src/network/netdev/vxlan.c

   1 /* SPDX-License-Identifier: LGPL-2.1+ */
   2
   3 #include <net/if.h>
   4
   5 #include "sd-netlink.h"
   6
   7 #include "conf-parser.h"
   8 #include "alloc-util.h"
   9 #include "extract-word.h"
  10 #include "string-util.h"
  11 #include "strv.h"
  12 #include "parse-util.h"
  13 #include "missing.h"
  14
  15 #include "networkd-link.h"
  16 #include "netdev/vxlan.h"
  17
  18 static int netdev_vxlan_fill_message_create(NetDev *netdev, Link *link, sd_netlink_message *m) {
  19         VxLan *v;
  20         int r;
  21
  22         assert(netdev);
  23         assert(link);
  24         assert(m);
  25
  26         v = VXLAN(netdev);
  27
  28         assert(v);
  29
  30         if (v->vni <= VXLAN_VID_MAX) {
  31                 r = sd_netlink_message_append_u32(m, IFLA_VXLAN_ID, v->vni);
  32                 if (r < 0)
  33                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_ID attribute: %m");
  34         }
  35
  36         if (in_addr_is_null(v->remote_family, &v->remote) == 0) {
  37                 if (v->remote_family == AF_INET)
  38                         r = sd_netlink_message_append_in_addr(m, IFLA_VXLAN_GROUP, &v->remote.in);
  39                 else
  40                         r = sd_netlink_message_append_in6_addr(m, IFLA_VXLAN_GROUP6, &v->remote.in6);
  41                 if (r < 0)
  42                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_GROUP attribute: %m");
  43         }
  44
  45         if (in_addr_is_null(v->local_family, &v->local) == 0) {
  46                 if (v->local_family == AF_INET)
  47                         r = sd_netlink_message_append_in_addr(m, IFLA_VXLAN_LOCAL, &v->local.in);
  48                 else
  49                         r = sd_netlink_message_append_in6_addr(m, IFLA_VXLAN_LOCAL6, &v->local.in6);
  50                 if (r < 0)
  51                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_LOCAL attribute: %m");
  52         }
  53
  54         r = sd_netlink_message_append_u32(m, IFLA_VXLAN_LINK, link->ifindex);
  55         if (r < 0)
  56                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_LINK attribute: %m");
  57
  58         if (v->ttl != 0) {
  59                 r = sd_netlink_message_append_u8(m, IFLA_VXLAN_TTL, v->ttl);
  60                 if (r < 0)
  61                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_TTL attribute: %m");
  62         }
  63
  64         if (v->tos != 0) {
  65                 r = sd_netlink_message_append_u8(m, IFLA_VXLAN_TOS, v->tos);
  66                 if (r < 0)
  67                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_TOS attribute: %m");
  68         }
  69
  70         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_LEARNING, v->learning);
  71         if (r < 0)
  72                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_LEARNING attribute: %m");
  73
  74         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_RSC, v->route_short_circuit);
  75         if (r < 0)
  76                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_RSC attribute: %m");
  77
  78         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_PROXY, v->arp_proxy);
  79         if (r < 0)
  80                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_PROXY attribute: %m");
  81
  82         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_L2MISS, v->l2miss);
  83         if (r < 0)
  84                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_L2MISS attribute: %m");
  85
  86         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_L3MISS, v->l3miss);
  87         if (r < 0)
  88                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_L3MISS attribute: %m");
  89
  90         if (v->fdb_ageing != 0) {
  91                 r = sd_netlink_message_append_u32(m, IFLA_VXLAN_AGEING, v->fdb_ageing / USEC_PER_SEC);
  92                 if (r < 0)
  93                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_AGEING attribute: %m");
  94         }
  95
  96         if (v->max_fdb != 0) {
  97                 r = sd_netlink_message_append_u32(m, IFLA_VXLAN_LIMIT, v->max_fdb);
  98                 if (r < 0)
  99                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_LIMIT attribute: %m");
 100         }
 101
 102         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_UDP_CSUM, v->udpcsum);
 103         if (r < 0)
 104                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_UDP_CSUM attribute: %m");
 105
 106         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_UDP_ZERO_CSUM6_TX, v->udp6zerocsumtx);
 107         if (r < 0)
 108                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_UDP_ZERO_CSUM6_TX attribute: %m");
 109
 110         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_UDP_ZERO_CSUM6_RX, v->udp6zerocsumrx);
 111         if (r < 0)
 112                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_UDP_ZERO_CSUM6_RX attribute: %m");
 113
 114         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_REMCSUM_TX, v->remote_csum_tx);
 115         if (r < 0)
 116                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_REMCSUM_TX attribute: %m");
 117
 118         r = sd_netlink_message_append_u8(m, IFLA_VXLAN_REMCSUM_RX, v->remote_csum_rx);
 119         if (r < 0)
 120                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_REMCSUM_RX attribute: %m");
 121
 122         r = sd_netlink_message_append_u16(m, IFLA_VXLAN_PORT, htobe16(v->dest_port));
 123         if (r < 0)
 124                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_PORT attribute: %m");
 125
 126         if (v->port_range.low != 0 || v->port_range.high != 0) {
 127                 struct ifla_vxlan_port_range port_range;
 128
 129                 port_range.low = htobe16(v->port_range.low);
 130                 port_range.high = htobe16(v->port_range.high);
 131
 132                 r = sd_netlink_message_append_data(m, IFLA_VXLAN_PORT_RANGE, &port_range, sizeof(port_range));
 133                 if (r < 0)
 134                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_PORT_RANGE attribute: %m");
 135         }
 136
 137         r = sd_netlink_message_append_u32(m, IFLA_VXLAN_LABEL, htobe32(v->flow_label));
 138         if (r < 0)
 139                 return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_LABEL attribute: %m");
 140
 141         if (v->group_policy) {
 142                 r = sd_netlink_message_append_flag(m, IFLA_VXLAN_GBP);
 143                 if (r < 0)
 144                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_GBP attribute: %m");
 145         }
 146
 147         if (v->generic_protocol_extension) {
 148                 r = sd_netlink_message_append_flag(m, IFLA_VXLAN_GPE);
 149                 if (r < 0)
 150                         return log_netdev_error_errno(netdev, r, "Could not append IFLA_VXLAN_GPE attribute: %m");
 151         }
 152
 153         return r;
 154 }
 155
 156 int config_parse_vxlan_address(const char *unit,
 157                                const char *filename,
 158                                unsigned line,
 159                                const char *section,
 160                                unsigned section_line,
 161                                const char *lvalue,
 162                                int ltype,
 163                                const char *rvalue,
 164                                void *data,
 165                                void *userdata) {
 166         VxLan *v = userdata;
 167         union in_addr_union *addr = data, buffer;
 168         int r, f;
 169
 170         assert(filename);
 171         assert(lvalue);
 172         assert(rvalue);
 173         assert(data);
 174
 175         r = in_addr_from_string_auto(rvalue, &f, &buffer);
 176         if (r < 0) {
 177                 log_syntax(unit, LOG_ERR, filename, line, r, "vxlan '%s' address is invalid, ignoring assignment: %s", lvalue, rvalue);
 178                 return 0;
 179         }
 180
 181         r = in_addr_is_multicast(f, &buffer);
 182
 183         if (streq(lvalue, "Group")) {
 184                 if (r <= 0) {
 185                         log_syntax(unit, LOG_ERR, filename, line, 0, "vxlan %s invalid multicast address, ignoring assignment: %s", lvalue, rvalue);
 186                         return 0;
 187                 }
 188
 189                 v->group_family = f;
 190         } else {
 191                 if (r > 0) {
 192                         log_syntax(unit, LOG_ERR, filename, line, 0, "vxlan %s cannot be a multicast address, ignoring assignment: %s", lvalue, rvalue);
 193                         return 0;
 194                 }
 195
 196                 if (streq(lvalue, "Remote"))
 197                         v->remote_family = f;
 198                 else
 199                         v->local_family = f;
 200         }
 201
 202         *addr = buffer;
 203
 204         return 0;
 205 }
 206
 207 int config_parse_port_range(const char *unit,
 208                             const char *filename,
 209                             unsigned line,
 210                             const char *section,
 211                             unsigned section_line,
 212                             const char *lvalue,
 213                             int ltype,
 214                             const char *rvalue,
 215                             void *data,
 216                             void *userdata) {
 217         VxLan *v = userdata;
 218         uint16_t low, high;
 219         int r;
 220
 221         assert(filename);
 222         assert(lvalue);
 223         assert(rvalue);
 224         assert(data);
 225
 226         r = parse_ip_port_range(rvalue, &low, &high);
 227         if (r < 0) {
 228                 log_syntax(unit, LOG_ERR, filename, line, r,
 229                            "Failed to parse VXLAN port range '%s'. Port should be greater than 0 and less than 65535.", rvalue);
 230                 return 0;
 231         }
 232
 233         v->port_range.low = low;
 234         v->port_range.high = high;
 235
 236         return 0;
 237 }
 238
 239 int config_parse_flow_label(const char *unit,
 240                             const char *filename,
 241                             unsigned line,
 242                             const char *section,
 243                             unsigned section_line,
 244                             const char *lvalue,
 245                             int ltype,
 246                             const char *rvalue,
 247                             void *data,
 248                             void *userdata) {
 249         VxLan *v = userdata;
 250         unsigned f;
 251         int r;
 252
 253         assert(filename);
 254         assert(lvalue);
 255         assert(rvalue);
 256         assert(data);
 257
 258         r = safe_atou(rvalue, &f);
 259         if (r < 0) {
 260                 log_syntax(unit, LOG_ERR, filename, line, r, "Failed to parse VXLAN flow label '%s'.", rvalue);
 261                 return 0;
 262         }
 263
 264         if (f & ~VXLAN_FLOW_LABEL_MAX_MASK) {
 265                 log_syntax(unit, LOG_ERR, filename, line, r,
 266                            "VXLAN flow label '%s' not valid. Flow label range should be [0-1048575].", rvalue);
 267                 return 0;
 268         }
 269
 270         v->flow_label = f;
 271
 272         return 0;
 273 }
 274
 275 static int netdev_vxlan_verify(NetDev *netdev, const char *filename) {
 276         VxLan *v = VXLAN(netdev);
 277
 278         assert(netdev);
 279         assert(v);
 280         assert(filename);
 281
 282         if (v->vni > VXLAN_VID_MAX)
 283                 return log_netdev_warning_errno(netdev, SYNTHETIC_ERRNO(EINVAL),
 284                                                 "%s: VXLAN without valid VNI (or VXLAN Segment ID) configured. Ignoring.",
 285                                                 filename);
 286
 287         if (v->ttl > 255)
 288                 return log_netdev_warning_errno(netdev, SYNTHETIC_ERRNO(EINVAL),
 289                                                 "%s: VXLAN TTL must be <= 255. Ignoring.",
 290                                                 filename);
 291
 292         if (!v->dest_port && v->generic_protocol_extension)
 293                 v->dest_port = 4790;
 294
 295         return 0;
 296 }
 297
 298 static void vxlan_init(NetDev *netdev) {
 299         VxLan *v;
 300
 301         assert(netdev);
 302
 303         v = VXLAN(netdev);
 304
 305         assert(v);
 306
 307         v->vni = VXLAN_VID_MAX + 1;
 308         v->learning = true;
 309         v->udpcsum = false;
 310         v->udp6zerocsumtx = false;
 311         v->udp6zerocsumrx = false;
 312 }
 313
 314 const NetDevVTable vxlan_vtable = {
 315         .object_size = sizeof(VxLan),
 316         .init = vxlan_init,
 317         .sections = "Match\0NetDev\0VXLAN\0",
 318         .fill_message_create = netdev_vxlan_fill_message_create,
 319         .create_type = NETDEV_CREATE_STACKED,
 320         .config_verify = netdev_vxlan_verify,
 321 };