset;
676 ip6_ext_header_t *prev_hdr;
677 ip6_ext_header_find_t (ip, prev_hdr, frag_hdr,
678 IP_PROTOCOL_IPV6_FRAGMENTATION);
681 prev_hdr->next_hdr = frag_hdr->next_hdr;
685 ip->protocol = frag_hdr->next_hdr;
687 if (!((u8 *) frag_hdr - (u8 *) ip == ip6_frag_hdr_offset))
689 rv = IP6_REASS_RC_INTERNAL_ERROR;
690 goto free_buffers_and_return;
692 memmove (frag_hdr, (u8 *) frag_hdr + sizeof (*frag_hdr),
693 first_b->current_length - ip6_frag_hdr_offset -
694 sizeof (ip6_frag_hdr_t));
695 first_b->current_length -= sizeof (*frag_hdr);
697 clib_host_to_net_u16 (total_length + first_b->current_length -
699 if (!vlib_buffer_chain_linearize (vm, first_b))
701 rv = IP6_REASS_RC_NO_BUF;
702 goto free_buffers_and_return;
704 first_b->flags &= ~VLIB_BUFFER_EXT_HDR_VALID;
705 if (PREDICT_FALSE (first_b->flags & VLIB_BUFFER_IS_TRACED))
707 ip6_reass_add_trace (vm, node, rm, reass->id, reass->trace_op_counter,
708 reass->first_bi, reass->first_bi, reass->data_len,
710 ++reass->trace_op_counter;
712 // following code does a hexdump of packet fragments to stdout ...
715 u32 bi = reass->first_bi;
719 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
720 s = format (s, "%u: %U\n", bi, format_hexdump,
721 vlib_buffer_get_current (b), b->current_length);
722 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
731 printf ("%.*s\n", vec_len (s), s);
740 *next0 = IP6_REASSEMBLY_NEXT_INPUT;
744 *next0 = reass->next_index;
746 vnet_buffer (first_b)->ip.reass.estimated_mtu = reass->min_fragment_length;
747 ip6_reass_free (rm, rt, reass);
749 free_buffers_and_return:
750 vlib_buffer_free (vm, vec_drop_compress, vec_len (vec_drop_compress));
751 vec_free (vec_drop_compress);
756 ip6_reass_insert_range_in_chain (vlib_main_t * vm, ip6_reass_main_t * rm,
757 ip6_reass_per_thread_t * rt,
758 ip6_reass_t * reass, u32 prev_range_bi,
762 vlib_buffer_t *new_next_b = vlib_get_buffer (vm, new_next_bi);
763 vnet_buffer_opaque_t *new_next_vnb = vnet_buffer (new_next_b);
764 if (~0 != prev_range_bi)
766 vlib_buffer_t *prev_b = vlib_get_buffer (vm, prev_range_bi);
767 vnet_buffer_opaque_t *prev_vnb = vnet_buffer (prev_b);
768 new_next_vnb->ip.reass.next_range_bi = prev_vnb->ip.reass.next_range_bi;
769 prev_vnb->ip.reass.next_range_bi = new_next_bi;
773 if (~0 != reass->first_bi)
775 new_next_vnb->ip.reass.next_range_bi = reass->first_bi;
777 reass->first_bi = new_next_bi;
779 reass->data_len += ip6_reass_buffer_get_data_len (new_next_b);
782 always_inline ip6_reass_rc_t
783 ip6_reass_update (vlib_main_t * vm, vlib_node_runtime_t * node,
784 ip6_reass_main_t * rm, ip6_reass_per_thread_t * rt,
785 ip6_reass_t * reass, u32 * bi0, u32 * next0, u32 * error0,
786 ip6_frag_hdr_t * frag_hdr, bool is_custom_app,
787 u32 * handoff_thread_idx)
790 vlib_buffer_t *fb = vlib_get_buffer (vm, *bi0);
791 vnet_buffer_opaque_t *fvnb = vnet_buffer (fb);
794 reass->next_index = fvnb->ip.reass.next_index; // store next_index before it's overwritten
795 reass->error_next_index = fvnb->ip.reass.error_next_index; // store error_next_index before it is overwritten
798 fvnb->ip.reass.ip6_frag_hdr_offset =
799 (u8 *) frag_hdr - (u8 *) vlib_buffer_get_current (fb);
800 ip6_header_t *fip = vlib_buffer_get_current (fb);
801 if (fb->current_length < sizeof (*fip) ||
802 fvnb->ip.reass.ip6_frag_hdr_offset == 0 ||
803 fvnb->ip.reass.ip6_frag_hdr_offset >= fb->current_length)
805 return IP6_REASS_RC_INTERNAL_ERROR;
808 u32 fragment_first = fvnb->ip.reass.fragment_first =
809 ip6_frag_hdr_offset_bytes (frag_hdr);
810 u32 fragment_length =
811 vlib_buffer_length_in_chain (vm, fb) -
812 (fvnb->ip.reass.ip6_frag_hdr_offset + sizeof (*frag_hdr));
813 u32 fragment_last = fvnb->ip.reass.fragment_last =
814 fragment_first + fragment_length - 1;
815 int more_fragments = ip6_frag_hdr_more (frag_hdr);
816 u32 candidate_range_bi = reass->first_bi;
817 u32 prev_range_bi = ~0;
818 fvnb->ip.reass.range_first = fragment_first;
819 fvnb->ip.reass.range_last = fragment_last;
820 fvnb->ip.reass.next_range_bi = ~0;
823 reass->last_packet_octet = fragment_last;
825 if (~0 == reass->first_bi)
827 // starting a new reassembly
828 ip6_reass_insert_range_in_chain (vm, rm, rt, reass, prev_range_bi,
830 reass->min_fragment_length = clib_net_to_host_u16 (fip->payload_length);
832 reass->fragments_n = 1;
833 goto check_if_done_maybe;
835 reass->min_fragment_length =
836 clib_min (clib_net_to_host_u16 (fip->payload_length),
837 fvnb->ip.reass.estimated_mtu);
838 while (~0 != candidate_range_bi)
840 vlib_buffer_t *candidate_b = vlib_get_buffer (vm, candidate_range_bi);
841 vnet_buffer_opaque_t *candidate_vnb = vnet_buffer (candidate_b);
842 if (fragment_first > candidate_vnb->ip.reass.range_last)
844 // this fragments starts after candidate range
845 prev_range_bi = candidate_range_bi;
846 candidate_range_bi = candidate_vnb->ip.reass.next_range_bi;
847 if (candidate_vnb->ip.reass.range_last < fragment_last &&
848 ~0 == candidate_range_bi)
850 // special case - this fragment falls beyond all known ranges
851 ip6_reass_insert_range_in_chain (vm, rm, rt, reass,
852 prev_range_bi, *bi0);
858 if (fragment_last < candidate_vnb->ip.reass.range_first)
860 // this fragment ends before candidate range without any overlap
861 ip6_reass_insert_range_in_chain (vm, rm, rt, reass, prev_range_bi,
865 else if (fragment_first == candidate_vnb->ip.reass.range_first &&
866 fragment_last == candidate_vnb->ip.reass.range_last)
868 // duplicate fragment - ignore
872 // overlapping fragment - not allowed by RFC 8200
873 ip6_reass_drop_all (vm, node, rm, reass);
874 ip6_reass_free (rm, rt, reass);
875 if (PREDICT_FALSE (fb->flags & VLIB_BUFFER_IS_TRACED))
877 ip6_reass_add_trace (vm, node, rm, reass->id,
878 reass->trace_op_counter, *bi0,
879 reass->first_bi, reass->data_len,
881 ++reass->trace_op_counter;
883 *next0 = IP6_REASSEMBLY_NEXT_DROP;
884 *error0 = IP6_ERROR_REASS_OVERLAPPING_FRAGMENT;
885 return IP6_REASS_RC_OK;
889 ++reass->fragments_n;
893 if (PREDICT_FALSE (fb->flags & VLIB_BUFFER_IS_TRACED))
895 ip6_reass_add_trace (vm, node, rm, reass->id,
896 reass->trace_op_counter, *bi0, reass->first_bi,
897 reass->data_len, RANGE_NEW, ~0);
898 ++reass->trace_op_counter;
901 if (~0 != reass->last_packet_octet &&
902 reass->data_len == reass->last_packet_octet + 1)
904 *handoff_thread_idx = reass->sendout_thread_index;
