/* * l2_flood.c : layer 2 flooding * * Copyright (c) 2013 Cisco and/or its affiliates. * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at: * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include #include #include #include #include #include #include #include #include #include #include #include /** * @file * @brief Ethernet Flooding. * * Flooding uses the packet replication infrastructure to send a copy of the * packet to each member interface. Logically the replication infrastructure * expects two graph nodes: a prep node that initiates replication and sends the * packet to the first destination, and a recycle node that is passed the packet * after it has been transmitted. * * To decrease the amount of code, l2 flooding implements both functions in * the same graph node. This node can tell if is it being called as the "prep" * or "recycle" using replication_is_recycled(). */ typedef struct { /* Next nodes for each feature */ u32 feat_next_node_index[32]; /* next node index for the L3 input node of each ethertype */ next_by_ethertype_t l3_next; /* convenience variables */ vlib_main_t *vlib_main; vnet_main_t *vnet_main; } l2flood_main_t; typedef struct { u8 src[6]; u8 dst[6]; u32 sw_if_index; u16 bd_index; } l2flood_trace_t; /* packet trace format function */ static u8 * format_l2flood_trace (u8 * s, va_list * args) { CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *); CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *); l2flood_trace_t *t = va_arg (*args, l2flood_trace_t *); s = format (s, "l2-flood: sw_if_index %d dst %U src %U bd_index %d", t->sw_if_index, format_ethernet_address, t->dst, format_ethernet_address, t->src, t->bd_index); return s; } l2flood_main_t l2flood_main; static vlib_node_registration_t l2flood_node; #define foreach_l2flood_error \ _(L2FLOOD, "L2 flood packets") \ _(REPL_FAIL, "L2 replication failures") \ _(NO_MEMBERS, "L2 replication complete") \ _(BVI_BAD_MAC, "BVI L3 mac mismatch") \ _(BVI_ETHERTYPE, "BVI packet with unhandled ethertype") typedef enum { #define _(sym,str) L2FLOOD_ERROR_##sym, foreach_l2flood_error #undef _ L2FLOOD_N_ERROR, } l2flood_error_t; static char *l2flood_error_strings[] = { #define _(sym,string) string, foreach_l2flood_error #undef _ }; typedef enum { L2FLOOD_NEXT_L2_OUTPUT, L2FLOOD_NEXT_DROP, L2FLOOD_N_NEXT, } l2flood_next_t; /* * Perform flooding on one packet * * Due to the way BVI processing can modify the packet, the BVI interface * (if present) must be processed last in the replication. The member vector * is arranged so that the BVI interface is always the first element. * Flooding walks the vector in reverse. * * BVI processing causes the packet to go to L3 processing. This strips the * L2 header, which is fine because the replication infrastructure restores * it. However L3 processing can trigger larger changes to the packet. For * example, an ARP request could be turned into an ARP reply, an ICMP request * could be turned into an ICMP reply. If BVI processing is not performed * last, the modified packet would be replicated to the remaining members. */ static_always_inline void l2flood_process (vlib_main_t * vm, vlib_node_runtime_t * node, l2flood_main_t * msm, u64 * counter_base, vlib_buffer_t * b0, u32 * sw_if_index0, l2fib_entry_key_t * key0, u32 * bucket0, l2fib_entry_result_t * result0, u32 * next0) { u16 bd_index0; l2_bridge_domain_t *bd_config; l2_flood_member_t *members; i32 current_member; /* signed */ replication_context_t *ctx; u8 in_shg = vnet_buffer (b0)->l2.shg; if (!replication_is_recycled (b0)) { /* Do flood "prep node" processing */ /* Get config for the bridge domain interface */ bd_index0 = vnet_buffer (b0)->l2.bd_index; bd_config = vec_elt_at_index (l2input_main.bd_configs, bd_index0); members = bd_config->members; /* Find first member that passes the reflection and SHG checks */ current_member = bd_config->flood_count - 1; while ((current_member >= 0) && ((members[current_member].sw_if_index == *sw_if_index0) || (in_shg && members[current_member].shg == in_shg))) { current_member--; } if (current_member < 0) { /* No members to flood to */ *next0 = L2FLOOD_NEXT_DROP; b0->error = node->errors[L2FLOOD_ERROR_NO_MEMBERS]; return; } if ((current_member > 0) && ((current_member > 1) || ((members[0].sw_if_index != *sw_if_index0) && (!in_shg || members[0].shg != in_shg)))) { /* If more than one member then initiate replication */ ctx = replication_prep (vm, b0, l2flood_node.index, 1 /* l2_packet */ ); ctx->feature_replicas = (uword) members; ctx->feature_counter = current_member; } } else { vnet_buffer_opaque_t *vnet_buff_op; /* Do flood "recycle node" processing */ if (PREDICT_FALSE (b0->flags & VLIB_BUFFER_REPL_FAIL)) { (void) replication_recycle (vm, b0, 1 /* is_last */ ); *next0 = L2FLOOD_NEXT_DROP; b0->error = node->errors[L2FLOOD_ERROR_REPL_FAIL]; return; } ctx = replication_get_ctx (b0); r
/*
 * Copyright (c) 2018 Cisco and/or its affiliates.
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at:
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
/**
 * @brief
 * The IP6 link-local DPO represents the lookup of a packet in the link-local
 * IPv6 FIB
 */

#ifndef __IP6_LL_DPO_H__
#define __IP6_LL_DPO_H__

#include <vnet/dpo/dpo.h>

extern const dpo_id_t *ip6_ll_dpo_get (void);

extern void ip6_ll_dpo_module_init (void);

/*
 * fd.io coding-style-patch-verification: ON
 *
 * Local Variables:
 * eval: (c-set-style "gnu")
 * End:
 */

#endif
_node, l2flood_node_fn) clib_error_t *l2flood_init (vlib_main_t * vm) { l2flood_main_t *mp = &l2flood_main; mp->vlib_main = vm; mp->vnet_main = vnet_get_main (); /* Initialize the feature next-node indexes */ feat_bitmap_init_next_nodes (vm, l2flood_node.index, L2INPUT_N_FEAT, l2input_get_feat_names (), mp->feat_next_node_index); return 0; } VLIB_INIT_FUNCTION (l2flood_init); /** Add the L3 input node for this ethertype to the next nodes structure. */ void l2flood_register_input_type (vlib_main_t * vm, ethernet_type_t type, u32 node_index) { l2flood_main_t *mp = &l2flood_main; u32 next_index; next_index = vlib_node_add_next (vm, l2flood_node.index, node_index); next_by_ethertype_register (&mp->l3_next, type, next_index); } /** * Set subinterface flood enable/disable. * The CLI format is: * set interface l2 flood [disable] */ static clib_error_t * int_flood (vlib_main_t * vm, unformat_input_t * input, vlib_cli_command_t * cmd) { vnet_main_t *vnm = vnet_get_main (); clib_error_t *error = 0; u32 sw_if_index; u32 enable; if (!unformat_user (input, unformat_vnet_sw_interface, vnm, &sw_if_index)) { error = clib_error_return (0, "unknown interface `%U'", format_unformat_error, input); goto done; } enable = 1; if (unformat (input, "disable")) { enable = 0; } /* set the interface flag */ l2input_intf_bitmap_enable (sw_if_index, L2INPUT_FEAT_FLOOD, enable); done: return error; } /*? * Layer 2 flooding can be enabled and disabled on each * interface and on each bridge-domain. Use this command to * manage interfaces. It is enabled by default. * * @cliexpar * Example of how to enable flooding: * @cliexcmd{set interface l2 flood GigabitEthernet0/8/0} * Example of how to disable flooding: * @cliexcmd{set interface l2 flood GigabitEthernet0/8/0 disable} ?*/ /* *INDENT-OFF* */ VLIB_CLI_COMMAND (int_flood_cli, static) = { .path = "set interface l2 flood", .short_help = "set interface l2 flood [disable]", .function = int_flood, }; /* *INDENT-ON* */ /* * fd.io coding-style-patch-verification: ON * * Local Variables: * eval: (c-set-style "gnu") * End: */