/* * node.c: gre packet processing * * Copyright (c) 2012 Cisco and/or its affiliates. * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at: * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include <vlib/vlib.h> #include <vnet/pg/pg.h> #include <vnet/gre/gre.h> #include <vnet/mpls/mpls.h> #include <vppinfra/sparse_vec.h> #define foreach_gre_input_next \ _(PUNT, "error-punt") \ _(DROP, "error-drop") \ _(ETHERNET_INPUT, "ethernet-input") \ _(IP4_INPUT, "ip4-input") \ _(IP6_INPUT, "ip6-input") \ _(MPLS_INPUT, "mpls-input") typedef enum { #define _(s,n) GRE_INPUT_NEXT_##s, foreach_gre_input_next #undef _ GRE_INPUT_N_NEXT, } gre_input_next_t; typedef struct { u32 tunnel_id; u32 length; ip46_address_t src; ip46_address_t dst; } gre_rx_trace_t; extern u8 *format_gre_rx_trace (u8 * s, va_list * args); #ifndef CLIB_MARCH_VARIANT u8 * format_gre_rx_trace (u8 * s, va_list * args) { CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *); CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *); gre_rx_trace_t *t = va_arg (*args, gre_rx_trace_t *); s = format (s, "GRE: tunnel %d len %d src %U dst %U", t->tunnel_id, clib_net_to_host_u16 (t->length), format_ip46_address, &t->src, IP46_TYPE_ANY, format_ip46_address, &t->dst, IP46_TYPE_ANY); return s; } #endif /* CLIB_MARCH_VARIANT */ typedef struct { /* Sparse vector mapping gre protocol in network byte order to next index. */ u16 *next_by_protocol; } gre_input_runtime_t; always_inline void gre_trace (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_buffer_t * b, u32 tun_sw_if_index, const ip6_header_t * ip6, const ip4_header_t * ip4, int is_ipv6) { gre_rx_trace_t *tr = vlib_add_trace (vm, node, b, sizeof (*tr)); tr->tunnel_id = tun_sw_if_index; if (is_ipv6) { tr->length = ip6->payload_length; tr->src.ip6.as_u64[0] = ip6->src_address.as_u64[0]; tr->src.ip6.as_u64[1] = ip6->src_address.as_u64[1]; tr->dst.ip6.as_u64[0] = ip6->dst_address.as_u64[0]; tr->dst.ip6.as_u64[1] = ip6->dst_address.as_u64[1]; } else { tr->length = ip4->length; tr->src.as_u64[0] = tr->src.as_u64[1] = 0; tr->dst.as_u64[0] = tr->dst.as_u64[1] = 0; tr->src.ip4.as_u32 = ip4->src_address.as_u32; tr->dst.ip4.as_u32 = ip4->dst_address.as_u32; } } always_inline void gre_tunnel_get (const gre_main_t * gm, vlib_node_runtime_t * node, vlib_buffer_t * b, u16 * next, const gre_tunnel_key_t * key, gre_tunnel_key_t * cached_key, u32 * tun_sw_if_index, u32 * cached_tun_sw_if_index, int is_ipv6) { const uword *p; p = is_ipv6 ? hash_get_mem (gm->tunnel_by_key6, &key->gtk_v6) : hash_get_mem (gm->tunnel_by_key4, &key->gtk_v4); if (PREDICT_FALSE (!p)) { *next = GRE_INPUT_NEXT_DROP; b->error = node->errors[GRE_ERROR_NO_SUCH_TUNNEL]; *tun_sw_if_index = ~0; } else { const gre_tunnel_t *tun; tun = pool_elt_at_index (gm->tunnels, *p); *cached_tun_sw_if_index = *tun_sw_if_index = tun->sw_if_index; if (is_ipv6) cached_key->gtk_v6 = key->gtk_v6; else cached_key->gtk_v4 = key->gtk_v4; } } always_inline uword gre_input (vlib_main_t * vm, vlib_node_runtime_t * node, vlib_frame_t * frame, const int is_ipv6) { gre_main_t *gm = &gre_main; u32 *from, n_left_from; vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b = bufs; u16 nexts[VLIB_FRAME_SIZE], *next = nexts; u16 cached_protocol = ~0; u32 cached_next_index = SPARSE_VEC_INVALID_INDEX; u32 cached_tun_sw_if_index = ~0; gre_tunnel_key_t cached_key; from = vlib_frame_vector_args (frame); n_left_from = frame->n_vectors; vlib_get_buffers (vm, from, bufs, n_left_from); if (is_ipv6) clib_memset (&cached_key.gtk_v6, 0xff, sizeof (cached_key.gtk_v6)); else clib_memset (&cached_key.gtk_v4, 0xff, sizeof (cached_key.gtk_v4)); while (n_left_from >= 2) { const ip6_header_t *ip6[2]; const ip4_header_t *ip4[2]; const gre_header_t *gre[2]; u32 nidx[2]; next_info_t ni[2]; u8 type[2]; u16 version[2]; u32 len[2]; gre_tunnel_key_t key[2]; u8 matched[2]; u32 tun_sw_if_index[2]; if (PREDICT_TRUE (n_left_from >= 6)) { vlib_prefetch_buffer_data (b[2], LOAD); vlib_prefetch_buffer_data (b[3], LOAD); vlib_prefetch_buffer_header (b[4], STORE); vlib_prefetch_buffer_header (b[5], STORE); } if (is_ipv6) { /* ip6_local hands us the ip header, not the gre header */ ip6[0] = vlib_buffer_get_current (b[0]); ip6[1] = vlib_buffer_get_current (b[1]); gre[0] = (void *) (ip6[0] + 1); gre[1] = (void *) (ip6[1] + 1); vlib_buffer_advance (b[0], sizeof (*ip6[0]) + sizeof (*gre[0])); vlib_buffer_advance (b[1], sizeof (*ip6[0]) + sizeof (*gre[0])); } else { /* ip4_local hands us the ip header, not the gre header */ ip4[0] = vlib_buffer_get_current (b[0]); ip4[1] = vlib_buffer_get_current (b[1]); gre[0] = (void *) (ip4[0] + 1); gre[1] = (void *) (ip4[1] + 1); vlib_buffer_advance (b[0], sizeof (*ip4[0]) + sizeof (*gre[0])); vlib_buffer_advance (b[1], sizeof (*ip4[0]) + sizeof (*gre[0])); } if (PREDICT_TRUE (cached_protocol == gre[0]->protocol)) { nidx[0] = cached_next_index; } else { cached_next_index = nidx[0] = sparse_vec_index (gm->next_by_protocol, gre[0]->protocol); cached_protocol = gre[0]->protocol; } if (PREDICT_TRUE (cached_protocol == gre[1]->protocol)) { nidx[1] = cached_next_index; } else { cached_next_index = nidx[1] = sparse_vec_index (gm->next_by_protocol, gre[1]->protocol); cached_protocol = gre[1]->protocol; } ni[0] = vec_elt (gm->next_by_protocol, nidx[0]); ni[1] = vec_elt (gm->next_by_protocol, nidx[1]); next[0] = ni[0].next_index; next[1] = ni[1].next_index; type[0] = ni[0].tunnel_type; type[1] = ni[1].tunnel_type; b[0]->error = nidx[0] == SPARSE_VEC_INVALID_INDEX ? node->errors[GRE_ERROR_UNKNOWN_PROTOCOL] : node->errors[GRE_ERROR_NONE]; b[1]->error = nidx[1] == SPARSE_VEC_INVALID_INDEX ? node->errors[GRE_ERROR_UNKNOWN_PROTOCOL] : node->errors[GRE_ERROR_NONE]; version[0] = clib_net_to_host_u16 (gre[0]->flags_and_version); version[1] = clib_net_to_host_u16 (gre[1]->flags_and_version); version[0] &= GRE_VERSION_MASK; version[1] &= GRE_VERSION_MASK; b[0]->error = version[0] ? node->errors[GRE_ERROR_UNSUPPORTED_VERSION] : b[0]->error; next[0] = version[0] ? GRE_INPUT_NEXT_DROP : next[0]; b[1]->error = version[1] ? node->errors[GRE_ERROR_UNSUPPORTED_VERSION] : b[1]->error; next[1] = version[1] ? GRE_INPUT_NEXT_DROP : next[1]; len[0] = vlib_buffer_length_in_chain (vm, b[0]); len[1] = vlib_buffer_length_in_chain (vm, b[1]); /* always search for P2P types in the DP */ if (is_ipv6) { gre_mk_key6 (&ip6[0]->dst_address, &ip6[0]->src_address, vnet_buffer (b[0])->ip.fib_index, type[0], TUNNEL_MODE_P2P, 0, &key[0].gtk_v6); gre_mk_key6 (&ip6[1]->dst_address, &ip6[1]->src_address, vnet_buffer (b[1])->ip.fib_index, type[1], TUNNEL_MODE_P2P, 0, &key[1].gtk_v6); matched[0] = gre_match_key6 (&cached_key.gtk_v6, &key[0].gtk_v6); matched[1] = gre_match_key6 (&cached_key.gtk_v6, &key[1].gtk_v6); } else { gre_mk_key4 (ip4[0]->dst_address, ip4[0]->src_address, vnet_buffer (b[0])->ip.fib_index, type[0], TUNNEL_MODE_P2P, 0, &key[0].gtk_v4); gre_mk_key4 (ip4[1]->dst_address, ip4[1]->src_address, vnet_<style>.highlight .hll { background-color: #ffffcc } .highlight .c { color: #888888 } /* Comment */ .highlight .err { color: #a61717; background-color: #e3d2d2 } /* Error */ .highlight .k { color: #008800; font-weight: bold } /* Keyword */ .highlight .ch { color: #888888 } /* Comment.Hashbang */ .highlight .cm { color: #888888 } /* Comment.Multiline */ .highlight .cp { color: #cc0000; font-weight: bold } /* Comment.Preproc */ .highlight .cpf { color: #888888 } /* Comment.PreprocFile */ .highlight .c1 { color: #888888 } /* Comment.Single */ .highlight .cs { color: #cc0000; font-weight: bold; background-color: #fff0f0 } /* Comment.Special */ .highlight .gd { color: #000000; background-color: #ffdddd } /* Generic.Deleted */ .highlight .ge { font-style: italic } /* Generic.Emph */ .highlight .gr { color: #aa0000 } /* Generic.Error */ .highlight .gh { color: #333333 } /* Generic.Heading */ .highlight .gi { color: #000000; background-color: #ddffdd } /* Generic.Inserted */ .highlight .go { color: #888888 } /* Generic.Output */ .highlight .gp { color: #555555 } /* Generic.Prompt */ .highlight .gs { font-weight: bold } /* Generic.Strong */ .highlight .gu { color: #666666 } /* Generic.Subheading */ .highlight .gt { color: #aa0000 } /* Generic.Traceback */ .highlight .kc { color: #008800; font-weight: bold } /* Keyword.Constant */ .highlight .kd { color: #008800; font-weight: bold } /* Keyword.Declaration */ .highlight .kn { color: #008800; font-weight: bold } /* Keyword.Namespace */ .highlight .kp { color: #008800 } /* Keyword.Pseudo */ .highlight .kr { color: #008800; font-weight: bold } /* Keyword.Reserved */ .highlight .kt { color: #888888; font-weight: bold } /* Keyword.Type */ .highlight .m { color: #0000DD; font-weight: bold } /* Literal.Number */ .highlight .s { color: #dd2200; background-color: #fff0f0 } /* Literal.String */ .highlight .na { color: #336699 } /* Name.Attribute */ .highlight .nb { color: #003388 } /* Name.Builtin */ .highlight .nc { color: #bb0066; font-weight: bold } /* Name.Class */ .highlight .no { color: #003366; font-weight: bold } /* Name.Constant */ .highlight .nd { color: #555555 } /* Name.Decorator */ .highlight .ne { color: #bb0066; font-weight: bold } /* Name.Exception */ .highlight .nf { color: #0066bb; font-weight: bold } /* Name.Function */ .highlight .nl { color: #336699; font-style: italic } /* Name.Label */ .highlight .nn { color: #bb0066; font-weight: bold } /* Name.Namespace */ .highlight .py { color: #336699; font-weight: bold } /* Name.Property */ .highlight .nt { color: #bb0066; font-weight: bold } /* Name.Tag */ .highlight .nv { color: #336699 } /* Name.Variable */ .highlight .ow { color: #008800 } /* Operator.Word */ .highlight .w { color: #bbbbbb } /* Text.Whitespace */ .highlight .mb { color: #0000DD; font-weight: bold } /* Literal.Number.Bin */ .highlight .mf { color: #0000DD; font-weight: bold } /* Literal.Number.Float */ .highlight .mh { color: #0000DD; font-weight: bold } /* Literal.Number.Hex */ .highlight .mi { color: #0000DD; font-weight: bold } /* Literal.Number.Integer */ .highlight .mo { color: #0000DD; font-weight: bold } /* Literal.Number.Oct */ .highlight .sa { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Affix */ .highlight .sb { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Backtick */ .highlight .sc { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Char */ .highlight .dl { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Delimiter */ .highlight .sd { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Doc */ .highlight .s2 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Double */ .highlight .se { color: #0044dd; background-color: #fff0f0 } /* Literal.String.Escape */ .highlight .sh { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Heredoc */ .highlight .si { color: #3333bb; background-color: #fff0f0 } /* Literal.String.Interpol */ .highlight .sx { color: #22bb22; background-color: #f0fff0 } /* Literal.String.Other */ .highlight .sr { color: #008800; background-color: #fff0ff } /* Literal.String.Regex */ .highlight .s1 { color: #dd2200; background-color: #fff0f0 } /* Literal.String.Single */ .highlight .ss { color: #aa6600; background-color: #fff0f0 } /* Literal.String.Symbol */ .highlight .bp { color: #003388 } /* Name.Builtin.Pseudo */ .highlight .fm { color: #0066bb; font-weight: bold } /* Name.Function.Magic */ .highlight .vc { color: #336699 } /* Name.Variable.Class */ .highlight .vg { color: #dd7700 } /* Name.Variable.Global */ .highlight .vi { color: #3333bb } /* Name.Variable.Instance */ .highlight .vm { color: #336699 } /* Name.Variable.Magic */ .highlight .il { color: #0000DD; font-weight: bold } /* Literal.Number.Integer.Long */</style><div class="highlight"><pre><span></span># -*- mode: ruby -*- # vi: set ft=ruby : Vagrant.configure(2) do |config| # Pick the right distro and bootstrap, default is ubuntu1604 distro = ( ENV['VPP_VAGRANT_DISTRO'] || "ubuntu1604") if distro == 'centos7' config.vm.box = "centos/7" config.vm.box_version = "1708.01" config.ssh.insert_key = false elsif distro == 'ubuntu1804' config.vm.box = "bento/ubuntu-18.04" else config.vm.box = "puppetlabs/ubuntu-16.04-64-nocm" end config.vm.box_check_update = false config.vm.provision :shell, :path => File.join(File.dirname(__FILE__),"update.sh") config.vm.provision :shell, :path => File.join(File.dirname(__FILE__),"build.sh"), :args => "/vpp vagrant" post_build = ( ENV['VPP_VAGRANT_POST_BUILD'] ) if post_build == "test" config.vm.provision "shell", inline: "echo Testing VPP; cd /vpp; make test" elsif post_build == "install" config.vm.provision :shell, :path => File.join(File.dirname(__FILE__),"install.sh"), :args => "/vpp" config.vm.provision :shell, :path => File.join(File.dirname(__FILE__),"clearinterfaces.sh") config.vm.provision :shell, :path => File.join(File.dirname(__FILE__),"run.sh") end # Add .gnupg dir in so folks can sign patches # Note, as gnupg puts socket files in that dir, we have # to be cautious and make sure we are dealing with a plain file homedir = File.expand_path("~/") Dir["#{homedir}/.gnupg/**/*"].each do |fname| if File.file?(fname) destname = fname.sub(Regexp.escape("#{homedir}/"),'') config.vm.provision "file", source: fname, destination: destname end end # Copy in the .gitconfig if it exists if File.file?(File.expand_path("~/.gitconfig")) config.vm.provision "file", source: "~/.gitconfig", destination: ".gitconfig" end # vagrant-cachier caches apt/yum etc to speed subsequent # vagrant up # to enable, run # vagrant plugin install vagrant-cachier # if Vagrant.has_plugin?("vagrant-cachier") config.cache.scope = :box end # Define some physical ports for your VMs to be used by DPDK nics = (ENV['VPP_VAGRANT_NICS'] || "2").to_i(10) for i in 1..nics config.vm.network "private_network", type: "dhcp" end # use http proxy if avaiable if ENV['http_proxy'] && Vagrant.has_plugin?("vagrant-proxyconf") config.proxy.http = ENV['http_proxy'] config.proxy.https = ENV['https_proxy'] config.proxy.no_proxy = "localhost,127.0.0.1" end vmcpu=(ENV['VPP_VAGRANT_VMCPU'] || 2) vmram=(ENV['VPP_VAGRANT_VMRAM'] || 4096) config.ssh.forward_agent = true config.ssh.forward_x11 = true config.vm.provider "virtualbox" do |vb| vb.customize ["modifyvm", :id, "--ioapic", "on"] vb.memory = "#{vmram}" vb.cpus = "#{vmcpu}" # rsync the vpp directory if provision hasn't happened yet unless File.exist? (".vagrant/machines/default/virtualbox/action_provision") config.vm.synced_folder "../../", "/vpp", type: "rsync", rsync__auto: false, rsync__exclude: [ "build-root/build*/", "build-root/install*/", "build-root/images*/", "build-root/*.deb", "build-root/*.rpm", "build-root/*.changes", "build-root/python", "build-root/deb/debian/*.dkms", "build-root/deb/debian/*.install", "build-root/deb/debian/changes", "build-root/tools"] end #support for the SSE4.x instruction is required in some versions of VB. vb.customize ["setextradata", :id, "VBoxInternal/CPUM/SSE4.1", "1"] vb.customize ["setextradata", :id, "VBoxInternal/CPUM/SSE4.2", "1"] end config.vm.provider "vmware_fusion" do |fusion,override| fusion.vmx["memsize"] = "#{vmram}" fusion.vmx["numvcpus"] = "#{vmcpu}" end config.vm.provider "libvirt" do |lv| lv.memory = "#{vmram}" lv.cpus = "#{vmcpu}" end config.vm.provider "vmware_workstation" do |vws,override| vws.vmx["memsize"]