2 * Copyright (c) 2016 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vlibmemory/api.h>
17 #include <vnet/lisp-cp/control.h>
18 #include <vnet/lisp-cp/packets.h>
19 #include <vnet/lisp-cp/lisp_msg_serdes.h>
20 #include <vnet/lisp-gpe/lisp_gpe_fwd_entry.h>
21 #include <vnet/lisp-gpe/lisp_gpe_tenant.h>
22 #include <vnet/lisp-gpe/lisp_gpe_tunnel.h>
23 #include <vnet/fib/fib_entry.h>
24 #include <vnet/fib/fib_table.h>
25 #include <vnet/ethernet/arp_packet.h>
26 #include <vnet/ethernet/packet.h>
28 #include <openssl/evp.h>
29 #include <vnet/crypto/crypto.h>
31 #define MAX_VALUE_U24 0xffffff
33 /* mapping timer control constants (in seconds) */
34 #define TIME_UNTIL_REFETCH_OR_DELETE 20
35 #define MAPPING_TIMEOUT (((m->ttl) * 60) - TIME_UNTIL_REFETCH_OR_DELETE)
37 lisp_cp_main_t lisp_control_main;
39 u8 *format_lisp_cp_input_trace (u8 * s, va_list * args);
40 static void *send_map_request_thread_fn (void *arg);
44 LISP_CP_INPUT_NEXT_DROP,
46 } lisp_cp_input_next_t;
57 vnet_lisp_get_map_request_mode (void)
59 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
60 return lcm->map_request_mode;
64 auth_data_len_by_key_id (lisp_key_type_t key_id)
69 return SHA1_AUTH_DATA_LEN;
70 case HMAC_SHA_256_128:
71 return SHA256_AUTH_DATA_LEN;
73 clib_warning ("unsupported key type: %d!", key_id);
80 queue_map_request (gid_address_t * seid, gid_address_t * deid,
81 u8 smr_invoked, u8 is_resend);
83 ip_interface_address_t *
84 ip_interface_get_first_interface_address (ip_lookup_main_t * lm,
85 u32 sw_if_index, u8 loop)
87 vnet_main_t *vnm = vnet_get_main ();
88 vnet_sw_interface_t *swif = vnet_get_sw_interface (vnm, sw_if_index);
89 if (loop && swif->flags & VNET_SW_INTERFACE_FLAG_UNNUMBERED)
90 sw_if_index = swif->unnumbered_sw_if_index;
92 (vec_len ((lm)->if_address_pool_index_by_sw_if_index) > (sw_if_index)) ?
93 vec_elt ((lm)->if_address_pool_index_by_sw_if_index, (sw_if_index)) :
95 return pool_elt_at_index ((lm)->if_address_pool, ia);
99 ip_interface_get_first_address (ip_lookup_main_t * lm, u32 sw_if_index,
102 ip_interface_address_t *ia;
104 ia = ip_interface_get_first_interface_address (lm, sw_if_index, 1);
107 return ip_interface_address_get_address (lm, ia);
111 ip_interface_get_first_ip_address (lisp_cp_main_t * lcm, u32 sw_if_index,
112 u8 version, ip_address_t * result)
114 ip_lookup_main_t *lm;
117 lm = (version == AF_IP4) ? &lcm->im4->lookup_main : &lcm->im6->lookup_main;
118 addr = ip_interface_get_first_address (lm, sw_if_index, version);
122 ip_address_set (result, addr, version);
127 * convert from a LISP address to a FIB prefix
130 ip_address_to_fib_prefix (const ip_address_t * addr, fib_prefix_t * prefix)
132 if (addr->version == AF_IP4)
135 prefix->fp_proto = FIB_PROTOCOL_IP4;
136 clib_memset (&prefix->fp_addr.pad, 0, sizeof (prefix->fp_addr.pad));
137 memcpy (&prefix->fp_addr.ip4, &addr->ip.ip4,
138 sizeof (prefix->fp_addr.ip4));
142 prefix->fp_len = 128;
143 prefix->fp_proto = FIB_PROTOCOL_IP6;
144 memcpy (&prefix->fp_addr.ip6, &addr->ip.ip6,
145 sizeof (prefix->fp_addr.ip6));
147 prefix->___fp___pad = 0;
151 * convert from a LISP to a FIB prefix
154 ip_prefix_to_fib_prefix (const ip_prefix_t * ip_prefix,
155 fib_prefix_t * fib_prefix)
157 ip_address_to_fib_prefix (&ip_prefix->addr, fib_prefix);
158 fib_prefix->fp_len = ip_prefix->len;
162 * Find the sw_if_index of the interface that would be used to egress towards
166 ip_fib_get_egress_iface_for_dst (lisp_cp_main_t * lcm, ip_address_t * dst)
168 fib_node_index_t fei;
171 ip_address_to_fib_prefix (dst, &prefix);
173 fei = fib_table_lookup (0, &prefix);
175 return (fib_entry_get_resolving_interface (fei));
179 * Find first IP of the interface that would be used to egress towards dst.
180 * Returns 1 if the address is found 0 otherwise.
183 ip_fib_get_first_egress_ip_for_dst (lisp_cp_main_t * lcm, ip_address_t * dst,
184 ip_address_t * result)
187 ip_lookup_main_t *lm;
191 ASSERT (result != 0);
193 ipver = ip_addr_version (dst);
195 lm = (ipver == AF_IP4) ? &lcm->im4->lookup_main : &lcm->im6->lookup_main;
196 si = ip_fib_get_egress_iface_for_dst (lcm, dst);
201 /* find the first ip address */
202 addr = ip_interface_get_first_address (lm, si, ipver);
206 ip_address_set (result, addr, ipver);
211 dp_add_del_iface (lisp_cp_main_t * lcm, u32 vni, u8 is_l2, u8 is_add,
212 u8 with_default_route)
218 dp_table = hash_get (lcm->table_id_by_vni, vni);
222 clib_warning ("vni %d not associated to a vrf!", vni);
223 return VNET_API_ERROR_INVALID_VALUE;
228 dp_table = hash_get (lcm->bd_id_by_vni, vni);
231 clib_warning ("vni %d not associated to a bridge domain!", vni);
232 return VNET_API_ERROR_INVALID_VALUE;
236 /* enable/disable data-plane interface */
240 lisp_gpe_tenant_l2_iface_add_or_lock (vni, dp_table[0]);
242 lisp_gpe_tenant_l3_iface_add_or_lock (vni, dp_table[0],
248 lisp_gpe_tenant_l2_iface_unlock (vni);
250 lisp_gpe_tenant_l3_iface_unlock (vni);
257 dp_del_fwd_entry (lisp_cp_main_t * lcm, u32 dst_map_index)
259 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
262 clib_memset (a, 0, sizeof (*a));
264 feip = hash_get (lcm->fwd_entry_by_mapping_index, dst_map_index);
268 fe = pool_elt_at_index (lcm->fwd_entry_pool, feip[0]);
270 /* delete dp fwd entry */
273 a->locator_pairs = fe->locator_pairs;
274 a->vni = gid_address_vni (&fe->reid);
275 gid_address_copy (&a->rmt_eid, &fe->reid);
277 gid_address_copy (&a->lcl_eid, &fe->leid);
279 vnet_lisp_gpe_del_fwd_counters (a, feip[0]);
280 vnet_lisp_gpe_add_del_fwd_entry (a, &sw_if_index);
282 /* delete entry in fwd table */
283 hash_unset (lcm->fwd_entry_by_mapping_index, dst_map_index);
284 vec_free (fe->locator_pairs);
285 pool_put (lcm->fwd_entry_pool, fe);
289 * Finds first remote locator with best (lowest) priority that has a local
290 * peer locator with an underlying route to it.
294 get_locator_pairs (lisp_cp_main_t * lcm, mapping_t * lcl_map,
295 mapping_t * rmt_map, locator_pair_t ** locator_pairs)
297 u32 i, limitp = 0, li, found = 0, esi;
298 locator_set_t *rmt_ls, *lcl_ls;
299 ip_address_t _lcl_addr, *lcl_addr = &_lcl_addr;
300 locator_t *lp, *rmt = 0;
305 pool_elt_at_index (lcm->locator_set_pool, rmt_map->locator_set_index);
307 pool_elt_at_index (lcm->locator_set_pool, lcl_map->locator_set_index);
309 if (!rmt_ls || vec_len (rmt_ls->locator_indices) == 0)
316 /* find unvisited remote locator with best priority */
317 for (i = 0; i < vec_len (rmt_ls->locator_indices); i++)
319 if (0 != hash_get (checked, i))
322 li = vec_elt (rmt_ls->locator_indices, i);
323 lp = pool_elt_at_index (lcm->locator_pool, li);
325 /* we don't support non-IP locators for now */
326 if (gid_address_type (&lp->address) != GID_ADDR_IP_PREFIX)
329 if ((found && lp->priority == limitp)
330 || (!found && lp->priority >= limitp))
334 /* don't search for locators with lower priority and don't
335 * check this locator again*/
336 limitp = lp->priority;
337 hash_set (checked, i, 1);
341 /* check if a local locator with a route to remote locator exists */
344 /* find egress sw_if_index for rmt locator */
346 ip_fib_get_egress_iface_for_dst (lcm,
347 &gid_address_ip (&rmt->address));
348 if ((u32) ~ 0 == esi)
351 for (i = 0; i < vec_len (lcl_ls->locator_indices); i++)
353 li = vec_elt (lcl_ls->locator_indices, i);
354 locator_t *sl = pool_elt_at_index (lcm->locator_pool, li);
356 /* found local locator with the needed sw_if_index */
357 if (sl->sw_if_index == esi)
359 /* and it has an address */
360 if (0 == ip_interface_get_first_ip_address (lcm,
362 gid_address_ip_version
367 clib_memset (&pair, 0, sizeof (pair));
368 ip_address_copy (&pair.rmt_loc,
369 &gid_address_ip (&rmt->address));
370 ip_address_copy (&pair.lcl_loc, lcl_addr);
371 pair.weight = rmt->weight;
372 pair.priority = rmt->priority;
373 vec_add1 (locator_pairs[0], pair);
387 gid_address_sd_to_flat (gid_address_t * dst, gid_address_t * src,
390 ASSERT (GID_ADDR_SRC_DST == gid_address_type (src));
394 switch (fid_addr_type (fid))
396 case FID_ADDR_IP_PREF:
397 gid_address_type (dst) = GID_ADDR_IP_PREFIX;
398 gid_address_ippref (dst) = fid_addr_ippref (fid);
401 gid_address_type (dst) = GID_ADDR_MAC;
402 mac_copy (gid_address_mac (dst), fid_addr_mac (fid));
405 clib_warning ("Unsupported fid type %d!", fid_addr_type (fid));
411 vnet_lisp_map_register_state_get (void)
413 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
414 return lcm->map_registering;
418 vnet_lisp_rloc_probe_state_get (void)
420 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
421 return lcm->rloc_probing;
425 dp_add_fwd_entry (lisp_cp_main_t * lcm, u32 src_map_index, u32 dst_map_index)
427 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
428 gid_address_t *rmt_eid, *lcl_eid;
429 mapping_t *lcl_map, *rmt_map;
430 u32 sw_if_index, **rmts, rmts_idx;
431 uword *feip = 0, *dpid, *rmts_stored_idxp = 0;
433 u8 type, is_src_dst = 0;
436 clib_memset (a, 0, sizeof (*a));
438 /* remove entry if it already exists */
439 feip = hash_get (lcm->fwd_entry_by_mapping_index, dst_map_index);
441 dp_del_fwd_entry (lcm, dst_map_index);
444 * Determine local mapping and eid
446 if (lcm->flags & LISP_FLAG_PITR_MODE)
448 if (lcm->pitr_map_index != ~0)
449 lcl_map = pool_elt_at_index (lcm->mapping_pool, lcm->pitr_map_index);
452 clib_warning ("no PITR mapping configured!");
457 lcl_map = pool_elt_at_index (lcm->mapping_pool, src_map_index);
458 lcl_eid = &lcl_map->eid;
461 * Determine remote mapping and eid
463 rmt_map = pool_elt_at_index (lcm->mapping_pool, dst_map_index);
464 rmt_eid = &rmt_map->eid;
467 * Build and insert data plane forwarding entry
471 if (MR_MODE_SRC_DST == lcm->map_request_mode)
473 if (GID_ADDR_SRC_DST == gid_address_type (rmt_eid))
475 gid_address_sd_to_flat (&a->rmt_eid, rmt_eid,
476 &gid_address_sd_dst (rmt_eid));
477 gid_address_sd_to_flat (&a->lcl_eid, rmt_eid,
478 &gid_address_sd_src (rmt_eid));
482 gid_address_copy (&a->rmt_eid, rmt_eid);
483 gid_address_copy (&a->lcl_eid, lcl_eid);
488 gid_address_copy (&a->rmt_eid, rmt_eid);
490 a->vni = gid_address_vni (&a->rmt_eid);
491 a->is_src_dst = is_src_dst;
493 /* get vrf or bd_index associated to vni */
494 type = gid_address_type (&a->rmt_eid);
495 if (GID_ADDR_IP_PREFIX == type)
497 dpid = hash_get (lcm->table_id_by_vni, a->vni);
500 clib_warning ("vni %d not associated to a vrf!", a->vni);
503 a->table_id = dpid[0];
505 else if (GID_ADDR_MAC == type)
507 dpid = hash_get (lcm->bd_id_by_vni, a->vni);
510 clib_warning ("vni %d not associated to a bridge domain !", a->vni);
516 /* find best locator pair that 1) verifies LISP policy 2) are connected */
517 rv = get_locator_pairs (lcm, lcl_map, rmt_map, &a->locator_pairs);
519 /* Either rmt mapping is negative or we can't find underlay path.
520 * Try again with petr if configured */
521 if (rv == 0 && (lcm->flags & LISP_FLAG_USE_PETR))
523 rmt_map = lisp_get_petr_mapping (lcm);
524 rv = get_locator_pairs (lcm, lcl_map, rmt_map, &a->locator_pairs);
531 a->action = rmt_map->action;
534 rv = vnet_lisp_gpe_add_del_fwd_entry (a, &sw_if_index);
537 if (a->locator_pairs)
538 vec_free (a->locator_pairs);
542 /* add tunnel to fwd entry table */
543 pool_get (lcm->fwd_entry_pool, fe);
544 vnet_lisp_gpe_add_fwd_counters (a, fe - lcm->fwd_entry_pool);
546 fe->locator_pairs = a->locator_pairs;
547 gid_address_copy (&fe->reid, &a->rmt_eid);
550 gid_address_copy (&fe->leid, &a->lcl_eid);
552 gid_address_copy (&fe->leid, lcl_eid);
554 fe->is_src_dst = is_src_dst;
555 hash_set (lcm->fwd_entry_by_mapping_index, dst_map_index,
556 fe - lcm->fwd_entry_pool);
558 /* Add rmt mapping to the vector of adjacent mappings to lcl mapping */
560 hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, src_map_index);
561 if (!rmts_stored_idxp)
563 pool_get (lcm->lcl_to_rmt_adjacencies, rmts);
564 clib_memset (rmts, 0, sizeof (*rmts));
565 rmts_idx = rmts - lcm->lcl_to_rmt_adjacencies;
566 hash_set (lcm->lcl_to_rmt_adjs_by_lcl_idx, src_map_index, rmts_idx);
570 rmts_idx = (u32) (*rmts_stored_idxp);
571 rmts = pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idx);
573 vec_add1 (rmts[0], dst_map_index);
580 } fwd_entry_mt_arg_t;
583 dp_add_fwd_entry_thread_fn (void *arg)
585 fwd_entry_mt_arg_t *a = arg;
586 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
587 dp_add_fwd_entry (lcm, a->si, a->di);
592 dp_add_fwd_entry_from_mt (u32 si, u32 di)
594 fwd_entry_mt_arg_t a;
596 clib_memset (&a, 0, sizeof (a));
600 vl_api_rpc_call_main_thread (dp_add_fwd_entry_thread_fn,
601 (u8 *) & a, sizeof (a));
606 * Returns vector of adjacencies.
608 * The caller must free the vector returned by this function.
610 * @param vni virtual network identifier
611 * @return vector of adjacencies
614 vnet_lisp_adjacencies_get_by_vni (u32 vni)
616 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
618 lisp_adjacency_t *adjs = 0, adj;
621 pool_foreach(fwd, lcm->fwd_entry_pool,
623 if (gid_address_vni (&fwd->reid) != vni)
626 gid_address_copy (&adj.reid, &fwd->reid);
627 gid_address_copy (&adj.leid, &fwd->leid);
628 vec_add1 (adjs, adj);
636 get_map_server (ip_address_t * a)
638 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
641 vec_foreach (m, lcm->map_servers)
643 if (!ip_address_cmp (&m->address, a))
652 get_map_resolver (ip_address_t * a)
654 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
657 vec_foreach (m, lcm->map_resolvers)
659 if (!ip_address_cmp (&m->address, a))
668 vnet_lisp_add_del_map_server (ip_address_t * addr, u8 is_add)
671 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
672 lisp_msmr_t _ms, *ms = &_ms;
674 if (vnet_lisp_enable_disable_status () == 0)
676 clib_warning ("LISP is disabled!");
677 return VNET_API_ERROR_LISP_DISABLED;
682 if (get_map_server (addr))
684 clib_warning ("map-server %U already exists!", format_ip_address,
689 clib_memset (ms, 0, sizeof (*ms));
690 ip_address_copy (&ms->address, addr);
691 vec_add1 (lcm->map_servers, ms[0]);
693 if (vec_len (lcm->map_servers) == 1)
694 lcm->do_map_server_election = 1;
698 for (i = 0; i < vec_len (lcm->map_servers); i++)
700 ms = vec_elt_at_index (lcm->map_servers, i);
701 if (!ip_address_cmp (&ms->address, addr))
703 if (!ip_address_cmp (&ms->address, &lcm->active_map_server))
704 lcm->do_map_server_election = 1;
706 vec_del1 (lcm->map_servers, i);
716 * Add/remove mapping to/from map-cache. Overwriting not allowed.
719 vnet_lisp_map_cache_add_del (vnet_lisp_add_del_mapping_args_t * a,
720 u32 * map_index_result)
722 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
723 u32 mi, *map_indexp, map_index, i;
724 u32 **rmts = 0, *remote_idxp, rmts_itr, remote_idx;
726 mapping_t *m, *old_map;
729 if (gid_address_type (&a->eid) == GID_ADDR_NSH)
731 if (gid_address_vni (&a->eid) != 0)
733 clib_warning ("Supported only default VNI for NSH!");
734 return VNET_API_ERROR_INVALID_ARGUMENT;
736 if (gid_address_nsh_spi (&a->eid) > MAX_VALUE_U24)
738 clib_warning ("SPI is greater than 24bit!");
739 return VNET_API_ERROR_INVALID_ARGUMENT;
743 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &a->eid);
744 old_map = mi != ~0 ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
747 /* TODO check if overwriting and take appropriate actions */
748 if (mi != GID_LOOKUP_MISS && !gid_address_cmp (&old_map->eid, &a->eid))
750 clib_warning ("eid %U found in the eid-table", format_gid_address,
752 return VNET_API_ERROR_VALUE_EXIST;
755 pool_get (lcm->mapping_pool, m);
756 gid_address_copy (&m->eid, &a->eid);
757 m->locator_set_index = a->locator_set_index;
759 m->action = a->action;
761 m->is_static = a->is_static;
762 m->key = vec_dup (a->key);
763 m->key_id = a->key_id;
764 m->authoritative = a->authoritative;
766 map_index = m - lcm->mapping_pool;
767 gid_dictionary_add_del (&lcm->mapping_index_by_gid, &a->eid, map_index,
770 if (pool_is_free_index (lcm->locator_set_pool, a->locator_set_index))
772 clib_warning ("Locator set with index %d doesn't exist",
773 a->locator_set_index);
774 return VNET_API_ERROR_INVALID_VALUE;
777 /* add eid to list of eids supported by locator-set */
778 vec_validate (lcm->locator_set_to_eids, a->locator_set_index);
779 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids,
780 a->locator_set_index);
781 vec_add1 (eid_indexes[0], map_index);
786 vec_add1 (lcm->local_mappings_indexes, map_index);
788 map_index_result[0] = map_index;
792 if (mi == GID_LOOKUP_MISS)
794 clib_warning ("eid %U not found in the eid-table",
795 format_gid_address, &a->eid);
796 return VNET_API_ERROR_INVALID_VALUE;
799 /* clear locator-set to eids binding */
800 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids,
801 a->locator_set_index);
802 for (i = 0; i < vec_len (eid_indexes[0]); i++)
804 map_indexp = vec_elt_at_index (eid_indexes[0], i);
805 if (map_indexp[0] == mi)
808 vec_del1 (eid_indexes[0], i);
810 /* remove local mark if needed */
811 m = pool_elt_at_index (lcm->mapping_pool, mi);
814 /* Remove adjacencies associated with the local mapping */
815 rmts_idxp = hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, mi);
819 pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idxp[0]);
820 vec_foreach (remote_idxp, rmts[0])
822 dp_del_fwd_entry (lcm, remote_idxp[0]);
825 pool_put (lcm->lcl_to_rmt_adjacencies, rmts);
826 hash_unset (lcm->lcl_to_rmt_adjs_by_lcl_idx, mi);
830 for (k = 0; k < vec_len (lcm->local_mappings_indexes); k++)
832 lm_indexp = vec_elt_at_index (lcm->local_mappings_indexes, k);
833 if (lm_indexp[0] == mi)
836 vec_del1 (lcm->local_mappings_indexes, k);
840 /* Remove remote (if present) from the vectors of lcl-to-rmts
841 * TODO: Address this in a more efficient way.
844 pool_foreach (rmts, lcm->lcl_to_rmt_adjacencies,
846 vec_foreach_index (rmts_itr, rmts[0])
848 remote_idx = vec_elt (rmts[0], rmts_itr);
849 if (mi == remote_idx)
851 vec_del1 (rmts[0], rmts_itr);
859 /* remove mapping from dictionary */
860 gid_dictionary_add_del (&lcm->mapping_index_by_gid, &a->eid, 0, 0);
861 gid_address_free (&m->eid);
862 pool_put_index (lcm->mapping_pool, mi);
869 * Add/update/delete mapping to/in/from map-cache.
872 vnet_lisp_add_del_local_mapping (vnet_lisp_add_del_mapping_args_t * a,
873 u32 * map_index_result)
879 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
881 if (vnet_lisp_enable_disable_status () == 0)
883 clib_warning ("LISP is disabled!");
884 return VNET_API_ERROR_LISP_DISABLED;
887 vni = gid_address_vni (&a->eid);
888 type = gid_address_type (&a->eid);
889 if (GID_ADDR_IP_PREFIX == type)
890 dp_table = hash_get (lcm->table_id_by_vni, vni);
891 else if (GID_ADDR_MAC == type)
892 dp_table = hash_get (lcm->bd_id_by_vni, vni);
894 if (!dp_table && GID_ADDR_NSH != type)
896 clib_warning ("vni %d not associated to a %s!", vni,
897 GID_ADDR_IP_PREFIX == type ? "vrf" : "bd");
898 return VNET_API_ERROR_INVALID_VALUE;
901 /* store/remove mapping from map-cache */
902 return vnet_lisp_map_cache_add_del (a, map_index_result);
906 add_l2_arp_bd (BVT (clib_bihash_kv) * kvp, void *arg)
909 u32 version = (u32) kvp->key[0];
910 if (AF_IP6 == version)
911 return (BIHASH_WALK_CONTINUE);
913 u32 bd = (u32) (kvp->key[0] >> 32);
914 hash_set (ht[0], bd, 0);
915 return (BIHASH_WALK_CONTINUE);
919 vnet_lisp_l2_arp_bds_get (void)
921 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
924 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
925 add_l2_arp_bd, &bds);
930 add_ndp_bd (BVT (clib_bihash_kv) * kvp, void *arg)
933 u32 version = (u32) kvp->key[0];
934 if (AF_IP4 == version)
935 return (BIHASH_WALK_CONTINUE);
937 u32 bd = (u32) (kvp->key[0] >> 32);
938 hash_set (ht[0], bd, 0);
939 return (BIHASH_WALK_CONTINUE);
943 vnet_lisp_ndp_bds_get (void)
945 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
948 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
957 } lisp_add_l2_arp_ndp_args_t;
960 add_l2_arp_entry (BVT (clib_bihash_kv) * kvp, void *arg)
962 lisp_add_l2_arp_ndp_args_t *a = arg;
963 lisp_api_l2_arp_entry_t **vector = a->vector, e;
965 u32 version = (u32) kvp->key[0];
966 if (AF_IP6 == version)
967 return (BIHASH_WALK_CONTINUE);
969 u32 bd = (u32) (kvp->key[0] >> 32);
973 mac_copy (e.mac, (void *) &kvp->value);
974 e.ip4 = (u32) kvp->key[1];
975 vec_add1 (vector[0], e);
977 return (BIHASH_WALK_CONTINUE);
980 lisp_api_l2_arp_entry_t *
981 vnet_lisp_l2_arp_entries_get_by_bd (u32 bd)
983 lisp_api_l2_arp_entry_t *entries = 0;
984 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
985 lisp_add_l2_arp_ndp_args_t a;
990 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
991 add_l2_arp_entry, &a);
996 add_ndp_entry (BVT (clib_bihash_kv) * kvp, void *arg)
998 lisp_add_l2_arp_ndp_args_t *a = arg;
999 lisp_api_ndp_entry_t **vector = a->vector, e;
1001 u32 version = (u32) kvp->key[0];
1002 if (AF_IP4 == version)
1003 return (BIHASH_WALK_CONTINUE);
1005 u32 bd = (u32) (kvp->key[0] >> 32);
1009 mac_copy (e.mac, (void *) &kvp->value);
1010 clib_memcpy (e.ip6, &kvp->key[1], 16);
1011 vec_add1 (vector[0], e);
1013 return (BIHASH_WALK_CONTINUE);
1016 lisp_api_ndp_entry_t *
1017 vnet_lisp_ndp_entries_get_by_bd (u32 bd)
1019 lisp_api_ndp_entry_t *entries = 0;
1020 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1021 lisp_add_l2_arp_ndp_args_t a;
1023 a.vector = &entries;
1026 gid_dict_foreach_l2_arp_ndp_entry (&lcm->mapping_index_by_gid,
1032 vnet_lisp_add_del_l2_arp_ndp_entry (gid_address_t * key, u8 * mac, u8 is_add)
1034 if (vnet_lisp_enable_disable_status () == 0)
1036 clib_warning ("LISP is disabled!");
1037 return VNET_API_ERROR_LISP_DISABLED;
1040 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1043 u64 res = gid_dictionary_lookup (&lcm->mapping_index_by_gid, key);
1046 if (res != GID_LOOKUP_MISS_L2)
1048 clib_warning ("Entry %U exists in DB!", format_gid_address, key);
1049 return VNET_API_ERROR_ENTRY_ALREADY_EXISTS;
1051 u64 val = mac_to_u64 (mac);
1052 gid_dictionary_add_del (&lcm->mapping_index_by_gid, key, val,
1057 if (res == GID_LOOKUP_MISS_L2)
1059 clib_warning ("ONE entry %U not found - cannot delete!",
1060 format_gid_address, key);
1063 gid_dictionary_add_del (&lcm->mapping_index_by_gid, key, 0,
1071 vnet_lisp_eid_table_map (u32 vni, u32 dp_id, u8 is_l2, u8 is_add)
1073 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1074 uword *dp_idp, *vnip, **dp_table_by_vni, **vni_by_dp_table;
1076 if (vnet_lisp_enable_disable_status () == 0)
1078 clib_warning ("LISP is disabled!");
1079 return VNET_API_ERROR_LISP_DISABLED;
1082 dp_table_by_vni = is_l2 ? &lcm->bd_id_by_vni : &lcm->table_id_by_vni;
1083 vni_by_dp_table = is_l2 ? &lcm->vni_by_bd_id : &lcm->vni_by_table_id;
1085 if (!is_l2 && (vni == 0 || dp_id == 0))
1087 clib_warning ("can't add/del default vni-vrf mapping!");
1091 dp_idp = hash_get (dp_table_by_vni[0], vni);
1092 vnip = hash_get (vni_by_dp_table[0], dp_id);
1098 clib_warning ("vni %d or vrf %d already used in vrf/vni "
1099 "mapping!", vni, dp_id);
1102 hash_set (dp_table_by_vni[0], vni, dp_id);
1103 hash_set (vni_by_dp_table[0], dp_id, vni);
1105 /* create dp iface */
1106 dp_add_del_iface (lcm, vni, is_l2, 1 /* is_add */ ,
1107 1 /* with_default_route */ );
1111 if (!dp_idp || !vnip)
1113 clib_warning ("vni %d or vrf %d not used in any vrf/vni! "
1114 "mapping!", vni, dp_id);
1117 /* remove dp iface */
1118 dp_add_del_iface (lcm, vni, is_l2, 0 /* is_add */ , 0 /* unused */ );
1120 hash_unset (dp_table_by_vni[0], vni);
1121 hash_unset (vni_by_dp_table[0], dp_id);
1127 /* return 0 if the two locator sets are identical 1 otherwise */
1129 compare_locators (lisp_cp_main_t * lcm, u32 * old_ls_indexes,
1130 locator_t * new_locators)
1133 locator_t *old_loc, *new_loc;
1135 if (vec_len (old_ls_indexes) != vec_len (new_locators))
1138 for (i = 0; i < vec_len (new_locators); i++)
1140 old_li = vec_elt (old_ls_indexes, i);
1141 old_loc = pool_elt_at_index (lcm->locator_pool, old_li);
1143 new_loc = vec_elt_at_index (new_locators, i);
1145 if (locator_cmp (old_loc, new_loc))
1155 gid_address_t *eids_to_be_deleted;
1156 } remove_mapping_args_t;
1159 * Callback invoked when a sub-prefix is found
1162 remove_mapping_if_needed (u32 mi, void *arg)
1165 remove_mapping_args_t *a = arg;
1166 lisp_cp_main_t *lcm = a->lcm;
1170 m = pool_elt_at_index (lcm->mapping_pool, mi);
1174 ls = pool_elt_at_index (lcm->locator_set_pool, m->locator_set_index);
1178 if (0 != vec_len (ls->locator_indices))
1183 if (0 == vec_len (ls->locator_indices))
1188 vec_add1 (a->eids_to_be_deleted, m->eid);
1192 * This function searches map cache and looks for IP prefixes that are subset
1193 * of the provided one. If such prefix is found depending on 'is_negative'
1196 * 1) if is_negative is true and found prefix points to positive mapping,
1197 * then the mapping is removed
1198 * 2) if is_negative is false and found prefix points to negative mapping,
1199 * then the mapping is removed
1202 remove_overlapping_sub_prefixes (lisp_cp_main_t * lcm, gid_address_t * eid,
1206 remove_mapping_args_t a;
1208 clib_memset (&a, 0, sizeof (a));
1210 /* do this only in src/dst mode ... */
1211 if (MR_MODE_SRC_DST != lcm->map_request_mode)
1214 /* ... and only for IP prefix */
1215 if (GID_ADDR_SRC_DST != gid_address_type (eid)
1216 || (FID_ADDR_IP_PREF != gid_address_sd_dst_type (eid)))
1219 a.is_negative = is_negative;
1222 gid_dict_foreach_subprefix (&lcm->mapping_index_by_gid, eid,
1223 remove_mapping_if_needed, &a);
1225 vec_foreach (e, a.eids_to_be_deleted)
1227 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
1229 clib_memset (adj_args, 0, sizeof (adj_args[0]));
1230 gid_address_copy (&adj_args->reid, e);
1231 adj_args->is_add = 0;
1232 if (vnet_lisp_add_del_adjacency (adj_args))
1233 clib_warning ("failed to del adjacency!");
1235 vnet_lisp_del_mapping (e, NULL);
1238 vec_free (a.eids_to_be_deleted);
1242 mapping_delete_timer (lisp_cp_main_t * lcm, u32 mi)
1244 timing_wheel_delete (&lcm->wheel, mi);
1248 is_local_ip (lisp_cp_main_t * lcm, ip_address_t * addr)
1250 fib_node_index_t fei;
1251 fib_prefix_t prefix;
1252 fib_entry_flag_t flags;
1254 ip_address_to_fib_prefix (addr, &prefix);
1256 fei = fib_table_lookup (0, &prefix);
1257 flags = fib_entry_get_flags (fei);
1258 return (FIB_ENTRY_FLAG_LOCAL & flags);
1262 * Adds/updates mapping. Does not program forwarding.
1264 * @param a parameters of the new mapping
1265 * @param rlocs vector of remote locators
1266 * @param res_map_index index of the newly created mapping
1267 * @param locators_changed indicator if locators were updated in the mapping
1268 * @return return code
1271 vnet_lisp_add_mapping (vnet_lisp_add_del_mapping_args_t * a,
1273 u32 * res_map_index, u8 * is_updated)
1275 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1276 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1277 u32 mi, ls_index = 0, dst_map_index;
1281 if (vnet_lisp_enable_disable_status () == 0)
1283 clib_warning ("LISP is disabled!");
1284 return VNET_API_ERROR_LISP_DISABLED;
1288 res_map_index[0] = ~0;
1292 clib_memset (ls_args, 0, sizeof (ls_args[0]));
1294 ls_args->locators = rlocs;
1295 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &a->eid);
1296 old_map = ((u32) ~ 0 != mi) ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
1298 /* check if none of the locators match locally configured address */
1299 vec_foreach (loc, rlocs)
1301 ip_prefix_t *p = &gid_address_ippref (&loc->address);
1302 if (is_local_ip (lcm, &ip_prefix_addr (p)))
1304 clib_warning ("RLOC %U matches a local address!",
1305 format_gid_address, &loc->address);
1306 return VNET_API_ERROR_LISP_RLOC_LOCAL;
1310 /* overwrite: if mapping already exists, decide if locators should be
1311 * updated and be done */
1312 if (old_map && gid_address_cmp (&old_map->eid, &a->eid) == 0)
1314 if (!a->is_static && (old_map->is_static || old_map->local))
1316 /* do not overwrite local or static remote mappings */
1317 clib_warning ("mapping %U rejected due to collision with local "
1318 "or static remote mapping!", format_gid_address,
1323 locator_set_t *old_ls;
1325 /* update mapping attributes */
1326 old_map->action = a->action;
1327 if (old_map->action != a->action && NULL != is_updated)
1330 old_map->authoritative = a->authoritative;
1331 old_map->ttl = a->ttl;
1333 old_ls = pool_elt_at_index (lcm->locator_set_pool,
1334 old_map->locator_set_index);
1335 if (compare_locators (lcm, old_ls->locator_indices, ls_args->locators))
1337 /* set locator-set index to overwrite */
1338 ls_args->is_add = 1;
1339 ls_args->index = old_map->locator_set_index;
1340 vnet_lisp_add_del_locator_set (ls_args, 0);
1345 res_map_index[0] = mi;
1352 remove_overlapping_sub_prefixes (lcm, &a->eid, 0 == ls_args->locators);
1354 ls_args->is_add = 1;
1355 ls_args->index = ~0;
1357 vnet_lisp_add_del_locator_set (ls_args, &ls_index);
1361 a->locator_set_index = ls_index;
1362 vnet_lisp_map_cache_add_del (a, &dst_map_index);
1365 res_map_index[0] = dst_map_index;
1373 * Removes a mapping. Does not program forwarding.
1375 * @param eid end-host identifier
1376 * @param res_map_index index of the removed mapping
1377 * @return return code
1380 vnet_lisp_del_mapping (gid_address_t * eid, u32 * res_map_index)
1382 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1383 vnet_lisp_add_del_mapping_args_t _m_args, *m_args = &_m_args;
1384 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1388 clib_memset (ls_args, 0, sizeof (ls_args[0]));
1389 clib_memset (m_args, 0, sizeof (m_args[0]));
1391 res_map_index[0] = ~0;
1393 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, eid);
1394 old_map = ((u32) ~ 0 != mi) ? pool_elt_at_index (lcm->mapping_pool, mi) : 0;
1396 if (old_map == 0 || gid_address_cmp (&old_map->eid, eid) != 0)
1398 clib_warning ("cannot delete mapping for eid %U",
1399 format_gid_address, eid);
1404 gid_address_copy (&m_args->eid, eid);
1405 m_args->locator_set_index = old_map->locator_set_index;
1407 ls_args->is_add = 0;
1408 ls_args->index = old_map->locator_set_index;
1410 /* delete timer associated to the mapping if any */
1411 if (old_map->timer_set)
1412 mapping_delete_timer (lcm, mi);
1414 /* delete locator set */
1415 vnet_lisp_add_del_locator_set (ls_args, 0);
1417 /* delete mapping associated from map-cache */
1418 vnet_lisp_map_cache_add_del (m_args, 0);
1420 /* return old mapping index */
1422 res_map_index[0] = mi;
1429 vnet_lisp_clear_all_remote_adjacencies (void)
1432 u32 mi, *map_indices = 0, *map_indexp;
1433 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1434 vnet_lisp_add_del_mapping_args_t _dm_args, *dm_args = &_dm_args;
1435 vnet_lisp_add_del_locator_set_args_t _ls, *ls = &_ls;
1438 pool_foreach_index (mi, lcm->mapping_pool,
1440 vec_add1 (map_indices, mi);
1444 vec_foreach (map_indexp, map_indices)
1446 mapping_t *map = pool_elt_at_index (lcm->mapping_pool, map_indexp[0]);
1449 dp_del_fwd_entry (lcm, map_indexp[0]);
1451 dm_args->is_add = 0;
1452 gid_address_copy (&dm_args->eid, &map->eid);
1453 dm_args->locator_set_index = map->locator_set_index;
1455 /* delete mapping associated to fwd entry */
1456 vnet_lisp_map_cache_add_del (dm_args, 0);
1460 ls->index = map->locator_set_index;
1461 /* delete locator set */
1462 rv = vnet_lisp_add_del_locator_set (ls, 0);
1470 vec_free (map_indices);
1475 * Adds adjacency or removes forwarding entry associated to remote mapping.
1476 * Note that adjacencies are not stored, they only result in forwarding entries
1480 vnet_lisp_add_del_adjacency (vnet_lisp_add_del_adjacency_args_t * a)
1482 lisp_cp_main_t *lcm = &lisp_control_main;
1483 u32 local_mi, remote_mi = ~0;
1485 if (vnet_lisp_enable_disable_status () == 0)
1487 clib_warning ("LISP is disabled!");
1488 return VNET_API_ERROR_LISP_DISABLED;
1491 remote_mi = gid_dictionary_sd_lookup (&lcm->mapping_index_by_gid,
1492 &a->reid, &a->leid);
1493 if (GID_LOOKUP_MISS == remote_mi)
1495 clib_warning ("Remote eid %U not found. Cannot add adjacency!",
1496 format_gid_address, &a->reid);
1503 /* check if source eid has an associated mapping. If pitr mode is on,
1504 * just use the pitr's mapping */
1505 if (lcm->flags & LISP_FLAG_PITR_MODE)
1507 if (lcm->pitr_map_index != ~0)
1509 local_mi = lcm->pitr_map_index;
1513 /* PITR mode is on, but no mapping is configured */
1519 if (gid_address_type (&a->reid) == GID_ADDR_NSH)
1521 if (lcm->nsh_map_index == ~0)
1522 local_mi = GID_LOOKUP_MISS;
1524 local_mi = lcm->nsh_map_index;
1528 local_mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid,
1533 if (GID_LOOKUP_MISS == local_mi)
1535 clib_warning ("Local eid %U not found. Cannot add adjacency!",
1536 format_gid_address, &a->leid);
1541 /* update forwarding */
1542 dp_add_fwd_entry (lcm, local_mi, remote_mi);
1545 dp_del_fwd_entry (lcm, remote_mi);
1551 vnet_lisp_set_map_request_mode (u8 mode)
1553 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1555 if (vnet_lisp_enable_disable_status () == 0)
1557 clib_warning ("LISP is disabled!");
1558 return VNET_API_ERROR_LISP_DISABLED;
1561 if (mode >= _MR_MODE_MAX)
1563 clib_warning ("Invalid LISP map request mode %d!", mode);
1564 return VNET_API_ERROR_INVALID_ARGUMENT;
1567 lcm->map_request_mode = mode;
1572 vnet_lisp_nsh_set_locator_set (u8 * locator_set_name, u8 is_add)
1574 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1575 lisp_gpe_main_t *lgm = vnet_lisp_gpe_get_main ();
1576 u32 locator_set_index = ~0;
1580 if (vnet_lisp_enable_disable_status () == 0)
1582 clib_warning ("LISP is disabled!");
1583 return VNET_API_ERROR_LISP_DISABLED;
1588 if (lcm->nsh_map_index == (u32) ~ 0)
1590 p = hash_get_mem (lcm->locator_set_index_by_name, locator_set_name);
1593 clib_warning ("locator-set %v doesn't exist", locator_set_name);
1596 locator_set_index = p[0];
1598 pool_get (lcm->mapping_pool, m);
1599 clib_memset (m, 0, sizeof *m);
1600 m->locator_set_index = locator_set_index;
1603 lcm->nsh_map_index = m - lcm->mapping_pool;
1605 if (~0 == vnet_lisp_gpe_add_nsh_iface (lgm))
1611 if (lcm->nsh_map_index != (u32) ~ 0)
1613 /* remove NSH mapping */
1614 pool_put_index (lcm->mapping_pool, lcm->nsh_map_index);
1615 lcm->nsh_map_index = ~0;
1616 vnet_lisp_gpe_del_nsh_iface (lgm);
1623 vnet_lisp_pitr_set_locator_set (u8 * locator_set_name, u8 is_add)
1625 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1626 u32 locator_set_index = ~0;
1630 if (vnet_lisp_enable_disable_status () == 0)
1632 clib_warning ("LISP is disabled!");
1633 return VNET_API_ERROR_LISP_DISABLED;
1636 p = hash_get_mem (lcm->locator_set_index_by_name, locator_set_name);
1639 clib_warning ("locator-set %v doesn't exist", locator_set_name);
1642 locator_set_index = p[0];
1646 pool_get (lcm->mapping_pool, m);
1647 m->locator_set_index = locator_set_index;
1650 lcm->pitr_map_index = m - lcm->mapping_pool;
1654 /* remove pitr mapping */
1655 pool_put_index (lcm->mapping_pool, lcm->pitr_map_index);
1656 lcm->pitr_map_index = ~0;
1662 vnet_lisp_map_register_fallback_threshold_set (u32 value)
1664 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1667 return VNET_API_ERROR_INVALID_ARGUMENT;
1670 lcm->max_expired_map_registers = value;
1675 vnet_lisp_map_register_fallback_threshold_get (void)
1677 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1678 return lcm->max_expired_map_registers;
1682 * Configure Proxy-ETR
1684 * @param ip PETR's IP address
1685 * @param is_add Flag that indicates if this is an addition or removal
1687 * return 0 on success
1690 vnet_lisp_use_petr (ip_address_t * ip, u8 is_add)
1692 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1695 vnet_lisp_add_del_locator_set_args_t _ls_args, *ls_args = &_ls_args;
1698 if (vnet_lisp_enable_disable_status () == 0)
1700 clib_warning ("LISP is disabled!");
1701 return VNET_API_ERROR_LISP_DISABLED;
1704 clib_memset (ls_args, 0, sizeof (*ls_args));
1708 /* Create dummy petr locator-set */
1709 clib_memset (&loc, 0, sizeof (loc));
1710 gid_address_from_ip (&loc.address, ip);
1712 loc.state = loc.weight = 1;
1715 ls_args->is_add = 1;
1716 ls_args->index = ~0;
1717 vec_add1 (ls_args->locators, loc);
1718 vnet_lisp_add_del_locator_set (ls_args, &ls_index);
1720 /* Add petr mapping */
1721 pool_get (lcm->mapping_pool, m);
1722 m->locator_set_index = ls_index;
1723 lcm->petr_map_index = m - lcm->mapping_pool;
1725 /* Enable use-petr */
1726 lcm->flags |= LISP_FLAG_USE_PETR;
1730 m = pool_elt_at_index (lcm->mapping_pool, lcm->petr_map_index);
1732 /* Remove petr locator */
1733 ls_args->is_add = 0;
1734 ls_args->index = m->locator_set_index;
1735 vnet_lisp_add_del_locator_set (ls_args, 0);
1737 /* Remove petr mapping */
1738 pool_put_index (lcm->mapping_pool, lcm->petr_map_index);
1740 /* Disable use-petr */
1741 lcm->flags &= ~LISP_FLAG_USE_PETR;
1742 lcm->petr_map_index = ~0;
1747 /* cleans locator to locator-set data and removes locators not part of
1748 * any locator-set */
1750 clean_locator_to_locator_set (lisp_cp_main_t * lcm, u32 lsi)
1752 u32 i, j, *loc_indexp, *ls_indexp, **ls_indexes, *to_be_deleted = 0;
1753 locator_set_t *ls = pool_elt_at_index (lcm->locator_set_pool, lsi);
1754 for (i = 0; i < vec_len (ls->locator_indices); i++)
1756 loc_indexp = vec_elt_at_index (ls->locator_indices, i);
1757 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets,
1759 for (j = 0; j < vec_len (ls_indexes[0]); j++)
1761 ls_indexp = vec_elt_at_index (ls_indexes[0], j);
1762 if (ls_indexp[0] == lsi)
1766 /* delete index for removed locator-set */
1767 vec_del1 (ls_indexes[0], j);
1769 /* delete locator if it's part of no locator-set */
1770 if (vec_len (ls_indexes[0]) == 0)
1772 pool_put_index (lcm->locator_pool, loc_indexp[0]);
1773 vec_add1 (to_be_deleted, i);
1779 for (i = 0; i < vec_len (to_be_deleted); i++)
1781 loc_indexp = vec_elt_at_index (to_be_deleted, i);
1782 vec_del1 (ls->locator_indices, loc_indexp[0]);
1784 vec_free (to_be_deleted);
1788 static inline uword *
1789 get_locator_set_index (vnet_lisp_add_del_locator_set_args_t * a, uword * p)
1791 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1796 /* find locator-set */
1800 p = hash_get_mem (lcm->locator_set_index_by_name, a->name);
1811 is_locator_in_locator_set (lisp_cp_main_t * lcm, locator_set_t * ls,
1817 ASSERT (ls != NULL);
1818 ASSERT (loc != NULL);
1820 vec_foreach (locit, ls->locator_indices)
1822 itloc = pool_elt_at_index (lcm->locator_pool, locit[0]);
1823 if ((ls->local && itloc->sw_if_index == loc->sw_if_index) ||
1824 (!ls->local && !gid_address_cmp (&itloc->address, &loc->address)))
1826 clib_warning ("Duplicate locator");
1827 return VNET_API_ERROR_VALUE_EXIST;
1835 update_adjacencies_by_map_index (lisp_cp_main_t * lcm,
1836 u32 mapping_index, u8 remove_only)
1840 uword *fei = 0, *rmts_idxp = 0;
1841 u32 **rmts = 0, *remote_idxp = 0, *rmts_copy = 0;
1842 vnet_lisp_add_del_adjacency_args_t _a, *a = &_a;
1843 clib_memset (a, 0, sizeof (*a));
1845 map = pool_elt_at_index (lcm->mapping_pool, mapping_index);
1849 rmts_idxp = hash_get (lcm->lcl_to_rmt_adjs_by_lcl_idx, mapping_index);
1853 pool_elt_at_index (lcm->lcl_to_rmt_adjacencies, rmts_idxp[0]);
1854 rmts_copy = vec_dup (rmts[0]);
1856 vec_foreach (remote_idxp, rmts_copy)
1858 fei = hash_get (lcm->fwd_entry_by_mapping_index, remote_idxp[0]);
1862 fwd = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
1864 gid_address_copy (&a->leid, &fwd->leid);
1865 gid_address_copy (&a->reid, &fwd->reid);
1866 vnet_lisp_add_del_adjacency (a);
1871 vnet_lisp_add_del_adjacency (a);
1874 vec_free (rmts_copy);
1879 fei = hash_get (lcm->fwd_entry_by_mapping_index, mapping_index);
1883 fwd = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
1885 gid_address_copy (&a->leid, &fwd->leid);
1886 gid_address_copy (&a->reid, &fwd->reid);
1887 vnet_lisp_add_del_adjacency (a);
1892 vnet_lisp_add_del_adjacency (a);
1898 update_fwd_entries_by_locator_set (lisp_cp_main_t * lcm,
1899 u32 ls_index, u8 remove_only)
1904 if (vec_len (lcm->locator_set_to_eids) <= ls_index)
1907 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids, ls_index);
1909 for (i = 0; i < vec_len (eid_indexes[0]); i++)
1911 map_indexp = vec_elt_at_index (eid_indexes[0], i);
1912 update_adjacencies_by_map_index (lcm, map_indexp[0], remove_only);
1917 remove_locator_from_locator_set (locator_set_t * ls, u32 * locit,
1918 u32 ls_index, u32 loc_id)
1920 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1921 u32 **ls_indexes = NULL;
1923 ASSERT (ls != NULL);
1924 ASSERT (locit != NULL);
1926 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets, locit[0]);
1927 pool_put_index (lcm->locator_pool, locit[0]);
1928 vec_del1 (ls->locator_indices, loc_id);
1929 vec_del1 (ls_indexes[0], ls_index);
1933 vnet_lisp_add_del_locator (vnet_lisp_add_del_locator_set_args_t * a,
1934 locator_set_t * ls, u32 * ls_result)
1936 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
1937 locator_t *loc = NULL, *itloc = NULL;
1938 uword _p = (u32) ~ 0, *p = &_p;
1939 u32 loc_index = ~0, ls_index = ~0, *locit = NULL, **ls_indexes = NULL;
1945 if (vnet_lisp_enable_disable_status () == 0)
1947 clib_warning ("LISP is disabled!");
1948 return VNET_API_ERROR_LISP_DISABLED;
1951 p = get_locator_set_index (a, p);
1954 clib_warning ("locator-set %v doesn't exist", a->name);
1955 return VNET_API_ERROR_INVALID_ARGUMENT;
1960 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
1963 clib_warning ("locator-set %d to be overwritten doesn't exist!",
1965 return VNET_API_ERROR_INVALID_ARGUMENT;
1972 ls_result[0] = p[0];
1974 /* allocate locators */
1975 vec_foreach (itloc, a->locators)
1977 ret = is_locator_in_locator_set (lcm, ls, itloc);
1983 pool_get (lcm->locator_pool, loc);
1985 loc_index = loc - lcm->locator_pool;
1987 vec_add1 (ls->locator_indices, loc_index);
1989 vec_validate (lcm->locator_to_locator_sets, loc_index);
1990 ls_indexes = vec_elt_at_index (lcm->locator_to_locator_sets,
1992 vec_add1 (ls_indexes[0], p[0]);
2000 vec_foreach (itloc, a->locators)
2004 vec_foreach (locit, ls->locator_indices)
2006 loc = pool_elt_at_index (lcm->locator_pool, locit[0]);
2008 if (loc->local && loc->sw_if_index == itloc->sw_if_index)
2011 remove_locator_from_locator_set (ls, locit, ls_index, loc_id);
2013 else if (0 == loc->local &&
2014 !gid_address_cmp (&loc->address, &itloc->address))
2017 remove_locator_from_locator_set (ls, locit, ls_index, loc_id);
2022 /* update fwd entries using this locator in DP */
2023 update_fwd_entries_by_locator_set (lcm, ls_index,
2024 vec_len (ls->locator_indices)
2037 vnet_lisp_add_del_locator_set (vnet_lisp_add_del_locator_set_args_t * a,
2040 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2042 uword _p = (u32) ~ 0, *p = &_p;
2047 if (vnet_lisp_enable_disable_status () == 0)
2049 clib_warning ("LISP is disabled!");
2050 return VNET_API_ERROR_LISP_DISABLED;
2055 p = get_locator_set_index (a, p);
2058 if (p && p[0] != (u32) ~ 0)
2060 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
2063 clib_warning ("locator-set %d to be overwritten doesn't exist!",
2068 /* clean locator to locator-set vectors and remove locators if
2069 * they're not part of another locator-set */
2070 clean_locator_to_locator_set (lcm, p[0]);
2072 /* remove locator indices from locator set */
2073 vec_free (ls->locator_indices);
2078 ls_result[0] = p[0];
2080 /* new locator-set */
2083 pool_get (lcm->locator_set_pool, ls);
2084 clib_memset (ls, 0, sizeof (*ls));
2085 ls_index = ls - lcm->locator_set_pool;
2089 ls->name = vec_dup (a->name);
2091 if (!lcm->locator_set_index_by_name)
2092 lcm->locator_set_index_by_name = hash_create_vec (
2100 hash_set_mem (lcm->locator_set_index_by_name, ls->name,
2103 /* mark as local locator-set */
2104 vec_add1 (lcm->local_locator_set_indexes, ls_index);
2106 ls->local = a->local;
2108 ls_result[0] = ls_index;
2111 ret = vnet_lisp_add_del_locator (a, ls, NULL);
2119 p = get_locator_set_index (a, p);
2122 clib_warning ("locator-set %v doesn't exists", a->name);
2126 ls = pool_elt_at_index (lcm->locator_set_pool, p[0]);
2129 clib_warning ("locator-set with index %d doesn't exists", p[0]);
2133 if (lcm->mreq_itr_rlocs == p[0])
2135 clib_warning ("Can't delete the locator-set used to constrain "
2136 "the itr-rlocs in map-requests!");
2140 if (vec_len (lcm->locator_set_to_eids) != 0)
2142 eid_indexes = vec_elt_at_index (lcm->locator_set_to_eids, p[0]);
2143 if (vec_len (eid_indexes[0]) != 0)
2146 ("Can't delete a locator that supports a mapping!");
2151 /* clean locator to locator-sets data */
2152 clean_locator_to_locator_set (lcm, p[0]);
2158 vec_foreach_index (it, lcm->local_locator_set_indexes)
2160 lsi = vec_elt (lcm->local_locator_set_indexes, it);
2163 vec_del1 (lcm->local_locator_set_indexes, it);
2167 hash_unset_mem (lcm->locator_set_index_by_name, ls->name);
2169 vec_free (ls->name);
2170 vec_free (ls->locator_indices);
2171 pool_put (lcm->locator_set_pool, ls);
2177 vnet_lisp_rloc_probe_enable_disable (u8 is_enable)
2179 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2181 lcm->rloc_probing = is_enable;
2186 vnet_lisp_map_register_enable_disable (u8 is_enable)
2188 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2190 lcm->map_registering = is_enable;
2195 lisp_cp_register_dst_port (vlib_main_t * vm)
2197 udp_register_dst_port (vm, UDP_DST_PORT_lisp_cp,
2198 lisp_cp_input_node.index, 1 /* is_ip4 */ );
2199 udp_register_dst_port (vm, UDP_DST_PORT_lisp_cp6,
2200 lisp_cp_input_node.index, 0 /* is_ip4 */ );
2204 lisp_cp_unregister_dst_port (vlib_main_t * vm)
2206 udp_unregister_dst_port (vm, UDP_DST_PORT_lisp_cp, 0 /* is_ip4 */ );
2207 udp_unregister_dst_port (vm, UDP_DST_PORT_lisp_cp6, 1 /* is_ip4 */ );
2211 * lisp_cp_enable_l2_l3_ifaces
2213 * Enable all l2 and l3 ifaces
2216 lisp_cp_enable_l2_l3_ifaces (lisp_cp_main_t * lcm, u8 with_default_route)
2221 hash_foreach(vni, dp_table, lcm->table_id_by_vni, ({
2222 dp_add_del_iface(lcm, vni, /* is_l2 */ 0, /* is_add */1,
2223 with_default_route);
2225 hash_foreach(vni, dp_table, lcm->bd_id_by_vni, ({
2226 dp_add_del_iface(lcm, vni, /* is_l2 */ 1, 1,
2227 with_default_route);
2233 lisp_cp_disable_l2_l3_ifaces (lisp_cp_main_t * lcm)
2237 /* clear interface table */
2238 hash_free (lcm->fwd_entry_by_mapping_index);
2239 pool_free (lcm->fwd_entry_pool);
2240 /* Clear state tracking rmt-lcl fwd entries */
2242 pool_foreach(rmts, lcm->lcl_to_rmt_adjacencies,
2247 hash_free (lcm->lcl_to_rmt_adjs_by_lcl_idx);
2248 pool_free (lcm->lcl_to_rmt_adjacencies);
2252 vnet_lisp_enable_disable (u8 is_enable)
2254 clib_error_t *error = 0;
2255 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2256 vnet_lisp_gpe_enable_disable_args_t _a, *a = &_a;
2258 a->is_en = is_enable;
2259 error = vnet_lisp_gpe_enable_disable (a);
2262 return clib_error_return (0, "failed to %s data-plane!",
2263 a->is_en ? "enable" : "disable");
2266 /* decide what to do based on mode */
2268 if (lcm->flags & LISP_FLAG_XTR_MODE)
2272 lisp_cp_register_dst_port (lcm->vlib_main);
2273 lisp_cp_enable_l2_l3_ifaces (lcm, 1 /* with_default_route */ );
2277 lisp_cp_unregister_dst_port (lcm->vlib_main);
2278 lisp_cp_disable_l2_l3_ifaces (lcm);
2282 if (lcm->flags & LISP_FLAG_PETR_MODE)
2284 /* if in xTR mode, the LISP ports were already (un)registered above */
2285 if (!(lcm->flags & LISP_FLAG_XTR_MODE))
2288 lisp_cp_register_dst_port (lcm->vlib_main);
2290 lisp_cp_unregister_dst_port (lcm->vlib_main);
2294 if (lcm->flags & LISP_FLAG_PITR_MODE)
2298 /* install interfaces, but no default routes */
2299 lisp_cp_enable_l2_l3_ifaces (lcm, 0 /* with_default_route */ );
2303 lisp_cp_disable_l2_l3_ifaces (lcm);
2308 vnet_lisp_create_retry_process (lcm);
2310 /* update global flag */
2311 lcm->is_enabled = is_enable;
2317 vnet_lisp_enable_disable_status (void)
2319 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2320 return lcm->is_enabled;
2324 vnet_lisp_add_del_map_resolver (vnet_lisp_add_del_map_resolver_args_t * a)
2326 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2328 lisp_msmr_t _mr, *mr = &_mr;
2330 if (vnet_lisp_enable_disable_status () == 0)
2332 clib_warning ("LISP is disabled!");
2333 return VNET_API_ERROR_LISP_DISABLED;
2339 if (get_map_resolver (&a->address))
2341 clib_warning ("map-resolver %U already exists!", format_ip_address,
2346 clib_memset (mr, 0, sizeof (*mr));
2347 ip_address_copy (&mr->address, &a->address);
2348 vec_add1 (lcm->map_resolvers, *mr);
2350 if (vec_len (lcm->map_resolvers) == 1)
2351 lcm->do_map_resolver_election = 1;
2355 for (i = 0; i < vec_len (lcm->map_resolvers); i++)
2357 mr = vec_elt_at_index (lcm->map_resolvers, i);
2358 if (!ip_address_cmp (&mr->address, &a->address))
2360 if (!ip_address_cmp (&mr->address, &lcm->active_map_resolver))
2361 lcm->do_map_resolver_election = 1;
2363 vec_del1 (lcm->map_resolvers, i);
2372 vnet_lisp_map_register_set_ttl (u32 ttl)
2374 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2375 lcm->map_register_ttl = ttl;
2380 vnet_lisp_map_register_get_ttl (void)
2382 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2383 return lcm->map_register_ttl;
2387 vnet_lisp_add_del_mreq_itr_rlocs (vnet_lisp_add_del_mreq_itr_rloc_args_t * a)
2389 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2392 if (vnet_lisp_enable_disable_status () == 0)
2394 clib_warning ("LISP is disabled!");
2395 return VNET_API_ERROR_LISP_DISABLED;
2400 p = hash_get_mem (lcm->locator_set_index_by_name, a->locator_set_name);
2403 clib_warning ("locator-set %v doesn't exist", a->locator_set_name);
2404 return VNET_API_ERROR_INVALID_ARGUMENT;
2407 lcm->mreq_itr_rlocs = p[0];
2411 lcm->mreq_itr_rlocs = ~0;
2417 /* Statistics (not really errors) */
2418 #define foreach_lisp_cp_lookup_error \
2420 _(MAP_REQUESTS_SENT, "map-request sent") \
2421 _(ARP_REPLY_TX, "ARP replies sent") \
2422 _(NDP_NEIGHBOR_ADVERTISEMENT_TX, \
2423 "neighbor advertisement sent")
2425 static char *lisp_cp_lookup_error_strings[] = {
2426 #define _(sym,string) string,
2427 foreach_lisp_cp_lookup_error
2433 #define _(sym,str) LISP_CP_LOOKUP_ERROR_##sym,
2434 foreach_lisp_cp_lookup_error
2436 LISP_CP_LOOKUP_N_ERROR,
2437 } lisp_cp_lookup_error_t;
2441 LISP_CP_LOOKUP_NEXT_DROP,
2442 LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX,
2443 LISP_CP_LOOKUP_N_NEXT,
2444 } lisp_cp_lookup_next_t;
2448 gid_address_t dst_eid;
2449 ip_address_t map_resolver_ip;
2450 } lisp_cp_lookup_trace_t;
2453 format_lisp_cp_lookup_trace (u8 * s, va_list * args)
2455 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
2456 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
2457 lisp_cp_lookup_trace_t *t = va_arg (*args, lisp_cp_lookup_trace_t *);
2459 s = format (s, "LISP-CP-LOOKUP: map-resolver: %U destination eid %U",
2460 format_ip_address, &t->map_resolver_ip, format_gid_address,
2466 get_mr_and_local_iface_ip (lisp_cp_main_t * lcm, ip_address_t * mr_ip,
2467 ip_address_t * sloc)
2472 if (vec_len (lcm->map_resolvers) == 0)
2474 clib_warning ("No map-resolver configured");
2478 /* find the first mr ip we have a route to and the ip of the
2479 * iface that has a route to it */
2480 vec_foreach (mrit, lcm->map_resolvers)
2483 if (0 != ip_fib_get_first_egress_ip_for_dst (lcm, a, sloc))
2485 ip_address_copy (mr_ip, a);
2487 /* also update globals */
2492 clib_warning ("Can't find map-resolver and local interface ip!");
2496 static gid_address_t *
2497 build_itr_rloc_list (lisp_cp_main_t * lcm, locator_set_t * loc_set)
2503 ip_interface_address_t *ia = 0;
2504 gid_address_t gid_data, *gid = &gid_data;
2505 gid_address_t *rlocs = 0;
2506 ip_prefix_t *ippref = &gid_address_ippref (gid);
2507 ip_address_t *rloc = &ip_prefix_addr (ippref);
2509 clib_memset (gid, 0, sizeof (gid[0]));
2510 gid_address_type (gid) = GID_ADDR_IP_PREFIX;
2511 for (i = 0; i < vec_len (loc_set->locator_indices); i++)
2513 loc_indexp = vec_elt_at_index (loc_set->locator_indices, i);
2514 loc = pool_elt_at_index (lcm->locator_pool, loc_indexp[0]);
2516 /* Add ipv4 locators first TODO sort them */
2519 foreach_ip_interface_address (&lcm->im4->lookup_main, ia,
2520 loc->sw_if_index, 1 /* unnumbered */,
2522 addr = ip_interface_address_get_address (&lcm->im4->lookup_main, ia);
2523 ip_address_set (rloc, addr, AF_IP4);
2524 ip_prefix_len (ippref) = 32;
2525 ip_prefix_normalize (ippref);
2526 vec_add1 (rlocs, gid[0]);
2529 /* Add ipv6 locators */
2530 foreach_ip_interface_address (&lcm->im6->lookup_main, ia,
2531 loc->sw_if_index, 1 /* unnumbered */,
2533 addr = ip_interface_address_get_address (&lcm->im6->lookup_main, ia);
2534 ip_address_set (rloc, addr, AF_IP6);
2535 ip_prefix_len (ippref) = 128;
2536 ip_prefix_normalize (ippref);
2537 vec_add1 (rlocs, gid[0]);
2545 static vlib_buffer_t *
2546 build_map_request (lisp_cp_main_t * lcm, gid_address_t * deid,
2547 ip_address_t * sloc, ip_address_t * rloc,
2548 gid_address_t * itr_rlocs, u64 * nonce_res, u32 * bi_res)
2552 vlib_main_t *vm = lcm->vlib_main;
2554 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2556 clib_warning ("Can't allocate buffer for Map-Request!");
2560 b = vlib_get_buffer (vm, bi);
2562 /* leave some space for the encap headers */
2563 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2566 lisp_msg_put_mreq (lcm, b, NULL, deid, itr_rlocs, 0 /* smr invoked */ ,
2567 1 /* rloc probe */ , nonce_res);
2569 /* push outer ip header */
2570 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2578 static vlib_buffer_t *
2579 build_encapsulated_map_request (lisp_cp_main_t * lcm,
2580 gid_address_t * seid, gid_address_t * deid,
2581 locator_set_t * loc_set, ip_address_t * mr_ip,
2582 ip_address_t * sloc, u8 is_smr_invoked,
2583 u64 * nonce_res, u32 * bi_res)
2587 gid_address_t *rlocs = 0;
2588 vlib_main_t *vm = lcm->vlib_main;
2590 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2592 clib_warning ("Can't allocate buffer for Map-Request!");
2596 b = vlib_get_buffer (vm, bi);
2599 /* leave some space for the encap headers */
2600 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2603 rlocs = build_itr_rloc_list (lcm, loc_set);
2605 if (MR_MODE_SRC_DST == lcm->map_request_mode
2606 && GID_ADDR_SRC_DST != gid_address_type (deid))
2609 clib_memset (&sd, 0, sizeof (sd));
2610 build_src_dst (&sd, seid, deid);
2611 lisp_msg_put_mreq (lcm, b, seid, &sd, rlocs, is_smr_invoked,
2612 0 /* rloc probe */ , nonce_res);
2617 lisp_msg_put_mreq (lcm, b, seid, deid, rlocs, is_smr_invoked,
2618 0 /* rloc probe */ , nonce_res);
2621 /* push ecm: udp-ip-lisp */
2622 lisp_msg_push_ecm (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, seid, deid);
2624 /* push outer ip header */
2625 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2635 reset_pending_mr_counters (pending_map_request_t * r)
2637 r->time_to_expire = PENDING_MREQ_EXPIRATION_TIME;
2641 #define foreach_msmr \
2647 elect_map_ ## name (lisp_cp_main_t * lcm) \
2650 vec_foreach (mr, lcm->map_ ## name ## s) \
2654 ip_address_copy (&lcm->active_map_ ##name, &mr->address); \
2655 lcm->do_map_ ## name ## _election = 0; \
2664 free_map_register_records (mapping_t * maps)
2667 vec_foreach (map, maps) vec_free (map->locators);
2673 add_locators (lisp_cp_main_t * lcm, mapping_t * m, u32 locator_set_index,
2674 ip_address_t * probed_loc)
2677 locator_t *loc, new;
2678 ip_interface_address_t *ia = 0;
2680 ip_address_t *new_ip = &gid_address_ip (&new.address);
2683 locator_set_t *ls = pool_elt_at_index (lcm->locator_set_pool,
2685 vec_foreach (li, ls->locator_indices)
2687 loc = pool_elt_at_index (lcm->locator_pool, li[0]);
2692 foreach_ip_interface_address (&lcm->im4->lookup_main, ia,
2693 loc->sw_if_index, 1 /* unnumbered */,
2695 addr = ip_interface_address_get_address (&lcm->im4->lookup_main,
2697 ip_address_set (new_ip, addr, AF_IP4);
2700 /* Add ipv6 locators */
2701 foreach_ip_interface_address (&lcm->im6->lookup_main, ia,
2702 loc->sw_if_index, 1 /* unnumbered */,
2704 addr = ip_interface_address_get_address (&lcm->im6->lookup_main,
2706 ip_address_set (new_ip, addr, AF_IP6);
2710 if (probed_loc && ip_address_cmp (probed_loc, new_ip) == 0)
2713 vec_add1 (m->locators, new);
2718 build_map_register_record_list (lisp_cp_main_t * lcm)
2720 mapping_t *recs = 0, rec, *m;
2723 pool_foreach(m, lcm->mapping_pool,
2725 /* for now build only local mappings */
2730 add_locators (lcm, &rec, m->locator_set_index, NULL);
2731 vec_add1 (recs, rec);
2738 static vnet_crypto_alg_t
2739 lisp_key_type_to_crypto_alg (lisp_key_type_t key_id)
2744 return VNET_CRYPTO_ALG_HMAC_SHA1;
2745 case HMAC_SHA_256_128:
2746 return VNET_CRYPTO_ALG_HMAC_SHA256;
2748 clib_warning ("unsupported encryption key type: %d!", key_id);
2751 return VNET_CRYPTO_ALG_NONE;
2754 static vnet_crypto_op_id_t
2755 lisp_key_type_to_crypto_op (lisp_key_type_t key_id)
2760 return VNET_CRYPTO_OP_SHA1_HMAC;
2761 case HMAC_SHA_256_128:
2762 return VNET_CRYPTO_OP_SHA256_HMAC;
2764 clib_warning ("unsupported encryption key type: %d!", key_id);
2767 return VNET_CRYPTO_OP_NONE;
2771 update_map_register_auth_data (map_register_hdr_t * map_reg_hdr,
2772 lisp_key_type_t key_id, u8 * key,
2773 u16 auth_data_len, u32 msg_len)
2775 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
2776 MREG_KEY_ID (map_reg_hdr) = clib_host_to_net_u16 (key_id);
2777 MREG_AUTH_DATA_LEN (map_reg_hdr) = clib_host_to_net_u16 (auth_data_len);
2778 vnet_crypto_op_t _op, *op = &_op;
2779 vnet_crypto_key_index_t ki;
2781 vnet_crypto_op_init (op, lisp_key_type_to_crypto_op (key_id));
2783 op->digest = MREG_DATA (map_reg_hdr);
2784 op->src = (u8 *) map_reg_hdr;
2788 ki = vnet_crypto_key_add (lcm->vlib_main,
2789 lisp_key_type_to_crypto_alg (key_id), key,
2794 vnet_crypto_process_ops (lcm->vlib_main, op, 1);
2795 vnet_crypto_key_del (lcm->vlib_main, ki);
2800 static vlib_buffer_t *
2801 build_map_register (lisp_cp_main_t * lcm, ip_address_t * sloc,
2802 ip_address_t * ms_ip, u64 * nonce_res, u8 want_map_notif,
2803 mapping_t * records, lisp_key_type_t key_id, u8 * key,
2808 u32 bi, auth_data_len = 0, msg_len = 0;
2809 vlib_main_t *vm = lcm->vlib_main;
2811 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
2813 clib_warning ("Can't allocate buffer for Map-Register!");
2817 b = vlib_get_buffer (vm, bi);
2819 /* leave some space for the encap headers */
2820 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
2822 auth_data_len = auth_data_len_by_key_id (key_id);
2823 map_reg_hdr = lisp_msg_put_map_register (b, records, want_map_notif,
2824 auth_data_len, nonce_res,
2827 update_map_register_auth_data (map_reg_hdr, key_id, key, auth_data_len,
2830 /* push outer ip header */
2831 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, LISP_CONTROL_PORT, sloc,
2840 get_egress_map_ ##name## _ip (lisp_cp_main_t * lcm, ip_address_t * ip) \
2843 while (lcm->do_map_ ## name ## _election \
2844 | (0 == ip_fib_get_first_egress_ip_for_dst \
2845 (lcm, &lcm->active_map_ ##name, ip))) \
2847 if (0 == elect_map_ ## name (lcm)) \
2848 /* all map resolvers/servers are down */ \
2850 /* restart MR/MS checking by marking all of them up */ \
2851 vec_foreach (mr, lcm->map_ ## name ## s) mr->is_down = 0; \
2860 /* CP output statistics */
2861 #define foreach_lisp_cp_output_error \
2862 _(MAP_REGISTERS_SENT, "map-registers sent") \
2863 _(MAP_REQUESTS_SENT, "map-requests sent") \
2864 _(RLOC_PROBES_SENT, "rloc-probes sent")
2865 static char *lisp_cp_output_error_strings[] = {
2866 #define _(sym,string) string,
2867 foreach_lisp_cp_output_error
2873 #define _(sym,str) LISP_CP_OUTPUT_ERROR_##sym,
2874 foreach_lisp_cp_output_error
2876 LISP_CP_OUTPUT_N_ERROR,
2877 } lisp_cp_output_error_t;
2880 lisp_cp_output (vlib_main_t * vm, vlib_node_runtime_t * node,
2881 vlib_frame_t * from_frame)
2886 /* dummy node used only for statistics */
2888 VLIB_REGISTER_NODE (lisp_cp_output_node) = {
2889 .function = lisp_cp_output,
2890 .name = "lisp-cp-output",
2891 .vector_size = sizeof (u32),
2892 .format_trace = format_lisp_cp_input_trace,
2893 .type = VLIB_NODE_TYPE_INTERNAL,
2895 .n_errors = LISP_CP_OUTPUT_N_ERROR,
2896 .error_strings = lisp_cp_output_error_strings,
2898 .n_next_nodes = LISP_CP_INPUT_N_NEXT,
2901 [LISP_CP_INPUT_NEXT_DROP] = "error-drop",
2907 send_rloc_probe (lisp_cp_main_t * lcm, gid_address_t * deid,
2908 u32 local_locator_set_index, ip_address_t * sloc,
2909 ip_address_t * rloc)
2916 u32 next_index, *to_next;
2917 gid_address_t *itr_rlocs;
2919 ls = pool_elt_at_index (lcm->locator_set_pool, local_locator_set_index);
2920 itr_rlocs = build_itr_rloc_list (lcm, ls);
2922 b = build_map_request (lcm, deid, sloc, rloc, itr_rlocs, &nonce, &bi);
2923 vec_free (itr_rlocs);
2927 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
2929 next_index = (ip_addr_version (rloc) == AF_IP4) ?
2930 ip4_lookup_node.index : ip6_lookup_node.index;
2932 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
2934 /* Enqueue the packet */
2935 to_next = vlib_frame_vector_args (f);
2938 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
2944 send_rloc_probes (lisp_cp_main_t * lcm)
2950 u32 si, rloc_probes_sent = 0;
2953 pool_foreach (e, lcm->fwd_entry_pool,
2955 if (vec_len (e->locator_pairs) == 0)
2958 si = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &e->leid);
2961 clib_warning ("internal error: cannot find local eid %U in "
2962 "map-cache!", format_gid_address, &e->leid);
2965 lm = pool_elt_at_index (lcm->mapping_pool, si);
2967 /* get the best (lowest) priority */
2968 lprio = e->locator_pairs[0].priority;
2970 /* send rloc-probe for pair(s) with the best remote locator priority */
2971 vec_foreach (lp, e->locator_pairs)
2973 if (lp->priority != lprio)
2976 /* get first remote locator */
2977 send_rloc_probe (lcm, &e->reid, lm->locator_set_index, &lp->lcl_loc,
2984 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
2985 LISP_CP_OUTPUT_ERROR_RLOC_PROBES_SENT,
2991 send_map_register (lisp_cp_main_t * lcm, u8 want_map_notif)
2993 pending_map_register_t *pmr;
2994 u32 bi, map_registers_sent = 0;
2999 u32 next_index, *to_next;
3000 mapping_t *records, *r, *group, *k;
3002 if (get_egress_map_server_ip (lcm, &sloc) < 0)
3005 records = build_map_register_record_list (lcm);
3009 vec_foreach (r, records)
3012 u8 key_id = r->key_id;
3015 continue; /* no secret key -> map-register cannot be sent */
3018 vec_add1 (group, r[0]);
3020 /* group mappings that share common key */
3021 for (k = r + 1; k < vec_end (records); k++)
3023 if (k->key_id != r->key_id)
3026 if (vec_is_equal (k->key, r->key))
3028 vec_add1 (group, k[0]);
3029 k->key = 0; /* don't process this mapping again */
3033 b = build_map_register (lcm, &sloc, &lcm->active_map_server, &nonce,
3034 want_map_notif, group, key_id, key, &bi);
3039 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
3041 next_index = (ip_addr_version (&lcm->active_map_server) == AF_IP4) ?
3042 ip4_lookup_node.index : ip6_lookup_node.index;
3044 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
3046 /* Enqueue the packet */
3047 to_next = vlib_frame_vector_args (f);
3050 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
3051 map_registers_sent++;
3053 pool_get (lcm->pending_map_registers_pool, pmr);
3054 clib_memset (pmr, 0, sizeof (*pmr));
3055 pmr->time_to_expire = PENDING_MREG_EXPIRATION_TIME;
3056 hash_set (lcm->map_register_messages_by_nonce, nonce,
3057 pmr - lcm->pending_map_registers_pool);
3059 free_map_register_records (records);
3061 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
3062 LISP_CP_OUTPUT_ERROR_MAP_REGISTERS_SENT,
3063 map_registers_sent);
3068 #define send_encapsulated_map_request(lcm, seid, deid, smr) \
3069 _send_encapsulated_map_request(lcm, seid, deid, smr, 0)
3071 #define resend_encapsulated_map_request(lcm, seid, deid, smr) \
3072 _send_encapsulated_map_request(lcm, seid, deid, smr, 1)
3075 _send_encapsulated_map_request (lisp_cp_main_t * lcm,
3076 gid_address_t * seid, gid_address_t * deid,
3077 u8 is_smr_invoked, u8 is_resend)
3079 u32 next_index, bi = 0, *to_next, map_index;
3083 locator_set_t *loc_set;
3085 pending_map_request_t *pmr, *duplicate_pmr = 0;
3089 /* if there is already a pending request remember it */
3092 pool_foreach(pmr, lcm->pending_map_requests_pool,
3094 if (!gid_address_cmp (&pmr->src, seid)
3095 && !gid_address_cmp (&pmr->dst, deid))
3097 duplicate_pmr = pmr;
3103 if (!is_resend && duplicate_pmr)
3105 /* don't send the request if there is a pending map request already */
3109 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
3111 /* get locator-set for seid */
3112 if (!pitr_mode && gid_address_type (deid) != GID_ADDR_NSH)
3114 map_index = gid_dictionary_lookup (&lcm->mapping_index_by_gid, seid);
3115 if (map_index == ~0)
3117 clib_warning ("No local mapping found in eid-table for %U!",
3118 format_gid_address, seid);
3122 map = pool_elt_at_index (lcm->mapping_pool, map_index);
3127 ("Mapping found for src eid %U is not marked as local!",
3128 format_gid_address, seid);
3131 ls_index = map->locator_set_index;
3137 if (lcm->pitr_map_index != ~0)
3140 pool_elt_at_index (lcm->mapping_pool, lcm->pitr_map_index);
3141 ls_index = map->locator_set_index;
3150 if (lcm->nsh_map_index == (u32) ~ 0)
3152 clib_warning ("No locator-set defined for NSH!");
3157 map = pool_elt_at_index (lcm->mapping_pool, lcm->nsh_map_index);
3158 ls_index = map->locator_set_index;
3163 /* overwrite locator set if map-request itr-rlocs configured */
3164 if (~0 != lcm->mreq_itr_rlocs)
3166 ls_index = lcm->mreq_itr_rlocs;
3169 loc_set = pool_elt_at_index (lcm->locator_set_pool, ls_index);
3171 if (get_egress_map_resolver_ip (lcm, &sloc) < 0)
3174 duplicate_pmr->to_be_removed = 1;
3178 /* build the encapsulated map request */
3179 b = build_encapsulated_map_request (lcm, seid, deid, loc_set,
3180 &lcm->active_map_resolver,
3181 &sloc, is_smr_invoked, &nonce, &bi);
3186 /* set fib index to default and lookup node */
3187 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
3188 next_index = (ip_addr_version (&lcm->active_map_resolver) == AF_IP4) ?
3189 ip4_lookup_node.index : ip6_lookup_node.index;
3191 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
3193 /* Enqueue the packet */
3194 to_next = vlib_frame_vector_args (f);
3197 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
3199 vlib_node_increment_counter (vlib_get_main (), lisp_cp_output_node.index,
3200 LISP_CP_OUTPUT_ERROR_MAP_REQUESTS_SENT, 1);
3203 /* if there is a pending request already update it */
3205 if (clib_fifo_elts (duplicate_pmr->nonces) >= PENDING_MREQ_QUEUE_LEN)
3207 /* remove the oldest nonce */
3208 u64 CLIB_UNUSED (tmp), *nonce_del;
3209 nonce_del = clib_fifo_head (duplicate_pmr->nonces);
3210 hash_unset (lcm->pending_map_requests_by_nonce, nonce_del[0]);
3211 clib_fifo_sub1 (duplicate_pmr->nonces, tmp);
3214 clib_fifo_add1 (duplicate_pmr->nonces, nonce);
3215 hash_set (lcm->pending_map_requests_by_nonce, nonce,
3216 duplicate_pmr - lcm->pending_map_requests_pool);
3220 /* add map-request to pending requests table */
3221 pool_get (lcm->pending_map_requests_pool, pmr);
3222 clib_memset (pmr, 0, sizeof (*pmr));
3223 gid_address_copy (&pmr->src, seid);
3224 gid_address_copy (&pmr->dst, deid);
3225 clib_fifo_add1 (pmr->nonces, nonce);
3226 pmr->is_smr_invoked = is_smr_invoked;
3227 reset_pending_mr_counters (pmr);
3228 hash_set (lcm->pending_map_requests_by_nonce, nonce,
3229 pmr - lcm->pending_map_requests_pool);
3236 get_src_and_dst_ip (void *hdr, ip_address_t * src, ip_address_t * dst)
3238 ip4_header_t *ip4 = hdr;
3241 if ((ip4->ip_version_and_header_length & 0xF0) == 0x40)
3243 ip_address_set (src, &ip4->src_address, AF_IP4);
3244 ip_address_set (dst, &ip4->dst_address, AF_IP4);
3249 ip_address_set (src, &ip6->src_address, AF_IP6);
3250 ip_address_set (dst, &ip6->dst_address, AF_IP6);
3255 lisp_get_vni_from_buffer_ip (lisp_cp_main_t * lcm, vlib_buffer_t * b,
3259 u32 vni = ~0, table_id = ~0;
3261 table_id = fib_table_get_table_id_for_sw_if_index ((version ==
3269 vnip = hash_get (lcm->vni_by_table_id, table_id);
3273 clib_warning ("vrf %d is not mapped to any vni!", table_id);
3279 lisp_get_bd_from_buffer_eth (vlib_buffer_t * b)
3283 l2input_main_t *l2im = &l2input_main;
3284 l2_input_config_t *config;
3285 l2_bridge_domain_t *bd_config;
3287 sw_if_index0 = vnet_buffer (b)->sw_if_index[VLIB_RX];
3288 config = vec_elt_at_index (l2im->configs, sw_if_index0);
3289 bd_config = vec_elt_at_index (l2im->bd_configs, config->bd_index);
3291 return bd_config->bd_id;
3295 lisp_get_vni_from_buffer_eth (lisp_cp_main_t * lcm, vlib_buffer_t * b)
3299 u32 bd = lisp_get_bd_from_buffer_eth (b);
3301 vnip = hash_get (lcm->vni_by_bd_id, bd);
3305 clib_warning ("bridge domain %d is not mapped to any vni!", bd);
3311 get_src_and_dst_eids_from_buffer (lisp_cp_main_t * lcm, vlib_buffer_t * b,
3312 gid_address_t * src, gid_address_t * dst,
3315 ethernet_header_t *eh;
3317 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *opt;
3319 clib_memset (src, 0, sizeof (*src));
3320 clib_memset (dst, 0, sizeof (*dst));
3322 gid_address_type (dst) = GID_ADDR_NO_ADDRESS;
3323 gid_address_type (src) = GID_ADDR_NO_ADDRESS;
3325 if (LISP_AFI_IP == type || LISP_AFI_IP6 == type)
3328 u8 version, preflen;
3330 gid_address_type (src) = GID_ADDR_IP_PREFIX;
3331 gid_address_type (dst) = GID_ADDR_IP_PREFIX;
3333 ip = vlib_buffer_get_current (b);
3334 get_src_and_dst_ip (ip, &gid_address_ip (src), &gid_address_ip (dst));
3336 version = gid_address_ip_version (src);
3337 preflen = ip_address_max_len (version);
3338 gid_address_ippref_len (src) = preflen;
3339 gid_address_ippref_len (dst) = preflen;
3341 vni = lisp_get_vni_from_buffer_ip (lcm, b, version);
3342 gid_address_vni (dst) = vni;
3343 gid_address_vni (src) = vni;
3345 else if (LISP_AFI_MAC == type)
3347 ethernet_arp_header_t *ah;
3349 eh = vlib_buffer_get_current (b);
3351 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_ARP)
3353 ah = (ethernet_arp_header_t *) (((u8 *) eh) + sizeof (*eh));
3354 gid_address_type (dst) = GID_ADDR_ARP;
3356 if (clib_net_to_host_u16 (ah->opcode)
3357 != ETHERNET_ARP_OPCODE_request)
3359 clib_memset (&gid_address_arp_ndp_ip (dst), 0,
3360 sizeof (ip_address_t));
3361 ip_addr_version (&gid_address_arp_ndp_ip (dst)) = AF_IP4;
3362 gid_address_arp_ndp_bd (dst) = ~0;
3366 gid_address_arp_bd (dst) = lisp_get_bd_from_buffer_eth (b);
3367 clib_memcpy (&gid_address_arp_ip4 (dst),
3368 &ah->ip4_over_ethernet[1].ip4, 4);
3372 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_IP6)
3375 ip = (ip6_header_t *) (eh + 1);
3377 if (IP_PROTOCOL_ICMP6 == ip->protocol)
3379 icmp6_neighbor_solicitation_or_advertisement_header_t *ndh;
3380 ndh = ip6_next_header (ip);
3381 if (ndh->icmp.type == ICMP6_neighbor_solicitation)
3383 gid_address_type (dst) = GID_ADDR_NDP;
3385 /* check that source link layer address option is present */
3386 opt = (void *) (ndh + 1);
3387 if ((opt->header.type !=
3388 ICMP6_NEIGHBOR_DISCOVERY_OPTION_source_link_layer_address)
3389 || (opt->header.n_data_u64s != 1))
3391 clib_memset (&gid_address_arp_ndp_ip (dst), 0,
3392 sizeof (ip_address_t));
3393 ip_addr_version (&gid_address_arp_ndp_ip (dst)) =
3395 gid_address_arp_ndp_bd (dst) = ~0;
3396 gid_address_type (src) = GID_ADDR_NO_ADDRESS;
3400 gid_address_ndp_bd (dst) =
3401 lisp_get_bd_from_buffer_eth (b);
3402 ip_address_set (&gid_address_arp_ndp_ip (dst),
3403 &ndh->target_address, AF_IP6);
3409 gid_address_type (src) = GID_ADDR_MAC;
3410 gid_address_type (dst) = GID_ADDR_MAC;
3411 mac_copy (&gid_address_mac (src), eh->src_address);
3412 mac_copy (&gid_address_mac (dst), eh->dst_address);
3415 vni = lisp_get_vni_from_buffer_eth (lcm, b);
3417 gid_address_vni (dst) = vni;
3418 gid_address_vni (src) = vni;
3421 else if (LISP_AFI_LCAF == type)
3424 eh = vlib_buffer_get_current (b);
3426 if (clib_net_to_host_u16 (eh->type) == ETHERNET_TYPE_NSH)
3428 nh = (lisp_nsh_hdr_t *) (((u8 *) eh) + sizeof (*eh));
3429 u32 spi = clib_net_to_host_u32 (nh->spi_si << 8);
3430 u8 si = (u8) clib_net_to_host_u32 (nh->spi_si);
3431 gid_address_nsh_spi (dst) = spi;
3432 gid_address_nsh_si (dst) = si;
3434 gid_address_type (dst) = GID_ADDR_NSH;
3435 gid_address_type (src) = GID_ADDR_NSH;
3441 lisp_cp_lookup_inline (vlib_main_t * vm,
3442 vlib_node_runtime_t * node,
3443 vlib_frame_t * from_frame, int overlay)
3445 icmp6_neighbor_discovery_ethernet_link_layer_address_option_t *opt;
3446 u32 *from, *to_next, di, si;
3447 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3449 uword n_left_from, n_left_to_next;
3450 vnet_main_t *vnm = vnet_get_main ();
3452 from = vlib_frame_vector_args (from_frame);
3453 n_left_from = from_frame->n_vectors;
3454 next_index = node->cached_next_index;
3456 while (n_left_from > 0)
3458 vlib_get_next_frame (vm, node, next_index, to_next, n_left_to_next);
3460 while (n_left_from > 0 && n_left_to_next > 0)
3462 u32 pi0, sw_if_index0, next0;
3465 gid_address_t src, dst;
3466 ethernet_arp_header_t *arp0;
3467 ethernet_header_t *eth0;
3468 vnet_hw_interface_t *hw_if0;
3469 ethernet_header_t *eh0;
3470 icmp6_neighbor_solicitation_or_advertisement_header_t *ndh;
3478 n_left_to_next -= 1;
3480 b0 = vlib_get_buffer (vm, pi0);
3482 /* src/dst eid pair */
3483 get_src_and_dst_eids_from_buffer (lcm, b0, &src, &dst, overlay);
3485 if (gid_address_type (&dst) == GID_ADDR_ARP)
3487 mac0 = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
3488 if (GID_LOOKUP_MISS_L2 == mac0)
3491 /* send ARP reply */
3492 sw_if_index0 = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3493 vnet_buffer (b0)->sw_if_index[VLIB_TX] = sw_if_index0;
3495 hw_if0 = vnet_get_sup_hw_interface (vnm, sw_if_index0);
3497 eth0 = vlib_buffer_get_current (b0);
3498 arp0 = (ethernet_arp_header_t *) (((u8 *) eth0)
3500 arp0->opcode = clib_host_to_net_u16 (ETHERNET_ARP_OPCODE_reply);
3501 arp0->ip4_over_ethernet[1] = arp0->ip4_over_ethernet[0];
3502 mac_address_from_u64 (&arp0->ip4_over_ethernet[0].mac, mac0);
3503 clib_memcpy (&arp0->ip4_over_ethernet[0].ip4,
3504 &gid_address_arp_ip4 (&dst), 4);
3506 /* Hardware must be ethernet-like. */
3507 ASSERT (vec_len (hw_if0->hw_address) == 6);
3509 clib_memcpy (eth0->dst_address, eth0->src_address, 6);
3510 clib_memcpy (eth0->src_address, hw_if0->hw_address, 6);
3512 b0->error = node->errors[LISP_CP_LOOKUP_ERROR_ARP_REPLY_TX];
3513 next0 = LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX;
3516 else if (gid_address_type (&dst) == GID_ADDR_NDP)
3518 mac0 = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
3519 if (GID_LOOKUP_MISS_L2 == mac0)
3522 sw_if_index0 = vnet_buffer (b0)->sw_if_index[VLIB_RX];
3523 vnet_buffer (b0)->sw_if_index[VLIB_TX] = sw_if_index0;
3525 eh0 = vlib_buffer_get_current (b0);
3526 ip0 = (ip6_header_t *) (eh0 + 1);
3527 ndh = ip6_next_header (ip0);
3529 ip0->dst_address = ip0->src_address;
3530 ip0->src_address = ndh->target_address;
3531 ip0->hop_limit = 255;
3532 opt = (void *) (ndh + 1);
3534 ICMP6_NEIGHBOR_DISCOVERY_OPTION_target_link_layer_address;
3535 clib_memcpy (opt->ethernet_address, (u8 *) & mac0, 6);
3536 ndh->icmp.type = ICMP6_neighbor_advertisement;
3537 ndh->advertisement_flags = clib_host_to_net_u32
3538 (ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_SOLICITED |
3539 ICMP6_NEIGHBOR_ADVERTISEMENT_FLAG_OVERRIDE);
3540 ndh->icmp.checksum = 0;
3541 ndh->icmp.checksum =
3542 ip6_tcp_udp_icmp_compute_checksum (vm, b0, ip0,
3544 clib_memcpy (eh0->dst_address, eh0->src_address, 6);
3545 clib_memcpy (eh0->src_address, (u8 *) & mac0, 6);
3548 [LISP_CP_LOOKUP_ERROR_NDP_NEIGHBOR_ADVERTISEMENT_TX];
3549 next0 = LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX;
3553 /* if we have remote mapping for destination already in map-cache
3554 add forwarding tunnel directly. If not send a map-request */
3555 di = gid_dictionary_sd_lookup (&lcm->mapping_index_by_gid, &dst,
3559 mapping_t *m = vec_elt_at_index (lcm->mapping_pool, di);
3560 /* send a map-request also in case of negative mapping entry
3561 with corresponding action */
3562 if (m->action == LISP_SEND_MAP_REQUEST)
3564 /* send map-request */
3565 queue_map_request (&src, &dst, 0 /* smr_invoked */ ,
3566 0 /* is_resend */ );
3570 if (GID_ADDR_NSH != gid_address_type (&dst))
3572 si = gid_dictionary_lookup (&lcm->mapping_index_by_gid,
3576 si = lcm->nsh_map_index;
3580 dp_add_fwd_entry_from_mt (si, di);
3586 /* send map-request */
3587 queue_map_request (&src, &dst, 0 /* smr_invoked */ ,
3588 0 /* is_resend */ );
3592 b0->error = node->errors[LISP_CP_LOOKUP_ERROR_DROP];
3593 next0 = LISP_CP_LOOKUP_NEXT_DROP;
3595 if (PREDICT_FALSE (b0->flags & VLIB_BUFFER_IS_TRACED))
3597 lisp_cp_lookup_trace_t *tr = vlib_add_trace (vm, node, b0,
3600 clib_memset (tr, 0, sizeof (*tr));
3601 gid_address_copy (&tr->dst_eid, &dst);
3602 ip_address_copy (&tr->map_resolver_ip,
3603 &lcm->active_map_resolver);
3605 gid_address_free (&dst);
3606 gid_address_free (&src);
3607 vlib_validate_buffer_enqueue_x1 (vm, node, next_index,
3609 n_left_to_next, pi0, next0);
3612 vlib_put_next_frame (vm, node, next_index, n_left_to_next);
3614 return from_frame->n_vectors;
3618 lisp_cp_lookup_ip4 (vlib_main_t * vm,
3619 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3621 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_IP));
3625 lisp_cp_lookup_ip6 (vlib_main_t * vm,
3626 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3628 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_IP6));
3632 lisp_cp_lookup_l2 (vlib_main_t * vm,
3633 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3635 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_MAC));
3639 lisp_cp_lookup_nsh (vlib_main_t * vm,
3640 vlib_node_runtime_t * node, vlib_frame_t * from_frame)
3642 /* TODO decide if NSH should be propagated as LCAF or not */
3643 return (lisp_cp_lookup_inline (vm, node, from_frame, LISP_AFI_LCAF));
3647 VLIB_REGISTER_NODE (lisp_cp_lookup_ip4_node) = {
3648 .function = lisp_cp_lookup_ip4,
3649 .name = "lisp-cp-lookup-ip4",
3650 .vector_size = sizeof (u32),
3651 .format_trace = format_lisp_cp_lookup_trace,
3652 .type = VLIB_NODE_TYPE_INTERNAL,
3654 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3655 .error_strings = lisp_cp_lookup_error_strings,
3657 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3660 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3661 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3667 VLIB_REGISTER_NODE (lisp_cp_lookup_ip6_node) = {
3668 .function = lisp_cp_lookup_ip6,
3669 .name = "lisp-cp-lookup-ip6",
3670 .vector_size = sizeof (u32),
3671 .format_trace = format_lisp_cp_lookup_trace,
3672 .type = VLIB_NODE_TYPE_INTERNAL,
3674 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3675 .error_strings = lisp_cp_lookup_error_strings,
3677 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3680 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3681 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3687 VLIB_REGISTER_NODE (lisp_cp_lookup_l2_node) = {
3688 .function = lisp_cp_lookup_l2,
3689 .name = "lisp-cp-lookup-l2",
3690 .vector_size = sizeof (u32),
3691 .format_trace = format_lisp_cp_lookup_trace,
3692 .type = VLIB_NODE_TYPE_INTERNAL,
3694 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3695 .error_strings = lisp_cp_lookup_error_strings,
3697 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3700 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3701 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3707 VLIB_REGISTER_NODE (lisp_cp_lookup_nsh_node) = {
3708 .function = lisp_cp_lookup_nsh,
3709 .name = "lisp-cp-lookup-nsh",
3710 .vector_size = sizeof (u32),
3711 .format_trace = format_lisp_cp_lookup_trace,
3712 .type = VLIB_NODE_TYPE_INTERNAL,
3714 .n_errors = LISP_CP_LOOKUP_N_ERROR,
3715 .error_strings = lisp_cp_lookup_error_strings,
3717 .n_next_nodes = LISP_CP_LOOKUP_N_NEXT,
3720 [LISP_CP_LOOKUP_NEXT_DROP] = "error-drop",
3721 [LISP_CP_LOOKUP_NEXT_ARP_NDP_REPLY_TX] = "interface-output",
3726 /* lisp_cp_input statistics */
3727 #define foreach_lisp_cp_input_error \
3729 _(RLOC_PROBE_REQ_RECEIVED, "rloc-probe requests received") \
3730 _(RLOC_PROBE_REP_RECEIVED, "rloc-probe replies received") \
3731 _(MAP_NOTIFIES_RECEIVED, "map-notifies received") \
3732 _(MAP_REPLIES_RECEIVED, "map-replies received")
3734 static char *lisp_cp_input_error_strings[] = {
3735 #define _(sym,string) string,
3736 foreach_lisp_cp_input_error
3742 #define _(sym,str) LISP_CP_INPUT_ERROR_##sym,
3743 foreach_lisp_cp_input_error
3745 LISP_CP_INPUT_N_ERROR,
3746 } lisp_cp_input_error_t;
3750 gid_address_t dst_eid;
3751 ip4_address_t map_resolver_ip;
3752 } lisp_cp_input_trace_t;
3755 format_lisp_cp_input_trace (u8 * s, va_list * args)
3757 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
3758 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
3759 CLIB_UNUSED (lisp_cp_input_trace_t * t) =
3760 va_arg (*args, lisp_cp_input_trace_t *);
3762 s = format (s, "LISP-CP-INPUT: TODO");
3767 remove_expired_mapping (lisp_cp_main_t * lcm, u32 mi)
3770 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
3771 clib_memset (adj_args, 0, sizeof (adj_args[0]));
3773 m = pool_elt_at_index (lcm->mapping_pool, mi);
3775 gid_address_copy (&adj_args->reid, &m->eid);
3776 adj_args->is_add = 0;
3777 if (vnet_lisp_add_del_adjacency (adj_args))
3778 clib_warning ("failed to del adjacency!");
3780 vnet_lisp_del_mapping (&m->eid, NULL);
3781 mapping_delete_timer (lcm, mi);
3785 mapping_start_expiration_timer (lisp_cp_main_t * lcm, u32 mi,
3786 f64 expiration_time)
3789 u64 now = clib_cpu_time_now ();
3790 u64 cpu_cps = lcm->vlib_main->clib_time.clocks_per_second;
3791 u64 exp_clock_time = now + expiration_time * cpu_cps;
3793 m = pool_elt_at_index (lcm->mapping_pool, mi);
3796 timing_wheel_insert (&lcm->wheel, exp_clock_time, mi);
3800 process_expired_mapping (lisp_cp_main_t * lcm, u32 mi)
3803 vnet_lisp_gpe_add_del_fwd_entry_args_t _a, *a = &_a;
3804 mapping_t *m = pool_elt_at_index (lcm->mapping_pool, mi);
3810 if (m->delete_after_expiration)
3812 remove_expired_mapping (lcm, mi);
3816 fei = hash_get (lcm->fwd_entry_by_mapping_index, mi);
3820 fe = pool_elt_at_index (lcm->fwd_entry_pool, fei[0]);
3822 clib_memset (a, 0, sizeof (*a));
3823 a->rmt_eid = fe->reid;
3825 a->lcl_eid = fe->leid;
3826 a->vni = gid_address_vni (&fe->reid);
3828 rv = vnet_lisp_gpe_get_fwd_stats (a, &c);
3832 if (m->almost_expired)
3834 m->almost_expired = 0; /* reset flag */
3837 if (m->packets != c.packets)
3839 /* mapping is in use, re-fetch */
3840 map_request_args_t mr_args;
3841 clib_memset (&mr_args, 0, sizeof (mr_args));
3842 mr_args.seid = fe->leid;
3843 mr_args.deid = fe->reid;
3845 send_map_request_thread_fn (&mr_args);
3848 remove_expired_mapping (lcm, mi);
3851 remove_expired_mapping (lcm, mi);
3855 m->almost_expired = 1;
3856 mapping_start_expiration_timer (lcm, mi, TIME_UNTIL_REFETCH_OR_DELETE);
3860 m->packets = c.packets;
3862 m->delete_after_expiration = 1;
3867 map_records_arg_free (map_records_arg_t * a)
3869 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3871 vec_foreach (m, a->mappings)
3873 vec_free (m->locators);
3874 gid_address_free (&m->eid);
3876 pool_put (lcm->map_records_args_pool[vlib_get_thread_index ()], a);
3880 process_map_reply (map_records_arg_t * a)
3883 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3884 u32 dst_map_index = 0;
3885 pending_map_request_t *pmr;
3890 if (a->is_rloc_probe)
3893 /* Check pending requests table and nonce */
3894 pmr_index = hash_get (lcm->pending_map_requests_by_nonce, a->nonce);
3897 clib_warning ("No pending map-request entry with nonce %lu!", a->nonce);
3900 pmr = pool_elt_at_index (lcm->pending_map_requests_pool, pmr_index[0]);
3902 vec_foreach (m, a->mappings)
3904 vnet_lisp_add_del_mapping_args_t _m_args, *m_args = &_m_args;
3905 clib_memset (m_args, 0, sizeof (m_args[0]));
3906 gid_address_copy (&m_args->eid, &m->eid);
3907 m_args->action = m->action;
3908 m_args->authoritative = m->authoritative;
3909 m_args->ttl = m->ttl;
3910 m_args->is_static = 0;
3912 /* insert/update mappings cache */
3913 vnet_lisp_add_mapping (m_args, m->locators, &dst_map_index, &is_changed);
3915 if (dst_map_index == (u32) ~ 0)
3920 /* try to program forwarding only if mapping saved or updated */
3921 vnet_lisp_add_del_adjacency_args_t _adj_args, *adj_args = &_adj_args;
3922 clib_memset (adj_args, 0, sizeof (adj_args[0]));
3924 gid_address_copy (&adj_args->leid, &pmr->src);
3925 gid_address_copy (&adj_args->reid, &m->eid);
3926 adj_args->is_add = 1;
3928 if (vnet_lisp_add_del_adjacency (adj_args))
3929 clib_warning ("failed to add adjacency!");
3932 if ((u32) ~ 0 != m->ttl)
3933 mapping_start_expiration_timer (lcm, dst_map_index,
3934 (m->ttl == 0) ? 0 : MAPPING_TIMEOUT);
3937 /* remove pending map request entry */
3940 clib_fifo_foreach (noncep, pmr->nonces, ({
3941 hash_unset(lcm->pending_map_requests_by_nonce, noncep[0]);
3945 clib_fifo_free (pmr->nonces);
3946 pool_put (lcm->pending_map_requests_pool, pmr);
3954 is_auth_data_valid (map_notify_hdr_t * h, u32 msg_len,
3955 lisp_key_type_t key_id, u8 * key)
3957 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
3961 vnet_crypto_op_t _op, *op = &_op;
3962 vnet_crypto_key_index_t ki;
3963 u8 out[EVP_MAX_MD_SIZE] = { 0, };
3965 auth_data_len = auth_data_len_by_key_id (key_id);
3966 if ((u16) ~ 0 == auth_data_len)
3968 clib_warning ("invalid length for key_id %d!", key_id);
3972 /* save auth data */
3973 vec_validate (auth_data, auth_data_len - 1);
3974 clib_memcpy (auth_data, MNOTIFY_DATA (h), auth_data_len);
3976 /* clear auth data */
3977 clib_memset (MNOTIFY_DATA (h), 0, auth_data_len);
3979 vnet_crypto_op_init (op, lisp_key_type_to_crypto_op (key_id));
3986 ki = vnet_crypto_key_add (lcm->vlib_main,
3987 lisp_key_type_to_crypto_alg (key_id), key,
3992 vnet_crypto_process_ops (lcm->vlib_main, op, 1);
3993 vnet_crypto_key_del (lcm->vlib_main, ki);
3995 result = memcmp (out, auth_data, auth_data_len);
3997 vec_free (auth_data);
4003 process_map_notify (map_records_arg_t * a)
4005 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4008 pmr_index = hash_get (lcm->map_register_messages_by_nonce, a->nonce);
4011 clib_warning ("No pending map-register entry with nonce %lu!",
4017 pool_put_index (lcm->pending_map_registers_pool, pmr_index[0]);
4018 hash_unset (lcm->map_register_messages_by_nonce, a->nonce);
4020 /* reset map-notify counter */
4021 lcm->expired_map_registers = 0;
4025 get_mapping (lisp_cp_main_t * lcm, gid_address_t * e)
4029 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, e);
4032 clib_warning ("eid %U not found in map-cache!", unformat_gid_address,
4036 return pool_elt_at_index (lcm->mapping_pool, mi);
4040 * When map-notify is received it is necessary that all EIDs in the record
4041 * list share common key. The key is then used to verify authentication
4042 * data in map-notify message.
4045 map_record_integrity_check (lisp_cp_main_t * lcm, mapping_t * maps,
4046 u32 key_id, u8 ** key_out)
4048 u32 i, len = vec_len (maps);
4051 /* get key of the first mapping */
4052 m = get_mapping (lcm, &maps[0].eid);
4056 key_out[0] = m->key;
4058 for (i = 1; i < len; i++)
4060 m = get_mapping (lcm, &maps[i].eid);
4064 if (key_id != m->key_id || vec_cmp (m->key, key_out[0]))
4066 clib_warning ("keys does not match! %v, %v", key_out[0], m->key);
4074 parse_map_records (vlib_buffer_t * b, map_records_arg_t * a, u8 count)
4076 locator_t *locators = 0;
4082 clib_memset (&m, 0, sizeof (m));
4084 /* parse record eid */
4085 for (i = 0; i < count; i++)
4088 len = lisp_msg_parse_mapping_record (b, &deid, &locators, NULL);
4091 clib_warning ("Failed to parse mapping record!");
4092 vec_foreach (loc, locators) locator_free (loc);
4093 vec_free (locators);
4097 m.locators = locators;
4098 gid_address_copy (&m.eid, &deid);
4099 vec_add1 (a->mappings, m);
4105 static map_records_arg_t *
4106 map_record_args_get ()
4108 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4109 map_records_arg_t *rec;
4113 pool_foreach (rec, lcm->map_records_args_pool[vlib_get_thread_index()], ({
4115 map_records_arg_free (rec);
4119 pool_get (lcm->map_records_args_pool[vlib_get_thread_index ()], rec);
4123 static map_records_arg_t *
4124 parse_map_notify (vlib_buffer_t * b)
4127 map_notify_hdr_t *mnotif_hdr;
4128 lisp_key_type_t key_id;
4129 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4132 u16 auth_data_len = 0;
4134 map_records_arg_t *a;
4136 a = map_record_args_get ();
4137 clib_memset (a, 0, sizeof (*a));
4138 mnotif_hdr = vlib_buffer_get_current (b);
4139 vlib_buffer_pull (b, sizeof (*mnotif_hdr));
4140 clib_memset (&deid, 0, sizeof (deid));
4142 a->nonce = MNOTIFY_NONCE (mnotif_hdr);
4143 key_id = clib_net_to_host_u16 (MNOTIFY_KEY_ID (mnotif_hdr));
4144 auth_data_len = auth_data_len_by_key_id (key_id);
4146 /* advance buffer by authentication data */
4147 vlib_buffer_pull (b, auth_data_len);
4149 record_count = MNOTIFY_REC_COUNT (mnotif_hdr);
4150 rc = parse_map_records (b, a, record_count);
4153 map_records_arg_free (a);
4157 rc = map_record_integrity_check (lcm, a->mappings, key_id, &key);
4160 map_records_arg_free (a);
4164 /* verify authentication data */
4165 if (!is_auth_data_valid (mnotif_hdr, vlib_buffer_get_tail (b)
4166 - (u8 *) mnotif_hdr, key_id, key))
4168 clib_warning ("Map-notify auth data verification failed for nonce "
4169 "0x%lx!", a->nonce);
4170 map_records_arg_free (a);
4176 static vlib_buffer_t *
4177 build_map_reply (lisp_cp_main_t * lcm, ip_address_t * sloc,
4178 ip_address_t * dst, u64 nonce, u8 probe_bit,
4179 mapping_t * records, u16 dst_port, u32 * bi_res)
4183 vlib_main_t *vm = lcm->vlib_main;
4185 if (vlib_buffer_alloc (vm, &bi, 1) != 1)
4187 clib_warning ("Can't allocate buffer for Map-Register!");
4191 b = vlib_get_buffer (vm, bi);
4193 /* leave some space for the encap headers */
4194 vlib_buffer_make_headroom (b, MAX_LISP_MSG_ENCAP_LEN);
4196 lisp_msg_put_map_reply (b, records, nonce, probe_bit);
4198 /* push outer ip header */
4199 pkt_push_udp_and_ip (vm, b, LISP_CONTROL_PORT, dst_port, sloc, dst, 1);
4206 send_map_reply (lisp_cp_main_t * lcm, u32 mi, ip_address_t * dst,
4207 u8 probe_bit, u64 nonce, u16 dst_port,
4208 ip_address_t * probed_loc)
4214 u32 next_index, *to_next;
4215 mapping_t *records = 0, *m;
4217 m = pool_elt_at_index (lcm->mapping_pool, mi);
4221 vec_add1 (records, m[0]);
4222 add_locators (lcm, &records[0], m->locator_set_index, probed_loc);
4223 clib_memset (&src, 0, sizeof (src));
4225 if (!ip_fib_get_first_egress_ip_for_dst (lcm, dst, &src))
4227 clib_warning ("can't find interface address for %U", format_ip_address,
4232 b = build_map_reply (lcm, &src, dst, nonce, probe_bit, records, dst_port,
4236 free_map_register_records (records);
4238 vnet_buffer (b)->sw_if_index[VLIB_TX] = 0;
4239 next_index = (ip_addr_version (&lcm->active_map_resolver) == AF_IP4) ?
4240 ip4_lookup_node.index : ip6_lookup_node.index;
4242 f = vlib_get_frame_to_node (lcm->vlib_main, next_index);
4244 /* Enqueue the packet */
4245 to_next = vlib_frame_vector_args (f);
4248 vlib_put_frame_to_node (lcm->vlib_main, next_index, f);
4253 find_ip_header (vlib_buffer_t * b, u8 ** ip_hdr)
4255 const i32 start = vnet_buffer (b)->l3_hdr_offset;
4256 if (start < 0 && start < -sizeof (b->pre_data))
4262 *ip_hdr = b->data + start;
4263 if ((u8 *) * ip_hdr > (u8 *) vlib_buffer_get_current (b))
4268 process_map_request (vlib_main_t * vm, vlib_node_runtime_t * node,
4269 lisp_cp_main_t * lcm, vlib_buffer_t * b)
4272 ip_address_t *dst_loc = 0, probed_loc, src_loc;
4274 map_request_hdr_t *mreq_hdr;
4275 gid_address_t src, dst;
4277 u32 i, len = 0, rloc_probe_recv = 0;
4278 gid_address_t *itr_rlocs = 0;
4280 mreq_hdr = vlib_buffer_get_current (b);
4281 if (!MREQ_SMR (mreq_hdr) && !MREQ_RLOC_PROBE (mreq_hdr))
4284 ("Only SMR Map-Requests and RLOC probe supported for now!");
4288 vlib_buffer_pull (b, sizeof (*mreq_hdr));
4289 nonce = MREQ_NONCE (mreq_hdr);
4292 len = lisp_msg_parse_addr (b, &src);
4296 len = lisp_msg_parse_itr_rlocs (b, &itr_rlocs,
4297 MREQ_ITR_RLOC_COUNT (mreq_hdr) + 1);
4301 /* parse eid records and send SMR-invoked map-requests */
4302 for (i = 0; i < MREQ_REC_COUNT (mreq_hdr); i++)
4304 clib_memset (&dst, 0, sizeof (dst));
4305 len = lisp_msg_parse_eid_rec (b, &dst);
4308 clib_warning ("Can't parse map-request EID-record");
4312 if (MREQ_SMR (mreq_hdr))
4314 /* send SMR-invoked map-requests */
4315 queue_map_request (&dst, &src, 1 /* invoked */ , 0 /* resend */ );
4317 else if (MREQ_RLOC_PROBE (mreq_hdr))
4319 find_ip_header (b, &ip_hdr);
4322 clib_warning ("Cannot find the IP header!");
4326 clib_memset (&m, 0, sizeof (m));
4327 u32 mi = gid_dictionary_lookup (&lcm->mapping_index_by_gid, &dst);
4329 // TODO: select best locator; for now use the first one
4330 dst_loc = &gid_address_ip (&itr_rlocs[0]);
4332 /* get src/dst IP addresses */
4333 get_src_and_dst_ip (ip_hdr, &src_loc, &probed_loc);
4335 // TODO get source port from buffer
4336 u16 src_port = LISP_CONTROL_PORT;
4338 send_map_reply (lcm, mi, dst_loc, 1 /* probe-bit */ , nonce,
4339 src_port, &probed_loc);
4344 vlib_node_increment_counter (vm, node->node_index,
4345 LISP_CP_INPUT_ERROR_RLOC_PROBE_REQ_RECEIVED,
4347 vec_free (itr_rlocs);
4351 parse_map_reply (vlib_buffer_t * b)
4358 map_reply_hdr_t *mrep_hdr;
4359 map_records_arg_t *a;
4361 a = map_record_args_get ();
4362 clib_memset (a, 0, sizeof (*a));
4364 locator_t *locators;
4366 mrep_hdr = vlib_buffer_get_current (b);
4367 a->nonce = MREP_NONCE (mrep_hdr);
4368 a->is_rloc_probe = MREP_RLOC_PROBE (mrep_hdr);
4369 if (!vlib_buffer_has_space (b, sizeof (*mrep_hdr)))
4371 map_records_arg_free (a);
4374 vlib_buffer_pull (b, sizeof (*mrep_hdr));
4376 for (i = 0; i < MREP_REC_COUNT (mrep_hdr); i++)
4378 clib_memset (&m, 0, sizeof (m));
4380 h = vlib_buffer_get_current (b);
4382 m.ttl = clib_net_to_host_u32 (MAP_REC_TTL (h));
4383 m.action = MAP_REC_ACTION (h);
4384 m.authoritative = MAP_REC_AUTH (h);
4386 len = lisp_msg_parse_mapping_record (b, &deid, &locators, &probed);
4389 clib_warning ("Failed to parse mapping record!");
4390 map_records_arg_free (a);
4394 m.locators = locators;
4395 gid_address_copy (&m.eid, &deid);
4396 vec_add1 (a->mappings, m);
4402 queue_map_reply_for_processing (map_records_arg_t * a)
4404 vl_api_rpc_call_main_thread (process_map_reply, (u8 *) a, sizeof (*a));
4408 queue_map_notify_for_processing (map_records_arg_t * a)
4410 vl_api_rpc_call_main_thread (process_map_notify, (u8 *) a, sizeof (a[0]));
4414 lisp_cp_input (vlib_main_t * vm, vlib_node_runtime_t * node,
4415 vlib_frame_t * from_frame)
4417 u32 n_left_from, *from, *to_next_drop, rloc_probe_rep_recv = 0,
4418 map_notifies_recv = 0;
4419 lisp_msg_type_e type;
4420 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4421 map_records_arg_t *a;
4423 from = vlib_frame_vector_args (from_frame);
4424 n_left_from = from_frame->n_vectors;
4427 while (n_left_from > 0)
4429 u32 n_left_to_next_drop;
4431 vlib_get_next_frame (vm, node, LISP_CP_INPUT_NEXT_DROP,
4432 to_next_drop, n_left_to_next_drop);
4433 while (n_left_from > 0 && n_left_to_next_drop > 0)
4441 to_next_drop[0] = bi0;
4443 n_left_to_next_drop -= 1;
4445 b0 = vlib_get_buffer (vm, bi0);
4447 type = lisp_msg_type (vlib_buffer_get_current (b0));
4450 case LISP_MAP_REPLY:
4451 a = parse_map_reply (b0);
4454 if (a->is_rloc_probe)
4455 rloc_probe_rep_recv++;
4456 queue_map_reply_for_processing (a);
4459 case LISP_MAP_REQUEST:
4460 process_map_request (vm, node, lcm, b0);
4462 case LISP_MAP_NOTIFY:
4463 a = parse_map_notify (b0);
4466 map_notifies_recv++;
4467 queue_map_notify_for_processing (a);
4471 clib_warning ("Unsupported LISP message type %d", type);
4475 b0->error = node->errors[LISP_CP_INPUT_ERROR_DROP];
4477 if (PREDICT_FALSE (b0->flags & VLIB_BUFFER_IS_TRACED))
4483 vlib_put_next_frame (vm, node, LISP_CP_INPUT_NEXT_DROP,
4484 n_left_to_next_drop);
4486 vlib_node_increment_counter (vm, node->node_index,
4487 LISP_CP_INPUT_ERROR_RLOC_PROBE_REP_RECEIVED,
4488 rloc_probe_rep_recv);
4489 vlib_node_increment_counter (vm, node->node_index,
4490 LISP_CP_INPUT_ERROR_MAP_NOTIFIES_RECEIVED,
4492 return from_frame->n_vectors;
4496 VLIB_REGISTER_NODE (lisp_cp_input_node) = {
4497 .function = lisp_cp_input,
4498 .name = "lisp-cp-input",
4499 .vector_size = sizeof (u32),
4500 .format_trace = format_lisp_cp_input_trace,
4501 .type = VLIB_NODE_TYPE_INTERNAL,
4503 .n_errors = LISP_CP_INPUT_N_ERROR,
4504 .error_strings = lisp_cp_input_error_strings,
4506 .n_next_nodes = LISP_CP_INPUT_N_NEXT,
4509 [LISP_CP_INPUT_NEXT_DROP] = "error-drop",
4515 lisp_cp_init (vlib_main_t * vm)
4517 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4518 clib_error_t *error = 0;
4519 vlib_thread_main_t *vtm = vlib_get_thread_main ();
4522 if ((error = vlib_call_init_function (vm, lisp_gpe_init)))
4525 lcm->im4 = &ip4_main;
4526 lcm->im6 = &ip6_main;
4527 lcm->vlib_main = vm;
4528 lcm->vnet_main = vnet_get_main ();
4529 lcm->mreq_itr_rlocs = ~0;
4531 lcm->pitr_map_index = ~0;
4532 lcm->petr_map_index = ~0;
4533 clib_memset (&lcm->active_map_resolver, 0,
4534 sizeof (lcm->active_map_resolver));
4535 clib_memset (&lcm->active_map_server, 0, sizeof (lcm->active_map_server));
4537 gid_dictionary_init (&lcm->mapping_index_by_gid);
4538 lcm->do_map_resolver_election = 1;
4539 lcm->do_map_server_election = 1;
4540 lcm->map_request_mode = MR_MODE_DST_ONLY;
4542 num_threads = 1 /* main thread */ + vtm->n_threads;
4543 vec_validate (lcm->map_records_args_pool, num_threads - 1);
4545 /* default vrf mapped to vni 0 */
4546 hash_set (lcm->table_id_by_vni, 0, 0);
4547 hash_set (lcm->vni_by_table_id, 0, 0);
4549 u64 now = clib_cpu_time_now ();
4550 timing_wheel_init (&lcm->wheel, now, vm->clib_time.clocks_per_second);
4551 lcm->nsh_map_index = ~0;
4552 lcm->map_register_ttl = MAP_REGISTER_DEFAULT_TTL;
4553 lcm->max_expired_map_registers = MAX_EXPIRED_MAP_REGISTERS_DEFAULT;
4554 lcm->expired_map_registers = 0;
4555 lcm->transport_protocol = LISP_TRANSPORT_PROTOCOL_UDP;
4556 lcm->flags |= LISP_FLAG_XTR_MODE;
4561 lisp_stats_api_fill (lisp_cp_main_t * lcm, lisp_gpe_main_t * lgm,
4562 lisp_api_stats_t * stat, lisp_stats_key_t * key,
4566 vlib_combined_counter_main_t *cm = &lgm->counters;
4567 lisp_gpe_fwd_entry_key_t fwd_key;
4568 const lisp_gpe_tunnel_t *lgt;
4571 clib_memset (stat, 0, sizeof (*stat));
4572 clib_memset (&fwd_key, 0, sizeof (fwd_key));
4574 fe = pool_elt_at_index (lcm->fwd_entry_pool, key->fwd_entry_index);
4577 gid_to_dp_address (&fe->reid, &stat->deid);
4578 gid_to_dp_address (&fe->leid, &stat->seid);
4579 stat->vni = gid_address_vni (&fe->reid);
4581 lgt = lisp_gpe_tunnel_get (key->tunnel_index);
4582 stat->loc_rloc = lgt->key->lcl;
4583 stat->rmt_rloc = lgt->key->rmt;
4585 vlib_get_combined_counter (cm, stats_index, &v);
4591 vnet_lisp_get_stats (void)
4593 lisp_gpe_main_t *lgm = vnet_lisp_gpe_get_main ();
4594 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4595 lisp_api_stats_t *stats = 0, stat;
4596 lisp_stats_key_t *key;
4600 hash_foreach_mem (key, index, lgm->lisp_stats_index_by_key,
4602 if (lisp_stats_api_fill (lcm, lgm, &stat, key, index))
4603 vec_add1 (stats, stat);
4611 send_map_request_thread_fn (void *arg)
4613 map_request_args_t *a = arg;
4614 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4617 resend_encapsulated_map_request (lcm, &a->seid, &a->deid, a->smr_invoked);
4619 send_encapsulated_map_request (lcm, &a->seid, &a->deid, a->smr_invoked);
4625 queue_map_request (gid_address_t * seid, gid_address_t * deid,
4626 u8 smr_invoked, u8 is_resend)
4628 map_request_args_t a;
4630 a.is_resend = is_resend;
4631 gid_address_copy (&a.seid, seid);
4632 gid_address_copy (&a.deid, deid);
4633 a.smr_invoked = smr_invoked;
4635 vl_api_rpc_call_main_thread (send_map_request_thread_fn,
4636 (u8 *) & a, sizeof (a));
4641 * Take an action with a pending map request depending on expiration time
4642 * and re-try counters.
4645 update_pending_request (pending_map_request_t * r, f64 dt)
4647 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4650 if (r->time_to_expire - dt < 0)
4651 /* it's time to decide what to do with this pending request */
4653 if (r->retries_num >= NUMBER_OF_RETRIES)
4654 /* too many retries -> assume current map resolver is not available */
4656 mr = get_map_resolver (&lcm->active_map_resolver);
4659 clib_warning ("Map resolver %U not found - probably deleted "
4660 "by the user recently.", format_ip_address,
4661 &lcm->active_map_resolver);
4665 clib_warning ("map resolver %U is unreachable, ignoring",
4666 format_ip_address, &lcm->active_map_resolver);
4668 /* mark current map resolver unavailable so it won't be
4669 * selected next time */
4671 mr->last_update = vlib_time_now (lcm->vlib_main);
4674 reset_pending_mr_counters (r);
4675 elect_map_resolver (lcm);
4677 /* try to find a next eligible map resolver and re-send */
4678 queue_map_request (&r->src, &r->dst, r->is_smr_invoked,
4684 queue_map_request (&r->src, &r->dst, r->is_smr_invoked,
4687 r->time_to_expire = PENDING_MREQ_EXPIRATION_TIME;
4691 r->time_to_expire -= dt;
4695 remove_dead_pending_map_requests (lisp_cp_main_t * lcm)
4698 pending_map_request_t *pmr;
4699 u32 *to_be_removed = 0, *pmr_index;
4702 pool_foreach (pmr, lcm->pending_map_requests_pool,
4704 if (pmr->to_be_removed)
4706 clib_fifo_foreach (nonce, pmr->nonces, ({
4707 hash_unset (lcm->pending_map_requests_by_nonce, nonce[0]);
4710 vec_add1 (to_be_removed, pmr - lcm->pending_map_requests_pool);
4715 vec_foreach (pmr_index, to_be_removed)
4716 pool_put_index (lcm->pending_map_requests_pool, pmr_index[0]);
4718 vec_free (to_be_removed);
4722 update_rloc_probing (lisp_cp_main_t * lcm, f64 dt)
4724 static f64 time_left = RLOC_PROBING_INTERVAL;
4726 if (!lcm->is_enabled || !lcm->rloc_probing)
4732 time_left = RLOC_PROBING_INTERVAL;
4733 send_rloc_probes (lcm);
4738 update_pending_map_register (pending_map_register_t * r, f64 dt, u8 * del_all)
4740 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4744 r->time_to_expire -= dt;
4746 if (r->time_to_expire < 0)
4748 lcm->expired_map_registers++;
4750 if (lcm->expired_map_registers >= lcm->max_expired_map_registers)
4752 ms = get_map_server (&lcm->active_map_server);
4755 clib_warning ("Map server %U not found - probably deleted "
4756 "by the user recently.", format_ip_address,
4757 &lcm->active_map_server);
4761 clib_warning ("map server %U is unreachable, ignoring",
4762 format_ip_address, &lcm->active_map_server);
4764 /* mark current map server unavailable so it won't be
4765 * elected next time */
4767 ms->last_update = vlib_time_now (lcm->vlib_main);
4770 elect_map_server (lcm);
4772 /* indication for deleting all pending map registers */
4774 lcm->expired_map_registers = 0;
4779 /* delete pending map register */
4787 update_map_register (lisp_cp_main_t * lcm, f64 dt)
4789 u32 *to_be_removed = 0, *pmr_index;
4790 static f64 time_left = QUICK_MAP_REGISTER_INTERVAL;
4791 static u64 mreg_sent_counter = 0;
4793 pending_map_register_t *pmr;
4796 if (!lcm->is_enabled || !lcm->map_registering)
4800 pool_foreach (pmr, lcm->pending_map_registers_pool,
4802 if (!update_pending_map_register (pmr, dt, &del_all))
4806 vec_add1 (to_be_removed, pmr - lcm->pending_map_registers_pool);
4813 /* delete all pending map register messages so they won't
4814 * trigger another map server election.. */
4815 pool_free (lcm->pending_map_registers_pool);
4816 hash_free (lcm->map_register_messages_by_nonce);
4818 /* ..and trigger registration against next map server (if any) */
4823 vec_foreach (pmr_index, to_be_removed)
4824 pool_put_index (lcm->pending_map_registers_pool, pmr_index[0]);
4827 vec_free (to_be_removed);
4832 if (mreg_sent_counter >= QUICK_MAP_REGISTER_MSG_COUNT)
4833 time_left = MAP_REGISTER_INTERVAL;
4836 mreg_sent_counter++;
4837 time_left = QUICK_MAP_REGISTER_INTERVAL;
4839 send_map_register (lcm, 1 /* want map notify */ );
4844 send_map_resolver_service (vlib_main_t * vm,
4845 vlib_node_runtime_t * rt, vlib_frame_t * f)
4849 pending_map_request_t *pmr;
4850 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4854 vlib_process_wait_for_event_or_clock (vm, period);
4856 /* currently no signals are expected - just wait for clock */
4857 (void) vlib_process_get_events (vm, 0);
4860 pool_foreach (pmr, lcm->pending_map_requests_pool,
4862 if (!pmr->to_be_removed)
4863 update_pending_request (pmr, period);
4867 remove_dead_pending_map_requests (lcm);
4869 update_map_register (lcm, period);
4870 update_rloc_probing (lcm, period);
4872 u64 now = clib_cpu_time_now ();
4874 expired = timing_wheel_advance (&lcm->wheel, now, expired, 0);
4875 if (vec_len (expired) > 0)
4878 vec_foreach (mi, expired)
4880 process_expired_mapping (lcm, mi[0]);
4882 _vec_len (expired) = 0;
4891 vnet_lisp_stats_enable_disable (u8 enable)
4893 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4895 if (vnet_lisp_enable_disable_status () == 0)
4896 return VNET_API_ERROR_LISP_DISABLED;
4899 lcm->flags |= LISP_FLAG_STATS_ENABLED;
4901 lcm->flags &= ~LISP_FLAG_STATS_ENABLED;
4907 vnet_lisp_stats_enable_disable_state (void)
4909 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4911 if (vnet_lisp_enable_disable_status () == 0)
4912 return VNET_API_ERROR_LISP_DISABLED;
4914 return lcm->flags & LISP_FLAG_STATS_ENABLED;
4918 vnet_lisp_create_retry_process (lisp_cp_main_t * lcm)
4920 if (lcm->retry_service_index)
4923 lcm->retry_service_index = vlib_process_create (vlib_get_main (),
4924 "lisp-retry-service",
4925 send_map_resolver_service,
4926 16 /* stack_bytes */ );
4930 vnet_lisp_set_transport_protocol (u8 protocol)
4932 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4934 if (protocol < LISP_TRANSPORT_PROTOCOL_UDP ||
4935 protocol > LISP_TRANSPORT_PROTOCOL_API)
4936 return VNET_API_ERROR_INVALID_ARGUMENT;
4938 lcm->transport_protocol = protocol;
4942 lisp_transport_protocol_t
4943 vnet_lisp_get_transport_protocol (void)
4945 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4946 return lcm->transport_protocol;
4950 vnet_lisp_enable_disable_xtr_mode (u8 is_enabled)
4952 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4953 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
4954 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
4955 u8 petr_mode = lcm->flags & LISP_FLAG_PETR_MODE;
4957 if (pitr_mode && is_enabled)
4958 return VNET_API_ERROR_INVALID_ARGUMENT;
4960 if (is_enabled && xtr_mode)
4962 if (!is_enabled && !xtr_mode)
4969 lisp_cp_register_dst_port (lcm->vlib_main);
4971 lisp_cp_enable_l2_l3_ifaces (lcm, 1 /* with_default_route */ );
4972 lcm->flags |= LISP_FLAG_XTR_MODE;
4978 lisp_cp_unregister_dst_port (lcm->vlib_main);
4980 lisp_cp_disable_l2_l3_ifaces (lcm);
4981 lcm->flags &= ~LISP_FLAG_XTR_MODE;
4987 vnet_lisp_enable_disable_pitr_mode (u8 is_enabled)
4989 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
4990 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
4991 u8 pitr_mode = lcm->flags & LISP_FLAG_PITR_MODE;
4993 if (xtr_mode && is_enabled)
4994 return VNET_API_ERROR_INVALID_VALUE;
4996 if (is_enabled && pitr_mode)
4998 if (!is_enabled && !pitr_mode)
5003 /* create iface, no default route */
5004 lisp_cp_enable_l2_l3_ifaces (lcm, 0 /* with_default_route */ );
5005 lcm->flags |= LISP_FLAG_PITR_MODE;
5009 lisp_cp_disable_l2_l3_ifaces (lcm);
5010 lcm->flags &= ~LISP_FLAG_PITR_MODE;
5016 vnet_lisp_enable_disable_petr_mode (u8 is_enabled)
5018 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
5019 u8 xtr_mode = lcm->flags & LISP_FLAG_XTR_MODE;
5020 u8 petr_mode = lcm->flags & LISP_FLAG_PETR_MODE;
5022 if (is_enabled && petr_mode)
5024 if (!is_enabled && !petr_mode)
5031 lisp_cp_register_dst_port (lcm->vlib_main);
5033 lcm->flags |= LISP_FLAG_PETR_MODE;
5039 lisp_cp_unregister_dst_port (lcm->vlib_main);
5041 lcm->flags &= ~LISP_FLAG_PETR_MODE;
5047 vnet_lisp_get_xtr_mode (void)
5049 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
5050 return (lcm->flags & LISP_FLAG_XTR_MODE);
5054 vnet_lisp_get_pitr_mode (void)
5056 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
5057 return (lcm->flags & LISP_FLAG_PITR_MODE);
5061 vnet_lisp_get_petr_mode (void)
5063 lisp_cp_main_t *lcm = vnet_lisp_cp_get_main ();
5064 return (lcm->flags & LISP_FLAG_PETR_MODE);
5067 VLIB_INIT_FUNCTION (lisp_cp_init);
5070 * fd.io coding-style-patch-verification: ON
5073 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob