2 * Copyright (c) 2009, 2010, 2011 Nicira Networks.
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at:
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
19 #include "ofproto/private.h"
25 #include "byte-order.h"
30 #include "dynamic-string.h"
31 #include "fail-open.h"
34 #include "mac-learning.h"
35 #include "multipath.h"
42 #include "ofp-print.h"
43 #include "ofproto-sflow.h"
44 #include "poll-loop.h"
46 #include "unaligned.h"
48 #include "vlan-bitmap.h"
51 VLOG_DEFINE_THIS_MODULE(ofproto_dpif);
53 COVERAGE_DEFINE(ofproto_dpif_ctlr_action);
54 COVERAGE_DEFINE(ofproto_dpif_expired);
55 COVERAGE_DEFINE(ofproto_dpif_no_packet_in);
56 COVERAGE_DEFINE(ofproto_dpif_xlate);
57 COVERAGE_DEFINE(facet_changed_rule);
58 COVERAGE_DEFINE(facet_invalidated);
59 COVERAGE_DEFINE(facet_revalidate);
60 COVERAGE_DEFINE(facet_unexpected);
62 /* Maximum depth of flow table recursion (due to NXAST_RESUBMIT actions) in a
63 * flow translation. */
64 #define MAX_RESUBMIT_RECURSION 16
72 long long int used; /* Time last used; time created if not used. */
76 * - Do include packets and bytes from facets that have been deleted or
77 * whose own statistics have been folded into the rule.
79 * - Do include packets and bytes sent "by hand" that were accounted to
80 * the rule without any facet being involved (this is a rare corner
81 * case in rule_execute()).
83 * - Do not include packet or bytes that can be obtained from any facet's
84 * packet_count or byte_count member or that can be obtained from the
85 * datapath by, e.g., dpif_flow_get() for any facet.
87 uint64_t packet_count; /* Number of packets received. */
88 uint64_t byte_count; /* Number of bytes received. */
90 struct list facets; /* List of "struct facet"s. */
93 static struct rule_dpif *rule_dpif_cast(const struct rule *rule)
95 return rule ? CONTAINER_OF(rule, struct rule_dpif, up) : NULL;
98 static struct rule_dpif *rule_dpif_lookup(struct ofproto_dpif *ofproto,
99 const struct flow *flow);
101 #define MAX_MIRRORS 32
102 typedef uint32_t mirror_mask_t;
103 #define MIRROR_MASK_C(X) UINT32_C(X)
104 BUILD_ASSERT_DECL(sizeof(mirror_mask_t) * CHAR_BIT >= MAX_MIRRORS);
106 struct ofproto_dpif *ofproto; /* Owning ofproto. */
107 size_t idx; /* In ofproto's "mirrors" array. */
108 void *aux; /* Key supplied by ofproto's client. */
109 char *name; /* Identifier for log messages. */
111 /* Selection criteria. */
112 struct hmapx srcs; /* Contains "struct ofbundle *"s. */
113 struct hmapx dsts; /* Contains "struct ofbundle *"s. */
114 unsigned long *vlans; /* Bitmap of chosen VLANs, NULL selects all. */
116 /* Output (mutually exclusive). */
117 struct ofbundle *out; /* Output port or NULL. */
118 int out_vlan; /* Output VLAN or -1. */
121 static void mirror_destroy(struct ofmirror *);
123 /* A group of one or more OpenFlow ports. */
124 #define OFBUNDLE_FLOOD ((struct ofbundle *) 1)
126 struct ofproto_dpif *ofproto; /* Owning ofproto. */
127 struct hmap_node hmap_node; /* In struct ofproto's "bundles" hmap. */
128 void *aux; /* Key supplied by ofproto's client. */
129 char *name; /* Identifier for log messages. */
132 struct list ports; /* Contains "struct ofport"s. */
133 int vlan; /* -1=trunk port, else a 12-bit VLAN ID. */
134 unsigned long *trunks; /* Bitmap of trunked VLANs, if 'vlan' == -1.
135 * NULL if all VLANs are trunked. */
136 struct lacp *lacp; /* LACP if LACP is enabled, otherwise NULL. */
137 struct bond *bond; /* Nonnull iff more than one port. */
140 bool floodable; /* True if no port has OFPPC_NO_FLOOD set. */
142 /* Port mirroring info. */
143 mirror_mask_t src_mirrors; /* Mirrors triggered when packet received. */
144 mirror_mask_t dst_mirrors; /* Mirrors triggered when packet sent. */
145 mirror_mask_t mirror_out; /* Mirrors that output to this bundle. */
148 static void bundle_remove(struct ofport *);
149 static void bundle_destroy(struct ofbundle *);
150 static void bundle_del_port(struct ofport_dpif *);
151 static void bundle_run(struct ofbundle *);
152 static void bundle_wait(struct ofbundle *);
154 struct action_xlate_ctx {
155 /* action_xlate_ctx_init() initializes these members. */
158 struct ofproto_dpif *ofproto;
160 /* Flow to which the OpenFlow actions apply. xlate_actions() will modify
161 * this flow when actions change header fields. */
164 /* The packet corresponding to 'flow', or a null pointer if we are
165 * revalidating without a packet to refer to. */
166 const struct ofpbuf *packet;
168 /* If nonnull, called just before executing a resubmit action.
170 * This is normally null so the client has to set it manually after
171 * calling action_xlate_ctx_init(). */
172 void (*resubmit_hook)(struct action_xlate_ctx *, struct rule_dpif *);
174 /* xlate_actions() initializes and uses these members. The client might want
175 * to look at them after it returns. */
177 struct ofpbuf *odp_actions; /* Datapath actions. */
178 tag_type tags; /* Tags associated with OFPP_NORMAL actions. */
179 bool may_set_up_flow; /* True ordinarily; false if the actions must
180 * be reassessed for every packet. */
181 uint16_t nf_output_iface; /* Output interface index for NetFlow. */
183 /* xlate_actions() initializes and uses these members, but the client has no
184 * reason to look at them. */
186 int recurse; /* Recursion level, via xlate_table_action. */
187 uint32_t priority; /* Current flow priority. 0 if none. */
188 struct flow base_flow; /* Flow at the last commit. */
189 uint32_t base_priority; /* Priority at the last commit. */
192 static void action_xlate_ctx_init(struct action_xlate_ctx *,
193 struct ofproto_dpif *, const struct flow *,
194 const struct ofpbuf *);
195 static struct ofpbuf *xlate_actions(struct action_xlate_ctx *,
196 const union ofp_action *in, size_t n_in);
198 /* An exact-match instantiation of an OpenFlow flow. */
200 long long int used; /* Time last used; time created if not used. */
204 * - Do include packets and bytes sent "by hand", e.g. with
207 * - Do include packets and bytes that were obtained from the datapath
208 * when a flow was deleted (e.g. dpif_flow_del()) or when its
209 * statistics were reset (e.g. dpif_flow_put() with
210 * DPIF_FP_ZERO_STATS).
212 * - Do not include any packets or bytes that can currently be obtained
213 * from the datapath by, e.g., dpif_flow_get().
215 uint64_t packet_count; /* Number of packets received. */
216 uint64_t byte_count; /* Number of bytes received. */
218 uint64_t dp_packet_count; /* Last known packet count in the datapath. */
219 uint64_t dp_byte_count; /* Last known byte count in the datapath. */
221 uint64_t rs_packet_count; /* Packets pushed to resubmit children. */
222 uint64_t rs_byte_count; /* Bytes pushed to resubmit children. */
223 long long int rs_used; /* Used time pushed to resubmit children. */
225 /* Number of bytes passed to account_cb. This may include bytes that can
226 * currently obtained from the datapath (thus, it can be greater than
228 uint64_t accounted_bytes;
230 struct hmap_node hmap_node; /* In owning ofproto's 'facets' hmap. */
231 struct list list_node; /* In owning rule's 'facets' list. */
232 struct rule_dpif *rule; /* Owning rule. */
233 struct flow flow; /* Exact-match flow. */
234 bool installed; /* Installed in datapath? */
235 bool may_install; /* True ordinarily; false if actions must
236 * be reassessed for every packet. */
237 size_t actions_len; /* Number of bytes in actions[]. */
238 struct nlattr *actions; /* Datapath actions. */
239 tag_type tags; /* Tags. */
240 struct netflow_flow nf_flow; /* Per-flow NetFlow tracking data. */
243 static struct facet *facet_create(struct rule_dpif *, const struct flow *,
244 const struct ofpbuf *packet);
245 static void facet_remove(struct ofproto_dpif *, struct facet *);
246 static void facet_free(struct facet *);
248 static struct facet *facet_find(struct ofproto_dpif *, const struct flow *);
249 static struct facet *facet_lookup_valid(struct ofproto_dpif *,
250 const struct flow *);
251 static bool facet_revalidate(struct ofproto_dpif *, struct facet *);
253 static void facet_execute(struct ofproto_dpif *, struct facet *,
254 struct ofpbuf *packet);
256 static int facet_put__(struct ofproto_dpif *, struct facet *,
257 const struct nlattr *actions, size_t actions_len,
258 struct dpif_flow_stats *);
259 static void facet_install(struct ofproto_dpif *, struct facet *,
261 static void facet_uninstall(struct ofproto_dpif *, struct facet *);
262 static void facet_flush_stats(struct ofproto_dpif *, struct facet *);
264 static void facet_make_actions(struct ofproto_dpif *, struct facet *,
265 const struct ofpbuf *packet);
266 static void facet_update_time(struct ofproto_dpif *, struct facet *,
268 static void facet_update_stats(struct ofproto_dpif *, struct facet *,
269 const struct dpif_flow_stats *);
270 static void facet_reset_dp_stats(struct facet *, struct dpif_flow_stats *);
271 static void facet_push_stats(struct facet *);
272 static void facet_account(struct ofproto_dpif *, struct facet *,
273 uint64_t extra_bytes);
275 static bool facet_is_controller_flow(struct facet *);
277 static void flow_push_stats(const struct rule_dpif *,
278 struct flow *, uint64_t packets, uint64_t bytes,
285 struct ofbundle *bundle; /* Bundle that contains this port, if any. */
286 struct list bundle_node; /* In struct ofbundle's "ports" list. */
287 struct cfm *cfm; /* Connectivity Fault Management, if any. */
288 tag_type tag; /* Tag associated with this port. */
289 uint32_t bond_stable_id; /* stable_id to use as bond slave, or 0. */
292 static struct ofport_dpif *
293 ofport_dpif_cast(const struct ofport *ofport)
295 assert(ofport->ofproto->ofproto_class == &ofproto_dpif_class);
296 return ofport ? CONTAINER_OF(ofport, struct ofport_dpif, up) : NULL;
299 static void port_run(struct ofport_dpif *);
300 static void port_wait(struct ofport_dpif *);
301 static int set_cfm(struct ofport *, const struct cfm_settings *);
303 struct ofproto_dpif {
312 struct netflow *netflow;
313 struct ofproto_sflow *sflow;
314 struct hmap bundles; /* Contains "struct ofbundle"s. */
315 struct mac_learning *ml;
316 struct ofmirror *mirrors[MAX_MIRRORS];
317 bool has_bonded_bundles;
320 struct timer next_expiration;
324 bool need_revalidate;
325 struct tag_set revalidate_set;
328 static void ofproto_dpif_unixctl_init(void);
330 static struct ofproto_dpif *
331 ofproto_dpif_cast(const struct ofproto *ofproto)
333 assert(ofproto->ofproto_class == &ofproto_dpif_class);
334 return CONTAINER_OF(ofproto, struct ofproto_dpif, up);
337 static struct ofport_dpif *get_ofp_port(struct ofproto_dpif *,
339 static struct ofport_dpif *get_odp_port(struct ofproto_dpif *,
342 /* Packet processing. */
343 static void update_learning_table(struct ofproto_dpif *,
344 const struct flow *, int vlan,
346 static bool is_admissible(struct ofproto_dpif *, const struct flow *,
347 bool have_packet, tag_type *, int *vlanp,
348 struct ofbundle **in_bundlep);
349 static void handle_upcall(struct ofproto_dpif *, struct dpif_upcall *);
351 /* Flow expiration. */
352 static int expire(struct ofproto_dpif *);
355 static int send_packet(struct ofproto_dpif *, uint32_t odp_port,
356 const struct ofpbuf *packet);
358 /* Global variables. */
359 static struct vlog_rate_limit rl = VLOG_RATE_LIMIT_INIT(1, 5);
361 /* Factory functions. */
364 enumerate_types(struct sset *types)
366 dp_enumerate_types(types);
370 enumerate_names(const char *type, struct sset *names)
372 return dp_enumerate_names(type, names);
376 del(const char *type, const char *name)
381 error = dpif_open(name, type, &dpif);
383 error = dpif_delete(dpif);
389 /* Basic life-cycle. */
391 static struct ofproto *
394 struct ofproto_dpif *ofproto = xmalloc(sizeof *ofproto);
399 dealloc(struct ofproto *ofproto_)
401 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
406 construct(struct ofproto *ofproto_)
408 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
409 const char *name = ofproto->up.name;
413 error = dpif_create_and_open(name, ofproto->up.type, &ofproto->dpif);
415 VLOG_ERR("failed to open datapath %s: %s", name, strerror(error));
419 ofproto->max_ports = dpif_get_max_ports(ofproto->dpif);
420 ofproto->n_matches = 0;
422 error = dpif_recv_set_mask(ofproto->dpif,
423 ((1u << DPIF_UC_MISS) |
424 (1u << DPIF_UC_ACTION) |
425 (1u << DPIF_UC_SAMPLE)));
427 VLOG_ERR("failed to listen on datapath %s: %s", name, strerror(error));
428 dpif_close(ofproto->dpif);
431 dpif_flow_flush(ofproto->dpif);
432 dpif_recv_purge(ofproto->dpif);
434 ofproto->netflow = NULL;
435 ofproto->sflow = NULL;
436 hmap_init(&ofproto->bundles);
437 ofproto->ml = mac_learning_create();
438 for (i = 0; i < MAX_MIRRORS; i++) {
439 ofproto->mirrors[i] = NULL;
441 ofproto->has_bonded_bundles = false;
443 timer_set_duration(&ofproto->next_expiration, 1000);
445 hmap_init(&ofproto->facets);
446 ofproto->need_revalidate = false;
447 tag_set_init(&ofproto->revalidate_set);
449 ofproto->up.tables = xmalloc(sizeof *ofproto->up.tables);
450 classifier_init(&ofproto->up.tables[0]);
451 ofproto->up.n_tables = 1;
453 ofproto_dpif_unixctl_init();
459 destruct(struct ofproto *ofproto_)
461 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
464 for (i = 0; i < MAX_MIRRORS; i++) {
465 mirror_destroy(ofproto->mirrors[i]);
468 netflow_destroy(ofproto->netflow);
469 ofproto_sflow_destroy(ofproto->sflow);
470 hmap_destroy(&ofproto->bundles);
471 mac_learning_destroy(ofproto->ml);
473 hmap_destroy(&ofproto->facets);
475 dpif_close(ofproto->dpif);
479 run(struct ofproto *ofproto_)
481 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
482 struct ofport_dpif *ofport;
483 struct ofbundle *bundle;
486 dpif_run(ofproto->dpif);
488 for (i = 0; i < 50; i++) {
489 struct dpif_upcall packet;
492 error = dpif_recv(ofproto->dpif, &packet);
494 if (error == ENODEV) {
495 /* Datapath destroyed. */
501 handle_upcall(ofproto, &packet);
504 if (timer_expired(&ofproto->next_expiration)) {
505 int delay = expire(ofproto);
506 timer_set_duration(&ofproto->next_expiration, delay);
509 if (ofproto->netflow) {
510 netflow_run(ofproto->netflow);
512 if (ofproto->sflow) {
513 ofproto_sflow_run(ofproto->sflow);
516 HMAP_FOR_EACH (ofport, up.hmap_node, &ofproto->up.ports) {
519 HMAP_FOR_EACH (bundle, hmap_node, &ofproto->bundles) {
523 /* Now revalidate if there's anything to do. */
524 if (ofproto->need_revalidate
525 || !tag_set_is_empty(&ofproto->revalidate_set)) {
526 struct tag_set revalidate_set = ofproto->revalidate_set;
527 bool revalidate_all = ofproto->need_revalidate;
528 struct facet *facet, *next;
530 /* Clear the revalidation flags. */
531 tag_set_init(&ofproto->revalidate_set);
532 ofproto->need_revalidate = false;
534 HMAP_FOR_EACH_SAFE (facet, next, hmap_node, &ofproto->facets) {
536 || tag_set_intersects(&revalidate_set, facet->tags)) {
537 facet_revalidate(ofproto, facet);
546 wait(struct ofproto *ofproto_)
548 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
549 struct ofport_dpif *ofport;
550 struct ofbundle *bundle;
552 dpif_wait(ofproto->dpif);
553 dpif_recv_wait(ofproto->dpif);
554 if (ofproto->sflow) {
555 ofproto_sflow_wait(ofproto->sflow);
557 if (!tag_set_is_empty(&ofproto->revalidate_set)) {
558 poll_immediate_wake();
560 HMAP_FOR_EACH (ofport, up.hmap_node, &ofproto->up.ports) {
563 HMAP_FOR_EACH (bundle, hmap_node, &ofproto->bundles) {
566 if (ofproto->need_revalidate) {
567 /* Shouldn't happen, but if it does just go around again. */
568 VLOG_DBG_RL(&rl, "need revalidate in ofproto_wait_cb()");
569 poll_immediate_wake();
571 timer_wait(&ofproto->next_expiration);
576 flush(struct ofproto *ofproto_)
578 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
579 struct facet *facet, *next_facet;
581 HMAP_FOR_EACH_SAFE (facet, next_facet, hmap_node, &ofproto->facets) {
582 /* Mark the facet as not installed so that facet_remove() doesn't
583 * bother trying to uninstall it. There is no point in uninstalling it
584 * individually since we are about to blow away all the facets with
585 * dpif_flow_flush(). */
586 facet->installed = false;
587 facet->dp_packet_count = 0;
588 facet->dp_byte_count = 0;
589 facet_remove(ofproto, facet);
591 dpif_flow_flush(ofproto->dpif);
595 get_features(struct ofproto *ofproto_ OVS_UNUSED,
596 bool *arp_match_ip, uint32_t *actions)
598 *arp_match_ip = true;
599 *actions = ((1u << OFPAT_OUTPUT) |
600 (1u << OFPAT_SET_VLAN_VID) |
601 (1u << OFPAT_SET_VLAN_PCP) |
602 (1u << OFPAT_STRIP_VLAN) |
603 (1u << OFPAT_SET_DL_SRC) |
604 (1u << OFPAT_SET_DL_DST) |
605 (1u << OFPAT_SET_NW_SRC) |
606 (1u << OFPAT_SET_NW_DST) |
607 (1u << OFPAT_SET_NW_TOS) |
608 (1u << OFPAT_SET_TP_SRC) |
609 (1u << OFPAT_SET_TP_DST) |
610 (1u << OFPAT_ENQUEUE));
614 get_tables(struct ofproto *ofproto_, struct ofp_table_stats *ots)
616 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
619 strcpy(ots->name, "classifier");
621 dpif_get_dp_stats(ofproto->dpif, &s);
622 put_32aligned_be64(&ots->lookup_count, htonll(s.n_hit + s.n_missed));
623 put_32aligned_be64(&ots->matched_count,
624 htonll(s.n_hit + ofproto->n_matches));
628 set_netflow(struct ofproto *ofproto_,
629 const struct netflow_options *netflow_options)
631 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
633 if (netflow_options) {
634 if (!ofproto->netflow) {
635 ofproto->netflow = netflow_create();
637 return netflow_set_options(ofproto->netflow, netflow_options);
639 netflow_destroy(ofproto->netflow);
640 ofproto->netflow = NULL;
645 static struct ofport *
648 struct ofport_dpif *port = xmalloc(sizeof *port);
653 port_dealloc(struct ofport *port_)
655 struct ofport_dpif *port = ofport_dpif_cast(port_);
660 port_construct(struct ofport *port_)
662 struct ofport_dpif *port = ofport_dpif_cast(port_);
663 struct ofproto_dpif *ofproto = ofproto_dpif_cast(port->up.ofproto);
665 port->odp_port = ofp_port_to_odp_port(port->up.ofp_port);
668 port->tag = tag_create_random();
670 if (ofproto->sflow) {
671 ofproto_sflow_add_port(ofproto->sflow, port->odp_port,
672 netdev_get_name(port->up.netdev));
679 port_destruct(struct ofport *port_)
681 struct ofport_dpif *port = ofport_dpif_cast(port_);
682 struct ofproto_dpif *ofproto = ofproto_dpif_cast(port->up.ofproto);
684 bundle_remove(port_);
685 set_cfm(port_, NULL);
686 if (ofproto->sflow) {
687 ofproto_sflow_del_port(ofproto->sflow, port->odp_port);
692 port_modified(struct ofport *port_)
694 struct ofport_dpif *port = ofport_dpif_cast(port_);
696 if (port->bundle && port->bundle->bond) {
697 bond_slave_set_netdev(port->bundle->bond, port, port->up.netdev);
702 port_reconfigured(struct ofport *port_, ovs_be32 old_config)
704 struct ofport_dpif *port = ofport_dpif_cast(port_);
705 struct ofproto_dpif *ofproto = ofproto_dpif_cast(port->up.ofproto);
706 ovs_be32 changed = old_config ^ port->up.opp.config;
708 if (changed & htonl(OFPPC_NO_RECV | OFPPC_NO_RECV_STP |
709 OFPPC_NO_FWD | OFPPC_NO_FLOOD)) {
710 ofproto->need_revalidate = true;
715 set_sflow(struct ofproto *ofproto_,
716 const struct ofproto_sflow_options *sflow_options)
718 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
719 struct ofproto_sflow *os = ofproto->sflow;
722 struct ofport_dpif *ofport;
724 os = ofproto->sflow = ofproto_sflow_create(ofproto->dpif);
725 HMAP_FOR_EACH (ofport, up.hmap_node, &ofproto->up.ports) {
726 ofproto_sflow_add_port(os, ofport->odp_port,
727 netdev_get_name(ofport->up.netdev));
730 ofproto_sflow_set_options(os, sflow_options);
732 ofproto_sflow_destroy(os);
733 ofproto->sflow = NULL;
739 set_cfm(struct ofport *ofport_, const struct cfm_settings *s)
741 struct ofport_dpif *ofport = ofport_dpif_cast(ofport_);
748 ofport->cfm = cfm_create(netdev_get_name(ofport->up.netdev));
751 if (cfm_configure(ofport->cfm, s)) {
757 cfm_destroy(ofport->cfm);
763 get_cfm_fault(const struct ofport *ofport_)
765 struct ofport_dpif *ofport = ofport_dpif_cast(ofport_);
767 return ofport->cfm ? cfm_get_fault(ofport->cfm) : -1;
772 /* Expires all MAC learning entries associated with 'port' and forces ofproto
773 * to revalidate every flow. */
775 bundle_flush_macs(struct ofbundle *bundle)
777 struct ofproto_dpif *ofproto = bundle->ofproto;
778 struct mac_learning *ml = ofproto->ml;
779 struct mac_entry *mac, *next_mac;
781 ofproto->need_revalidate = true;
782 LIST_FOR_EACH_SAFE (mac, next_mac, lru_node, &ml->lrus) {
783 if (mac->port.p == bundle) {
784 mac_learning_expire(ml, mac);
789 static struct ofbundle *
790 bundle_lookup(const struct ofproto_dpif *ofproto, void *aux)
792 struct ofbundle *bundle;
794 HMAP_FOR_EACH_IN_BUCKET (bundle, hmap_node, hash_pointer(aux, 0),
796 if (bundle->aux == aux) {
803 /* Looks up each of the 'n_auxes' pointers in 'auxes' as bundles and adds the
804 * ones that are found to 'bundles'. */
806 bundle_lookup_multiple(struct ofproto_dpif *ofproto,
807 void **auxes, size_t n_auxes,
808 struct hmapx *bundles)
813 for (i = 0; i < n_auxes; i++) {
814 struct ofbundle *bundle = bundle_lookup(ofproto, auxes[i]);
816 hmapx_add(bundles, bundle);
822 bundle_del_port(struct ofport_dpif *port)
824 struct ofbundle *bundle = port->bundle;
826 bundle->ofproto->need_revalidate = true;
828 list_remove(&port->bundle_node);
832 lacp_slave_unregister(bundle->lacp, port);
835 bond_slave_unregister(bundle->bond, port);
838 bundle->floodable = true;
839 LIST_FOR_EACH (port, bundle_node, &bundle->ports) {
840 if (port->up.opp.config & htonl(OFPPC_NO_FLOOD)) {
841 bundle->floodable = false;
847 bundle_add_port(struct ofbundle *bundle, uint32_t ofp_port,
848 struct lacp_slave_settings *lacp,
849 uint32_t bond_stable_id)
851 struct ofport_dpif *port;
853 port = get_ofp_port(bundle->ofproto, ofp_port);
858 if (port->bundle != bundle) {
859 bundle->ofproto->need_revalidate = true;
861 bundle_del_port(port);
864 port->bundle = bundle;
865 list_push_back(&bundle->ports, &port->bundle_node);
866 if (port->up.opp.config & htonl(OFPPC_NO_FLOOD)) {
867 bundle->floodable = false;
871 lacp_slave_register(bundle->lacp, port, lacp);
874 port->bond_stable_id = bond_stable_id;
880 bundle_destroy(struct ofbundle *bundle)
882 struct ofproto_dpif *ofproto;
883 struct ofport_dpif *port, *next_port;
890 ofproto = bundle->ofproto;
891 for (i = 0; i < MAX_MIRRORS; i++) {
892 struct ofmirror *m = ofproto->mirrors[i];
894 if (m->out == bundle) {
896 } else if (hmapx_find_and_delete(&m->srcs, bundle)
897 || hmapx_find_and_delete(&m->dsts, bundle)) {
898 ofproto->need_revalidate = true;
903 LIST_FOR_EACH_SAFE (port, next_port, bundle_node, &bundle->ports) {
904 bundle_del_port(port);
907 bundle_flush_macs(bundle);
908 hmap_remove(&ofproto->bundles, &bundle->hmap_node);
910 free(bundle->trunks);
911 lacp_destroy(bundle->lacp);
912 bond_destroy(bundle->bond);
917 bundle_set(struct ofproto *ofproto_, void *aux,
918 const struct ofproto_bundle_settings *s)
920 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
921 bool need_flush = false;
922 const unsigned long *trunks;
923 struct ofport_dpif *port;
924 struct ofbundle *bundle;
929 bundle_destroy(bundle_lookup(ofproto, aux));
933 assert(s->n_slaves == 1 || s->bond != NULL);
934 assert((s->lacp != NULL) == (s->lacp_slaves != NULL));
936 bundle = bundle_lookup(ofproto, aux);
938 bundle = xmalloc(sizeof *bundle);
940 bundle->ofproto = ofproto;
941 hmap_insert(&ofproto->bundles, &bundle->hmap_node,
942 hash_pointer(aux, 0));
946 list_init(&bundle->ports);
948 bundle->trunks = NULL;
952 bundle->floodable = true;
954 bundle->src_mirrors = 0;
955 bundle->dst_mirrors = 0;
956 bundle->mirror_out = 0;
959 if (!bundle->name || strcmp(s->name, bundle->name)) {
961 bundle->name = xstrdup(s->name);
967 bundle->lacp = lacp_create();
969 lacp_configure(bundle->lacp, s->lacp);
971 lacp_destroy(bundle->lacp);
975 /* Update set of ports. */
977 for (i = 0; i < s->n_slaves; i++) {
978 if (!bundle_add_port(bundle, s->slaves[i],
979 s->lacp ? &s->lacp_slaves[i] : NULL,
980 s->bond_stable_ids ? s->bond_stable_ids[i] : 0)) {
984 if (!ok || list_size(&bundle->ports) != s->n_slaves) {
985 struct ofport_dpif *next_port;
987 LIST_FOR_EACH_SAFE (port, next_port, bundle_node, &bundle->ports) {
988 for (i = 0; i < s->n_slaves; i++) {
989 if (s->slaves[i] == port->up.ofp_port) {
994 bundle_del_port(port);
998 assert(list_size(&bundle->ports) <= s->n_slaves);
1000 if (list_is_empty(&bundle->ports)) {
1001 bundle_destroy(bundle);
1006 if (s->vlan != bundle->vlan) {
1007 bundle->vlan = s->vlan;
1011 /* Get trunked VLANs. */
1012 trunks = s->vlan == -1 ? NULL : s->trunks;
1013 if (!vlan_bitmap_equal(trunks, bundle->trunks)) {
1014 free(bundle->trunks);
1015 bundle->trunks = vlan_bitmap_clone(trunks);
1020 if (!list_is_short(&bundle->ports)) {
1021 bundle->ofproto->has_bonded_bundles = true;
1023 if (bond_reconfigure(bundle->bond, s->bond)) {
1024 ofproto->need_revalidate = true;
1027 bundle->bond = bond_create(s->bond);
1028 ofproto->need_revalidate = true;
1031 LIST_FOR_EACH (port, bundle_node, &bundle->ports) {
1032 bond_slave_register(bundle->bond, port, port->bond_stable_id,
1036 bond_destroy(bundle->bond);
1037 bundle->bond = NULL;
1040 /* If we changed something that would affect MAC learning, un-learn
1041 * everything on this port and force flow revalidation. */
1043 bundle_flush_macs(bundle);
1050 bundle_remove(struct ofport *port_)
1052 struct ofport_dpif *port = ofport_dpif_cast(port_);
1053 struct ofbundle *bundle = port->bundle;
1056 bundle_del_port(port);
1057 if (list_is_empty(&bundle->ports)) {
1058 bundle_destroy(bundle);
1059 } else if (list_is_short(&bundle->ports)) {
1060 bond_destroy(bundle->bond);
1061 bundle->bond = NULL;
1067 send_pdu_cb(void *port_, const struct lacp_pdu *pdu)
1069 static struct vlog_rate_limit rl = VLOG_RATE_LIMIT_INIT(1, 10);
1070 struct ofport_dpif *port = port_;
1071 uint8_t ea[ETH_ADDR_LEN];
1074 error = netdev_get_etheraddr(port->up.netdev, ea);
1076 struct lacp_pdu *packet_pdu;
1077 struct ofpbuf packet;
1079 ofpbuf_init(&packet, 0);
1080 packet_pdu = eth_compose(&packet, eth_addr_lacp, ea, ETH_TYPE_LACP,
1081 sizeof *packet_pdu);
1083 error = netdev_send(port->up.netdev, &packet);
1085 VLOG_WARN_RL(&rl, "port %s: sending LACP PDU on iface %s failed "
1086 "(%s)", port->bundle->name,
1087 netdev_get_name(port->up.netdev), strerror(error));
1089 ofpbuf_uninit(&packet);
1091 VLOG_ERR_RL(&rl, "port %s: cannot obtain Ethernet address of iface "
1092 "%s (%s)", port->bundle->name,
1093 netdev_get_name(port->up.netdev), strerror(error));
1098 bundle_send_learning_packets(struct ofbundle *bundle)
1100 struct ofproto_dpif *ofproto = bundle->ofproto;
1101 int error, n_packets, n_errors;
1102 struct mac_entry *e;
1104 error = n_packets = n_errors = 0;
1105 LIST_FOR_EACH (e, lru_node, &ofproto->ml->lrus) {
1106 if (e->port.p != bundle) {
1107 int ret = bond_send_learning_packet(bundle->bond, e->mac, e->vlan);
1117 static struct vlog_rate_limit rl = VLOG_RATE_LIMIT_INIT(1, 5);
1118 VLOG_WARN_RL(&rl, "bond %s: %d errors sending %d gratuitous learning "
1119 "packets, last error was: %s",
1120 bundle->name, n_errors, n_packets, strerror(error));
1122 VLOG_DBG("bond %s: sent %d gratuitous learning packets",
1123 bundle->name, n_packets);
1128 bundle_run(struct ofbundle *bundle)
1131 lacp_run(bundle->lacp, send_pdu_cb);
1134 struct ofport_dpif *port;
1136 LIST_FOR_EACH (port, bundle_node, &bundle->ports) {
1137 bool may_enable = lacp_slave_may_enable(bundle->lacp, port);
1139 if (may_enable && port->cfm) {
1140 may_enable = !cfm_get_fault(port->cfm);
1142 bond_slave_set_may_enable(bundle->bond, port, may_enable);
1145 bond_run(bundle->bond, &bundle->ofproto->revalidate_set,
1146 lacp_negotiated(bundle->lacp));
1147 if (bond_should_send_learning_packets(bundle->bond)) {
1148 bundle_send_learning_packets(bundle);
1154 bundle_wait(struct ofbundle *bundle)
1157 lacp_wait(bundle->lacp);
1160 bond_wait(bundle->bond);
1167 mirror_scan(struct ofproto_dpif *ofproto)
1171 for (idx = 0; idx < MAX_MIRRORS; idx++) {
1172 if (!ofproto->mirrors[idx]) {
1179 static struct ofmirror *
1180 mirror_lookup(struct ofproto_dpif *ofproto, void *aux)
1184 for (i = 0; i < MAX_MIRRORS; i++) {
1185 struct ofmirror *mirror = ofproto->mirrors[i];
1186 if (mirror && mirror->aux == aux) {
1195 mirror_set(struct ofproto *ofproto_, void *aux,
1196 const struct ofproto_mirror_settings *s)
1198 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1199 mirror_mask_t mirror_bit;
1200 struct ofbundle *bundle;
1201 struct ofmirror *mirror;
1202 struct ofbundle *out;
1203 struct hmapx srcs; /* Contains "struct ofbundle *"s. */
1204 struct hmapx dsts; /* Contains "struct ofbundle *"s. */
1207 mirror = mirror_lookup(ofproto, aux);
1209 mirror_destroy(mirror);
1215 idx = mirror_scan(ofproto);
1217 VLOG_WARN("bridge %s: maximum of %d port mirrors reached, "
1219 ofproto->up.name, MAX_MIRRORS, s->name);
1223 mirror = ofproto->mirrors[idx] = xzalloc(sizeof *mirror);
1224 mirror->ofproto = ofproto;
1226 mirror->out_vlan = -1;
1227 mirror->name = NULL;
1230 if (!mirror->name || strcmp(s->name, mirror->name)) {
1232 mirror->name = xstrdup(s->name);
1235 /* Get the new configuration. */
1236 if (s->out_bundle) {
1237 out = bundle_lookup(ofproto, s->out_bundle);
1239 mirror_destroy(mirror);
1245 out_vlan = s->out_vlan;
1247 bundle_lookup_multiple(ofproto, s->srcs, s->n_srcs, &srcs);
1248 bundle_lookup_multiple(ofproto, s->dsts, s->n_dsts, &dsts);
1250 /* If the configuration has not changed, do nothing. */
1251 if (hmapx_equals(&srcs, &mirror->srcs)
1252 && hmapx_equals(&dsts, &mirror->dsts)
1253 && vlan_bitmap_equal(mirror->vlans, s->src_vlans)
1254 && mirror->out == out
1255 && mirror->out_vlan == out_vlan)
1257 hmapx_destroy(&srcs);
1258 hmapx_destroy(&dsts);
1262 hmapx_swap(&srcs, &mirror->srcs);
1263 hmapx_destroy(&srcs);
1265 hmapx_swap(&dsts, &mirror->dsts);
1266 hmapx_destroy(&dsts);
1268 free(mirror->vlans);
1269 mirror->vlans = vlan_bitmap_clone(s->src_vlans);
1272 mirror->out_vlan = out_vlan;
1274 /* Update bundles. */
1275 mirror_bit = MIRROR_MASK_C(1) << mirror->idx;
1276 HMAP_FOR_EACH (bundle, hmap_node, &mirror->ofproto->bundles) {
1277 if (hmapx_contains(&mirror->srcs, bundle)) {
1278 bundle->src_mirrors |= mirror_bit;
1280 bundle->src_mirrors &= ~mirror_bit;
1283 if (hmapx_contains(&mirror->dsts, bundle)) {
1284 bundle->dst_mirrors |= mirror_bit;
1286 bundle->dst_mirrors &= ~mirror_bit;
1289 if (mirror->out == bundle) {
1290 bundle->mirror_out |= mirror_bit;
1292 bundle->mirror_out &= ~mirror_bit;
1296 ofproto->need_revalidate = true;
1297 mac_learning_flush(ofproto->ml);
1303 mirror_destroy(struct ofmirror *mirror)
1305 struct ofproto_dpif *ofproto;
1306 mirror_mask_t mirror_bit;
1307 struct ofbundle *bundle;
1313 ofproto = mirror->ofproto;
1314 ofproto->need_revalidate = true;
1315 mac_learning_flush(ofproto->ml);
1317 mirror_bit = MIRROR_MASK_C(1) << mirror->idx;
1318 HMAP_FOR_EACH (bundle, hmap_node, &ofproto->bundles) {
1319 bundle->src_mirrors &= ~mirror_bit;
1320 bundle->dst_mirrors &= ~mirror_bit;
1321 bundle->mirror_out &= ~mirror_bit;
1324 hmapx_destroy(&mirror->srcs);
1325 hmapx_destroy(&mirror->dsts);
1326 free(mirror->vlans);
1328 ofproto->mirrors[mirror->idx] = NULL;
1334 set_flood_vlans(struct ofproto *ofproto_, unsigned long *flood_vlans)
1336 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1337 if (mac_learning_set_flood_vlans(ofproto->ml, flood_vlans)) {
1338 ofproto->need_revalidate = true;
1339 mac_learning_flush(ofproto->ml);
1345 is_mirror_output_bundle(struct ofproto *ofproto_, void *aux)
1347 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1348 struct ofbundle *bundle = bundle_lookup(ofproto, aux);
1349 return bundle && bundle->mirror_out != 0;
1354 static struct ofport_dpif *
1355 get_ofp_port(struct ofproto_dpif *ofproto, uint16_t ofp_port)
1357 struct ofport *ofport = ofproto_get_port(&ofproto->up, ofp_port);
1358 return ofport ? ofport_dpif_cast(ofport) : NULL;
1361 static struct ofport_dpif *
1362 get_odp_port(struct ofproto_dpif *ofproto, uint32_t odp_port)
1364 return get_ofp_port(ofproto, odp_port_to_ofp_port(odp_port));
1368 ofproto_port_from_dpif_port(struct ofproto_port *ofproto_port,
1369 struct dpif_port *dpif_port)
1371 ofproto_port->name = dpif_port->name;
1372 ofproto_port->type = dpif_port->type;
1373 ofproto_port->ofp_port = odp_port_to_ofp_port(dpif_port->port_no);
1377 port_run(struct ofport_dpif *ofport)
1380 cfm_run(ofport->cfm);
1382 if (cfm_should_send_ccm(ofport->cfm)) {
1383 struct ofpbuf packet;
1385 ofpbuf_init(&packet, 0);
1386 cfm_compose_ccm(ofport->cfm, &packet, ofport->up.opp.hw_addr);
1387 send_packet(ofproto_dpif_cast(ofport->up.ofproto),
1388 ofport->odp_port, &packet);
1389 ofpbuf_uninit(&packet);
1395 port_wait(struct ofport_dpif *ofport)
1398 cfm_wait(ofport->cfm);
1403 port_query_by_name(const struct ofproto *ofproto_, const char *devname,
1404 struct ofproto_port *ofproto_port)
1406 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1407 struct dpif_port dpif_port;
1410 error = dpif_port_query_by_name(ofproto->dpif, devname, &dpif_port);
1412 ofproto_port_from_dpif_port(ofproto_port, &dpif_port);
1418 port_add(struct ofproto *ofproto_, struct netdev *netdev, uint16_t *ofp_portp)
1420 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1424 error = dpif_port_add(ofproto->dpif, netdev, &odp_port);
1426 *ofp_portp = odp_port_to_ofp_port(odp_port);
1432 port_del(struct ofproto *ofproto_, uint16_t ofp_port)
1434 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1437 error = dpif_port_del(ofproto->dpif, ofp_port_to_odp_port(ofp_port));
1439 struct ofport_dpif *ofport = get_ofp_port(ofproto, ofp_port);
1441 /* The caller is going to close ofport->up.netdev. If this is a
1442 * bonded port, then the bond is using that netdev, so remove it
1443 * from the bond. The client will need to reconfigure everything
1444 * after deleting ports, so then the slave will get re-added. */
1445 bundle_remove(&ofport->up);
1451 struct port_dump_state {
1452 struct dpif_port_dump dump;
1457 port_dump_start(const struct ofproto *ofproto_, void **statep)
1459 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1460 struct port_dump_state *state;
1462 *statep = state = xmalloc(sizeof *state);
1463 dpif_port_dump_start(&state->dump, ofproto->dpif);
1464 state->done = false;
1469 port_dump_next(const struct ofproto *ofproto_ OVS_UNUSED, void *state_,
1470 struct ofproto_port *port)
1472 struct port_dump_state *state = state_;
1473 struct dpif_port dpif_port;
1475 if (dpif_port_dump_next(&state->dump, &dpif_port)) {
1476 ofproto_port_from_dpif_port(port, &dpif_port);
1479 int error = dpif_port_dump_done(&state->dump);
1481 return error ? error : EOF;
1486 port_dump_done(const struct ofproto *ofproto_ OVS_UNUSED, void *state_)
1488 struct port_dump_state *state = state_;
1491 dpif_port_dump_done(&state->dump);
1498 port_poll(const struct ofproto *ofproto_, char **devnamep)
1500 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1501 return dpif_port_poll(ofproto->dpif, devnamep);
1505 port_poll_wait(const struct ofproto *ofproto_)
1507 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
1508 dpif_port_poll_wait(ofproto->dpif);
1512 port_is_lacp_current(const struct ofport *ofport_)
1514 const struct ofport_dpif *ofport = ofport_dpif_cast(ofport_);
1515 return (ofport->bundle && ofport->bundle->lacp
1516 ? lacp_slave_is_current(ofport->bundle->lacp, ofport)
1520 /* Upcall handling. */
1522 /* Given 'upcall', of type DPIF_UC_ACTION or DPIF_UC_MISS, sends an
1523 * OFPT_PACKET_IN message to each OpenFlow controller as necessary according to
1524 * their individual configurations.
1526 * If 'clone' is true, the caller retains ownership of 'upcall->packet'.
1527 * Otherwise, ownership is transferred to this function. */
1529 send_packet_in(struct ofproto_dpif *ofproto, struct dpif_upcall *upcall,
1530 const struct flow *flow, bool clone)
1532 struct ofputil_packet_in pin;
1534 pin.packet = upcall->packet;
1535 pin.in_port = flow->in_port;
1536 pin.reason = upcall->type == DPIF_UC_MISS ? OFPR_NO_MATCH : OFPR_ACTION;
1537 pin.buffer_id = 0; /* not yet known */
1538 pin.send_len = upcall->userdata;
1539 connmgr_send_packet_in(ofproto->up.connmgr, &pin, flow,
1540 clone ? NULL : upcall->packet);
1544 process_special(struct ofproto_dpif *ofproto, const struct flow *flow,
1545 const struct ofpbuf *packet)
1547 if (cfm_should_process_flow(flow)) {
1548 struct ofport_dpif *ofport = get_ofp_port(ofproto, flow->in_port);
1549 if (packet && ofport && ofport->cfm) {
1550 cfm_process_heartbeat(ofport->cfm, packet);
1553 } else if (flow->dl_type == htons(ETH_TYPE_LACP)) {
1554 struct ofport_dpif *port = get_ofp_port(ofproto, flow->in_port);
1555 if (packet && port && port->bundle && port->bundle->lacp) {
1556 const struct lacp_pdu *pdu = parse_lacp_packet(packet);
1558 lacp_process_pdu(port->bundle->lacp, port, pdu);
1567 handle_miss_upcall(struct ofproto_dpif *ofproto, struct dpif_upcall *upcall)
1569 struct facet *facet;
1572 /* Obtain in_port and tun_id, at least. */
1573 odp_flow_key_to_flow(upcall->key, upcall->key_len, &flow);
1575 /* Set header pointers in 'flow'. */
1576 flow_extract(upcall->packet, flow.tun_id, flow.in_port, &flow);
1578 /* Handle 802.1ag and LACP. */
1579 if (process_special(ofproto, &flow, upcall->packet)) {
1580 ofpbuf_delete(upcall->packet);
1581 ofproto->n_matches++;
1585 /* Check with in-band control to see if this packet should be sent
1586 * to the local port regardless of the flow table. */
1587 if (connmgr_msg_in_hook(ofproto->up.connmgr, &flow, upcall->packet)) {
1588 send_packet(ofproto, ODPP_LOCAL, upcall->packet);
1591 facet = facet_lookup_valid(ofproto, &flow);
1593 struct rule_dpif *rule = rule_dpif_lookup(ofproto, &flow);
1595 /* Don't send a packet-in if OFPPC_NO_PACKET_IN asserted. */
1596 struct ofport_dpif *port = get_ofp_port(ofproto, flow.in_port);
1598 if (port->up.opp.config & htonl(OFPPC_NO_PACKET_IN)) {
1599 COVERAGE_INC(ofproto_dpif_no_packet_in);
1600 /* XXX install 'drop' flow entry */
1601 ofpbuf_delete(upcall->packet);
1605 VLOG_WARN_RL(&rl, "packet-in on unknown port %"PRIu16,
1609 send_packet_in(ofproto, upcall, &flow, false);
1613 facet = facet_create(rule, &flow, upcall->packet);
1614 } else if (!facet->may_install) {
1615 /* The facet is not installable, that is, we need to process every
1616 * packet, so process the current packet's actions into 'facet'. */
1617 facet_make_actions(ofproto, facet, upcall->packet);
1620 if (facet->rule->up.cr.priority == FAIL_OPEN_PRIORITY) {
1622 * Extra-special case for fail-open mode.
1624 * We are in fail-open mode and the packet matched the fail-open rule,
1625 * but we are connected to a controller too. We should send the packet
1626 * up to the controller in the hope that it will try to set up a flow
1627 * and thereby allow us to exit fail-open.
1629 * See the top-level comment in fail-open.c for more information.
1631 send_packet_in(ofproto, upcall, &flow, true);
1634 facet_execute(ofproto, facet, upcall->packet);
1635 facet_install(ofproto, facet, false);
1636 ofproto->n_matches++;
1640 handle_upcall(struct ofproto_dpif *ofproto, struct dpif_upcall *upcall)
1644 switch (upcall->type) {
1645 case DPIF_UC_ACTION:
1646 COVERAGE_INC(ofproto_dpif_ctlr_action);
1647 odp_flow_key_to_flow(upcall->key, upcall->key_len, &flow);
1648 send_packet_in(ofproto, upcall, &flow, false);
1651 case DPIF_UC_SAMPLE:
1652 if (ofproto->sflow) {
1653 odp_flow_key_to_flow(upcall->key, upcall->key_len, &flow);
1654 ofproto_sflow_received(ofproto->sflow, upcall, &flow);
1656 ofpbuf_delete(upcall->packet);
1660 handle_miss_upcall(ofproto, upcall);
1663 case DPIF_N_UC_TYPES:
1665 VLOG_WARN_RL(&rl, "upcall has unexpected type %"PRIu32, upcall->type);
1670 /* Flow expiration. */
1672 static int facet_max_idle(const struct ofproto_dpif *);
1673 static void update_stats(struct ofproto_dpif *);
1674 static void rule_expire(struct rule_dpif *);
1675 static void expire_facets(struct ofproto_dpif *, int dp_max_idle);
1677 /* This function is called periodically by run(). Its job is to collect
1678 * updates for the flows that have been installed into the datapath, most
1679 * importantly when they last were used, and then use that information to
1680 * expire flows that have not been used recently.
1682 * Returns the number of milliseconds after which it should be called again. */
1684 expire(struct ofproto_dpif *ofproto)
1686 struct rule_dpif *rule, *next_rule;
1687 struct cls_cursor cursor;
1690 /* Update stats for each flow in the datapath. */
1691 update_stats(ofproto);
1693 /* Expire facets that have been idle too long. */
1694 dp_max_idle = facet_max_idle(ofproto);
1695 expire_facets(ofproto, dp_max_idle);
1697 /* Expire OpenFlow flows whose idle_timeout or hard_timeout has passed. */
1698 cls_cursor_init(&cursor, &ofproto->up.tables[0], NULL);
1699 CLS_CURSOR_FOR_EACH_SAFE (rule, next_rule, up.cr, &cursor) {
1703 /* All outstanding data in existing flows has been accounted, so it's a
1704 * good time to do bond rebalancing. */
1705 if (ofproto->has_bonded_bundles) {
1706 struct ofbundle *bundle;
1708 HMAP_FOR_EACH (bundle, hmap_node, &ofproto->bundles) {
1710 bond_rebalance(bundle->bond, &ofproto->revalidate_set);
1715 return MIN(dp_max_idle, 1000);
1718 /* Update 'packet_count', 'byte_count', and 'used' members of installed facets.
1720 * This function also pushes statistics updates to rules which each facet
1721 * resubmits into. Generally these statistics will be accurate. However, if a
1722 * facet changes the rule it resubmits into at some time in between
1723 * update_stats() runs, it is possible that statistics accrued to the
1724 * old rule will be incorrectly attributed to the new rule. This could be
1725 * avoided by calling update_stats() whenever rules are created or
1726 * deleted. However, the performance impact of making so many calls to the
1727 * datapath do not justify the benefit of having perfectly accurate statistics.
1730 update_stats(struct ofproto_dpif *p)
1732 const struct dpif_flow_stats *stats;
1733 struct dpif_flow_dump dump;
1734 const struct nlattr *key;
1737 dpif_flow_dump_start(&dump, p->dpif);
1738 while (dpif_flow_dump_next(&dump, &key, &key_len, NULL, NULL, &stats)) {
1739 struct facet *facet;
1742 if (odp_flow_key_to_flow(key, key_len, &flow)) {
1746 odp_flow_key_format(key, key_len, &s);
1747 VLOG_WARN_RL(&rl, "failed to convert ODP flow key to flow: %s",
1753 facet = facet_find(p, &flow);
1755 if (facet && facet->installed) {
1757 if (stats->n_packets >= facet->dp_packet_count) {
1758 uint64_t extra = stats->n_packets - facet->dp_packet_count;
1759 facet->packet_count += extra;
1761 VLOG_WARN_RL(&rl, "unexpected packet count from the datapath");
1764 if (stats->n_bytes >= facet->dp_byte_count) {
1765 facet->byte_count += stats->n_bytes - facet->dp_byte_count;
1767 VLOG_WARN_RL(&rl, "unexpected byte count from datapath");
1770 facet->dp_packet_count = stats->n_packets;
1771 facet->dp_byte_count = stats->n_bytes;
1773 facet_update_time(p, facet, stats->used);
1774 facet_account(p, facet, stats->n_bytes);
1775 facet_push_stats(facet);
1777 /* There's a flow in the datapath that we know nothing about.
1779 COVERAGE_INC(facet_unexpected);
1780 dpif_flow_del(p->dpif, key, key_len, NULL);
1783 dpif_flow_dump_done(&dump);
1786 /* Calculates and returns the number of milliseconds of idle time after which
1787 * facets should expire from the datapath and we should fold their statistics
1788 * into their parent rules in userspace. */
1790 facet_max_idle(const struct ofproto_dpif *ofproto)
1793 * Idle time histogram.
1795 * Most of the time a switch has a relatively small number of facets. When
1796 * this is the case we might as well keep statistics for all of them in
1797 * userspace and to cache them in the kernel datapath for performance as
1800 * As the number of facets increases, the memory required to maintain
1801 * statistics about them in userspace and in the kernel becomes
1802 * significant. However, with a large number of facets it is likely that
1803 * only a few of them are "heavy hitters" that consume a large amount of
1804 * bandwidth. At this point, only heavy hitters are worth caching in the
1805 * kernel and maintaining in userspaces; other facets we can discard.
1807 * The technique used to compute the idle time is to build a histogram with
1808 * N_BUCKETS buckets whose width is BUCKET_WIDTH msecs each. Each facet
1809 * that is installed in the kernel gets dropped in the appropriate bucket.
1810 * After the histogram has been built, we compute the cutoff so that only
1811 * the most-recently-used 1% of facets (but at least 1000 flows) are kept
1812 * cached. At least the most-recently-used bucket of facets is kept, so
1813 * actually an arbitrary number of facets can be kept in any given
1814 * expiration run (though the next run will delete most of those unless
1815 * they receive additional data).
1817 * This requires a second pass through the facets, in addition to the pass
1818 * made by update_stats(), because the former function never looks
1819 * at uninstallable facets.
1821 enum { BUCKET_WIDTH = ROUND_UP(100, TIME_UPDATE_INTERVAL) };
1822 enum { N_BUCKETS = 5000 / BUCKET_WIDTH };
1823 int buckets[N_BUCKETS] = { 0 };
1824 struct facet *facet;
1829 total = hmap_count(&ofproto->facets);
1830 if (total <= 1000) {
1831 return N_BUCKETS * BUCKET_WIDTH;
1834 /* Build histogram. */
1836 HMAP_FOR_EACH (facet, hmap_node, &ofproto->facets) {
1837 long long int idle = now - facet->used;
1838 int bucket = (idle <= 0 ? 0
1839 : idle >= BUCKET_WIDTH * N_BUCKETS ? N_BUCKETS - 1
1840 : (unsigned int) idle / BUCKET_WIDTH);
1844 /* Find the first bucket whose flows should be expired. */
1845 for (bucket = 0; bucket < N_BUCKETS; bucket++) {
1846 if (buckets[bucket]) {
1849 subtotal += buckets[bucket++];
1850 } while (bucket < N_BUCKETS && subtotal < MAX(1000, total / 100));
1855 if (VLOG_IS_DBG_ENABLED()) {
1859 ds_put_cstr(&s, "keep");
1860 for (i = 0; i < N_BUCKETS; i++) {
1862 ds_put_cstr(&s, ", drop");
1865 ds_put_format(&s, " %d:%d", i * BUCKET_WIDTH, buckets[i]);
1868 VLOG_INFO("%s: %s (msec:count)", ofproto->up.name, ds_cstr(&s));
1872 return bucket * BUCKET_WIDTH;
1876 facet_active_timeout(struct ofproto_dpif *ofproto, struct facet *facet)
1878 if (ofproto->netflow && !facet_is_controller_flow(facet) &&
1879 netflow_active_timeout_expired(ofproto->netflow, &facet->nf_flow)) {
1880 struct ofexpired expired;
1882 if (facet->installed) {
1883 struct dpif_flow_stats stats;
1885 facet_put__(ofproto, facet, facet->actions, facet->actions_len,
1887 facet_update_stats(ofproto, facet, &stats);
1890 expired.flow = facet->flow;
1891 expired.packet_count = facet->packet_count;
1892 expired.byte_count = facet->byte_count;
1893 expired.used = facet->used;
1894 netflow_expire(ofproto->netflow, &facet->nf_flow, &expired);
1899 expire_facets(struct ofproto_dpif *ofproto, int dp_max_idle)
1901 long long int cutoff = time_msec() - dp_max_idle;
1902 struct facet *facet, *next_facet;
1904 HMAP_FOR_EACH_SAFE (facet, next_facet, hmap_node, &ofproto->facets) {
1905 facet_active_timeout(ofproto, facet);
1906 if (facet->used < cutoff) {
1907 facet_remove(ofproto, facet);
1912 /* If 'rule' is an OpenFlow rule, that has expired according to OpenFlow rules,
1913 * then delete it entirely. */
1915 rule_expire(struct rule_dpif *rule)
1917 struct ofproto_dpif *ofproto = ofproto_dpif_cast(rule->up.ofproto);
1918 struct facet *facet, *next_facet;
1922 /* Has 'rule' expired? */
1924 if (rule->up.hard_timeout
1925 && now > rule->up.created + rule->up.hard_timeout * 1000) {
1926 reason = OFPRR_HARD_TIMEOUT;
1927 } else if (rule->up.idle_timeout && list_is_empty(&rule->facets)
1928 && now > rule->used + rule->up.idle_timeout * 1000) {
1929 reason = OFPRR_IDLE_TIMEOUT;
1934 COVERAGE_INC(ofproto_dpif_expired);
1936 /* Update stats. (This is a no-op if the rule expired due to an idle
1937 * timeout, because that only happens when the rule has no facets left.) */
1938 LIST_FOR_EACH_SAFE (facet, next_facet, list_node, &rule->facets) {
1939 facet_remove(ofproto, facet);
1942 /* Get rid of the rule. */
1943 ofproto_rule_expire(&rule->up, reason);
1948 /* Creates and returns a new facet owned by 'rule', given a 'flow' and an
1949 * example 'packet' within that flow.
1951 * The caller must already have determined that no facet with an identical
1952 * 'flow' exists in 'ofproto' and that 'flow' is the best match for 'rule' in
1953 * the ofproto's classifier table. */
1954 static struct facet *
1955 facet_create(struct rule_dpif *rule, const struct flow *flow,
1956 const struct ofpbuf *packet)
1958 struct ofproto_dpif *ofproto = ofproto_dpif_cast(rule->up.ofproto);
1959 struct facet *facet;
1961 facet = xzalloc(sizeof *facet);
1962 facet->used = time_msec();
1963 hmap_insert(&ofproto->facets, &facet->hmap_node, flow_hash(flow, 0));
1964 list_push_back(&rule->facets, &facet->list_node);
1966 facet->flow = *flow;
1967 netflow_flow_init(&facet->nf_flow);
1968 netflow_flow_update_time(ofproto->netflow, &facet->nf_flow, facet->used);
1970 facet_make_actions(ofproto, facet, packet);
1976 facet_free(struct facet *facet)
1978 free(facet->actions);
1982 /* Executes, within 'ofproto', the 'n_actions' actions in 'actions' on
1983 * 'packet', which arrived on 'in_port'.
1985 * Takes ownership of 'packet'. */
1987 execute_odp_actions(struct ofproto_dpif *ofproto, const struct flow *flow,
1988 const struct nlattr *odp_actions, size_t actions_len,
1989 struct ofpbuf *packet)
1991 if (actions_len == NLA_ALIGN(NLA_HDRLEN + sizeof(uint64_t))
1992 && odp_actions->nla_type == ODP_ACTION_ATTR_CONTROLLER) {
1993 /* As an optimization, avoid a round-trip from userspace to kernel to
1994 * userspace. This also avoids possibly filling up kernel packet
1995 * buffers along the way. */
1996 struct dpif_upcall upcall;
1998 upcall.type = DPIF_UC_ACTION;
1999 upcall.packet = packet;
2002 upcall.userdata = nl_attr_get_u64(odp_actions);
2003 upcall.sample_pool = 0;
2004 upcall.actions = NULL;
2005 upcall.actions_len = 0;
2007 send_packet_in(ofproto, &upcall, flow, false);
2011 struct odputil_keybuf keybuf;
2015 ofpbuf_use_stack(&key, &keybuf, sizeof keybuf);
2016 odp_flow_key_from_flow(&key, flow);
2018 error = dpif_execute(ofproto->dpif, key.data, key.size,
2019 odp_actions, actions_len, packet);
2021 ofpbuf_delete(packet);
2026 /* Executes the actions indicated by 'facet' on 'packet' and credits 'facet''s
2027 * statistics appropriately. 'packet' must have at least sizeof(struct
2028 * ofp_packet_in) bytes of headroom.
2030 * For correct results, 'packet' must actually be in 'facet''s flow; that is,
2031 * applying flow_extract() to 'packet' would yield the same flow as
2034 * 'facet' must have accurately composed ODP actions; that is, it must not be
2035 * in need of revalidation.
2037 * Takes ownership of 'packet'. */
2039 facet_execute(struct ofproto_dpif *ofproto, struct facet *facet,
2040 struct ofpbuf *packet)
2042 struct dpif_flow_stats stats;
2044 assert(ofpbuf_headroom(packet) >= sizeof(struct ofp_packet_in));
2046 flow_extract_stats(&facet->flow, packet, &stats);
2047 stats.used = time_msec();
2048 if (execute_odp_actions(ofproto, &facet->flow,
2049 facet->actions, facet->actions_len, packet)) {
2050 facet_update_stats(ofproto, facet, &stats);
2054 /* Remove 'facet' from 'ofproto' and free up the associated memory:
2056 * - If 'facet' was installed in the datapath, uninstalls it and updates its
2057 * rule's statistics, via facet_uninstall().
2059 * - Removes 'facet' from its rule and from ofproto->facets.
2062 facet_remove(struct ofproto_dpif *ofproto, struct facet *facet)
2064 facet_uninstall(ofproto, facet);
2065 facet_flush_stats(ofproto, facet);
2066 hmap_remove(&ofproto->facets, &facet->hmap_node);
2067 list_remove(&facet->list_node);
2071 /* Composes the ODP actions for 'facet' based on its rule's actions. */
2073 facet_make_actions(struct ofproto_dpif *p, struct facet *facet,
2074 const struct ofpbuf *packet)
2076 const struct rule_dpif *rule = facet->rule;
2077 struct ofpbuf *odp_actions;
2078 struct action_xlate_ctx ctx;
2080 action_xlate_ctx_init(&ctx, p, &facet->flow, packet);
2081 odp_actions = xlate_actions(&ctx, rule->up.actions, rule->up.n_actions);
2082 facet->tags = ctx.tags;
2083 facet->may_install = ctx.may_set_up_flow;
2084 facet->nf_flow.output_iface = ctx.nf_output_iface;
2086 if (facet->actions_len != odp_actions->size
2087 || memcmp(facet->actions, odp_actions->data, odp_actions->size)) {
2088 free(facet->actions);
2089 facet->actions_len = odp_actions->size;
2090 facet->actions = xmemdup(odp_actions->data, odp_actions->size);
2093 ofpbuf_delete(odp_actions);
2096 /* Updates 'facet''s flow in the datapath setting its actions to 'actions_len'
2097 * bytes of actions in 'actions'. If 'stats' is non-null, statistics counters
2098 * in the datapath will be zeroed and 'stats' will be updated with traffic new
2099 * since 'facet' was last updated.
2101 * Returns 0 if successful, otherwise a positive errno value.*/
2103 facet_put__(struct ofproto_dpif *ofproto, struct facet *facet,
2104 const struct nlattr *actions, size_t actions_len,
2105 struct dpif_flow_stats *stats)
2107 struct odputil_keybuf keybuf;
2108 enum dpif_flow_put_flags flags;
2112 flags = DPIF_FP_CREATE | DPIF_FP_MODIFY;
2114 flags |= DPIF_FP_ZERO_STATS;
2117 ofpbuf_use_stack(&key, &keybuf, sizeof keybuf);
2118 odp_flow_key_from_flow(&key, &facet->flow);
2120 ret = dpif_flow_put(ofproto->dpif, flags, key.data, key.size,
2121 actions, actions_len, stats);
2124 facet_reset_dp_stats(facet, stats);
2130 /* If 'facet' is installable, inserts or re-inserts it into 'p''s datapath. If
2131 * 'zero_stats' is true, clears any existing statistics from the datapath for
2134 facet_install(struct ofproto_dpif *p, struct facet *facet, bool zero_stats)
2136 struct dpif_flow_stats stats;
2138 if (facet->may_install
2139 && !facet_put__(p, facet, facet->actions, facet->actions_len,
2140 zero_stats ? &stats : NULL)) {
2141 facet->installed = true;
2146 vlan_tci_to_openflow_vlan(ovs_be16 vlan_tci)
2148 return vlan_tci != htons(0) ? vlan_tci_to_vid(vlan_tci) : OFP_VLAN_NONE;
2152 facet_account(struct ofproto_dpif *ofproto,
2153 struct facet *facet, uint64_t extra_bytes)
2155 uint64_t total_bytes, n_bytes;
2156 struct ofbundle *in_bundle;
2157 const struct nlattr *a;
2163 total_bytes = facet->byte_count + extra_bytes;
2164 if (total_bytes <= facet->accounted_bytes) {
2167 n_bytes = total_bytes - facet->accounted_bytes;
2168 facet->accounted_bytes = total_bytes;
2170 /* Test that 'tags' is nonzero to ensure that only flows that include an
2171 * OFPP_NORMAL action are used for learning and bond slave rebalancing.
2172 * This works because OFPP_NORMAL always sets a nonzero tag value.
2174 * Feed information from the active flows back into the learning table to
2175 * ensure that table is always in sync with what is actually flowing
2176 * through the datapath. */
2178 || !is_admissible(ofproto, &facet->flow, false, &dummy,
2179 &vlan, &in_bundle)) {
2183 update_learning_table(ofproto, &facet->flow, vlan, in_bundle);
2185 if (!ofproto->has_bonded_bundles) {
2189 /* This loop feeds byte counters to bond_account() for rebalancing to use
2190 * as a basis. We also need to track the actual VLAN on which the packet
2191 * is going to be sent to ensure that it matches the one passed to
2192 * bond_choose_output_slave(). (Otherwise, we will account to the wrong
2194 vlan_tci = facet->flow.vlan_tci;
2195 NL_ATTR_FOR_EACH_UNSAFE (a, left, facet->actions, facet->actions_len) {
2196 struct ofport_dpif *port;
2198 switch (nl_attr_type(a)) {
2199 case ODP_ACTION_ATTR_OUTPUT:
2200 port = get_odp_port(ofproto, nl_attr_get_u32(a));
2201 if (port && port->bundle && port->bundle->bond) {
2202 bond_account(port->bundle->bond, &facet->flow,
2203 vlan_tci_to_openflow_vlan(vlan_tci), n_bytes);
2207 case ODP_ACTION_ATTR_STRIP_VLAN:
2208 vlan_tci = htons(0);
2211 case ODP_ACTION_ATTR_SET_DL_TCI:
2212 vlan_tci = nl_attr_get_be16(a);
2218 /* If 'rule' is installed in the datapath, uninstalls it. */
2220 facet_uninstall(struct ofproto_dpif *p, struct facet *facet)
2222 if (facet->installed) {
2223 struct odputil_keybuf keybuf;
2224 struct dpif_flow_stats stats;
2228 ofpbuf_use_stack(&key, &keybuf, sizeof keybuf);
2229 odp_flow_key_from_flow(&key, &facet->flow);
2231 error = dpif_flow_del(p->dpif, key.data, key.size, &stats);
2232 facet_reset_dp_stats(facet, &stats);
2234 facet_update_stats(p, facet, &stats);
2236 facet->installed = false;
2238 assert(facet->dp_packet_count == 0);
2239 assert(facet->dp_byte_count == 0);
2243 /* Returns true if the only action for 'facet' is to send to the controller.
2244 * (We don't report NetFlow expiration messages for such facets because they
2245 * are just part of the control logic for the network, not real traffic). */
2247 facet_is_controller_flow(struct facet *facet)
2250 && facet->rule->up.n_actions == 1
2251 && action_outputs_to_port(&facet->rule->up.actions[0],
2252 htons(OFPP_CONTROLLER)));
2255 /* Resets 'facet''s datapath statistics counters. This should be called when
2256 * 'facet''s statistics are cleared in the datapath. If 'stats' is non-null,
2257 * it should contain the statistics returned by dpif when 'facet' was reset in
2258 * the datapath. 'stats' will be modified to only included statistics new
2259 * since 'facet' was last updated. */
2261 facet_reset_dp_stats(struct facet *facet, struct dpif_flow_stats *stats)
2263 if (stats && facet->dp_packet_count <= stats->n_packets
2264 && facet->dp_byte_count <= stats->n_bytes) {
2265 stats->n_packets -= facet->dp_packet_count;
2266 stats->n_bytes -= facet->dp_byte_count;
2269 facet->dp_packet_count = 0;
2270 facet->dp_byte_count = 0;
2273 /* Folds all of 'facet''s statistics into its rule. Also updates the
2274 * accounting ofhook and emits a NetFlow expiration if appropriate. All of
2275 * 'facet''s statistics in the datapath should have been zeroed and folded into
2276 * its packet and byte counts before this function is called. */
2278 facet_flush_stats(struct ofproto_dpif *ofproto, struct facet *facet)
2280 assert(!facet->dp_byte_count);
2281 assert(!facet->dp_packet_count);
2283 facet_push_stats(facet);
2284 facet_account(ofproto, facet, 0);
2286 if (ofproto->netflow && !facet_is_controller_flow(facet)) {
2287 struct ofexpired expired;
2288 expired.flow = facet->flow;
2289 expired.packet_count = facet->packet_count;
2290 expired.byte_count = facet->byte_count;
2291 expired.used = facet->used;
2292 netflow_expire(ofproto->netflow, &facet->nf_flow, &expired);
2295 facet->rule->packet_count += facet->packet_count;
2296 facet->rule->byte_count += facet->byte_count;
2298 /* Reset counters to prevent double counting if 'facet' ever gets
2300 facet->packet_count = 0;
2301 facet->byte_count = 0;
2302 facet->rs_packet_count = 0;
2303 facet->rs_byte_count = 0;
2304 facet->accounted_bytes = 0;
2306 netflow_flow_clear(&facet->nf_flow);
2309 /* Searches 'ofproto''s table of facets for one exactly equal to 'flow'.
2310 * Returns it if found, otherwise a null pointer.
2312 * The returned facet might need revalidation; use facet_lookup_valid()
2313 * instead if that is important. */
2314 static struct facet *
2315 facet_find(struct ofproto_dpif *ofproto, const struct flow *flow)
2317 struct facet *facet;
2319 HMAP_FOR_EACH_WITH_HASH (facet, hmap_node, flow_hash(flow, 0),
2321 if (flow_equal(flow, &facet->flow)) {
2329 /* Searches 'ofproto''s table of facets for one exactly equal to 'flow'.
2330 * Returns it if found, otherwise a null pointer.
2332 * The returned facet is guaranteed to be valid. */
2333 static struct facet *
2334 facet_lookup_valid(struct ofproto_dpif *ofproto, const struct flow *flow)
2336 struct facet *facet = facet_find(ofproto, flow);
2338 /* The facet we found might not be valid, since we could be in need of
2339 * revalidation. If it is not valid, don't return it. */
2341 && ofproto->need_revalidate
2342 && !facet_revalidate(ofproto, facet)) {
2343 COVERAGE_INC(facet_invalidated);
2350 /* Re-searches 'ofproto''s classifier for a rule matching 'facet':
2352 * - If the rule found is different from 'facet''s current rule, moves
2353 * 'facet' to the new rule and recompiles its actions.
2355 * - If the rule found is the same as 'facet''s current rule, leaves 'facet'
2356 * where it is and recompiles its actions anyway.
2358 * - If there is none, destroys 'facet'.
2360 * Returns true if 'facet' still exists, false if it has been destroyed. */
2362 facet_revalidate(struct ofproto_dpif *ofproto, struct facet *facet)
2364 struct action_xlate_ctx ctx;
2365 struct ofpbuf *odp_actions;
2366 struct rule_dpif *new_rule;
2367 bool actions_changed;
2369 COVERAGE_INC(facet_revalidate);
2371 /* Determine the new rule. */
2372 new_rule = rule_dpif_lookup(ofproto, &facet->flow);
2374 /* No new rule, so delete the facet. */
2375 facet_remove(ofproto, facet);
2379 /* Calculate new ODP actions.
2381 * We do not modify any 'facet' state yet, because we might need to, e.g.,
2382 * emit a NetFlow expiration and, if so, we need to have the old state
2383 * around to properly compose it. */
2384 action_xlate_ctx_init(&ctx, ofproto, &facet->flow, NULL);
2385 odp_actions = xlate_actions(&ctx,
2386 new_rule->up.actions, new_rule->up.n_actions);
2387 actions_changed = (facet->actions_len != odp_actions->size
2388 || memcmp(facet->actions, odp_actions->data,
2389 facet->actions_len));
2391 /* If the ODP actions changed or the installability changed, then we need
2392 * to talk to the datapath. */
2393 if (actions_changed || ctx.may_set_up_flow != facet->installed) {
2394 if (ctx.may_set_up_flow) {
2395 struct dpif_flow_stats stats;
2397 facet_put__(ofproto, facet,
2398 odp_actions->data, odp_actions->size, &stats);
2399 facet_update_stats(ofproto, facet, &stats);
2401 facet_uninstall(ofproto, facet);
2404 /* The datapath flow is gone or has zeroed stats, so push stats out of
2405 * 'facet' into 'rule'. */
2406 facet_flush_stats(ofproto, facet);
2409 /* Update 'facet' now that we've taken care of all the old state. */
2410 facet->tags = ctx.tags;
2411 facet->nf_flow.output_iface = ctx.nf_output_iface;
2412 facet->may_install = ctx.may_set_up_flow;
2413 if (actions_changed) {
2414 free(facet->actions);
2415 facet->actions_len = odp_actions->size;
2416 facet->actions = xmemdup(odp_actions->data, odp_actions->size);
2418 if (facet->rule != new_rule) {
2419 COVERAGE_INC(facet_changed_rule);
2420 list_remove(&facet->list_node);
2421 list_push_back(&new_rule->facets, &facet->list_node);
2422 facet->rule = new_rule;
2423 facet->used = new_rule->up.created;
2424 facet->rs_used = facet->used;
2427 ofpbuf_delete(odp_actions);
2432 /* Updates 'facet''s used time. Caller is responsible for calling
2433 * facet_push_stats() to update the flows which 'facet' resubmits into. */
2435 facet_update_time(struct ofproto_dpif *ofproto, struct facet *facet,
2438 if (used > facet->used) {
2440 if (used > facet->rule->used) {
2441 facet->rule->used = used;
2443 netflow_flow_update_time(ofproto->netflow, &facet->nf_flow, used);
2447 /* Folds the statistics from 'stats' into the counters in 'facet'.
2449 * Because of the meaning of a facet's counters, it only makes sense to do this
2450 * if 'stats' are not tracked in the datapath, that is, if 'stats' represents a
2451 * packet that was sent by hand or if it represents statistics that have been
2452 * cleared out of the datapath. */
2454 facet_update_stats(struct ofproto_dpif *ofproto, struct facet *facet,
2455 const struct dpif_flow_stats *stats)
2457 if (stats->n_packets || stats->used > facet->used) {
2458 facet_update_time(ofproto, facet, stats->used);
2459 facet->packet_count += stats->n_packets;
2460 facet->byte_count += stats->n_bytes;
2461 facet_push_stats(facet);
2462 netflow_flow_update_flags(&facet->nf_flow, stats->tcp_flags);
2467 facet_push_stats(struct facet *facet)
2469 uint64_t rs_packets, rs_bytes;
2471 assert(facet->packet_count >= facet->rs_packet_count);
2472 assert(facet->byte_count >= facet->rs_byte_count);
2473 assert(facet->used >= facet->rs_used);
2475 rs_packets = facet->packet_count - facet->rs_packet_count;
2476 rs_bytes = facet->byte_count - facet->rs_byte_count;
2478 if (rs_packets || rs_bytes || facet->used > facet->rs_used) {
2479 facet->rs_packet_count = facet->packet_count;
2480 facet->rs_byte_count = facet->byte_count;
2481 facet->rs_used = facet->used;
2483 flow_push_stats(facet->rule, &facet->flow,
2484 rs_packets, rs_bytes, facet->used);
2488 struct ofproto_push {
2489 struct action_xlate_ctx ctx;
2496 push_resubmit(struct action_xlate_ctx *ctx, struct rule_dpif *rule)
2498 struct ofproto_push *push = CONTAINER_OF(ctx, struct ofproto_push, ctx);
2501 rule->packet_count += push->packets;
2502 rule->byte_count += push->bytes;
2503 rule->used = MAX(push->used, rule->used);
2507 /* Pushes flow statistics to the rules which 'flow' resubmits into given
2508 * 'rule''s actions. */
2510 flow_push_stats(const struct rule_dpif *rule,
2511 struct flow *flow, uint64_t packets, uint64_t bytes,
2514 struct ofproto_dpif *ofproto = ofproto_dpif_cast(rule->up.ofproto);
2515 struct ofproto_push push;
2517 push.packets = packets;
2521 action_xlate_ctx_init(&push.ctx, ofproto, flow, NULL);
2522 push.ctx.resubmit_hook = push_resubmit;
2523 ofpbuf_delete(xlate_actions(&push.ctx,
2524 rule->up.actions, rule->up.n_actions));
2529 static struct rule_dpif *
2530 rule_dpif_lookup(struct ofproto_dpif *ofproto, const struct flow *flow)
2532 return rule_dpif_cast(rule_from_cls_rule(
2533 classifier_lookup(&ofproto->up.tables[0],
2537 static struct rule *
2540 struct rule_dpif *rule = xmalloc(sizeof *rule);
2545 rule_dealloc(struct rule *rule_)
2547 struct rule_dpif *rule = rule_dpif_cast(rule_);
2552 rule_construct(struct rule *rule_)
2554 struct rule_dpif *rule = rule_dpif_cast(rule_);
2555 struct ofproto_dpif *ofproto = ofproto_dpif_cast(rule->up.ofproto);
2556 struct rule_dpif *old_rule;
2559 error = validate_actions(rule->up.actions, rule->up.n_actions,
2560 &rule->up.cr.flow, ofproto->max_ports);
2565 old_rule = rule_dpif_cast(rule_from_cls_rule(classifier_find_rule_exactly(
2566 &ofproto->up.tables[0],
2569 ofproto_rule_destroy(&old_rule->up);
2572 rule->used = rule->up.created;
2573 rule->packet_count = 0;
2574 rule->byte_count = 0;
2575 list_init(&rule->facets);
2576 classifier_insert(&ofproto->up.tables[0], &rule->up.cr);
2578 ofproto->need_revalidate = true;
2584 rule_destruct(struct rule *rule_)
2586 struct rule_dpif *rule = rule_dpif_cast(rule_);
2587 struct ofproto_dpif *ofproto = ofproto_dpif_cast(rule->up.ofproto);
2588 struct facet *facet, *next_facet;
2590 classifier_remove(&ofproto->up.tables[0], &rule->up.cr);
2591 LIST_FOR_EACH_SAFE (facet, next_facet, list_node, &rule->facets) {
2592 facet_revalidate(ofproto, facet);
2594 ofproto->need_revalidate = true;
2598 rule_get_stats(struct rule *rule_, uint64_t *packets, uint64_t *bytes)
2600 struct rule_dpif *rule = rule_dpif_cast(rule_);
2601 struct facet *facet;
2603 /* Start from historical data for 'rule' itself that are no longer tracked
2604 * in facets. This counts, for example, facets that have expired. */
2605 *packets = rule->packet_count;
2606 *bytes = rule->byte_count;
2608 /* Add any statistics that are tracked by facets. This includes
2609 * statistical data recently updated by ofproto_update_stats() as well as
2610 * stats for packets that were executed "by hand" via dpif_execute(). */
2611 LIST_FOR_EACH (facet, list_node, &rule->facets) {
2612 *packets += facet->packet_count;
2613 *bytes += facet->byte_count;
2618 rule_execute(struct rule *rule_, struct flow *flow, struct ofpbuf *packet)
2620 struct rule_dpif *rule = rule_dpif_cast(rule_);
2621 struct ofproto_dpif *ofproto = ofproto_dpif_cast(rule->up.ofproto);
2622 struct action_xlate_ctx ctx;
2623 struct ofpbuf *odp_actions;
2624 struct facet *facet;
2627 /* First look for a related facet. If we find one, account it to that. */
2628 facet = facet_lookup_valid(ofproto, flow);
2629 if (facet && facet->rule == rule) {
2630 facet_execute(ofproto, facet, packet);
2634 /* Otherwise, if 'rule' is in fact the correct rule for 'packet', then
2635 * create a new facet for it and use that. */
2636 if (rule_dpif_lookup(ofproto, flow) == rule) {
2637 facet = facet_create(rule, flow, packet);
2638 facet_execute(ofproto, facet, packet);
2639 facet_install(ofproto, facet, true);
2643 /* We can't account anything to a facet. If we were to try, then that
2644 * facet would have a non-matching rule, busting our invariants. */
2645 action_xlate_ctx_init(&ctx, ofproto, flow, packet);
2646 odp_actions = xlate_actions(&ctx, rule->up.actions, rule->up.n_actions);
2647 size = packet->size;
2648 if (execute_odp_actions(ofproto, flow, odp_actions->data,
2649 odp_actions->size, packet)) {
2650 rule->used = time_msec();
2651 rule->packet_count++;
2652 rule->byte_count += size;
2653 flow_push_stats(rule, flow, 1, size, rule->used);
2655 ofpbuf_delete(odp_actions);
2661 rule_modify_actions(struct rule *rule_,
2662 const union ofp_action *actions, size_t n_actions)
2664 struct rule_dpif *rule = rule_dpif_cast(rule_);
2665 struct ofproto_dpif *ofproto = ofproto_dpif_cast(rule->up.ofproto);
2668 error = validate_actions(actions, n_actions, &rule->up.cr.flow,
2669 ofproto->max_ports);
2671 ofproto->need_revalidate = true;
2676 /* Sends 'packet' out of port 'odp_port' within 'p'.
2677 * Returns 0 if successful, otherwise a positive errno value. */
2679 send_packet(struct ofproto_dpif *ofproto, uint32_t odp_port,
2680 const struct ofpbuf *packet)
2682 struct ofpbuf key, odp_actions;
2683 struct odputil_keybuf keybuf;
2687 flow_extract((struct ofpbuf *) packet, 0, 0, &flow);
2688 ofpbuf_use_stack(&key, &keybuf, sizeof keybuf);
2689 odp_flow_key_from_flow(&key, &flow);
2691 ofpbuf_init(&odp_actions, 32);
2692 nl_msg_put_u32(&odp_actions, ODP_ACTION_ATTR_OUTPUT, odp_port);
2693 error = dpif_execute(ofproto->dpif,
2695 odp_actions.data, odp_actions.size,
2697 ofpbuf_uninit(&odp_actions);
2700 VLOG_WARN_RL(&rl, "%s: failed to send packet on port %"PRIu32" (%s)",
2701 ofproto->up.name, odp_port, strerror(error));
2706 /* OpenFlow to ODP action translation. */
2708 static void do_xlate_actions(const union ofp_action *in, size_t n_in,
2709 struct action_xlate_ctx *ctx);
2710 static bool xlate_normal(struct action_xlate_ctx *);
2713 commit_odp_actions(struct action_xlate_ctx *ctx)
2715 const struct flow *flow = &ctx->flow;
2716 struct flow *base = &ctx->base_flow;
2717 struct ofpbuf *odp_actions = ctx->odp_actions;
2719 if (base->tun_id != flow->tun_id) {
2720 nl_msg_put_be64(odp_actions, ODP_ACTION_ATTR_SET_TUNNEL, flow->tun_id);
2721 base->tun_id = flow->tun_id;
2724 if (base->nw_src != flow->nw_src) {
2725 nl_msg_put_be32(odp_actions, ODP_ACTION_ATTR_SET_NW_SRC, flow->nw_src);
2726 base->nw_src = flow->nw_src;
2729 if (base->nw_dst != flow->nw_dst) {
2730 nl_msg_put_be32(odp_actions, ODP_ACTION_ATTR_SET_NW_DST, flow->nw_dst);
2731 base->nw_dst = flow->nw_dst;
2734 if (base->vlan_tci != flow->vlan_tci) {
2735 if (!(flow->vlan_tci & htons(VLAN_CFI))) {
2736 nl_msg_put_flag(odp_actions, ODP_ACTION_ATTR_STRIP_VLAN);
2738 nl_msg_put_be16(odp_actions, ODP_ACTION_ATTR_SET_DL_TCI,
2739 flow->vlan_tci & ~htons(VLAN_CFI));
2741 base->vlan_tci = flow->vlan_tci;
2744 if (base->tp_src != flow->tp_src) {
2745 nl_msg_put_be16(odp_actions, ODP_ACTION_ATTR_SET_TP_SRC, flow->tp_src);
2746 base->tp_src = flow->tp_src;
2749 if (base->tp_dst != flow->tp_dst) {
2750 nl_msg_put_be16(odp_actions, ODP_ACTION_ATTR_SET_TP_DST, flow->tp_dst);
2751 base->tp_dst = flow->tp_dst;
2754 if (!eth_addr_equals(base->dl_src, flow->dl_src)) {
2755 nl_msg_put_unspec(odp_actions, ODP_ACTION_ATTR_SET_DL_SRC,
2756 flow->dl_src, ETH_ADDR_LEN);
2757 memcpy(base->dl_src, flow->dl_src, ETH_ADDR_LEN);
2760 if (!eth_addr_equals(base->dl_dst, flow->dl_dst)) {
2761 nl_msg_put_unspec(odp_actions, ODP_ACTION_ATTR_SET_DL_DST,
2762 flow->dl_dst, ETH_ADDR_LEN);
2763 memcpy(base->dl_dst, flow->dl_dst, ETH_ADDR_LEN);
2766 if (ctx->base_priority != ctx->priority) {
2767 if (ctx->priority) {
2768 nl_msg_put_u32(odp_actions, ODP_ACTION_ATTR_SET_PRIORITY,
2771 nl_msg_put_flag(odp_actions, ODP_ACTION_ATTR_POP_PRIORITY);
2773 ctx->base_priority = ctx->priority;
2778 add_output_action(struct action_xlate_ctx *ctx, uint16_t ofp_port)
2780 const struct ofport_dpif *ofport = get_ofp_port(ctx->ofproto, ofp_port);
2781 uint16_t odp_port = ofp_port_to_odp_port(ofp_port);
2784 if (ofport->up.opp.config & htonl(OFPPC_NO_FWD)) {
2785 /* Forwarding disabled on port. */
2790 * We don't have an ofport record for this port, but it doesn't hurt to
2791 * allow forwarding to it anyhow. Maybe such a port will appear later
2792 * and we're pre-populating the flow table.
2796 commit_odp_actions(ctx);
2797 nl_msg_put_u32(ctx->odp_actions, ODP_ACTION_ATTR_OUTPUT, odp_port);
2798 ctx->nf_output_iface = ofp_port;
2802 xlate_table_action(struct action_xlate_ctx *ctx, uint16_t in_port)
2804 if (ctx->recurse < MAX_RESUBMIT_RECURSION) {
2805 struct rule_dpif *rule;
2806 uint16_t old_in_port;
2808 /* Look up a flow with 'in_port' as the input port. Then restore the
2809 * original input port (otherwise OFPP_NORMAL and OFPP_IN_PORT will
2810 * have surprising behavior). */
2811 old_in_port = ctx->flow.in_port;
2812 ctx->flow.in_port = in_port;
2813 rule = rule_dpif_lookup(ctx->ofproto, &ctx->flow);
2814 ctx->flow.in_port = old_in_port;
2816 if (ctx->resubmit_hook) {
2817 ctx->resubmit_hook(ctx, rule);
2822 do_xlate_actions(rule->up.actions, rule->up.n_actions, ctx);
2826 static struct vlog_rate_limit recurse_rl = VLOG_RATE_LIMIT_INIT(1, 1);
2828 VLOG_ERR_RL(&recurse_rl, "NXAST_RESUBMIT recursed over %d times",
2829 MAX_RESUBMIT_RECURSION);
2834 flood_packets(struct action_xlate_ctx *ctx, ovs_be32 mask)
2836 struct ofport_dpif *ofport;
2838 commit_odp_actions(ctx);
2839 HMAP_FOR_EACH (ofport, up.hmap_node, &ctx->ofproto->up.ports) {
2840 uint16_t ofp_port = ofport->up.ofp_port;
2841 if (ofp_port != ctx->flow.in_port && !(ofport->up.opp.config & mask)) {
2842 nl_msg_put_u32(ctx->odp_actions, ODP_ACTION_ATTR_OUTPUT,
2847 ctx->nf_output_iface = NF_OUT_FLOOD;
2851 xlate_output_action__(struct action_xlate_ctx *ctx,
2852 uint16_t port, uint16_t max_len)
2854 uint16_t prev_nf_output_iface = ctx->nf_output_iface;
2856 ctx->nf_output_iface = NF_OUT_DROP;
2860 add_output_action(ctx, ctx->flow.in_port);
2863 xlate_table_action(ctx, ctx->flow.in_port);
2869 flood_packets(ctx, htonl(OFPPC_NO_FLOOD));
2872 flood_packets(ctx, htonl(0));
2874 case OFPP_CONTROLLER:
2875 commit_odp_actions(ctx);
2876 nl_msg_put_u64(ctx->odp_actions, ODP_ACTION_ATTR_CONTROLLER, max_len);
2879 add_output_action(ctx, OFPP_LOCAL);
2882 if (port != ctx->flow.in_port) {
2883 add_output_action(ctx, port);
2888 if (prev_nf_output_iface == NF_OUT_FLOOD) {
2889 ctx->nf_output_iface = NF_OUT_FLOOD;
2890 } else if (ctx->nf_output_iface == NF_OUT_DROP) {
2891 ctx->nf_output_iface = prev_nf_output_iface;
2892 } else if (prev_nf_output_iface != NF_OUT_DROP &&
2893 ctx->nf_output_iface != NF_OUT_FLOOD) {
2894 ctx->nf_output_iface = NF_OUT_MULTI;
2899 xlate_output_action(struct action_xlate_ctx *ctx,
2900 const struct ofp_action_output *oao)
2902 xlate_output_action__(ctx, ntohs(oao->port), ntohs(oao->max_len));
2906 xlate_enqueue_action(struct action_xlate_ctx *ctx,
2907 const struct ofp_action_enqueue *oae)
2909 uint16_t ofp_port, odp_port;
2910 uint32_t ctx_priority, priority;
2913 error = dpif_queue_to_priority(ctx->ofproto->dpif, ntohl(oae->queue_id),
2916 /* Fall back to ordinary output action. */
2917 xlate_output_action__(ctx, ntohs(oae->port), 0);
2921 /* Figure out ODP output port. */
2922 ofp_port = ntohs(oae->port);
2923 if (ofp_port == OFPP_IN_PORT) {
2924 ofp_port = ctx->flow.in_port;
2926 odp_port = ofp_port_to_odp_port(ofp_port);
2928 /* Add ODP actions. */
2929 ctx_priority = ctx->priority;
2930 ctx->priority = priority;
2931 add_output_action(ctx, odp_port);
2932 ctx->priority = ctx_priority;
2934 /* Update NetFlow output port. */
2935 if (ctx->nf_output_iface == NF_OUT_DROP) {
2936 ctx->nf_output_iface = odp_port;
2937 } else if (ctx->nf_output_iface != NF_OUT_FLOOD) {
2938 ctx->nf_output_iface = NF_OUT_MULTI;
2943 xlate_set_queue_action(struct action_xlate_ctx *ctx,
2944 const struct nx_action_set_queue *nasq)
2949 error = dpif_queue_to_priority(ctx->ofproto->dpif, ntohl(nasq->queue_id),
2952 /* Couldn't translate queue to a priority, so ignore. A warning
2953 * has already been logged. */
2957 ctx->priority = priority;
2960 struct xlate_reg_state {
2966 xlate_autopath(struct action_xlate_ctx *ctx,
2967 const struct nx_action_autopath *naa)
2969 uint16_t ofp_port = ntohl(naa->id);
2970 struct ofport_dpif *port = get_ofp_port(ctx->ofproto, ofp_port);
2972 if (!port || !port->bundle) {
2973 ofp_port = OFPP_NONE;
2974 } else if (port->bundle->bond) {
2975 /* Autopath does not support VLAN hashing. */
2976 struct ofport_dpif *slave = bond_choose_output_slave(
2977 port->bundle->bond, &ctx->flow, OFP_VLAN_NONE, &ctx->tags);
2979 ofp_port = slave->up.ofp_port;
2982 autopath_execute(naa, &ctx->flow, ofp_port);
2986 xlate_nicira_action(struct action_xlate_ctx *ctx,
2987 const struct nx_action_header *nah)
2989 const struct nx_action_resubmit *nar;
2990 const struct nx_action_set_tunnel *nast;
2991 const struct nx_action_set_queue *nasq;
2992 const struct nx_action_multipath *nam;
2993 const struct nx_action_autopath *naa;
2994 enum nx_action_subtype subtype = ntohs(nah->subtype);
2997 assert(nah->vendor == htonl(NX_VENDOR_ID));
2999 case NXAST_RESUBMIT:
3000 nar = (const struct nx_action_resubmit *) nah;
3001 xlate_table_action(ctx, ntohs(nar->in_port));
3004 case NXAST_SET_TUNNEL:
3005 nast = (const struct nx_action_set_tunnel *) nah;
3006 tun_id = htonll(ntohl(nast->tun_id));
3007 ctx->flow.tun_id = tun_id;
3010 case NXAST_SET_QUEUE:
3011 nasq = (const struct nx_action_set_queue *) nah;
3012 xlate_set_queue_action(ctx, nasq);
3015 case NXAST_POP_QUEUE:
3019 case NXAST_REG_MOVE:
3020 nxm_execute_reg_move((const struct nx_action_reg_move *) nah,
3024 case NXAST_REG_LOAD:
3025 nxm_execute_reg_load((const struct nx_action_reg_load *) nah,
3030 /* Nothing to do. */
3033 case NXAST_SET_TUNNEL64:
3034 tun_id = ((const struct nx_action_set_tunnel64 *) nah)->tun_id;
3035 ctx->flow.tun_id = tun_id;
3038 case NXAST_MULTIPATH:
3039 nam = (const struct nx_action_multipath *) nah;
3040 multipath_execute(nam, &ctx->flow);
3043 case NXAST_AUTOPATH:
3044 naa = (const struct nx_action_autopath *) nah;
3045 xlate_autopath(ctx, naa);
3048 /* If you add a new action here that modifies flow data, don't forget to
3049 * update the flow key in ctx->flow at the same time. */
3051 case NXAST_SNAT__OBSOLETE:
3052 case NXAST_DROP_SPOOFED_ARP__OBSOLETE:
3054 VLOG_DBG_RL(&rl, "unknown Nicira action type %d", (int) subtype);
3060 do_xlate_actions(const union ofp_action *in, size_t n_in,
3061 struct action_xlate_ctx *ctx)
3063 const struct ofport_dpif *port;
3064 struct actions_iterator iter;
3065 const union ofp_action *ia;
3067 port = get_ofp_port(ctx->ofproto, ctx->flow.in_port);
3069 && port->up.opp.config & htonl(OFPPC_NO_RECV | OFPPC_NO_RECV_STP) &&
3070 port->up.opp.config & (eth_addr_equals(ctx->flow.dl_dst, eth_addr_stp)
3071 ? htonl(OFPPC_NO_RECV_STP)
3072 : htonl(OFPPC_NO_RECV))) {
3073 /* Drop this flow. */
3077 for (ia = actions_first(&iter, in, n_in); ia; ia = actions_next(&iter)) {
3078 enum ofp_action_type type = ntohs(ia->type);
3079 const struct ofp_action_dl_addr *oada;
3083 xlate_output_action(ctx, &ia->output);
3086 case OFPAT_SET_VLAN_VID:
3087 ctx->flow.vlan_tci &= ~htons(VLAN_VID_MASK);
3088 ctx->flow.vlan_tci |= ia->vlan_vid.vlan_vid | htons(VLAN_CFI);
3091 case OFPAT_SET_VLAN_PCP:
3092 ctx->flow.vlan_tci &= ~htons(VLAN_PCP_MASK);
3093 ctx->flow.vlan_tci |= htons(
3094 (ia->vlan_pcp.vlan_pcp << VLAN_PCP_SHIFT) | VLAN_CFI);
3097 case OFPAT_STRIP_VLAN:
3098 ctx->flow.vlan_tci = htons(0);
3101 case OFPAT_SET_DL_SRC:
3102 oada = ((struct ofp_action_dl_addr *) ia);
3103 memcpy(ctx->flow.dl_src, oada->dl_addr, ETH_ADDR_LEN);
3106 case OFPAT_SET_DL_DST:
3107 oada = ((struct ofp_action_dl_addr *) ia);
3108 memcpy(ctx->flow.dl_dst, oada->dl_addr, ETH_ADDR_LEN);
3111 case OFPAT_SET_NW_SRC:
3112 ctx->flow.nw_src = ia->nw_addr.nw_addr;
3115 case OFPAT_SET_NW_DST:
3116 ctx->flow.nw_dst = ia->nw_addr.nw_addr;
3119 case OFPAT_SET_NW_TOS:
3120 ctx->flow.nw_tos = ia->nw_tos.nw_tos;
3123 case OFPAT_SET_TP_SRC:
3124 ctx->flow.tp_src = ia->tp_port.tp_port;
3127 case OFPAT_SET_TP_DST:
3128 ctx->flow.tp_dst = ia->tp_port.tp_port;
3132 xlate_nicira_action(ctx, (const struct nx_action_header *) ia);
3136 xlate_enqueue_action(ctx, (const struct ofp_action_enqueue *) ia);
3140 VLOG_DBG_RL(&rl, "unknown action type %d", (int) type);
3147 action_xlate_ctx_init(struct action_xlate_ctx *ctx,
3148 struct ofproto_dpif *ofproto, const struct flow *flow,
3149 const struct ofpbuf *packet)
3151 ctx->ofproto = ofproto;
3153 ctx->packet = packet;
3154 ctx->resubmit_hook = NULL;
3157 static struct ofpbuf *
3158 xlate_actions(struct action_xlate_ctx *ctx,
3159 const union ofp_action *in, size_t n_in)
3161 COVERAGE_INC(ofproto_dpif_xlate);
3163 ctx->odp_actions = ofpbuf_new(512);
3165 ctx->may_set_up_flow = true;
3166 ctx->nf_output_iface = NF_OUT_DROP;
3169 ctx->base_priority = 0;
3170 ctx->base_flow = ctx->flow;
3172 if (process_special(ctx->ofproto, &ctx->flow, ctx->packet)) {
3173 ctx->may_set_up_flow = false;
3175 do_xlate_actions(in, n_in, ctx);
3178 /* Check with in-band control to see if we're allowed to set up this
3180 if (!connmgr_may_set_up_flow(ctx->ofproto->up.connmgr, &ctx->flow,
3181 ctx->odp_actions->data,
3182 ctx->odp_actions->size)) {
3183 ctx->may_set_up_flow = false;
3186 return ctx->odp_actions;
3189 /* OFPP_NORMAL implementation. */
3192 struct ofport_dpif *port;
3197 struct dst builtin[32];
3199 size_t n, allocated;
3202 static void dst_set_init(struct dst_set *);
3203 static void dst_set_add(struct dst_set *, const struct dst *);
3204 static void dst_set_free(struct dst_set *);
3206 static struct ofport_dpif *ofbundle_get_a_port(const struct ofbundle *);
3209 set_dst(struct action_xlate_ctx *ctx, struct dst *dst,
3210 const struct ofbundle *in_bundle, const struct ofbundle *out_bundle)
3212 dst->vlan = (out_bundle->vlan >= 0 ? OFP_VLAN_NONE
3213 : in_bundle->vlan >= 0 ? in_bundle->vlan
3214 : ctx->flow.vlan_tci == 0 ? OFP_VLAN_NONE
3215 : vlan_tci_to_vid(ctx->flow.vlan_tci));
3217 dst->port = (!out_bundle->bond
3218 ? ofbundle_get_a_port(out_bundle)
3219 : bond_choose_output_slave(out_bundle->bond, &ctx->flow,
3220 dst->vlan, &ctx->tags));
3222 return dst->port != NULL;
3226 mirror_mask_ffs(mirror_mask_t mask)
3228 BUILD_ASSERT_DECL(sizeof(unsigned int) >= sizeof(mask));
3233 dst_set_init(struct dst_set *set)
3235 set->dsts = set->builtin;
3237 set->allocated = ARRAY_SIZE(set->builtin);
3241 dst_set_add(struct dst_set *set, const struct dst *dst)
3243 if (set->n >= set->allocated) {
3244 size_t new_allocated;
3245 struct dst *new_dsts;
3247 new_allocated = set->allocated * 2;
3248 new_dsts = xmalloc(new_allocated * sizeof *new_dsts);
3249 memcpy(new_dsts, set->dsts, set->n * sizeof *new_dsts);
3253 set->dsts = new_dsts;
3254 set->allocated = new_allocated;
3256 set->dsts[set->n++] = *dst;
3260 dst_set_free(struct dst_set *set)
3262 if (set->dsts != set->builtin) {
3268 dst_is_duplicate(const struct dst_set *set, const struct dst *test)
3271 for (i = 0; i < set->n; i++) {
3272 if (set->dsts[i].vlan == test->vlan
3273 && set->dsts[i].port == test->port) {
3281 ofbundle_trunks_vlan(const struct ofbundle *bundle, uint16_t vlan)
3283 return bundle->vlan < 0 && vlan_bitmap_contains(bundle->trunks, vlan);
3287 ofbundle_includes_vlan(const struct ofbundle *bundle, uint16_t vlan)
3289 return vlan == bundle->vlan || ofbundle_trunks_vlan(bundle, vlan);
3292 /* Returns an arbitrary interface within 'bundle'. */
3293 static struct ofport_dpif *
3294 ofbundle_get_a_port(const struct ofbundle *bundle)
3296 return CONTAINER_OF(list_front(&bundle->ports),
3297 struct ofport_dpif, bundle_node);
3301 compose_dsts(struct action_xlate_ctx *ctx, uint16_t vlan,
3302 const struct ofbundle *in_bundle,
3303 const struct ofbundle *out_bundle, struct dst_set *set)
3307 if (out_bundle == OFBUNDLE_FLOOD) {
3308 struct ofbundle *bundle;
3310 HMAP_FOR_EACH (bundle, hmap_node, &ctx->ofproto->bundles) {
3311 if (bundle != in_bundle
3312 && ofbundle_includes_vlan(bundle, vlan)
3313 && bundle->floodable
3314 && !bundle->mirror_out
3315 && set_dst(ctx, &dst, in_bundle, bundle)) {
3316 dst_set_add(set, &dst);
3319 ctx->nf_output_iface = NF_OUT_FLOOD;
3320 } else if (out_bundle && set_dst(ctx, &dst, in_bundle, out_bundle)) {
3321 dst_set_add(set, &dst);
3322 ctx->nf_output_iface = dst.port->odp_port;
3327 vlan_is_mirrored(const struct ofmirror *m, int vlan)
3329 return vlan_bitmap_contains(m->vlans, vlan);
3333 compose_mirror_dsts(struct action_xlate_ctx *ctx,
3334 uint16_t vlan, const struct ofbundle *in_bundle,
3335 struct dst_set *set)
3337 struct ofproto_dpif *ofproto = ctx->ofproto;
3338 mirror_mask_t mirrors;
3342 mirrors = in_bundle->src_mirrors;
3343 for (i = 0; i < set->n; i++) {
3344 mirrors |= set->dsts[i].port->bundle->dst_mirrors;
3351 flow_vlan = vlan_tci_to_vid(ctx->flow.vlan_tci);
3352 if (flow_vlan == 0) {
3353 flow_vlan = OFP_VLAN_NONE;
3357 struct ofmirror *m = ofproto->mirrors[mirror_mask_ffs(mirrors) - 1];
3358 if (vlan_is_mirrored(m, vlan)) {
3362 if (set_dst(ctx, &dst, in_bundle, m->out)
3363 && !dst_is_duplicate(set, &dst)) {
3364 dst_set_add(set, &dst);
3367 struct ofbundle *bundle;
3369 HMAP_FOR_EACH (bundle, hmap_node, &ofproto->bundles) {
3370 if (ofbundle_includes_vlan(bundle, m->out_vlan)
3371 && set_dst(ctx, &dst, in_bundle, bundle))
3373 if (bundle->vlan < 0) {
3374 dst.vlan = m->out_vlan;
3376 if (dst_is_duplicate(set, &dst)) {
3380 /* Use the vlan tag on the original flow instead of
3381 * the one passed in the vlan parameter. This ensures
3382 * that we compare the vlan from before any implicit
3383 * tagging tags place. This is necessary because
3384 * dst->vlan is the final vlan, after removing implicit
3386 if (bundle == in_bundle && dst.vlan == flow_vlan) {
3387 /* Don't send out input port on same VLAN. */
3390 dst_set_add(set, &dst);
3395 mirrors &= mirrors - 1;
3400 compose_actions(struct action_xlate_ctx *ctx, uint16_t vlan,
3401 const struct ofbundle *in_bundle,
3402 const struct ofbundle *out_bundle)
3404 uint16_t initial_vlan, cur_vlan;
3405 const struct dst *dst;
3409 compose_dsts(ctx, vlan, in_bundle, out_bundle, &set);
3410 compose_mirror_dsts(ctx, vlan, in_bundle, &set);
3412 /* Output all the packets we can without having to change the VLAN. */
3413 initial_vlan = vlan_tci_to_vid(ctx->flow.vlan_tci);
3414 if (initial_vlan == 0) {
3415 initial_vlan = OFP_VLAN_NONE;
3417 for (dst = set.dsts; dst < &set.dsts[set.n]; dst++) {
3418 if (dst->vlan != initial_vlan) {
3421 nl_msg_put_u32(ctx->odp_actions,
3422 ODP_ACTION_ATTR_OUTPUT, dst->port->odp_port);
3425 /* Then output the rest. */
3426 cur_vlan = initial_vlan;
3427 for (dst = set.dsts; dst < &set.dsts[set.n]; dst++) {
3428 if (dst->vlan == initial_vlan) {
3431 if (dst->vlan != cur_vlan) {
3432 if (dst->vlan == OFP_VLAN_NONE) {
3433 nl_msg_put_flag(ctx->odp_actions, ODP_ACTION_ATTR_STRIP_VLAN);
3436 tci = htons(dst->vlan & VLAN_VID_MASK);
3437 tci |= ctx->flow.vlan_tci & htons(VLAN_PCP_MASK);
3438 nl_msg_put_be16(ctx->odp_actions,
3439 ODP_ACTION_ATTR_SET_DL_TCI, tci);
3441 cur_vlan = dst->vlan;
3443 nl_msg_put_u32(ctx->odp_actions,
3444 ODP_ACTION_ATTR_OUTPUT, dst->port->odp_port);
3450 /* Returns the effective vlan of a packet, taking into account both the
3451 * 802.1Q header and implicitly tagged ports. A value of 0 indicates that
3452 * the packet is untagged and -1 indicates it has an invalid header and
3453 * should be dropped. */
3455 flow_get_vlan(struct ofproto_dpif *ofproto, const struct flow *flow,
3456 struct ofbundle *in_bundle, bool have_packet)
3458 int vlan = vlan_tci_to_vid(flow->vlan_tci);
3459 if (in_bundle->vlan >= 0) {
3462 static struct vlog_rate_limit rl = VLOG_RATE_LIMIT_INIT(1, 5);
3463 VLOG_WARN_RL(&rl, "bridge %s: dropping VLAN %d tagged "
3464 "packet received on port %s configured with "
3465 "implicit VLAN %"PRIu16,
3466 ofproto->up.name, vlan,
3467 in_bundle->name, in_bundle->vlan);
3471 vlan = in_bundle->vlan;
3473 if (!ofbundle_includes_vlan(in_bundle, vlan)) {
3475 static struct vlog_rate_limit rl = VLOG_RATE_LIMIT_INIT(1, 5);
3476 VLOG_WARN_RL(&rl, "bridge %s: dropping VLAN %d tagged "
3477 "packet received on port %s not configured for "
3479 ofproto->up.name, vlan, in_bundle->name, vlan);
3488 /* A VM broadcasts a gratuitous ARP to indicate that it has resumed after
3489 * migration. Older Citrix-patched Linux DomU used gratuitous ARP replies to
3490 * indicate this; newer upstream kernels use gratuitous ARP requests. */
3492 is_gratuitous_arp(const struct flow *flow)
3494 return (flow->dl_type == htons(ETH_TYPE_ARP)
3495 && eth_addr_is_broadcast(flow->dl_dst)
3496 && (flow->nw_proto == ARP_OP_REPLY
3497 || (flow->nw_proto == ARP_OP_REQUEST
3498 && flow->nw_src == flow->nw_dst)));
3502 update_learning_table(struct ofproto_dpif *ofproto,
3503 const struct flow *flow, int vlan,
3504 struct ofbundle *in_bundle)
3506 struct mac_entry *mac;
3508 if (!mac_learning_may_learn(ofproto->ml, flow->dl_src, vlan)) {
3512 mac = mac_learning_insert(ofproto->ml, flow->dl_src, vlan);
3513 if (is_gratuitous_arp(flow)) {
3514 /* We don't want to learn from gratuitous ARP packets that are
3515 * reflected back over bond slaves so we lock the learning table. */
3516 if (!in_bundle->bond) {
3517 mac_entry_set_grat_arp_lock(mac);
3518 } else if (mac_entry_is_grat_arp_locked(mac)) {
3523 if (mac_entry_is_new(mac) || mac->port.p != in_bundle) {
3524 /* The log messages here could actually be useful in debugging,
3525 * so keep the rate limit relatively high. */
3526 static struct vlog_rate_limit rl = VLOG_RATE_LIMIT_INIT(30, 300);
3527 VLOG_DBG_RL(&rl, "bridge %s: learned that "ETH_ADDR_FMT" is "
3528 "on port %s in VLAN %d",
3529 ofproto->up.name, ETH_ADDR_ARGS(flow->dl_src),
3530 in_bundle->name, vlan);
3532 mac->port.p = in_bundle;
3533 tag_set_add(&ofproto->revalidate_set,
3534 mac_learning_changed(ofproto->ml, mac));
3538 /* Determines whether packets in 'flow' within 'br' should be forwarded or
3539 * dropped. Returns true if they may be forwarded, false if they should be
3542 * If 'have_packet' is true, it indicates that the caller is processing a
3543 * received packet. If 'have_packet' is false, then the caller is just
3544 * revalidating an existing flow because configuration has changed. Either
3545 * way, 'have_packet' only affects logging (there is no point in logging errors
3546 * during revalidation).
3548 * Sets '*in_portp' to the input port. This will be a null pointer if
3549 * flow->in_port does not designate a known input port (in which case
3550 * is_admissible() returns false).
3552 * When returning true, sets '*vlanp' to the effective VLAN of the input
3553 * packet, as returned by flow_get_vlan().
3555 * May also add tags to '*tags', although the current implementation only does
3556 * so in one special case.
3559 is_admissible(struct ofproto_dpif *ofproto, const struct flow *flow,
3561 tag_type *tags, int *vlanp, struct ofbundle **in_bundlep)
3563 struct ofport_dpif *in_port;
3564 struct ofbundle *in_bundle;
3567 /* Find the port and bundle for the received packet. */
3568 in_port = get_ofp_port(ofproto, flow->in_port);
3569 *in_bundlep = in_bundle = in_port ? in_port->bundle : NULL;
3570 if (!in_port || !in_bundle) {
3571 /* No interface? Something fishy... */
3573 /* Odd. A few possible reasons here:
3575 * - We deleted a port but there are still a few packets queued up
3578 * - Someone externally added a port (e.g. "ovs-dpctl add-if") that
3579 * we don't know about.
3581 * - Packet arrived on the local port but the local port is not
3584 static struct vlog_rate_limit rl = VLOG_RATE_LIMIT_INIT(1, 5);
3586 VLOG_WARN_RL(&rl, "bridge %s: received packet on unknown "
3588 ofproto->up.name, flow->in_port);
3592 *vlanp = vlan = flow_get_vlan(ofproto, flow, in_bundle, have_packet);
3597 /* Drop frames for reserved multicast addresses. */
3598 if (eth_addr_is_reserved(flow->dl_dst)) {
3602 /* Drop frames on bundles reserved for mirroring. */
3603 if (in_bundle->mirror_out) {
3605 static struct vlog_rate_limit rl = VLOG_RATE_LIMIT_INIT(1, 5);
3606 VLOG_WARN_RL(&rl, "bridge %s: dropping packet received on port "
3607 "%s, which is reserved exclusively for mirroring",
3608 ofproto->up.name, in_bundle->name);
3613 if (in_bundle->bond) {
3614 struct mac_entry *mac;
3616 switch (bond_check_admissibility(in_bundle->bond, in_port,
3617 flow->dl_dst, tags)) {
3624 case BV_DROP_IF_MOVED:
3625 mac = mac_learning_lookup(ofproto->ml, flow->dl_src, vlan, NULL);
3626 if (mac && mac->port.p != in_bundle &&
3627 (!is_gratuitous_arp(flow)
3628 || mac_entry_is_grat_arp_locked(mac))) {
3638 /* If the composed actions may be applied to any packet in the given 'flow',
3639 * returns true. Otherwise, the actions should only be applied to 'packet', or
3640 * not at all, if 'packet' was NULL. */
3642 xlate_normal(struct action_xlate_ctx *ctx)
3644 struct ofbundle *in_bundle;
3645 struct ofbundle *out_bundle;
3646 struct mac_entry *mac;
3649 /* Check whether we should drop packets in this flow. */
3650 if (!is_admissible(ctx->ofproto, &ctx->flow, ctx->packet != NULL,
3651 &ctx->tags, &vlan, &in_bundle)) {
3656 /* Learn source MAC (but don't try to learn from revalidation). */
3658 update_learning_table(ctx->ofproto, &ctx->flow, vlan, in_bundle);
3661 /* Determine output bundle. */
3662 mac = mac_learning_lookup(ctx->ofproto->ml, ctx->flow.dl_dst, vlan,
3665 out_bundle = mac->port.p;
3666 } else if (!ctx->packet && !eth_addr_is_multicast(ctx->flow.dl_dst)) {
3667 /* If we are revalidating but don't have a learning entry then eject
3668 * the flow. Installing a flow that floods packets opens up a window
3669 * of time where we could learn from a packet reflected on a bond and
3670 * blackhole packets before the learning table is updated to reflect
3671 * the correct port. */
3674 out_bundle = OFBUNDLE_FLOOD;
3677 /* Don't send packets out their input bundles. */
3678 if (in_bundle == out_bundle) {
3684 compose_actions(ctx, vlan, in_bundle, out_bundle);
3691 get_drop_frags(struct ofproto *ofproto_)
3693 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
3696 dpif_get_drop_frags(ofproto->dpif, &drop_frags);
3701 set_drop_frags(struct ofproto *ofproto_, bool drop_frags)
3703 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
3705 dpif_set_drop_frags(ofproto->dpif, drop_frags);
3709 packet_out(struct ofproto *ofproto_, struct ofpbuf *packet,
3710 const struct flow *flow,
3711 const union ofp_action *ofp_actions, size_t n_ofp_actions)
3713 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
3716 error = validate_actions(ofp_actions, n_ofp_actions, flow,
3717 ofproto->max_ports);
3719 struct odputil_keybuf keybuf;
3720 struct action_xlate_ctx ctx;
3721 struct ofpbuf *odp_actions;
3724 ofpbuf_use_stack(&key, &keybuf, sizeof keybuf);
3725 odp_flow_key_from_flow(&key, flow);
3727 action_xlate_ctx_init(&ctx, ofproto, flow, packet);
3728 odp_actions = xlate_actions(&ctx, ofp_actions, n_ofp_actions);
3729 dpif_execute(ofproto->dpif, key.data, key.size,
3730 odp_actions->data, odp_actions->size, packet);
3731 ofpbuf_delete(odp_actions);
3737 get_netflow_ids(const struct ofproto *ofproto_,
3738 uint8_t *engine_type, uint8_t *engine_id)
3740 struct ofproto_dpif *ofproto = ofproto_dpif_cast(ofproto_);
3742 dpif_get_netflow_ids(ofproto->dpif, engine_type, engine_id);
3745 static struct ofproto_dpif *
3746 ofproto_dpif_lookup(const char *name)
3748 struct ofproto *ofproto = ofproto_lookup(name);
3749 return (ofproto && ofproto->ofproto_class == &ofproto_dpif_class
3750 ? ofproto_dpif_cast(ofproto)
3755 ofproto_unixctl_fdb_show(struct unixctl_conn *conn,
3756 const char *args, void *aux OVS_UNUSED)
3758 struct ds ds = DS_EMPTY_INITIALIZER;
3759 const struct ofproto_dpif *ofproto;
3760 const struct mac_entry *e;
3762 ofproto = ofproto_dpif_lookup(args);
3764 unixctl_command_reply(conn, 501, "no such bridge");
3768 ds_put_cstr(&ds, " port VLAN MAC Age\n");
3769 LIST_FOR_EACH (e, lru_node, &ofproto->ml->lrus) {
3770 struct ofbundle *bundle = e->port.p;
3771 ds_put_format(&ds, "%5d %4d "ETH_ADDR_FMT" %3d\n",
3772 ofbundle_get_a_port(bundle)->odp_port,
3773 e->vlan, ETH_ADDR_ARGS(e->mac), mac_entry_age(e));
3775 unixctl_command_reply(conn, 200, ds_cstr(&ds));
3779 struct ofproto_trace {
3780 struct action_xlate_ctx ctx;
3786 trace_format_rule(struct ds *result, int level, const struct rule *rule)
3788 ds_put_char_multiple(result, '\t', level);
3790 ds_put_cstr(result, "No match\n");
3794 ds_put_format(result, "Rule: cookie=%#"PRIx64" ",
3795 ntohll(rule->flow_cookie));
3796 cls_rule_format(&rule->cr, result);
3797 ds_put_char(result, '\n');
3799 ds_put_char_multiple(result, '\t', level);
3800 ds_put_cstr(result, "OpenFlow ");
3801 ofp_print_actions(result, (const struct ofp_action_header *) rule->actions,
3802 rule->n_actions * sizeof *rule->actions);
3803 ds_put_char(result, '\n');
3807 trace_format_flow(struct ds *result, int level, const char *title,
3808 struct ofproto_trace *trace)
3810 ds_put_char_multiple(result, '\t', level);
3811 ds_put_format(result, "%s: ", title);
3812 if (flow_equal(&trace->ctx.flow, &trace->flow)) {
3813 ds_put_cstr(result, "unchanged");
3815 flow_format(result, &trace->ctx.flow);
3816 trace->flow = trace->ctx.flow;
3818 ds_put_char(result, '\n');
3822 trace_resubmit(struct action_xlate_ctx *ctx, struct rule_dpif *rule)
3824 struct ofproto_trace *trace = CONTAINER_OF(ctx, struct ofproto_trace, ctx);
3825 struct ds *result = trace->result;
3827 ds_put_char(result, '\n');
3828 trace_format_flow(result, ctx->recurse + 1, "Resubmitted flow", trace);
3829 trace_format_rule(result, ctx->recurse + 1, &rule->up);
3833 ofproto_unixctl_trace(struct unixctl_conn *conn, const char *args_,
3834 void *aux OVS_UNUSED)
3836 char *dpname, *in_port_s, *tun_id_s, *packet_s;
3837 char *args = xstrdup(args_);
3838 char *save_ptr = NULL;
3839 struct ofproto_dpif *ofproto;
3840 struct ofpbuf packet;
3841 struct rule_dpif *rule;
3848 ofpbuf_init(&packet, strlen(args) / 2);
3851 dpname = strtok_r(args, " ", &save_ptr);
3852 tun_id_s = strtok_r(NULL, " ", &save_ptr);
3853 in_port_s = strtok_r(NULL, " ", &save_ptr);
3854 packet_s = strtok_r(NULL, "", &save_ptr); /* Get entire rest of line. */
3855 if (!dpname || !in_port_s || !packet_s) {
3856 unixctl_command_reply(conn, 501, "Bad command syntax");
3860 ofproto = ofproto_dpif_lookup(dpname);
3862 unixctl_command_reply(conn, 501, "Unknown ofproto (use ofproto/list "
3867 tun_id = htonll(strtoull(tun_id_s, NULL, 0));
3868 in_port = ofp_port_to_odp_port(atoi(in_port_s));
3870 packet_s = ofpbuf_put_hex(&packet, packet_s, NULL);
3871 packet_s += strspn(packet_s, " ");
3872 if (*packet_s != '\0') {
3873 unixctl_command_reply(conn, 501, "Trailing garbage in command");
3876 if (packet.size < ETH_HEADER_LEN) {
3877 unixctl_command_reply(conn, 501, "Packet data too short for Ethernet");
3881 ds_put_cstr(&result, "Packet: ");
3882 s = ofp_packet_to_string(packet.data, packet.size, packet.size);
3883 ds_put_cstr(&result, s);
3886 flow_extract(&packet, tun_id, in_port, &flow);
3887 ds_put_cstr(&result, "Flow: ");
3888 flow_format(&result, &flow);
3889 ds_put_char(&result, '\n');
3891 rule = rule_dpif_lookup(ofproto, &flow);
3892 trace_format_rule(&result, 0, &rule->up);
3894 struct ofproto_trace trace;
3895 struct ofpbuf *odp_actions;
3897 trace.result = &result;
3899 action_xlate_ctx_init(&trace.ctx, ofproto, &flow, &packet);
3900 trace.ctx.resubmit_hook = trace_resubmit;
3901 odp_actions = xlate_actions(&trace.ctx,
3902 rule->up.actions, rule->up.n_actions);
3904 ds_put_char(&result, '\n');
3905 trace_format_flow(&result, 0, "Final flow", &trace);
3906 ds_put_cstr(&result, "Datapath actions: ");
3907 format_odp_actions(&result, odp_actions->data, odp_actions->size);
3908 ofpbuf_delete(odp_actions);
3911 unixctl_command_reply(conn, 200, ds_cstr(&result));
3914 ds_destroy(&result);
3915 ofpbuf_uninit(&packet);
3920 ofproto_dpif_unixctl_init(void)
3922 static bool registered;
3928 unixctl_command_register("ofproto/trace", ofproto_unixctl_trace, NULL);
3929 unixctl_command_register("fdb/show", ofproto_unixctl_fdb_show, NULL);
3932 const struct ofproto_class ofproto_dpif_class = {
3959 port_is_lacp_current,
3960 NULL, /* rule_choose_table */
3967 rule_modify_actions,
3980 is_mirror_output_bundle,
git://git.onelab.eu / sliver-openvswitch.git / blob