linuxdebug/tools/testing/selftests/net/fib_nexthops.sh

2350 lines
69 KiB
Bash
Raw Normal View History

2024-07-16 15:50:57 +02:00
#!/bin/bash
# SPDX-License-Identifier: GPL-2.0
#
# ns: me | ns: peer | ns: remote
# 2001:db8:91::1 | 2001:db8:91::2 |
# 172.16.1.1 | 172.16.1.2 |
# veth1 <---|---> veth2 |
# | veth5 <--|--> veth6 172.16.101.1
# veth3 <---|---> veth4 | 2001:db8:101::1
# 172.16.2.1 | 172.16.2.2 |
# 2001:db8:92::1 | 2001:db8:92::2 |
#
# This test is for checking IPv4 and IPv6 FIB behavior with nexthop
# objects. Device reference counts and network namespace cleanup tested
# by use of network namespace for peer.
ret=0
# Kselftest framework requirement - SKIP code is 4.
ksft_skip=4
# all tests in this script. Can be overridden with -t option
IPV4_TESTS="
ipv4_fcnal
ipv4_grp_fcnal
ipv4_res_grp_fcnal
ipv4_withv6_fcnal
ipv4_fcnal_runtime
ipv4_large_grp
ipv4_large_res_grp
ipv4_compat_mode
ipv4_fdb_grp_fcnal
ipv4_torture
ipv4_res_torture
"
IPV6_TESTS="
ipv6_fcnal
ipv6_grp_fcnal
ipv6_res_grp_fcnal
ipv6_fcnal_runtime
ipv6_large_grp
ipv6_large_res_grp
ipv6_compat_mode
ipv6_fdb_grp_fcnal
ipv6_torture
ipv6_res_torture
"
ALL_TESTS="
basic
basic_res
${IPV4_TESTS}
${IPV6_TESTS}
"
TESTS="${ALL_TESTS}"
VERBOSE=0
PAUSE_ON_FAIL=no
PAUSE=no
PING_TIMEOUT=5
nsid=100
################################################################################
# utilities
log_test()
{
local rc=$1
local expected=$2
local msg="$3"
if [ ${rc} -eq ${expected} ]; then
printf "TEST: %-60s [ OK ]\n" "${msg}"
nsuccess=$((nsuccess+1))
else
ret=1
nfail=$((nfail+1))
printf "TEST: %-60s [FAIL]\n" "${msg}"
if [ "$VERBOSE" = "1" ]; then
echo " rc=$rc, expected $expected"
fi
if [ "${PAUSE_ON_FAIL}" = "yes" ]; then
echo
echo "hit enter to continue, 'q' to quit"
read a
[ "$a" = "q" ] && exit 1
fi
fi
if [ "${PAUSE}" = "yes" ]; then
echo
echo "hit enter to continue, 'q' to quit"
read a
[ "$a" = "q" ] && exit 1
fi
[ "$VERBOSE" = "1" ] && echo
}
run_cmd()
{
local cmd="$1"
local out
local stderr="2>/dev/null"
if [ "$VERBOSE" = "1" ]; then
printf "COMMAND: $cmd\n"
stderr=
fi
out=$(eval $cmd $stderr)
rc=$?
if [ "$VERBOSE" = "1" -a -n "$out" ]; then
echo " $out"
fi
return $rc
}
get_linklocal()
{
local dev=$1
local ns
local addr
[ -n "$2" ] && ns="-netns $2"
addr=$(ip $ns -6 -br addr show dev ${dev} | \
awk '{
for (i = 3; i <= NF; ++i) {
if ($i ~ /^fe80/)
print $i
}
}'
)
addr=${addr/\/*}
[ -z "$addr" ] && return 1
echo $addr
return 0
}
create_ns()
{
local n=${1}
ip netns del ${n} 2>/dev/null
set -e
ip netns add ${n}
ip netns set ${n} $((nsid++))
ip -netns ${n} addr add 127.0.0.1/8 dev lo
ip -netns ${n} link set lo up
ip netns exec ${n} sysctl -qw net.ipv4.ip_forward=1
ip netns exec ${n} sysctl -qw net.ipv4.fib_multipath_use_neigh=1
ip netns exec ${n} sysctl -qw net.ipv4.conf.default.ignore_routes_with_linkdown=1
ip netns exec ${n} sysctl -qw net.ipv6.conf.all.keep_addr_on_down=1
ip netns exec ${n} sysctl -qw net.ipv6.conf.all.forwarding=1
ip netns exec ${n} sysctl -qw net.ipv6.conf.default.forwarding=1
ip netns exec ${n} sysctl -qw net.ipv6.conf.default.ignore_routes_with_linkdown=1
ip netns exec ${n} sysctl -qw net.ipv6.conf.all.accept_dad=0
ip netns exec ${n} sysctl -qw net.ipv6.conf.default.accept_dad=0
set +e
}
setup()
{
cleanup
create_ns me
create_ns peer
create_ns remote
IP="ip -netns me"
BRIDGE="bridge -netns me"
set -e
$IP li add veth1 type veth peer name veth2
$IP li set veth1 up
$IP addr add 172.16.1.1/24 dev veth1
$IP -6 addr add 2001:db8:91::1/64 dev veth1 nodad
$IP li add veth3 type veth peer name veth4
$IP li set veth3 up
$IP addr add 172.16.2.1/24 dev veth3
$IP -6 addr add 2001:db8:92::1/64 dev veth3 nodad
$IP li set veth2 netns peer up
ip -netns peer addr add 172.16.1.2/24 dev veth2
ip -netns peer -6 addr add 2001:db8:91::2/64 dev veth2 nodad
$IP li set veth4 netns peer up
ip -netns peer addr add 172.16.2.2/24 dev veth4
ip -netns peer -6 addr add 2001:db8:92::2/64 dev veth4 nodad
ip -netns remote li add veth5 type veth peer name veth6
ip -netns remote li set veth5 up
ip -netns remote addr add dev veth5 172.16.101.1/24
ip -netns remote -6 addr add dev veth5 2001:db8:101::1/64 nodad
ip -netns remote ro add 172.16.0.0/22 via 172.16.101.2
ip -netns remote -6 ro add 2001:db8:90::/40 via 2001:db8:101::2
ip -netns remote li set veth6 netns peer up
ip -netns peer addr add dev veth6 172.16.101.2/24
ip -netns peer -6 addr add dev veth6 2001:db8:101::2/64 nodad
set +e
}
cleanup()
{
local ns
for ns in me peer remote; do
ip netns del ${ns} 2>/dev/null
done
}
check_output()
{
local out="$1"
local expected="$2"
local rc=0
[ "${out}" = "${expected}" ] && return 0
if [ -z "${out}" ]; then
if [ "$VERBOSE" = "1" ]; then
printf "\nNo entry found\n"
printf "Expected:\n"
printf " ${expected}\n"
fi
return 1
fi
out=$(echo ${out})
if [ "${out}" != "${expected}" ]; then
rc=1
if [ "${VERBOSE}" = "1" ]; then
printf " Unexpected entry. Have:\n"
printf " ${out}\n"
printf " Expected:\n"
printf " ${expected}\n\n"
else
echo " WARNING: Unexpected route entry"
fi
fi
return $rc
}
check_nexthop()
{
local nharg="$1"
local expected="$2"
local out
out=$($IP nexthop ls ${nharg} 2>/dev/null)
check_output "${out}" "${expected}"
}
check_nexthop_bucket()
{
local nharg="$1"
local expected="$2"
local out
# remove the idle time since we cannot match it
out=$($IP nexthop bucket ${nharg} \
| sed s/idle_time\ [0-9.]*\ // 2>/dev/null)
check_output "${out}" "${expected}"
}
check_route()
{
local pfx="$1"
local expected="$2"
local out
out=$($IP route ls match ${pfx} 2>/dev/null)
check_output "${out}" "${expected}"
}
check_route6()
{
local pfx="$1"
local expected="$2"
local out
out=$($IP -6 route ls match ${pfx} 2>/dev/null | sed -e 's/pref medium//')
check_output "${out}" "${expected}"
}
check_large_grp()
{
local ipv=$1
local ecmp=$2
local grpnum=100
local nhidstart=100
local grpidstart=1000
local iter=0
local nhidstr=""
local grpidstr=""
local grpstr=""
local ipstr=""
if [ $ipv -eq 4 ]; then
ipstr="172.16.1."
else
ipstr="2001:db8:91::"
fi
#
# Create $grpnum groups with specified $ecmp and dump them
#
# create nexthops with different gateways
iter=2
while [ $iter -le $(($ecmp + 1)) ]
do
nhidstr="$(($nhidstart + $iter))"
run_cmd "$IP nexthop add id $nhidstr via $ipstr$iter dev veth1"
check_nexthop "id $nhidstr" "id $nhidstr via $ipstr$iter dev veth1 scope link"
if [ $iter -le $ecmp ]; then
grpstr+="$nhidstr/"
else
grpstr+="$nhidstr"
fi
((iter++))
done
# create duplicate large ecmp groups
iter=0
while [ $iter -le $grpnum ]
do
grpidstr="$(($grpidstart + $iter))"
run_cmd "$IP nexthop add id $grpidstr group $grpstr"
check_nexthop "id $grpidstr" "id $grpidstr group $grpstr"
((iter++))
done
# dump large groups
run_cmd "$IP nexthop list"
log_test $? 0 "Dump large (x$ecmp) ecmp groups"
}
check_large_res_grp()
{
local ipv=$1
local buckets=$2
local ipstr=""
if [ $ipv -eq 4 ]; then
ipstr="172.16.1.2"
else
ipstr="2001:db8:91::2"
fi
# create a resilient group with $buckets buckets and dump them
run_cmd "$IP nexthop add id 100 via $ipstr dev veth1"
run_cmd "$IP nexthop add id 1000 group 100 type resilient buckets $buckets"
run_cmd "$IP nexthop bucket list"
log_test $? 0 "Dump large (x$buckets) nexthop buckets"
}
start_ip_monitor()
{
local mtype=$1
# start the monitor in the background
tmpfile=`mktemp /var/run/nexthoptestXXX`
mpid=`($IP monitor $mtype > $tmpfile & echo $!) 2>/dev/null`
sleep 0.2
echo "$mpid $tmpfile"
}
stop_ip_monitor()
{
local mpid=$1
local tmpfile=$2
local el=$3
# check the monitor results
kill $mpid
lines=`wc -l $tmpfile | cut "-d " -f1`
test $lines -eq $el
rc=$?
