2 * Copyright (c) 2007-2013 Nicira, Inc.
4 * This program is free software; you can redistribute it and/or
5 * modify it under the terms of version 2 of the GNU General Public
6 * License as published by the Free Software Foundation.
8 * This program is distributed in the hope that it will be useful, but
9 * WITHOUT ANY WARRANTY; without even the implied warranty of
10 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
11 * General Public License for more details.
13 * You should have received a copy of the GNU General Public License
14 * along with this program; if not, write to the Free Software
15 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
18 * This code is derived from kernel vxlan module.
21 #define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
23 #include <linux/kernel.h>
24 #include <linux/types.h>
25 #include <linux/module.h>
26 #include <linux/errno.h>
27 #include <linux/slab.h>
28 #include <linux/skbuff.h>
29 #include <linux/rculist.h>
30 #include <linux/netdevice.h>
33 #include <linux/udp.h>
34 #include <linux/igmp.h>
35 #include <linux/etherdevice.h>
36 #include <linux/if_ether.h>
37 #include <linux/if_vlan.h>
38 #include <linux/hash.h>
39 #include <linux/ethtool.h>
41 #include <net/ndisc.h>
43 #include <net/ip_tunnels.h>
46 #include <net/rtnetlink.h>
47 #include <net/route.h>
48 #include <net/dsfield.h>
49 #include <net/inet_ecn.h>
50 #include <net/net_namespace.h>
51 #include <net/netns/generic.h>
52 #include <net/vxlan.h>
58 #define PORT_HASH_BITS 8
59 #define PORT_HASH_SIZE (1<<PORT_HASH_BITS)
61 /* IP header + UDP + VXLAN + Ethernet header */
62 #define VXLAN_HEADROOM (20 + 8 + 8 + 14)
63 #define VXLAN_HLEN (sizeof(struct udphdr) + sizeof(struct vxlanhdr))
65 #define VXLAN_FLAGS 0x08000000 /* struct vxlanhdr.vx_flags required value. */
67 /* VXLAN protocol header */
73 static int vxlan_net_id;
75 static int vxlan_init_module(void);
76 static void vxlan_cleanup_module(void);
78 /* per-network namespace private data for this module */
80 struct hlist_head sock_list[PORT_HASH_SIZE];
84 /* Socket hash table head */
85 static inline struct hlist_head *vs_head(struct net *net, __be16 port)
87 struct vxlan_net *vn = net_generic(net, vxlan_net_id);
89 return &vn->sock_list[hash_32(ntohs(port), PORT_HASH_BITS)];
92 /* Find VXLAN socket based on network namespace and UDP port */
94 static struct vxlan_sock *vxlan_find_sock(struct net *net, __be16 port)
96 struct vxlan_sock *vs;
98 hlist_for_each_entry_rcu(vs, vs_head(net, port), hlist) {
99 if (inet_sport(vs->sock->sk) == port)
105 /* Callback from net/ipv4/udp.c to receive packets */
106 static int vxlan_udp_encap_recv(struct sock *sk, struct sk_buff *skb)
108 struct vxlan_sock *vs;
109 struct vxlanhdr *vxh;
111 /* Need Vxlan and inner Ethernet header to be present */
112 if (!pskb_may_pull(skb, VXLAN_HLEN))
115 /* Return packets with reserved bits set */
116 vxh = (struct vxlanhdr *)(udp_hdr(skb) + 1);
117 if (vxh->vx_flags != htonl(VXLAN_FLAGS) ||
118 (vxh->vx_vni & htonl(0xff))) {
119 pr_warn("invalid vxlan flags=%#x vni=%#x\n",
120 ntohl(vxh->vx_flags), ntohl(vxh->vx_vni));
124 if (iptunnel_pull_header(skb, VXLAN_HLEN, htons(ETH_P_TEB)))
127 vs = vxlan_find_sock(sock_net(sk), inet_sport(sk));
131 vs->rcv(vs, skb, vxh->vx_vni);
135 /* Consume bad packet */
140 /* Return non vxlan pkt */
144 static void vxlan_sock_put(struct sk_buff *skb)
149 /* On transmit, associate with the tunnel socket */
150 static void vxlan_set_owner(struct sock *sk, struct sk_buff *skb)
155 skb->destructor = vxlan_sock_put;
158 /* Compute source port for outgoing packet
159 * first choice to use L4 flow hash since it will spread
160 * better and maybe available from hardware
161 * secondary choice is to use jhash on the Ethernet header
163 __be16 vxlan_src_port(__u16 port_min, __u16 port_max, struct sk_buff *skb)
165 unsigned int range = (port_max - port_min) + 1;
168 hash = skb_get_rxhash(skb);
170 hash = jhash(skb->data, 2 * ETH_ALEN,
171 (__force u32) skb->protocol);
173 return htons((((u64) hash * range) >> 32) + port_min);
176 static void vxlan_gso(struct sk_buff *skb)
178 int udp_offset = skb_transport_offset(skb);
182 uh->len = htons(skb->len - udp_offset);
184 /* csum segment if tunnel sets skb with csum. */
185 if (unlikely(uh->check)) {
186 struct iphdr *iph = ip_hdr(skb);
188 uh->check = ~csum_tcpudp_magic(iph->saddr, iph->daddr,
189 skb->len - udp_offset,
191 uh->check = csum_fold(skb_checksum(skb, udp_offset,
192 skb->len - udp_offset, 0));
195 uh->check = CSUM_MANGLED_0;
198 skb->ip_summed = CHECKSUM_NONE;
201 static int handle_offloads(struct sk_buff *skb)
203 if (skb_is_gso(skb)) {
204 OVS_GSO_CB(skb)->fix_segment = vxlan_gso;
206 if (skb->ip_summed != CHECKSUM_PARTIAL)
207 skb->ip_summed = CHECKSUM_NONE;
212 int vxlan_xmit_skb(struct net *net, struct vxlan_sock *vs,
213 struct rtable *rt, struct sk_buff *skb,
214 __be32 src, __be32 dst, __u8 tos, __u8 ttl, __be16 df,
215 __be16 src_port, __be16 dst_port, __be32 vni)
217 struct vxlanhdr *vxh;
222 skb_reset_inner_headers(skb);
224 min_headroom = LL_RESERVED_SPACE(rt_dst(rt).dev) + rt_dst(rt).header_len
225 + VXLAN_HLEN + sizeof(struct iphdr)
226 + (vlan_tx_tag_present(skb) ? VLAN_HLEN : 0);
228 /* Need space for new headers (invalidates iph ptr) */
229 err = skb_cow_head(skb, min_headroom);
233 if (unlikely(vlan_deaccel_tag(skb)))
236 vxh = (struct vxlanhdr *) __skb_push(skb, sizeof(*vxh));
237 vxh->vx_flags = htonl(VXLAN_FLAGS);
240 __skb_push(skb, sizeof(*uh));
241 skb_reset_transport_header(skb);
245 uh->source = src_port;
247 uh->len = htons(skb->len);
250 vxlan_set_owner(vs->sock->sk, skb);
252 err = handle_offloads(skb);
256 return iptunnel_xmit(net, rt, skb, src, dst,
257 IPPROTO_UDP, tos, ttl, df);
260 static void rcu_free_vs(struct rcu_head *rcu)
262 struct vxlan_sock *vs = container_of(rcu, struct vxlan_sock, rcu);
267 static void vxlan_del_work(struct work_struct *work)
269 struct vxlan_sock *vs = container_of(work, struct vxlan_sock, del_work);
271 sk_release_kernel(vs->sock->sk);
272 call_rcu(&vs->rcu, rcu_free_vs);
273 vxlan_cleanup_module();
276 static struct vxlan_sock *vxlan_socket_create(struct net *net, __be16 port,
277 vxlan_rcv_t *rcv, void *data)
279 struct vxlan_net *vn = net_generic(net, vxlan_net_id);
280 struct vxlan_sock *vs;
282 struct sockaddr_in vxlan_addr = {
283 .sin_family = AF_INET,
284 .sin_addr.s_addr = htonl(INADDR_ANY),
289 vs = kmalloc(sizeof(*vs), GFP_KERNEL);
291 pr_debug("memory alocation failure\n");
292 return ERR_PTR(-ENOMEM);
295 INIT_WORK(&vs->del_work, vxlan_del_work);
297 /* Create UDP socket for encapsulation receive. */
298 rc = sock_create_kern(AF_INET, SOCK_DGRAM, IPPROTO_UDP, &vs->sock);
300 pr_debug("UDP socket create failed\n");
305 /* Put in proper namespace */
307 sk_change_net(sk, net);
309 rc = kernel_bind(vs->sock, (struct sockaddr *) &vxlan_addr,
312 pr_debug("bind for UDP socket %pI4:%u (%d)\n",
313 &vxlan_addr.sin_addr, ntohs(vxlan_addr.sin_port), rc);
314 sk_release_kernel(sk);
321 /* Disable multicast loopback */
322 inet_sk(sk)->mc_loop = 0;
323 spin_lock(&vn->sock_lock);
324 hlist_add_head_rcu(&vs->hlist, vs_head(net, port));
325 spin_unlock(&vn->sock_lock);
327 /* Mark socket as an encapsulation socket. */
328 udp_sk(sk)->encap_type = 1;
329 udp_sk(sk)->encap_rcv = vxlan_udp_encap_recv;
334 struct vxlan_sock *vxlan_sock_add(struct net *net, __be16 port,
335 vxlan_rcv_t *rcv, void *data,
338 struct vxlan_net *vn;
339 struct vxlan_sock *vs;
342 err = vxlan_init_module();
346 vn = net_generic(net, vxlan_net_id);
347 vs = vxlan_socket_create(net, port, rcv, data);
351 void vxlan_sock_release(struct vxlan_sock *vs)
353 struct vxlan_net *vn = net_generic(sock_net(vs->sock->sk), vxlan_net_id);
355 spin_lock(&vn->sock_lock);
356 hlist_del_rcu(&vs->hlist);
357 spin_unlock(&vn->sock_lock);
359 queue_work(&vs->del_work);
362 static int vxlan_init_net(struct net *net)
364 struct vxlan_net *vn = net_generic(net, vxlan_net_id);
367 spin_lock_init(&vn->sock_lock);
369 for (h = 0; h < PORT_HASH_SIZE; ++h)
370 INIT_HLIST_HEAD(&vn->sock_list[h]);
375 static struct pernet_operations vxlan_net_ops = {
376 .init = vxlan_init_net,
378 .size = sizeof(struct vxlan_net),
382 static DEFINE_MUTEX(init_lock);
383 DEFINE_COMPAT_PNET_REG_FUNC(device);
385 static int vxlan_init_module(void)
389 mutex_lock(&init_lock);
392 err = register_pernet_device(&vxlan_net_ops);
396 mutex_unlock(&init_lock);
400 static void vxlan_cleanup_module(void)
402 mutex_lock(&init_lock);
406 unregister_pernet_device(&vxlan_net_ops);
408 mutex_unlock(&init_lock);