2 * Copyright (c) 2015 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 * ip/ip_lookup.c: ip4/6 adjacency and lookup table managment
18 * Copyright (c) 2008 Eliot Dresselhaus
20 * Permission is hereby granted, free of charge, to any person obtaining
21 * a copy of this software and associated documentation files (the
22 * "Software"), to deal in the Software without restriction, including
23 * without limitation the rights to use, copy, modify, merge, publish,
24 * distribute, sublicense, and/or sell copies of the Software, and to
25 * permit persons to whom the Software is furnished to do so, subject to
26 * the following conditions:
28 * The above copyright notice and this permission notice shall be
29 * included in all copies or substantial portions of the Software.
31 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
32 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
33 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
34 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
35 * LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
36 * OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
37 * WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
40 #include <vnet/ip/ip.h>
41 #include <vnet/adj/adj.h>
42 #include <vnet/fib/fib_table.h>
43 #include <vnet/fib/ip4_fib.h>
44 #include <vnet/fib/ip6_fib.h>
45 #include <vnet/mpls/mpls.h>
46 #include <vnet/mfib/mfib_table.h>
47 #include <vnet/dpo/drop_dpo.h>
48 #include <vnet/dpo/classify_dpo.h>
49 #include <vnet/dpo/punt_dpo.h>
50 #include <vnet/dpo/receive_dpo.h>
51 #include <vnet/dpo/ip_null_dpo.h>
52 #include <vnet/dpo/l3_proxy_dpo.h>
53 #include <vnet/ip/ip6_neighbor.h>
57 * @brief IPv4 and IPv6 adjacency and lookup table managment.
62 ip_interface_address_add_del (ip_lookup_main_t * lm,
66 u32 is_del, u32 * result_if_address_index)
68 vnet_main_t *vnm = vnet_get_main ();
69 ip_interface_address_t *a, *prev, *next;
70 uword *p = mhash_get (&lm->address_to_if_address_index, addr_fib);
72 vec_validate_init_empty (lm->if_address_pool_index_by_sw_if_index,
74 a = p ? pool_elt_at_index (lm->if_address_pool, p[0]) : 0;
76 /* Verify given length. */
77 if ((a && (address_length != a->address_length)) ||
78 (address_length == 0) ||
79 (lm->is_ip6 && address_length > 128) ||
80 (!lm->is_ip6 && address_length > 32))
82 vnm->api_errno = VNET_API_ERROR_ADDRESS_LENGTH_MISMATCH;
83 return clib_error_create
84 ("%U wrong length (expected %d) for interface %U",
85 lm->format_address_and_length, addr_fib,
86 address_length, a ? a->address_length : -1,
87 format_vnet_sw_if_index_name, vnm, sw_if_index);
94 vnet_sw_interface_t *si = vnet_get_sw_interface (vnm, sw_if_index);
95 vnm->api_errno = VNET_API_ERROR_ADDRESS_NOT_FOUND_FOR_INTERFACE;
96 return clib_error_create ("%U not found for interface %U",
97 lm->format_address_and_length,
98 addr_fib, address_length,
99 format_vnet_sw_interface_name, vnm, si);
102 if (a->prev_this_sw_interface != ~0)
105 pool_elt_at_index (lm->if_address_pool,
106 a->prev_this_sw_interface);
107 prev->next_this_sw_interface = a->next_this_sw_interface;
109 if (a->next_this_sw_interface != ~0)
112 pool_elt_at_index (lm->if_address_pool,
113 a->next_this_sw_interface);
114 next->prev_this_sw_interface = a->prev_this_sw_interface;
116 if (a->prev_this_sw_interface == ~0)
117 lm->if_address_pool_index_by_sw_if_index[sw_if_index] =
118 a->next_this_sw_interface;
121 if ((a->next_this_sw_interface == ~0)
122 && (a->prev_this_sw_interface == ~0))
123 lm->if_address_pool_index_by_sw_if_index[sw_if_index] = ~0;
125 mhash_unset (&lm->address_to_if_address_index, addr_fib,
127 pool_put (lm->if_address_pool, a);
129 if (result_if_address_index)
130 *result_if_address_index = ~0;
135 u32 pi; /* previous index */
137 u32 hi; /* head index */
139 pool_get (lm->if_address_pool, a);
140 memset (a, ~0, sizeof (a[0]));
141 ai = a - lm->if_address_pool;
143 hi = pi = lm->if_address_pool_index_by_sw_if_index[sw_if_index];
145 while (pi != (u32) ~ 0)
147 prev = pool_elt_at_index (lm->if_address_pool, pi);
148 pi = prev->next_this_sw_interface;
150 pi = prev ? prev - lm->if_address_pool : (u32) ~ 0;
152 a->address_key = mhash_set (&lm->address_to_if_address_index,
153 addr_fib, ai, /* old_value */ 0);
154 a->address_length = address_length;
155 a->sw_if_index = sw_if_index;
157 a->prev_this_sw_interface = pi;
158 a->next_this_sw_interface = ~0;
160 prev->next_this_sw_interface = ai;
162 lm->if_address_pool_index_by_sw_if_index[sw_if_index] =
163 (hi != ~0) ? hi : ai;
164 if (result_if_address_index)
165 *result_if_address_index = ai;
169 if (sw_if_index != a->sw_if_index)
171 if (result_if_address_index)
172 *result_if_address_index = ~0;
173 vnm->api_errno = VNET_API_ERROR_DUPLICATE_IF_ADDRESS;
174 return clib_error_create
175 ("Prefix %U already found on interface %U",
176 lm->format_address_and_length, addr_fib, address_length,
177 format_vnet_sw_if_index_name, vnm, a->sw_if_index);
180 if (result_if_address_index)
181 *result_if_address_index = a - lm->if_address_pool;
184 return /* no error */ 0;
187 static clib_error_t *
188 ip_sw_interface_add_del (vnet_main_t * vnm, u32 sw_if_index, u32 is_add)
190 vec_validate_init_empty (ip4_main.
191 lookup_main.if_address_pool_index_by_sw_if_index,
193 vec_validate_init_empty (ip6_main.
194 lookup_main.if_address_pool_index_by_sw_if_index,
200 VNET_SW_INTERFACE_ADD_DEL_FUNCTION (ip_sw_interface_add_del);
203 ip_lookup_init (ip_lookup_main_t * lm, u32 is_ip6)
205 if (!lm->fib_result_n_bytes)
206 lm->fib_result_n_bytes = sizeof (uword);
211 lm->format_address_and_length = format_ip6_address_and_length;
212 mhash_init (&lm->address_to_if_address_index, sizeof (uword),
213 sizeof (ip6_address_fib_t));
217 lm->format_address_and_length = format_ip4_address_and_length;
218 mhash_init (&lm->address_to_if_address_index, sizeof (uword),
219 sizeof (ip4_address_fib_t));
225 /* Setup all IP protocols to be punted and builtin-unknown. */
226 for (i = 0; i < 256; i++)
228 lm->local_next_by_ip_protocol[i] = IP_LOCAL_NEXT_PUNT;
229 lm->builtin_protocol_by_ip_protocol[i] = IP_BUILTIN_PROTOCOL_UNKNOWN;
232 lm->local_next_by_ip_protocol[IP_PROTOCOL_UDP] = IP_LOCAL_NEXT_UDP_LOOKUP;
233 lm->local_next_by_ip_protocol[is_ip6 ? IP_PROTOCOL_ICMP6 :
234 IP_PROTOCOL_ICMP] = IP_LOCAL_NEXT_ICMP;
235 lm->builtin_protocol_by_ip_protocol[IP_PROTOCOL_UDP] =
236 IP_BUILTIN_PROTOCOL_UDP;
237 lm->builtin_protocol_by_ip_protocol[is_ip6 ? IP_PROTOCOL_ICMP6 :
239 IP_BUILTIN_PROTOCOL_ICMP;
244 format_ip_flow_hash_config (u8 * s, va_list * args)
246 flow_hash_config_t flow_hash_config = va_arg (*args, u32);
248 #define _(n,v) if (flow_hash_config & v) s = format (s, "%s ", #n);
249 foreach_flow_hash_bit;
256 format_ip_adjacency_packet_data (u8 * s, va_list * args)
258 u32 adj_index = va_arg (*args, u32);
259 u8 *packet_data = va_arg (*args, u8 *);
260 u32 n_packet_data_bytes = va_arg (*args, u32);
261 ip_adjacency_t *adj = adj_get (adj_index);
263 switch (adj->lookup_next_index)
265 case IP_LOOKUP_NEXT_REWRITE:
266 case IP_LOOKUP_NEXT_MCAST:
268 format (s, "%U", format_hex_bytes, packet_data, n_packet_data_bytes);
279 unformat_dpo (unformat_input_t * input, va_list * args)
281 dpo_id_t *dpo = va_arg (*args, dpo_id_t *);
282 fib_protocol_t fp = va_arg (*args, int);
285 proto = fib_proto_to_dpo (fp);
287 if (unformat (input, "drop"))
288 dpo_copy (dpo, drop_dpo_get (proto));
289 else if (unformat (input, "punt"))
290 dpo_copy (dpo, punt_dpo_get (proto));
291 else if (unformat (input, "local"))
292 receive_dpo_add_or_lock (proto, ~0, NULL, dpo);
293 else if (unformat (input, "null-send-unreach"))
294 ip_null_dpo_add_and_lock (proto, IP_NULL_ACTION_SEND_ICMP_UNREACH, dpo);
295 else if (unformat (input, "null-send-prohibit"))
296 ip_null_dpo_add_and_lock (proto, IP_NULL_ACTION_SEND_ICMP_PROHIBIT, dpo);
297 else if (unformat (input, "null"))
298 ip_null_dpo_add_and_lock (proto, IP_NULL_ACTION_NONE, dpo);
299 else if (unformat (input, "classify"))
301 u32 classify_table_index;
303 if (!unformat (input, "%d", &classify_table_index))
305 clib_warning ("classify adj must specify table index");
309 dpo_set (dpo, DPO_CLASSIFY, proto,
310 classify_dpo_create (proto, classify_table_index));
318 const ip46_address_t zero_addr = {
323 static clib_error_t *
324 vnet_ip_route_cmd (vlib_main_t * vm,
325 unformat_input_t * main_input, vlib_cli_command_t * cmd)
327 unformat_input_t _line_input, *line_input = &_line_input;
328 u32 table_id, is_del, fib_index, payload_proto;
329 dpo_id_t dpo = DPO_INVALID, *dpos = NULL;
330 fib_route_path_t *rpaths = NULL, rpath;
331 fib_prefix_t *prefixs = NULL, pfx;
332 clib_error_t *error = NULL;
339 memset (&pfx, 0, sizeof (pfx));
341 /* Get a line of input. */
342 if (!unformat_user (main_input, unformat_line_input, line_input))
345 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
347 memset (&rpath, 0, sizeof (rpath));
349 if (unformat (line_input, "table %d", &table_id))
351 else if (unformat (line_input, "count %f", &count))
354 else if (unformat (line_input, "%U/%d",
355 unformat_ip4_address, &pfx.fp_addr.ip4, &pfx.fp_len))
357 payload_proto = pfx.fp_proto = FIB_PROTOCOL_IP4;
358 vec_add1 (prefixs, pfx);
360 else if (unformat (line_input, "%U/%d",
361 unformat_ip6_address, &pfx.fp_addr.ip6, &pfx.fp_len))
363 payload_proto = pfx.fp_proto = FIB_PROTOCOL_IP6;
364 vec_add1 (prefixs, pfx);
366 else if (unformat (line_input, "via %U",
367 unformat_fib_route_path, &rpath, &payload_proto))
369 vec_add1 (rpaths, rpath);
371 else if (vec_len (prefixs) > 0 &&
372 unformat (line_input, "via %U",
373 unformat_dpo, &dpo, prefixs[0].fp_proto))
375 vec_add1 (dpos, dpo);
377 else if (unformat (line_input, "del"))
379 else if (unformat (line_input, "add"))
383 error = unformat_parse_error (line_input);
388 if (vec_len (prefixs) == 0)
391 clib_error_return (0, "expected ip4/ip6 destination address/length.");
395 if (!is_del && vec_len (rpaths) + vec_len (dpos) == 0)
397 error = clib_error_return (0, "expected paths.");
404 * if no table_id is passed we will manipulate the default
410 fib_index = fib_table_find (prefixs[0].fp_proto, table_id);
414 error = clib_error_return (0, "Nonexistent table id %d", table_id);
419 for (i = 0; i < vec_len (prefixs); i++)
421 if (is_del && 0 == vec_len (rpaths))
423 fib_table_entry_delete (fib_index, &prefixs[i], FIB_SOURCE_CLI);
425 else if (!is_del && 1 == vec_len (dpos))
427 fib_table_entry_special_dpo_add (fib_index,
430 FIB_ENTRY_FLAG_EXCLUSIVE,
432 dpo_reset (&dpos[0]);
434 else if (vec_len (dpos) > 0)
437 clib_error_return (0,
438 "Load-balancing over multiple special adjacencies is unsupported");
441 else if (0 < vec_len (rpaths))
444 ip46_address_t dst = prefixs[i].fp_addr;
447 t[0] = vlib_time_now (vm);
448 incr = 1 << ((FIB_PROTOCOL_IP4 == prefixs[0].fp_proto ? 32 : 128) -
451 for (k = 0; k < n; k++)
453 for (j = 0; j < vec_len (rpaths); j++)
455 fib_prefix_t rpfx = {
456 .fp_len = prefixs[i].fp_len,
457 .fp_proto = prefixs[i].fp_proto,
462 fib_table_entry_path_remove2 (fib_index,
464 FIB_SOURCE_CLI, &rpaths[j]);
466 fib_table_entry_path_add2 (fib_index,
473 if (FIB_PROTOCOL_IP4 == prefixs[0].fp_proto)
476 clib_host_to_net_u32 (incr +
477 clib_net_to_host_u32 (dst.
482 int bucket = (incr < 64 ? 0 : 1);
483 dst.ip6.as_u64[bucket] =
484 clib_host_to_net_u64 (incr +
485 clib_net_to_host_u64 (dst.ip6.as_u64
490 t[1] = vlib_time_now (vm);
492 vlib_cli_output (vm, "%.6e routes/sec", count / (t[1] - t[0]));
496 error = clib_error_return (0, "Don't understand what you want...");
506 unformat_free (line_input);
511 vnet_ip_table_cmd (vlib_main_t * vm,
512 unformat_input_t * main_input,
513 vlib_cli_command_t * cmd, fib_protocol_t fproto)
515 unformat_input_t _line_input, *line_input = &_line_input;
516 clib_error_t *error = NULL;
517 u32 table_id, is_add;
523 /* Get a line of input. */
524 if (!unformat_user (main_input, unformat_line_input, line_input))
527 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
529 if (unformat (line_input, "%d", &table_id))
531 else if (unformat (line_input, "del"))
533 else if (unformat (line_input, "add"))
535 else if (unformat (line_input, "name %s", &name))
539 error = unformat_parse_error (line_input);
546 error = clib_error_return (0, "No table id");
549 else if (0 == table_id)
551 error = clib_error_return (0, "Can't change the default table");
558 ip_table_create (fproto, table_id, 0, name);
562 ip_table_delete (fproto, table_id, 0);
567 unformat_free (line_input);
572 vnet_ip4_table_cmd (vlib_main_t * vm,
573 unformat_input_t * main_input, vlib_cli_command_t * cmd)
575 return (vnet_ip_table_cmd (vm, main_input, cmd, FIB_PROTOCOL_IP4));
579 vnet_ip6_table_cmd (vlib_main_t * vm,
580 unformat_input_t * main_input, vlib_cli_command_t * cmd)
582 return (vnet_ip_table_cmd (vm, main_input, cmd, FIB_PROTOCOL_IP6));
586 VLIB_CLI_COMMAND (vlib_cli_ip_command, static) = {
588 .short_help = "Internet protocol (IP) commands",
593 VLIB_CLI_COMMAND (vlib_cli_ip6_command, static) = {
595 .short_help = "Internet protocol version 6 (IPv6) commands",
600 VLIB_CLI_COMMAND (vlib_cli_show_ip_command, static) = {
602 .short_help = "Internet protocol (IP) show commands",
607 VLIB_CLI_COMMAND (vlib_cli_show_ip6_command, static) = {
609 .short_help = "Internet protocol version 6 (IPv6) show commands",
614 * This command is used to add or delete IPv4 or IPv6 routes. All
615 * IP Addresses ('<em><dst-ip-addr>/<width></em>',
616 * '<em><next-hop-ip-addr></em>' and '<em><adj-hop-ip-addr></em>')
617 * can be IPv4 or IPv6, but all must be of the same form in a single
618 * command. To display the current set of routes, use the commands
619 * '<em>show ip fib</em>' and '<em>show ip6 fib</em>'.
622 * Example of how to add a straight forward static route:
623 * @cliexcmd{ip route add 6.0.1.2/32 via 6.0.0.1 GigabitEthernet2/0/0}
624 * Example of how to delete a straight forward static route:
625 * @cliexcmd{ip route del 6.0.1.2/32 via 6.0.0.1 GigabitEthernet2/0/0}
626 * Mainly for route add/del performance testing, one can add or delete
627 * multiple routes by adding 'count N' to the previous item:
628 * @cliexcmd{ip route add count 10 7.0.0.0/24 via 6.0.0.1 GigabitEthernet2/0/0}
629 * Add multiple routes for the same destination to create equal-cost multipath:
630 * @cliexcmd{ip route add 7.0.0.1/32 via 6.0.0.1 GigabitEthernet2/0/0}
631 * @cliexcmd{ip route add 7.0.0.1/32 via 6.0.0.2 GigabitEthernet2/0/0}
632 * For unequal-cost multipath, specify the desired weights. This
633 * combination of weights results in 3/4 of the traffic following the
634 * second path, 1/4 following the first path:
635 * @cliexcmd{ip route add 7.0.0.1/32 via 6.0.0.1 GigabitEthernet2/0/0 weight 1}
636 * @cliexcmd{ip route add 7.0.0.1/32 via 6.0.0.2 GigabitEthernet2/0/0 weight 3}
637 * To add a route to a particular FIB table (VRF), use:
638 * @cliexcmd{ip route add 172.16.24.0/24 table 7 via GigabitEthernet2/0/0}
641 VLIB_CLI_COMMAND (ip_route_command, static) = {
643 .short_help = "ip route [add|del] [count <n>] <dst-ip-addr>/<width> [table <table-id>] via [next-hop-address] [next-hop-interface] [next-hop-table <value>] [weight <value>] [preference <value>] [udp-encap-id <value>] [ip4-lookup-in-table <value>] [ip6-lookup-in-table <value>] [mpls-lookup-in-table <value>] [resolve-via-host] [resolve-via-connected] [rx-ip4 <interface>] [out-labels <value value value>]",
644 .function = vnet_ip_route_cmd,
650 * This command is used to add or delete IPv4 Tables. All
651 * Tables must be explicitly added before that can be used. Creating a
652 * table will add both unicast and multicast FIBs
656 VLIB_CLI_COMMAND (ip4_table_command, static) = {
658 .short_help = "ip table [add|del] <table-id>",
659 .function = vnet_ip4_table_cmd,
666 * This command is used to add or delete IPv4 Tables. All
667 * Tables must be explicitly added before that can be used. Creating a
668 * table will add both unicast and multicast FIBs
672 VLIB_CLI_COMMAND (ip6_table_command, static) = {
674 .short_help = "ip6 table [add|del] <table-id>",
675 .function = vnet_ip6_table_cmd,
679 static clib_error_t *
680 ip_table_bind_cmd (vlib_main_t * vm,
681 unformat_input_t * input,
682 vlib_cli_command_t * cmd,
683 fib_protocol_t fproto)
685 vnet_main_t *vnm = vnet_get_main ();
686 clib_error_t *error = 0;
687 u32 sw_if_index, table_id;
692 if (!unformat_user (input, unformat_vnet_sw_interface, vnm, &sw_if_index))
694 error = clib_error_return (0, "unknown interface `%U'",
695 format_unformat_error, input);
699 if (unformat (input, "%d", &table_id))
703 error = clib_error_return (0, "expected table id `%U'",
704 format_unformat_error, input);
708 rv = ip_table_bind (fproto, sw_if_index, table_id, 0);
710 if (VNET_API_ERROR_ADDRESS_FOUND_FOR_INTERFACE == rv)
712 error = clib_error_return (0, "IP addresses are still present on %U",
713 format_vnet_sw_if_index_name,
717 else if (VNET_API_ERROR_NO_SUCH_FIB == rv)
719 error = clib_error_return (0, "no such table %d", table_id);
723 error = clib_error_return (0, "unknown error");
730 static clib_error_t *
731 ip4_table_bind_cmd (vlib_main_t * vm,
732 unformat_input_t * input,
733 vlib_cli_command_t * cmd)
735 return (ip_table_bind_cmd (vm , input, cmd, FIB_PROTOCOL_IP4));
738 static clib_error_t *
739 ip6_table_bind_cmd (vlib_main_t * vm,
740 unformat_input_t * input,
741 vlib_cli_command_t * cmd)
743 return (ip_table_bind_cmd (vm , input, cmd, FIB_PROTOCOL_IP6));
747 * Place the indicated interface into the supplied IPv4 FIB table (also known
748 * as a VRF). The FIB table must be created using "ip table add" already. To
749 * display the current IPv4 FIB table, use the command '<em>show ip fib</em>'.
750 * FIB table will only be displayed if a route has been added to the table, or
751 * an IP Address is assigned to an interface in the table (which adds a route
754 * @note IP addresses added after setting the interface IP table are added to
755 * the indicated FIB table. If an IP address is added prior to changing the
756 * table then this is an error. The control plane must remove these addresses
757 * first and then change the table. VPP will not automatically move the
758 * addresses from the old to the new table as it does not know the validity
762 * Example of how to add an interface to an IPv4 FIB table (where 2 is the table-id):
763 * @cliexcmd{set interface ip table GigabitEthernet2/0/0 2}
766 VLIB_CLI_COMMAND (set_interface_ip_table_command, static) =
768 .path = "set interface ip table",
769 .function = ip4_table_bind_cmd,
770 .short_help = "set interface ip table <interface> <table-id>",
775 * Place the indicated interface into the supplied IPv6 FIB table (also known
776 * as a VRF). The FIB table must be created using "ip6 table add" already. To
777 * display the current IPv6 FIB table, use the command '<em>show ip6 fib</em>'.
778 * FIB table will only be displayed if a route has been added to the table, or
779 * an IP Address is assigned to an interface in the table (which adds a route
782 * @note IP addresses added after setting the interface IP table are added to
783 * the indicated FIB table. If an IP address is added prior to changing the
784 * table then this is an error. The control plane must remove these addresses
785 * first and then change the table. VPP will not automatically move the
786 * addresses from the old to the new table as it does not know the validity
790 * Example of how to add an interface to an IPv6 FIB table (where 2 is the table-id):
791 * @cliexcmd{set interface ip6 table GigabitEthernet2/0/0 2}
794 VLIB_CLI_COMMAND (set_interface_ip6_table_command, static) =
796 .path = "set interface ip6 table",
797 .function = ip6_table_bind_cmd,
798 .short_help = "set interface ip6 table <interface> <table-id>"
803 vnet_ip_mroute_cmd (vlib_main_t * vm,
804 unformat_input_t * main_input, vlib_cli_command_t * cmd)
806 unformat_input_t _line_input, *line_input = &_line_input;
807 clib_error_t *error = NULL;
808 fib_route_path_t rpath;
809 u32 table_id, is_del;
813 mfib_itf_flags_t iflags = 0;
814 mfib_entry_flags_t eflags = 0;
815 u32 gcount, scount, ss, gg, incr;
819 vnm = vnet_get_main ();
822 memset (&pfx, 0, sizeof (pfx));
823 memset (&rpath, 0, sizeof (rpath));
824 rpath.frp_sw_if_index = ~0;
826 /* Get a line of input. */
827 if (!unformat_user (main_input, unformat_line_input, line_input))
830 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
832 if (unformat (line_input, "table %d", &table_id))
834 else if (unformat (line_input, "del"))
836 else if (unformat (line_input, "add"))
838 else if (unformat (line_input, "scount %d", &scount))
840 else if (unformat (line_input, "gcount %d", &gcount))
842 else if (unformat (line_input, "%U %U",
843 unformat_ip4_address,
844 &pfx.fp_src_addr.ip4,
845 unformat_ip4_address, &pfx.fp_grp_addr.ip4))
847 pfx.fp_proto = FIB_PROTOCOL_IP4;
850 else if (unformat (line_input, "%U %U",
851 unformat_ip6_address,
852 &pfx.fp_src_addr.ip6,
853 unformat_ip6_address, &pfx.fp_grp_addr.ip6))
855 pfx.fp_proto = FIB_PROTOCOL_IP6;
858 else if (unformat (line_input, "%U/%d",
859 unformat_ip4_address,
860 &pfx.fp_grp_addr.ip4, &pfx.fp_len))
862 memset (&pfx.fp_src_addr.ip4, 0, sizeof (pfx.fp_src_addr.ip4));
863 pfx.fp_proto = FIB_PROTOCOL_IP4;
865 else if (unformat (line_input, "%U/%d",
866 unformat_ip6_address,
867 &pfx.fp_grp_addr.ip6, &pfx.fp_len))
869 memset (&pfx.fp_src_addr.ip6, 0, sizeof (pfx.fp_src_addr.ip6));
870 pfx.fp_proto = FIB_PROTOCOL_IP6;
872 else if (unformat (line_input, "%U",
873 unformat_ip4_address, &pfx.fp_grp_addr.ip4))
875 memset (&pfx.fp_src_addr.ip4, 0, sizeof (pfx.fp_src_addr.ip4));
876 pfx.fp_proto = FIB_PROTOCOL_IP4;
879 else if (unformat (line_input, "%U",
880 unformat_ip6_address, &pfx.fp_grp_addr.ip6))
882 memset (&pfx.fp_src_addr.ip6, 0, sizeof (pfx.fp_src_addr.ip6));
883 pfx.fp_proto = FIB_PROTOCOL_IP6;
886 else if (unformat (line_input, "via %U %U",
887 unformat_ip4_address, &rpath.frp_addr.ip4,
888 unformat_vnet_sw_interface, vnm,
889 &rpath.frp_sw_if_index))
891 rpath.frp_weight = 1;
893 else if (unformat (line_input, "via %U %U",
894 unformat_ip6_address, &rpath.frp_addr.ip6,
895 unformat_vnet_sw_interface, vnm,
896 &rpath.frp_sw_if_index))
898 rpath.frp_weight = 1;
900 else if (unformat (line_input, "via %U",
901 unformat_vnet_sw_interface, vnm,
902 &rpath.frp_sw_if_index))
904 memset (&rpath.frp_addr, 0, sizeof (rpath.frp_addr));
905 rpath.frp_weight = 1;
907 else if (unformat (line_input, "via local"))
909 memset (&rpath.frp_addr, 0, sizeof (rpath.frp_addr));
910 rpath.frp_sw_if_index = ~0;
911 rpath.frp_weight = 1;
912 rpath.frp_flags |= FIB_ROUTE_PATH_LOCAL;
914 * set the path proto appropriately for the prefix
916 rpath.frp_proto = fib_proto_to_dpo (pfx.fp_proto);
918 else if (unformat (line_input, "%U", unformat_mfib_itf_flags, &iflags))
920 else if (unformat (line_input, "%U",
921 unformat_mfib_entry_flags, &eflags))
925 error = unformat_parse_error (line_input);
933 * if no table_id is passed we will manipulate the default
939 fib_index = mfib_table_find (pfx.fp_proto, table_id);
943 error = clib_error_return (0, "Nonexistent table id %d", table_id);
948 timet[0] = vlib_time_now (vm);
950 if (FIB_PROTOCOL_IP4 == pfx.fp_proto)
952 incr = 1 << (32 - (pfx.fp_len % 32));
956 incr = 1 << (128 - (pfx.fp_len % 128));
959 for (ss = 0; ss < scount; ss++)
961 for (gg = 0; gg < gcount; gg++)
963 if (is_del && 0 == rpath.frp_weight)
965 /* no path provided => route delete */
966 mfib_table_entry_delete (fib_index, &pfx, MFIB_SOURCE_CLI);
970 mfib_table_entry_update (fib_index, &pfx, MFIB_SOURCE_CLI,
971 MFIB_RPF_ID_NONE, eflags);
976 mfib_table_entry_path_remove (fib_index,
977 &pfx, MFIB_SOURCE_CLI, &rpath);
979 mfib_table_entry_path_update (fib_index,
980 &pfx, MFIB_SOURCE_CLI, &rpath,
984 if (FIB_PROTOCOL_IP4 == pfx.fp_proto)
986 pfx.fp_grp_addr.ip4.as_u32 =
987 clib_host_to_net_u32 (incr +
988 clib_net_to_host_u32 (pfx.
994 int bucket = (incr < 64 ? 0 : 1);
995 pfx.fp_grp_addr.ip6.as_u64[bucket] =
996 clib_host_to_net_u64 (incr +
997 clib_net_to_host_u64 (pfx.
998 fp_grp_addr.ip6.as_u64
1003 if (FIB_PROTOCOL_IP4 == pfx.fp_proto)
1005 pfx.fp_src_addr.ip4.as_u32 =
1006 clib_host_to_net_u32 (1 +
1007 clib_net_to_host_u32 (pfx.fp_src_addr.
1012 pfx.fp_src_addr.ip6.as_u64[1] =
1013 clib_host_to_net_u64 (1 +
1014 clib_net_to_host_u64 (pfx.fp_src_addr.
1019 timet[1] = vlib_time_now (vm);
1021 if (scount > 1 || gcount > 1)
1022 vlib_cli_output (vm, "%.6e routes/sec",
1023 (scount * gcount) / (timet[1] - timet[0]));
1026 unformat_free (line_input);
1032 * This command is used to add or delete IPv4 or IPv6 multicastroutes. All
1033 * IP Addresses ('<em><dst-ip-addr>/<width></em>',
1034 * '<em><next-hop-ip-addr></em>' and '<em><adj-hop-ip-addr></em>')
1035 * can be IPv4 or IPv6, but all must be of the same form in a single
1036 * command. To display the current set of routes, use the commands
1037 * '<em>show ip mfib</em>' and '<em>show ip6 mfib</em>'.
1038 * The full set of support flags for interfaces and route is shown via;
1039 * '<em>show mfib route flags</em>' and '<em>show mfib itf flags</em>'
1042 * Example of how to add a forwarding interface to a route (and create the
1043 * route if it does not exist)
1044 * @cliexcmd{ip mroute add 232.1.1.1 via GigabitEthernet2/0/0 Forward}
1045 * Example of how to add an accepting interface to a route (and create the
1046 * route if it does not exist)
1047 * @cliexcmd{ip mroute add 232.1.1.1 via GigabitEthernet2/0/1 Accept}
1048 * Example of changing the route's flags to send signals via the API
1049 * @cliexcmd{ip mroute add 232.1.1.1 Signal}
1053 VLIB_CLI_COMMAND (ip_mroute_command, static) =
1055 .path = "ip mroute",
1056 .short_help = "ip mroute [add|del] <dst-ip-addr>/<width> [table <table-id>] [via <next-hop-ip-addr> [<interface>],",
1057 .function = vnet_ip_mroute_cmd,
1063 * The next two routines address a longstanding script hemorrhoid.
1064 * Probing a v4 or v6 neighbor needs to appear to be synchronous,
1065 * or dependent route-adds will simply fail.
1067 static clib_error_t *
1068 ip6_probe_neighbor_wait (vlib_main_t * vm, ip6_address_t * a, u32 sw_if_index,
1071 vnet_main_t *vnm = vnet_get_main ();
1076 uword *event_data = 0;
1078 ASSERT (vlib_in_process_context (vm));
1080 if (retry_count > 0)
1081 vnet_register_ip6_neighbor_resolution_event
1082 (vnm, a, vlib_get_current_process (vm)->node_runtime.node_index,
1083 1 /* event */ , 0 /* data */ );
1085 for (i = 0; i < retry_count; i++)
1087 /* The interface may be down, etc. */
1088 e = ip6_probe_neighbor (vm, a, sw_if_index, 0);
1093 vlib_process_wait_for_event_or_clock (vm, 1.0);
1094 event_type = vlib_process_get_events (vm, &event_data);
1097 case 1: /* resolved... */
1098 vlib_cli_output (vm, "Resolved %U", format_ip6_address, a);
1102 case ~0: /* timeout */
1106 clib_warning ("unknown event_type %d", event_type);
1108 vec_reset_length (event_data);
1114 return clib_error_return (0, "Resolution failed for %U",
1115 format_ip6_address, a);
1119 static clib_error_t *
1120 ip4_probe_neighbor_wait (vlib_main_t * vm, ip4_address_t * a, u32 sw_if_index,
1123 vnet_main_t *vnm = vnet_get_main ();
1128 uword *event_data = 0;
1130 ASSERT (vlib_in_process_context (vm));
1132 if (retry_count > 0)
1133 vnet_register_ip4_arp_resolution_event
1134 (vnm, a, vlib_get_current_process (vm)->node_runtime.node_index,
1135 1 /* event */ , 0 /* data */ );
1137 for (i = 0; i < retry_count; i++)
1139 /* The interface may be down, etc. */
1140 e = ip4_probe_neighbor (vm, a, sw_if_index, 0);
1145 vlib_process_wait_for_event_or_clock (vm, 1.0);
1146 event_type = vlib_process_get_events (vm, &event_data);
1149 case 1: /* resolved... */
1150 vlib_cli_output (vm, "Resolved %U", format_ip4_address, a);
1154 case ~0: /* timeout */
1158 clib_warning ("unknown event_type %d", event_type);
1160 vec_reset_length (event_data);
1165 vec_reset_length (event_data);
1168 return clib_error_return (0, "Resolution failed for %U",
1169 format_ip4_address, a);
1173 static clib_error_t *
1174 probe_neighbor_address (vlib_main_t * vm,
1175 unformat_input_t * input, vlib_cli_command_t * cmd)
1177 vnet_main_t *vnm = vnet_get_main ();
1178 unformat_input_t _line_input, *line_input = &_line_input;
1181 clib_error_t *error = 0;
1182 u32 sw_if_index = ~0;
1183 int retry_count = 3;
1185 int address_set = 0;
1187 /* Get a line of input. */
1188 if (!unformat_user (input, unformat_line_input, line_input))
1191 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
1193 if (unformat_user (line_input, unformat_vnet_sw_interface, vnm,
1196 else if (unformat (line_input, "retry %d", &retry_count))
1199 else if (unformat (line_input, "%U", unformat_ip4_address, &a4))
1201 else if (unformat (line_input, "%U", unformat_ip6_address, &a6))
1208 error = clib_error_return (0, "unknown input '%U'",
1209 format_unformat_error, line_input);
1214 if (sw_if_index == ~0)
1216 error = clib_error_return (0, "Interface required, not set.");
1219 if (address_set == 0)
1221 error = clib_error_return (0, "ip address required, not set.");
1224 if (address_set > 1)
1226 error = clib_error_return (0, "Multiple ip addresses not supported.");
1231 error = ip4_probe_neighbor_wait (vm, &a4, sw_if_index, retry_count);
1233 error = ip6_probe_neighbor_wait (vm, &a6, sw_if_index, retry_count);
1236 unformat_free (line_input);
1242 * The '<em>ip probe-neighbor</em>' command ARPs for IPv4 addresses or
1243 * attempts IPv6 neighbor discovery depending on the supplied IP address
1246 * @note This command will not immediately affect the indicated FIB; it
1247 * is not suitable for use in establishing a FIB entry prior to adding
1248 * recursive FIB entries. As in: don't use it in a script to probe a
1249 * gateway prior to adding a default route. It won't work. Instead,
1250 * configure a static ARP cache entry [see '<em>set ip arp</em>'], or
1251 * a static IPv6 neighbor [see '<em>set ip6 neighbor</em>'].
1254 * Example of probe for an IPv4 address:
1255 * @cliexcmd{ip probe-neighbor GigabitEthernet2/0/0 172.16.1.2}
1258 VLIB_CLI_COMMAND (ip_probe_neighbor_command, static) = {
1259 .path = "ip probe-neighbor",
1260 .function = probe_neighbor_address,
1261 .short_help = "ip probe-neighbor <interface> <ip4-addr> | <ip6-addr> [retry nn]",
1267 vnet_ip_container_proxy_add_del (vnet_ip_container_proxy_args_t * args)
1271 if (!vnet_sw_interface_is_api_valid (vnet_get_main (), args->sw_if_index))
1272 return clib_error_return_code (0, VNET_API_ERROR_INVALID_INTERFACE, 0,
1273 "invalid sw_if_index");
1275 fib_index = fib_table_get_table_id_for_sw_if_index (args->prefix.fp_proto,
1279 dpo_id_t proxy_dpo = DPO_INVALID;
1280 l3_proxy_dpo_add_or_lock (fib_proto_to_dpo (args->prefix.fp_proto),
1281 args->sw_if_index, &proxy_dpo);
1282 fib_table_entry_special_dpo_add (fib_index,
1285 FIB_ENTRY_FLAG_EXCLUSIVE, &proxy_dpo);
1286 dpo_reset (&proxy_dpo);
1290 fib_table_entry_special_remove (fib_index, &args->prefix,
1297 ip_container_proxy_is_set (fib_prefix_t * pfx, u32 sw_if_index)
1300 fib_node_index_t fei;
1301 const dpo_id_t *dpo;
1302 l3_proxy_dpo_t *l3p;
1303 load_balance_t *lb0;
1305 fib_index = fib_table_get_table_id_for_sw_if_index (pfx->fp_proto,
1307 if (fib_index == ~0)
1310 fei = fib_table_lookup_exact_match (fib_index, pfx);
1311 if (fei == FIB_NODE_INDEX_INVALID)
1314 dpo = fib_entry_contribute_ip_forwarding (fei);
1315 lb0 = load_balance_get (dpo->dpoi_index);
1316 dpo = load_balance_get_bucket_i (lb0, 0);
1317 if (dpo->dpoi_type != DPO_L3_PROXY)
1320 l3p = l3_proxy_dpo_get (dpo->dpoi_index);
1321 return (l3p->l3p_sw_if_index == sw_if_index);
1324 typedef struct ip_container_proxy_walk_ctx_t_
1326 ip_container_proxy_cb_t cb;
1328 } ip_container_proxy_walk_ctx_t;
1330 static fib_table_walk_rc_t
1331 ip_container_proxy_fib_table_walk (fib_node_index_t fei, void *arg)
1333 ip_container_proxy_walk_ctx_t *ctx = arg;
1334 const fib_prefix_t *pfx;
1335 const dpo_id_t *dpo;
1337 l3_proxy_dpo_t *l3p;
1339 pfx = fib_entry_get_prefix (fei);
1340 if (fib_entry_is_sourced (fei, FIB_SOURCE_PROXY))
1342 dpo = fib_entry_contribute_ip_forwarding (fei);
1343 lb = load_balance_get (dpo->dpoi_index);
1344 dpo = load_balance_get_bucket_i (lb, 0);
1345 l3p = l3_proxy_dpo_get (dpo->dpoi_index);
1346 ctx->cb (pfx, l3p->l3p_sw_if_index, ctx->ctx);
1349 return FIB_TABLE_WALK_CONTINUE;
1353 ip_container_proxy_walk (ip_container_proxy_cb_t cb, void *ctx)
1355 fib_table_t *fib_table;
1356 ip_container_proxy_walk_ctx_t wctx = {
1362 pool_foreach (fib_table, ip4_main.fibs,
1364 fib_table_walk(fib_table->ft_index,
1366 ip_container_proxy_fib_table_walk,
1369 pool_foreach (fib_table, ip6_main.fibs,
1371 fib_table_walk(fib_table->ft_index,
1373 ip_container_proxy_fib_table_walk,
1380 ip_container_cmd (vlib_main_t * vm,
1381 unformat_input_t * main_input, vlib_cli_command_t * cmd)
1383 unformat_input_t _line_input, *line_input = &_line_input;
1385 u32 is_del, addr_set = 0;
1389 vnm = vnet_get_main ();
1392 memset (&pfx, 0, sizeof (pfx));
1394 /* Get a line of input. */
1395 if (!unformat_user (main_input, unformat_line_input, line_input))
1398 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
1400 if (unformat (line_input, "%U", unformat_ip4_address, &pfx.fp_addr.ip4))
1402 pfx.fp_proto = FIB_PROTOCOL_IP4;
1406 else if (unformat (line_input, "%U",
1407 unformat_ip6_address, &pfx.fp_addr.ip6))
1409 pfx.fp_proto = FIB_PROTOCOL_IP6;
1413 else if (unformat (line_input, "%U",
1414 unformat_vnet_sw_interface, vnm, &sw_if_index))
1416 else if (unformat (line_input, "del"))
1420 unformat_free (line_input);
1421 return (clib_error_return (0, "unknown input '%U'",
1422 format_unformat_error, line_input));
1426 if (~0 == sw_if_index || !addr_set)
1428 unformat_free (line_input);
1429 vlib_cli_output (vm, "interface and address must be set");
1433 vnet_ip_container_proxy_args_t args = {
1435 .sw_if_index = sw_if_index,
1438 vnet_ip_container_proxy_add_del (&args);
1439 unformat_free (line_input);
1444 VLIB_CLI_COMMAND (ip_container_command_node, static) = {
1445 .path = "ip container",
1446 .function = ip_container_cmd,
1447 .short_help = "ip container <address> <interface>",
1453 show_ip_container_cmd_fn (vlib_main_t * vm, unformat_input_t * main_input,
1454 vlib_cli_command_t * cmd)
1456 unformat_input_t _line_input, *line_input = &_line_input;
1457 vnet_main_t *vnm = vnet_get_main ();
1459 u32 sw_if_index = ~0;
1462 if (!unformat_user (main_input, unformat_line_input, line_input))
1464 while (unformat_check_input (line_input) != UNFORMAT_END_OF_INPUT)
1466 if (unformat (line_input, "%U", unformat_ip4_address, &pfx.fp_addr.ip4))
1468 pfx.fp_proto = FIB_PROTOCOL_IP4;
1471 else if (unformat (line_input, "%U",
1472 unformat_ip6_address, &pfx.fp_addr.ip6))
1474 pfx.fp_proto = FIB_PROTOCOL_IP6;
1477 else if (unformat (line_input, "%U",
1478 unformat_vnet_sw_interface, vnm, &sw_if_index))
1482 unformat_free (line_input);
1483 return (clib_error_return (0, "unknown input '%U'",
1484 format_unformat_error, line_input));
1488 if (~0 == sw_if_index)
1490 unformat_free (line_input);
1491 vlib_cli_output (vm, "no interface");
1492 return (clib_error_return (0, "no interface"));
1495 has_proxy = ip_container_proxy_is_set (&pfx, sw_if_index);
1496 vlib_cli_output (vm, "ip container proxy is: %s", has_proxy ? "on" : "off");
1498 unformat_free (line_input);
1503 VLIB_CLI_COMMAND (show_ip_container_command, static) = {
1504 .path = "show ip container",
1505 .function = show_ip_container_cmd_fn,
1506 .short_help = "show ip container <address> <interface>",
1512 * fd.io coding-style-patch-verification: ON
1515 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob