2 * Copyright (c) 2017 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
18 * @brief IPv6 Reassembly.
20 * This file contains the source code for IPv6 reassembly.
23 #include <vppinfra/vec.h>
24 #include <vnet/vnet.h>
25 #include <vnet/ip/ip.h>
26 #include <vppinfra/bihash_48_8.h>
27 #include <vnet/ip/ip6_reassembly.h>
29 #define MSEC_PER_SEC 1000
30 #define IP6_REASS_TIMEOUT_DEFAULT_MS 100
31 #define IP6_REASS_EXPIRE_WALK_INTERVAL_DEFAULT_MS 10000 // 10 seconds default
32 #define IP6_REASS_MAX_REASSEMBLIES_DEFAULT 1024
33 #define IP6_REASS_HT_LOAD_FACTOR (0.75)
38 IP6_REASS_RC_INTERNAL_ERROR,
59 ip6_reass_buffer_get_data_offset (vlib_buffer_t * b)
61 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
62 return vnb->ip.reass.range_first - vnb->ip.reass.fragment_first;
66 ip6_reass_buffer_get_data_len (vlib_buffer_t * b)
68 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
69 return clib_min (vnb->ip.reass.range_last, vnb->ip.reass.fragment_last) -
70 (vnb->ip.reass.fragment_first + ip6_reass_buffer_get_data_offset (b)) + 1;
77 // time when last packet was received
79 // internal id of this reassembly
81 // buffer index of first buffer in this reassembly context
83 // last octet of packet, ~0 until fragment without more_fragments arrives
84 u32 last_packet_octet;
85 // length of data collected so far
87 // trace operation counter
89 // next index - used by non-feature node
91 // minimum fragment length for this reassembly - used to estimate MTU
92 u16 min_fragment_length;
101 clib_spinlock_t lock;
102 } ip6_reass_per_thread_t;
109 u32 expire_walk_interval_ms;
113 clib_bihash_48_8_t hash;
116 ip6_reass_per_thread_t *per_thread_data;
119 vlib_main_t *vlib_main;
120 vnet_main_t *vnet_main;
122 // node index of ip6-drop node
124 u32 ip6_icmp_error_idx;
125 u32 ip6_reass_expire_node_idx;
129 ip6_reass_main_t ip6_reass_main;
133 IP6_REASSEMBLY_NEXT_INPUT,
134 IP6_REASSEMBLY_NEXT_DROP,
135 IP6_REASSEMBLY_NEXT_ICMP_ERROR,
136 IP6_REASSEMBLY_N_NEXT,
143 ICMP_ERROR_RT_EXCEEDED,
144 ICMP_ERROR_FL_TOO_BIG,
145 ICMP_ERROR_FL_NOT_MULT_8,
147 } ip6_reass_trace_operation_e;
157 } ip6_reass_range_trace_t;
161 ip6_reass_trace_operation_e action;
163 ip6_reass_range_trace_t trace_range;
172 ip6_reass_trace_details (vlib_main_t * vm, u32 bi,
173 ip6_reass_range_trace_t * trace)
175 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
176 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
177 trace->range_first = vnb->ip.reass.range_first;
178 trace->range_last = vnb->ip.reass.range_last;
179 trace->data_offset = ip6_reass_buffer_get_data_offset (b);
180 trace->data_len = ip6_reass_buffer_get_data_len (b);
181 trace->range_bi = bi;
185 format_ip6_reass_range_trace (u8 * s, va_list * args)
187 ip6_reass_range_trace_t *trace = va_arg (*args, ip6_reass_range_trace_t *);
188 s = format (s, "range: [%u, %u], off %d, len %u, bi %u", trace->range_first,
189 trace->range_last, trace->data_offset, trace->data_len,
195 format_ip6_reass_trace (u8 * s, va_list * args)
197 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
198 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
199 ip6_reass_trace_t *t = va_arg (*args, ip6_reass_trace_t *);
200 s = format (s, "reass id: %u, op id: %u ", t->reass_id, t->op_id);
201 u32 indent = format_get_indent (s);
202 s = format (s, "first bi: %u, data len: %u, ip/fragment[%u, %u]",
203 t->trace_range.first_bi, t->total_data_len, t->fragment_first,
208 s = format (s, "\n%Unew %U", format_white_space, indent,
209 format_ip6_reass_range_trace, &t->trace_range);
212 s = format (s, "\n%Uoverlap %U", format_white_space, indent,
213 format_ip6_reass_range_trace, &t->trace_range);
215 case ICMP_ERROR_FL_TOO_BIG:
216 s = format (s, "\n%Uicmp-error - frag_len > 65535 %U",
217 format_white_space, indent, format_ip6_reass_range_trace,
220 case ICMP_ERROR_FL_NOT_MULT_8:
221 s = format (s, "\n%Uicmp-error - frag_len mod 8 != 0 %U",
222 format_white_space, indent, format_ip6_reass_range_trace,
225 case ICMP_ERROR_RT_EXCEEDED:
226 s = format (s, "\n%Uicmp-error - reassembly time exceeded",
227 format_white_space, indent);
230 s = format (s, "\n%Ufinalize reassembly", format_white_space, indent);
237 ip6_reass_add_trace (vlib_main_t * vm, vlib_node_runtime_t * node,
238 ip6_reass_main_t * rm, ip6_reass_t * reass,
239 u32 bi, ip6_reass_trace_operation_e action,
242 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
243 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
244 if (pool_is_free_index (vm->trace_main.trace_buffer_pool, b->trace_index))
246 // this buffer's trace is gone
247 b->flags &= ~VLIB_BUFFER_IS_TRACED;
250 ip6_reass_trace_t *t = vlib_add_trace (vm, node, b, sizeof (t[0]));
251 t->reass_id = reass->id;
253 ip6_reass_trace_details (vm, bi, &t->trace_range);
254 t->size_diff = size_diff;
255 t->op_id = reass->trace_op_counter;
256 ++reass->trace_op_counter;
257 t->fragment_first = vnb->ip.reass.fragment_first;
258 t->fragment_last = vnb->ip.reass.fragment_last;
259 t->trace_range.first_bi = reass->first_bi;
260 t->total_data_len = reass->data_len;
263 s = format (s, "%U", format_ip6_reass_trace, NULL, NULL, t);
264 printf ("%.*s\n", vec_len (s), s);
266 vec_reset_length (s);
271 ip6_reass_free (ip6_reass_main_t * rm, ip6_reass_per_thread_t * rt,
274 clib_bihash_kv_48_8_t kv;
275 kv.key[0] = reass->key.as_u64[0];
276 kv.key[1] = reass->key.as_u64[1];
277 kv.key[2] = reass->key.as_u64[2];
278 kv.key[3] = reass->key.as_u64[3];
279 kv.key[4] = reass->key.as_u64[4];
280 kv.key[5] = reass->key.as_u64[5];
281 clib_bihash_add_del_48_8 (&rm->hash, &kv, 0);
282 pool_put (rt->pool, reass);
287 ip6_reass_drop_all (vlib_main_t * vm, ip6_reass_main_t * rm,
288 ip6_reass_t * reass, u32 ** vec_drop_bi)
290 u32 range_bi = reass->first_bi;
291 vlib_buffer_t *range_b;
292 vnet_buffer_opaque_t *range_vnb;
293 while (~0 != range_bi)
295 range_b = vlib_get_buffer (vm, range_bi);
296 range_vnb = vnet_buffer (range_b);
300 vec_add1 (*vec_drop_bi, bi);
301 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
302 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
305 b->flags &= ~VLIB_BUFFER_NEXT_PRESENT;
312 range_bi = range_vnb->ip.reass.next_range_bi;
317 ip6_reass_on_timeout (vlib_main_t * vm, vlib_node_runtime_t * node,
318 ip6_reass_main_t * rm, ip6_reass_t * reass,
319 u32 * icmp_bi, u32 ** vec_timeout)
321 if (~0 == reass->first_bi)
325 vlib_buffer_t *b = vlib_get_buffer (vm, reass->first_bi);
326 if (0 == vnet_buffer (b)->ip.reass.fragment_first)
328 *icmp_bi = reass->first_bi;
329 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_IS_TRACED))
331 ip6_reass_add_trace (vm, node, rm, reass, reass->first_bi,
332 ICMP_ERROR_RT_EXCEEDED, 0);
334 // fragment with offset zero received - send icmp message back
335 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
337 // separate first buffer from chain and steer it towards icmp node
338 b->flags &= ~VLIB_BUFFER_NEXT_PRESENT;
339 reass->first_bi = b->next_buffer;
343 reass->first_bi = vnet_buffer (b)->ip.reass.next_range_bi;
345 icmp6_error_set_vnet_buffer (b, ICMP6_time_exceeded,
346 ICMP6_time_exceeded_fragment_reassembly_time_exceeded,
349 ip6_reass_drop_all (vm, rm, reass, vec_timeout);
352 always_inline ip6_reass_t *
353 ip6_reass_find_or_create (vlib_main_t * vm, vlib_node_runtime_t * node,
354 ip6_reass_main_t * rm, ip6_reass_per_thread_t * rt,
355 ip6_reass_key_t * k, u32 * icmp_bi,
358 ip6_reass_t *reass = NULL;
359 f64 now = vlib_time_now (rm->vlib_main);
360 clib_bihash_kv_48_8_t kv, value;
361 kv.key[0] = k->as_u64[0];
362 kv.key[1] = k->as_u64[1];
363 kv.key[2] = k->as_u64[2];
364 kv.key[3] = k->as_u64[3];
365 kv.key[4] = k->as_u64[4];
366 kv.key[5] = k->as_u64[5];
368 if (!clib_bihash_search_48_8 (&rm->hash, &kv, &value))
370 reass = pool_elt_at_index (rt->pool, value.value);
371 if (now > reass->last_heard + rm->timeout)
373 ip6_reass_on_timeout (vm, node, rm, reass, icmp_bi, vec_timeout);
374 ip6_reass_free (rm, rt, reass);
381 reass->last_heard = now;
385 if (rt->reass_n >= rm->max_reass_n)
392 pool_get (rt->pool, reass);
393 clib_memset (reass, 0, sizeof (*reass));
395 ((u64) os_get_thread_index () * 1000000000) + rt->id_counter;
397 reass->first_bi = ~0;
398 reass->last_packet_octet = ~0;
403 reass->key.as_u64[0] = kv.key[0] = k->as_u64[0];
404 reass->key.as_u64[1] = kv.key[1] = k->as_u64[1];
405 reass->key.as_u64[2] = kv.key[2] = k->as_u64[2];
406 reass->key.as_u64[3] = kv.key[3] = k->as_u64[3];
407 reass->key.as_u64[4] = kv.key[4] = k->as_u64[4];
408 reass->key.as_u64[5] = kv.key[5] = k->as_u64[5];
409 kv.value = reass - rt->pool;
410 reass->last_heard = now;
412 if (clib_bihash_add_del_48_8 (&rm->hash, &kv, 1))
414 ip6_reass_free (rm, rt, reass);
421 always_inline ip6_reass_rc_t
422 ip6_reass_finalize (vlib_main_t * vm, vlib_node_runtime_t * node,
423 ip6_reass_main_t * rm, ip6_reass_per_thread_t * rt,
424 ip6_reass_t * reass, u32 * bi0, u32 * next0,
425 u32 * error0, u32 ** vec_drop_compress, bool is_feature)
427 *bi0 = reass->first_bi;
428 *error0 = IP6_ERROR_NONE;
429 ip6_frag_hdr_t *frag_hdr;
430 vlib_buffer_t *last_b = NULL;
431 u32 sub_chain_bi = reass->first_bi;
432 u32 total_length = 0;
437 u32 tmp_bi = sub_chain_bi;
438 vlib_buffer_t *tmp = vlib_get_buffer (vm, tmp_bi);
439 vnet_buffer_opaque_t *vnb = vnet_buffer (tmp);
440 if (!(vnb->ip.reass.range_first >= vnb->ip.reass.fragment_first) &&
441 !(vnb->ip.reass.range_last > vnb->ip.reass.fragment_first))
443 return IP6_REASS_RC_INTERNAL_ERROR;
446 u32 data_len = ip6_reass_buffer_get_data_len (tmp);
447 u32 trim_front = vnet_buffer (tmp)->ip.reass.ip6_frag_hdr_offset +
448 sizeof (*frag_hdr) + ip6_reass_buffer_get_data_offset (tmp);
450 vlib_buffer_length_in_chain (vm, tmp) - trim_front - data_len;
451 if (tmp_bi == reass->first_bi)
453 /* first buffer - keep ip6 header */
454 if (0 != ip6_reass_buffer_get_data_offset (tmp))
456 return IP6_REASS_RC_INTERNAL_ERROR;
459 trim_end = vlib_buffer_length_in_chain (vm, tmp) - data_len -
460 (vnet_buffer (tmp)->ip.reass.ip6_frag_hdr_offset +
462 if (!(vlib_buffer_length_in_chain (vm, tmp) - trim_end > 0))
464 return IP6_REASS_RC_INTERNAL_ERROR;
468 vlib_buffer_length_in_chain (vm, tmp) - trim_front - trim_end;
474 if (trim_front > tmp->current_length)
476 /* drop whole buffer */
477 vec_add1 (*vec_drop_compress, tmp_bi);
479 trim_front -= tmp->current_length;
480 if (!(tmp->flags & VLIB_BUFFER_NEXT_PRESENT))
482 return IP6_REASS_RC_INTERNAL_ERROR;
484 tmp->flags &= ~VLIB_BUFFER_NEXT_PRESENT;
485 tmp_bi = tmp->next_buffer;
486 tmp = vlib_get_buffer (vm, tmp_bi);
491 vlib_buffer_advance (tmp, trim_front);
499 last_b->flags |= VLIB_BUFFER_NEXT_PRESENT;
500 last_b->next_buffer = tmp_bi;
503 if (keep_data <= tmp->current_length)
505 tmp->current_length = keep_data;
510 keep_data -= tmp->current_length;
511 if (!(tmp->flags & VLIB_BUFFER_NEXT_PRESENT))
513 return IP6_REASS_RC_INTERNAL_ERROR;
516 total_length += tmp->current_length;
520 vec_add1 (*vec_drop_compress, tmp_bi);
521 if (reass->first_bi == tmp_bi)
523 return IP6_REASS_RC_INTERNAL_ERROR;
527 if (tmp->flags & VLIB_BUFFER_NEXT_PRESENT)
529 tmp_bi = tmp->next_buffer;
530 tmp = vlib_get_buffer (vm, tmp->next_buffer);
538 vnet_buffer (vlib_get_buffer (vm, sub_chain_bi))->ip.
541 while (~0 != sub_chain_bi);
545 return IP6_REASS_RC_INTERNAL_ERROR;
547 last_b->flags &= ~VLIB_BUFFER_NEXT_PRESENT;
548 vlib_buffer_t *first_b = vlib_get_buffer (vm, reass->first_bi);
549 if (total_length < first_b->current_length)
551 return IP6_REASS_RC_INTERNAL_ERROR;
553 total_length -= first_b->current_length;
554 first_b->flags |= VLIB_BUFFER_TOTAL_LENGTH_VALID;
555 first_b->total_length_not_including_first_buffer = total_length;
556 // drop fragment header
557 vnet_buffer_opaque_t *first_b_vnb = vnet_buffer (first_b);
558 ip6_header_t *ip = vlib_buffer_get_current (first_b);
559 u16 ip6_frag_hdr_offset = first_b_vnb->ip.reass.ip6_frag_hdr_offset;
560 ip6_ext_header_t *prev_hdr;
561 ip6_ext_header_find_t (ip, prev_hdr, frag_hdr,
562 IP_PROTOCOL_IPV6_FRAGMENTATION);
565 prev_hdr->next_hdr = frag_hdr->next_hdr;
569 ip->protocol = frag_hdr->next_hdr;
571 if (!((u8 *) frag_hdr - (u8 *) ip == ip6_frag_hdr_offset))
573 return IP6_REASS_RC_INTERNAL_ERROR;
575 memmove (frag_hdr, (u8 *) frag_hdr + sizeof (*frag_hdr),
576 first_b->current_length - ip6_frag_hdr_offset -
577 sizeof (ip6_frag_hdr_t));
578 first_b->current_length -= sizeof (*frag_hdr);
580 clib_host_to_net_u16 (total_length + first_b->current_length -
582 vlib_buffer_chain_compress (vm, first_b, vec_drop_compress);
583 if (PREDICT_FALSE (first_b->flags & VLIB_BUFFER_IS_TRACED))
585 ip6_reass_add_trace (vm, node, rm, reass, reass->first_bi, FINALIZE, 0);
587 // following code does a hexdump of packet fragments to stdout ...
590 u32 bi = reass->first_bi;
594 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
595 s = format (s, "%u: %U\n", bi, format_hexdump,
596 vlib_buffer_get_current (b), b->current_length);
597 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
606 printf ("%.*s\n", vec_len (s), s);
615 *next0 = IP6_REASSEMBLY_NEXT_INPUT;
619 *next0 = reass->next_index;
621 vnet_buffer (first_b)->ip.reass.estimated_mtu = reass->min_fragment_length;
622 ip6_reass_free (rm, rt, reass);
624 return IP6_REASS_RC_OK;
628 ip6_reass_get_buffer_chain_length (vlib_main_t * vm, vlib_buffer_t * b)
634 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_NEXT_PRESENT))
636 b = vlib_get_buffer (vm, b->next_buffer);
647 ip6_reass_insert_range_in_chain (vlib_main_t * vm, ip6_reass_main_t * rm,
648 ip6_reass_per_thread_t * rt,
649 ip6_reass_t * reass, u32 prev_range_bi,
653 vlib_buffer_t *new_next_b = vlib_get_buffer (vm, new_next_bi);
654 vnet_buffer_opaque_t *new_next_vnb = vnet_buffer (new_next_b);
655 if (~0 != prev_range_bi)
657 vlib_buffer_t *prev_b = vlib_get_buffer (vm, prev_range_bi);
658 vnet_buffer_opaque_t *prev_vnb = vnet_buffer (prev_b);
659 new_next_vnb->ip.reass.next_range_bi = prev_vnb->ip.reass.next_range_bi;
660 prev_vnb->ip.reass.next_range_bi = new_next_bi;
664 if (~0 != reass->first_bi)
666 new_next_vnb->ip.reass.next_range_bi = reass->first_bi;
668 reass->first_bi = new_next_bi;
670 reass->data_len += ip6_reass_buffer_get_data_len (new_next_b);
671 rt->buffers_n += ip6_reass_get_buffer_chain_length (vm, new_next_b);
674 always_inline ip6_reass_rc_t
675 ip6_reass_update (vlib_main_t * vm, vlib_node_runtime_t * node,
676 ip6_reass_main_t * rm, ip6_reass_per_thread_t * rt,
677 ip6_reass_t * reass, u32 * bi0, u32 * next0,
678 u32 * error0, ip6_frag_hdr_t * frag_hdr,
679 u32 ** vec_drop_overlap, u32 ** vec_drop_compress,
683 vlib_buffer_t *fb = vlib_get_buffer (vm, *bi0);
684 vnet_buffer_opaque_t *fvnb = vnet_buffer (fb);
685 reass->next_index = fvnb->ip.reass.next_index; // store next_index before it's overwritten
686 fvnb->ip.reass.ip6_frag_hdr_offset =
687 (u8 *) frag_hdr - (u8 *) vlib_buffer_get_current (fb);
688 ip6_header_t *fip = vlib_buffer_get_current (fb);
689 if (fb->current_length < sizeof (*fip) ||
690 fvnb->ip.reass.ip6_frag_hdr_offset == 0 ||
691 fvnb->ip.reass.ip6_frag_hdr_offset >= fb->current_length)
693 return IP6_REASS_RC_INTERNAL_ERROR;
696 u32 fragment_first = fvnb->ip.reass.fragment_first =
697 ip6_frag_hdr_offset_bytes (frag_hdr);
698 u32 fragment_length =
699 vlib_buffer_length_in_chain (vm, fb) -
700 (fvnb->ip.reass.ip6_frag_hdr_offset + sizeof (*frag_hdr));
701 u32 fragment_last = fvnb->ip.reass.fragment_last =
702 fragment_first + fragment_length - 1;
703 int more_fragments = ip6_frag_hdr_more (frag_hdr);
704 u32 candidate_range_bi = reass->first_bi;
705 u32 prev_range_bi = ~0;
706 fvnb->ip.reass.range_first = fragment_first;
707 fvnb->ip.reass.range_last = fragment_last;
708 fvnb->ip.reass.next_range_bi = ~0;
711 reass->last_packet_octet = fragment_last;
713 if (~0 == reass->first_bi)
715 // starting a new reassembly
716 ip6_reass_insert_range_in_chain (vm, rm, rt, reass, prev_range_bi,
718 if (PREDICT_FALSE (fb->flags & VLIB_BUFFER_IS_TRACED))
720 ip6_reass_add_trace (vm, node, rm, reass, *bi0, RANGE_NEW, 0);
722 reass->min_fragment_length = clib_net_to_host_u16 (fip->payload_length);
724 return IP6_REASS_RC_OK;
726 reass->min_fragment_length =
727 clib_min (clib_net_to_host_u16 (fip->payload_length),
728 fvnb->ip.reass.estimated_mtu);
729 while (~0 != candidate_range_bi)
731 vlib_buffer_t *candidate_b = vlib_get_buffer (vm, candidate_range_bi);
732 vnet_buffer_opaque_t *candidate_vnb = vnet_buffer (candidate_b);
733 if (fragment_first > candidate_vnb->ip.reass.range_last)
735 // this fragments starts after candidate range
736 prev_range_bi = candidate_range_bi;
737 candidate_range_bi = candidate_vnb->ip.reass.next_range_bi;
738 if (candidate_vnb->ip.reass.range_last < fragment_last &&
739 ~0 == candidate_range_bi)
741 // special case - this fragment falls beyond all known ranges
742 ip6_reass_insert_range_in_chain (vm, rm, rt, reass,
743 prev_range_bi, *bi0);
749 if (fragment_last < candidate_vnb->ip.reass.range_first)
751 // this fragment ends before candidate range without any overlap
752 ip6_reass_insert_range_in_chain (vm, rm, rt, reass, prev_range_bi,
756 else if (fragment_first == candidate_vnb->ip.reass.range_first &&
757 fragment_last == candidate_vnb->ip.reass.range_last)
759 // duplicate fragment - ignore
763 // overlapping fragment - not allowed by RFC 8200
764 ip6_reass_drop_all (vm, rm, reass, vec_drop_overlap);
765 ip6_reass_free (rm, rt, reass);
766 if (PREDICT_FALSE (fb->flags & VLIB_BUFFER_IS_TRACED))
768 ip6_reass_add_trace (vm, node, rm, reass, *bi0, RANGE_OVERLAP,
771 *next0 = IP6_REASSEMBLY_NEXT_DROP;
772 *error0 = IP6_ERROR_REASS_OVERLAPPING_FRAGMENT;
778 if (PREDICT_FALSE (fb->flags & VLIB_BUFFER_IS_TRACED))
780 ip6_reass_add_trace (vm, node, rm, reass, *bi0, RANGE_NEW, 0);
783 if (~0 != reass->last_packet_octet &&
784 reass->data_len == reass->last_packet_octet + 1)
786 return ip6_reass_finalize (vm, node, rm, rt, reass, bi0, next0, error0,
787 vec_drop_compress, is_feature);
797 *next0 = IP6_REASSEMBLY_NEXT_DROP;
799 *error0 = IP6_ERROR_REASS_DUPLICATE_FRAGMENT;
802 return IP6_REASS_RC_OK;
806 ip6_reass_verify_upper_layer_present (vlib_node_runtime_t * node,
808 ip6_frag_hdr_t * frag_hdr)
810 ip6_ext_header_t *tmp = (ip6_ext_header_t *) frag_hdr;
811 while (ip6_ext_hdr (tmp->next_hdr))
813 tmp = ip6_ext_next_header (tmp);
815 if (IP_PROTOCOL_IP6_NONXT == tmp->next_hdr)
817 icmp6_error_set_vnet_buffer (b, ICMP6_parameter_problem,
818 ICMP6_parameter_problem_first_fragment_has_incomplete_header_chain,
820 b->error = node->errors[IP6_ERROR_REASS_MISSING_UPPER];
828 ip6_reass_verify_fragment_multiple_8 (vlib_main_t * vm,
829 vlib_node_runtime_t * node,
831 ip6_frag_hdr_t * frag_hdr)
833 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
834 ip6_header_t *ip = vlib_buffer_get_current (b);
835 int more_fragments = ip6_frag_hdr_more (frag_hdr);
836 u32 fragment_length =
837 vlib_buffer_length_in_chain (vm, b) -
838 (vnb->ip.reass.ip6_frag_hdr_offset + sizeof (*frag_hdr));
839 if (more_fragments && 0 != fragment_length % 8)
841 icmp6_error_set_vnet_buffer (b, ICMP6_parameter_problem,
842 ICMP6_parameter_problem_erroneous_header_field,
843 (u8 *) & ip->payload_length - (u8 *) ip);
850 ip6_reass_verify_packet_size_lt_64k (vlib_main_t * vm,
851 vlib_node_runtime_t * node,
853 ip6_frag_hdr_t * frag_hdr)
855 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
856 u32 fragment_first = ip6_frag_hdr_offset_bytes (frag_hdr);
857 u32 fragment_length =
858 vlib_buffer_length_in_chain (vm, b) -
859 (vnb->ip.reass.ip6_frag_hdr_offset + sizeof (*frag_hdr));
860 if (fragment_first + fragment_length > 65535)
862 ip6_header_t *ip0 = vlib_buffer_get_current (b);
863 icmp6_error_set_vnet_buffer (b, ICMP6_parameter_problem,
864 ICMP6_parameter_problem_erroneous_header_field,
865 (u8 *) & frag_hdr->fragment_offset_and_more
873 ip6_reassembly_inline (vlib_main_t * vm,
874 vlib_node_runtime_t * node,
875 vlib_frame_t * frame, bool is_feature)
877 u32 *from = vlib_frame_vector_args (frame);
878 u32 n_left_from, n_left_to_next, *to_next, next_index;
879 ip6_reass_main_t *rm = &ip6_reass_main;
880 ip6_reass_per_thread_t *rt = &rm->per_thread_data[os_get_thread_index ()];
881 clib_spinlock_lock (&rt->lock);
883 n_left_from = frame->n_vectors;
884 next_index = node->cached_next_index;
885 static u32 *vec_timeout = NULL; // indexes of buffers which timed out
886 static u32 *vec_drop_overlap = NULL; // indexes of buffers dropped due to overlap
887 static u32 *vec_drop_internal_error = NULL; // indexes of buffers dropped due to internal errors
888 static u32 *vec_drop_compress = NULL; // indexes of buffers dropped due to buffer compression
889 while (n_left_from > 0 || vec_len (vec_timeout) > 0
890 || vec_len (vec_drop_overlap) > 0 || vec_len (vec_drop_compress) > 0
891 || vec_len (vec_drop_internal_error) > 0)
893 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
895 while (vec_len (vec_timeout) > 0 && n_left_to_next > 0)
897 u32 bi = vec_pop (vec_timeout);
898 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
899 b->error = node->errors[IP6_ERROR_REASS_TIMEOUT];
903 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
905 IP6_REASSEMBLY_NEXT_DROP);
909 while (vec_len (vec_drop_overlap) > 0 && n_left_to_next > 0)
911 u32 bi = vec_pop (vec_drop_overlap);
912 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
913 b->error = node->errors[IP6_ERROR_REASS_OVERLAPPING_FRAGMENT];
917 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
919 IP6_REASSEMBLY_NEXT_DROP);
923 while (vec_len (vec_drop_compress) > 0 && n_left_to_next > 0)
925 u32 bi = vec_pop (vec_drop_compress);
926 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
927 b->error = node->errors[IP6_ERROR_NONE];
931 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
933 IP6_REASSEMBLY_NEXT_DROP);
936 while (vec_len (vec_drop_internal_error) > 0 && n_left_to_next > 0)
938 u32 bi = vec_pop (vec_drop_internal_error);
939 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
940 b->error = node->errors[IP6_ERROR_REASS_INTERNAL_ERROR];
944 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
946 IP6_REASSEMBLY_NEXT_DROP);
950 while (n_left_from > 0 && n_left_to_next > 0)
955 u32 error0 = IP6_ERROR_NONE;
959 b0 = vlib_get_buffer (vm, bi0);
961 ip6_header_t *ip0 = vlib_buffer_get_current (b0);
962 ip6_frag_hdr_t *frag_hdr = NULL;
963 ip6_ext_header_t *prev_hdr;
964 if (ip6_ext_hdr (ip0->protocol))
966 ip6_ext_header_find_t (ip0, prev_hdr, frag_hdr,
967 IP_PROTOCOL_IPV6_FRAGMENTATION);
971 // this is a regular packet - no fragmentation
972 next0 = IP6_REASSEMBLY_NEXT_INPUT;
975 if (0 == ip6_frag_hdr_offset (frag_hdr))
977 // first fragment - verify upper-layer is present
978 if (!ip6_reass_verify_upper_layer_present (node, b0, frag_hdr))
980 next0 = IP6_REASSEMBLY_NEXT_ICMP_ERROR;
984 if (!ip6_reass_verify_fragment_multiple_8 (vm, node, b0, frag_hdr)
985 || !ip6_reass_verify_packet_size_lt_64k (vm, node, b0,
988 next0 = IP6_REASSEMBLY_NEXT_ICMP_ERROR;
991 vnet_buffer (b0)->ip.reass.ip6_frag_hdr_offset =
992 (u8 *) frag_hdr - (u8 *) ip0;
995 k.as_u64[0] = ip0->src_address.as_u64[0];
996 k.as_u64[1] = ip0->src_address.as_u64[1];
997 k.as_u64[2] = ip0->dst_address.as_u64[0];
998 k.as_u64[3] = ip0->dst_address.as_u64[1];
1000 (u64) vnet_buffer (b0)->
1001 sw_if_index[VLIB_RX] << 32 | frag_hdr->identification;
1002 k.as_u64[5] = ip0->protocol;
1003 ip6_reass_t *reass =
1004 ip6_reass_find_or_create (vm, node, rm, rt, &k, &icmp_bi,
1009 switch (ip6_reass_update (vm, node, rm, rt, reass, &bi0, &next0,
1010 &error0, frag_hdr, &vec_drop_overlap,
1011 &vec_drop_compress, is_feature))
1013 case IP6_REASS_RC_OK:
1014 /* nothing to do here */
1016 case IP6_REASS_RC_INTERNAL_ERROR:
1017 /* drop everything and start with a clean slate */
1018 ip6_reass_drop_all (vm, rm, reass,
1019 &vec_drop_internal_error);
1020 ip6_reass_free (rm, rt, reass);
1027 next0 = IP6_REASSEMBLY_NEXT_DROP;
1028 error0 = IP6_ERROR_REASS_LIMIT_REACHED;
1031 b0->error = node->errors[error0];
1038 n_left_to_next -= 1;
1039 if (is_feature && IP6_ERROR_NONE == error0)
1041 b0 = vlib_get_buffer (vm, bi0);
1042 vnet_feature_next (&next0, b0);
1044 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
1045 n_left_to_next, bi0, next0);
1050 next0 = IP6_REASSEMBLY_NEXT_ICMP_ERROR;
1051 to_next[0] = icmp_bi;
1053 n_left_to_next -= 1;
1054 vlib_validate_buffer_enqueue_x1 (vm, node, next_index, to_next,
1055 n_left_to_next, icmp_bi,
1063 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
1066 clib_spinlock_unlock (&rt->lock);
1067 return frame->n_vectors;
1070 static char *ip6_reassembly_error_strings[] = {
1071 #define _(sym, string) string,
1077 ip6_reassembly (vlib_main_t * vm, vlib_node_runtime_t * node,
1078 vlib_frame_t * frame)
1080 return ip6_reassembly_inline (vm, node, frame, false /* is_feature */ );
1084 VLIB_REGISTER_NODE (ip6_reass_node, static) = {
1085 .function = ip6_reassembly,
1086 .name = "ip6-reassembly",
1087 .vector_size = sizeof (u32),
1088 .format_trace = format_ip6_reass_trace,
1089 .n_errors = ARRAY_LEN (ip6_reassembly_error_strings),
1090 .error_strings = ip6_reassembly_error_strings,
1091 .n_next_nodes = IP6_REASSEMBLY_N_NEXT,
1094 [IP6_REASSEMBLY_NEXT_INPUT] = "ip6-input",
1095 [IP6_REASSEMBLY_NEXT_DROP] = "ip6-drop",
1096 [IP6_REASSEMBLY_NEXT_ICMP_ERROR] = "ip6-icmp-error",
1101 VLIB_NODE_FUNCTION_MULTIARCH (ip6_reass_node, ip6_reassembly);
1104 ip6_reassembly_feature (vlib_main_t * vm,
1105 vlib_node_runtime_t * node, vlib_frame_t * frame)
1107 return ip6_reassembly_inline (vm, node, frame, true /* is_feature */ );
1111 VLIB_REGISTER_NODE (ip6_reass_node_feature, static) = {
1112 .function = ip6_reassembly_feature,
1113 .name = "ip6-reassembly-feature",
1114 .vector_size = sizeof (u32),
1115 .format_trace = format_ip6_reass_trace,
1116 .n_errors = ARRAY_LEN (ip6_reassembly_error_strings),
1117 .error_strings = ip6_reassembly_error_strings,
1118 .n_next_nodes = IP6_REASSEMBLY_N_NEXT,
1121 [IP6_REASSEMBLY_NEXT_INPUT] = "ip6-input",
1122 [IP6_REASSEMBLY_NEXT_DROP] = "ip6-drop",
1123 [IP6_REASSEMBLY_NEXT_ICMP_ERROR] = "ip6-icmp-error",
1128 VLIB_NODE_FUNCTION_MULTIARCH (ip6_reass_node_feature, ip6_reassembly_feature);
1131 VNET_FEATURE_INIT (ip6_reassembly_feature, static) = {
1132 .arc_name = "ip6-unicast",
1133 .node_name = "ip6-reassembly-feature",
1134 .runs_before = VNET_FEATURES ("ip6-lookup"),
1140 ip6_reass_get_nbuckets ()
1142 ip6_reass_main_t *rm = &ip6_reass_main;
1146 nbuckets = (u32) (rm->max_reass_n / IP6_REASS_HT_LOAD_FACTOR);
1148 for (i = 0; i < 31; i++)
1149 if ((1 << i) >= nbuckets)
1158 IP6_EVENT_CONFIG_CHANGED = 1,
1159 } ip6_reass_event_t;
1164 clib_bihash_48_8_t *new_hash;
1165 } ip6_rehash_cb_ctx;
1168 ip6_rehash_cb (clib_bihash_kv_48_8_t * kv, void *_ctx)
1170 ip6_rehash_cb_ctx *ctx = _ctx;
1171 if (clib_bihash_add_del_48_8 (ctx->new_hash, kv, 1))
1178 ip6_reass_set_params (u32 timeout_ms, u32 max_reassemblies,
1179 u32 expire_walk_interval_ms)
1181 ip6_reass_main.timeout_ms = timeout_ms;
1182 ip6_reass_main.timeout = (f64) timeout_ms / (f64) MSEC_PER_SEC;
1183 ip6_reass_main.max_reass_n = max_reassemblies;
1184 ip6_reass_main.expire_walk_interval_ms = expire_walk_interval_ms;
1188 ip6_reass_set (u32 timeout_ms, u32 max_reassemblies,
1189 u32 expire_walk_interval_ms)
1191 u32 old_nbuckets = ip6_reass_get_nbuckets ();
1192 ip6_reass_set_params (timeout_ms, max_reassemblies,
1193 expire_walk_interval_ms);
1194 vlib_process_signal_event (ip6_reass_main.vlib_main,
1195 ip6_reass_main.ip6_reass_expire_node_idx,
1196 IP6_EVENT_CONFIG_CHANGED, 0);
1197 u32 new_nbuckets = ip6_reass_get_nbuckets ();
1198 if (ip6_reass_main.max_reass_n > 0 && new_nbuckets > old_nbuckets)
1200 clib_bihash_48_8_t new_hash;
1201 clib_memset (&new_hash, 0, sizeof (new_hash));
1202 ip6_rehash_cb_ctx ctx;
1204 ctx.new_hash = &new_hash;
1205 clib_bihash_init_48_8 (&new_hash, "ip6-reass", new_nbuckets,
1206 new_nbuckets * 1024);
1207 clib_bihash_foreach_key_value_pair_48_8 (&ip6_reass_main.hash,
1208 ip6_rehash_cb, &ctx);
1211 clib_bihash_free_48_8 (&new_hash);
1216 clib_bihash_free_48_8 (&ip6_reass_main.hash);
1217 clib_memcpy_fast (&ip6_reass_main.hash, &new_hash,
1218 sizeof (ip6_reass_main.hash));
1225 ip6_reass_get (u32 * timeout_ms, u32 * max_reassemblies,
1226 u32 * expire_walk_interval_ms)
1228 *timeout_ms = ip6_reass_main.timeout_ms;
1229 *max_reassemblies = ip6_reass_main.max_reass_n;
1230 *expire_walk_interval_ms = ip6_reass_main.expire_walk_interval_ms;
1234 static clib_error_t *
1235 ip6_reass_init_function (vlib_main_t * vm)
1237 ip6_reass_main_t *rm = &ip6_reass_main;
1238 clib_error_t *error = 0;
1243 rm->vnet_main = vnet_get_main ();
1245 vec_validate (rm->per_thread_data, vlib_num_workers ());
1246 ip6_reass_per_thread_t *rt;
1247 vec_foreach (rt, rm->per_thread_data)
1249 clib_spinlock_init (&rt->lock);
1250 pool_alloc (rt->pool, rm->max_reass_n);
1253 node = vlib_get_node_by_name (vm, (u8 *) "ip6-reassembly-expire-walk");
1255 rm->ip6_reass_expire_node_idx = node->index;
1257 ip6_reass_set_params (IP6_REASS_TIMEOUT_DEFAULT_MS,
1258 IP6_REASS_MAX_REASSEMBLIES_DEFAULT,
1259 IP6_REASS_EXPIRE_WALK_INTERVAL_DEFAULT_MS);
1261 nbuckets = ip6_reass_get_nbuckets ();
1262 clib_bihash_init_48_8 (&rm->hash, "ip6-reass", nbuckets, nbuckets * 1024);
1264 node = vlib_get_node_by_name (vm, (u8 *) "ip6-drop");
1266 rm->ip6_drop_idx = node->index;
1267 node = vlib_get_node_by_name (vm, (u8 *) "ip6-icmp-error");
1269 rm->ip6_icmp_error_idx = node->index;
1271 if ((error = vlib_call_init_function (vm, ip_main_init)))
1273 ip6_register_protocol (IP_PROTOCOL_IPV6_FRAGMENTATION,
1274 ip6_reass_node.index);
1279 VLIB_INIT_FUNCTION (ip6_reass_init_function);
1282 ip6_reass_walk_expired (vlib_main_t * vm,
1283 vlib_node_runtime_t * node, vlib_frame_t * f)
1285 ip6_reass_main_t *rm = &ip6_reass_main;
1286 uword event_type, *event_data = 0;
1290 vlib_process_wait_for_event_or_clock (vm,
1291 (f64) rm->expire_walk_interval_ms
1292 / (f64) MSEC_PER_SEC);
1293 event_type = vlib_process_get_events (vm, &event_data);
1297 case ~0: /* no events => timeout */
1298 /* nothing to do here */
1300 case IP6_EVENT_CONFIG_CHANGED:
1303 clib_warning ("BUG: event type 0x%wx", event_type);
1306 f64 now = vlib_time_now (vm);
1309 u32 *vec_timeout = NULL;
1310 int *pool_indexes_to_free = NULL;
1312 uword thread_index = 0;
1314 const uword nthreads = vlib_num_workers () + 1;
1315 u32 *vec_icmp_bi = NULL;
1316 for (thread_index = 0; thread_index < nthreads; ++thread_index)
1318 ip6_reass_per_thread_t *rt = &rm->per_thread_data[thread_index];
1319 clib_spinlock_lock (&rt->lock);
1321 vec_reset_length (pool_indexes_to_free);
1323 pool_foreach_index (index, rt->pool, ({
1324 reass = pool_elt_at_index (rt->pool, index);
1325 if (now > reass->last_heard + rm->timeout)
1327 vec_add1 (pool_indexes_to_free, index);
1333 vec_foreach (i, pool_indexes_to_free)
1335 ip6_reass_t *reass = pool_elt_at_index (rt->pool, i[0]);
1337 u32 before = vec_len (vec_timeout);
1338 vlib_buffer_t *b = vlib_get_buffer (vm, reass->first_bi);
1339 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_IS_TRACED))
1341 if (pool_is_free_index (vm->trace_main.trace_buffer_pool,
1344 /* the trace is gone, don't trace this buffer anymore */
1345 b->flags &= ~VLIB_BUFFER_IS_TRACED;
1348 ip6_reass_on_timeout (vm, node, rm, reass, &icmp_bi, &vec_timeout);
1349 u32 after = vec_len (vec_timeout);
1350 rt->buffers_n -= (after - before);
1353 vec_add1 (vec_icmp_bi, icmp_bi);
1356 ip6_reass_free (rm, rt, reass);
1360 clib_spinlock_unlock (&rt->lock);
1363 while (vec_len (vec_timeout) > 0)
1365 vlib_frame_t *f = vlib_get_frame_to_node (vm, rm->ip6_drop_idx);
1366 u32 *to_next = vlib_frame_vector_args (f);
1367 u32 n_left_to_next = VLIB_FRAME_SIZE - f->n_vectors;
1368 int trace_frame = 0;
1369 while (vec_len (vec_timeout) > 0 && n_left_to_next > 0)
1371 u32 bi = vec_pop (vec_timeout);
1372 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
1373 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_IS_TRACED))
1375 if (pool_is_free_index (vm->trace_main.trace_buffer_pool,
1378 /* the trace is gone, don't trace this buffer anymore */
1379 b->flags &= ~VLIB_BUFFER_IS_TRACED;
1386 b->error = node->errors[IP6_ERROR_REASS_TIMEOUT];
1390 n_left_to_next -= 1;
1392 f->frame_flags |= (trace_frame * VLIB_FRAME_TRACE);
1393 vlib_put_frame_to_node (vm, rm->ip6_drop_idx, f);
1396 while (vec_len (vec_icmp_bi) > 0)
1399 vlib_get_frame_to_node (vm, rm->ip6_icmp_error_idx);
1400 u32 *to_next = vlib_frame_vector_args (f);
1401 u32 n_left_to_next = VLIB_FRAME_SIZE - f->n_vectors;
1402 int trace_frame = 0;
1403 while (vec_len (vec_icmp_bi) > 0 && n_left_to_next > 0)
1405 u32 bi = vec_pop (vec_icmp_bi);
1406 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
1407 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_IS_TRACED))
1409 if (pool_is_free_index (vm->trace_main.trace_buffer_pool,
1412 /* the trace is gone, don't trace this buffer anymore */
1413 b->flags &= ~VLIB_BUFFER_IS_TRACED;
1420 b->error = node->errors[IP6_ERROR_REASS_TIMEOUT];
1424 n_left_to_next -= 1;
1426 f->frame_flags |= (trace_frame * VLIB_FRAME_TRACE);
1427 vlib_put_frame_to_node (vm, rm->ip6_icmp_error_idx, f);
1430 vec_free (pool_indexes_to_free);
1431 vec_free (vec_timeout);
1432 vec_free (vec_icmp_bi);
1435 _vec_len (event_data) = 0;
1442 static vlib_node_registration_t ip6_reass_expire_node;
1445 VLIB_REGISTER_NODE (ip6_reass_expire_node, static) = {
1446 .function = ip6_reass_walk_expired,
1447 .format_trace = format_ip6_reass_trace,
1448 .type = VLIB_NODE_TYPE_PROCESS,
1449 .name = "ip6-reassembly-expire-walk",
1451 .n_errors = ARRAY_LEN (ip6_reassembly_error_strings),
1452 .error_strings = ip6_reassembly_error_strings,
1458 format_ip6_reass_key (u8 * s, va_list * args)
1460 ip6_reass_key_t *key = va_arg (*args, ip6_reass_key_t *);
1461 s = format (s, "xx_id: %u, src: %U, dst: %U, frag_id: %u, proto: %u",
1462 key->xx_id, format_ip6_address, &key->src, format_ip6_address,
1463 &key->dst, clib_net_to_host_u16 (key->frag_id), key->proto);
1468 format_ip6_reass (u8 * s, va_list * args)
1470 vlib_main_t *vm = va_arg (*args, vlib_main_t *);
1471 ip6_reass_t *reass = va_arg (*args, ip6_reass_t *);
1473 s = format (s, "ID: %lu, key: %U\n first_bi: %u, data_len: %u, "
1474 "last_packet_octet: %u, trace_op_counter: %u\n",
1475 reass->id, format_ip6_reass_key, &reass->key, reass->first_bi,
1476 reass->data_len, reass->last_packet_octet,
1477 reass->trace_op_counter);
1478 u32 bi = reass->first_bi;
1482 vlib_buffer_t *b = vlib_get_buffer (vm, bi);
1483 vnet_buffer_opaque_t *vnb = vnet_buffer (b);
1484 s = format (s, " #%03u: range: [%u, %u], bi: %u, off: %d, len: %u, "
1485 "fragment[%u, %u]\n",
1486 counter, vnb->ip.reass.range_first,
1487 vnb->ip.reass.range_last, bi,
1488 ip6_reass_buffer_get_data_offset (b),
1489 ip6_reass_buffer_get_data_len (b),
1490 vnb->ip.reass.fragment_first, vnb->ip.reass.fragment_last);
1491 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
1493 bi = b->next_buffer;
1503 static clib_error_t *
1504 show_ip6_reass (vlib_main_t * vm, unformat_input_t * input,
1505 CLIB_UNUSED (vlib_cli_command_t * lmd))
1507 ip6_reass_main_t *rm = &ip6_reass_main;
1509 vlib_cli_output (vm, "---------------------");
1510 vlib_cli_output (vm, "IP6 reassembly status");
1511 vlib_cli_output (vm, "---------------------");
1512 bool details = false;
1513 if (unformat (input, "details"))
1518 u32 sum_reass_n = 0;
1519 u64 sum_buffers_n = 0;
1522 const uword nthreads = vlib_num_workers () + 1;
1523 for (thread_index = 0; thread_index < nthreads; ++thread_index)
1525 ip6_reass_per_thread_t *rt = &rm->per_thread_data[thread_index];
1526 clib_spinlock_lock (&rt->lock);
1530 pool_foreach (reass, rt->pool, {
1531 vlib_cli_output (vm, "%U", format_ip6_reass, vm, reass);
1535 sum_reass_n += rt->reass_n;
1536 sum_buffers_n += rt->buffers_n;
1537 clib_spinlock_unlock (&rt->lock);
1539 vlib_cli_output (vm, "---------------------");
1540 vlib_cli_output (vm, "Current IP6 reassemblies count: %lu\n",
1541 (long unsigned) sum_reass_n);
1542 vlib_cli_output (vm, "Maximum configured concurrent IP6 reassemblies per "
1543 "worker-thread: %lu\n", (long unsigned) rm->max_reass_n);
1544 vlib_cli_output (vm, "Buffers in use: %lu\n",
1545 (long unsigned) sum_buffers_n);
1550 VLIB_CLI_COMMAND (show_ip6_reassembly_cmd, static) = {
1551 .path = "show ip6-reassembly",
1552 .short_help = "show ip6-reassembly [details]",
1553 .function = show_ip6_reass,
1558 ip6_reass_enable_disable (u32 sw_if_index, u8 enable_disable)
1560 return vnet_feature_enable_disable ("ip6-unicast", "ip6-reassembly-feature",
1561 sw_if_index, enable_disable, 0, 0);
1565 * fd.io coding-style-patch-verification: ON
1568 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob