Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vrf route leaking Start #1607

Closed
wants to merge 9 commits into from
Closed

Vrf route leaking Start #1607

wants to merge 9 commits into from

Conversation

donaldsharp
Copy link
Member

This code allows zebra to read routes from the linux kernel that have nexthops in a different vrf and then properly display them in various 'show .. route' commands and to disseminate the nexthops vrf up to the different routing protocols.

Additionally routing protocols now have the ability to send to zebra routes that are leaked, currently no routing protocol takes advantage of this yet.

nexthops are currently limited to 1 vrf.

@donaldsharp
lib: Add notice of when we can remove some deprecated code.
b7d26ec 
The zapi_ipv4_route, zapi_ipv6_route and zapi_ipv4_route_ipv6_nexthop
functions are deprecated.  Add notice of when we can remove the
deprecated code from the system.

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@donaldsharp
lib: Allow interface lookup by VRF_UNKNOWN
ba9a786 
Modify if_lookup_by_index to accept a VRF_UNKNOWN
as a vrf_id.  This will cause it to look in all
vrf's for the interface pointer.

Subsequently all if_XXXX functions that call this function
will also get this behavior.

VRF_UNKNOWN *should* not be used for interface creation
as that this will break some core assumptions.

This work is part of allowing vrf route leaking.  Currently
it is possible to create a route in the linux kernel that has
a nexthop across vrf boundaries.

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@donaldsharp
zebra: Add nh_vrf_id to 'struct route_entry`
0ad956e 
With VRF route-leaking we need to know what vrf
the nexthops are in compared to this vrf.  This
code adds the nh_vrf_id to the route entry and
sets it up correctly for the non-route-leaking
case.

The assumption here is that future commits
will make the nh_vrf_id *different* than
the vrf_id.

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@donaldsharp
zebra: Use the correct vrf id to lookup the ifp pointer
ed177d8 
Use the nexthop vrf_id to properly lookup the ifp pointer
for display purposes.

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@donaldsharp
zebra: Add nh_vrf_id to rib_add
dd742ff 
Add to the rib_add function the ability to pass in the nexthops
vrf.

Additionally when we decode the netlink message from the linux
kernel, properly figure out the nexthops vrf_id.

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@donaldsharp
zebra: When handling nexthops use the correct vrf
72e705e 
When we are handling nexthops in zebra, use the appropriate
vrf to figure out if the nexthops are active or not.

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@donaldsharp
zebra: When displaying nexthop information show correct vrf
79f927d 
If the vrf for the nexthop is different than the vrf the
route is in, display the nexthops vrf.

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@donaldsharp
*: Send/receive the nexthop vrf_id
2773f44 
Modify the code to send and receive to/from zebra
the nexthops vrf_id.

Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@donaldsharp donaldsharp mentioned this pull request Jan 8, 2018
Closed
@LabN-CI
Copy link
Collaborator

LabN-CI commented Jan 8, 2018

💚 Basic BGPD CI results: SUCCESS, 0 tests failed

Results table
_ _
Result SUCCESS git merge/1607 2773f44
Date 01/08/2018
Start 11:35:09
Finish 11:57:53
Run-Time 22:44
Total 1808
Pass 1808
Fail 0
Valgrind-Errors 0
Valgrind-Loss 0
Details vncregress-2018-01-08-11:35:09.txt
Log autoscript-2018-01-08-11:35:45.log.bz2

For details, please contact louberger

@NetDEF-CI
Copy link
Collaborator

Continuous Integration Result: SUCCESSFUL

Congratulations, this patch passed basic tests

Tested-by: NetDEF / OpenSourceRouting.org CI System

CI System Testrun URL: https://ci1.netdef.org/browse/FRR-FRRPULLREQ-2266/

This is a comment from an EXPERIMENTAL automated CI system.
For questions and feedback in regards to this CI system, please feel free to email
Martin Winter - mwinter (at) opensourcerouting.org.

CLANG Static Analyzer Summary

  • Github Pull Request 1607, comparing to Git base SHA 3abeaef

No Changes in Static Analysis warnings compared to base

21 Static Analyzer issues remaining.

See details at
https://ci1.netdef.org/browse/FRR-FRRPULLREQ-2266/artifact/shared/static_analysis/index.html

@pguibert6WIND
Copy link
Member

Donald,
I have two questions:

  • will there be some vty command to configure static route from a vrf with nexthop with different vrf ?
  • the 2 vrf ids are carried out in zebra messages. right ? in that case, don't you change the zebra version ?

@pguibert6WIND
Copy link
Member

by quickly looking at it, maybe i did not notice all.
from the kernel perspective ( vrf lite), is the zebra code ready to configure as needed that vrf route leak ?

@donaldsharp
Copy link
Member Author

Can you configure a static route from a vrf with a different nexthop vrf yes. I started discussions of the new cli in #general of the frrouting slack.

should I change the zebra version? Probably I'll add a patch to this commit here shortly.

The last question I am not sure what you are asking. The linux kernel can currently accept a leaked route. This code accepts these routes (created by a shell ip route add command ) and correctly displays/understands them in zebra.

@donaldsharp
lib: Increment zapi version number
2ca438c 
Signed-off-by: Donald Sharp <sharpd@cumulusnetworks.com>
@LabN-CI
Copy link
Collaborator

LabN-CI commented Jan 8, 2018

💚 Basic BGPD CI results: SUCCESS, 0 tests failed

Results table
_ _
Result SUCCESS git merge/1607 2ca438c
Date 01/08/2018
Start 16:35:11
Finish 16:58:25
Run-Time 23:14
Total 1805
Pass 1805
Fail 0
Valgrind-Errors 0
Valgrind-Loss 0
Details vncregress-2018-01-08-16:35:11.txt
Log autoscript-2018-01-08-16:36:04.log.bz2

For details, please contact louberger

@NetDEF-CI
Copy link
Collaborator

Continuous Integration Result: SUCCESSFUL

Congratulations, this patch passed basic tests

Tested-by: NetDEF / OpenSourceRouting.org CI System

CI System Testrun URL: https://ci1.netdef.org/browse/FRR-FRRPULLREQ-2269/

This is a comment from an EXPERIMENTAL automated CI system.
For questions and feedback in regards to this CI system, please feel free to email
Martin Winter - mwinter (at) opensourcerouting.org.

CLANG Static Analyzer Summary

  • Github Pull Request 1607, comparing to Git base SHA 3abeaef

No Changes in Static Analysis warnings compared to base

21 Static Analyzer issues remaining.

See details at
https://ci1.netdef.org/browse/FRR-FRRPULLREQ-2269/artifact/shared/static_analysis/index.html

@donaldsharp donaldsharp requested a review from louberger January 9, 2018 16:43
@donaldsharp donaldsharp mentioned this pull request Jan 10, 2018
Merged
@donaldsharp
Copy link
Member Author

#1618 supecedes this PR.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@louberger louberger Awaiting requested review from louberger

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@donaldsharp @LabN-CI @NetDEF-CI @pguibert6WIND