2 # SPDX-License-Identifier: GPL-2.0
4 # Test VxLAN flooding. The device stores flood records in a singly linked list
5 # where each record stores up to three IPv4 addresses of remote VTEPs. The test
6 # verifies that packets are correctly flooded in various cases such as deletion
7 # of a record in the middle of the list.
9 # +--------------------+
13 # +----|---------------+
15 # +----|----------------------------------------------------------------------+
17 # | +--|--------------------------------------------------------------------+ |
18 # | | + $swp1 BR0 (802.1d) | |
20 # | | + vxlan0 (vxlan) | |
21 # | | local 198.51.100.1 | |
22 # | | remote 198.51.100.{2..13} | |
23 # | | id 10 dstport 4789 | |
24 # | +-----------------------------------------------------------------------+ |
26 # | 198.51.100.0/24 via 192.0.2.2 |
30 # +----|----------------------------------------------------------------------+
32 # +----|--------------------------------------------------------+
37 # +-------------------------------------------------------------+
39 lib_dir=$(dirname $0)/../../../net/forwarding
41 ALL_TESTS="flooding_test"
43 source $lib_dir/tc_common.sh
44 source $lib_dir/lib.sh
48 simple_if_init $h1 203.0.113.1/24
53 simple_if_fini $h1 203.0.113.1/24
58 # Make sure the bridge uses the MAC address of the local port and
59 # not that of the VxLAN's device
60 ip link add dev br0 type bridge mcast_snooping 0
61 ip link set dev br0 address $(mac_get $swp1)
63 ip link add name vxlan0 type vxlan id 10 nolearning noudpcsum \
64 ttl 20 tos inherit local 198.51.100.1 dstport 4789
66 ip address add 198.51.100.1/32 dev lo
68 ip link set dev $swp1 master br0
69 ip link set dev vxlan0 master br0
71 ip link set dev br0 up
72 ip link set dev $swp1 up
73 ip link set dev vxlan0 up
78 ip link set dev vxlan0 down
79 ip link set dev $swp1 down
80 ip link set dev br0 down
82 ip link set dev vxlan0 nomaster
83 ip link set dev $swp1 nomaster
85 ip address del 198.51.100.1/32 dev lo
87 ip link del dev vxlan0
94 # This router is in the default VRF, where the VxLAN device is
95 # performing the L3 lookup
96 ip link set dev $rp1 up
97 ip address add 192.0.2.1/24 dev $rp1
98 ip route add 198.51.100.0/24 via 192.0.2.2
103 ip route del 198.51.100.0/24 via 192.0.2.2
104 ip address del 192.0.2.1/24 dev $rp1
105 ip link set dev $rp1 down
110 # This router is not in the default VRF, so use simple_if_init()
111 simple_if_init $rp2 192.0.2.2/24
116 simple_if_fini $rp2 192.0.2.2/24
155 flooding_remotes_add()
161 for i in $(eval echo {1..$num_remotes}); do
164 bridge fdb append 00:00:00:00:00:00 dev vxlan0 self \
169 flooding_filters_add()
175 tc qdisc add dev $rp2 clsact
177 for i in $(eval echo {1..$num_remotes}); do
180 tc filter add dev $rp2 ingress protocol ip pref $i handle $i \
181 flower ip_proto udp dst_ip 198.51.100.$lsb \
182 dst_port 4789 skip_sw action drop
186 flooding_filters_del()
191 for i in $(eval echo {1..$num_remotes}); do
192 tc filter del dev $rp2 ingress protocol ip pref $i \
196 tc qdisc del dev $rp2 clsact
199 flooding_check_packets()
202 local num_remotes=${#packets[@]}
205 for i in $(eval echo {1..$num_remotes}); do
206 tc_check_packets "dev $rp2 ingress" $i ${packets[i - 1]}
207 check_err $? "remote $i - did not get expected number of packets"
213 # Use 12 remote VTEPs that will be stored in 4 records. The array
214 # 'packets' will store how many packets are expected to be received
215 # by each remote VTEP at each stage of the test
216 declare -a packets=(1 1 1 1 1 1 1 1 1 1 1 1)
221 # Add FDB entries for remote VTEPs and corresponding tc filters on the
222 # ingress of the nexthop router. These filters will count how many
223 # packets were flooded to each remote VTEP
224 flooding_remotes_add $num_remotes
225 flooding_filters_add $num_remotes
227 # Send one packet and make sure it is flooded to all the remote VTEPs
228 $MZ $h1 -q -p 64 -b de:ad:be:ef:13:37 -t ip -c 1
229 flooding_check_packets "${packets[@]}"
230 log_test "flood after 1 packet"
232 # Delete the third record which corresponds to VTEPs with LSB 8..10
233 # and check that packet is flooded correctly when we remove a record
234 # from the middle of the list
237 packets=(2 2 2 2 2 2 1 1 1 2 2 2)
238 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.8
239 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.9
240 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.10
242 $MZ $h1 -q -p 64 -b de:ad:be:ef:13:37 -t ip -c 1
243 flooding_check_packets "${packets[@]}"
244 log_test "flood after 2 packets"
246 # Delete the first record and make sure the packet is flooded correctly
249 packets=(2 2 2 3 3 3 1 1 1 3 3 3)
250 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.2
251 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.3
252 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.4
254 $MZ $h1 -q -p 64 -b de:ad:be:ef:13:37 -t ip -c 1
255 flooding_check_packets "${packets[@]}"
256 log_test "flood after 3 packets"
258 # Delete the last record and make sure the packet is flooded correctly
261 packets=(2 2 2 4 4 4 1 1 1 3 3 3)
262 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.11
263 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.12
264 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.13
266 $MZ $h1 -q -p 64 -b de:ad:be:ef:13:37 -t ip -c 1
267 flooding_check_packets "${packets[@]}"
268 log_test "flood after 4 packets"
270 # Delete the last record, one entry at a time and make sure single
271 # entries are correctly removed
274 packets=(2 2 2 4 5 5 1 1 1 3 3 3)
275 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.5
277 $MZ $h1 -q -p 64 -b de:ad:be:ef:13:37 -t ip -c 1
278 flooding_check_packets "${packets[@]}"
279 log_test "flood after 5 packets"
283 packets=(2 2 2 4 5 6 1 1 1 3 3 3)
284 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.6
286 $MZ $h1 -q -p 64 -b de:ad:be:ef:13:37 -t ip -c 1
287 flooding_check_packets "${packets[@]}"
288 log_test "flood after 6 packets"
292 packets=(2 2 2 4 5 6 1 1 1 3 3 3)
293 bridge fdb del 00:00:00:00:00:00 dev vxlan0 self dst 198.51.100.7
295 $MZ $h1 -q -p 64 -b de:ad:be:ef:13:37 -t ip -c 1
296 flooding_check_packets "${packets[@]}"
297 log_test "flood after 7 packets"
299 flooding_filters_del $num_remotes