906 ip6_reass_finalize (vm, node, rm, rt, reass, bi0, next0, error0,
908 if (IP6_REASS_RC_OK == rc
909 && reass->memory_owner_thread_index != reass->sendout_thread_index)
911 return IP6_REASS_RC_HANDOFF;
920 if (reass->fragments_n > rm->max_reass_len)
922 return IP6_REASS_RC_TOO_MANY_FRAGMENTS;
927 *next0 = IP6_REASSEMBLY_NEXT_DROP;
928 *error0 = IP6_ERROR_REASS_DUPLICATE_FRAGMENT;
931 return IP6_REASS_RC_OK;
935 ip6_reass_verify_upper_layer_present (vlib_node_runtime_t * node,
937 ip6_frag_hdr_t * frag_hdr)
939 ip6_ext_header_t *tmp = (ip6_ext_header_t *) frag_hdr;
940 while (ip6_ext_hdr (tmp->next_hdr))
942 tmp = ip6_ext_next_header (tmp);
944 if (IP_PROTOCOL_IP6_NONXT == tmp->next_hdr)
946 icmp6_error_set_vnet_buffer (b, ICMP6_parameter_problem,
947 ICMP6_parameter_problem_first_fragment_has_incomplete_header_chain,
949 b->error = node->errors[IP6_ERROR_REASS_MISSING_UPPER];
957 ip6_reass_verify_fragment_multiple_8 (vlib_main_t * vm,
958 vlib_node_runtime_t * node,
960 ip6_frag_hdr_t * frag_hdr)
962 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
963 ip6_header_t *ip = vlib_buffer_get_current (b);
964 int more_fragments = ip6_frag_hdr_more (frag_hdr);
965 u32 fragment_length =
966 vlib_buffer_length_in_chain (vm, b) -
967 (vnb->ip.reass.ip6_frag_hdr_offset + sizeof (*frag_hdr));
968 if (more_fragments && 0 != fragment_length % 8)
970 icmp6_error_set_vnet_buffer (b, ICMP6_parameter_problem,
971 ICMP6_parameter_problem_erroneous_header_field,
972 (u8 *) & ip->payload_length - (u8 *) ip);
979 ip6_reass_verify_packet_size_lt_64k (vlib_main_t * vm,
980 vlib_node_runtime_t * node,
982 ip6_frag_hdr_t * frag_hdr)
984 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
985 u32 fragment_first = ip6_frag_hdr_offset_bytes (frag_hdr);
986 u32 fragment_length =
987 vlib_buffer_length_in_chain (vm, b) -
988 (vnb->ip.reass.ip6_frag_hdr_offset + sizeof (*frag_hdr));
989 if (fragment_first + fragment_length > 65535)
991 ip6_header_t *ip0 = vlib_buffer_get_current (b);
992 icmp6_error_set_vnet_buffer (b, ICMP6_parameter_problem,
993 ICMP6_parameter_problem_erroneous_header_field,
994 (u8 *) & frag_hdr->fragment_offset_and_more
1002 ip6_reassembly_inline (vlib_main_t * vm, vlib_node_runtime_t * node,
1003 vlib_frame_t * frame, bool is_feature,
1006 u32 *from = vlib_frame_vector_args (frame);
1007 u32 n_left_from, n_left_to_next, *to_next, next_index;
1008 ip6_reass_main_t *rm = &ip6_reass_main;
1009 ip6_reass_per_thread_t *rt = &rm->per_thread_data[vm->thread_index];
1010 clib_spinlock_lock (&rt->lock);
1012 n_left_from = frame->n_vectors;
1013 next_index = node->cached_next_index;
1014 while (n_left_from > 0)
1016 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
1018 while (n_left_from > 0 && n_left_to_next > 0)
1022 u32 next0 = IP6_REASSEMBLY_NEXT_DROP;
1023 u32 error0 = IP6_ERROR_NONE;
1027 b0 = vlib_get_buffer (vm, bi0);
1029 ip6_header_t *ip0 = vlib_buffer_get_current (b0);
1030 ip6_frag_hdr_t *frag_hdr = NULL;
1031 ip6_ext_header_t *prev_hdr;
1032 if (ip6_ext_hdr (ip0->protocol))
1034 ip6_ext_header_find_t (ip0, prev_hdr, frag_hdr,
1035 IP_PROTOCOL_IPV6_FRAGMENTATION);
1039 // this is a regular packet - no fragmentation
1040 next0 = IP6_REASSEMBLY_NEXT_INPUT;
1043 if (0 == ip6_frag_hdr_offset (frag_hdr))
1045 // first fragment - verify upper-layer is present
1046 if (!ip6_reass_verify_upper_layer_present (node, b0, frag_hdr))
1048 next0 = IP6_REASSEMBLY_NEXT_ICMP_ERROR;
1052 if (!ip6_reass_verify_fragment_multiple_8 (vm, node, b0, frag_hdr)
1053 || !ip6_reass_verify_packet_size_lt_64k (vm, node, b0,
1056 next0 = IP6_REASSEMBLY_NEXT_ICMP_ERROR;
1059 vnet_buffer (b0)->ip.reass.ip6_frag_hdr_offset =
1060 (u8 *) frag_hdr - (u8 *) ip0;
1065 kv.k.as_u64[0] = ip0->src_address.as_u64[0];
1066 kv.k.as_u64[1] = ip0->src_address.as_u64[1];
1067 kv.k.as_u64[2] = ip0->dst_address.as_u64[0];
1068 kv.k.as_u64[3] = ip0->dst_address.as_u64[1];
1070 ((u64) vec_elt (ip6_main.fib_index_by_sw_if_index,
1071 vnet_buffer (b0)->sw_if_index[VLIB_RX])) << 32 |
1072 (u64) frag_hdr->identification;
1073 kv.k.as_u64[5] = ip0->protocol;
1075 ip6_reass_t *reass =
1076 ip6_reass_find_or_create (vm, node, rm, rt, &kv, &icmp_bi,
1081 const u32 fragment_first = ip6_frag_hdr_offset (frag_hdr);
1082 if (0 == fragment_first)
1084 reass->sendout_thread_index = vm->thread_index;
1087 if (PREDICT_FALSE (do_handoff))
1089 next0 = IP6_REASSEMBLY_NEXT_HANDOFF;
1091 vnet_buffer (b0)->ip.reass.owner_feature_thread_index =
1092 kv.v.memory_owner_thread_index;
1094 vnet_buffer (b0)->ip.reass.owner_thread_index =
1095 kv.v.memory_owner_thread_index;
1099 u32 handoff_thread_idx;
1100 switch (ip6_reass_update (vm, node, rm, rt, reass, &bi0, &next0,
1101 &error0, frag_hdr, is_custom_app,
1102 &handoff_thread_idx))
1104 case IP6_REASS_RC_OK:
1105 /* nothing to do here */
1107 case IP6_REASS_RC_HANDOFF:
1108 next0 = IP6_REASSEMBLY_NEXT_HANDOFF;
1109 b0 = vlib_get_buffer (vm, bi0);
1111 vnet_buffer (b0)->ip.reass.owner_feature_thread_index =
1114 vnet_buffer (b0)->ip.reass.owner_thread_index =
1117 case IP6_REASS_RC_TOO_MANY_FRAGMENTS:
1118 vlib_node_increment_counter (vm, node->node_index,
1119 IP6_ERROR_REASS_FRAGMENT_CHAIN_TOO_LONG,
1121 ip6_reass_drop_all (vm, node, rm, reass);
1122 ip6_reass_free (rm, rt, reass);
1125 case IP6_REASS_RC_NO_BUF:
1126 vlib_node_increment_counter (vm, node->node_index,
1127 IP6_ERROR_REASS_NO_BUF, 1);
1128 ip6_reass_drop_all (vm, node, rm, reass);
1129 ip6_reass_free (rm, rt, reass);
1132 case IP6_REASS_RC_INTERNAL_ERROR:
1133 /* drop everything and start with a clean slate */
1134 vlib_node_increment_counter (vm, node->node_index,
1135 IP6_ERROR_REASS_INTERNAL_ERROR,
1137 ip6_reass_drop_all (vm, node, rm, reass);
1138 ip6_reass_free (rm, rt, reass);
1147 next0 = IP6_REASSEMBLY_NEXT_DROP;
1151 vnet_buffer_opaque_t *fvnb = vnet_buffer (b0);
1152 next0 = fvnb->ip.reass.error_next_index;
1154 error0 = IP6_ERROR_REASS_LIMIT_REACHED;
1157 b0->error = node->errors[error0];
1164 n_left_to_next -= 1;
1165 if (next0 == IP6_REASSEMBLY_NEXT_HANDOFF)
1167 if (PREDICT_FALSE (b0->flags & VLIB_BUFFER_IS_TRACED))
1170 ip6_reass_add_trace (vm, node, rm, ~0,
1172 bi0, ~0, ~0, HANDOFF,
1173 vnet_buffer (b0)->ip.
1174 reass.owner_feature_thread_index);
1176 ip6_reass_add_trace (vm, node, rm, ~0, ~0, bi0,
1178 vnet_buffer (b0)->ip.
1179 reass.owner_thread_index);
1182 else if (is_feature && IP6_ERROR_NONE == error0)
1184 b0 = vlib_get_buffer (vm, bi0);
1185 vnet_feature_next (&next0, b0);
1187 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
1188 n_left_to_next, bi0, next0);
1193 next0 = IP6_REASSEMBLY_NEXT_ICMP_ERROR;
1194 to_next[0] = icmp_bi;
1196 n_left_to_next -= 1;
1197 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
1198 n_left_to_next, icmp_bi,
1206 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
1209 clib_spinlock_unlock (&rt->lock);
1210 return frame->n_vectors;
1213 static char *ip6_reassembly_error_strings[] = {
1214 #define _(sym, string) string,
1219 VLIB_NODE_FN (ip6_reass_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
1220 vlib_frame_t * frame)
1222 return ip6_reassembly_inline (vm, node, frame, false /* is_feature */ ,
1223 false /* is_custom_app */ );
1227 VLIB_REGISTER_NODE (ip6_reass_node) = {
1228 .name = "ip6-reassembly",
1229 .vector_size = sizeof (u32),
1230 .format_trace = format_ip6_reass_trace,
1231 .n_errors = ARRAY_LEN (ip6_reassembly_error_strings),
1232 .error_strings = ip6_reassembly_error_strings,
1233 .n_next_nodes = IP6_REASSEMBLY_N_NEXT,
1236 [IP6_REASSEMBLY_NEXT_INPUT] = "ip6-input",
1237 [IP6_REASSEMBLY_NEXT_DROP] = "ip6-drop",
1238 [IP6_REASSEMBLY_NEXT_ICMP_ERROR] = "ip6-icmp-error",
1239 [IP6_REASSEMBLY_NEXT_HANDOFF] = "ip6-reassembly-handoff",
1244 VLIB_NODE_FN (ip6_reass_node_feature) (vlib_main_t * vm,
1245 vlib_node_runtime_t * node,
1246 vlib_frame_t * frame)
1248 return ip6_reassembly_inline (vm, node, frame, true /* is_feature */ ,
1249 false /* is_custom_app */ );
1253 VLIB_REGISTER_NODE (ip6_reass_node_feature) = {
1254 .name = "ip6-reassembly-feature",
1255 .vector_size = sizeof (u32),
1256 .format_trace = format_ip6_reass_trace,
1257 .n_errors = ARRAY_LEN (ip6_reassembly_error_strings),
1258 .error_strings = ip6_reassembly_error_strings,
1259 .n_next_nodes = IP6_REASSEMBLY_N_NEXT,
1262 [IP6_REASSEMBLY_NEXT_INPUT] = "ip6-input",
1263 [IP6_REASSEMBLY_NEXT_DROP] = "ip6-drop",
1264 [IP6_REASSEMBLY_NEXT_ICMP_ERROR] = "ip6-icmp-error",
1265 [IP6_REASSEMBLY_NEXT_HANDOFF] = "ip6-reass-feature-hoff",
1271 VNET_FEATURE_INIT (ip6_reassembly_feature, static) = {
1272 .arc_name = "ip6-unicast",
1273 .node_name = "ip6-reassembly-feature",
1274 .runs_before = VNET_FEATURES ("ip6-lookup",
1275 "ipsec6-input-feature"),
1280 #ifndef CLIB_MARCH_VARIANT
1282 ip6_reass_get_nbuckets ()
1284 ip6_reass_main_t *rm = &ip6_reass_main;
1288 nbuckets = (u32) (rm->max_reass_n / IP6_REASS_HT_LOAD_FACTOR);
1290 for (i = 0; i < 31; i++)
1291 if ((1 << i) >= nbuckets)
1297 #endif /* CLIB_MARCH_VARIANT */
1301 IP6_EVENT_CONFIG_CHANGED = 1,
1302 } ip6_reass_event_t;
1304 #ifndef CLIB_MARCH_VARIANT
1308 clib_bihash_48_8_t *new_hash;
1309 } ip6_rehash_cb_ctx;
1312 ip6_rehash_cb (clib_bihash_kv_48_8_t * kv, void *_ctx)
1314 ip6_rehash_cb_ctx *ctx = _ctx;
1315 if (clib_bihash_add_del_48_8 (ctx->new_hash, kv, 1))
1322 ip6_reass_set_params (u32 timeout_ms, u32 max_reassemblies,
1323 u32 max_reassembly_length, u32 expire_walk_interval_ms)
1325 ip6_reass_main.timeout_ms = timeout_ms;
1326 ip6_reass_main.timeout = (f64) timeout_ms / (f64) MSEC_PER_SEC;
1327 ip6_reass_main.max_reass_n = max_reassemblies;
1328 ip6_reass_main.max_reass_len = max_reassembly_length;
1329 ip6_reass_main.expire_walk_interval_ms = expire_walk_interval_ms;
1333 ip6_reass_set (u32 timeout_ms, u32 max_reassemblies,
1334 u32 max_reassembly_length, u32 expire_walk_interval_ms)
1336 u32 old_nbuckets = ip6_reass_get_nbuckets ();
1337 ip6_reass_set_params (timeout_ms, max_reassemblies, max_reassembly_length,
1338 expire_walk_interval_ms);
1339 vlib_process_signal_event (ip6_reass_main.vlib_main,
1340 ip6_reass_main.ip6_reass_expire_node_idx,
1341 IP6_EVENT_CONFIG_CHANGED, 0);
1342 u32 new_nbuckets = ip6_reass_get_nbuckets ();
1343 if (ip6_reass_main.max_reass_n > 0 && new_nbuckets > old_nbuckets)
1345 clib_bihash_48_8_t new_hash;
1346 clib_memset (&new_hash, 0, sizeof (new_hash));
1347 ip6_rehash_cb_ctx ctx;
1349 ctx.new_hash = &new_hash;
1350 clib_bihash_init_48_8 (&new_hash, "ip6-reass", new_nbuckets,
1351 new_nbuckets * 1024);
1352 clib_bihash_foreach_key_value_pair_48_8 (&ip6_reass_main.hash,
1353 ip6_rehash_cb, &ctx);
1356 clib_bihash_free_48_8 (&new_hash);
1361 clib_bihash_free_48_8 (&ip6_reass_main.hash);
1362 clib_memcpy_fast (&ip6_reass_main.hash, &new_hash,
1363 sizeof (ip6_reass_main.hash));
1364 clib_bihash_copied (&ip6_reass_main.hash, &new_hash);
1371 ip6_reass_get (u32 * timeout_ms, u32 * max_reassemblies,
1372 u32 * expire_walk_interval_ms)
1374 *timeout_ms = ip6_reass_main.timeout_ms;
1375 *max_reassemblies = ip6_reass_main.max_reass_n;
1376 *expire_walk_interval_ms = ip6_reass_main.expire_walk_interval_ms;
1380 static clib_error_t *
1381 ip6_reass_init_function (vlib_main_t * vm)
1383 ip6_reass_main_t *rm = &ip6_reass_main;
1384 clib_error_t *error = 0;
1390 vec_validate (rm->per_thread_data, vlib_num_workers ());
1391 ip6_reass_per_thread_t *rt;
1392 vec_foreach (rt, rm->per_thread_data)
1394 clib_spinlock_init (&rt->lock);
1395 pool_alloc (rt->pool, rm->max_reass_n);
1398 node = vlib_get_node_by_name (vm, (u8 *) "ip6-reassembly-expire-walk");
1400 rm->ip6_reass_expire_node_idx = node->index;
1402 ip6_reass_set_params (IP6_REASS_TIMEOUT_DEFAULT_MS,
1403 IP6_REASS_MAX_REASSEMBLIES_DEFAULT,
1404 IP6_REASS_MAX_REASSEMBLY_LENGTH_DEFAULT,
1405 IP6_REASS_EXPIRE_WALK_INTERVAL_DEFAULT_MS);
1407 nbuckets = ip6_reass_get_nbuckets ();
1408 clib_bihash_init_48_8 (&rm->hash, "ip6-reass", nbuckets, nbuckets * 1024);
1410 node = vlib_get_node_by_name (vm, (u8 *) "ip6-drop");
1412 rm->ip6_drop_idx = node->index;
1413 node = vlib_get_node_by_name (vm, (u8 *) "ip6-icmp-error");
1415 rm->ip6_icmp_error_idx = node->index;
1417 if ((error = vlib_call_init_function (vm, ip_main_init)))
1419 ip6_register_protocol (IP_PROTOCOL_IPV6_FRAGMENTATION,
1420 ip6_reass_node.index);
1422 rm->fq_index = vlib_frame_queue_main_init (ip6_reass_node.index, 0);
1423 rm->fq_feature_index =
1424 vlib_frame_queue_main_init (ip6_reass_node_feature.index, 0);
1429 VLIB_INIT_FUNCTION (ip6_reass_init_function);
1430 #endif /* CLIB_MARCH_VARIANT */
1433 ip6_reass_walk_expired (vlib_main_t * vm,
1434 vlib_node_runtime_t * node, vlib_frame_t * f)
1436 ip6_reass_main_t *rm = &ip6_reass_main;
1437 uword event_type, *event_data = 0;
1441 vlib_process_wait_for_event_or_clock (vm,
1442 (f64) rm->expire_walk_interval_ms
1443 / (f64) MSEC_PER_SEC);
1444 event_type = vlib_process_get_events (vm, &event_data);
1448 case ~0: /* no events => timeout */
1449 /* nothing to do here */
1451 case IP6_EVENT_CONFIG_CHANGED:
1454 clib_warning ("BUG: event type 0x%wx", event_type);
1457 f64 now = vlib_time_now (vm);
1460 int *pool_indexes_to_free = NULL;
1462 uword thread_index = 0;
1464 const uword nthreads = vlib_num_workers () + 1;
1465 u32 *vec_icmp_bi = NULL;
1466 for (thread_index = 0; thread_index < nthreads; ++thread_index)
1468 ip6_reass_per_thread_t *rt = &rm->per_thread_data[thread_index];
1469 clib_spinlock_lock (&rt->lock);
1471 vec_reset_length (pool_indexes_to_free);
1473 pool_foreach_index (index, rt->pool, ({
1474 reass = pool_elt_at_index (rt->pool, index);
1475 if (now > reass->last_heard + rm->timeout)
1477 vec_add1 (pool_indexes_to_free, index);
1483 vec_foreach (i, pool_indexes_to_free)
1485 ip6_reass_t *reass = pool_elt_at_index (rt->pool, i[0]);
1487 ip6_reass_on_timeout (vm, node, rm, reass, &icmp_bi);
1489 vec_add1 (vec_icmp_bi, icmp_bi);
1491 ip6_reass_free (rm, rt, reass);
1495 clib_spinlock_unlock (&rt->lock);
1498 while (vec_len (vec_icmp_bi) > 0)
1501 vlib_get_frame_to_node (vm, rm->ip6_icmp_error_idx);
1502 u32 *to_next = vlib_frame_vector_args (f);
1503 u32 n_left_to_next = VLIB_FRAME_SIZE - f->n_vectors;
1504 int trace_frame = 0;
1505 while (vec_len (vec_icmp_bi) > 0 && n_left_to_next > 0)
1507 u32 bi = vec_pop (vec_icmp_bi);
1508 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
1509 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_IS_TRACED))
1511 b->error = node->errors[IP6_ERROR_REASS_TIMEOUT];
1515 n_left_to_next -= 1;
1517 f->frame_flags |= (trace_frame * VLIB_FRAME_TRACE);
1518 vlib_put_frame_to_node (vm, rm->ip6_icmp_error_idx, f);
1521 vec_free (pool_indexes_to_free);
1522 vec_free (vec_icmp_bi);
1525 _vec_len (event_data) = 0;
1533 VLIB_REGISTER_NODE (ip6_reass_expire_node) = {
1534 .function = ip6_reass_walk_expired,
1535 .format_trace = format_ip6_reass_trace,
1536 .type = VLIB_NODE_TYPE_PROCESS,
1537 .name = "ip6-reassembly-expire-walk",
1539 .n_errors = ARRAY_LEN (ip6_reassembly_error_strings),
1540 .error_strings = ip6_reassembly_error_strings,
1546 format_ip6_reass_key (u8 * s, va_list * args)
1548 ip6_reass_key_t *key = va_arg (*args, ip6_reass_key_t *);
1549 s = format (s, "xx_id: %u, src: %U, dst: %U, frag_id: %u, proto: %u",
1550 key->xx_id, format_ip6_address, &key->src, format_ip6_address,
1551 &key->dst, clib_net_to_host_u16 (key->frag_id), key->proto);
1556 format_ip6_reass (u8 * s, va_list * args)
1558 vlib_main_t *vm = va_arg (*args, vlib_main_t *);
1559 ip6_reass_t *reass = va_arg (*args, ip6_reass_t *);
1561 s = format (s, "ID: %lu, key: %U\n first_bi: %u, data_len: %u, "
1562 "last_packet_octet: %u, trace_op_counter: %u\n",
1563 reass->id, format_ip6_reass_key, &reass->key, reass->first_bi,
1564 reass->data_len, reass->last_packet_octet,
1565 reass->trace_op_counter);
1566 u32 bi = reass->first_bi;
1570 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
1571 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
1572 s = format (s, " #%03u: range: [%u, %u], bi: %u, off: %d, len: %u, "
1573 "fragment[%u, %u]\n",
1574 counter, vnb->ip.reass.range_first,
1575 vnb->ip.reass.range_last, bi,
1576 ip6_reass_buffer_get_data_offset (b),
1577 ip6_reass_buffer_get_data_len (b),
1578 vnb->ip.reass.fragment_first, vnb->ip.reass.fragment_last);
1579 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
1581 bi = b->next_buffer;
1591 static clib_error_t *
1592 show_ip6_reass (vlib_main_t * vm, unformat_input_t * input,
1593 CLIB_UNUSED (vlib_cli_command_t * lmd))
1595 ip6_reass_main_t *rm = &ip6_reass_main;
1597 vlib_cli_output (vm, "---------------------");
1598 vlib_cli_output (vm, "IP6 reassembly status");
1599 vlib_cli_output (vm, "---------------------");
1600 bool details = false;
1601 if (unformat (input, "details"))
1606 u32 sum_reass_n = 0;
1607 u64 sum_buffers_n = 0;
1610 const uword nthreads = vlib_num_workers () + 1;
1611 for (thread_index = 0; thread_index < nthreads; ++thread_index)
1613 ip6_reass_per_thread_t *rt = &rm->per_thread_data[thread_index];
1614 clib_spinlock_lock (&rt->lock);
1618 pool_foreach (reass, rt->pool, {
1619 vlib_cli_output (vm, "%U", format_ip6_reass, vm, reass);
1623 sum_reass_n += rt->reass_n;
1624 clib_spinlock_unlock (&rt->lock);
1626 vlib_cli_output (vm, "---------------------");
1627 vlib_cli_output (vm, "Current IP6 reassemblies count: %lu\n",
1628 (long unsigned) sum_reass_n);
1629 vlib_cli_output (vm, "Maximum configured concurrent IP6 reassemblies per "
1630 "worker-thread: %lu\n", (long unsigned) rm->max_reass_n);
1631 vlib_cli_output (vm, "Buffers in use: %lu\n",
1632 (long unsigned) sum_buffers_n);
1637 VLIB_CLI_COMMAND (show_ip6_reassembly_cmd, static) = {
1638 .path = "show ip6-reassembly",
1639 .short_help = "show ip6-reassembly [details]",
1640 .function = show_ip6_reass,
1644 #ifndef CLIB_MARCH_VARIANT
1646 ip6_reass_enable_disable (u32 sw_if_index, u8 enable_disable)
1648 return vnet_feature_enable_disable ("ip6-unicast", "ip6-reassembly-feature",
1649 sw_if_index, enable_disable, 0, 0);
1651 #endif /* CLIB_MARCH_VARIANT */
1653 #define foreach_ip6_reassembly_handoff_error \
1654 _(CONGESTION_DROP, "congestion drop")
1659 #define _(sym,str) IP6_REASSEMBLY_HANDOFF_ERROR_##sym,
1660 foreach_ip6_reassembly_handoff_error
1662 IP6_REASSEMBLY_HANDOFF_N_ERROR,
1663 } ip6_reassembly_handoff_error_t;
1665 static char *ip6_reassembly_handoff_error_strings[] = {
1666 #define _(sym,string) string,
1667 foreach_ip6_reassembly_handoff_error
1673 u32 next_worker_index;
1674 } ip6_reassembly_handoff_trace_t;
1677 format_ip6_reassembly_handoff_trace (u8 * s, va_list * args)
1679 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
1680 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
1681 ip6_reassembly_handoff_trace_t *t =
1682 va_arg (*args, ip6_reassembly_handoff_trace_t *);
1685 format (s, "ip6-reassembly-handoff: next-worker %d",
1686 t->next_worker_index);
1692 ip6_reassembly_handoff_inline (vlib_main_t * vm, vlib_node_runtime_t * node,
1693 vlib_frame_t * frame, bool is_feature)
1695 ip6_reass_main_t *rm = &ip6_reass_main;
1697 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b;
1698 u32 n_enq, n_left_from, *from;
1699 u16 thread_indices[VLIB_FRAME_SIZE], *ti;
1702 from = vlib_frame_vector_args (frame);
1703 n_left_from = frame->n_vectors;
1704 vlib_get_buffers (vm, from, bufs, n_left_from);
1707 ti = thread_indices;
1709 fq_index = (is_feature) ? rm->fq_feature_index : rm->fq_index;
1711 while (n_left_from > 0)
1714 (is_feature) ? vnet_buffer (b[0])->ip.
1715 reass.owner_feature_thread_index : vnet_buffer (b[0])->ip.
1716 reass.owner_thread_index;
1719 ((node->flags & VLIB_NODE_FLAG_TRACE)
1720 && (b[0]->flags & VLIB_BUFFER_IS_TRACED)))
1722 ip6_reassembly_handoff_trace_t *t =
1723 vlib_add_trace (vm, node, b[0], sizeof (*t));
1724 t->next_worker_index = ti[0];
1732 vlib_buffer_enqueue_to_thread (vm, fq_index, from, thread_indices,
1733 frame->n_vectors, 1);
1735 if (n_enq < frame->n_vectors)
1736 vlib_node_increment_counter (vm, node->node_index,
1737 IP6_REASSEMBLY_HANDOFF_ERROR_CONGESTION_DROP,
1738 frame->n_vectors - n_enq);
1739 return frame->n_vectors;
1742 VLIB_NODE_FN (ip6_reassembly_handoff_node) (vlib_main_t * vm,
1743 vlib_node_runtime_t * node,
1744 vlib_frame_t * frame)
1746 return ip6_reassembly_handoff_inline (vm, node, frame,
1747 false /* is_feature */ );
1751 VLIB_REGISTER_NODE (ip6_reassembly_handoff_node) = {
1752 .name = "ip6-reassembly-handoff",
1753 .vector_size = sizeof (u32),
1754 .n_errors = ARRAY_LEN(ip6_reassembly_handoff_error_strings),
1755 .error_strings = ip6_reassembly_handoff_error_strings,
1756 .format_trace = format_ip6_reassembly_handoff_trace,
1766 VLIB_NODE_FN (ip6_reassembly_feature_handoff_node) (vlib_main_t * vm,
1767 vlib_node_runtime_t * node, vlib_frame_t * frame)
1769 return ip6_reassembly_handoff_inline (vm, node, frame, true /* is_feature */ );
1774 VLIB_REGISTER_NODE (ip6_reassembly_feature_handoff_node) = {
1775 .name = "ip6-reass-feature-hoff",
1776 .vector_size = sizeof (u32),
1777 .n_errors = ARRAY_LEN(ip6_reassembly_handoff_error_strings),
1778 .error_strings = ip6_reassembly_handoff_error_strings,
1779 .format_trace = format_ip6_reassembly_handoff_trace,
1790 * fd.io coding-style-patch-verification: ON
1793 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob