mirror of
https://github.com/torvalds/linux.git
synced 2025-01-01 15:51:46 +00:00
vxlan: vxlan_core: Support FDB flushing by destination VNI
Add support for flush VXLAN FDB entries by destination VNI. FDB entry is stored as {MAC, SRC_VNI} + remote. The destination VNI is an attribute of the remote. For multicast entries, the VXLAN driver stores a linked list of remotes for a given key. In user space, each remote is represented as a separate entry, so when flush is sent with filter of 'destination VNI', flush only the match remotes. In case that there are no additional remotes, destroy the entry. For example, the following are stored as one entry with several remotes: $ bridge fdb show dev vx10 00:00:00:00:00:00 dst 192.1.1.1 vni 3000 self permanent 00:00:00:00:00:00 dst 192.1.1.1 vni 4000 self permanent 00:00:00:00:00:00 dst 192.1.1.1 vni 2000 self permanent 00:00:00:00:00:00 dst 192.1.1.2 vni 2000 self permanent When user flush by VNI x, only the relevant remotes will be flushed: $ bridge fdb flush dev vx10 vni 2000 $ bridge fdb show dev vx10 00:00:00:00:00:00 dst 192.1.1.1 vni 3000 self permanent 00:00:00:00:00:00 dst 192.1.1.1 vni 4000 self permanent Signed-off-by: Amit Cohen <amcohen@nvidia.com> Reviewed-by: Petr Machata <petrm@nvidia.com> Reviewed-by: Ido Schimmel <idosch@nvidia.com> Signed-off-by: David S. Miller <davem@davemloft.net>
This commit is contained in:
parent
36c111233b
commit
c499fccb71
@ -3030,6 +3030,7 @@ struct vxlan_fdb_flush_desc {
|
|||||||
unsigned long flags_mask;
|
unsigned long flags_mask;
|
||||||
__be32 src_vni;
|
__be32 src_vni;
|
||||||
u32 nhid;
|
u32 nhid;
|
||||||
|
__be32 vni;
|
||||||
};
|
};
|
||||||
|
|
||||||
static bool vxlan_fdb_is_default_entry(const struct vxlan_fdb *f,
|
static bool vxlan_fdb_is_default_entry(const struct vxlan_fdb *f,
|
||||||
@ -3067,10 +3068,46 @@ static bool vxlan_fdb_flush_matches(const struct vxlan_fdb *f,
|
|||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
static bool
|
||||||
|
vxlan_fdb_flush_should_match_remotes(const struct vxlan_fdb_flush_desc *desc)
|
||||||
|
{
|
||||||
|
return !!desc->vni;
|
||||||
|
}
|
||||||
|
|
||||||
|
static bool
|
||||||
|
vxlan_fdb_flush_remote_matches(const struct vxlan_fdb_flush_desc *desc,
|
||||||
|
const struct vxlan_rdst *rd)
|
||||||
|
{
|
||||||
|
if (desc->vni && rd->remote_vni != desc->vni)
|
||||||
|
return false;
|
||||||
|
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
|
||||||
|
static void
|
||||||
|
vxlan_fdb_flush_match_remotes(struct vxlan_fdb *f, struct vxlan_dev *vxlan,
|
||||||
|
const struct vxlan_fdb_flush_desc *desc,
|
||||||
|
bool *p_destroy_fdb)
|
||||||
|
{
|
||||||
|
bool remotes_flushed = false;
|
||||||
|
struct vxlan_rdst *rd, *tmp;
|
||||||
|
|
||||||
|
list_for_each_entry_safe(rd, tmp, &f->remotes, list) {
|
||||||
|
if (!vxlan_fdb_flush_remote_matches(desc, rd))
|
||||||
|
continue;
|
||||||
|
|
||||||
|
vxlan_fdb_dst_destroy(vxlan, f, rd, true);
|
||||||
|
remotes_flushed = true;
|
||||||
|
}
|
||||||
|
|
||||||
|
*p_destroy_fdb = remotes_flushed && list_empty(&f->remotes);
|
||||||
|
}
|
||||||
|
|
||||||
/* Purge the forwarding table */
|
/* Purge the forwarding table */
|
||||||
static void vxlan_flush(struct vxlan_dev *vxlan,
|
static void vxlan_flush(struct vxlan_dev *vxlan,
|
||||||
const struct vxlan_fdb_flush_desc *desc)
|
const struct vxlan_fdb_flush_desc *desc)
|
||||||
{
|
{
|
||||||
|
bool match_remotes = vxlan_fdb_flush_should_match_remotes(desc);
|
||||||
unsigned int h;
|
unsigned int h;
|
||||||
|
|
||||||
for (h = 0; h < FDB_HASH_SIZE; ++h) {
|
for (h = 0; h < FDB_HASH_SIZE; ++h) {
|
||||||
@ -3084,6 +3121,16 @@ static void vxlan_flush(struct vxlan_dev *vxlan,
|
|||||||
if (!vxlan_fdb_flush_matches(f, vxlan, desc))
|
if (!vxlan_fdb_flush_matches(f, vxlan, desc))
|
||||||
continue;
|
continue;
|
||||||
|
|
||||||
|
if (match_remotes) {
|
||||||
|
bool destroy_fdb = false;
|
||||||
|
|
||||||
|
vxlan_fdb_flush_match_remotes(f, vxlan, desc,
|
||||||
|
&destroy_fdb);
|
||||||
|
|
||||||
|
if (!destroy_fdb)
|
||||||
|
continue;
|
||||||
|
}
|
||||||
|
|
||||||
vxlan_fdb_destroy(vxlan, f, true, true);
|
vxlan_fdb_destroy(vxlan, f, true, true);
|
||||||
}
|
}
|
||||||
spin_unlock_bh(&vxlan->hash_lock[h]);
|
spin_unlock_bh(&vxlan->hash_lock[h]);
|
||||||
@ -3093,6 +3140,7 @@ static void vxlan_flush(struct vxlan_dev *vxlan,
|
|||||||
static const struct nla_policy vxlan_del_bulk_policy[NDA_MAX + 1] = {
|
static const struct nla_policy vxlan_del_bulk_policy[NDA_MAX + 1] = {
|
||||||
[NDA_SRC_VNI] = { .type = NLA_U32 },
|
[NDA_SRC_VNI] = { .type = NLA_U32 },
|
||||||
[NDA_NH_ID] = { .type = NLA_U32 },
|
[NDA_NH_ID] = { .type = NLA_U32 },
|
||||||
|
[NDA_VNI] = { .type = NLA_U32 },
|
||||||
[NDA_NDM_STATE_MASK] = { .type = NLA_U16 },
|
[NDA_NDM_STATE_MASK] = { .type = NLA_U16 },
|
||||||
[NDA_NDM_FLAGS_MASK] = { .type = NLA_U8 },
|
[NDA_NDM_FLAGS_MASK] = { .type = NLA_U8 },
|
||||||
};
|
};
|
||||||
@ -3143,6 +3191,9 @@ static int vxlan_fdb_delete_bulk(struct nlmsghdr *nlh, struct net_device *dev,
|
|||||||
if (tb[NDA_NH_ID])
|
if (tb[NDA_NH_ID])
|
||||||
desc.nhid = nla_get_u32(tb[NDA_NH_ID]);
|
desc.nhid = nla_get_u32(tb[NDA_NH_ID]);
|
||||||
|
|
||||||
|
if (tb[NDA_VNI])
|
||||||
|
desc.vni = cpu_to_be32(nla_get_u32(tb[NDA_VNI]));
|
||||||
|
|
||||||
vxlan_flush(vxlan, &desc);
|
vxlan_flush(vxlan, &desc);
|
||||||
|
|
||||||
return 0;
|
return 0;
|
||||||
|
Loading…
Reference in New Issue
Block a user