blob: 0bdca3a2e67370184f201b0d461a4015fe3ed143 [file] [log] [blame]
b.liue9582032025-04-17 19:18:16 +08001#!/bin/bash
2# SPDX-License-Identifier: GPL-2.0
3#
4# ns: me | ns: peer | ns: remote
5# 2001:db8:91::1 | 2001:db8:91::2 |
6# 172.16.1.1 | 172.16.1.2 |
7# veth1 <---|---> veth2 |
8# | veth5 <--|--> veth6 172.16.101.1
9# veth3 <---|---> veth4 | 2001:db8:101::1
10# 172.16.2.1 | 172.16.2.2 |
11# 2001:db8:92::1 | 2001:db8:92::2 |
12#
13# This test is for checking IPv4 and IPv6 FIB behavior with nexthop
14# objects. Device reference counts and network namespace cleanup tested
15# by use of network namespace for peer.
16
17ret=0
18# Kselftest framework requirement - SKIP code is 4.
19ksft_skip=4
20
21# all tests in this script. Can be overridden with -t option
22IPV4_TESTS="ipv4_fcnal ipv4_grp_fcnal ipv4_withv6_fcnal ipv4_fcnal_runtime"
23IPV6_TESTS="ipv6_fcnal ipv6_grp_fcnal ipv6_fcnal_runtime"
24
25ALL_TESTS="basic ${IPV4_TESTS} ${IPV6_TESTS}"
26TESTS="${ALL_TESTS}"
27VERBOSE=0
28PAUSE_ON_FAIL=no
29PAUSE=no
30
31nsid=100
32
33################################################################################
34# utilities
35
36log_test()
37{
38 local rc=$1
39 local expected=$2
40 local msg="$3"
41
42 if [ ${rc} -eq ${expected} ]; then
43 printf "TEST: %-60s [ OK ]\n" "${msg}"
44 nsuccess=$((nsuccess+1))
45 else
46 ret=1
47 nfail=$((nfail+1))
48 printf "TEST: %-60s [FAIL]\n" "${msg}"
49 if [ "$VERBOSE" = "1" ]; then
50 echo " rc=$rc, expected $expected"
51 fi
52
53 if [ "${PAUSE_ON_FAIL}" = "yes" ]; then
54 echo
55 echo "hit enter to continue, 'q' to quit"
56 read a
57 [ "$a" = "q" ] && exit 1
58 fi
59 fi
60
61 if [ "${PAUSE}" = "yes" ]; then
62 echo
63 echo "hit enter to continue, 'q' to quit"
64 read a
65 [ "$a" = "q" ] && exit 1
66 fi
67
68 [ "$VERBOSE" = "1" ] && echo
69}
70
71run_cmd()
72{
73 local cmd="$1"
74 local out
75 local stderr="2>/dev/null"
76
77 if [ "$VERBOSE" = "1" ]; then
78 printf "COMMAND: $cmd\n"
79 stderr=
80 fi
81
82 out=$(eval $cmd $stderr)
83 rc=$?
84 if [ "$VERBOSE" = "1" -a -n "$out" ]; then
85 echo " $out"
86 fi
87
88 return $rc
89}
90
91get_linklocal()
92{
93 local dev=$1
94 local ns
95 local addr
96
97 [ -n "$2" ] && ns="-netns $2"
98 addr=$(ip $ns -6 -br addr show dev ${dev} | \
99 awk '{
100 for (i = 3; i <= NF; ++i) {
101 if ($i ~ /^fe80/)
102 print $i
103 }
104 }'
105 )
106 addr=${addr/\/*}
107
108 [ -z "$addr" ] && return 1
109
110 echo $addr
111
112 return 0
113}
114
115create_ns()
116{
117 local n=${1}
118
119 ip netns del ${n} 2>/dev/null
120
121 set -e
122 ip netns add ${n}
123 ip netns set ${n} $((nsid++))
124 ip -netns ${n} addr add 127.0.0.1/8 dev lo
125 ip -netns ${n} link set lo up
126
127 ip netns exec ${n} sysctl -qw net.ipv4.ip_forward=1
128 ip netns exec ${n} sysctl -qw net.ipv4.fib_multipath_use_neigh=1
129 ip netns exec ${n} sysctl -qw net.ipv4.conf.default.ignore_routes_with_linkdown=1
130 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.keep_addr_on_down=1
131 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.forwarding=1
132 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.forwarding=1
133 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.ignore_routes_with_linkdown=1
134 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.accept_dad=0
135 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.accept_dad=0
136
137 set +e
138}
139
140setup()
141{
142 cleanup
143
144 create_ns me
145 create_ns peer
146 create_ns remote
147
148 IP="ip -netns me"
149 set -e
150 $IP li add veth1 type veth peer name veth2
151 $IP li set veth1 up
152 $IP addr add 172.16.1.1/24 dev veth1
153 $IP -6 addr add 2001:db8:91::1/64 dev veth1
154
155 $IP li add veth3 type veth peer name veth4
156 $IP li set veth3 up
157 $IP addr add 172.16.2.1/24 dev veth3
158 $IP -6 addr add 2001:db8:92::1/64 dev veth3
159
160 $IP li set veth2 netns peer up
161 ip -netns peer addr add 172.16.1.2/24 dev veth2
162 ip -netns peer -6 addr add 2001:db8:91::2/64 dev veth2
163
164 $IP li set veth4 netns peer up
165 ip -netns peer addr add 172.16.2.2/24 dev veth4
166 ip -netns peer -6 addr add 2001:db8:92::2/64 dev veth4
167
168 ip -netns remote li add veth5 type veth peer name veth6
169 ip -netns remote li set veth5 up
170 ip -netns remote addr add dev veth5 172.16.101.1/24
171 ip -netns remote addr add dev veth5 2001:db8:101::1/64
172 ip -netns remote ro add 172.16.0.0/22 via 172.16.101.2
173 ip -netns remote -6 ro add 2001:db8:90::/40 via 2001:db8:101::2
174
175 ip -netns remote li set veth6 netns peer up
176 ip -netns peer addr add dev veth6 172.16.101.2/24
177 ip -netns peer addr add dev veth6 2001:db8:101::2/64
178 set +e
179}
180
181cleanup()
182{
183 local ns
184
185 for ns in me peer remote; do
186 ip netns del ${ns} 2>/dev/null
187 done
188}
189
190check_output()
191{
192 local out="$1"
193 local expected="$2"
194 local rc=0
195
196 [ "${out}" = "${expected}" ] && return 0
197
198 if [ -z "${out}" ]; then
199 if [ "$VERBOSE" = "1" ]; then
200 printf "\nNo entry found\n"
201 printf "Expected:\n"
202 printf " ${expected}\n"
203 fi
204 return 1
205 fi
206
207 out=$(echo ${out})
208 if [ "${out}" != "${expected}" ]; then
209 rc=1
210 if [ "${VERBOSE}" = "1" ]; then
211 printf " Unexpected entry. Have:\n"
212 printf " ${out}\n"
213 printf " Expected:\n"
214 printf " ${expected}\n\n"
215 else
216 echo " WARNING: Unexpected route entry"
217 fi
218 fi
219
220 return $rc
221}
222
223check_nexthop()
224{
225 local nharg="$1"
226 local expected="$2"
227 local out
228
229 out=$($IP nexthop ls ${nharg} 2>/dev/null)
230
231 check_output "${out}" "${expected}"
232}
233
234check_route()
235{
236 local pfx="$1"
237 local expected="$2"
238 local out
239
240 out=$($IP route ls match ${pfx} 2>/dev/null)
241
242 check_output "${out}" "${expected}"
243}
244
245check_route6()
246{
247 local pfx="$1"
248 local expected="$2"
249 local out
250
251 out=$($IP -6 route ls match ${pfx} 2>/dev/null)
252
253 check_output "${out}" "${expected}"
254}
255
256################################################################################
257# basic operations (add, delete, replace) on nexthops and nexthop groups
258#
259# IPv6
260
261ipv6_fcnal()
262{
263 local rc
264
265 echo
266 echo "IPv6"
267 echo "----------------------"
268
269 run_cmd "$IP nexthop add id 52 via 2001:db8:91::2 dev veth1"
270 rc=$?
271 log_test $rc 0 "Create nexthop with id, gw, dev"
272 if [ $rc -ne 0 ]; then
273 echo "Basic IPv6 create fails; can not continue"
274 return 1
275 fi
276
277 run_cmd "$IP nexthop get id 52"
278 log_test $? 0 "Get nexthop by id"
279 check_nexthop "id 52" "id 52 via 2001:db8:91::2 dev veth1 scope link"
280
281 run_cmd "$IP nexthop del id 52"
282 log_test $? 0 "Delete nexthop by id"
283 check_nexthop "id 52" ""
284
285 #
286 # gw, device spec
287 #
288 # gw validation, no device - fails since dev required
289 run_cmd "$IP nexthop add id 52 via 2001:db8:92::3"
290 log_test $? 2 "Create nexthop - gw only"
291
292 # gw is not reachable throught given dev
293 run_cmd "$IP nexthop add id 53 via 2001:db8:3::3 dev veth1"
294 log_test $? 2 "Create nexthop - invalid gw+dev combination"
295
296 # onlink arg overrides gw+dev lookup
297 run_cmd "$IP nexthop add id 53 via 2001:db8:3::3 dev veth1 onlink"
298 log_test $? 0 "Create nexthop - gw+dev and onlink"
299
300 # admin down should delete nexthops
301 set -e
302 run_cmd "$IP -6 nexthop add id 55 via 2001:db8:91::3 dev veth1"
303 run_cmd "$IP nexthop add id 56 via 2001:db8:91::4 dev veth1"
304 run_cmd "$IP nexthop add id 57 via 2001:db8:91::5 dev veth1"
305 run_cmd "$IP li set dev veth1 down"
306 set +e
307 check_nexthop "dev veth1" ""
308 log_test $? 0 "Nexthops removed on admin down"
309}
310
311ipv6_grp_fcnal()
312{
313 local rc
314
315 echo
316 echo "IPv6 groups functional"
317 echo "----------------------"
318
319 # basic functionality: create a nexthop group, default weight
320 run_cmd "$IP nexthop add id 61 via 2001:db8:91::2 dev veth1"
321 run_cmd "$IP nexthop add id 101 group 61"
322 log_test $? 0 "Create nexthop group with single nexthop"
323
324 # get nexthop group
325 run_cmd "$IP nexthop get id 101"
326 log_test $? 0 "Get nexthop group by id"
327 check_nexthop "id 101" "id 101 group 61"
328
329 # delete nexthop group
330 run_cmd "$IP nexthop del id 101"
331 log_test $? 0 "Delete nexthop group by id"
332 check_nexthop "id 101" ""
333
334 $IP nexthop flush >/dev/null 2>&1
335 check_nexthop "id 101" ""
336
337 #
338 # create group with multiple nexthops - mix of gw and dev only
339 #
340 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
341 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
342 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
343 run_cmd "$IP nexthop add id 65 dev veth1"
344 run_cmd "$IP nexthop add id 102 group 62/63/64/65"
345 log_test $? 0 "Nexthop group with multiple nexthops"
346 check_nexthop "id 102" "id 102 group 62/63/64/65"
347
348 # Delete nexthop in a group and group is updated
349 run_cmd "$IP nexthop del id 63"
350 check_nexthop "id 102" "id 102 group 62/64/65"
351 log_test $? 0 "Nexthop group updated when entry is deleted"
352
353 # create group with multiple weighted nexthops
