/* *------------------------------------------------------------------ * ip_api.c - vnet ip api * * Copyright (c) 2016 Cisco and/or its affiliates. * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at: * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. *------------------------------------------------------------------ */ #include <vnet/vnet.h> #include <vlibmemory/api.h> #include <vpp/stats/stats.h> #include <vnet/interface.h> #include <vnet/api_errno.h> #include <vnet/ethernet/ethernet.h> #include <vnet/ip/ip.h> #include <vnet/ip/ip_neighbor.h> #include <vnet/ip/ip6_neighbor.h> #include <vnet/fib/fib_table.h> #include <vnet/fib/fib_api.h> #include <vnet/dpo/drop_dpo.h> #include <vnet/dpo/receive_dpo.h> #include <vnet/dpo/lookup_dpo.h> #include <vnet/dpo/classify_dpo.h> #include <vnet/dpo/ip_null_dpo.h> #include <vnet/ethernet/arp_packet.h> #include <vnet/mfib/ip6_mfib.h> #include <vnet/mfib/ip4_mfib.h> #include <vnet/mfib/mfib_signal.h> #include <vnet/mfib/mfib_entry.h> #include <vnet/ip/ip_source_and_port_range_check.h> #include <vnet/fib/ip4_fib.h> #include <vnet/fib/ip6_fib.h> #include <vnet/ip/ip6_hop_by_hop.h> #include <vnet/ip/ip4_reassembly.h> #include <vnet/ip/ip6_reassembly.h> #include <vnet/ethernet/arp.h> #include <vnet/vnet_msg_enum.h> #define vl_typedefs /* define message structures */ #include <vnet/vnet_all_api_h.h> #undef vl_typedefs #define vl_endianfun /* define message structures */ #include <vnet/vnet_all_api_h.h> #undef vl_endianfun /* instantiate all the print functions we know about */ #define vl_print(handle, ...) vlib_cli_output (handle, __VA_ARGS__) #define vl_printfun #include <vnet/vnet_all_api_h.h> #undef vl_printfun #include <vlibapi/api_helper_macros.h> #define foreach_ip_api_msg \ _(IP_FIB_DUMP, ip_fib_dump) \ _(IP6_FIB_DUMP, ip6_fib_dump) \ _(IP_MFIB_DUMP, ip_mfib_dump) \ _(IP6_MFIB_DUMP, ip6_mfib_dump) \ _(IP_NEIGHBOR_DUMP, ip_neighbor_dump) \ _(IP_MROUTE_ADD_DEL, ip_mroute_add_del) \ _(MFIB_SIGNAL_DUMP, mfib_signal_dump) \ _(IP_ADDRESS_DUMP, ip_address_dump) \ _(IP_UNNUMBERED_DUMP, ip_unnumbered_dump) \ _(IP_DUMP, ip_dump) \ _(IP_NEIGHBOR_ADD_DEL, ip_neighbor_add_del) \ _(SET_ARP_NEIGHBOR_LIMIT, set_arp_neighbor_limit) \ _(IP_PROBE_NEIGHBOR, ip_probe_neighbor) \ _(IP_SCAN_NEIGHBOR_ENABLE_DISABLE, ip_scan_neighbor_enable_disable) \ _(WANT_IP4_ARP_EVENTS, want_ip4_arp_events) \ _(WANT_IP6_ND_EVENTS, want_ip6_nd_events) \ _(WANT_IP6_RA_EVENTS, want_ip6_ra_events) \ _(PROXY_ARP_ADD_DEL, proxy_arp_add_del) \ _(PROXY_ARP_DUMP, proxy_arp_dump) \ _(PROXY_ARP_INTFC_ENABLE_DISABLE, proxy_arp_intfc_enable_disable) \ _(PROXY_ARP_INTFC_DUMP, proxy_arp_intfc_dump) \ _(RESET_FIB, reset_fib) \ _(IP_ADD_DEL_ROUTE, ip_add_del_route) \ _(IP_TABLE_ADD_DEL, ip_table_add_del) \ _(IP_PUNT_POLICE, ip_punt_police) \ _(IP_PUNT_REDIRECT, ip_punt_redirect) \ _(SET_IP_FLOW_HASH,set_ip_flow_hash) \ _(SW_INTERFACE_IP6ND_RA_CONFIG, sw_interface_ip6nd_ra_config) \ _(SW_INTERFACE_IP6ND_RA_PREFIX, sw_interface_ip6nd_ra_prefix) \ _(IP6ND_PROXY_ADD_DEL, ip6nd_proxy_add_del) \ _(IP6ND_PROXY_DUMP, ip6nd_proxy_dump) \ _(IP6ND_SEND_ROUTER_SOLICITATION, ip6nd_send_router_solicitation) \ _(SW_INTERFACE_IP6_ENABLE_DISABLE, sw_interface_ip6_enable_disable ) \ _(SW_INTERFACE_IP6_SET_LINK_LOCAL_ADDRESS, \ sw_interface_ip6_set_link_local_address) \ _(IP_CONTAINER_PROXY_ADD_DEL, ip_container_proxy_add_del) \ _(IOAM_ENABLE, ioam_enable) \ _(IOAM_DISABLE, ioam_disable) \ _(IP_SOURCE_AND_PORT_RANGE_CHECK_ADD_DEL, \ ip_source_and_port_range_check_add_del) \ _(IP_SOURCE_AND_PORT_RANGE_CHECK_INTERFACE_ADD_DEL, \ ip_source_and_port_range_check_interface_add_del) \ _(IP_REASSEMBLY_SET, ip_reassembly_set) \ _(IP_REASSEMBLY_GET, ip_reassembly_get) \ _(IP_REASSEMBLY_ENABLE_DISABLE, ip_reassembly_enable_disable) extern void stats_dslock_with_hint (int hint, int tag); extern void stats_dsunlock (void); static void send_ip_neighbor_details (u32 sw_if_index, u8 is_ipv6, u8 is_static, u8 * mac_address, u8 * ip_address, vl_api_registration_t * reg, u32 context) { vl_api_ip_neighbor_details_t *mp; mp = vl_msg_api_alloc (sizeof (*mp)); memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP_NEIGHBOR_DETAILS); mp->context = context; mp->sw_if_index = htonl (sw_if_index); mp->is_ipv6 = is_ipv6; mp->is_static = is_static; memcpy (mp->mac_address, mac_address, 6); memcpy (mp->ip_address, ip_address, (is_ipv6) ? 16 : 4); vl_api_send_msg (reg, (u8 *) mp); } static void vl_api_ip_neighbor_dump_t_handler (vl_api_ip_neighbor_dump_t * mp) { vl_api_registration_t *reg; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; u32 sw_if_index = ntohl (mp->sw_if_index); if (mp->is_ipv6) { ip6_neighbor_t *n, *ns; ns = ip6_neighbors_entries (sw_if_index); /* *INDENT-OFF* */ vec_foreach (n, ns) { send_ip_neighbor_details (sw_if_index, mp->is_ipv6, ((n->flags & IP6_NEIGHBOR_FLAG_STATIC) ? 1 : 0), (u8 *) n->link_layer_address, (u8 *) & (n->key.ip6_address.as_u8), reg, mp->context); } /* *INDENT-ON* */ vec_free (ns); } else { ethernet_arp_ip4_entry_t *n, *ns; ns = ip4_neighbor_entries (sw_if_index); /* *INDENT-OFF* */ vec_foreach (n, ns) { send_ip_neighbor_details (sw_if_index, mp->is_ipv6, ((n->flags & ETHERNET_ARP_IP4_ENTRY_FLAG_STATIC) ? 1 : 0), (u8*) n->ethernet_address, (u8*) & (n->ip4_address.as_u8), reg, mp->context); } /* *INDENT-ON* */ vec_free (ns); } } static void send_ip_fib_details (vpe_api_main_t * am, vl_api_registration_t * reg, const fib_table_t * table, const fib_prefix_t * pfx, fib_route_path_encode_t * api_rpaths, u32 context) { vl_api_ip_fib_details_t *mp; fib_route_path_encode_t *api_rpath; vl_api_fib_path_t *fp; int path_count; path_count = vec_len (api_rpaths); mp = vl_msg_api_alloc (sizeof (*mp) + path_count * sizeof (*fp)); if (!mp) return; memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP_FIB_DETAILS); mp->context = context; mp->table_id = htonl (table->ft_table_id); memcpy (mp->table_name, table->ft_desc, clib_min (vec_len (table->ft_desc), sizeof (mp->table_name))); mp->address_length = pfx->fp_len; memcpy (mp->address, &pfx->fp_addr.ip4, sizeof (pfx->fp_addr.ip4)); mp->count = htonl (path_count); fp = mp->path; vec_foreach (api_rpath, api_rpaths) { fib_api_path_encode (api_rpath, fp); fp++; } vl_api_send_msg (reg, (u8 *) mp); } typedef struct vl_api_ip_fib_dump_walk_ctx_t_ { fib_node_index_t *feis; } vl_api_ip_fib_dump_walk_ctx_t; static fib_table_walk_rc_t vl_api_ip_fib_dump_walk (fib_node_index_t fei, void *arg) { vl_api_ip_fib_dump_walk_ctx_t *ctx = arg; vec_add1 (ctx->feis, fei); return (FIB_TABLE_WALK_CONTINUE); } static void vl_api_ip_fib_dump_t_handler (vl_api_ip_fib_dump_t * mp) { vpe_api_main_t *am = &vpe_api_main; vl_api_registration_t *reg; ip4_main_t *im = &ip4_main; fib_table_t *fib_table; fib_node_index_t *lfeip; fib_prefix_t pfx; u32 fib_index; fib_route_path_encode_t *api_rpaths; vl_api_ip_fib_dump_walk_ctx_t ctx = { .feis = NULL, }; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; /* *INDENT-OFF* */ pool_foreach (fib_table, im->fibs, ({ fib_table_walk(fib_table->ft_index, FIB_PROTOCOL_IP4, vl_api_ip_fib_dump_walk, &ctx); })); /* *INDENT-ON* */ vec_sort_with_function (ctx.feis, fib_entry_cmp_for_sort); vec_foreach (lfeip, ctx.feis) { fib_entry_get_prefix (*lfeip, &pfx); fib_index = fib_entry_get_fib_index (*lfeip); fib_table = fib_table_get (fib_index, pfx.fp_proto); api_rpaths = NULL; fib_entry_encode (*lfeip, &api_rpaths); send_ip_fib_details (am, reg, fib_table, &pfx, api_rpaths, mp->context); vec_free (api_rpaths); } vec_free (ctx.feis); } static void send_ip6_fib_details (vpe_api_main_t * am, vl_api_registration_t * reg, const fib_table_t * table, const fib_prefix_t * pfx, fib_route_path_encode_t * api_rpaths, u32 context) { vl_api_ip6_fib_details_t *mp; fib_route_path_encode_t *api_rpath; vl_api_fib_path_t *fp; int path_count; path_count = vec_len (api_rpaths); mp = vl_msg_api_alloc (sizeof (*mp) + path_count * sizeof (*fp)); if (!mp) return; memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP6_FIB_DETAILS); mp->context = context; mp->table_id = htonl (table->ft_table_id); mp->address_length = pfx->fp_len; memcpy (mp->address, &pfx->fp_addr.ip6, sizeof (pfx->fp_addr.ip6)); memcpy (mp->table_name, table->ft_desc, clib_min (vec_len (table->ft_desc), sizeof (mp->table_name))); mp->count = htonl (path_count); fp = mp->path; vec_foreach (api_rpath, api_rpaths) { fib_api_path_encode (api_rpath, fp); fp++; } vl_api_send_msg (reg, (u8 *) mp); } typedef struct apt_ip6_fib_show_ctx_t_ { u32 fib_index; fib_node_index_t *entries; } api_ip6_fib_show_ctx_t; static void api_ip6_fib_table_put_entries (clib_bihash_kv_24_8_t * kvp, void *arg) { api_ip6_fib_show_ctx_t *ctx = arg; if ((kvp->key[2] >> 32) == ctx->fib_index) { vec_add1 (ctx->entries, kvp->value); } } static void api_ip6_fib_table_get_all (vl_api_registration_t * reg, vl_api_ip6_fib_dump_t * mp, fib_table_t * fib_table) { vpe_api_main_t *am = &vpe_api_main; ip6_main_t *im6 = &ip6_main; fib_node_index_t *fib_entry_index; api_ip6_fib_show_ctx_t ctx = { .fib_index = fib_table->ft_index, .entries = NULL, }; fib_route_path_encode_t *api_rpaths; fib_prefix_t pfx; BV (clib_bihash_foreach_key_value_pair) ((BVT (clib_bihash) *) & im6->ip6_table[IP6_FIB_TABLE_NON_FWDING]. ip6_hash, api_ip6_fib_table_put_entries, &ctx); vec_sort_with_function (ctx.entries, fib_entry_cmp_for_sort); vec_foreach (fib_entry_index, ctx.entries) { fib_entry_get_prefix (*fib_entry_index, &pfx); api_rpaths = NULL; fib_entry_encode (*fib_entry_index, &api_rpaths); send_ip6_fib_details (am, reg, fib_table, &pfx, api_rpaths, mp->context); vec_free (api_rpaths); } vec_free (ctx.entries); } static void vl_api_ip6_fib_dump_t_handler (vl_api_ip6_fib_dump_t * mp) { vl_api_registration_t *reg; ip6_main_t *im6 = &ip6_main; fib_table_t *fib_table; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; /* *INDENT-OFF* */ pool_foreach (fib_table, im6->fibs, ({ /* don't send link locals */ if (fib_table->ft_flags & FIB_TABLE_FLAG_IP6_LL) continue; api_ip6_fib_table_get_all(reg, mp, fib_table); })); /* *INDENT-ON* */ } static void send_ip_mfib_details (vl_api_registration_t * reg, u32 context, u32 table_id, fib_node_index_t mfei) { fib_route_path_encode_t *api_rpath, *api_rpaths = NULL; vl_api_ip_mfib_details_t *mp; mfib_entry_t *mfib_entry; vl_api_fib_path_t *fp; mfib_prefix_t pfx; int path_count; mfib_entry = mfib_entry_get (mfei); mfib_entry_get_prefix (mfei, &pfx); mfib_entry_encode (mfei, &api_rpaths); path_count = vec_len (api_rpaths); mp = vl_msg_api_alloc (sizeof (*mp) + path_count * sizeof (*fp)); if (!mp) return; memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP_MFIB_DETAILS); mp->context = context; mp->rpf_id = mfib_entry->mfe_rpf_id; mp->entry_flags = mfib_entry->mfe_flags; mp->table_id = htonl (table_id); mp->address_length = pfx.fp_len; memcpy (mp->grp_address, &pfx.fp_grp_addr.ip4, sizeof (pfx.fp_grp_addr.ip4)); memcpy (mp->src_address, &pfx.fp_src_addr.ip4, sizeof (pfx.fp_src_addr.ip4)); mp->count = htonl (path_count); fp = mp->path; vec_foreach (api_rpath, api_rpaths) { fib_api_path_encode (api_rpath, fp); fp++; } vec_free (api_rpaths); vl_api_send_msg (reg, (u8 *) mp); } typedef struct vl_api_ip_mfib_dump_ctc_t_ { fib_node_index_t *entries; } vl_api_ip_mfib_dump_ctc_t; static int vl_api_ip_mfib_table_dump_walk (fib_node_index_t fei, void *arg) { vl_api_ip_mfib_dump_ctc_t *ctx = arg; vec_add1 (ctx->entries, fei); return (0); } static void vl_api_ip_mfib_dump_t_handler (vl_api_ip_mfib_dump_t * mp) { vl_api_registration_t *reg; ip4_main_t *im = &ip4_main; mfib_table_t *mfib_table; fib_node_index_t *mfeip; vl_api_ip_mfib_dump_ctc_t ctx = { .entries = NULL, }; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; /* *INDENT-OFF* */ pool_foreach (mfib_table, im->mfibs, ({ ip4_mfib_table_walk(&mfib_table->v4, vl_api_ip_mfib_table_dump_walk, &ctx); vec_sort_with_function (ctx.entries, mfib_entry_cmp_for_sort); vec_foreach (mfeip, ctx.entries) { send_ip_mfib_details (reg, mp->context, mfib_table->mft_table_id, *mfeip); } vec_reset_length (ctx.entries); })); /* *INDENT-ON* */ vec_free (ctx.entries); } static void send_ip6_mfib_details (vpe_api_main_t * am, vl_api_registration_t * reg, u32 table_id, mfib_prefix_t * pfx, fib_route_path_encode_t * api_rpaths, u32 context) { vl_api_ip6_mfib_details_t *mp; fib_route_path_encode_t *api_rpath; vl_api_fib_path_t *fp; int path_count; path_count = vec_len (api_rpaths); mp = vl_msg_api_alloc (sizeof (*mp) + path_count * sizeof (*fp)); if (!mp) return; memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP6_MFIB_DETAILS); mp->context = context; mp->table_id = htonl (table_id); mp->address_length = pfx->fp_len; memcpy (mp->grp_address, &pfx->fp_grp_addr.ip6, sizeof (pfx->fp_grp_addr.ip6)); memcpy (mp->src_address, &pfx->fp_src_addr.ip6, sizeof (pfx->fp_src_addr.ip6)); mp->count = htonl (path_count); fp = mp->path; vec_foreach (api_rpath, api_rpaths) { fib_api_path_encode (api_rpath, fp); fp++; } vl_api_send_msg (reg, (u8 *) mp); } typedef struct vl_api_ip6_mfib_dump_ctc_t_ { fib_node_index_t *entries; } vl_api_ip6_mfib_dump_ctc_t; static int vl_api_ip6_mfib_table_dump_walk (fib_node_index_t fei, void *arg) { vl_api_ip6_mfib_dump_ctc_t *ctx = arg; vec_add1 (ctx->entries, fei); return (0); } static void vl_api_ip6_mfib_dump_t_handler (vl_api_ip6_mfib_dump_t * mp) { vpe_api_main_t *am = &vpe_api_main; vl_api_registration_t *reg; ip6_main_t *im = &ip6_main; mfib_table_t *mfib_table; fib_node_index_t *mfeip; mfib_prefix_t pfx; fib_route_path_encode_t *api_rpaths = NULL; vl_api_ip6_mfib_dump_ctc_t ctx = { .entries = NULL, }; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; /* *INDENT-OFF* */ pool_foreach (mfib_table, im->mfibs, ({ ip6_mfib_table_walk(&mfib_table->v6, vl_api_ip6_mfib_table_dump_walk, &ctx); vec_sort_with_function (ctx.entries, mfib_entry_cmp_for_sort); vec_foreach(mfeip, ctx.entries) { mfib_entry_get_prefix (*mfeip, &pfx); mfib_entry_encode (*mfeip, &api_rpaths); send_ip6_mfib_details (am, reg, mfib_table->mft_table_id, &pfx, api_rpaths, mp->context); } vec_reset_length (api_rpaths); vec_reset_length (ctx.entries); })); /* *INDENT-ON* */ vec_free (ctx.entries); vec_free (api_rpaths); } static void vl_api_ip_punt_police_t_handler (vl_api_ip_punt_police_t * mp, vlib_main_t * vm) { vl_api_ip_punt_police_reply_t *rmp; int rv = 0; if (mp->is_ip6) ip6_punt_policer_add_del (mp->is_add, ntohl (mp->policer_index)); else ip4_punt_policer_add_del (mp->is_add, ntohl (mp->policer_index)); REPLY_MACRO (VL_API_IP_PUNT_POLICE_REPLY); } static void vl_api_ip_punt_redirect_t_handler (vl_api_ip_punt_redirect_t * mp, vlib_main_t * vm) { vl_api_ip_punt_redirect_reply_t *rmp; int rv = 0; if (mp->is_add) { ip46_address_t nh; memset (&nh, 0, sizeof (nh)); if (mp->is_ip6) { memcpy (&nh.ip6, mp->nh, sizeof (nh.ip6)); ip6_punt_redirect_add (ntohl (mp->rx_sw_if_index), ntohl (mp->tx_sw_if_index), &nh); } else { memcpy (&nh.ip4, mp->nh, sizeof (nh.ip4)); ip4_punt_redirect_add (ntohl (mp->rx_sw_if_index), ntohl (mp->tx_sw_if_index), &nh); } } else { if (mp->is_ip6) { ip6_punt_redirect_del (ntohl (mp->rx_sw_if_index)); } else { ip4_punt_redirect_del (ntohl (mp->rx_sw_if_index)); } } REPLY_MACRO (VL_API_IP_PUNT_REDIRECT_REPLY); } static void vl_api_ip_neighbor_add_del_t_handler (vl_api_ip_neighbor_add_del_t * mp, vlib_main_t * vm) { vl_api_ip_neighbor_add_del_reply_t *rmp; vnet_main_t *vnm = vnet_get_main (); int rv = 0; VALIDATE_SW_IF_INDEX (mp); stats_dslock_with_hint (1 /* release hint */ , 7 /* tag */ ); /* * there's no validation here of the ND/ARP entry being added. * The expectation is that the FIB will ensure that nothing bad * will come of adding bogus entries. */ if (mp->is_ipv6) { if (mp->is_add) rv = vnet_set_ip6_ethernet_neighbor (vm, ntohl (mp->sw_if_index), (ip6_address_t *) (mp->dst_address), mp->mac_address, sizeof (mp->mac_address), mp->is_static, mp->is_no_adj_fib); else rv = vnet_unset_ip6_ethernet_neighbor (vm, ntohl (mp->sw_if_index), (ip6_address_t *) (mp->dst_address), mp->mac_address, sizeof (mp->mac_address)); } else { ethernet_arp_ip4_over_ethernet_address_t a; clib_memcpy (&a.ethernet, mp->mac_address, 6); clib_memcpy (&a.ip4, mp->dst_address, 4); if (mp->is_add) rv = vnet_arp_set_ip4_over_ethernet (vnm, ntohl (mp->sw_if_index), &a, mp->is_static, mp->is_no_adj_fib); else rv = vnet_arp_unset_ip4_over_ethernet (vnm, ntohl (mp->sw_if_index), &a); } stats_dsunlock (); BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_IP_NEIGHBOR_ADD_DEL_REPLY); } void ip_table_delete (fib_protocol_t fproto, u32 table_id, u8 is_api) { u32 fib_index, mfib_index; /* * ignore action on the default table - this is always present * and cannot be added nor deleted from the API */ if (0 != table_id) { /* * The API holds only one lock on the table. * i.e. it can be added many times via the API but needs to be * deleted only once. * The FIB index for unicast and multicast is not necessarily the * same, since internal VPP systesm (like LISP and SR) create * their own unicast tables. */ fib_index = fib_table_find (fproto, table_id); mfib_index = mfib_table_find (fproto, table_id); if (~0 != fib_index) { fib_table_unlock (fib_index, fproto, (is_api ? FIB_SOURCE_API : FIB_SOURCE_CLI)); } if (~0 != mfib_index) { mfib_table_unlock (mfib_index, fproto, (is_api ? MFIB_SOURCE_API : MFIB_SOURCE_CLI)); } } } void vl_api_ip_table_add_del_t_handler (vl_api_ip_table_add_del_t * mp) { vl_api_ip_table_add_del_reply_t *rmp; fib_protocol_t fproto = (mp->is_ipv6 ? FIB_PROTOCOL_IP6 : FIB_PROTOCOL_IP4); u32 table_id = ntohl (mp->table_id); int rv = 0; if (mp->is_add) { ip_table_create (fproto, table_id, 1, mp->name); } else { ip_table_delete (fproto, table_id, 1); } REPLY_MACRO (VL_API_IP_TABLE_ADD_DEL_REPLY); } int add_del_route_t_handler (u8 is_multipath, u8 is_add, u8 is_drop, u8 is_unreach, u8 is_prohibit, u8 is_local, u8 is_multicast, u8 is_classify, u32 classify_table_index, u8 is_resolve_host, u8 is_resolve_attached, u8 is_interface_rx, u8 is_rpf_id, u8 is_dvr, u8 is_source_lookup, u8 is_udp_encap, u32 fib_index, const fib_prefix_t * prefix, dpo_proto_t next_hop_proto, const ip46_address_t * next_hop, u32 next_hop_id, u32 next_hop_sw_if_index, u8 next_hop_fib_index, u16 next_hop_weight, u16 next_hop_preference, mpls_label_t next_hop_via_label, fib_mpls_label_t * next_hop_out_label_stack) { vnet_classify_main_t *cm = &vnet_classify_main; fib_route_path_flags_t path_flags = FIB_ROUTE_PATH_FLAG_NONE; fib_route_path_t path = { .frp_proto = next_hop_proto, .frp_addr = (NULL == next_hop ? zero_addr : *next_hop), .frp_sw_if_index = next_hop_sw_if_index, .frp_fib_index = next_hop_fib_index, .frp_weight = next_hop_weight, .frp_preference = next_hop_preference, .frp_label_stack = next_hop_out_label_stack, }; fib_route_path_t *paths = NULL; fib_entry_flag_t entry_flags = FIB_ENTRY_FLAG_NONE; /* * the special INVALID label meams we are not recursing via a * label. Exp-null value is never a valid via-label so that * also means it's not a via-label and means clients that set * it to 0 by default get the expected behaviour */ if ((MPLS_LABEL_INVALID != next_hop_via_label) && (0 != next_hop_via_label)) { path.frp_proto = DPO_PROTO_MPLS; path.frp_local_label = next_hop_via_label; path.frp_eos = MPLS_NON_EOS; } if (is_dvr) path_flags |= FIB_ROUTE_PATH_DVR; if (is_resolve_host) path_flags |= FIB_ROUTE_PATH_RESOLVE_VIA_HOST; if (is_resolve_attached) path_flags |= FIB_ROUTE_PATH_RESOLVE_VIA_ATTACHED; if (is_interface_rx) path_flags |= FIB_ROUTE_PATH_INTF_RX; if (is_rpf_id) path_flags |= FIB_ROUTE_PATH_RPF_ID; if (is_source_lookup) path_flags |= FIB_ROUTE_PATH_SOURCE_LOOKUP; if (is_multicast) entry_flags |= FIB_ENTRY_FLAG_MULTICAST; if (is_udp_encap) { path_flags |= FIB_ROUTE_PATH_UDP_ENCAP; path.frp_udp_encap_id = next_hop_id; } if (path.frp_sw_if_index == ~0 && ip46_address_is_zero (&path.frp_addr) && path.frp_fib_index != ~0) { path_flags |= FIB_ROUTE_PATH_DEAG; } path.frp_flags = path_flags; if (is_multipath) { stats_dslock_with_hint (1 /* release hint */ , 10 /* tag */ ); vec_add1 (paths, path); if (is_add) fib_table_entry_path_add2 (fib_index, prefix, FIB_SOURCE_API, entry_flags, paths); else fib_table_entry_path_remove2 (fib_index, prefix, FIB_SOURCE_API, paths); vec_free (paths); stats_dsunlock (); return 0; } stats_dslock_with_hint (1 /* release hint */ , 2 /* tag */ ); if (is_drop || is_local || is_classify || is_unreach || is_prohibit) { /* * special route types that link directly to the adj */ if (is_add) { dpo_id_t dpo = DPO_INVALID; dpo_proto_t dproto; dproto = fib_proto_to_dpo (prefix->fp_proto); if (is_drop) ip_null_dpo_add_and_lock (dproto, IP_NULL_ACTION_NONE, &dpo); else if (is_local) receive_dpo_add_or_lock (dproto, ~0, NULL, &dpo); else if (is_unreach) ip_null_dpo_add_and_lock (dproto, IP_NULL_ACTION_SEND_ICMP_UNREACH, &dpo); else if (is_prohibit) ip_null_dpo_add_and_lock (dproto, IP_NULL_ACTION_SEND_ICMP_PROHIBIT, &dpo); else if (is_classify) { if (pool_is_free_index (cm->tables, ntohl (classify_table_index))) { stats_dsunlock (); return VNET_API_ERROR_NO_SUCH_TABLE; } dpo_set (&dpo, DPO_CLASSIFY, dproto, classify_dpo_create (dproto, ntohl (classify_table_index))); } else { stats_dsunlock (); return VNET_API_ERROR_NO_SUCH_TABLE; } fib_table_entry_special_dpo_update (fib_index, prefix, FIB_SOURCE_API, FIB_ENTRY_FLAG_EXCLUSIVE, &dpo); dpo_reset (&dpo); } else { fib_table_entry_special_remove (fib_index, prefix, FIB_SOURCE_API); } } else { if (is_add) { vec_add1 (paths, path); fib_table_entry_update (fib_index, prefix, FIB_SOURCE_API, entry_flags, paths); vec_free (paths); } else { fib_table_entry_delete (fib_index, prefix, FIB_SOURCE_API); } } stats_dsunlock (); return (0); } int add_del_route_check (fib_protocol_t table_proto, u32 table_id, u32 next_hop_sw_if_index, dpo_proto_t next_hop_table_proto, u32 next_hop_table_id, u8 is_rpf_id, u32 * fib_index, u32 * next_hop_fib_index) { vnet_main_t *vnm = vnet_get_main (); *fib_index = fib_table_find (table_proto, ntohl (table_id)); if (~0 == *fib_index) { /* No such VRF, and we weren't asked to create one */ return VNET_API_ERROR_NO_SUCH_FIB; } if (!is_rpf_id && ~0 != ntohl (next_hop_sw_if_index)) { if (pool_is_free_index (vnm->interface_main.sw_interfaces, ntohl (next_hop_sw_if_index))) { return VNET_API_ERROR_NO_MATCHING_INTERFACE; } } else { fib_protocol_t fib_nh_proto; if (next_hop_table_proto > DPO_PROTO_MPLS) return (0); fib_nh_proto = dpo_proto_to_fib (next_hop_table_proto); if (is_rpf_id) *next_hop_fib_index = mfib_table_find (fib_nh_proto, ntohl (next_hop_table_id)); else *next_hop_fib_index = fib_table_find (fib_nh_proto, ntohl (next_hop_table_id)); if (~0 == *next_hop_fib_index) { /* No such VRF, and we weren't asked to create one */ return VNET_API_ERROR_NO_SUCH_FIB; } } return (0); } static int ip4_add_del_route_t_handler (vl_api_ip_add_del_route_t * mp) { u32 fib_index, next_hop_fib_index; fib_mpls_label_t *label_stack = NULL; int rv, ii, n_labels;; rv = add_del_route_check (FIB_PROTOCOL_IP4, mp->table_id, mp->next_hop_sw_if_index, DPO_PROTO_IP4, mp->next_hop_table_id, 0, &fib_index, &next_hop_fib_index); if (0 != rv) return (rv); fib_prefix_t pfx = { .fp_len = mp->dst_address_length, .fp_proto = FIB_PROTOCOL_IP4, }; clib_memcpy (&pfx.fp_addr.ip4, mp->dst_address, sizeof (pfx.fp_addr.ip4)); ip46_address_t nh; memset (&nh, 0, sizeof (nh)); memcpy (&nh.ip4, mp->next_hop_address, sizeof (nh.ip4)); n_labels = mp->next_hop_n_out_labels; if (n_labels == 0) ; else { vec_validate (label_stack, n_labels - 1); for (ii = 0; ii < n_labels; ii++) { label_stack[ii].fml_value = ntohl (mp->next_hop_out_label_stack[ii].label); label_stack[ii].fml_ttl = mp->next_hop_out_label_stack[ii].ttl; label_stack[ii].fml_exp = mp->next_hop_out_label_stack[ii].exp; label_stack[ii].fml_mode = (mp->next_hop_out_label_stack[ii].is_uniform ? FIB_MPLS_LSP_MODE_UNIFORM : FIB_MPLS_LSP_MODE_PIPE); } } return (add_del_route_t_handler (mp->is_multipath, mp->is_add, mp->is_drop, mp->is_unreach, mp->is_prohibit, mp->is_local, 0, mp->is_classify, mp->classify_table_index, mp->is_resolve_host, mp->is_resolve_attached, 0, 0, mp->is_dvr, mp->is_source_lookup, mp->is_udp_encap, fib_index, &pfx, DPO_PROTO_IP4, &nh, ntohl (mp->next_hop_id), ntohl (mp->next_hop_sw_if_index), next_hop_fib_index, mp->next_hop_weight, mp->next_hop_preference, ntohl (mp->next_hop_via_label), label_stack)); } static int ip6_add_del_route_t_handler (vl_api_ip_add_del_route_t * mp) { fib_mpls_label_t *label_stack = NULL; u32 fib_index, next_hop_fib_index; int rv, ii, n_labels;; rv = add_del_route_check (FIB_PROTOCOL_IP6, mp->table_id, mp->next_hop_sw_if_index, DPO_PROTO_IP6, mp->next_hop_table_id, 0, &fib_index, &next_hop_fib_index); if (0 != rv) return (rv); fib_prefix_t pfx = { .fp_len = mp->dst_address_length, .fp_proto = FIB_PROTOCOL_IP6, }; clib_memcpy (&pfx.fp_addr.ip6, mp->dst_address, sizeof (pfx.fp_addr.ip6)); ip46_address_t nh; memset (&nh, 0, sizeof (nh)); memcpy (&nh.ip6, mp->next_hop_address, sizeof (nh.ip6)); n_labels = mp->next_hop_n_out_labels; if (n_labels == 0) ; else { vec_validate (label_stack, n_labels - 1); for (ii = 0; ii < n_labels; ii++) { label_stack[ii].fml_value = ntohl (mp->next_hop_out_label_stack[ii].label); label_stack[ii].fml_ttl = mp->next_hop_out_label_stack[ii].ttl; label_stack[ii].fml_exp = mp->next_hop_out_label_stack[ii].exp; label_stack[ii].fml_mode = (mp->next_hop_out_label_stack[ii].is_uniform ? FIB_MPLS_LSP_MODE_UNIFORM : FIB_MPLS_LSP_MODE_PIPE); } } return (add_del_route_t_handler (mp->is_multipath, mp->is_add, mp->is_drop, mp->is_unreach, mp->is_prohibit, mp->is_local, 0, mp->is_classify, mp->classify_table_index, mp->is_resolve_host, mp->is_resolve_attached, 0, 0, mp->is_dvr, mp->is_source_lookup, mp->is_udp_encap, fib_index, &pfx, DPO_PROTO_IP6, &nh, ntohl (mp->next_hop_id), ntohl (mp->next_hop_sw_if_index), next_hop_fib_index, mp->next_hop_weight, mp->next_hop_preference, ntohl (mp->next_hop_via_label), label_stack)); } void vl_api_ip_add_del_route_t_handler (vl_api_ip_add_del_route_t * mp) { vl_api_ip_add_del_route_reply_t *rmp; int rv; vnet_main_t *vnm = vnet_get_main (); vnm->api_errno = 0; if (mp->is_ipv6) rv = ip6_add_del_route_t_handler (mp); else rv = ip4_add_del_route_t_handler (mp); rv = (rv == 0) ? vnm->api_errno : rv; REPLY_MACRO (VL_API_IP_ADD_DEL_ROUTE_REPLY); } void ip_table_create (fib_protocol_t fproto, u32 table_id, u8 is_api, const u8 * name) { u32 fib_index, mfib_index; /* * ignore action on the default table - this is always present * and cannot be added nor deleted from the API */ if (0 != table_id) { /* * The API holds only one lock on the table. * i.e. it can be added many times via the API but needs to be * deleted only once. * The FIB index for unicast and multicast is not necessarily the * same, since internal VPP systesm (like LISP and SR) create * their own unicast tables. */ fib_index = fib_table_find (fproto, table_id); mfib_index = mfib_table_find (fproto, table_id); if (~0 == fib_index) { fib_table_find_or_create_and_lock_w_name (fproto, table_id, (is_api ? FIB_SOURCE_API : FIB_SOURCE_CLI), name); } if (~0 == mfib_index) { mfib_table_find_or_create_and_lock_w_name (fproto, table_id, (is_api ? MFIB_SOURCE_API : MFIB_SOURCE_CLI), name); } } } static int add_del_mroute_check (fib_protocol_t table_proto, u32 table_id, u32 next_hop_sw_if_index, u8 is_local, u32 * fib_index) { vnet_main_t *vnm = vnet_get_main (); *fib_index = mfib_table_find (table_proto, ntohl (table_id)); if (~0 == *fib_index) { /* No such table */ return VNET_API_ERROR_NO_SUCH_FIB; } if (~0 != ntohl (next_hop_sw_if_index)) { if (pool_is_free_index (vnm->interface_main.sw_interfaces, ntohl (next_hop_sw_if_index))) { return VNET_API_ERROR_NO_MATCHING_INTERFACE; } } return (0); } static int mroute_add_del_handler (u8 is_add, u8 is_local, u32 fib_index, const mfib_prefix_t * prefix, dpo_proto_t nh_proto, u32 entry_flags, fib_rpf_id_t rpf_id, u32 next_hop_sw_if_index, ip46_address_t * nh, u32 itf_flags, u32 bier_imp) { stats_dslock_with_hint (1 /* release hint */ , 2 /* tag */ ); fib_route_path_t path = { .frp_sw_if_index = next_hop_sw_if_index, .frp_proto = nh_proto, .frp_addr = *nh, }; if (is_local) path.frp_flags |= FIB_ROUTE_PATH_LOCAL; if (DPO_PROTO_BIER == nh_proto) { path.frp_bier_imp = bier_imp; path.frp_flags = FIB_ROUTE_PATH_BIER_IMP; } else if (!is_local && ~0 == next_hop_sw_if_index) { mfib_table_entry_update (fib_index, prefix, MFIB_SOURCE_API, rpf_id, entry_flags); goto done; } if (is_add) { mfib_table_entry_path_update (fib_index, prefix, MFIB_SOURCE_API, &path, itf_flags); } else { mfib_table_entry_path_remove (fib_index, prefix, MFIB_SOURCE_API, &path); } done: stats_dsunlock (); return (0); } static int api_mroute_add_del_t_handler (vl_api_ip_mroute_add_del_t * mp) { fib_protocol_t fproto; dpo_proto_t nh_proto; ip46_address_t nh; u32 fib_index; int rv; nh_proto = mp->next_hop_afi; fproto = (mp->is_ipv6 ? FIB_PROTOCOL_IP6 : FIB_PROTOCOL_IP4); rv = add_del_mroute_check (fproto, mp->table_id, mp->next_hop_sw_if_index, mp->is_local, &fib_index); if (0 != rv) return (rv); mfib_prefix_t pfx = { .fp_len = ntohs (mp->grp_address_length), .fp_proto = fproto, }; if (FIB_PROTOCOL_IP4 == fproto) { clib_memcpy (&pfx.fp_grp_addr.ip4, mp->grp_address, sizeof (pfx.fp_grp_addr.ip4)); clib_memcpy (&pfx.fp_src_addr.ip4, mp->src_address, sizeof (pfx.fp_src_addr.ip4)); memset (&nh.ip6, 0, sizeof (nh.ip6)); clib_memcpy (&nh.ip4, mp->nh_address, sizeof (nh.ip4)); } else { clib_memcpy (&pfx.fp_grp_addr.ip6, mp->grp_address, sizeof (pfx.fp_grp_addr.ip6)); clib_memcpy (&pfx.fp_src_addr.ip6, mp->src_address, sizeof (pfx.fp_src_addr.ip6)); clib_memcpy (&nh.ip6, mp->nh_address, sizeof (nh.ip6)); } return (mroute_add_del_handler (mp->is_add, mp->is_local, fib_index, &pfx, nh_proto, ntohl (mp->entry_flags), ntohl (mp->rpf_id), ntohl (mp->next_hop_sw_if_index), &nh, ntohl (mp->itf_flags), ntohl (mp->bier_imp))); } void vl_api_ip_mroute_add_del_t_handler (vl_api_ip_mroute_add_del_t * mp) { vl_api_ip_mroute_add_del_reply_t *rmp; int rv; vnet_main_t *vnm = vnet_get_main (); vnm->api_errno = 0; rv = api_mroute_add_del_t_handler (mp); rv = (rv == 0) ? vnm->api_errno : rv; REPLY_MACRO (VL_API_IP_MROUTE_ADD_DEL_REPLY); } static void send_ip_details (vpe_api_main_t * am, vl_api_registration_t * reg, u32 sw_if_index, u8 is_ipv6, u32 context) { vl_api_ip_details_t *mp; mp = vl_msg_api_alloc (sizeof (*mp)); memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP_DETAILS); mp->sw_if_index = ntohl (sw_if_index); mp->is_ipv6 = is_ipv6; mp->context = context; vl_api_send_msg (reg, (u8 *) mp); } static void send_ip_address_details (vpe_api_main_t * am, vl_api_registration_t * reg, u8 * ip, u16 prefix_length, u32 sw_if_index, u8 is_ipv6, u32 context) { vl_api_ip_address_details_t *mp; mp = vl_msg_api_alloc (sizeof (*mp)); memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP_ADDRESS_DETAILS); if (is_ipv6) { clib_memcpy (&mp->ip, ip, sizeof (mp->ip)); } else { u32 *tp = (u32 *) mp->ip; *tp = *(u32 *) ip; } mp->prefix_length = prefix_length; mp->context = context; mp->sw_if_index = htonl (sw_if_index); mp->is_ipv6 = is_ipv6; vl_api_send_msg (reg, (u8 *) mp); } static void vl_api_ip_address_dump_t_handler (vl_api_ip_address_dump_t * mp) { vpe_api_main_t *am = &vpe_api_main; vl_api_registration_t *reg; ip6_address_t *r6; ip4_address_t *r4; ip6_main_t *im6 = &ip6_main; ip4_main_t *im4 = &ip4_main; ip_lookup_main_t *lm6 = &im6->lookup_main; ip_lookup_main_t *lm4 = &im4->lookup_main; ip_interface_address_t *ia = 0; u32 sw_if_index = ~0; int rv __attribute__ ((unused)) = 0; VALIDATE_SW_IF_INDEX (mp); sw_if_index = ntohl (mp->sw_if_index); reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; if (mp->is_ipv6) { /* *INDENT-OFF* */ /* Do not send subnet details of the IP-interface for * unnumbered interfaces. otherwise listening clients * will be confused that the subnet is applied on more * than one interface */ foreach_ip_interface_address (lm6, ia, sw_if_index, 0, ({ r6 = ip_interface_address_get_address (lm6, ia); u16 prefix_length = ia->address_length; send_ip_address_details(am, reg, (u8*)r6, prefix_length, sw_if_index, 1, mp->context); })); /* *INDENT-ON* */ } else { /* *INDENT-OFF* */ foreach_ip_interface_address (lm4, ia, sw_if_index, 0, ({ r4 = ip_interface_address_get_address (lm4, ia); u16 prefix_length = ia->address_length; send_ip_address_details(am, reg, (u8*)r4, prefix_length, sw_if_index, 0, mp->context); })); /* *INDENT-ON* */ } BAD_SW_IF_INDEX_LABEL; } static void send_ip_unnumbered_details (vpe_api_main_t * am, vl_api_registration_t * reg, u32 sw_if_index, u32 ip_sw_if_index, u32 context) { vl_api_ip_unnumbered_details_t *mp; mp = vl_msg_api_alloc (sizeof (*mp)); memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP_UNNUMBERED_DETAILS); mp->context = context; mp->sw_if_index = htonl (sw_if_index); mp->ip_sw_if_index = htonl (ip_sw_if_index); vl_api_send_msg (reg, (u8 *) mp); } static void vl_api_ip_unnumbered_dump_t_handler (vl_api_ip_unnumbered_dump_t * mp) { vnet_main_t *vnm = vnet_get_main (); vnet_interface_main_t *im = &vnm->interface_main; int rv __attribute__ ((unused)) = 0; vpe_api_main_t *am = &vpe_api_main; vl_api_registration_t *reg; vnet_sw_interface_t *si; u32 sw_if_index; sw_if_index = ntohl (mp->sw_if_index); reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; if (~0 != sw_if_index) { VALIDATE_SW_IF_INDEX (mp); si = vnet_get_sw_interface (vnm, ntohl (mp->sw_if_index)); if (!(si->flags & VNET_SW_INTERFACE_FLAG_UNNUMBERED)) { send_ip_unnumbered_details (am, reg, sw_if_index, si->unnumbered_sw_if_index, mp->context); } } else { /* *INDENT-OFF* */ pool_foreach (si, im->sw_interfaces, ({ if ((si->flags & VNET_SW_INTERFACE_FLAG_UNNUMBERED)) { send_ip_unnumbered_details(am, reg, si->sw_if_index, si->unnumbered_sw_if_index, mp->context); } })); /* *INDENT-ON* */ } BAD_SW_IF_INDEX_LABEL; } static void vl_api_ip_dump_t_handler (vl_api_ip_dump_t * mp) { vpe_api_main_t *am = &vpe_api_main; vnet_main_t *vnm = vnet_get_main (); vlib_main_t *vm = vlib_get_main (); vnet_interface_main_t *im = &vnm->interface_main; vl_api_registration_t *reg; vnet_sw_interface_t *si, *sorted_sis; u32 sw_if_index = ~0; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; /* Gather interfaces. */ sorted_sis = vec_new (vnet_sw_interface_t, pool_elts (im->sw_interfaces)); _vec_len (sorted_sis) = 0; /* *INDENT-OFF* */ pool_foreach (si, im->sw_interfaces, ({ vec_add1 (sorted_sis, si[0]); })); /* *INDENT-ON* */ vec_foreach (si, sorted_sis) { if (!(si->flags & VNET_SW_INTERFACE_FLAG_UNNUMBERED)) { if (mp->is_ipv6 && !ip6_interface_enabled (vm, si->sw_if_index)) { continue; } sw_if_index = si->sw_if_index; send_ip_details (am, reg, sw_if_index, mp->is_ipv6, mp->context); } } } static void set_ip6_flow_hash (vl_api_set_ip_flow_hash_t * mp) { vl_api_set_ip_flow_hash_reply_t *rmp; int rv; u32 table_id; flow_hash_config_t flow_hash_config = 0; table_id = ntohl (mp->vrf_id); #define _(a,b) if (mp->a) flow_hash_config |= b; foreach_flow_hash_bit; #undef _ rv = vnet_set_ip6_flow_hash (table_id, flow_hash_config); REPLY_MACRO (VL_API_SET_IP_FLOW_HASH_REPLY); } static void set_ip4_flow_hash (vl_api_set_ip_flow_hash_t * mp) { vl_api_set_ip_flow_hash_reply_t *rmp; int rv; u32 table_id; flow_hash_config_t flow_hash_config = 0; table_id = ntohl (mp->vrf_id); #define _(a,b) if (mp->a) flow_hash_config |= b; foreach_flow_hash_bit; #undef _ rv = vnet_set_ip4_flow_hash (table_id, flow_hash_config); REPLY_MACRO (VL_API_SET_IP_FLOW_HASH_REPLY); } static void vl_api_set_ip_flow_hash_t_handler (vl_api_set_ip_flow_hash_t * mp) { if (mp->is_ipv6 == 0) set_ip4_flow_hash (mp); else set_ip6_flow_hash (mp); } static void vl_api_sw_interface_ip6nd_ra_config_t_handler (vl_api_sw_interface_ip6nd_ra_config_t * mp) { vl_api_sw_interface_ip6nd_ra_config_reply_t *rmp; vlib_main_t *vm = vlib_get_main (); int rv = 0; u8 is_no, suppress, managed, other, ll_option, send_unicast, cease, default_router; is_no = mp->is_no == 1; suppress = mp->suppress == 1; managed = mp->managed == 1; other = mp->other == 1; ll_option = mp->ll_option == 1; send_unicast = mp->send_unicast == 1; cease = mp->cease == 1; default_router = mp->default_router == 1; VALIDATE_SW_IF_INDEX (mp); rv = ip6_neighbor_ra_config (vm, ntohl (mp->sw_if_index), suppress, managed, other, ll_option, send_unicast, cease, default_router, ntohl (mp->lifetime), ntohl (mp->initial_count), ntohl (mp->initial_interval), ntohl (mp->max_interval), ntohl (mp->min_interval), is_no); BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_SW_INTERFACE_IP6ND_RA_CONFIG_REPLY); } static void vl_api_sw_interface_ip6nd_ra_prefix_t_handler (vl_api_sw_interface_ip6nd_ra_prefix_t * mp) { vlib_main_t *vm = vlib_get_main (); vl_api_sw_interface_ip6nd_ra_prefix_reply_t *rmp; int rv = 0; u8 is_no, use_default, no_advertise, off_link, no_autoconfig, no_onlink; VALIDATE_SW_IF_INDEX (mp); is_no = mp->is_no == 1; use_default = mp->use_default == 1; no_advertise = mp->no_advertise == 1; off_link = mp->off_link == 1; no_autoconfig = mp->no_autoconfig == 1; no_onlink = mp->no_onlink == 1; rv = ip6_neighbor_ra_prefix (vm, ntohl (mp->sw_if_index), (ip6_address_t *) mp->address, mp->address_length, use_default, ntohl (mp->val_lifetime), ntohl (mp->pref_lifetime), no_advertise, off_link, no_autoconfig, no_onlink, is_no); BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_SW_INTERFACE_IP6ND_RA_PREFIX_REPLY); } static void send_ip6nd_proxy_details (vl_api_registration_t * reg, u32 context, const ip46_address_t * addr, u32 sw_if_index) { vl_api_ip6nd_proxy_details_t *mp; mp = vl_msg_api_alloc (sizeof (*mp)); memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_IP6ND_PROXY_DETAILS); mp->context = context; mp->sw_if_index = htonl (sw_if_index); memcpy (mp->address, addr, 16); vl_api_send_msg (reg, (u8 *) mp); } typedef struct api_ip6nd_proxy_fib_table_walk_ctx_t_ { u32 *indices; } api_ip6nd_proxy_fib_table_walk_ctx_t; static fib_table_walk_rc_t api_ip6nd_proxy_fib_table_walk (fib_node_index_t fei, void *arg) { api_ip6nd_proxy_fib_table_walk_ctx_t *ctx = arg; if (fib_entry_is_sourced (fei, FIB_SOURCE_IP6_ND_PROXY)) { vec_add1 (ctx->indices, fei); } return (FIB_TABLE_WALK_CONTINUE); } static void vl_api_ip6nd_proxy_dump_t_handler (vl_api_ip6nd_proxy_dump_t * mp) { ip6_main_t *im6 = &ip6_main; fib_table_t *fib_table; api_ip6nd_proxy_fib_table_walk_ctx_t ctx = { .indices = NULL, }; fib_node_index_t *feip; fib_prefix_t pfx; vl_api_registration_t *reg; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; /* *INDENT-OFF* */ pool_foreach (fib_table, im6->fibs, ({ fib_table_walk(fib_table->ft_index, FIB_PROTOCOL_IP6, api_ip6nd_proxy_fib_table_walk, &ctx); })); /* *INDENT-ON* */ vec_sort_with_function (ctx.indices, fib_entry_cmp_for_sort); vec_foreach (feip, ctx.indices) { fib_entry_get_prefix (*feip, &pfx); send_ip6nd_proxy_details (reg, mp->context, &pfx.fp_addr, fib_entry_get_resolving_interface (*feip)); } vec_free (ctx.indices); } static void vl_api_ip6nd_proxy_add_del_t_handler (vl_api_ip6nd_proxy_add_del_t * mp) { vl_api_ip6nd_proxy_add_del_reply_t *rmp; int rv = 0; VALIDATE_SW_IF_INDEX (mp); rv = ip6_neighbor_proxy_add_del (ntohl (mp->sw_if_index), (ip6_address_t *) mp->address, mp->is_del); BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_IP6ND_PROXY_ADD_DEL_REPLY); } static void vl_api_ip6nd_send_router_solicitation_t_handler (vl_api_ip6nd_send_router_solicitation_t * mp) { vl_api_ip6nd_send_router_solicitation_reply_t *rmp; icmp6_send_router_solicitation_params_t params; vlib_main_t *vm = vlib_get_main (); int rv = 0; VALIDATE_SW_IF_INDEX (mp); BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_IP6ND_SEND_ROUTER_SOLICITATION_REPLY); if (rv != 0) return; params.irt = ntohl (mp->irt); params.mrt = ntohl (mp->mrt); params.mrc = ntohl (mp->mrc); params.mrd = ntohl (mp->mrd); icmp6_send_router_solicitation (vm, ntohl (mp->sw_if_index), mp->stop, ¶ms); } static void vl_api_sw_interface_ip6_enable_disable_t_handler (vl_api_sw_interface_ip6_enable_disable_t * mp) { vlib_main_t *vm = vlib_get_main (); vl_api_sw_interface_ip6_enable_disable_reply_t *rmp; vnet_main_t *vnm = vnet_get_main (); int rv = 0; clib_error_t *error; vnm->api_errno = 0; VALIDATE_SW_IF_INDEX (mp); error = (mp->enable == 1) ? enable_ip6_interface (vm, ntohl (mp->sw_if_index)) : disable_ip6_interface (vm, ntohl (mp->sw_if_index)); if (error) { clib_error_report (error); rv = VNET_API_ERROR_UNSPECIFIED; } else { rv = vnm->api_errno; } BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_SW_INTERFACE_IP6_ENABLE_DISABLE_REPLY); } static void vl_api_sw_interface_ip6_set_link_local_address_t_handler (vl_api_sw_interface_ip6_set_link_local_address_t * mp) { vlib_main_t *vm = vlib_get_main (); vl_api_sw_interface_ip6_set_link_local_address_reply_t *rmp; int rv = 0; clib_error_t *error; vnet_main_t *vnm = vnet_get_main (); vnm->api_errno = 0; VALIDATE_SW_IF_INDEX (mp); error = set_ip6_link_local_address (vm, ntohl (mp->sw_if_index), (ip6_address_t *) mp->address); if (error) { clib_error_report (error); rv = VNET_API_ERROR_UNSPECIFIED; } else { rv = vnm->api_errno; } BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_SW_INTERFACE_IP6_SET_LINK_LOCAL_ADDRESS_REPLY); } void vl_mfib_signal_send_one (vl_api_registration_t * reg, u32 context, const mfib_signal_t * mfs) { vl_api_mfib_signal_details_t *mp; mfib_prefix_t prefix; mfib_table_t *mfib; mfib_itf_t *mfi; mp = vl_msg_api_alloc (sizeof (*mp)); memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_MFIB_SIGNAL_DETAILS); mp->context = context; mfi = mfib_itf_get (mfs->mfs_itf); mfib_entry_get_prefix (mfs->mfs_entry, &prefix); mfib = mfib_table_get (mfib_entry_get_fib_index (mfs->mfs_entry), prefix.fp_proto); mp->table_id = ntohl (mfib->mft_table_id); mp->sw_if_index = ntohl (mfi->mfi_sw_if_index); if (FIB_PROTOCOL_IP4 == prefix.fp_proto) { mp->grp_address_len = ntohs (prefix.fp_len); memcpy (mp->grp_address, &prefix.fp_grp_addr.ip4, 4); if (prefix.fp_len > 32) { memcpy (mp->src_address, &prefix.fp_src_addr.ip4, 4); } } else { mp->grp_address_len = ntohs (prefix.fp_len); ASSERT (0); } if (0 != mfs->mfs_buffer_len) { mp->ip_packet_len = ntohs (mfs->mfs_buffer_len); memcpy (mp->ip_packet_data, mfs->mfs_buffer, mfs->mfs_buffer_len); } else { mp->ip_packet_len = 0; } vl_api_send_msg (reg, (u8 *) mp); } static void vl_api_mfib_signal_dump_t_handler (vl_api_mfib_signal_dump_t * mp) { vl_api_registration_t *reg; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; while (vl_api_can_send_msg (reg) && mfib_signal_send_one (reg, mp->context)) ; } static void vl_api_ip_container_proxy_add_del_t_handler (vl_api_ip_container_proxy_add_del_t * mp) { vl_api_ip_container_proxy_add_del_reply_t *rmp; vnet_ip_container_proxy_args_t args; int rv = 0; clib_error_t *error; memset (&args, 0, sizeof (args)); ip_set (&args.prefix.fp_addr, mp->ip, mp->is_ip4); args.prefix.fp_len = mp->plen ? mp->plen : (mp->is_ip4 ? 32 : 128); args.sw_if_index = clib_net_to_host_u32 (mp->sw_if_index); args.is_add = mp->is_add; if ((error = vnet_ip_container_proxy_add_del (&args))) { rv = clib_error_get_code (error); clib_error_report (error); } REPLY_MACRO (VL_API_IP_CONTAINER_PROXY_ADD_DEL_REPLY); } static void vl_api_ioam_enable_t_handler (vl_api_ioam_enable_t * mp) { int rv = 0; vl_api_ioam_enable_reply_t *rmp; clib_error_t *error; /* Ignoring the profile id as currently a single profile * is supported */ error = ip6_ioam_enable (mp->trace_enable, mp->pot_enable, mp->seqno, mp->analyse); if (error) { clib_error_report (error); rv = clib_error_get_code (error); } REPLY_MACRO (VL_API_IOAM_ENABLE_REPLY); } static void vl_api_ioam_disable_t_handler (vl_api_ioam_disable_t * mp) { int rv = 0; vl_api_ioam_disable_reply_t *rmp; clib_error_t *error; error = clear_ioam_rewrite_fn (); if (error) { clib_error_report (error); rv = clib_error_get_code (error); } REPLY_MACRO (VL_API_IOAM_DISABLE_REPLY); } static void vl_api_ip_source_and_port_range_check_add_del_t_handler (vl_api_ip_source_and_port_range_check_add_del_t * mp) { vl_api_ip_source_and_port_range_check_add_del_reply_t *rmp; int rv = 0; u8 is_ipv6 = mp->is_ipv6; u8 is_add = mp->is_add; u8 mask_length = mp->mask_length; ip4_address_t ip4_addr; ip6_address_t ip6_addr; u16 *low_ports = 0; u16 *high_ports = 0; u32 vrf_id; u16 tmp_low, tmp_high; u8 num_ranges; int i; // Validate port range num_ranges = mp->number_of_ranges; if (num_ranges > 32) { // This is size of array in VPE.API rv = VNET_API_ERROR_EXCEEDED_NUMBER_OF_RANGES_CAPACITY; goto reply; } vec_reset_length (low_ports); vec_reset_length (high_ports); for (i = 0; i < num_ranges; i++) { tmp_low = mp->low_ports[i]; tmp_high = mp->high_ports[i]; // If tmp_low <= tmp_high then only need to check tmp_low = 0 // If tmp_low <= tmp_high then only need to check tmp_high > 65535 if (tmp_low > tmp_high || tmp_low == 0 || tmp_high > 65535) { rv = VNET_API_ERROR_INVALID_VALUE; goto reply; } vec_add1 (low_ports, tmp_low); vec_add1 (high_ports, tmp_high + 1); } // Validate mask_length if ((is_ipv6 && mask_length > 128) || (!is_ipv6 && mask_length > 32)) { rv = VNET_API_ERROR_ADDRESS_LENGTH_MISMATCH; goto reply; } vrf_id = ntohl (mp->vrf_id); if (vrf_id < 1) { rv = VNET_API_ERROR_INVALID_VALUE; goto reply; } if (is_ipv6) { clib_memcpy (ip6_addr.as_u8, mp->address, sizeof (ip6_addr.as_u8)); rv = ip6_source_and_port_range_check_add_del (&ip6_addr, mask_length, vrf_id, low_ports, high_ports, is_add); } else { clib_memcpy (ip4_addr.data, mp->address, sizeof (ip4_addr)); rv = ip4_source_and_port_range_check_add_del (&ip4_addr, mask_length, vrf_id, low_ports, high_ports, is_add); } reply: vec_free (low_ports); vec_free (high_ports); REPLY_MACRO (VL_API_IP_SOURCE_AND_PORT_RANGE_CHECK_ADD_DEL_REPLY); } static void vl_api_ip_source_and_port_range_check_interface_add_del_t_handler (vl_api_ip_source_and_port_range_check_interface_add_del_t * mp) { vlib_main_t *vm = vlib_get_main (); vl_api_ip_source_and_port_range_check_interface_add_del_reply_t *rmp; ip4_main_t *im = &ip4_main; int rv; u32 sw_if_index; u32 fib_index[IP_SOURCE_AND_PORT_RANGE_CHECK_N_PROTOCOLS]; u32 vrf_id[IP_SOURCE_AND_PORT_RANGE_CHECK_N_PROTOCOLS]; uword *p = 0; int i; vrf_id[IP_SOURCE_AND_PORT_RANGE_CHECK_PROTOCOL_TCP_OUT] = ntohl (mp->tcp_out_vrf_id); vrf_id[IP_SOURCE_AND_PORT_RANGE_CHECK_PROTOCOL_UDP_OUT] = ntohl (mp->udp_out_vrf_id); vrf_id[IP_SOURCE_AND_PORT_RANGE_CHECK_PROTOCOL_TCP_IN] = ntohl (mp->tcp_in_vrf_id); vrf_id[IP_SOURCE_AND_PORT_RANGE_CHECK_PROTOCOL_UDP_IN] = ntohl (mp->udp_in_vrf_id); for (i = 0; i < IP_SOURCE_AND_PORT_RANGE_CHECK_N_PROTOCOLS; i++) { if (vrf_id[i] != 0 && vrf_id[i] != ~0) { p = hash_get (im->fib_index_by_table_id, vrf_id[i]); if (p == 0) { rv = VNET_API_ERROR_INVALID_VALUE; goto reply; } fib_index[i] = p[0]; } else fib_index[i] = ~0; } sw_if_index = ntohl (mp->sw_if_index); VALIDATE_SW_IF_INDEX (mp); rv = set_ip_source_and_port_range_check (vm, fib_index, sw_if_index, mp->is_add); BAD_SW_IF_INDEX_LABEL; reply: REPLY_MACRO (VL_API_IP_SOURCE_AND_PORT_RANGE_CHECK_INTERFACE_ADD_DEL_REPLY); } #define IP4_ARP_EVENT 3 #define IP6_ND_EVENT 4 static int arp_change_delete_callback (u32 pool_index, u8 * notused); static int nd_change_delete_callback (u32 pool_index, u8 * notused); static vlib_node_registration_t ip_resolver_process_node; static void handle_ip4_arp_event (u32 pool_index) { vpe_api_main_t *vam = &vpe_api_main; vnet_main_t *vnm = vam->vnet_main; vlib_main_t *vm = vam->vlib_main; vl_api_ip4_arp_event_t *event; vl_api_ip4_arp_event_t *mp; vl_api_registration_t *reg; /* Client can cancel, die, etc. */ if (pool_is_free_index (vam->arp_events, pool_index)) return; event = pool_elt_at_index (vam->arp_events, pool_index); reg = vl_api_client_index_to_registration (event->client_index); if (!reg) { (void) vnet_add_del_ip4_arp_change_event (vnm, arp_change_delete_callback, event->pid, &event->address, ip_resolver_process_node.index, IP4_ARP_EVENT, ~0 /* pool index, notused */ , 0 /* is_add */ ); return; } if (vl_api_can_send_msg (reg)) { mp = vl_msg_api_alloc (sizeof (*mp)); clib_memcpy (mp, event, sizeof (*mp)); vl_api_send_msg (reg, (u8 *) mp); } else { static f64 last_time; /* * Throttle syslog msgs. * It's pretty tempting to just revoke the registration... */ if (vlib_time_now (vm) > last_time + 10.0) { clib_warning ("arp event for %U to pid %d: queue stuffed!", format_ip4_address, &event->address, event->pid); last_time = vlib_time_now (vm); } } } void handle_ip6_nd_event (u32 pool_index) { vpe_api_main_t *vam = &vpe_api_main; vnet_main_t *vnm = vam->vnet_main; vlib_main_t *vm = vam->vlib_main; vl_api_ip6_nd_event_t *event; vl_api_ip6_nd_event_t *mp; vl_api_registration_t *reg; /* Client can cancel, die, etc. */ if (pool_is_free_index (vam->nd_events, pool_index)) return; event = pool_elt_at_index (vam->nd_events, pool_index); reg = vl_api_client_index_to_registration (event->client_index); if (!reg) { (void) vnet_add_del_ip6_nd_change_event (vnm, nd_change_delete_callback, event->pid, &event->address, ip_resolver_process_node.index, IP6_ND_EVENT, ~0 /* pool index, notused */ , 0 /* is_add */ ); return; } if (vl_api_can_send_msg (reg)) { mp = vl_msg_api_alloc (sizeof (*mp)); clib_memcpy (mp, event, sizeof (*mp)); vl_api_send_msg (reg, (u8 *) mp); } else { static f64 last_time; /* * Throttle syslog msgs. * It's pretty tempting to just revoke the registration... */ if (vlib_time_now (vm) > last_time + 10.0) { clib_warning ("ip6 nd event for %U to pid %d: queue stuffed!", format_ip6_address, &event->address, event->pid); last_time = vlib_time_now (vm); } } } static uword resolver_process (vlib_main_t * vm, vlib_node_runtime_t * rt, vlib_frame_t * f) { volatile f64 timeout = 100.0; volatile uword *event_data = 0; while (1) { vlib_process_wait_for_event_or_clock (vm, timeout); uword event_type = vlib_process_get_events (vm, (uword **) & event_data); int i; switch (event_type) { case IP4_ARP_EVENT: for (i = 0; i < vec_len (event_data); i++) handle_ip4_arp_event (event_data[i]); break; case IP6_ND_EVENT: for (i = 0; i < vec_len (event_data); i++) handle_ip6_nd_event (event_data[i]); break; case ~0: /* timeout */ break; } vec_reset_length (event_data); } return 0; /* or not */ } /* *INDENT-OFF* */ VLIB_REGISTER_NODE (ip_resolver_process_node,static) = { .function = resolver_process, .type = VLIB_NODE_TYPE_PROCESS, .name = "ip-route-resolver-process", }; /* *INDENT-ON* */ static int nd_change_data_callback (u32 pool_index, u8 * new_mac, u32 sw_if_index, ip6_address_t * address) { vpe_api_main_t *am = &vpe_api_main; vl_api_ip6_nd_event_t *event; if (pool_is_free_index (am->nd_events, pool_index)) return 1; event = pool_elt_at_index (am->nd_events, pool_index); if (eth_mac_equal (event->new_mac, new_mac) && sw_if_index == ntohl (event->sw_if_index)) { return 1; } clib_memcpy (event->new_mac, new_mac, sizeof (event->new_mac)); event->sw_if_index = htonl (sw_if_index); return 0; } static int arp_change_delete_callback (u32 pool_index, u8 * notused) { vpe_api_main_t *am = &vpe_api_main; if (pool_is_free_index (am->arp_events, pool_index)) return 1; pool_put_index (am->arp_events, pool_index); return 0; } static int nd_change_delete_callback (u32 pool_index, u8 * notused) { vpe_api_main_t *am = &vpe_api_main; if (pool_is_free_index (am->nd_events, pool_index)) return 1; pool_put_index (am->nd_events, pool_index); return 0; } static vlib_node_registration_t wc_arp_process_node; enum { WC_ARP_REPORT, WC_ND_REPORT, RA_REPORT, REPORT_MAX }; static uword wc_arp_process (vlib_main_t * vm, vlib_node_runtime_t * rt, vlib_frame_t * f) { /* These cross the longjmp boundry (vlib_process_wait_for_event) * and need to be volatile - to prevent them from being optimized into * a register - which could change during suspension */ volatile wc_arp_report_t arp_prev = { 0 }; volatile wc_nd_report_t nd_prev = { 0 }; volatile f64 last_arp = vlib_time_now (vm); volatile f64 last_nd = vlib_time_now (vm); while (1) { vlib_process_wait_for_event (vm); uword event_type = WC_ARP_REPORT; void *event_data = vlib_process_get_event_data (vm, &event_type); f64 now = vlib_time_now (vm); int i; if (event_type == WC_ARP_REPORT) { wc_arp_report_t *arp_events = event_data; for (i = 0; i < vec_len (arp_events); i++) { /* discard dup event */ if (arp_prev.ip4 == arp_events[i].ip4 && eth_mac_equal ((u8 *) arp_prev.mac, arp_events[i].mac) && arp_prev.sw_if_index == arp_events[i].sw_if_index && (now - last_arp) < 10.0) { continue; } arp_prev = arp_events[i]; last_arp = now; vpe_client_registration_t *reg; /* *INDENT-OFF* */ pool_foreach(reg, vpe_api_main.wc_ip4_arp_events_registrations, ({ vl_api_registration_t *vl_reg; vl_reg = vl_api_client_index_to_registration (reg->client_index); ASSERT (vl_reg != NULL); if (reg && vl_api_can_send_msg (vl_reg)) { vl_api_ip4_arp_event_t * event = vl_msg_api_alloc (sizeof *event); memset (event, 0, sizeof *event); event->_vl_msg_id = htons (VL_API_IP4_ARP_EVENT); event->client_index = reg->client_index; event->pid = reg->client_pid; event->mac_ip = 1; event->address = arp_events[i].ip4; event->sw_if_index = htonl(arp_events[i].sw_if_index); memcpy(event->new_mac, arp_events[i].mac, sizeof event->new_mac); vl_api_send_msg (vl_reg, (u8 *) event); } })); /* *INDENT-ON* */ } } else if (event_type == WC_ND_REPORT) { wc_nd_report_t *nd_events = event_data; for (i = 0; i < vec_len (nd_events); i++) { /* discard dup event */ if (ip6_address_is_equal ((ip6_address_t *) & nd_prev.ip6, &nd_events[i].ip6) && eth_mac_equal ((u8 *) nd_prev.mac, nd_events[i].mac) && nd_prev.sw_if_index == nd_events[i].sw_if_index && (now - last_nd) < 10.0) { continue; } nd_prev = nd_events[i]; last_nd = now; vpe_client_registration_t *reg; /* *INDENT-OFF* */ pool_foreach(reg, vpe_api_main.wc_ip6_nd_events_registrations, ({ vl_api_registration_t *vl_reg; vl_reg = vl_api_client_index_to_registration (reg->client_index); if (vl_reg && vl_api_can_send_msg (vl_reg)) { vl_api_ip6_nd_event_t * event = vl_msg_api_alloc (sizeof *event); memset (event, 0, sizeof *event); event->_vl_msg_id = htons (VL_API_IP6_ND_EVENT); event->client_index = reg->client_index; event->pid = reg->client_pid; event->mac_ip = 1; memcpy(event->address, nd_events[i].ip6.as_u8, sizeof event->address); event->sw_if_index = htonl(nd_events[i].sw_if_index); memcpy(event->new_mac, nd_events[i].mac, sizeof event->new_mac); vl_api_send_msg (vl_reg, (u8 *) event); } })); /* *INDENT-ON* */ } } else if (event_type == RA_REPORT) { ra_report_t *ra_events = event_data; for (i = 0; i < vec_len (ra_events); i++) { ip6_neighbor_public_main_t *npm = &ip6_neighbor_public_main; call_ip6_neighbor_callbacks (&ra_events[i], npm->ra_report_functions); vpe_client_registration_t *reg; /* *INDENT-OFF* */ pool_foreach(reg, vpe_api_main.ip6_ra_events_registrations, ({ vl_api_registration_t *vl_reg; vl_reg = vl_api_client_index_to_registration (reg->client_index); if (vl_reg && vl_api_can_send_msg (vl_reg)) { u32 event_size = sizeof (vl_api_ip6_ra_event_t) + vec_len (ra_events[i].prefixes) * sizeof (vl_api_ip6_ra_prefix_info_t); vl_api_ip6_ra_event_t *event = vl_msg_api_alloc (event_size); memset (event, 0, event_size); event->_vl_msg_id = htons (VL_API_IP6_RA_EVENT); event->client_index = reg->client_index; event->pid = reg->client_pid; event->sw_if_index = clib_host_to_net_u32 (ra_events[i].sw_if_index); memcpy (event->router_address, ra_events[i].router_address, 16); event->current_hop_limit = ra_events[i].current_hop_limit; event->flags = ra_events[i].flags; event->router_lifetime_in_sec = clib_host_to_net_u16 (ra_events [i].router_lifetime_in_sec); event->neighbor_reachable_time_in_msec = clib_host_to_net_u32 (ra_events [i].neighbor_reachable_time_in_msec); event->time_in_msec_between_retransmitted_neighbor_solicitations = clib_host_to_net_u32 (ra_events [i].time_in_msec_between_retransmitted_neighbor_solicitations); event->n_prefixes = clib_host_to_net_u32 (vec_len (ra_events[i].prefixes)); vl_api_ip6_ra_prefix_info_t *prefix = (typeof (prefix)) event->prefixes; u32 j; for (j = 0; j < vec_len (ra_events[i].prefixes); j++) { ra_report_prefix_info_t *info = &ra_events[i].prefixes[j]; memcpy (prefix->dst_address, info->dst_address.as_u8, 16); prefix->dst_address_length = info->dst_address_length; prefix->flags = info->flags; prefix->valid_time = clib_host_to_net_u32 (info->valid_time); prefix->preferred_time = clib_host_to_net_u32 (info->preferred_time); prefix++; } vl_api_send_msg (vl_reg, (u8 *) event); } })); /* *INDENT-ON* */ } } vlib_process_put_event_data (vm, event_data); } return 0; } /* *INDENT-OFF* */ VLIB_REGISTER_NODE (wc_arp_process_node,static) = { .function = wc_arp_process, .type = VLIB_NODE_TYPE_PROCESS, .name = "wildcard-ip4-arp-publisher-process", }; /* *INDENT-ON* */ static int arp_change_data_callback (u32 pool_index, u8 * new_mac, u32 sw_if_index, u32 address) { vpe_api_main_t *am = &vpe_api_main; vl_api_ip4_arp_event_t *event; if (pool_is_free_index (am->arp_events, pool_index)) return 1; event = pool_elt_at_index (am->arp_events, pool_index); if (eth_mac_equal (event->new_mac, new_mac) && sw_if_index == ntohl (event->sw_if_index)) { return 1; } clib_memcpy (event->new_mac, new_mac, sizeof (event->new_mac)); event->sw_if_index = htonl (sw_if_index); return 0; } static void vl_api_want_ip4_arp_events_t_handler (vl_api_want_ip4_arp_events_t * mp) { vpe_api_main_t *am = &vpe_api_main; vnet_main_t *vnm = vnet_get_main (); vl_api_want_ip4_arp_events_reply_t *rmp; int rv = 0; if (mp->address == 0) { uword *p = hash_get (am->wc_ip4_arp_events_registration_hash, mp->client_index); vpe_client_registration_t *rp; if (p) { if (mp->enable_disable) { clib_warning ("pid %d: already enabled...", mp->pid); rv = VNET_API_ERROR_INVALID_REGISTRATION; goto reply; } else { rp = pool_elt_at_index (am->wc_ip4_arp_events_registrations, p[0]); pool_put (am->wc_ip4_arp_events_registrations, rp); hash_unset (am->wc_ip4_arp_events_registration_hash, mp->client_index); if (pool_elts (am->wc_ip4_arp_events_registrations) == 0) wc_arp_set_publisher_node (~0, REPORT_MAX); goto reply; } } if (mp->enable_disable == 0) { clib_warning ("pid %d: already disabled...", mp->pid); rv = VNET_API_ERROR_INVALID_REGISTRATION; goto reply; } pool_get (am->wc_ip4_arp_events_registrations, rp); rp->client_index = mp->client_index; rp->client_pid = mp->pid; hash_set (am->wc_ip4_arp_events_registration_hash, rp->client_index, rp - am->wc_ip4_arp_events_registrations); wc_arp_set_publisher_node (wc_arp_process_node.index, WC_ARP_REPORT); goto reply; } if (mp->enable_disable) { vl_api_ip4_arp_event_t *event; pool_get (am->arp_events, event); rv = vnet_add_del_ip4_arp_change_event (vnm, arp_change_data_callback, mp->pid, &mp->address /* addr, in net byte order */ , ip_resolver_process_node.index, IP4_ARP_EVENT, event - am->arp_events, 1 /* is_add */ ); if (rv) { pool_put (am->arp_events, event); goto reply; } memset (event, 0, sizeof (*event)); /* Python API expects events to have no context */ event->_vl_msg_id = htons (VL_API_IP4_ARP_EVENT); event->client_index = mp->client_index; event->address = mp->address; event->pid = mp->pid; if (mp->address == 0) event->mac_ip = 1; } else { rv = vnet_add_del_ip4_arp_change_event (vnm, arp_change_delete_callback, mp->pid, &mp->address /* addr, in net byte order */ , ip_resolver_process_node.index, IP4_ARP_EVENT, ~0 /* pool index */ , 0 /* is_add */ ); } reply: REPLY_MACRO (VL_API_WANT_IP4_ARP_EVENTS_REPLY); } static void vl_api_want_ip6_nd_events_t_handler (vl_api_want_ip6_nd_events_t * mp) { vpe_api_main_t *am = &vpe_api_main; vnet_main_t *vnm = vnet_get_main (); vl_api_want_ip6_nd_events_reply_t *rmp; int rv = 0; if (ip6_address_is_zero ((ip6_address_t *) mp->address)) { uword *p = hash_get (am->wc_ip6_nd_events_registration_hash, mp->client_index); vpe_client_registration_t *rp; if (p) { if (mp->enable_disable) { clib_warning ("pid %d: already enabled...", mp->pid); rv = VNET_API_ERROR_INVALID_REGISTRATION; goto reply; } else { rp = pool_elt_at_index (am->wc_ip6_nd_events_registrations, p[0]); pool_put (am->wc_ip6_nd_events_registrations, rp); hash_unset (am->wc_ip6_nd_events_registration_hash, mp->client_index); if (pool_elts (am->wc_ip6_nd_events_registrations) == 0) wc_nd_set_publisher_node (~0, REPORT_MAX); goto reply; } } if (mp->enable_disable == 0) { clib_warning ("pid %d: already disabled...", mp->pid); rv = VNET_API_ERROR_INVALID_REGISTRATION; goto reply; } pool_get (am->wc_ip6_nd_events_registrations, rp); rp->client_index = mp->client_index; rp->client_pid = mp->pid; hash_set (am->wc_ip6_nd_events_registration_hash, rp->client_index, rp - am->wc_ip6_nd_events_registrations); wc_nd_set_publisher_node (wc_arp_process_node.index, WC_ND_REPORT); goto reply; } if (mp->enable_disable) { vl_api_ip6_nd_event_t *event; pool_get (am->nd_events, event); rv = vnet_add_del_ip6_nd_change_event (vnm, nd_change_data_callback, mp->pid, mp->address /* addr, in net byte order */ , ip_resolver_process_node.index, IP6_ND_EVENT, event - am->nd_events, 1 /* is_add */ ); if (rv) { pool_put (am->nd_events, event); goto reply; } memset (event, 0, sizeof (*event)); event->_vl_msg_id = ntohs (VL_API_IP6_ND_EVENT); event->client_index = mp->client_index; clib_memcpy (event->address, mp->address, sizeof event->address); event->pid = mp->pid; } else { rv = vnet_add_del_ip6_nd_change_event (vnm, nd_change_delete_callback, mp->pid, mp->address /* addr, in net byte order */ , ip_resolver_process_node.index, IP6_ND_EVENT, ~0 /* pool index */ , 0 /* is_add */ ); } reply: REPLY_MACRO (VL_API_WANT_IP6_ND_EVENTS_REPLY); } static void vl_api_want_ip6_ra_events_t_handler (vl_api_want_ip6_ra_events_t * mp) { vpe_api_main_t *am = &vpe_api_main; vl_api_want_ip6_ra_events_reply_t *rmp; int rv = 0; uword *p = hash_get (am->ip6_ra_events_registration_hash, mp->client_index); vpe_client_registration_t *rp; if (p) { if (mp->enable_disable) { clib_warning ("pid %d: already enabled...", ntohl (mp->pid)); rv = VNET_API_ERROR_INVALID_REGISTRATION; goto reply; } else { rp = pool_elt_at_index (am->ip6_ra_events_registrations, p[0]); pool_put (am->ip6_ra_events_registrations, rp); hash_unset (am->ip6_ra_events_registration_hash, mp->client_index); goto reply; } } if (mp->enable_disable == 0) { clib_warning ("pid %d: already disabled...", ntohl (mp->pid)); rv = VNET_API_ERROR_INVALID_REGISTRATION; goto reply; } pool_get (am->ip6_ra_events_registrations, rp); rp->client_index = mp->client_index; rp->client_pid = ntohl (mp->pid); hash_set (am->ip6_ra_events_registration_hash, rp->client_index, rp - am->ip6_ra_events_registrations); reply: REPLY_MACRO (VL_API_WANT_IP6_RA_EVENTS_REPLY); } static void vl_api_proxy_arp_add_del_t_handler (vl_api_proxy_arp_add_del_t * mp) { vl_api_proxy_arp_add_del_reply_t *rmp; u32 fib_index; int rv; ip4_main_t *im = &ip4_main; uword *p; stats_dslock_with_hint (1 /* release hint */ , 6 /* tag */ ); p = hash_get (im->fib_index_by_table_id, ntohl (mp->proxy.vrf_id)); if (!p) { rv = VNET_API_ERROR_NO_SUCH_FIB; goto out; } fib_index = p[0]; rv = vnet_proxy_arp_add_del ((ip4_address_t *) mp->proxy.low_address, (ip4_address_t *) mp->proxy.hi_address, fib_index, mp->is_add == 0); out: stats_dsunlock (); REPLY_MACRO (VL_API_PROXY_ARP_ADD_DEL_REPLY); } typedef struct proxy_arp_walk_ctx_t_ { vl_api_registration_t *reg; u32 context; } proxy_arp_walk_ctx_t; static walk_rc_t send_proxy_arp_details (const ip4_address_t * lo_addr, const ip4_address_t * hi_addr, u32 fib_index, void *data) { vl_api_proxy_arp_details_t *mp; proxy_arp_walk_ctx_t *ctx; ctx = data; mp = vl_msg_api_alloc (sizeof (*mp)); memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_PROXY_ARP_DETAILS); mp->context = ctx->context; mp->proxy.vrf_id = htonl (fib_index); clib_memcpy (mp->proxy.low_address, lo_addr, sizeof (mp->proxy.low_address)); clib_memcpy (mp->proxy.hi_address, hi_addr, sizeof (mp->proxy.hi_address)); vl_api_send_msg (ctx->reg, (u8 *) mp); return (WALK_CONTINUE); } static void vl_api_proxy_arp_dump_t_handler (vl_api_proxy_arp_dump_t * mp) { vl_api_registration_t *reg; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; proxy_arp_walk_ctx_t wctx = { .reg = reg, .context = mp->context, }; proxy_arp_walk (send_proxy_arp_details, &wctx); } static walk_rc_t send_proxy_arp_intfc_details (vnet_main_t * vnm, vnet_sw_interface_t * si, void *data) { vl_api_proxy_arp_intfc_details_t *mp; proxy_arp_walk_ctx_t *ctx; if (!(si->flags & VNET_SW_INTERFACE_FLAG_PROXY_ARP)) return (WALK_CONTINUE); ctx = data; mp = vl_msg_api_alloc (sizeof (*mp)); memset (mp, 0, sizeof (*mp)); mp->_vl_msg_id = ntohs (VL_API_PROXY_ARP_INTFC_DETAILS); mp->context = ctx->context; mp->sw_if_index = htonl (si->sw_if_index); vl_api_send_msg (ctx->reg, (u8 *) mp); return (WALK_CONTINUE); } static void vl_api_proxy_arp_intfc_dump_t_handler (vl_api_proxy_arp_intfc_dump_t * mp) { vl_api_registration_t *reg; reg = vl_api_client_index_to_registration (mp->client_index); if (!reg) return; proxy_arp_walk_ctx_t wctx = { .reg = reg, .context = mp->context, }; vnet_sw_interface_walk (vnet_get_main (), send_proxy_arp_intfc_details, &wctx); } static void vl_api_proxy_arp_intfc_enable_disable_t_handler (vl_api_proxy_arp_intfc_enable_disable_t * mp) { int rv = 0; vnet_main_t *vnm = vnet_get_main (); vl_api_proxy_arp_intfc_enable_disable_reply_t *rmp; VALIDATE_SW_IF_INDEX (mp); vnet_sw_interface_t *si = vnet_get_sw_interface (vnm, ntohl (mp->sw_if_index)); ASSERT (si); if (mp->enable_disable) si->flags |= VNET_SW_INTERFACE_FLAG_PROXY_ARP; else si->flags &= ~VNET_SW_INTERFACE_FLAG_PROXY_ARP; BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_PROXY_ARP_INTFC_ENABLE_DISABLE_REPLY); } static void vl_api_ip_probe_neighbor_t_handler (vl_api_ip_probe_neighbor_t * mp) { int rv = 0; vlib_main_t *vm = vlib_get_main (); vl_api_ip_probe_neighbor_reply_t *rmp; clib_error_t *error; VALIDATE_SW_IF_INDEX (mp); u32 sw_if_index = ntohl (mp->sw_if_index); if (mp->is_ipv6) error = ip6_probe_neighbor (vm, (ip6_address_t *) mp->dst_address, sw_if_index); else error = ip4_probe_neighbor (vm, (ip4_address_t *) mp->dst_address, sw_if_index); if (error) { clib_error_report (error); rv = clib_error_get_code (error); } BAD_SW_IF_INDEX_LABEL; REPLY_MACRO (VL_API_PROXY_ARP_INTFC_ENABLE_DISABLE_REPLY); } static void vl_api_ip_scan_neighbor_enable_disable_t_handler (vl_api_ip_scan_neighbor_enable_disable_t * mp) { int rv = 0; vl_api_ip_scan_neighbor_enable_disable_reply_t *rmp; ip_neighbor_scan_arg_t arg; arg.mode = mp->mode; arg.scan_interval = mp->scan_interval; arg.max_proc_time = mp->max_proc_time; arg.max_update = mp->max_update; arg.scan_int_delay = mp->scan_int_delay; arg.stale_threshold = mp->stale_threshold; ip_neighbor_scan_enable_disable (&arg); REPLY_MACRO (VL_API_IP_SCAN_NEIGHBOR_ENABLE_DISABLE_REPLY); } static int ip4_reset_fib_t_handler (vl_api_reset_fib_t * mp) { vnet_main_t *vnm = vnet_get_main (); vnet_interface_main_t *im = &vnm->interface_main; ip4_main_t *im4 = &ip4_main; static u32 *sw_if_indices_to_shut; fib_table_t *fib_table; ip4_fib_t *fib; u32 sw_if_index; int i; int rv = VNET_API_ERROR_NO_SUCH_FIB; u32 target_fib_id = ntohl (mp->vrf_id); stats_dslock_with_hint (1 /* release hint */ , 8 /* tag */ ); /* *INDENT-OFF* */ pool_foreach (fib_table, im4->fibs, ({ vnet_sw_interface_t * si; fib = pool_elt_at_index (im4->v4_fibs, fib_table->ft_index); if (fib->table_id != target_fib_id) continue; /* remove any mpls encap/decap labels */ mpls_fib_reset_labels (fib->table_id); /* remove any proxy arps in this fib */ vnet_proxy_arp_fib_reset (fib->table_id); /* Set the flow hash for this fib to the default */ vnet_set_ip4_flow_hash (fib->table_id, IP_FLOW_HASH_DEFAULT); vec_reset_length (sw_if_indices_to_shut); /* Shut down interfaces in this FIB / clean out intfc routes */ pool_foreach (si, im->sw_interfaces, ({ u32 sw_if_index = si->sw_if_index; if (sw_if_index < vec_len (im4->fib_index_by_sw_if_index) && (im4->fib_index_by_sw_if_index[si->sw_if_index] == fib->index)) vec_add1 (sw_if_indices_to_shut, si->sw_if_index); })); for (i = 0; i < vec_len (sw_if_indices_to_shut); i++) { sw_if_index = sw_if_indices_to_shut[i]; u32 flags = vnet_sw_interface_get_flags (vnm, sw_if_index); flags &= ~(VNET_SW_INTERFACE_FLAG_ADMIN_UP); vnet_sw_interface_set_flags (vnm, sw_if_index, flags); } fib_table_flush(fib->index, FIB_PROTOCOL_IP4, FIB_SOURCE_API); rv = 0; break; })); /* pool_foreach (fib) */ /* *INDENT-ON* */ stats_dsunlock (); return rv; } static int ip6_reset_fib_t_handler (vl_api_reset_fib_t * mp) { vnet_main_t *vnm = vnet_get_main (); vnet_interface_main_t *im = &vnm->interface_main; ip6_main_t *im6 = &ip6_main; static u32 *sw_if_indices_to_shut; fib_table_t *fib_table; ip6_fib_t *fib; u32 sw_if_index; int i; int rv = VNET_API_ERROR_NO_SUCH_FIB; u32 target_fib_id = ntohl (mp->vrf_id); stats_dslock_with_hint (1 /* release hint */ , 9 /* tag */ ); /* *INDENT-OFF* */ pool_foreach (fib_table, im6->fibs, ({ vnet_sw_interface_t * si; fib = pool_elt_at_index (im6->v6_fibs, fib_table->ft_index); if (fib->table_id != target_fib_id) continue; vec_reset_length (sw_if_indices_to_shut); /* Set the flow hash for this fib to the default */ vnet_set_ip6_flow_hash (fib->table_id, IP_FLOW_HASH_DEFAULT); /* Shut down interfaces in this FIB / clean out intfc routes */ pool_foreach (si, im->sw_interfaces, ({ if (im6->fib_index_by_sw_if_index[si->sw_if_index] == fib->index) vec_add1 (sw_if_indices_to_shut, si->sw_if_index); })); for (i = 0; i < vec_len (sw_if_indices_to_shut); i++) { sw_if_index = sw_if_indices_to_shut[i]; u32 flags = vnet_sw_interface_get_flags (vnm, sw_if_index); flags &= ~(VNET_SW_INTERFACE_FLAG_ADMIN_UP); vnet_sw_interface_set_flags (vnm, sw_if_index, flags); } fib_table_flush(fib->index, FIB_PROTOCOL_IP6, FIB_SOURCE_API); rv = 0; break; })); /* pool_foreach (fib) */ /* *INDENT-ON* */ stats_dsunlock (); return rv; } static void vl_api_reset_fib_t_handler (vl_api_reset_fib_t * mp) { int rv; vl_api_reset_fib_reply_t *rmp; if (mp->is_ipv6) rv = ip6_reset_fib_t_handler (mp); else rv = ip4_reset_fib_t_handler (mp); REPLY_MACRO (VL_API_RESET_FIB_REPLY); } static void vl_api_set_arp_neighbor_limit_t_handler (vl_api_set_arp_neighbor_limit_t * mp) { int rv; vl_api_set_arp_neighbor_limit_reply_t *rmp; vnet_main_t *vnm = vnet_get_main (); clib_error_t *error; vnm->api_errno = 0; if (mp->is_ipv6) error = ip6_set_neighbor_limit (ntohl (mp->arp_neighbor_limit)); else error = ip4_set_arp_limit (ntohl (mp->arp_neighbor_limit)); if (error) { clib_error_report (error); rv = VNET_API_ERROR_UNSPECIFIED; } else { rv = vnm->api_errno; } REPLY_MACRO (VL_API_SET_ARP_NEIGHBOR_LIMIT_REPLY); } void vl_api_ip_reassembly_set_t_handler (vl_api_ip_reassembly_set_t * mp) { vl_api_ip_reassembly_set_reply_t *rmp; int rv = 0; if (mp->is_ip6) { rv = ip6_reass_set (clib_net_to_host_u32 (mp->timeout_ms), clib_net_to_host_u32 (mp->max_reassemblies), clib_net_to_host_u32 (mp->expire_walk_interval_ms)); } else { rv = ip4_reass_set (clib_net_to_host_u32 (mp->timeout_ms), clib_net_to_host_u32 (mp->max_reassemblies), clib_net_to_host_u32 (mp->expire_walk_interval_ms)); } REPLY_MACRO (VL_API_IP_REASSEMBLY_SET_REPLY); } void vl_api_ip_reassembly_get_t_handler (vl_api_ip_reassembly_get_t * mp) { unix_shared_memory_queue_t *q; q = vl_api_client_index_to_input_queue (mp->client_index); if (q == 0) return; vl_api_ip_reassembly_get_reply_t *rmp = vl_msg_api_alloc (sizeof (*rmp)); memset (rmp, 0, sizeof (*rmp)); rmp->_vl_msg_id = ntohs (VL_API_IP_REASSEMBLY_GET_REPLY); rmp->context = mp->context; rmp->retval = 0; if (mp->is_ip6) { rmp->is_ip6 = 1; ip6_reass_get (&rmp->timeout_ms, &rmp->max_reassemblies, &rmp->expire_walk_interval_ms); } else { rmp->is_ip6 = 0; ip4_reass_get (&rmp->timeout_ms, &rmp->max_reassemblies, &rmp->expire_walk_interval_ms); } rmp->timeout_ms = clib_host_to_net_u32 (rmp->timeout_ms); rmp->max_reassemblies = clib_host_to_net_u32 (rmp->max_reassemblies); rmp->expire_walk_interval_ms = clib_host_to_net_u32 (rmp->expire_walk_interval_ms); vl_msg_api_send_shmem (q, (u8 *) & rmp); } void vl_api_ip_reassembly_enable_disable_t_handler (vl_api_ip_reassembly_enable_disable_t * mp) { vl_api_ip_reassembly_enable_disable_reply_t *rmp; int rv = 0; rv = ip4_reass_enable_disable (clib_net_to_host_u32 (mp->sw_if_index), mp->enable_ip4); if (0 == rv) { rv = ip6_reass_enable_disable (clib_net_to_host_u32 (mp->sw_if_index), mp->enable_ip6); } REPLY_MACRO (VL_API_IP_REASSEMBLY_SET_REPLY); } #define vl_msg_name_crc_list #include <vnet/ip/ip.api.h> #undef vl_msg_name_crc_list static void setup_message_id_table (api_main_t * am) { #define _(id,n,crc) vl_msg_api_add_msg_name_crc (am, #n "_" #crc, id); foreach_vl_msg_name_crc_ip; #undef _ } static clib_error_t * ip_api_hookup (vlib_main_t * vm) { api_main_t *am = &api_main; #define _(N,n) \ vl_msg_api_set_handlers(VL_API_##N, #n, \ vl_api_##n##_t_handler, \ vl_noop_handler, \ vl_api_##n##_t_endian, \ vl_api_##n##_t_print, \ sizeof(vl_api_##n##_t), 1); foreach_ip_api_msg; #undef _ /* * Set up the (msg_name, crc, message-id) table */ setup_message_id_table (am); ra_set_publisher_node (wc_arp_process_node.index, RA_REPORT); return 0; } VLIB_API_INIT_FUNCTION (ip_api_hookup); /* * fd.io coding-style-patch-verification: ON * * Local Variables: * eval: (c-set-style "gnu") * End: */