rm -rf $tmpfile
return $rc
}
check_nexthop_fdb_support()
{
$IP nexthop help 2>&1 | grep -q fdb
if [ $? -ne 0 ]; then
echo "SKIP: iproute2 too old, missing fdb nexthop support"
return $ksft_skip
fi
}
check_nexthop_res_support()
{
$IP nexthop help 2>&1 | grep -q resilient
if [ $? -ne 0 ]; then
echo "SKIP: iproute2 too old, missing resilient nexthop group support"
return $ksft_skip
fi
}
ipv6_fdb_grp_fcnal()
{
local rc
echo
echo "IPv6 fdb groups functional"
echo "--------------------------"
check_nexthop_fdb_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
# create group with multiple nexthops
run_cmd "$IP nexthop add id 61 via 2001:db8:91::2 fdb"
run_cmd "$IP nexthop add id 62 via 2001:db8:91::3 fdb"
run_cmd "$IP nexthop add id 102 group 61/62 fdb"
check_nexthop "id 102" "id 102 group 61/62 fdb"
log_test $? 0 "Fdb Nexthop group with multiple nexthops"
## get nexthop group
run_cmd "$IP nexthop get id 102"
check_nexthop "id 102" "id 102 group 61/62 fdb"
log_test $? 0 "Get Fdb nexthop group by id"
# fdb nexthop group can only contain fdb nexthops
run_cmd "$IP nexthop add id 63 via 2001:db8:91::4"
run_cmd "$IP nexthop add id 64 via 2001:db8:91::5"
run_cmd "$IP nexthop add id 103 group 63/64 fdb"
log_test $? 2 "Fdb Nexthop group with non-fdb nexthops"
# Non fdb nexthop group can not contain fdb nexthops
run_cmd "$IP nexthop add id 65 via 2001:db8:91::5 fdb"
run_cmd "$IP nexthop add id 66 via 2001:db8:91::6 fdb"
run_cmd "$IP nexthop add id 104 group 65/66"
log_test $? 2 "Non-Fdb Nexthop group with fdb nexthops"
# fdb nexthop cannot have blackhole
run_cmd "$IP nexthop add id 67 blackhole fdb"
log_test $? 2 "Fdb Nexthop with blackhole"
# fdb nexthop with oif
run_cmd "$IP nexthop add id 68 via 2001:db8:91::7 dev veth1 fdb"
log_test $? 2 "Fdb Nexthop with oif"
# fdb nexthop with onlink
run_cmd "$IP nexthop add id 68 via 2001:db8:91::7 onlink fdb"
log_test $? 2 "Fdb Nexthop with onlink"
# fdb nexthop with encap
run_cmd "$IP nexthop add id 69 encap mpls 101 via 2001:db8:91::8 dev veth1 fdb"
log_test $? 2 "Fdb Nexthop with encap"
run_cmd "$IP link add name vx10 type vxlan id 1010 local 2001:db8:91::9 remote 2001:db8:91::10 dstport 4789 nolearning noudpcsum tos inherit ttl 100"
run_cmd "$BRIDGE fdb add 02:02:00:00:00:13 dev vx10 nhid 102 self"
log_test $? 0 "Fdb mac add with nexthop group"
## fdb nexthops can only reference nexthop groups and not nexthops
run_cmd "$BRIDGE fdb add 02:02:00:00:00:14 dev vx10 nhid 61 self"
log_test $? 255 "Fdb mac add with nexthop"
run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 66"
log_test $? 2 "Route add with fdb nexthop"
run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 103"
log_test $? 2 "Route add with fdb nexthop group"
run_cmd "$IP nexthop del id 61"
run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
log_test $? 0 "Fdb entry after deleting a single nexthop"
run_cmd "$IP nexthop del id 102"
log_test $? 0 "Fdb nexthop delete"
run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
log_test $? 254 "Fdb entry after deleting a nexthop group"
$IP link del dev vx10
}
ipv4_fdb_grp_fcnal()
{
local rc
echo
echo "IPv4 fdb groups functional"
echo "--------------------------"
check_nexthop_fdb_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
# create group with multiple nexthops
run_cmd "$IP nexthop add id 12 via 172.16.1.2 fdb"
run_cmd "$IP nexthop add id 13 via 172.16.1.3 fdb"
run_cmd "$IP nexthop add id 102 group 12/13 fdb"
check_nexthop "id 102" "id 102 group 12/13 fdb"
log_test $? 0 "Fdb Nexthop group with multiple nexthops"
# get nexthop group
run_cmd "$IP nexthop get id 102"
check_nexthop "id 102" "id 102 group 12/13 fdb"
log_test $? 0 "Get Fdb nexthop group by id"
# fdb nexthop group can only contain fdb nexthops
run_cmd "$IP nexthop add id 14 via 172.16.1.2"
run_cmd "$IP nexthop add id 15 via 172.16.1.3"
run_cmd "$IP nexthop add id 103 group 14/15 fdb"
log_test $? 2 "Fdb Nexthop group with non-fdb nexthops"
# Non fdb nexthop group can not contain fdb nexthops
run_cmd "$IP nexthop add id 16 via 172.16.1.2 fdb"
run_cmd "$IP nexthop add id 17 via 172.16.1.3 fdb"
run_cmd "$IP nexthop add id 104 group 14/15"
log_test $? 2 "Non-Fdb Nexthop group with fdb nexthops"
# fdb nexthop cannot have blackhole
run_cmd "$IP nexthop add id 18 blackhole fdb"
log_test $? 2 "Fdb Nexthop with blackhole"
# fdb nexthop with oif
run_cmd "$IP nexthop add id 16 via 172.16.1.2 dev veth1 fdb"
log_test $? 2 "Fdb Nexthop with oif"
# fdb nexthop with onlink
run_cmd "$IP nexthop add id 16 via 172.16.1.2 onlink fdb"
log_test $? 2 "Fdb Nexthop with onlink"
# fdb nexthop with encap
run_cmd "$IP nexthop add id 17 encap mpls 101 via 172.16.1.2 dev veth1 fdb"
log_test $? 2 "Fdb Nexthop with encap"
run_cmd "$IP link add name vx10 type vxlan id 1010 local 10.0.0.1 remote 10.0.0.2 dstport 4789 nolearning noudpcsum tos inherit ttl 100"
run_cmd "$BRIDGE fdb add 02:02:00:00:00:13 dev vx10 nhid 102 self"
log_test $? 0 "Fdb mac add with nexthop group"
# fdb nexthops can only reference nexthop groups and not nexthops
run_cmd "$BRIDGE fdb add 02:02:00:00:00:14 dev vx10 nhid 12 self"
log_test $? 255 "Fdb mac add with nexthop"
run_cmd "$IP ro add 172.16.0.0/22 nhid 15"
log_test $? 2 "Route add with fdb nexthop"
run_cmd "$IP ro add 172.16.0.0/22 nhid 103"
log_test $? 2 "Route add with fdb nexthop group"
run_cmd "$IP nexthop del id 12"
run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
log_test $? 0 "Fdb entry after deleting a single nexthop"
run_cmd "$IP nexthop del id 102"
log_test $? 0 "Fdb nexthop delete"
run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
log_test $? 254 "Fdb entry after deleting a nexthop group"
$IP link del dev vx10
}
################################################################################
# basic operations (add, delete, replace) on nexthops and nexthop groups
#
# IPv6
ipv6_fcnal()
{
local rc
echo
echo "IPv6"
echo "----------------------"
run_cmd "$IP nexthop add id 52 via 2001:db8:91::2 dev veth1"
rc=$?
log_test $rc 0 "Create nexthop with id, gw, dev"
if [ $rc -ne 0 ]; then
echo "Basic IPv6 create fails; can not continue"
return 1
fi
run_cmd "$IP nexthop get id 52"
log_test $? 0 "Get nexthop by id"
check_nexthop "id 52" "id 52 via 2001:db8:91::2 dev veth1 scope link"
run_cmd "$IP nexthop del id 52"
log_test $? 0 "Delete nexthop by id"
check_nexthop "id 52" ""
#
# gw, device spec
#
# gw validation, no device - fails since dev required
run_cmd "$IP nexthop add id 52 via 2001:db8:92::3"
log_test $? 2 "Create nexthop - gw only"
# gw is not reachable throught given dev
run_cmd "$IP nexthop add id 53 via 2001:db8:3::3 dev veth1"
log_test $? 2 "Create nexthop - invalid gw+dev combination"
# onlink arg overrides gw+dev lookup
run_cmd "$IP nexthop add id 53 via 2001:db8:3::3 dev veth1 onlink"
log_test $? 0 "Create nexthop - gw+dev and onlink"
# admin down should delete nexthops
set -e
run_cmd "$IP -6 nexthop add id 55 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop add id 56 via 2001:db8:91::4 dev veth1"
run_cmd "$IP nexthop add id 57 via 2001:db8:91::5 dev veth1"
run_cmd "$IP li set dev veth1 down"
set +e
check_nexthop "dev veth1" ""
log_test $? 0 "Nexthops removed on admin down"
}
ipv6_grp_refs()
{
if [ ! -x "$(command -v mausezahn)" ]; then
echo "SKIP: Could not run test; need mausezahn tool"
return
fi
run_cmd "$IP link set dev veth1 up"
run_cmd "$IP link add veth1.10 link veth1 up type vlan id 10"
run_cmd "$IP link add veth1.20 link veth1 up type vlan id 20"
run_cmd "$IP -6 addr add 2001:db8:91::1/64 dev veth1.10"
run_cmd "$IP -6 addr add 2001:db8:92::1/64 dev veth1.20"
run_cmd "$IP -6 neigh add 2001:db8:91::2 lladdr 00:11:22:33:44:55 dev veth1.10"
run_cmd "$IP -6 neigh add 2001:db8:92::2 lladdr 00:11:22:33:44:55 dev veth1.20"
run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1.10"
run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth1.20"
run_cmd "$IP nexthop add id 102 group 100"
run_cmd "$IP route add 2001:db8:101::1/128 nhid 102"
# create per-cpu dsts through nh 100
run_cmd "ip netns exec me mausezahn -6 veth1.10 -B 2001:db8:101::1 -A 2001:db8:91::1 -c 5 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1"
# remove nh 100 from the group to delete the route potentially leaving
# a stale per-cpu dst which holds a reference to the nexthop's net
# device and to the IPv6 route
run_cmd "$IP nexthop replace id 102 group 101"
run_cmd "$IP route del 2001:db8:101::1/128"
# add both nexthops to the group so a reference is taken on them
run_cmd "$IP nexthop replace id 102 group 100/101"
# if the bug described in commit "net: nexthop: release IPv6 per-cpu
# dsts when replacing a nexthop group" exists at this point we have
# an unlinked IPv6 route (but not freed due to stale dst) with a
# reference over the group so we delete the group which will again
# only unlink it due to the route reference
run_cmd "$IP nexthop del id 102"
# delete the nexthop with stale dst, since we have an unlinked
# group with a ref to it and an unlinked IPv6 route with ref to the
# group, the nh will only be unlinked and not freed so the stale dst
# remains forever and we get a net device refcount imbalance
run_cmd "$IP nexthop del id 100"
# if a reference was lost this command will hang because the net device
# cannot be removed
timeout -s KILL 5 ip netns exec me ip link del veth1.10 >/dev/null 2>&1
# we can't cleanup if the command is hung trying to delete the netdev
if [ $? -eq 137 ]; then
return 1
fi
# cleanup
run_cmd "$IP link del veth1.20"
run_cmd "$IP nexthop flush"
return 0
}
ipv6_grp_fcnal()
{
local rc
echo
echo "IPv6 groups functional"
echo "----------------------"
# basic functionality: create a nexthop group, default weight
run_cmd "$IP nexthop add id 61 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 101 group 61"
log_test $? 0 "Create nexthop group with single nexthop"
# get nexthop group
run_cmd "$IP nexthop get id 101"
log_test $? 0 "Get nexthop group by id"
check_nexthop "id 101" "id 101 group 61"
# delete nexthop group
run_cmd "$IP nexthop del id 101"
log_test $? 0 "Delete nexthop group by id"
check_nexthop "id 101" ""
$IP nexthop flush >/dev/null 2>&1
check_nexthop "id 101" ""
#
# create group with multiple nexthops - mix of gw and dev only
#
run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
run_cmd "$IP nexthop add id 65 dev veth1"
run_cmd "$IP nexthop add id 102 group 62/63/64/65"
log_test $? 0 "Nexthop group with multiple nexthops"
check_nexthop "id 102" "id 102 group 62/63/64/65"
# Delete nexthop in a group and group is updated
run_cmd "$IP nexthop del id 63"
check_nexthop "id 102" "id 102 group 62/64/65"
log_test $? 0 "Nexthop group updated when entry is deleted"
# create group with multiple weighted nexthops
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop add id 103 group 62/63,2/64,3/65,4"
log_test $? 0 "Nexthop group with weighted nexthops"
check_nexthop "id 103" "id 103 group 62/63,2/64,3/65,4"
# Delete nexthop in a weighted group and group is updated
run_cmd "$IP nexthop del id 63"
check_nexthop "id 103" "id 103 group 62/64,3/65,4"
log_test $? 0 "Weighted nexthop group updated when entry is deleted"
# admin down - nexthop is removed from group
run_cmd "$IP li set dev veth1 down"
check_nexthop "dev veth1" ""
log_test $? 0 "Nexthops in groups removed on admin down"
# expect groups to have been deleted as well
check_nexthop "" ""
run_cmd "$IP li set dev veth1 up"
$IP nexthop flush >/dev/null 2>&1
# group with nexthops using different devices
set -e
run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
run_cmd "$IP nexthop add id 65 via 2001:db8:91::5 dev veth1"
run_cmd "$IP nexthop add id 72 via 2001:db8:92::2 dev veth3"
run_cmd "$IP nexthop add id 73 via 2001:db8:92::3 dev veth3"
run_cmd "$IP nexthop add id 74 via 2001:db8:92::4 dev veth3"
run_cmd "$IP nexthop add id 75 via 2001:db8:92::5 dev veth3"
set +e
# multiple groups with same nexthop
run_cmd "$IP nexthop add id 104 group 62"
run_cmd "$IP nexthop add id 105 group 62"
check_nexthop "group" "id 104 group 62 id 105 group 62"
log_test $? 0 "Multiple groups with same nexthop"
run_cmd "$IP nexthop flush groups"
[ $? -ne 0 ] && return 1
# on admin down of veth1, it should be removed from the group
run_cmd "$IP nexthop add id 105 group 62/63/72/73/64"
run_cmd "$IP li set veth1 down"
check_nexthop "id 105" "id 105 group 72/73"
log_test $? 0 "Nexthops in group removed on admin down - mixed group"
run_cmd "$IP nexthop add id 106 group 105/74"
log_test $? 2 "Nexthop group can not have a group as an entry"
# a group can have a blackhole entry only if it is the only
# nexthop in the group. Needed for atomic replace with an
# actual nexthop group
run_cmd "$IP -6 nexthop add id 31 blackhole"
run_cmd "$IP nexthop add id 107 group 31"
log_test $? 0 "Nexthop group with a blackhole entry"
run_cmd "$IP nexthop add id 108 group 31/24"
log_test $? 2 "Nexthop group can not have a blackhole and another nexthop"
ipv6_grp_refs
log_test $? 0 "Nexthop group replace refcounts"
}
ipv6_res_grp_fcnal()
{
local rc
echo
echo "IPv6 resilient groups functional"
echo "--------------------------------"
check_nexthop_res_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
#
# migration of nexthop buckets - equal weights
#
run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop add id 102 group 62/63 type resilient buckets 2 idle_timer 0"
run_cmd "$IP nexthop del id 63"
check_nexthop "id 102" \
"id 102 group 62 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Nexthop group updated when entry is deleted"
check_nexthop_bucket "list id 102" \
"id 102 index 0 nhid 62 id 102 index 1 nhid 62"
log_test $? 0 "Nexthop buckets updated when entry is deleted"
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop replace id 102 group 62/63 type resilient buckets 2 idle_timer 0"
check_nexthop "id 102" \
"id 102 group 62/63 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Nexthop group updated after replace"
check_nexthop_bucket "list id 102" \
"id 102 index 0 nhid 63 id 102 index 1 nhid 62"
log_test $? 0 "Nexthop buckets updated after replace"
$IP nexthop flush >/dev/null 2>&1
#
# migration of nexthop buckets - unequal weights
#
run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop add id 102 group 62,3/63,1 type resilient buckets 4 idle_timer 0"
run_cmd "$IP nexthop del id 63"
check_nexthop "id 102" \
"id 102 group 62,3 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Nexthop group updated when entry is deleted - nECMP"
check_nexthop_bucket "list id 102" \
"id 102 index 0 nhid 62 id 102 index 1 nhid 62 id 102 index 2 nhid 62 id 102 index 3 nhid 62"
log_test $? 0 "Nexthop buckets updated when entry is deleted - nECMP"
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop replace id 102 group 62,3/63,1 type resilient buckets 4 idle_timer 0"
check_nexthop "id 102" \
"id 102 group 62,3/63 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Nexthop group updated after replace - nECMP"
check_nexthop_bucket "list id 102" \
"id 102 index 0 nhid 63 id 102 index 1 nhid 62 id 102 index 2 nhid 62 id 102 index 3 nhid 62"
log_test $? 0 "Nexthop buckets updated after replace - nECMP"
}
ipv6_fcnal_runtime()
{
local rc
echo
echo "IPv6 functional runtime"
echo "-----------------------"
#
# IPv6 - the basics
#
run_cmd "$IP nexthop add id 81 via 2001:db8:91::2 dev veth1"
run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
log_test $? 0 "Route add"
run_cmd "$IP ro delete 2001:db8:101::1/128 nhid 81"
log_test $? 0 "Route delete"
run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 0 "Ping with nexthop"
run_cmd "$IP nexthop add id 82 via 2001:db8:92::2 dev veth3"
run_cmd "$IP nexthop add id 122 group 81/82"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 0 "Ping - multipath"
#
# IPv6 with blackhole nexthops
#
run_cmd "$IP -6 nexthop add id 83 blackhole"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 83"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 2 "Ping - blackhole"
run_cmd "$IP nexthop replace id 83 via 2001:db8:91::2 dev veth1"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 0 "Ping - blackhole replaced with gateway"
run_cmd "$IP -6 nexthop replace id 83 blackhole"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 2 "Ping - gateway replaced by blackhole"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
if [ $? -eq 0 ]; then
run_cmd "$IP nexthop replace id 122 group 83"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 2 "Ping - group with blackhole"
run_cmd "$IP nexthop replace id 122 group 81/82"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 0 "Ping - group blackhole replaced with gateways"
else
log_test 2 0 "Ping - multipath failed"
fi
#
# device only and gw + dev only mix
#
run_cmd "$IP -6 nexthop add id 85 dev veth1"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 85"
log_test $? 0 "IPv6 route with device only nexthop"
check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 85 dev veth1 metric 1024"
run_cmd "$IP nexthop add id 123 group 81/85"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 123"
log_test $? 0 "IPv6 multipath route with nexthop mix - dev only + gw"
check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 123 metric 1024 nexthop via 2001:db8:91::2 dev veth1 weight 1 nexthop dev veth1 weight 1"
#
# IPv6 route with v4 nexthop - not allowed
#
run_cmd "$IP ro delete 2001:db8:101::1/128"
run_cmd "$IP nexthop add id 84 via 172.16.1.1 dev veth1"
run_cmd "$IP ro add 2001:db8:101::1/128 nhid 84"
log_test $? 2 "IPv6 route can not have a v4 gateway"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 81"
run_cmd "$IP nexthop replace id 81 via 172.16.1.1 dev veth1"
log_test $? 2 "Nexthop replace - v6 route, v4 nexthop"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
run_cmd "$IP nexthop replace id 81 via 172.16.1.1 dev veth1"
log_test $? 2 "Nexthop replace of group entry - v6 route, v4 nexthop"
run_cmd "$IP nexthop add id 86 via 2001:db8:92::2 dev veth3"
run_cmd "$IP nexthop add id 87 via 172.16.1.1 dev veth1"
run_cmd "$IP nexthop add id 88 via 172.16.1.1 dev veth1"
run_cmd "$IP nexthop add id 124 group 86/87/88"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
run_cmd "$IP nexthop del id 88"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
run_cmd "$IP nexthop del id 87"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
log_test $? 0 "IPv6 route using a group after removing v4 gateways"
run_cmd "$IP ro delete 2001:db8:101::1/128"
run_cmd "$IP nexthop add id 87 via 172.16.1.1 dev veth1"
run_cmd "$IP nexthop add id 88 via 172.16.1.1 dev veth1"
run_cmd "$IP nexthop replace id 124 group 86/87/88"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
run_cmd "$IP nexthop replace id 88 via 2001:db8:92::2 dev veth3"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
run_cmd "$IP nexthop replace id 87 via 2001:db8:92::2 dev veth3"
run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
log_test $? 0 "IPv6 route using a group after replacing v4 gateways"
$IP nexthop flush >/dev/null 2>&1
#
# weird IPv6 cases
#
run_cmd "$IP nexthop add id 86 via 2001:db8:91::2 dev veth1"
run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
# route can not use prefsrc with nexthops
run_cmd "$IP ro add 2001:db8:101::2/128 nhid 86 from 2001:db8:91::1"
log_test $? 2 "IPv6 route can not use src routing with external nexthop"
# check cleanup path on invalid metric
run_cmd "$IP ro add 2001:db8:101::2/128 nhid 86 congctl lock foo"
log_test $? 2 "IPv6 route with invalid metric"
# rpfilter and default route
$IP nexthop flush >/dev/null 2>&1
run_cmd "ip netns exec me ip6tables -t mangle -I PREROUTING 1 -m rpfilter --invert -j DROP"
run_cmd "$IP nexthop add id 91 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 92 via 2001:db8:92::2 dev veth3"
run_cmd "$IP nexthop add id 93 group 91/92"
run_cmd "$IP -6 ro add default nhid 91"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 0 "Nexthop with default route and rpfilter"
run_cmd "$IP -6 ro replace default nhid 93"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
log_test $? 0 "Nexthop with multipath default route and rpfilter"
# TO-DO:
# existing route with old nexthop; append route with new nexthop
# existing route with old nexthop; replace route with new
# existing route with new nexthop; replace route with old
# route with src address and using nexthop - not allowed
}
ipv6_large_grp()
{
local ecmp=32
echo
echo "IPv6 large groups (x$ecmp)"
echo "---------------------"
check_large_grp 6 $ecmp
$IP nexthop flush >/dev/null 2>&1
}
ipv6_large_res_grp()
{
echo
echo "IPv6 large resilient group (128k buckets)"
echo "-----------------------------------------"
check_nexthop_res_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
check_large_res_grp 6 $((128 * 1024))
$IP nexthop flush >/dev/null 2>&1
}
ipv6_del_add_loop1()
{
while :; do
$IP nexthop del id 100
$IP nexthop add id 100 via 2001:db8:91::2 dev veth1
done >/dev/null 2>&1
}
ipv6_grp_replace_loop()
{
while :; do
$IP nexthop replace id 102 group 100/101
done >/dev/null 2>&1
}
ipv6_torture()
{
local pid1
local pid2
local pid3
local pid4
local pid5
echo
echo "IPv6 runtime torture"
echo "--------------------"
if [ ! -x "$(command -v mausezahn)" ]; then
echo "SKIP: Could not run test; need mausezahn tool"
return
fi
run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth3"
run_cmd "$IP nexthop add id 102 group 100/101"
run_cmd "$IP route add 2001:db8:101::1 nhid 102"
run_cmd "$IP route add 2001:db8:101::2 nhid 102"
ipv6_del_add_loop1 &
pid1=$!
ipv6_grp_replace_loop &
pid2=$!
ip netns exec me ping -f 2001:db8:101::1 >/dev/null 2>&1 &
pid3=$!
ip netns exec me ping -f 2001:db8:101::2 >/dev/null 2>&1 &
pid4=$!
ip netns exec me mausezahn -6 veth1 -B 2001:db8:101::2 -A 2001:db8:91::1 -c 0 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
pid5=$!
sleep 300
kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
# if we did not crash, success
log_test 0 0 "IPv6 torture test"
}
ipv6_res_grp_replace_loop()
{
while :; do
$IP nexthop replace id 102 group 100/101 type resilient
done >/dev/null 2>&1
}
ipv6_res_torture()
{
local pid1
local pid2
local pid3
local pid4
local pid5
echo
echo "IPv6 runtime resilient nexthop group torture"
echo "--------------------------------------------"
check_nexthop_res_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
if [ ! -x "$(command -v mausezahn)" ]; then
echo "SKIP: Could not run test; need mausezahn tool"
return
fi
run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth3"
run_cmd "$IP nexthop add id 102 group 100/101 type resilient buckets 512 idle_timer 0"
run_cmd "$IP route add 2001:db8:101::1 nhid 102"
run_cmd "$IP route add 2001:db8:101::2 nhid 102"
ipv6_del_add_loop1 &
pid1=$!
ipv6_res_grp_replace_loop &
pid2=$!
ip netns exec me ping -f 2001:db8:101::1 >/dev/null 2>&1 &
pid3=$!
ip netns exec me ping -f 2001:db8:101::2 >/dev/null 2>&1 &
pid4=$!
ip netns exec me mausezahn -6 veth1 \
-B 2001:db8:101::2 -A 2001:db8:91::1 -c 0 \
-t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
pid5=$!
sleep 300
kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
# if we did not crash, success
log_test 0 0 "IPv6 resilient nexthop group torture test"
}
ipv4_fcnal()
{
local rc
echo
echo "IPv4 functional"
echo "----------------------"
#
# basic IPv4 ops - add, get, delete
#
run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
rc=$?
log_test $rc 0 "Create nexthop with id, gw, dev"
if [ $rc -ne 0 ]; then
echo "Basic IPv4 create fails; can not continue"
return 1
fi
run_cmd "$IP nexthop get id 12"
log_test $? 0 "Get nexthop by id"
check_nexthop "id 12" "id 12 via 172.16.1.2 dev veth1 scope link"
run_cmd "$IP nexthop del id 12"
log_test $? 0 "Delete nexthop by id"
check_nexthop "id 52" ""
#
# gw, device spec
#
# gw validation, no device - fails since dev is required
run_cmd "$IP nexthop add id 12 via 172.16.2.3"
log_test $? 2 "Create nexthop - gw only"
# gw not reachable through given dev
run_cmd "$IP nexthop add id 13 via 172.16.3.2 dev veth1"
log_test $? 2 "Create nexthop - invalid gw+dev combination"
# onlink flag overrides gw+dev lookup
run_cmd "$IP nexthop add id 13 via 172.16.3.2 dev veth1 onlink"
log_test $? 0 "Create nexthop - gw+dev and onlink"
# admin down should delete nexthops
set -e
run_cmd "$IP nexthop add id 15 via 172.16.1.3 dev veth1"
run_cmd "$IP nexthop add id 16 via 172.16.1.4 dev veth1"
run_cmd "$IP nexthop add id 17 via 172.16.1.5 dev veth1"
run_cmd "$IP li set dev veth1 down"
set +e
check_nexthop "dev veth1" ""
log_test $? 0 "Nexthops removed on admin down"
# nexthop route delete warning: route add with nhid and delete
# using device
run_cmd "$IP li set dev veth1 up"
run_cmd "$IP nexthop add id 12 via 172.16.1.3 dev veth1"
out1=`dmesg | grep "WARNING:.*fib_nh_match.*" | wc -l`
run_cmd "$IP route add 172.16.101.1/32 nhid 12"
run_cmd "$IP route delete 172.16.101.1/32 dev veth1"
out2=`dmesg | grep "WARNING:.*fib_nh_match.*" | wc -l`
[ $out1 -eq $out2 ]
rc=$?
log_test $rc 0 "Delete nexthop route warning"
run_cmd "$IP route delete 172.16.101.1/32 nhid 12"
run_cmd "$IP nexthop del id 12"
run_cmd "$IP nexthop add id 21 via 172.16.1.6 dev veth1"
run_cmd "$IP ro add 172.16.101.0/24 nhid 21"
run_cmd "$IP ro del 172.16.101.0/24 nexthop via 172.16.1.7 dev veth1 nexthop via 172.16.1.8 dev veth1"
log_test $? 2 "Delete multipath route with only nh id based entry"
run_cmd "$IP nexthop add id 22 via 172.16.1.6 dev veth1"
run_cmd "$IP ro add 172.16.102.0/24 nhid 22"
run_cmd "$IP ro del 172.16.102.0/24 dev veth1"
log_test $? 2 "Delete route when specifying only nexthop device"
run_cmd "$IP ro del 172.16.102.0/24 via 172.16.1.6"
log_test $? 2 "Delete route when specifying only gateway"
run_cmd "$IP ro del 172.16.102.0/24"
log_test $? 0 "Delete route when not specifying nexthop attributes"
}
ipv4_grp_fcnal()
{
local rc
echo
echo "IPv4 groups functional"
echo "----------------------"
# basic functionality: create a nexthop group, default weight
run_cmd "$IP nexthop add id 11 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 101 group 11"
log_test $? 0 "Create nexthop group with single nexthop"
# get nexthop group
run_cmd "$IP nexthop get id 101"
log_test $? 0 "Get nexthop group by id"
check_nexthop "id 101" "id 101 group 11"
# delete nexthop group
run_cmd "$IP nexthop del id 101"
log_test $? 0 "Delete nexthop group by id"
check_nexthop "id 101" ""
$IP nexthop flush >/dev/null 2>&1
#
# create group with multiple nexthops
run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
run_cmd "$IP nexthop add id 14 via 172.16.1.4 dev veth1"
run_cmd "$IP nexthop add id 15 via 172.16.1.5 dev veth1"
run_cmd "$IP nexthop add id 102 group 12/13/14/15"
log_test $? 0 "Nexthop group with multiple nexthops"
check_nexthop "id 102" "id 102 group 12/13/14/15"
# Delete nexthop in a group and group is updated
run_cmd "$IP nexthop del id 13"
check_nexthop "id 102" "id 102 group 12/14/15"
log_test $? 0 "Nexthop group updated when entry is deleted"
# create group with multiple weighted nexthops
run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
run_cmd "$IP nexthop add id 103 group 12/13,2/14,3/15,4"
log_test $? 0 "Nexthop group with weighted nexthops"
check_nexthop "id 103" "id 103 group 12/13,2/14,3/15,4"
# Delete nexthop in a weighted group and group is updated
run_cmd "$IP nexthop del id 13"
check_nexthop "id 103" "id 103 group 12/14,3/15,4"
log_test $? 0 "Weighted nexthop group updated when entry is deleted"
# admin down - nexthop is removed from group
run_cmd "$IP li set dev veth1 down"
check_nexthop "dev veth1" ""
log_test $? 0 "Nexthops in groups removed on admin down"
# expect groups to have been deleted as well
check_nexthop "" ""
run_cmd "$IP li set dev veth1 up"
$IP nexthop flush >/dev/null 2>&1
# group with nexthops using different devices
set -e
run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
run_cmd "$IP nexthop add id 14 via 172.16.1.4 dev veth1"
run_cmd "$IP nexthop add id 15 via 172.16.1.5 dev veth1"
run_cmd "$IP nexthop add id 22 via 172.16.2.2 dev veth3"
run_cmd "$IP nexthop add id 23 via 172.16.2.3 dev veth3"
run_cmd "$IP nexthop add id 24 via 172.16.2.4 dev veth3"
run_cmd "$IP nexthop add id 25 via 172.16.2.5 dev veth3"
set +e
# multiple groups with same nexthop
run_cmd "$IP nexthop add id 104 group 12"
run_cmd "$IP nexthop add id 105 group 12"
check_nexthop "group" "id 104 group 12 id 105 group 12"
log_test $? 0 "Multiple groups with same nexthop"
run_cmd "$IP nexthop flush groups"
[ $? -ne 0 ] && return 1
# on admin down of veth1, it should be removed from the group
run_cmd "$IP nexthop add id 105 group 12/13/22/23/14"
run_cmd "$IP li set veth1 down"
check_nexthop "id 105" "id 105 group 22/23"
log_test $? 0 "Nexthops in group removed on admin down - mixed group"
run_cmd "$IP nexthop add id 106 group 105/24"
log_test $? 2 "Nexthop group can not have a group as an entry"
# a group can have a blackhole entry only if it is the only
# nexthop in the group. Needed for atomic replace with an
# actual nexthop group
run_cmd "$IP nexthop add id 31 blackhole"
run_cmd "$IP nexthop add id 107 group 31"
log_test $? 0 "Nexthop group with a blackhole entry"
run_cmd "$IP nexthop add id 108 group 31/24"
log_test $? 2 "Nexthop group can not have a blackhole and another nexthop"
}
ipv4_res_grp_fcnal()
{
local rc
echo
echo "IPv4 resilient groups functional"
echo "--------------------------------"
check_nexthop_res_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
#
# migration of nexthop buckets - equal weights
#
run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
run_cmd "$IP nexthop add id 102 group 12/13 type resilient buckets 2 idle_timer 0"
run_cmd "$IP nexthop del id 13"
check_nexthop "id 102" \
"id 102 group 12 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Nexthop group updated when entry is deleted"
check_nexthop_bucket "list id 102" \
"id 102 index 0 nhid 12 id 102 index 1 nhid 12"
log_test $? 0 "Nexthop buckets updated when entry is deleted"
run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
run_cmd "$IP nexthop replace id 102 group 12/13 type resilient buckets 2 idle_timer 0"
check_nexthop "id 102" \
"id 102 group 12/13 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Nexthop group updated after replace"
check_nexthop_bucket "list id 102" \
"id 102 index 0 nhid 13 id 102 index 1 nhid 12"
log_test $? 0 "Nexthop buckets updated after replace"
$IP nexthop flush >/dev/null 2>&1
#
# migration of nexthop buckets - unequal weights
#
run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
run_cmd "$IP nexthop add id 102 group 12,3/13,1 type resilient buckets 4 idle_timer 0"
run_cmd "$IP nexthop del id 13"
check_nexthop "id 102" \
"id 102 group 12,3 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Nexthop group updated when entry is deleted - nECMP"
check_nexthop_bucket "list id 102" \
"id 102 index 0 nhid 12 id 102 index 1 nhid 12 id 102 index 2 nhid 12 id 102 index 3 nhid 12"
log_test $? 0 "Nexthop buckets updated when entry is deleted - nECMP"
run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
run_cmd "$IP nexthop replace id 102 group 12,3/13,1 type resilient buckets 4 idle_timer 0"
check_nexthop "id 102" \
"id 102 group 12,3/13 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Nexthop group updated after replace - nECMP"
check_nexthop_bucket "list id 102" \
"id 102 index 0 nhid 13 id 102 index 1 nhid 12 id 102 index 2 nhid 12 id 102 index 3 nhid 12"
log_test $? 0 "Nexthop buckets updated after replace - nECMP"
}
ipv4_withv6_fcnal()
{
local lladdr
set -e
lladdr=$(get_linklocal veth2 peer)
run_cmd "$IP nexthop add id 11 via ${lladdr} dev veth1"
set +e
run_cmd "$IP ro add 172.16.101.1/32 nhid 11"
log_test $? 0 "IPv6 nexthop with IPv4 route"
check_route "172.16.101.1" "172.16.101.1 nhid 11 via inet6 ${lladdr} dev veth1"
set -e
run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 101 group 11/12"
set +e
run_cmd "$IP ro replace 172.16.101.1/32 nhid 101"
log_test $? 0 "IPv6 nexthop with IPv4 route"
check_route "172.16.101.1" "172.16.101.1 nhid 101 nexthop via inet6 ${lladdr} dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
run_cmd "$IP ro replace 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
log_test $? 0 "IPv4 route with IPv6 gateway"
check_route "172.16.101.1" "172.16.101.1 via inet6 ${lladdr} dev veth1"
run_cmd "$IP ro replace 172.16.101.1/32 via inet6 2001:db8:50::1 dev veth1"
log_test $? 2 "IPv4 route with invalid IPv6 gateway"
}
ipv4_fcnal_runtime()
{
local lladdr
local rc
echo
echo "IPv4 functional runtime"
echo "-----------------------"
run_cmd "$IP nexthop add id 21 via 172.16.1.2 dev veth1"
run_cmd "$IP ro add 172.16.101.1/32 nhid 21"
log_test $? 0 "Route add"
check_route "172.16.101.1" "172.16.101.1 nhid 21 via 172.16.1.2 dev veth1"
run_cmd "$IP ro delete 172.16.101.1/32 nhid 21"
log_test $? 0 "Route delete"
#
# scope mismatch
#
run_cmd "$IP nexthop add id 22 via 172.16.1.2 dev veth1"
run_cmd "$IP ro add 172.16.101.1/32 nhid 22 scope host"
log_test $? 2 "Route add - scope conflict with nexthop"
run_cmd "$IP nexthop replace id 22 dev veth3"
run_cmd "$IP ro add 172.16.101.1/32 nhid 22 scope host"
run_cmd "$IP nexthop replace id 22 via 172.16.2.2 dev veth3"
log_test $? 2 "Nexthop replace with invalid scope for existing route"
# check cleanup path on invalid metric
run_cmd "$IP ro add 172.16.101.2/32 nhid 22 congctl lock foo"
log_test $? 2 "IPv4 route with invalid metric"
#
# add route with nexthop and check traffic
#
run_cmd "$IP nexthop replace id 21 via 172.16.1.2 dev veth1"
run_cmd "$IP ro replace 172.16.101.1/32 nhid 21"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "Basic ping"
run_cmd "$IP nexthop replace id 22 via 172.16.2.2 dev veth3"
run_cmd "$IP nexthop add id 122 group 21/22"
run_cmd "$IP ro replace 172.16.101.1/32 nhid 122"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "Ping - multipath"
run_cmd "$IP ro delete 172.16.101.1/32 nhid 122"
#
# multiple default routes
# - tests fib_select_default
run_cmd "$IP nexthop add id 501 via 172.16.1.2 dev veth1"
run_cmd "$IP ro add default nhid 501"
run_cmd "$IP ro add default via 172.16.1.3 dev veth1 metric 20"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "Ping - multiple default routes, nh first"
# flip the order
run_cmd "$IP ro del default nhid 501"
run_cmd "$IP ro del default via 172.16.1.3 dev veth1 metric 20"
run_cmd "$IP ro add default via 172.16.1.2 dev veth1 metric 20"
run_cmd "$IP nexthop replace id 501 via 172.16.1.3 dev veth1"
run_cmd "$IP ro add default nhid 501 metric 20"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "Ping - multiple default routes, nh second"
run_cmd "$IP nexthop delete nhid 501"
run_cmd "$IP ro del default"
#
# IPv4 with blackhole nexthops
#
run_cmd "$IP nexthop add id 23 blackhole"
run_cmd "$IP ro replace 172.16.101.1/32 nhid 23"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 2 "Ping - blackhole"
run_cmd "$IP nexthop replace id 23 via 172.16.1.2 dev veth1"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "Ping - blackhole replaced with gateway"
run_cmd "$IP nexthop replace id 23 blackhole"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 2 "Ping - gateway replaced by blackhole"
run_cmd "$IP ro replace 172.16.101.1/32 nhid 122"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
if [ $? -eq 0 ]; then
run_cmd "$IP nexthop replace id 122 group 23"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 2 "Ping - group with blackhole"
run_cmd "$IP nexthop replace id 122 group 21/22"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "Ping - group blackhole replaced with gateways"
else
log_test 2 0 "Ping - multipath failed"
fi
#
# device only and gw + dev only mix
#
run_cmd "$IP nexthop add id 85 dev veth1"
run_cmd "$IP ro replace 172.16.101.1/32 nhid 85"
log_test $? 0 "IPv4 route with device only nexthop"
check_route "172.16.101.1" "172.16.101.1 nhid 85 dev veth1"
run_cmd "$IP nexthop add id 123 group 21/85"
run_cmd "$IP ro replace 172.16.101.1/32 nhid 123"
log_test $? 0 "IPv4 multipath route with nexthop mix - dev only + gw"
check_route "172.16.101.1" "172.16.101.1 nhid 123 nexthop via 172.16.1.2 dev veth1 weight 1 nexthop dev veth1 weight 1"
#
# IPv4 with IPv6
#
set -e
lladdr=$(get_linklocal veth2 peer)
run_cmd "$IP nexthop add id 24 via ${lladdr} dev veth1"
set +e
run_cmd "$IP ro replace 172.16.101.1/32 nhid 24"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "IPv6 nexthop with IPv4 route"
$IP neigh sh | grep -q "${lladdr} dev veth1"
if [ $? -eq 1 ]; then
echo " WARNING: Neigh entry missing for ${lladdr}"
$IP neigh sh | grep 'dev veth1'
fi
$IP neigh sh | grep -q "172.16.101.1 dev eth1"
if [ $? -eq 0 ]; then
echo " WARNING: Neigh entry exists for 172.16.101.1"
$IP neigh sh | grep 'dev veth1'
fi
set -e
run_cmd "$IP nexthop add id 25 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 101 group 24/25"
set +e
run_cmd "$IP ro replace 172.16.101.1/32 nhid 101"
log_test $? 0 "IPv4 route with mixed v4-v6 multipath route"
check_route "172.16.101.1" "172.16.101.1 nhid 101 nexthop via inet6 ${lladdr} dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "IPv6 nexthop with IPv4 route"
run_cmd "$IP ro replace 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "IPv4 route with IPv6 gateway"
$IP neigh sh | grep -q "${lladdr} dev veth1"
if [ $? -eq 1 ]; then
echo " WARNING: Neigh entry missing for ${lladdr}"
$IP neigh sh | grep 'dev veth1'
fi
$IP neigh sh | grep -q "172.16.101.1 dev eth1"
if [ $? -eq 0 ]; then
echo " WARNING: Neigh entry exists for 172.16.101.1"
$IP neigh sh | grep 'dev veth1'
fi
run_cmd "$IP ro del 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
run_cmd "$IP -4 ro add default via inet6 ${lladdr} dev veth1"
run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
log_test $? 0 "IPv4 default route with IPv6 gateway"
#
# MPLS as an example of LWT encap
#
run_cmd "$IP nexthop add id 51 encap mpls 101 via 172.16.1.2 dev veth1"
log_test $? 0 "IPv4 route with MPLS encap"
check_nexthop "id 51" "id 51 encap mpls 101 via 172.16.1.2 dev veth1 scope link"
log_test $? 0 "IPv4 route with MPLS encap - check"
run_cmd "$IP nexthop add id 52 encap mpls 102 via inet6 2001:db8:91::2 dev veth1"
log_test $? 0 "IPv4 route with MPLS encap and v6 gateway"
check_nexthop "id 52" "id 52 encap mpls 102 via 2001:db8:91::2 dev veth1 scope link"
log_test $? 0 "IPv4 route with MPLS encap, v6 gw - check"
}
ipv4_large_grp()
{
local ecmp=32
echo
echo "IPv4 large groups (x$ecmp)"
echo "---------------------"
check_large_grp 4 $ecmp
$IP nexthop flush >/dev/null 2>&1
}
ipv4_large_res_grp()
{
echo
echo "IPv4 large resilient group (128k buckets)"
echo "-----------------------------------------"
check_nexthop_res_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
check_large_res_grp 4 $((128 * 1024))
$IP nexthop flush >/dev/null 2>&1
}
sysctl_nexthop_compat_mode_check()
{
local sysctlname="net.ipv4.nexthop_compat_mode"
local lprefix=$1
IPE="ip netns exec me"
$IPE sysctl -q $sysctlname 2>&1 >/dev/null
if [ $? -ne 0 ]; then
echo "SKIP: kernel lacks nexthop compat mode sysctl control"
return $ksft_skip
fi
out=$($IPE sysctl $sysctlname 2>/dev/null)
log_test $? 0 "$lprefix default nexthop compat mode check"
check_output "${out}" "$sysctlname = 1"
}
sysctl_nexthop_compat_mode_set()
{
local sysctlname="net.ipv4.nexthop_compat_mode"
local mode=$1
local lprefix=$2
IPE="ip netns exec me"
out=$($IPE sysctl -w $sysctlname=$mode)
log_test $? 0 "$lprefix set compat mode - $mode"
check_output "${out}" "net.ipv4.nexthop_compat_mode = $mode"
}
ipv6_compat_mode()
{
local rc
echo
echo "IPv6 nexthop api compat mode test"
echo "--------------------------------"
sysctl_nexthop_compat_mode_check "IPv6"
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop add id 122 group 62/63"
ipmout=$(start_ip_monitor route)
run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 122"
# route add notification should contain expanded nexthops
stop_ip_monitor $ipmout 3
log_test $? 0 "IPv6 compat mode on - route add notification"
# route dump should contain expanded nexthops
check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 122 metric 1024 nexthop via 2001:db8:91::2 dev veth1 weight 1 nexthop via 2001:db8:91::3 dev veth1 weight 1"
log_test $? 0 "IPv6 compat mode on - route dump"
# change in nexthop group should generate route notification
run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
ipmout=$(start_ip_monitor route)
run_cmd "$IP nexthop replace id 122 group 62/64"
stop_ip_monitor $ipmout 3
log_test $? 0 "IPv6 compat mode on - nexthop change"
# set compat mode off
sysctl_nexthop_compat_mode_set 0 "IPv6"
run_cmd "$IP -6 ro del 2001:db8:101::1/128 nhid 122"
run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
run_cmd "$IP nexthop add id 122 group 62/63"
ipmout=$(start_ip_monitor route)
run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 122"
# route add notification should not contain expanded nexthops
stop_ip_monitor $ipmout 1
log_test $? 0 "IPv6 compat mode off - route add notification"
# route dump should not contain expanded nexthops
check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 122 metric 1024"
log_test $? 0 "IPv6 compat mode off - route dump"
# change in nexthop group should not generate route notification
run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
ipmout=$(start_ip_monitor route)
run_cmd "$IP nexthop replace id 122 group 62/64"
stop_ip_monitor $ipmout 0
log_test $? 0 "IPv6 compat mode off - nexthop change"
# nexthop delete should not generate route notification
ipmout=$(start_ip_monitor route)
run_cmd "$IP nexthop del id 122"
stop_ip_monitor $ipmout 0
log_test $? 0 "IPv6 compat mode off - nexthop delete"
# set compat mode back on
sysctl_nexthop_compat_mode_set 1 "IPv6"
}
ipv4_compat_mode()
{
local rc
echo
echo "IPv4 nexthop api compat mode"
echo "----------------------------"
sysctl_nexthop_compat_mode_check "IPv4"
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
run_cmd "$IP nexthop add id 21 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 22 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 122 group 21/22"
ipmout=$(start_ip_monitor route)
run_cmd "$IP ro add 172.16.101.1/32 nhid 122"
stop_ip_monitor $ipmout 3
# route add notification should contain expanded nexthops
log_test $? 0 "IPv4 compat mode on - route add notification"
# route dump should contain expanded nexthops
check_route "172.16.101.1" "172.16.101.1 nhid 122 nexthop via 172.16.1.2 dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
log_test $? 0 "IPv4 compat mode on - route dump"
# change in nexthop group should generate route notification
run_cmd "$IP nexthop add id 23 via 172.16.1.3 dev veth1"
ipmout=$(start_ip_monitor route)
run_cmd "$IP nexthop replace id 122 group 21/23"
stop_ip_monitor $ipmout 3
log_test $? 0 "IPv4 compat mode on - nexthop change"
sysctl_nexthop_compat_mode_set 0 "IPv4"
# cleanup
run_cmd "$IP ro del 172.16.101.1/32 nhid 122"
ipmout=$(start_ip_monitor route)
run_cmd "$IP ro add 172.16.101.1/32 nhid 122"
stop_ip_monitor $ipmout 1
# route add notification should not contain expanded nexthops
log_test $? 0 "IPv4 compat mode off - route add notification"
# route dump should not contain expanded nexthops
check_route "172.16.101.1" "172.16.101.1 nhid 122"
log_test $? 0 "IPv4 compat mode off - route dump"
# change in nexthop group should not generate route notification
ipmout=$(start_ip_monitor route)
run_cmd "$IP nexthop replace id 122 group 21/22"
stop_ip_monitor $ipmout 0
log_test $? 0 "IPv4 compat mode off - nexthop change"
# nexthop delete should not generate route notification
ipmout=$(start_ip_monitor route)
run_cmd "$IP nexthop del id 122"
stop_ip_monitor $ipmout 0
log_test $? 0 "IPv4 compat mode off - nexthop delete"
sysctl_nexthop_compat_mode_set 1 "IPv4"
}
ipv4_del_add_loop1()
{
while :; do
$IP nexthop del id 100
$IP nexthop add id 100 via 172.16.1.2 dev veth1
done >/dev/null 2>&1
}
ipv4_grp_replace_loop()
{
while :; do
$IP nexthop replace id 102 group 100/101
done >/dev/null 2>&1
}
ipv4_torture()
{
local pid1
local pid2
local pid3
local pid4
local pid5
echo
echo "IPv4 runtime torture"
echo "--------------------"
if [ ! -x "$(command -v mausezahn)" ]; then
echo "SKIP: Could not run test; need mausezahn tool"
return
fi
run_cmd "$IP nexthop add id 100 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 101 via 172.16.2.2 dev veth3"
run_cmd "$IP nexthop add id 102 group 100/101"
run_cmd "$IP route add 172.16.101.1 nhid 102"
run_cmd "$IP route add 172.16.101.2 nhid 102"
ipv4_del_add_loop1 &
pid1=$!
ipv4_grp_replace_loop &
pid2=$!
ip netns exec me ping -f 172.16.101.1 >/dev/null 2>&1 &
pid3=$!
ip netns exec me ping -f 172.16.101.2 >/dev/null 2>&1 &
pid4=$!
ip netns exec me mausezahn veth1 -B 172.16.101.2 -A 172.16.1.1 -c 0 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
pid5=$!
sleep 300
kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
# if we did not crash, success
log_test 0 0 "IPv4 torture test"
}
ipv4_res_grp_replace_loop()
{
while :; do
$IP nexthop replace id 102 group 100/101 type resilient
done >/dev/null 2>&1
}
ipv4_res_torture()
{
local pid1
local pid2
local pid3
local pid4
local pid5
echo
echo "IPv4 runtime resilient nexthop group torture"
echo "--------------------------------------------"
check_nexthop_res_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
if [ ! -x "$(command -v mausezahn)" ]; then
echo "SKIP: Could not run test; need mausezahn tool"
return
fi
run_cmd "$IP nexthop add id 100 via 172.16.1.2 dev veth1"
run_cmd "$IP nexthop add id 101 via 172.16.2.2 dev veth3"
run_cmd "$IP nexthop add id 102 group 100/101 type resilient buckets 512 idle_timer 0"
run_cmd "$IP route add 172.16.101.1 nhid 102"
run_cmd "$IP route add 172.16.101.2 nhid 102"
ipv4_del_add_loop1 &
pid1=$!
ipv4_res_grp_replace_loop &
pid2=$!
ip netns exec me ping -f 172.16.101.1 >/dev/null 2>&1 &
pid3=$!
ip netns exec me ping -f 172.16.101.2 >/dev/null 2>&1 &
pid4=$!
ip netns exec me mausezahn veth1 \
-B 172.16.101.2 -A 172.16.1.1 -c 0 \
-t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
pid5=$!
sleep 300
kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
# if we did not crash, success
log_test 0 0 "IPv4 resilient nexthop group torture test"
}
basic()
{
echo
echo "Basic functional tests"
echo "----------------------"
run_cmd "$IP nexthop ls"
log_test $? 0 "List with nothing defined"
run_cmd "$IP nexthop get id 1"
log_test $? 2 "Nexthop get on non-existent id"
# attempt to create nh without a device or gw - fails
run_cmd "$IP nexthop add id 1"
log_test $? 2 "Nexthop with no device or gateway"
# attempt to create nh with down device - fails
$IP li set veth1 down
run_cmd "$IP nexthop add id 1 dev veth1"
log_test $? 2 "Nexthop with down device"
# create nh with linkdown device - fails
$IP li set veth1 up
ip -netns peer li set veth2 down
run_cmd "$IP nexthop add id 1 dev veth1"
log_test $? 2 "Nexthop with device that is linkdown"
ip -netns peer li set veth2 up
# device only
run_cmd "$IP nexthop add id 1 dev veth1"
log_test $? 0 "Nexthop with device only"
# create nh with duplicate id
run_cmd "$IP nexthop add id 1 dev veth3"
log_test $? 2 "Nexthop with duplicate id"
# blackhole nexthop
run_cmd "$IP nexthop add id 2 blackhole"
log_test $? 0 "Blackhole nexthop"
# blackhole nexthop can not have other specs
run_cmd "$IP nexthop replace id 2 blackhole dev veth1"
log_test $? 2 "Blackhole nexthop with other attributes"
# blackhole nexthop should not be affected by the state of the loopback
# device
run_cmd "$IP link set dev lo down"
check_nexthop "id 2" "id 2 blackhole"
log_test $? 0 "Blackhole nexthop with loopback device down"
run_cmd "$IP link set dev lo up"
# Dump should not loop endlessly when maximum nexthop ID is configured.
run_cmd "$IP nexthop add id $((2**32-1)) blackhole"
run_cmd "timeout 5 $IP nexthop"
log_test $? 0 "Maximum nexthop ID dump"
#
# groups
#
run_cmd "$IP nexthop add id 101 group 1"
log_test $? 0 "Create group"
run_cmd "$IP nexthop add id 102 group 2"
log_test $? 0 "Create group with blackhole nexthop"
# multipath group can not have a blackhole as 1 path
run_cmd "$IP nexthop add id 103 group 1/2"
log_test $? 2 "Create multipath group where 1 path is a blackhole"
# multipath group can not have a member replaced by a blackhole
run_cmd "$IP nexthop replace id 2 dev veth3"
run_cmd "$IP nexthop replace id 102 group 1/2"
run_cmd "$IP nexthop replace id 2 blackhole"
log_test $? 2 "Multipath group can not have a member replaced by blackhole"
# attempt to create group with non-existent nexthop
run_cmd "$IP nexthop add id 103 group 12"
log_test $? 2 "Create group with non-existent nexthop"
# attempt to create group with same nexthop
run_cmd "$IP nexthop add id 103 group 1/1"
log_test $? 2 "Create group with same nexthop multiple times"
# replace nexthop with a group - fails
run_cmd "$IP nexthop replace id 2 group 1"
log_test $? 2 "Replace nexthop with nexthop group"
# replace nexthop group with a nexthop - fails
run_cmd "$IP nexthop replace id 101 dev veth1"
log_test $? 2 "Replace nexthop group with nexthop"
# nexthop group with other attributes fail
run_cmd "$IP nexthop add id 104 group 1 dev veth1"
log_test $? 2 "Nexthop group and device"
# Tests to ensure that flushing works as expected.
run_cmd "$IP nexthop add id 105 blackhole proto 99"
run_cmd "$IP nexthop add id 106 blackhole proto 100"
run_cmd "$IP nexthop add id 107 blackhole proto 99"
run_cmd "$IP nexthop flush proto 99"
check_nexthop "id 105" ""
check_nexthop "id 106" "id 106 blackhole proto 100"
check_nexthop "id 107" ""
run_cmd "$IP nexthop flush proto 100"
check_nexthop "id 106" ""
run_cmd "$IP nexthop flush proto 100"
log_test $? 0 "Test proto flush"
run_cmd "$IP nexthop add id 104 group 1 blackhole"
log_test $? 2 "Nexthop group and blackhole"
$IP nexthop flush >/dev/null 2>&1
# Test to ensure that flushing with a multi-part nexthop dump works as
# expected.
local batch_file=$(mktemp)
for i in $(seq 1 $((64 * 1024))); do
echo "nexthop add id $i blackhole" >> $batch_file
done
$IP -b $batch_file
$IP nexthop flush >/dev/null 2>&1
[[ $($IP nexthop | wc -l) -eq 0 ]]
log_test $? 0 "Large scale nexthop flushing"
rm $batch_file
}
check_nexthop_buckets_balance()
{
local nharg=$1; shift
local ret
while (($# > 0)); do
local selector=$1; shift
local condition=$1; shift
local count
count=$($IP -j nexthop bucket ${nharg} ${selector} | jq length)
(( $count $condition ))
ret=$?
if ((ret != 0)); then
return $ret
fi
done
return 0
}
basic_res()
{
echo
echo "Basic resilient nexthop group functional tests"
echo "----------------------------------------------"
check_nexthop_res_support
if [ $? -eq $ksft_skip ]; then
return $ksft_skip
fi
run_cmd "$IP nexthop add id 1 dev veth1"
#
# resilient nexthop group addition
#
run_cmd "$IP nexthop add id 101 group 1 type resilient buckets 8"
log_test $? 0 "Add a nexthop group with default parameters"
run_cmd "$IP nexthop get id 101"
check_nexthop "id 101" \
"id 101 group 1 type resilient buckets 8 idle_timer 120 unbalanced_timer 0 unbalanced_time 0"
log_test $? 0 "Get a nexthop group with default parameters"
run_cmd "$IP nexthop add id 102 group 1 type resilient
buckets 4 idle_timer 100 unbalanced_timer 5"
run_cmd "$IP nexthop get id 102"
check_nexthop "id 102" \
"id 102 group 1 type resilient buckets 4 idle_timer 100 unbalanced_timer 5 unbalanced_time 0"
log_test $? 0 "Get a nexthop group with non-default parameters"
run_cmd "$IP nexthop add id 103 group 1 type resilient buckets 0"
log_test $? 2 "Add a nexthop group with 0 buckets"
#
# resilient nexthop group replacement
#
run_cmd "$IP nexthop replace id 101 group 1 type resilient
buckets 8 idle_timer 240 unbalanced_timer 80"
log_test $? 0 "Replace nexthop group parameters"
check_nexthop "id 101" \
"id 101 group 1 type resilient buckets 8 idle_timer 240 unbalanced_timer 80 unbalanced_time 0"
log_test $? 0 "Get a nexthop group after replacing parameters"
run_cmd "$IP nexthop replace id 101 group 1 type resilient idle_timer 512"
log_test $? 0 "Replace idle timer"
check_nexthop "id 101" \
"id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 80 unbalanced_time 0"
log_test $? 0 "Get a nexthop group after replacing idle timer"
run_cmd "$IP nexthop replace id 101 group 1 type resilient unbalanced_timer 256"
log_test $? 0 "Replace unbalanced timer"
check_nexthop "id 101" \
"id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
log_test $? 0 "Get a nexthop group after replacing unbalanced timer"
run_cmd "$IP nexthop replace id 101 group 1 type resilient"
log_test $? 0 "Replace with no parameters"
check_nexthop "id 101" \
"id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
log_test $? 0 "Get a nexthop group after replacing no parameters"
run_cmd "$IP nexthop replace id 101 group 1"
log_test $? 2 "Replace nexthop group type - implicit"
run_cmd "$IP nexthop replace id 101 group 1 type mpath"
log_test $? 2 "Replace nexthop group type - explicit"
run_cmd "$IP nexthop replace id 101 group 1 type resilient buckets 1024"
log_test $? 2 "Replace number of nexthop buckets"
check_nexthop "id 101" \
"id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
log_test $? 0 "Get a nexthop group after replacing with invalid parameters"
#
# resilient nexthop buckets dump
#
$IP nexthop flush >/dev/null 2>&1
run_cmd "$IP nexthop add id 1 dev veth1"
run_cmd "$IP nexthop add id 2 dev veth3"
run_cmd "$IP nexthop add id 101 group 1/2 type resilient buckets 4"
run_cmd "$IP nexthop add id 201 group 1/2"
check_nexthop_bucket "" \
"id 101 index 0 nhid 2 id 101 index 1 nhid 2 id 101 index 2 nhid 1 id 101 index 3 nhid 1"
log_test $? 0 "Dump all nexthop buckets"
check_nexthop_bucket "list id 101" \
"id 101 index 0 nhid 2 id 101 index 1 nhid 2 id 101 index 2 nhid 1 id 101 index 3 nhid 1"
log_test $? 0 "Dump all nexthop buckets in a group"
sleep 0.1
(( $($IP -j nexthop bucket list id 101 |
jq '[.[] | select(.bucket.idle_time > 0 and
.bucket.idle_time < 2)] | length') == 4 ))
log_test $? 0 "All nexthop buckets report a positive near-zero idle time"
check_nexthop_bucket "list dev veth1" \
"id 101 index 2 nhid 1 id 101 index 3 nhid 1"
log_test $? 0 "Dump all nexthop buckets with a specific nexthop device"
check_nexthop_bucket "list nhid 2" \
"id 101 index 0 nhid 2 id 101 index 1 nhid 2"
log_test $? 0 "Dump all nexthop buckets with a specific nexthop identifier"
run_cmd "$IP nexthop bucket list id 111"
log_test $? 2 "Dump all nexthop buckets in a non-existent group"
run_cmd "$IP nexthop bucket list id 201"
log_test $? 2 "Dump all nexthop buckets in a non-resilient group"
run_cmd "$IP nexthop bucket list dev bla"
log_test $? 255 "Dump all nexthop buckets using a non-existent device"
run_cmd "$IP nexthop bucket list groups"
log_test $? 255 "Dump all nexthop buckets with invalid 'groups' keyword"
run_cmd "$IP nexthop bucket list fdb"
log_test $? 255 "Dump all nexthop buckets with invalid 'fdb' keyword"
# Dump should not loop endlessly when maximum nexthop ID is configured.
run_cmd "$IP nexthop add id $((2**32-1)) group 1/2 type resilient buckets 4"
run_cmd "timeout 5 $IP nexthop bucket"
log_test $? 0 "Maximum nexthop ID dump"
#
# resilient nexthop buckets get requests
#
check_nexthop_bucket "get id 101 index 0" "id 101 index 0 nhid 2"
log_test $? 0 "Get a valid nexthop bucket"
run_cmd "$IP nexthop bucket get id 101 index 999"
log_test $? 2 "Get a nexthop bucket with valid group, but invalid index"
run_cmd "$IP nexthop bucket get id 201 index 0"
log_test $? 2 "Get a nexthop bucket from a non-resilient group"
run_cmd "$IP nexthop bucket get id 999 index 0"
log_test $? 2 "Get a nexthop bucket from a non-existent group"
#
# tests for bucket migration
#
$IP nexthop flush >/dev/null 2>&1
run_cmd "$IP nexthop add id 1 dev veth1"
run_cmd "$IP nexthop add id 2 dev veth3"
run_cmd "$IP nexthop add id 101
group 1/2 type resilient buckets 10
idle_timer 1 unbalanced_timer 20"
check_nexthop_buckets_balance "list id 101" \
"nhid 1" "== 5" \
"nhid 2" "== 5"
log_test $? 0 "Initial bucket allocation"
run_cmd "$IP nexthop replace id 101
group 1,2/2,3 type resilient"
check_nexthop_buckets_balance "list id 101" \
"nhid 1" "== 4" \
"nhid 2" "== 6"
log_test $? 0 "Bucket allocation after replace"
# Check that increase in idle timer does not make buckets appear busy.
run_cmd "$IP nexthop replace id 101
group 1,2/2,3 type resilient
idle_timer 10"
run_cmd "$IP nexthop replace id 101
group 1/2 type resilient"
check_nexthop_buckets_balance "list id 101" \
"nhid 1" "== 5" \
"nhid 2" "== 5"
log_test $? 0 "Buckets migrated after idle timer change"
$IP nexthop flush >/dev/null 2>&1
}
################################################################################
# usage
usage()
{
cat <<EOF
usage: ${0##*/} OPTS
-t <test> Test(s) to run (default: all)
(options: $ALL_TESTS)
-4 IPv4 tests only
-6 IPv6 tests only
-p Pause on fail
-P Pause after each test before cleanup
-v verbose mode (show commands and output)
-w Timeout for ping
Runtime test
-n num Number of nexthops to target
-N Use new style to install routes in DUT
done
EOF
}
################################################################################
# main
while getopts :t:pP46hvw: o
do
case $o in
t) TESTS=$OPTARG;;
4) TESTS=${IPV4_TESTS};;
6) TESTS=${IPV6_TESTS};;
p) PAUSE_ON_FAIL=yes;;
P) PAUSE=yes;;
v) VERBOSE=$(($VERBOSE + 1));;
w) PING_TIMEOUT=$OPTARG;;
h) usage; exit 0;;
*) usage; exit 1;;
esac
done
# make sure we don't pause twice
[ "${PAUSE}" = "yes" ] && PAUSE_ON_FAIL=no
if [ "$(id -u)" -ne 0 ];then
echo "SKIP: Need root privileges"
exit $ksft_skip;
fi
if [ ! -x "$(command -v ip)" ]; then
echo "SKIP: Could not run test without ip tool"
exit $ksft_skip
fi
ip help 2>&1 | grep -q nexthop
if [ $? -ne 0 ]; then
echo "SKIP: iproute2 too old, missing nexthop command"
exit $ksft_skip
fi
out=$(ip nexthop ls 2>&1 | grep -q "Operation not supported")
if [ $? -eq 0 ]; then
echo "SKIP: kernel lacks nexthop support"
exit $ksft_skip
fi
for t in $TESTS
do
case $t in
none) IP="ip -netns peer"; setup; exit 0;;
*) setup; $t; cleanup;;
esac
done
if [ "$TESTS" != "none" ]; then
printf "\nTests passed: %3d\n" ${nsuccess}
printf "Tests failed: %3d\n" ${nfail}
fi
exit $ret