354 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
355 run_cmd "$IP nexthop add id 103 group 62/63,2/64,3/65,4"
356 log_test $? 0 "Nexthop group with weighted nexthops"
357 check_nexthop "id 103" "id 103 group 62/63,2/64,3/65,4"
358
359 # Delete nexthop in a weighted group and group is updated
360 run_cmd "$IP nexthop del id 63"
361 check_nexthop "id 103" "id 103 group 62/64,3/65,4"
362 log_test $? 0 "Weighted nexthop group updated when entry is deleted"
363
364 # admin down - nexthop is removed from group
365 run_cmd "$IP li set dev veth1 down"
366 check_nexthop "dev veth1" ""
367 log_test $? 0 "Nexthops in groups removed on admin down"
368
369 # expect groups to have been deleted as well
370 check_nexthop "" ""
371
372 run_cmd "$IP li set dev veth1 up"
373
374 $IP nexthop flush >/dev/null 2>&1
375
376 # group with nexthops using different devices
377 set -e
378 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
379 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
380 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
381 run_cmd "$IP nexthop add id 65 via 2001:db8:91::5 dev veth1"
382
383 run_cmd "$IP nexthop add id 72 via 2001:db8:92::2 dev veth3"
384 run_cmd "$IP nexthop add id 73 via 2001:db8:92::3 dev veth3"
385 run_cmd "$IP nexthop add id 74 via 2001:db8:92::4 dev veth3"
386 run_cmd "$IP nexthop add id 75 via 2001:db8:92::5 dev veth3"
387 set +e
388
389 # multiple groups with same nexthop
390 run_cmd "$IP nexthop add id 104 group 62"
391 run_cmd "$IP nexthop add id 105 group 62"
392 check_nexthop "group" "id 104 group 62 id 105 group 62"
393 log_test $? 0 "Multiple groups with same nexthop"
394
395 run_cmd "$IP nexthop flush groups"
396 [ $? -ne 0 ] && return 1
397
398 # on admin down of veth1, it should be removed from the group
399 run_cmd "$IP nexthop add id 105 group 62/63/72/73/64"
400 run_cmd "$IP li set veth1 down"
401 check_nexthop "id 105" "id 105 group 72/73"
402 log_test $? 0 "Nexthops in group removed on admin down - mixed group"
403
404 run_cmd "$IP nexthop add id 106 group 105/74"
405 log_test $? 2 "Nexthop group can not have a group as an entry"
406
407 # a group can have a blackhole entry only if it is the only
408 # nexthop in the group. Needed for atomic replace with an
409 # actual nexthop group
410 run_cmd "$IP -6 nexthop add id 31 blackhole"
411 run_cmd "$IP nexthop add id 107 group 31"
412 log_test $? 0 "Nexthop group with a blackhole entry"
413
414 run_cmd "$IP nexthop add id 108 group 31/24"
415 log_test $? 2 "Nexthop group can not have a blackhole and another nexthop"
416}
417
418ipv6_fcnal_runtime()
419{
420 local rc
421
422 echo
423 echo "IPv6 functional runtime"
424 echo "-----------------------"
425
426 sleep 5
427
428 #
429 # IPv6 - the basics
430 #
431 run_cmd "$IP nexthop add id 81 via 2001:db8:91::2 dev veth1"
432 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
433 log_test $? 0 "Route add"
434
435 run_cmd "$IP ro delete 2001:db8:101::1/128 nhid 81"
436 log_test $? 0 "Route delete"
437
438 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
439 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
440 log_test $? 0 "Ping with nexthop"
441
442 run_cmd "$IP nexthop add id 82 via 2001:db8:92::2 dev veth3"
443 run_cmd "$IP nexthop add id 122 group 81/82"
444 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
445 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
446 log_test $? 0 "Ping - multipath"
447
448 #
449 # IPv6 with blackhole nexthops
450 #
451 run_cmd "$IP -6 nexthop add id 83 blackhole"
452 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 83"
453 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
454 log_test $? 2 "Ping - blackhole"
455
456 run_cmd "$IP nexthop replace id 83 via 2001:db8:91::2 dev veth1"
457 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
458 log_test $? 0 "Ping - blackhole replaced with gateway"
459
460 run_cmd "$IP -6 nexthop replace id 83 blackhole"
461 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
462 log_test $? 2 "Ping - gateway replaced by blackhole"
463
464 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
465 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
466 if [ $? -eq 0 ]; then
467 run_cmd "$IP nexthop replace id 122 group 83"
468 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
469 log_test $? 2 "Ping - group with blackhole"
470
471 run_cmd "$IP nexthop replace id 122 group 81/82"
472 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
473 log_test $? 0 "Ping - group blackhole replaced with gateways"
474 else
475 log_test 2 0 "Ping - multipath failed"
476 fi
477
478 #
479 # device only and gw + dev only mix
480 #
481 run_cmd "$IP -6 nexthop add id 85 dev veth1"
482 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 85"
483 log_test $? 0 "IPv6 route with device only nexthop"
484 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 85 dev veth1 metric 1024 pref medium"
485
486 run_cmd "$IP nexthop add id 123 group 81/85"
487 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 123"
488 log_test $? 0 "IPv6 multipath route with nexthop mix - dev only + gw"
489 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 123 metric 1024 nexthop via 2001:db8:91::2 dev veth1 weight 1 nexthop dev veth1 weight 1 pref medium"
490
491 #
492 # IPv6 route with v4 nexthop - not allowed
493 #
494 run_cmd "$IP ro delete 2001:db8:101::1/128"
495 run_cmd "$IP nexthop add id 84 via 172.16.1.1 dev veth1"
496 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 84"
497 log_test $? 2 "IPv6 route can not have a v4 gateway"
498
499 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 81"
500 run_cmd "$IP nexthop replace id 81 via 172.16.1.1 dev veth1"
501 log_test $? 2 "Nexthop replace - v6 route, v4 nexthop"
502
503 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
504 run_cmd "$IP nexthop replace id 81 via 172.16.1.1 dev veth1"
505 log_test $? 2 "Nexthop replace of group entry - v6 route, v4 nexthop"
506
507 $IP nexthop flush >/dev/null 2>&1
508
509 #
510 # weird IPv6 cases
511 #
512 run_cmd "$IP nexthop add id 86 via 2001:db8:91::2 dev veth1"
513 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
514
515 # rpfilter and default route
516 $IP nexthop flush >/dev/null 2>&1
517 run_cmd "ip netns exec me ip6tables -t mangle -I PREROUTING 1 -m rpfilter --invert -j DROP"
518 run_cmd "$IP nexthop add id 91 via 2001:db8:91::2 dev veth1"
519 run_cmd "$IP nexthop add id 92 via 2001:db8:92::2 dev veth3"
520 run_cmd "$IP nexthop add id 93 group 91/92"
521 run_cmd "$IP -6 ro add default nhid 91"
522 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
523 log_test $? 0 "Nexthop with default route and rpfilter"
524 run_cmd "$IP -6 ro replace default nhid 93"
525 run_cmd "ip netns exec me ping -c1 -w1 2001:db8:101::1"
526 log_test $? 0 "Nexthop with multipath default route and rpfilter"
527
528 # TO-DO:
529 # existing route with old nexthop; append route with new nexthop
530 # existing route with old nexthop; replace route with new
531 # existing route with new nexthop; replace route with old
532 # route with src address and using nexthop - not allowed
533}
534
535ipv4_fcnal()
536{
537 local rc
538
539 echo
540 echo "IPv4 functional"
541 echo "----------------------"
542
543 #
544 # basic IPv4 ops - add, get, delete
545 #
546 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
547 rc=$?
548 log_test $rc 0 "Create nexthop with id, gw, dev"
549 if [ $rc -ne 0 ]; then
550 echo "Basic IPv4 create fails; can not continue"
551 return 1
552 fi
553
554 run_cmd "$IP nexthop get id 12"
555 log_test $? 0 "Get nexthop by id"
556 check_nexthop "id 12" "id 12 via 172.16.1.2 dev veth1 scope link"
557
558 run_cmd "$IP nexthop del id 12"
559 log_test $? 0 "Delete nexthop by id"
560 check_nexthop "id 52" ""
561
562 #
563 # gw, device spec
564 #
565 # gw validation, no device - fails since dev is required
566 run_cmd "$IP nexthop add id 12 via 172.16.2.3"
567 log_test $? 2 "Create nexthop - gw only"
568
569 # gw not reachable through given dev
570 run_cmd "$IP nexthop add id 13 via 172.16.3.2 dev veth1"
571 log_test $? 2 "Create nexthop - invalid gw+dev combination"
572
573 # onlink flag overrides gw+dev lookup
574 run_cmd "$IP nexthop add id 13 via 172.16.3.2 dev veth1 onlink"
575 log_test $? 0 "Create nexthop - gw+dev and onlink"
576
577 # admin down should delete nexthops
578 set -e
579 run_cmd "$IP nexthop add id 15 via 172.16.1.3 dev veth1"
580 run_cmd "$IP nexthop add id 16 via 172.16.1.4 dev veth1"
581 run_cmd "$IP nexthop add id 17 via 172.16.1.5 dev veth1"
582 run_cmd "$IP li set dev veth1 down"
583 set +e
584 check_nexthop "dev veth1" ""
585 log_test $? 0 "Nexthops removed on admin down"
586
587 # nexthop route delete warning: route add with nhid and delete
588 # using device
589 run_cmd "$IP li set dev veth1 up"
590 run_cmd "$IP nexthop add id 12 via 172.16.1.3 dev veth1"
591 out1=`dmesg | grep "WARNING:.*fib_nh_match.*" | wc -l`
592 run_cmd "$IP route add 172.16.101.1/32 nhid 12"
593 run_cmd "$IP route delete 172.16.101.1/32 dev veth1"
594 out2=`dmesg | grep "WARNING:.*fib_nh_match.*" | wc -l`
595 [ $out1 -eq $out2 ]
596 rc=$?
597 log_test $rc 0 "Delete nexthop route warning"
598 run_cmd "$IP route delete 172.16.101.1/32 nhid 12"
599 run_cmd "$IP nexthop del id 12"
600
601 run_cmd "$IP nexthop add id 21 via 172.16.1.6 dev veth1"
602 run_cmd "$IP ro add 172.16.101.0/24 nhid 21"
603 run_cmd "$IP ro del 172.16.101.0/24 nexthop via 172.16.1.7 dev veth1 nexthop via 172.16.1.8 dev veth1"
604 log_test $? 2 "Delete multipath route with only nh id based entry"
605
606 run_cmd "$IP nexthop add id 22 via 172.16.1.6 dev veth1"
607 run_cmd "$IP ro add 172.16.102.0/24 nhid 22"
608 run_cmd "$IP ro del 172.16.102.0/24 dev veth1"
609 log_test $? 2 "Delete route when specifying only nexthop device"
610
611 run_cmd "$IP ro del 172.16.102.0/24 via 172.16.1.6"
612 log_test $? 2 "Delete route when specifying only gateway"
613
614 run_cmd "$IP ro del 172.16.102.0/24"
615 log_test $? 0 "Delete route when not specifying nexthop attributes"
616}
617
618ipv4_grp_fcnal()
619{
620 local rc
621
622 echo
623 echo "IPv4 groups functional"
624 echo "----------------------"
625
626 # basic functionality: create a nexthop group, default weight
627 run_cmd "$IP nexthop add id 11 via 172.16.1.2 dev veth1"
628 run_cmd "$IP nexthop add id 101 group 11"
629 log_test $? 0 "Create nexthop group with single nexthop"
630
631 # get nexthop group
632 run_cmd "$IP nexthop get id 101"
633 log_test $? 0 "Get nexthop group by id"
634 check_nexthop "id 101" "id 101 group 11"
635
636 # delete nexthop group
637 run_cmd "$IP nexthop del id 101"
638 log_test $? 0 "Delete nexthop group by id"
639 check_nexthop "id 101" ""
640
641 $IP nexthop flush >/dev/null 2>&1
642
643 #
644 # create group with multiple nexthops
645 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
646 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
647 run_cmd "$IP nexthop add id 14 via 172.16.1.4 dev veth1"
648 run_cmd "$IP nexthop add id 15 via 172.16.1.5 dev veth1"
649 run_cmd "$IP nexthop add id 102 group 12/13/14/15"
650 log_test $? 0 "Nexthop group with multiple nexthops"
651 check_nexthop "id 102" "id 102 group 12/13/14/15"
652
653 # Delete nexthop in a group and group is updated
654 run_cmd "$IP nexthop del id 13"
655 check_nexthop "id 102" "id 102 group 12/14/15"
656 log_test $? 0 "Nexthop group updated when entry is deleted"
657
658 # create group with multiple weighted nexthops
659 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
660 run_cmd "$IP nexthop add id 103 group 12/13,2/14,3/15,4"
661 log_test $? 0 "Nexthop group with weighted nexthops"
662 check_nexthop "id 103" "id 103 group 12/13,2/14,3/15,4"
663
664 # Delete nexthop in a weighted group and group is updated
665 run_cmd "$IP nexthop del id 13"
666 check_nexthop "id 103" "id 103 group 12/14,3/15,4"
667 log_test $? 0 "Weighted nexthop group updated when entry is deleted"
668
669 # admin down - nexthop is removed from group
670 run_cmd "$IP li set dev veth1 down"
671 check_nexthop "dev veth1" ""
672 log_test $? 0 "Nexthops in groups removed on admin down"
673
674 # expect groups to have been deleted as well
675 check_nexthop "" ""
676
677 run_cmd "$IP li set dev veth1 up"
678
679 $IP nexthop flush >/dev/null 2>&1
680
681 # group with nexthops using different devices
682 set -e
683 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
684 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
685 run_cmd "$IP nexthop add id 14 via 172.16.1.4 dev veth1"
686 run_cmd "$IP nexthop add id 15 via 172.16.1.5 dev veth1"
687
688 run_cmd "$IP nexthop add id 22 via 172.16.2.2 dev veth3"
689 run_cmd "$IP nexthop add id 23 via 172.16.2.3 dev veth3"
690 run_cmd "$IP nexthop add id 24 via 172.16.2.4 dev veth3"
691 run_cmd "$IP nexthop add id 25 via 172.16.2.5 dev veth3"
692 set +e
693
694 # multiple groups with same nexthop
695 run_cmd "$IP nexthop add id 104 group 12"
696 run_cmd "$IP nexthop add id 105 group 12"
697 check_nexthop "group" "id 104 group 12 id 105 group 12"
698 log_test $? 0 "Multiple groups with same nexthop"
699
700 run_cmd "$IP nexthop flush groups"
701 [ $? -ne 0 ] && return 1
702
703 # on admin down of veth1, it should be removed from the group
704 run_cmd "$IP nexthop add id 105 group 12/13/22/23/14"
705 run_cmd "$IP li set veth1 down"
706 check_nexthop "id 105" "id 105 group 22/23"
707 log_test $? 0 "Nexthops in group removed on admin down - mixed group"
708
709 run_cmd "$IP nexthop add id 106 group 105/24"
710 log_test $? 2 "Nexthop group can not have a group as an entry"
711
712 # a group can have a blackhole entry only if it is the only
713 # nexthop in the group. Needed for atomic replace with an
714 # actual nexthop group
715 run_cmd "$IP nexthop add id 31 blackhole"
716 run_cmd "$IP nexthop add id 107 group 31"
717 log_test $? 0 "Nexthop group with a blackhole entry"
718
719 run_cmd "$IP nexthop add id 108 group 31/24"
720 log_test $? 2 "Nexthop group can not have a blackhole and another nexthop"
721}
722
723ipv4_withv6_fcnal()
724{
725 local lladdr
726
727 set -e
728 lladdr=$(get_linklocal veth2 peer)
729 run_cmd "$IP nexthop add id 11 via ${lladdr} dev veth1"
730 set +e
731 run_cmd "$IP ro add 172.16.101.1/32 nhid 11"
732 log_test $? 0 "IPv6 nexthop with IPv4 route"
733 check_route "172.16.101.1" "172.16.101.1 nhid 11 via inet6 ${lladdr} dev veth1"
734
735 set -e
736 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
737 run_cmd "$IP nexthop add id 101 group 11/12"
738 set +e
739 run_cmd "$IP ro replace 172.16.101.1/32 nhid 101"
740 log_test $? 0 "IPv6 nexthop with IPv4 route"
741
742 check_route "172.16.101.1" "172.16.101.1 nhid 101 nexthop via inet6 ${lladdr} dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
743
744 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
745 log_test $? 0 "IPv4 route with IPv6 gateway"
746 check_route "172.16.101.1" "172.16.101.1 via inet6 ${lladdr} dev veth1"
747
748 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 2001:db8:50::1 dev veth1"
749 log_test $? 2 "IPv4 route with invalid IPv6 gateway"
750}
751
752ipv4_fcnal_runtime()
753{
754 local lladdr
755 local rc
756
757 echo
758 echo "IPv4 functional runtime"
759 echo "-----------------------"
760
761 run_cmd "$IP nexthop add id 21 via 172.16.1.2 dev veth1"
762 run_cmd "$IP ro add 172.16.101.1/32 nhid 21"
763 log_test $? 0 "Route add"
764 check_route "172.16.101.1" "172.16.101.1 nhid 21 via 172.16.1.2 dev veth1"
765
766 run_cmd "$IP ro delete 172.16.101.1/32 nhid 21"
767 log_test $? 0 "Route delete"
768
769 #
770 # scope mismatch
771 #
772 run_cmd "$IP nexthop add id 22 via 172.16.1.2 dev veth1"
773 run_cmd "$IP ro add 172.16.101.1/32 nhid 22 scope host"
774 log_test $? 2 "Route add - scope conflict with nexthop"
775
776 run_cmd "$IP nexthop replace id 22 dev veth3"
777 run_cmd "$IP ro add 172.16.101.1/32 nhid 22 scope host"
778 run_cmd "$IP nexthop replace id 22 via 172.16.2.2 dev veth3"
779 log_test $? 2 "Nexthop replace with invalid scope for existing route"
780
781 #
782 # add route with nexthop and check traffic
783 #
784 run_cmd "$IP nexthop replace id 21 via 172.16.1.2 dev veth1"
785 run_cmd "$IP ro replace 172.16.101.1/32 nhid 21"
786 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
787 log_test $? 0 "Basic ping"
788
789 run_cmd "$IP nexthop replace id 22 via 172.16.2.2 dev veth3"
790 run_cmd "$IP nexthop add id 122 group 21/22"
791 run_cmd "$IP ro replace 172.16.101.1/32 nhid 122"
792 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
793 log_test $? 0 "Ping - multipath"
794
795 run_cmd "$IP ro delete 172.16.101.1/32 nhid 122"
796
797 #
798 # multiple default routes
799 # - tests fib_select_default
800 run_cmd "$IP nexthop add id 501 via 172.16.1.2 dev veth1"
801 run_cmd "$IP ro add default nhid 501"
802 run_cmd "$IP ro add default via 172.16.1.3 dev veth1 metric 20"
803 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
804 log_test $? 0 "Ping - multiple default routes, nh first"
805
806 # flip the order
807 run_cmd "$IP ro del default nhid 501"
808 run_cmd "$IP ro del default via 172.16.1.3 dev veth1 metric 20"
809 run_cmd "$IP ro add default via 172.16.1.2 dev veth1 metric 20"
810 run_cmd "$IP nexthop replace id 501 via 172.16.1.3 dev veth1"
811 run_cmd "$IP ro add default nhid 501 metric 20"
812 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
813 log_test $? 0 "Ping - multiple default routes, nh second"
814
815 run_cmd "$IP nexthop delete nhid 501"
816 run_cmd "$IP ro del default"
817
818 #
819 # IPv4 with blackhole nexthops
820 #
821 run_cmd "$IP nexthop add id 23 blackhole"
822 run_cmd "$IP ro replace 172.16.101.1/32 nhid 23"
823 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
824 log_test $? 2 "Ping - blackhole"
825
826 run_cmd "$IP nexthop replace id 23 via 172.16.1.2 dev veth1"
827 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
828 log_test $? 0 "Ping - blackhole replaced with gateway"
829
830 run_cmd "$IP nexthop replace id 23 blackhole"
831 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
832 log_test $? 2 "Ping - gateway replaced by blackhole"
833
834 run_cmd "$IP ro replace 172.16.101.1/32 nhid 122"
835 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
836 if [ $? -eq 0 ]; then
837 run_cmd "$IP nexthop replace id 122 group 23"
838 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
839 log_test $? 2 "Ping - group with blackhole"
840
841 run_cmd "$IP nexthop replace id 122 group 21/22"
842 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
843 log_test $? 0 "Ping - group blackhole replaced with gateways"
844 else
845 log_test 2 0 "Ping - multipath failed"
846 fi
847
848 #
849 # device only and gw + dev only mix
850 #
851 run_cmd "$IP nexthop add id 85 dev veth1"
852 run_cmd "$IP ro replace 172.16.101.1/32 nhid 85"
853 log_test $? 0 "IPv4 route with device only nexthop"
854 check_route "172.16.101.1" "172.16.101.1 nhid 85 dev veth1"
855
856 run_cmd "$IP nexthop add id 123 group 21/85"
857 run_cmd "$IP ro replace 172.16.101.1/32 nhid 123"
858 log_test $? 0 "IPv4 multipath route with nexthop mix - dev only + gw"
859 check_route "172.16.101.1" "172.16.101.1 nhid 123 nexthop via 172.16.1.2 dev veth1 weight 1 nexthop dev veth1 weight 1"
860
861 #
862 # IPv4 with IPv6
863 #
864 set -e
865 lladdr=$(get_linklocal veth2 peer)
866 run_cmd "$IP nexthop add id 24 via ${lladdr} dev veth1"
867 set +e
868 run_cmd "$IP ro replace 172.16.101.1/32 nhid 24"
869 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
870 log_test $? 0 "IPv6 nexthop with IPv4 route"
871
872 $IP neigh sh | grep -q "${lladdr} dev veth1"
873 if [ $? -eq 1 ]; then
874 echo " WARNING: Neigh entry missing for ${lladdr}"
875 $IP neigh sh | grep 'dev veth1'
876 fi
877
878 $IP neigh sh | grep -q "172.16.101.1 dev eth1"
879 if [ $? -eq 0 ]; then
880 echo " WARNING: Neigh entry exists for 172.16.101.1"
881 $IP neigh sh | grep 'dev veth1'
882 fi
883
884 set -e
885 run_cmd "$IP nexthop add id 25 via 172.16.1.2 dev veth1"
886 run_cmd "$IP nexthop add id 101 group 24/25"
887 set +e
888 run_cmd "$IP ro replace 172.16.101.1/32 nhid 101"
889 log_test $? 0 "IPv4 route with mixed v4-v6 multipath route"
890
891 check_route "172.16.101.1" "172.16.101.1 nhid 101 nexthop via inet6 ${lladdr} dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
892
893 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
894 log_test $? 0 "IPv6 nexthop with IPv4 route"
895
896 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
897 run_cmd "ip netns exec me ping -c1 -w1 172.16.101.1"
898 log_test $? 0 "IPv4 route with IPv6 gateway"
899
900 $IP neigh sh | grep -q "${lladdr} dev veth1"
901 if [ $? -eq 1 ]; then
902 echo " WARNING: Neigh entry missing for ${lladdr}"
903 $IP neigh sh | grep 'dev veth1'
904 fi
905
906 $IP neigh sh | grep -q "172.16.101.1 dev eth1"
907 if [ $? -eq 0 ]; then
908 echo " WARNING: Neigh entry exists for 172.16.101.1"
909 $IP neigh sh | grep 'dev veth1'
910 fi
911
912 #
913 # MPLS as an example of LWT encap
914 #
915 run_cmd "$IP nexthop add id 51 encap mpls 101 via 172.16.1.2 dev veth1"
916 log_test $? 0 "IPv4 route with MPLS encap"
917 check_nexthop "id 51" "id 51 encap mpls 101 via 172.16.1.2 dev veth1 scope link"
918 log_test $? 0 "IPv4 route with MPLS encap - check"
919
920 run_cmd "$IP nexthop add id 52 encap mpls 102 via inet6 2001:db8:91::2 dev veth1"
921 log_test $? 0 "IPv4 route with MPLS encap and v6 gateway"
922 check_nexthop "id 52" "id 52 encap mpls 102 via 2001:db8:91::2 dev veth1 scope link"
923 log_test $? 0 "IPv4 route with MPLS encap, v6 gw - check"
924}
925
926basic()
927{
928 echo
929 echo "Basic functional tests"
930 echo "----------------------"
931 run_cmd "$IP nexthop ls"
932 log_test $? 0 "List with nothing defined"
933
934 run_cmd "$IP nexthop get id 1"
935 log_test $? 2 "Nexthop get on non-existent id"
936
937 # attempt to create nh without a device or gw - fails
938 run_cmd "$IP nexthop add id 1"
939 log_test $? 2 "Nexthop with no device or gateway"
940
941 # attempt to create nh with down device - fails
942 $IP li set veth1 down
943 run_cmd "$IP nexthop add id 1 dev veth1"
944 log_test $? 2 "Nexthop with down device"
945
946 # create nh with linkdown device - fails
947 $IP li set veth1 up
948 ip -netns peer li set veth2 down
949 run_cmd "$IP nexthop add id 1 dev veth1"
950 log_test $? 2 "Nexthop with device that is linkdown"
951 ip -netns peer li set veth2 up
952
953 # device only
954 run_cmd "$IP nexthop add id 1 dev veth1"
955 log_test $? 0 "Nexthop with device only"
956
957 # create nh with duplicate id
958 run_cmd "$IP nexthop add id 1 dev veth3"
959 log_test $? 2 "Nexthop with duplicate id"
960
961 # blackhole nexthop
962 run_cmd "$IP nexthop add id 2 blackhole"
963 log_test $? 0 "Blackhole nexthop"
964
965 # blackhole nexthop can not have other specs
966 run_cmd "$IP nexthop replace id 2 blackhole dev veth1"
967 log_test $? 2 "Blackhole nexthop with other attributes"
968
969 #
970 # groups
971 #
972
973 run_cmd "$IP nexthop add id 101 group 1"
974 log_test $? 0 "Create group"
975
976 run_cmd "$IP nexthop add id 102 group 2"
977 log_test $? 0 "Create group with blackhole nexthop"
978
979 # multipath group can not have a blackhole as 1 path
980 run_cmd "$IP nexthop add id 103 group 1/2"
981 log_test $? 2 "Create multipath group where 1 path is a blackhole"
982
983 # multipath group can not have a member replaced by a blackhole
984 run_cmd "$IP nexthop replace id 2 dev veth3"
985 run_cmd "$IP nexthop replace id 102 group 1/2"
986 run_cmd "$IP nexthop replace id 2 blackhole"
987 log_test $? 2 "Multipath group can not have a member replaced by blackhole"
988
989 # attempt to create group with non-existent nexthop
990 run_cmd "$IP nexthop add id 103 group 12"
991 log_test $? 2 "Create group with non-existent nexthop"
992
993 # attempt to create group with same nexthop
994 run_cmd "$IP nexthop add id 103 group 1/1"
995 log_test $? 2 "Create group with same nexthop multiple times"
996
997 # replace nexthop with a group - fails
998 run_cmd "$IP nexthop replace id 2 group 1"
999 log_test $? 2 "Replace nexthop with nexthop group"
1000
1001 # replace nexthop group with a nexthop - fails
1002 run_cmd "$IP nexthop replace id 101 dev veth1"
1003 log_test $? 2 "Replace nexthop group with nexthop"
1004
1005 # nexthop group with other attributes fail
1006 run_cmd "$IP nexthop add id 104 group 1 dev veth1"
1007 log_test $? 2 "Nexthop group and device"
1008
1009 # Tests to ensure that flushing works as expected.
1010 run_cmd "$IP nexthop add id 105 blackhole proto 99"
1011 run_cmd "$IP nexthop add id 106 blackhole proto 100"
1012 run_cmd "$IP nexthop add id 107 blackhole proto 99"
1013 run_cmd "$IP nexthop flush proto 99"
1014 check_nexthop "id 105" ""
1015 check_nexthop "id 106" "id 106 blackhole proto 100"
1016 check_nexthop "id 107" ""
1017 run_cmd "$IP nexthop flush proto 100"
1018 check_nexthop "id 106" ""
1019
1020 run_cmd "$IP nexthop flush proto 100"
1021 log_test $? 0 "Test proto flush"
1022
1023 run_cmd "$IP nexthop add id 104 group 1 blackhole"
1024 log_test $? 2 "Nexthop group and blackhole"
1025
1026 $IP nexthop flush >/dev/null 2>&1
1027}
1028
1029################################################################################
1030# usage
1031
1032usage()
1033{
1034 cat <<EOF
1035usage: ${0##*/} OPTS
1036
1037 -t <test> Test(s) to run (default: all)
1038 (options: $ALL_TESTS)
1039 -4 IPv4 tests only
1040 -6 IPv6 tests only
1041 -p Pause on fail
1042 -P Pause after each test before cleanup
1043 -v verbose mode (show commands and output)
1044
1045 Runtime test
1046 -n num Number of nexthops to target
1047 -N Use new style to install routes in DUT
1048
1049done
1050EOF
1051}
1052
1053################################################################################
1054# main
1055
1056while getopts :t:pP46hv o
1057do
1058 case $o in
1059 t) TESTS=$OPTARG;;
1060 4) TESTS=${IPV4_TESTS};;
1061 6) TESTS=${IPV6_TESTS};;
1062 p) PAUSE_ON_FAIL=yes;;
1063 P) PAUSE=yes;;
1064 v) VERBOSE=$(($VERBOSE + 1));;
1065 h) usage; exit 0;;
1066 *) usage; exit 1;;
1067 esac
1068done
1069
1070# make sure we don't pause twice
1071[ "${PAUSE}" = "yes" ] && PAUSE_ON_FAIL=no
1072
1073if [ "$(id -u)" -ne 0 ];then
1074 echo "SKIP: Need root privileges"
1075 exit $ksft_skip;
1076fi
1077
1078if [ ! -x "$(command -v ip)" ]; then
1079 echo "SKIP: Could not run test without ip tool"
1080 exit $ksft_skip
1081fi
1082
1083ip help 2>&1 | grep -q nexthop
1084if [ $? -ne 0 ]; then
1085 echo "SKIP: iproute2 too old, missing nexthop command"
1086 exit $ksft_skip
1087fi
1088
1089out=$(ip nexthop ls 2>&1 | grep -q "Operation not supported")
1090if [ $? -eq 0 ]; then
1091 echo "SKIP: kernel lacks nexthop support"
1092 exit $ksft_skip
1093fi
1094
1095for t in $TESTS
1096do
1097 case $t in
1098 none) IP="ip -netns peer"; setup; exit 0;;
1099 *) setup; $t; cleanup;;
1100 esac
1101done
1102
1103if [ "$TESTS" != "none" ]; then
1104 printf "\nTests passed: %3d\n" ${nsuccess}
1105 printf "Tests failed: %3d\n" ${nfail}
1106fi
1107
1108exit $ret