2 # SPDX-License-Identifier: GPL-2.0
4 # ns: me | ns: peer | ns: remote
5 # 2001:db8:91::1 | 2001:db8:91::2 |
6 # 172.16.1.1 | 172.16.1.2 |
7 # veth1 <---|---> veth2 |
8 # | veth5 <--|--> veth6 172.16.101.1
9 # veth3 <---|---> veth4 | 2001:db8:101::1
10 # 172.16.2.1 | 172.16.2.2 |
11 # 2001:db8:92::1 | 2001:db8:92::2 |
13 # This test is for checking IPv4 and IPv6 FIB behavior with nexthop
14 # objects. Device reference counts and network namespace cleanup tested
15 # by use of network namespace for peer.
19 # Kselftest framework requirement - SKIP code is 4.
22 # all tests in this script. Can be overridden with -t option
66 ################################################################################
75 if [ ${rc} -eq ${expected} ]; then
76 printf "TEST: %-60s [ OK ]\n" "${msg}"
77 nsuccess=$((nsuccess+1))
81 printf "TEST: %-60s [FAIL]\n" "${msg}"
82 if [ "$VERBOSE" = "1" ]; then
83 echo " rc=$rc, expected $expected"
86 if [ "${PAUSE_ON_FAIL}" = "yes" ]; then
88 echo "hit enter to continue, 'q' to quit"
90 [ "$a" = "q" ] && exit 1
94 if [ "${PAUSE}" = "yes" ]; then
96 echo "hit enter to continue, 'q' to quit"
98 [ "$a" = "q" ] && exit 1
101 [ "$VERBOSE" = "1" ] && echo
108 local stderr="2>/dev/null"
110 if [ "$VERBOSE" = "1" ]; then
111 printf "COMMAND: $cmd\n"
115 out=$(eval $cmd $stderr)
117 if [ "$VERBOSE" = "1" -a -n "$out" ]; then
130 [ -n "$2" ] && ns="-netns $2"
131 addr=$(ip $ns -6 -br addr show dev ${dev} | \
133 for (i = 3; i <= NF; ++i) {
141 [ -z "$addr" ] && return 1
154 ip netns exec ${n} sysctl -qw net.ipv4.ip_forward=1
155 ip netns exec ${n} sysctl -qw net.ipv4.fib_multipath_use_neigh=1
156 ip netns exec ${n} sysctl -qw net.ipv4.conf.default.ignore_routes_with_linkdown=1
157 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.keep_addr_on_down=1
158 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.forwarding=1
159 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.forwarding=1
160 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.ignore_routes_with_linkdown=1
161 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.accept_dad=0
162 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.accept_dad=0
171 setup_ns me peer remote
177 BRIDGE="bridge -netns $me"
179 $IP li add veth1 type veth peer name veth2
181 $IP addr add 172.16.1.1/24 dev veth1
182 $IP -6 addr add 2001:db8:91::1/64 dev veth1 nodad
184 $IP li add veth3 type veth peer name veth4
186 $IP addr add 172.16.2.1/24 dev veth3
187 $IP -6 addr add 2001:db8:92::1/64 dev veth3 nodad
189 $IP li set veth2 netns $peer up
190 ip -netns $peer addr add 172.16.1.2/24 dev veth2
191 ip -netns $peer -6 addr add 2001:db8:91::2/64 dev veth2 nodad
193 $IP li set veth4 netns $peer up
194 ip -netns $peer addr add 172.16.2.2/24 dev veth4
195 ip -netns $peer -6 addr add 2001:db8:92::2/64 dev veth4 nodad
197 ip -netns $remote li add veth5 type veth peer name veth6
198 ip -netns $remote li set veth5 up
199 ip -netns $remote addr add dev veth5 172.16.101.1/24
200 ip -netns $remote -6 addr add dev veth5 2001:db8:101::1/64 nodad
201 ip -netns $remote ro add 172.16.0.0/22 via 172.16.101.2
202 ip -netns $remote -6 ro add 2001:db8:90::/40 via 2001:db8:101::2
204 ip -netns $remote li set veth6 netns $peer up
205 ip -netns $peer addr add dev veth6 172.16.101.2/24
206 ip -netns $peer -6 addr add dev veth6 2001:db8:101::2/64 nodad
214 for ns in $me $peer $remote; do
215 ip netns del ${ns} 2>/dev/null
225 [ "${out}" = "${expected}" ] && return 0
227 if [ -z "${out}" ]; then
228 if [ "$VERBOSE" = "1" ]; then
229 printf "\nNo entry found\n"
231 printf " ${expected}\n"
237 if [ "${out}" != "${expected}" ]; then
239 if [ "${VERBOSE}" = "1" ]; then
240 printf " Unexpected entry. Have:\n"
242 printf " Expected:\n"
243 printf " ${expected}\n\n"
245 echo " WARNING: Unexpected route entry"
258 out=$($IP nexthop ls ${nharg} 2>/dev/null)
260 check_output "${out}" "${expected}"
263 check_nexthop_bucket()
269 # remove the idle time since we cannot match it
270 out=$($IP nexthop bucket ${nharg} \
271 | sed s/idle_time\ [0-9.]*\ // 2>/dev/null)
273 check_output "${out}" "${expected}"
282 out=$($IP route ls match ${pfx} 2>/dev/null)
284 check_output "${out}" "${expected}"
293 out=$($IP -6 route ls match ${pfx} 2>/dev/null | sed -e 's/pref medium//')
295 check_output "${out}" "${expected}"
304 local grpidstart=1000
311 if [ $ipv -eq 4 ]; then
314 ipstr="2001:db8:91::"
318 # Create $grpnum groups with specified $ecmp and dump them
321 # create nexthops with different gateways
323 while [ $iter -le $(($ecmp + 1)) ]
325 nhidstr="$(($nhidstart + $iter))"
326 run_cmd "$IP nexthop add id $nhidstr via $ipstr$iter dev veth1"
327 check_nexthop "id $nhidstr" "id $nhidstr via $ipstr$iter dev veth1 scope link"
329 if [ $iter -le $ecmp ]; then
337 # create duplicate large ecmp groups
339 while [ $iter -le $grpnum ]
341 grpidstr="$(($grpidstart + $iter))"
342 run_cmd "$IP nexthop add id $grpidstr group $grpstr"
343 check_nexthop "id $grpidstr" "id $grpidstr group $grpstr"
348 run_cmd "$IP nexthop list"
349 log_test $? 0 "Dump large (x$ecmp) ecmp groups"
352 check_large_res_grp()
358 if [ $ipv -eq 4 ]; then
361 ipstr="2001:db8:91::2"
364 # create a resilient group with $buckets buckets and dump them
365 run_cmd "$IP nexthop add id 100 via $ipstr dev veth1"
366 run_cmd "$IP nexthop add id 1000 group 100 type resilient buckets $buckets"
367 run_cmd "$IP nexthop bucket list"
368 log_test $? 0 "Dump large (x$buckets) nexthop buckets"
376 if out=$($IP -j route get "$pfx" | jq -re ".[0].dev"); then
387 out=$(get_route_dev "$pfx")
389 check_output "$out" "$expected"
396 # start the monitor in the background
397 tmpfile=`mktemp /var/run/nexthoptestXXX`
398 mpid=`($IP monitor $mtype > $tmpfile & echo $!) 2>/dev/null`
400 echo "$mpid $tmpfile"
409 # check the monitor results
411 lines=`wc -l $tmpfile | cut "-d " -f1`
419 check_nexthop_fdb_support()
421 $IP nexthop help 2>&1 | grep -q fdb
422 if [ $? -ne 0 ]; then
423 echo "SKIP: iproute2 too old, missing fdb nexthop support"
428 check_nexthop_res_support()
430 $IP nexthop help 2>&1 | grep -q resilient
431 if [ $? -ne 0 ]; then
432 echo "SKIP: iproute2 too old, missing resilient nexthop group support"
442 echo "IPv6 fdb groups functional"
443 echo "--------------------------"
445 check_nexthop_fdb_support
446 if [ $? -eq $ksft_skip ]; then
450 # create group with multiple nexthops
451 run_cmd "$IP nexthop add id 61 via 2001:db8:91::2 fdb"
452 run_cmd "$IP nexthop add id 62 via 2001:db8:91::3 fdb"
453 run_cmd "$IP nexthop add id 102 group 61/62 fdb"
454 check_nexthop "id 102" "id 102 group 61/62 fdb"
455 log_test $? 0 "Fdb Nexthop group with multiple nexthops"
458 run_cmd "$IP nexthop get id 102"
459 check_nexthop "id 102" "id 102 group 61/62 fdb"
460 log_test $? 0 "Get Fdb nexthop group by id"
462 # fdb nexthop group can only contain fdb nexthops
463 run_cmd "$IP nexthop add id 63 via 2001:db8:91::4"
464 run_cmd "$IP nexthop add id 64 via 2001:db8:91::5"
465 run_cmd "$IP nexthop add id 103 group 63/64 fdb"
466 log_test $? 2 "Fdb Nexthop group with non-fdb nexthops"
468 # Non fdb nexthop group can not contain fdb nexthops
469 run_cmd "$IP nexthop add id 65 via 2001:db8:91::5 fdb"
470 run_cmd "$IP nexthop add id 66 via 2001:db8:91::6 fdb"
471 run_cmd "$IP nexthop add id 104 group 65/66"
472 log_test $? 2 "Non-Fdb Nexthop group with fdb nexthops"
474 # fdb nexthop cannot have blackhole
475 run_cmd "$IP nexthop add id 67 blackhole fdb"
476 log_test $? 2 "Fdb Nexthop with blackhole"
478 # fdb nexthop with oif
479 run_cmd "$IP nexthop add id 68 via 2001:db8:91::7 dev veth1 fdb"
480 log_test $? 2 "Fdb Nexthop with oif"
482 # fdb nexthop with onlink
483 run_cmd "$IP nexthop add id 68 via 2001:db8:91::7 onlink fdb"
484 log_test $? 2 "Fdb Nexthop with onlink"
486 # fdb nexthop with encap
487 run_cmd "$IP nexthop add id 69 encap mpls 101 via 2001:db8:91::8 dev veth1 fdb"
488 log_test $? 2 "Fdb Nexthop with encap"
490 run_cmd "$IP link add name vx10 type vxlan id 1010 local 2001:db8:91::9 remote 2001:db8:91::10 dstport 4789 nolearning noudpcsum tos inherit ttl 100"
491 run_cmd "$BRIDGE fdb add 02:02:00:00:00:13 dev vx10 nhid 102 self"
492 log_test $? 0 "Fdb mac add with nexthop group"
494 ## fdb nexthops can only reference nexthop groups and not nexthops
495 run_cmd "$BRIDGE fdb add 02:02:00:00:00:14 dev vx10 nhid 61 self"
496 log_test $? 255 "Fdb mac add with nexthop"
498 run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 66"
499 log_test $? 2 "Route add with fdb nexthop"
501 run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 103"
502 log_test $? 2 "Route add with fdb nexthop group"
504 run_cmd "$IP nexthop del id 61"
505 run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
506 log_test $? 0 "Fdb entry after deleting a single nexthop"
508 run_cmd "$IP nexthop del id 102"
509 log_test $? 0 "Fdb nexthop delete"
511 run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
512 log_test $? 254 "Fdb entry after deleting a nexthop group"
514 $IP link del dev vx10
522 echo "IPv4 fdb groups functional"
523 echo "--------------------------"
525 check_nexthop_fdb_support
526 if [ $? -eq $ksft_skip ]; then
530 # create group with multiple nexthops
531 run_cmd "$IP nexthop add id 12 via 172.16.1.2 fdb"
532 run_cmd "$IP nexthop add id 13 via 172.16.1.3 fdb"
533 run_cmd "$IP nexthop add id 102 group 12/13 fdb"
534 check_nexthop "id 102" "id 102 group 12/13 fdb"
535 log_test $? 0 "Fdb Nexthop group with multiple nexthops"
538 run_cmd "$IP nexthop get id 102"
539 check_nexthop "id 102" "id 102 group 12/13 fdb"
540 log_test $? 0 "Get Fdb nexthop group by id"
542 # fdb nexthop group can only contain fdb nexthops
543 run_cmd "$IP nexthop add id 14 via 172.16.1.2"
544 run_cmd "$IP nexthop add id 15 via 172.16.1.3"
545 run_cmd "$IP nexthop add id 103 group 14/15 fdb"
546 log_test $? 2 "Fdb Nexthop group with non-fdb nexthops"
548 # Non fdb nexthop group can not contain fdb nexthops
549 run_cmd "$IP nexthop add id 16 via 172.16.1.2 fdb"
550 run_cmd "$IP nexthop add id 17 via 172.16.1.3 fdb"
551 run_cmd "$IP nexthop add id 104 group 14/15"
552 log_test $? 2 "Non-Fdb Nexthop group with fdb nexthops"
554 # fdb nexthop cannot have blackhole
555 run_cmd "$IP nexthop add id 18 blackhole fdb"
556 log_test $? 2 "Fdb Nexthop with blackhole"
558 # fdb nexthop with oif
559 run_cmd "$IP nexthop add id 16 via 172.16.1.2 dev veth1 fdb"
560 log_test $? 2 "Fdb Nexthop with oif"
562 # fdb nexthop with onlink
563 run_cmd "$IP nexthop add id 16 via 172.16.1.2 onlink fdb"
564 log_test $? 2 "Fdb Nexthop with onlink"
566 # fdb nexthop with encap
567 run_cmd "$IP nexthop add id 17 encap mpls 101 via 172.16.1.2 dev veth1 fdb"
568 log_test $? 2 "Fdb Nexthop with encap"
570 run_cmd "$IP link add name vx10 type vxlan id 1010 local 10.0.0.1 remote 10.0.0.2 dstport 4789 nolearning noudpcsum tos inherit ttl 100"
571 run_cmd "$BRIDGE fdb add 02:02:00:00:00:13 dev vx10 nhid 102 self"
572 log_test $? 0 "Fdb mac add with nexthop group"
574 # fdb nexthops can only reference nexthop groups and not nexthops
575 run_cmd "$BRIDGE fdb add 02:02:00:00:00:14 dev vx10 nhid 12 self"
576 log_test $? 255 "Fdb mac add with nexthop"
578 run_cmd "$IP ro add 172.16.0.0/22 nhid 15"
579 log_test $? 2 "Route add with fdb nexthop"
581 run_cmd "$IP ro add 172.16.0.0/22 nhid 103"
582 log_test $? 2 "Route add with fdb nexthop group"
584 run_cmd "$IP nexthop del id 12"
585 run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
586 log_test $? 0 "Fdb entry after deleting a single nexthop"
588 run_cmd "$IP nexthop del id 102"
589 log_test $? 0 "Fdb nexthop delete"
591 run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
592 log_test $? 254 "Fdb entry after deleting a nexthop group"
594 $IP link del dev vx10
599 local rc dev match h addr
602 echo "IPv4 multipath selection"
603 echo "------------------------"
604 if [ ! -x "$(command -v jq)" ]; then
605 echo "SKIP: Could not run test; need jq tool"
609 # Use status of existing neighbor entry when determining nexthop for
612 gws=([veth1]=172.16.1.2 [veth3]=172.16.2.2)
614 other_dev=([veth1]=veth3 [veth3]=veth1)
616 run_cmd "$IP nexthop add id 1 via ${gws["veth1"]} dev veth1"
617 run_cmd "$IP nexthop add id 2 via ${gws["veth3"]} dev veth3"
618 run_cmd "$IP nexthop add id 1001 group 1/2"
619 run_cmd "$IP ro add 172.16.101.0/24 nhid 1001"
621 for dev in veth1 veth3; do
623 for h in {1..254}; do
625 if [ "$(get_route_dev "$addr")" = "$dev" ]; then
630 if (( match == 0 )); then
631 echo "SKIP: Did not find a route using device $dev"
634 run_cmd "$IP neigh add ${gws[$dev]} dev $dev nud failed"
635 if ! check_route_dev "$addr" "${other_dev[$dev]}"; then
639 run_cmd "$IP neigh del ${gws[$dev]} dev $dev"
641 log_test $rc 0 "Use valid neighbor during multipath selection"
643 run_cmd "$IP neigh add 172.16.1.2 dev veth1 nud incomplete"
644 run_cmd "$IP neigh add 172.16.2.2 dev veth3 nud incomplete"
645 run_cmd "$IP route get 172.16.101.1"
646 # if we did not crash, success
647 log_test $rc 0 "Multipath selection with no valid neighbor"
652 local rc dev match h addr
655 echo "IPv6 multipath selection"
656 echo "------------------------"
657 if [ ! -x "$(command -v jq)" ]; then
658 echo "SKIP: Could not run test; need jq tool"
662 # Use status of existing neighbor entry when determining nexthop for
665 gws=([veth1]=2001:db8:91::2 [veth3]=2001:db8:92::2)
667 other_dev=([veth1]=veth3 [veth3]=veth1)
669 run_cmd "$IP nexthop add id 1 via ${gws["veth1"]} dev veth1"
670 run_cmd "$IP nexthop add id 2 via ${gws["veth3"]} dev veth3"
671 run_cmd "$IP nexthop add id 1001 group 1/2"
672 run_cmd "$IP ro add 2001:db8:101::/64 nhid 1001"
674 for dev in veth1 veth3; do
676 for h in {1..65535}; do
677 addr=$(printf "2001:db8:101::%x" $h)
678 if [ "$(get_route_dev "$addr")" = "$dev" ]; then
683 if (( match == 0 )); then
684 echo "SKIP: Did not find a route using device $dev"
687 run_cmd "$IP neigh add ${gws[$dev]} dev $dev nud failed"
688 if ! check_route_dev "$addr" "${other_dev[$dev]}"; then
692 run_cmd "$IP neigh del ${gws[$dev]} dev $dev"
694 log_test $rc 0 "Use valid neighbor during multipath selection"
696 run_cmd "$IP neigh add 2001:db8:91::2 dev veth1 nud incomplete"
697 run_cmd "$IP neigh add 2001:db8:92::2 dev veth3 nud incomplete"
698 run_cmd "$IP route get 2001:db8:101::1"
699 # if we did not crash, success
700 log_test $rc 0 "Multipath selection with no valid neighbor"
703 ################################################################################
704 # basic operations (add, delete, replace) on nexthops and nexthop groups
714 echo "----------------------"
716 run_cmd "$IP nexthop add id 52 via 2001:db8:91::2 dev veth1"
718 log_test $rc 0 "Create nexthop with id, gw, dev"
719 if [ $rc -ne 0 ]; then
720 echo "Basic IPv6 create fails; can not continue"
724 run_cmd "$IP nexthop get id 52"
725 log_test $? 0 "Get nexthop by id"
726 check_nexthop "id 52" "id 52 via 2001:db8:91::2 dev veth1 scope link"
728 run_cmd "$IP nexthop del id 52"
729 log_test $? 0 "Delete nexthop by id"
730 check_nexthop "id 52" ""
735 # gw validation, no device - fails since dev required
736 run_cmd "$IP nexthop add id 52 via 2001:db8:92::3"
737 log_test $? 2 "Create nexthop - gw only"
739 # gw is not reachable throught given dev
740 run_cmd "$IP nexthop add id 53 via 2001:db8:3::3 dev veth1"
741 log_test $? 2 "Create nexthop - invalid gw+dev combination"
743 # onlink arg overrides gw+dev lookup
744 run_cmd "$IP nexthop add id 53 via 2001:db8:3::3 dev veth1 onlink"
745 log_test $? 0 "Create nexthop - gw+dev and onlink"
747 # admin down should delete nexthops
749 run_cmd "$IP -6 nexthop add id 55 via 2001:db8:91::3 dev veth1"
750 run_cmd "$IP nexthop add id 56 via 2001:db8:91::4 dev veth1"
751 run_cmd "$IP nexthop add id 57 via 2001:db8:91::5 dev veth1"
752 run_cmd "$IP li set dev veth1 down"
754 check_nexthop "dev veth1" ""
755 log_test $? 0 "Nexthops removed on admin down"
760 if [ ! -x "$(command -v mausezahn)" ]; then
761 echo "SKIP: Could not run test; need mausezahn tool"
765 run_cmd "$IP link set dev veth1 up"
766 run_cmd "$IP link add veth1.10 link veth1 up type vlan id 10"
767 run_cmd "$IP link add veth1.20 link veth1 up type vlan id 20"
768 run_cmd "$IP -6 addr add 2001:db8:91::1/64 dev veth1.10"
769 run_cmd "$IP -6 addr add 2001:db8:92::1/64 dev veth1.20"
770 run_cmd "$IP -6 neigh add 2001:db8:91::2 lladdr 00:11:22:33:44:55 dev veth1.10"
771 run_cmd "$IP -6 neigh add 2001:db8:92::2 lladdr 00:11:22:33:44:55 dev veth1.20"
772 run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1.10"
773 run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth1.20"
774 run_cmd "$IP nexthop add id 102 group 100"
775 run_cmd "$IP route add 2001:db8:101::1/128 nhid 102"
777 # create per-cpu dsts through nh 100
778 run_cmd "ip netns exec $me mausezahn -6 veth1.10 -B 2001:db8:101::1 -A 2001:db8:91::1 -c 5 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1"
780 # remove nh 100 from the group to delete the route potentially leaving
781 # a stale per-cpu dst which holds a reference to the nexthop's net
782 # device and to the IPv6 route
783 run_cmd "$IP nexthop replace id 102 group 101"
784 run_cmd "$IP route del 2001:db8:101::1/128"
786 # add both nexthops to the group so a reference is taken on them
787 run_cmd "$IP nexthop replace id 102 group 100/101"
789 # if the bug described in commit "net: nexthop: release IPv6 per-cpu
790 # dsts when replacing a nexthop group" exists at this point we have
791 # an unlinked IPv6 route (but not freed due to stale dst) with a
792 # reference over the group so we delete the group which will again
793 # only unlink it due to the route reference
794 run_cmd "$IP nexthop del id 102"
796 # delete the nexthop with stale dst, since we have an unlinked
797 # group with a ref to it and an unlinked IPv6 route with ref to the
798 # group, the nh will only be unlinked and not freed so the stale dst
799 # remains forever and we get a net device refcount imbalance
800 run_cmd "$IP nexthop del id 100"
802 # if a reference was lost this command will hang because the net device
804 timeout -s KILL 5 ip netns exec $me ip link del veth1.10 >/dev/null 2>&1
806 # we can't cleanup if the command is hung trying to delete the netdev
807 if [ $? -eq 137 ]; then
812 run_cmd "$IP link del veth1.20"
813 run_cmd "$IP nexthop flush"
823 echo "IPv6 groups functional"
824 echo "----------------------"
826 # basic functionality: create a nexthop group, default weight
827 run_cmd "$IP nexthop add id 61 via 2001:db8:91::2 dev veth1"
828 run_cmd "$IP nexthop add id 101 group 61"
829 log_test $? 0 "Create nexthop group with single nexthop"
832 run_cmd "$IP nexthop get id 101"
833 log_test $? 0 "Get nexthop group by id"
834 check_nexthop "id 101" "id 101 group 61"
836 # delete nexthop group
837 run_cmd "$IP nexthop del id 101"
838 log_test $? 0 "Delete nexthop group by id"
839 check_nexthop "id 101" ""
841 $IP nexthop flush >/dev/null 2>&1
842 check_nexthop "id 101" ""
845 # create group with multiple nexthops - mix of gw and dev only
847 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
848 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
849 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
850 run_cmd "$IP nexthop add id 65 dev veth1"
851 run_cmd "$IP nexthop add id 102 group 62/63/64/65"
852 log_test $? 0 "Nexthop group with multiple nexthops"
853 check_nexthop "id 102" "id 102 group 62/63/64/65"
855 # Delete nexthop in a group and group is updated
856 run_cmd "$IP nexthop del id 63"
857 check_nexthop "id 102" "id 102 group 62/64/65"
858 log_test $? 0 "Nexthop group updated when entry is deleted"
860 # create group with multiple weighted nexthops
861 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
862 run_cmd "$IP nexthop add id 103 group 62/63,2/64,3/65,4"
863 log_test $? 0 "Nexthop group with weighted nexthops"
864 check_nexthop "id 103" "id 103 group 62/63,2/64,3/65,4"
866 # Delete nexthop in a weighted group and group is updated
867 run_cmd "$IP nexthop del id 63"
868 check_nexthop "id 103" "id 103 group 62/64,3/65,4"
869 log_test $? 0 "Weighted nexthop group updated when entry is deleted"
871 # admin down - nexthop is removed from group
872 run_cmd "$IP li set dev veth1 down"
873 check_nexthop "dev veth1" ""
874 log_test $? 0 "Nexthops in groups removed on admin down"
876 # expect groups to have been deleted as well
879 run_cmd "$IP li set dev veth1 up"
881 $IP nexthop flush >/dev/null 2>&1
883 # group with nexthops using different devices
885 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
886 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
887 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
888 run_cmd "$IP nexthop add id 65 via 2001:db8:91::5 dev veth1"
890 run_cmd "$IP nexthop add id 72 via 2001:db8:92::2 dev veth3"
891 run_cmd "$IP nexthop add id 73 via 2001:db8:92::3 dev veth3"
892 run_cmd "$IP nexthop add id 74 via 2001:db8:92::4 dev veth3"
893 run_cmd "$IP nexthop add id 75 via 2001:db8:92::5 dev veth3"
896 # multiple groups with same nexthop
897 run_cmd "$IP nexthop add id 104 group 62"
898 run_cmd "$IP nexthop add id 105 group 62"
899 check_nexthop "group" "id 104 group 62 id 105 group 62"
900 log_test $? 0 "Multiple groups with same nexthop"
902 run_cmd "$IP nexthop flush groups"
903 [ $? -ne 0 ] && return 1
905 # on admin down of veth1, it should be removed from the group
906 run_cmd "$IP nexthop add id 105 group 62/63/72/73/64"
907 run_cmd "$IP li set veth1 down"
908 check_nexthop "id 105" "id 105 group 72/73"
909 log_test $? 0 "Nexthops in group removed on admin down - mixed group"
911 run_cmd "$IP nexthop add id 106 group 105/74"
912 log_test $? 2 "Nexthop group can not have a group as an entry"
914 # a group can have a blackhole entry only if it is the only
915 # nexthop in the group. Needed for atomic replace with an
916 # actual nexthop group
917 run_cmd "$IP -6 nexthop add id 31 blackhole"
918 run_cmd "$IP nexthop add id 107 group 31"
919 log_test $? 0 "Nexthop group with a blackhole entry"
921 run_cmd "$IP nexthop add id 108 group 31/24"
922 log_test $? 2 "Nexthop group can not have a blackhole and another nexthop"
925 log_test $? 0 "Nexthop group replace refcounts"
933 echo "IPv6 resilient groups functional"
934 echo "--------------------------------"
936 check_nexthop_res_support
937 if [ $? -eq $ksft_skip ]; then
942 # migration of nexthop buckets - equal weights
944 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
945 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
946 run_cmd "$IP nexthop add id 102 group 62/63 type resilient buckets 2 idle_timer 0"
948 run_cmd "$IP nexthop del id 63"
949 check_nexthop "id 102" \
950 "id 102 group 62 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
951 log_test $? 0 "Nexthop group updated when entry is deleted"
952 check_nexthop_bucket "list id 102" \
953 "id 102 index 0 nhid 62 id 102 index 1 nhid 62"
954 log_test $? 0 "Nexthop buckets updated when entry is deleted"
956 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
957 run_cmd "$IP nexthop replace id 102 group 62/63 type resilient buckets 2 idle_timer 0"
958 check_nexthop "id 102" \
959 "id 102 group 62/63 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
960 log_test $? 0 "Nexthop group updated after replace"
961 check_nexthop_bucket "list id 102" \
962 "id 102 index 0 nhid 63 id 102 index 1 nhid 62"
963 log_test $? 0 "Nexthop buckets updated after replace"
965 $IP nexthop flush >/dev/null 2>&1
968 # migration of nexthop buckets - unequal weights
970 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
971 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
972 run_cmd "$IP nexthop add id 102 group 62,3/63,1 type resilient buckets 4 idle_timer 0"
974 run_cmd "$IP nexthop del id 63"
975 check_nexthop "id 102" \
976 "id 102 group 62,3 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
977 log_test $? 0 "Nexthop group updated when entry is deleted - nECMP"
978 check_nexthop_bucket "list id 102" \
979 "id 102 index 0 nhid 62 id 102 index 1 nhid 62 id 102 index 2 nhid 62 id 102 index 3 nhid 62"
980 log_test $? 0 "Nexthop buckets updated when entry is deleted - nECMP"
982 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
983 run_cmd "$IP nexthop replace id 102 group 62,3/63,1 type resilient buckets 4 idle_timer 0"
984 check_nexthop "id 102" \
985 "id 102 group 62,3/63 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
986 log_test $? 0 "Nexthop group updated after replace - nECMP"
987 check_nexthop_bucket "list id 102" \
988 "id 102 index 0 nhid 63 id 102 index 1 nhid 62 id 102 index 2 nhid 62 id 102 index 3 nhid 62"
989 log_test $? 0 "Nexthop buckets updated after replace - nECMP"
997 echo "IPv6 functional runtime"
998 echo "-----------------------"
1003 run_cmd "$IP nexthop add id 81 via 2001:db8:91::2 dev veth1"
1004 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
1005 log_test $? 0 "Route add"
1007 run_cmd "$IP ro delete 2001:db8:101::1/128 nhid 81"
1008 log_test $? 0 "Route delete"
1010 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
1011 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1012 log_test $? 0 "Ping with nexthop"
1014 run_cmd "$IP nexthop add id 82 via 2001:db8:92::2 dev veth3"
1015 run_cmd "$IP nexthop add id 122 group 81/82"
1016 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
1017 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1018 log_test $? 0 "Ping - multipath"
1021 # IPv6 with blackhole nexthops
1023 run_cmd "$IP -6 nexthop add id 83 blackhole"
1024 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 83"
1025 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1026 log_test $? 2 "Ping - blackhole"
1028 run_cmd "$IP nexthop replace id 83 via 2001:db8:91::2 dev veth1"
1029 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1030 log_test $? 0 "Ping - blackhole replaced with gateway"
1032 run_cmd "$IP -6 nexthop replace id 83 blackhole"
1033 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1034 log_test $? 2 "Ping - gateway replaced by blackhole"
1036 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
1037 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1038 if [ $? -eq 0 ]; then
1039 run_cmd "$IP nexthop replace id 122 group 83"
1040 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1041 log_test $? 2 "Ping - group with blackhole"
1043 run_cmd "$IP nexthop replace id 122 group 81/82"
1044 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1045 log_test $? 0 "Ping - group blackhole replaced with gateways"
1047 log_test 2 0 "Ping - multipath failed"
1051 # device only and gw + dev only mix
1053 run_cmd "$IP -6 nexthop add id 85 dev veth1"
1054 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 85"
1055 log_test $? 0 "IPv6 route with device only nexthop"
1056 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 85 dev veth1 metric 1024"
1058 run_cmd "$IP nexthop add id 123 group 81/85"
1059 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 123"
1060 log_test $? 0 "IPv6 multipath route with nexthop mix - dev only + gw"
1061 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 123 metric 1024 nexthop via 2001:db8:91::2 dev veth1 weight 1 nexthop dev veth1 weight 1"
1064 # IPv6 route with v4 nexthop - not allowed
1066 run_cmd "$IP ro delete 2001:db8:101::1/128"
1067 run_cmd "$IP nexthop add id 84 via 172.16.1.1 dev veth1"
1068 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 84"
1069 log_test $? 2 "IPv6 route can not have a v4 gateway"
1071 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 81"
1072 run_cmd "$IP nexthop replace id 81 via 172.16.1.1 dev veth1"
1073 log_test $? 2 "Nexthop replace - v6 route, v4 nexthop"
1075 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
1076 run_cmd "$IP nexthop replace id 81 via 172.16.1.1 dev veth1"
1077 log_test $? 2 "Nexthop replace of group entry - v6 route, v4 nexthop"
1079 run_cmd "$IP nexthop add id 86 via 2001:db8:92::2 dev veth3"
1080 run_cmd "$IP nexthop add id 87 via 172.16.1.1 dev veth1"
1081 run_cmd "$IP nexthop add id 88 via 172.16.1.1 dev veth1"
1082 run_cmd "$IP nexthop add id 124 group 86/87/88"
1083 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1084 log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
1086 run_cmd "$IP nexthop del id 88"
1087 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1088 log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
1090 run_cmd "$IP nexthop del id 87"
1091 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1092 log_test $? 0 "IPv6 route using a group after removing v4 gateways"
1094 run_cmd "$IP ro delete 2001:db8:101::1/128"
1095 run_cmd "$IP nexthop add id 87 via 172.16.1.1 dev veth1"
1096 run_cmd "$IP nexthop add id 88 via 172.16.1.1 dev veth1"
1097 run_cmd "$IP nexthop replace id 124 group 86/87/88"
1098 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1099 log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
1101 run_cmd "$IP nexthop replace id 88 via 2001:db8:92::2 dev veth3"
1102 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1103 log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
1105 run_cmd "$IP nexthop replace id 87 via 2001:db8:92::2 dev veth3"
1106 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1107 log_test $? 0 "IPv6 route using a group after replacing v4 gateways"
1109 $IP nexthop flush >/dev/null 2>&1
1114 run_cmd "$IP nexthop add id 86 via 2001:db8:91::2 dev veth1"
1115 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
1117 # route can not use prefsrc with nexthops
1118 run_cmd "$IP ro add 2001:db8:101::2/128 nhid 86 from 2001:db8:91::1"
1119 log_test $? 2 "IPv6 route can not use src routing with external nexthop"
1121 # check cleanup path on invalid metric
1122 run_cmd "$IP ro add 2001:db8:101::2/128 nhid 86 congctl lock foo"
1123 log_test $? 2 "IPv6 route with invalid metric"
1125 # rpfilter and default route
1126 $IP nexthop flush >/dev/null 2>&1
1127 run_cmd "ip netns exec $me ip6tables -t mangle -I PREROUTING 1 -m rpfilter --invert -j DROP"
1128 run_cmd "$IP nexthop add id 91 via 2001:db8:91::2 dev veth1"
1129 run_cmd "$IP nexthop add id 92 via 2001:db8:92::2 dev veth3"
1130 run_cmd "$IP nexthop add id 93 group 91/92"
1131 run_cmd "$IP -6 ro add default nhid 91"
1132 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1133 log_test $? 0 "Nexthop with default route and rpfilter"
1134 run_cmd "$IP -6 ro replace default nhid 93"
1135 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1136 log_test $? 0 "Nexthop with multipath default route and rpfilter"
1139 # existing route with old nexthop; append route with new nexthop
1140 # existing route with old nexthop; replace route with new
1141 # existing route with new nexthop; replace route with old
1142 # route with src address and using nexthop - not allowed
1150 echo "IPv6 large groups (x$ecmp)"
1151 echo "---------------------"
1153 check_large_grp 6 $ecmp
1155 $IP nexthop flush >/dev/null 2>&1
1158 ipv6_large_res_grp()
1161 echo "IPv6 large resilient group (128k buckets)"
1162 echo "-----------------------------------------"
1164 check_nexthop_res_support
1165 if [ $? -eq $ksft_skip ]; then
1169 check_large_res_grp 6 $((128 * 1024))
1171 $IP nexthop flush >/dev/null 2>&1
1174 ipv6_del_add_loop1()
1177 $IP nexthop del id 100
1178 $IP nexthop add id 100 via 2001:db8:91::2 dev veth1
1179 done >/dev/null 2>&1
1182 ipv6_grp_replace_loop()
1185 $IP nexthop replace id 102 group 100/101
1186 done >/dev/null 2>&1
1198 echo "IPv6 runtime torture"
1199 echo "--------------------"
1200 if [ ! -x "$(command -v mausezahn)" ]; then
1201 echo "SKIP: Could not run test; need mausezahn tool"
1205 run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1"
1206 run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth3"
1207 run_cmd "$IP nexthop add id 102 group 100/101"
1208 run_cmd "$IP route add 2001:db8:101::1 nhid 102"
1209 run_cmd "$IP route add 2001:db8:101::2 nhid 102"
1211 ipv6_del_add_loop1 &
1213 ipv6_grp_replace_loop &
1215 ip netns exec $me ping -f 2001:db8:101::1 >/dev/null 2>&1 &
1217 ip netns exec $me ping -f 2001:db8:101::2 >/dev/null 2>&1 &
1219 ip netns exec $me mausezahn -6 veth1 -B 2001:db8:101::2 -A 2001:db8:91::1 -c 0 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
1223 kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
1224 wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
1226 # if we did not crash, success
1227 log_test 0 0 "IPv6 torture test"
1230 ipv6_res_grp_replace_loop()
1233 $IP nexthop replace id 102 group 100/101 type resilient
1234 done >/dev/null 2>&1
1246 echo "IPv6 runtime resilient nexthop group torture"
1247 echo "--------------------------------------------"
1249 check_nexthop_res_support
1250 if [ $? -eq $ksft_skip ]; then
1254 if [ ! -x "$(command -v mausezahn)" ]; then
1255 echo "SKIP: Could not run test; need mausezahn tool"
1259 run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1"
1260 run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth3"
1261 run_cmd "$IP nexthop add id 102 group 100/101 type resilient buckets 512 idle_timer 0"
1262 run_cmd "$IP route add 2001:db8:101::1 nhid 102"
1263 run_cmd "$IP route add 2001:db8:101::2 nhid 102"
1265 ipv6_del_add_loop1 &
1267 ipv6_res_grp_replace_loop &
1269 ip netns exec $me ping -f 2001:db8:101::1 >/dev/null 2>&1 &
1271 ip netns exec $me ping -f 2001:db8:101::2 >/dev/null 2>&1 &
1273 ip netns exec $me mausezahn -6 veth1 \
1274 -B 2001:db8:101::2 -A 2001:db8:91::1 -c 0 \
1275 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
1279 kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
1280 wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
1282 # if we did not crash, success
1283 log_test 0 0 "IPv6 resilient nexthop group torture test"
1291 echo "IPv4 functional"
1292 echo "----------------------"
1295 # basic IPv4 ops - add, get, delete
1297 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1299 log_test $rc 0 "Create nexthop with id, gw, dev"
1300 if [ $rc -ne 0 ]; then
1301 echo "Basic IPv4 create fails; can not continue"
1305 run_cmd "$IP nexthop get id 12"
1306 log_test $? 0 "Get nexthop by id"
1307 check_nexthop "id 12" "id 12 via 172.16.1.2 dev veth1 scope link"
1309 run_cmd "$IP nexthop del id 12"
1310 log_test $? 0 "Delete nexthop by id"
1311 check_nexthop "id 52" ""
1316 # gw validation, no device - fails since dev is required
1317 run_cmd "$IP nexthop add id 12 via 172.16.2.3"
1318 log_test $? 2 "Create nexthop - gw only"
1320 # gw not reachable through given dev
1321 run_cmd "$IP nexthop add id 13 via 172.16.3.2 dev veth1"
1322 log_test $? 2 "Create nexthop - invalid gw+dev combination"
1324 # onlink flag overrides gw+dev lookup
1325 run_cmd "$IP nexthop add id 13 via 172.16.3.2 dev veth1 onlink"
1326 log_test $? 0 "Create nexthop - gw+dev and onlink"
1328 # admin down should delete nexthops
1330 run_cmd "$IP nexthop add id 15 via 172.16.1.3 dev veth1"
1331 run_cmd "$IP nexthop add id 16 via 172.16.1.4 dev veth1"
1332 run_cmd "$IP nexthop add id 17 via 172.16.1.5 dev veth1"
1333 run_cmd "$IP li set dev veth1 down"
1335 check_nexthop "dev veth1" ""
1336 log_test $? 0 "Nexthops removed on admin down"
1338 # nexthop route delete warning: route add with nhid and delete
1340 run_cmd "$IP li set dev veth1 up"
1341 run_cmd "$IP nexthop add id 12 via 172.16.1.3 dev veth1"
1342 out1=`dmesg | grep "WARNING:.*fib_nh_match.*" | wc -l`
1343 run_cmd "$IP route add 172.16.101.1/32 nhid 12"
1344 run_cmd "$IP route delete 172.16.101.1/32 dev veth1"
1345 out2=`dmesg | grep "WARNING:.*fib_nh_match.*" | wc -l`
1348 log_test $rc 0 "Delete nexthop route warning"
1349 run_cmd "$IP route delete 172.16.101.1/32 nhid 12"
1350 run_cmd "$IP nexthop del id 12"
1352 run_cmd "$IP nexthop add id 21 via 172.16.1.6 dev veth1"
1353 run_cmd "$IP ro add 172.16.101.0/24 nhid 21"
1354 run_cmd "$IP ro del 172.16.101.0/24 nexthop via 172.16.1.7 dev veth1 nexthop via 172.16.1.8 dev veth1"
1355 log_test $? 2 "Delete multipath route with only nh id based entry"
1357 run_cmd "$IP nexthop add id 22 via 172.16.1.6 dev veth1"
1358 run_cmd "$IP ro add 172.16.102.0/24 nhid 22"
1359 run_cmd "$IP ro del 172.16.102.0/24 dev veth1"
1360 log_test $? 2 "Delete route when specifying only nexthop device"
1362 run_cmd "$IP ro del 172.16.102.0/24 via 172.16.1.6"
1363 log_test $? 2 "Delete route when specifying only gateway"
1365 run_cmd "$IP ro del 172.16.102.0/24"
1366 log_test $? 0 "Delete route when not specifying nexthop attributes"
1374 echo "IPv4 groups functional"
1375 echo "----------------------"
1377 # basic functionality: create a nexthop group, default weight
1378 run_cmd "$IP nexthop add id 11 via 172.16.1.2 dev veth1"
1379 run_cmd "$IP nexthop add id 101 group 11"
1380 log_test $? 0 "Create nexthop group with single nexthop"
1383 run_cmd "$IP nexthop get id 101"
1384 log_test $? 0 "Get nexthop group by id"
1385 check_nexthop "id 101" "id 101 group 11"
1387 # delete nexthop group
1388 run_cmd "$IP nexthop del id 101"
1389 log_test $? 0 "Delete nexthop group by id"
1390 check_nexthop "id 101" ""
1392 $IP nexthop flush >/dev/null 2>&1
1395 # create group with multiple nexthops
1396 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1397 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1398 run_cmd "$IP nexthop add id 14 via 172.16.1.4 dev veth1"
1399 run_cmd "$IP nexthop add id 15 via 172.16.1.5 dev veth1"
1400 run_cmd "$IP nexthop add id 102 group 12/13/14/15"
1401 log_test $? 0 "Nexthop group with multiple nexthops"
1402 check_nexthop "id 102" "id 102 group 12/13/14/15"
1404 # Delete nexthop in a group and group is updated
1405 run_cmd "$IP nexthop del id 13"
1406 check_nexthop "id 102" "id 102 group 12/14/15"
1407 log_test $? 0 "Nexthop group updated when entry is deleted"
1409 # create group with multiple weighted nexthops
1410 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1411 run_cmd "$IP nexthop add id 103 group 12/13,2/14,3/15,4"
1412 log_test $? 0 "Nexthop group with weighted nexthops"
1413 check_nexthop "id 103" "id 103 group 12/13,2/14,3/15,4"
1415 # Delete nexthop in a weighted group and group is updated
1416 run_cmd "$IP nexthop del id 13"
1417 check_nexthop "id 103" "id 103 group 12/14,3/15,4"
1418 log_test $? 0 "Weighted nexthop group updated when entry is deleted"
1420 # admin down - nexthop is removed from group
1421 run_cmd "$IP li set dev veth1 down"
1422 check_nexthop "dev veth1" ""
1423 log_test $? 0 "Nexthops in groups removed on admin down"
1425 # expect groups to have been deleted as well
1428 run_cmd "$IP li set dev veth1 up"
1430 $IP nexthop flush >/dev/null 2>&1
1432 # group with nexthops using different devices
1434 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1435 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1436 run_cmd "$IP nexthop add id 14 via 172.16.1.4 dev veth1"
1437 run_cmd "$IP nexthop add id 15 via 172.16.1.5 dev veth1"
1439 run_cmd "$IP nexthop add id 22 via 172.16.2.2 dev veth3"
1440 run_cmd "$IP nexthop add id 23 via 172.16.2.3 dev veth3"
1441 run_cmd "$IP nexthop add id 24 via 172.16.2.4 dev veth3"
1442 run_cmd "$IP nexthop add id 25 via 172.16.2.5 dev veth3"
1445 # multiple groups with same nexthop
1446 run_cmd "$IP nexthop add id 104 group 12"
1447 run_cmd "$IP nexthop add id 105 group 12"
1448 check_nexthop "group" "id 104 group 12 id 105 group 12"
1449 log_test $? 0 "Multiple groups with same nexthop"
1451 run_cmd "$IP nexthop flush groups"
1452 [ $? -ne 0 ] && return 1
1454 # on admin down of veth1, it should be removed from the group
1455 run_cmd "$IP nexthop add id 105 group 12/13/22/23/14"
1456 run_cmd "$IP li set veth1 down"
1457 check_nexthop "id 105" "id 105 group 22/23"
1458 log_test $? 0 "Nexthops in group removed on admin down - mixed group"
1460 run_cmd "$IP nexthop add id 106 group 105/24"
1461 log_test $? 2 "Nexthop group can not have a group as an entry"
1463 # a group can have a blackhole entry only if it is the only
1464 # nexthop in the group. Needed for atomic replace with an
1465 # actual nexthop group
1466 run_cmd "$IP nexthop add id 31 blackhole"
1467 run_cmd "$IP nexthop add id 107 group 31"
1468 log_test $? 0 "Nexthop group with a blackhole entry"
1470 run_cmd "$IP nexthop add id 108 group 31/24"
1471 log_test $? 2 "Nexthop group can not have a blackhole and another nexthop"
1474 ipv4_res_grp_fcnal()
1479 echo "IPv4 resilient groups functional"
1480 echo "--------------------------------"
1482 check_nexthop_res_support
1483 if [ $? -eq $ksft_skip ]; then
1488 # migration of nexthop buckets - equal weights
1490 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1491 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1492 run_cmd "$IP nexthop add id 102 group 12/13 type resilient buckets 2 idle_timer 0"
1494 run_cmd "$IP nexthop del id 13"
1495 check_nexthop "id 102" \
1496 "id 102 group 12 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
1497 log_test $? 0 "Nexthop group updated when entry is deleted"
1498 check_nexthop_bucket "list id 102" \
1499 "id 102 index 0 nhid 12 id 102 index 1 nhid 12"
1500 log_test $? 0 "Nexthop buckets updated when entry is deleted"
1502 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1503 run_cmd "$IP nexthop replace id 102 group 12/13 type resilient buckets 2 idle_timer 0"
1504 check_nexthop "id 102" \
1505 "id 102 group 12/13 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
1506 log_test $? 0 "Nexthop group updated after replace"
1507 check_nexthop_bucket "list id 102" \
1508 "id 102 index 0 nhid 13 id 102 index 1 nhid 12"
1509 log_test $? 0 "Nexthop buckets updated after replace"
1511 $IP nexthop flush >/dev/null 2>&1
1514 # migration of nexthop buckets - unequal weights
1516 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1517 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1518 run_cmd "$IP nexthop add id 102 group 12,3/13,1 type resilient buckets 4 idle_timer 0"
1520 run_cmd "$IP nexthop del id 13"
1521 check_nexthop "id 102" \
1522 "id 102 group 12,3 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
1523 log_test $? 0 "Nexthop group updated when entry is deleted - nECMP"
1524 check_nexthop_bucket "list id 102" \
1525 "id 102 index 0 nhid 12 id 102 index 1 nhid 12 id 102 index 2 nhid 12 id 102 index 3 nhid 12"
1526 log_test $? 0 "Nexthop buckets updated when entry is deleted - nECMP"
1528 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1529 run_cmd "$IP nexthop replace id 102 group 12,3/13,1 type resilient buckets 4 idle_timer 0"
1530 check_nexthop "id 102" \
1531 "id 102 group 12,3/13 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
1532 log_test $? 0 "Nexthop group updated after replace - nECMP"
1533 check_nexthop_bucket "list id 102" \
1534 "id 102 index 0 nhid 13 id 102 index 1 nhid 12 id 102 index 2 nhid 12 id 102 index 3 nhid 12"
1535 log_test $? 0 "Nexthop buckets updated after replace - nECMP"
1543 lladdr=$(get_linklocal veth2 $peer)
1544 run_cmd "$IP nexthop add id 11 via ${lladdr} dev veth1"
1546 run_cmd "$IP ro add 172.16.101.1/32 nhid 11"
1547 log_test $? 0 "IPv6 nexthop with IPv4 route"
1548 check_route "172.16.101.1" "172.16.101.1 nhid 11 via inet6 ${lladdr} dev veth1"
1551 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1552 run_cmd "$IP nexthop add id 101 group 11/12"
1554 run_cmd "$IP ro replace 172.16.101.1/32 nhid 101"
1555 log_test $? 0 "IPv6 nexthop with IPv4 route"
1557 check_route "172.16.101.1" "172.16.101.1 nhid 101 nexthop via inet6 ${lladdr} dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
1559 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
1560 log_test $? 0 "IPv4 route with IPv6 gateway"
1561 check_route "172.16.101.1" "172.16.101.1 via inet6 ${lladdr} dev veth1"
1563 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 2001:db8:50::1 dev veth1"
1564 log_test $? 2 "IPv4 route with invalid IPv6 gateway"
1567 ipv4_fcnal_runtime()
1573 echo "IPv4 functional runtime"
1574 echo "-----------------------"
1576 run_cmd "$IP nexthop add id 21 via 172.16.1.2 dev veth1"
1577 run_cmd "$IP ro add 172.16.101.1/32 nhid 21"
1578 log_test $? 0 "Route add"
1579 check_route "172.16.101.1" "172.16.101.1 nhid 21 via 172.16.1.2 dev veth1"
1581 run_cmd "$IP ro delete 172.16.101.1/32 nhid 21"
1582 log_test $? 0 "Route delete"
1587 run_cmd "$IP nexthop add id 22 via 172.16.1.2 dev veth1"
1588 run_cmd "$IP ro add 172.16.101.1/32 nhid 22 scope host"
1589 log_test $? 2 "Route add - scope conflict with nexthop"
1591 run_cmd "$IP nexthop replace id 22 dev veth3"
1592 run_cmd "$IP ro add 172.16.101.1/32 nhid 22 scope host"
1593 run_cmd "$IP nexthop replace id 22 via 172.16.2.2 dev veth3"
1594 log_test $? 2 "Nexthop replace with invalid scope for existing route"
1596 # check cleanup path on invalid metric
1597 run_cmd "$IP ro add 172.16.101.2/32 nhid 22 congctl lock foo"
1598 log_test $? 2 "IPv4 route with invalid metric"
1601 # add route with nexthop and check traffic
1603 run_cmd "$IP nexthop replace id 21 via 172.16.1.2 dev veth1"
1604 run_cmd "$IP ro replace 172.16.101.1/32 nhid 21"
1605 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1606 log_test $? 0 "Basic ping"
1608 run_cmd "$IP nexthop replace id 22 via 172.16.2.2 dev veth3"
1609 run_cmd "$IP nexthop add id 122 group 21/22"
1610 run_cmd "$IP ro replace 172.16.101.1/32 nhid 122"
1611 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1612 log_test $? 0 "Ping - multipath"
1614 run_cmd "$IP ro delete 172.16.101.1/32 nhid 122"
1617 # multiple default routes
1618 # - tests fib_select_default
1619 run_cmd "$IP nexthop add id 501 via 172.16.1.2 dev veth1"
1620 run_cmd "$IP ro add default nhid 501"
1621 run_cmd "$IP ro add default via 172.16.1.3 dev veth1 metric 20"
1622 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1623 log_test $? 0 "Ping - multiple default routes, nh first"
1626 run_cmd "$IP ro del default nhid 501"
1627 run_cmd "$IP ro del default via 172.16.1.3 dev veth1 metric 20"
1628 run_cmd "$IP ro add default via 172.16.1.2 dev veth1 metric 20"
1629 run_cmd "$IP nexthop replace id 501 via 172.16.1.3 dev veth1"
1630 run_cmd "$IP ro add default nhid 501 metric 20"
1631 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1632 log_test $? 0 "Ping - multiple default routes, nh second"
1634 run_cmd "$IP nexthop delete nhid 501"
1635 run_cmd "$IP ro del default"
1638 # IPv4 with blackhole nexthops
1640 run_cmd "$IP nexthop add id 23 blackhole"
1641 run_cmd "$IP ro replace 172.16.101.1/32 nhid 23"
1642 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1643 log_test $? 2 "Ping - blackhole"
1645 run_cmd "$IP nexthop replace id 23 via 172.16.1.2 dev veth1"
1646 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1647 log_test $? 0 "Ping - blackhole replaced with gateway"
1649 run_cmd "$IP nexthop replace id 23 blackhole"
1650 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1651 log_test $? 2 "Ping - gateway replaced by blackhole"
1653 run_cmd "$IP ro replace 172.16.101.1/32 nhid 122"
1654 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1655 if [ $? -eq 0 ]; then
1656 run_cmd "$IP nexthop replace id 122 group 23"
1657 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1658 log_test $? 2 "Ping - group with blackhole"
1660 run_cmd "$IP nexthop replace id 122 group 21/22"
1661 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1662 log_test $? 0 "Ping - group blackhole replaced with gateways"
1664 log_test 2 0 "Ping - multipath failed"
1668 # device only and gw + dev only mix
1670 run_cmd "$IP nexthop add id 85 dev veth1"
1671 run_cmd "$IP ro replace 172.16.101.1/32 nhid 85"
1672 log_test $? 0 "IPv4 route with device only nexthop"
1673 check_route "172.16.101.1" "172.16.101.1 nhid 85 dev veth1"
1675 run_cmd "$IP nexthop add id 123 group 21/85"
1676 run_cmd "$IP ro replace 172.16.101.1/32 nhid 123"
1677 log_test $? 0 "IPv4 multipath route with nexthop mix - dev only + gw"
1678 check_route "172.16.101.1" "172.16.101.1 nhid 123 nexthop via 172.16.1.2 dev veth1 weight 1 nexthop dev veth1 weight 1"
1684 lladdr=$(get_linklocal veth2 $peer)
1685 run_cmd "$IP nexthop add id 24 via ${lladdr} dev veth1"
1687 run_cmd "$IP ro replace 172.16.101.1/32 nhid 24"
1688 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1689 log_test $? 0 "IPv6 nexthop with IPv4 route"
1691 $IP neigh sh | grep -q "${lladdr} dev veth1"
1692 if [ $? -eq 1 ]; then
1693 echo " WARNING: Neigh entry missing for ${lladdr}"
1694 $IP neigh sh | grep 'dev veth1'
1697 $IP neigh sh | grep -q "172.16.101.1 dev eth1"
1698 if [ $? -eq 0 ]; then
1699 echo " WARNING: Neigh entry exists for 172.16.101.1"
1700 $IP neigh sh | grep 'dev veth1'
1704 run_cmd "$IP nexthop add id 25 via 172.16.1.2 dev veth1"
1705 run_cmd "$IP nexthop add id 101 group 24/25"
1707 run_cmd "$IP ro replace 172.16.101.1/32 nhid 101"
1708 log_test $? 0 "IPv4 route with mixed v4-v6 multipath route"
1710 check_route "172.16.101.1" "172.16.101.1 nhid 101 nexthop via inet6 ${lladdr} dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
1712 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1713 log_test $? 0 "IPv6 nexthop with IPv4 route"
1715 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
1716 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1717 log_test $? 0 "IPv4 route with IPv6 gateway"
1719 $IP neigh sh | grep -q "${lladdr} dev veth1"
1720 if [ $? -eq 1 ]; then
1721 echo " WARNING: Neigh entry missing for ${lladdr}"
1722 $IP neigh sh | grep 'dev veth1'
1725 $IP neigh sh | grep -q "172.16.101.1 dev eth1"
1726 if [ $? -eq 0 ]; then
1727 echo " WARNING: Neigh entry exists for 172.16.101.1"
1728 $IP neigh sh | grep 'dev veth1'
1731 run_cmd "$IP ro del 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
1732 run_cmd "$IP -4 ro add default via inet6 ${lladdr} dev veth1"
1733 run_cmd "ip netns exec $me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1734 log_test $? 0 "IPv4 default route with IPv6 gateway"
1737 # MPLS as an example of LWT encap
1739 run_cmd "$IP nexthop add id 51 encap mpls 101 via 172.16.1.2 dev veth1"
1740 log_test $? 0 "IPv4 route with MPLS encap"
1741 check_nexthop "id 51" "id 51 encap mpls 101 via 172.16.1.2 dev veth1 scope link"
1742 log_test $? 0 "IPv4 route with MPLS encap - check"
1744 run_cmd "$IP nexthop add id 52 encap mpls 102 via inet6 2001:db8:91::2 dev veth1"
1745 log_test $? 0 "IPv4 route with MPLS encap and v6 gateway"
1746 check_nexthop "id 52" "id 52 encap mpls 102 via 2001:db8:91::2 dev veth1 scope link"
1747 log_test $? 0 "IPv4 route with MPLS encap, v6 gw - check"
1755 echo "IPv4 large groups (x$ecmp)"
1756 echo "---------------------"
1758 check_large_grp 4 $ecmp
1760 $IP nexthop flush >/dev/null 2>&1
1763 ipv4_large_res_grp()
1766 echo "IPv4 large resilient group (128k buckets)"
1767 echo "-----------------------------------------"
1769 check_nexthop_res_support
1770 if [ $? -eq $ksft_skip ]; then
1774 check_large_res_grp 4 $((128 * 1024))
1776 $IP nexthop flush >/dev/null 2>&1
1779 sysctl_nexthop_compat_mode_check()
1781 local sysctlname="net.ipv4.nexthop_compat_mode"
1784 IPE="ip netns exec $me"
1786 $IPE sysctl -q $sysctlname 2>&1 >/dev/null
1787 if [ $? -ne 0 ]; then
1788 echo "SKIP: kernel lacks nexthop compat mode sysctl control"
1792 out=$($IPE sysctl $sysctlname 2>/dev/null)
1793 log_test $? 0 "$lprefix default nexthop compat mode check"
1794 check_output "${out}" "$sysctlname = 1"
1797 sysctl_nexthop_compat_mode_set()
1799 local sysctlname="net.ipv4.nexthop_compat_mode"
1803 IPE="ip netns exec $me"
1805 out=$($IPE sysctl -w $sysctlname=$mode)
1806 log_test $? 0 "$lprefix set compat mode - $mode"
1807 check_output "${out}" "net.ipv4.nexthop_compat_mode = $mode"
1815 echo "IPv6 nexthop api compat mode test"
1816 echo "--------------------------------"
1818 sysctl_nexthop_compat_mode_check "IPv6"
1819 if [ $? -eq $ksft_skip ]; then
1823 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
1824 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
1825 run_cmd "$IP nexthop add id 122 group 62/63"
1826 ipmout=$(start_ip_monitor route)
1828 run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 122"
1829 # route add notification should contain expanded nexthops
1830 stop_ip_monitor $ipmout 3
1831 log_test $? 0 "IPv6 compat mode on - route add notification"
1833 # route dump should contain expanded nexthops
1834 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 122 metric 1024 nexthop via 2001:db8:91::2 dev veth1 weight 1 nexthop via 2001:db8:91::3 dev veth1 weight 1"
1835 log_test $? 0 "IPv6 compat mode on - route dump"
1837 # change in nexthop group should generate route notification
1838 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
1839 ipmout=$(start_ip_monitor route)
1840 run_cmd "$IP nexthop replace id 122 group 62/64"
1841 stop_ip_monitor $ipmout 3
1843 log_test $? 0 "IPv6 compat mode on - nexthop change"
1845 # set compat mode off
1846 sysctl_nexthop_compat_mode_set 0 "IPv6"
1848 run_cmd "$IP -6 ro del 2001:db8:101::1/128 nhid 122"
1850 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
1851 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
1852 run_cmd "$IP nexthop add id 122 group 62/63"
1853 ipmout=$(start_ip_monitor route)
1855 run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 122"
1856 # route add notification should not contain expanded nexthops
1857 stop_ip_monitor $ipmout 1
1858 log_test $? 0 "IPv6 compat mode off - route add notification"
1860 # route dump should not contain expanded nexthops
1861 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 122 metric 1024"
1862 log_test $? 0 "IPv6 compat mode off - route dump"
1864 # change in nexthop group should not generate route notification
1865 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
1866 ipmout=$(start_ip_monitor route)
1867 run_cmd "$IP nexthop replace id 122 group 62/64"
1868 stop_ip_monitor $ipmout 0
1869 log_test $? 0 "IPv6 compat mode off - nexthop change"
1871 # nexthop delete should not generate route notification
1872 ipmout=$(start_ip_monitor route)
1873 run_cmd "$IP nexthop del id 122"
1874 stop_ip_monitor $ipmout 0
1875 log_test $? 0 "IPv6 compat mode off - nexthop delete"
1877 # set compat mode back on
1878 sysctl_nexthop_compat_mode_set 1 "IPv6"
1886 echo "IPv4 nexthop api compat mode"
1887 echo "----------------------------"
1889 sysctl_nexthop_compat_mode_check "IPv4"
1890 if [ $? -eq $ksft_skip ]; then
1894 run_cmd "$IP nexthop add id 21 via 172.16.1.2 dev veth1"
1895 run_cmd "$IP nexthop add id 22 via 172.16.1.2 dev veth1"
1896 run_cmd "$IP nexthop add id 122 group 21/22"
1897 ipmout=$(start_ip_monitor route)
1899 run_cmd "$IP ro add 172.16.101.1/32 nhid 122"
1900 stop_ip_monitor $ipmout 3
1902 # route add notification should contain expanded nexthops
1903 log_test $? 0 "IPv4 compat mode on - route add notification"
1905 # route dump should contain expanded nexthops
1906 check_route "172.16.101.1" "172.16.101.1 nhid 122 nexthop via 172.16.1.2 dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
1907 log_test $? 0 "IPv4 compat mode on - route dump"
1909 # change in nexthop group should generate route notification
1910 run_cmd "$IP nexthop add id 23 via 172.16.1.3 dev veth1"
1911 ipmout=$(start_ip_monitor route)
1912 run_cmd "$IP nexthop replace id 122 group 21/23"
1913 stop_ip_monitor $ipmout 3
1914 log_test $? 0 "IPv4 compat mode on - nexthop change"
1916 sysctl_nexthop_compat_mode_set 0 "IPv4"
1919 run_cmd "$IP ro del 172.16.101.1/32 nhid 122"
1921 ipmout=$(start_ip_monitor route)
1922 run_cmd "$IP ro add 172.16.101.1/32 nhid 122"
1923 stop_ip_monitor $ipmout 1
1924 # route add notification should not contain expanded nexthops
1925 log_test $? 0 "IPv4 compat mode off - route add notification"
1927 # route dump should not contain expanded nexthops
1928 check_route "172.16.101.1" "172.16.101.1 nhid 122"
1929 log_test $? 0 "IPv4 compat mode off - route dump"
1931 # change in nexthop group should not generate route notification
1932 ipmout=$(start_ip_monitor route)
1933 run_cmd "$IP nexthop replace id 122 group 21/22"
1934 stop_ip_monitor $ipmout 0
1935 log_test $? 0 "IPv4 compat mode off - nexthop change"
1937 # nexthop delete should not generate route notification
1938 ipmout=$(start_ip_monitor route)
1939 run_cmd "$IP nexthop del id 122"
1940 stop_ip_monitor $ipmout 0
1941 log_test $? 0 "IPv4 compat mode off - nexthop delete"
1943 sysctl_nexthop_compat_mode_set 1 "IPv4"
1946 ipv4_del_add_loop1()
1949 $IP nexthop del id 100
1950 $IP nexthop add id 100 via 172.16.1.2 dev veth1
1951 done >/dev/null 2>&1
1954 ipv4_grp_replace_loop()
1957 $IP nexthop replace id 102 group 100/101
1958 done >/dev/null 2>&1
1970 echo "IPv4 runtime torture"
1971 echo "--------------------"
1972 if [ ! -x "$(command -v mausezahn)" ]; then
1973 echo "SKIP: Could not run test; need mausezahn tool"
1977 run_cmd "$IP nexthop add id 100 via 172.16.1.2 dev veth1"
1978 run_cmd "$IP nexthop add id 101 via 172.16.2.2 dev veth3"
1979 run_cmd "$IP nexthop add id 102 group 100/101"
1980 run_cmd "$IP route add 172.16.101.1 nhid 102"
1981 run_cmd "$IP route add 172.16.101.2 nhid 102"
1983 ipv4_del_add_loop1 &
1985 ipv4_grp_replace_loop &
1987 ip netns exec $me ping -f 172.16.101.1 >/dev/null 2>&1 &
1989 ip netns exec $me ping -f 172.16.101.2 >/dev/null 2>&1 &
1991 ip netns exec $me mausezahn veth1 -B 172.16.101.2 -A 172.16.1.1 -c 0 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
1995 kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
1996 wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
1998 # if we did not crash, success
1999 log_test 0 0 "IPv4 torture test"
2002 ipv4_res_grp_replace_loop()
2005 $IP nexthop replace id 102 group 100/101 type resilient
2006 done >/dev/null 2>&1
2018 echo "IPv4 runtime resilient nexthop group torture"
2019 echo "--------------------------------------------"
2021 check_nexthop_res_support
2022 if [ $? -eq $ksft_skip ]; then
2026 if [ ! -x "$(command -v mausezahn)" ]; then
2027 echo "SKIP: Could not run test; need mausezahn tool"
2031 run_cmd "$IP nexthop add id 100 via 172.16.1.2 dev veth1"
2032 run_cmd "$IP nexthop add id 101 via 172.16.2.2 dev veth3"
2033 run_cmd "$IP nexthop add id 102 group 100/101 type resilient buckets 512 idle_timer 0"
2034 run_cmd "$IP route add 172.16.101.1 nhid 102"
2035 run_cmd "$IP route add 172.16.101.2 nhid 102"
2037 ipv4_del_add_loop1 &
2039 ipv4_res_grp_replace_loop &
2041 ip netns exec $me ping -f 172.16.101.1 >/dev/null 2>&1 &
2043 ip netns exec $me ping -f 172.16.101.2 >/dev/null 2>&1 &
2045 ip netns exec $me mausezahn veth1 \
2046 -B 172.16.101.2 -A 172.16.1.1 -c 0 \
2047 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
2051 kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
2052 wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
2054 # if we did not crash, success
2055 log_test 0 0 "IPv4 resilient nexthop group torture test"
2061 echo "Basic functional tests"
2062 echo "----------------------"
2063 run_cmd "$IP nexthop ls"
2064 log_test $? 0 "List with nothing defined"
2066 run_cmd "$IP nexthop get id 1"
2067 log_test $? 2 "Nexthop get on non-existent id"
2069 run_cmd "$IP nexthop del id 1"
2070 log_test $? 2 "Nexthop del with non-existent id"
2072 run_cmd "$IP nexthop del id 1 group 1/2/3/4/5/6/7/8"
2073 log_test $? 2 "Nexthop del with non-existent id and extra attributes"
2075 # attempt to create nh without a device or gw - fails
2076 run_cmd "$IP nexthop add id 1"
2077 log_test $? 2 "Nexthop with no device or gateway"
2079 # attempt to create nh with down device - fails
2080 $IP li set veth1 down
2081 run_cmd "$IP nexthop add id 1 dev veth1"
2082 log_test $? 2 "Nexthop with down device"
2084 # create nh with linkdown device - fails
2086 ip -netns $peer li set veth2 down
2087 run_cmd "$IP nexthop add id 1 dev veth1"
2088 log_test $? 2 "Nexthop with device that is linkdown"
2089 ip -netns $peer li set veth2 up
2092 run_cmd "$IP nexthop add id 1 dev veth1"
2093 log_test $? 0 "Nexthop with device only"
2095 # create nh with duplicate id
2096 run_cmd "$IP nexthop add id 1 dev veth3"
2097 log_test $? 2 "Nexthop with duplicate id"
2100 run_cmd "$IP nexthop add id 2 blackhole"
2101 log_test $? 0 "Blackhole nexthop"
2103 # blackhole nexthop can not have other specs
2104 run_cmd "$IP nexthop replace id 2 blackhole dev veth1"
2105 log_test $? 2 "Blackhole nexthop with other attributes"
2107 # blackhole nexthop should not be affected by the state of the loopback
2109 run_cmd "$IP link set dev lo down"
2110 check_nexthop "id 2" "id 2 blackhole"
2111 log_test $? 0 "Blackhole nexthop with loopback device down"
2113 run_cmd "$IP link set dev lo up"
2115 # Dump should not loop endlessly when maximum nexthop ID is configured.
2116 run_cmd "$IP nexthop add id $((2**32-1)) blackhole"
2117 run_cmd "timeout 5 $IP nexthop"
2118 log_test $? 0 "Maximum nexthop ID dump"
2124 run_cmd "$IP nexthop add id 101 group 1"
2125 log_test $? 0 "Create group"
2127 run_cmd "$IP nexthop add id 102 group 2"
2128 log_test $? 0 "Create group with blackhole nexthop"
2130 # multipath group can not have a blackhole as 1 path
2131 run_cmd "$IP nexthop add id 103 group 1/2"
2132 log_test $? 2 "Create multipath group where 1 path is a blackhole"
2134 # multipath group can not have a member replaced by a blackhole
2135 run_cmd "$IP nexthop replace id 2 dev veth3"
2136 run_cmd "$IP nexthop replace id 102 group 1/2"
2137 run_cmd "$IP nexthop replace id 2 blackhole"
2138 log_test $? 2 "Multipath group can not have a member replaced by blackhole"
2140 # attempt to create group with non-existent nexthop
2141 run_cmd "$IP nexthop add id 103 group 12"
2142 log_test $? 2 "Create group with non-existent nexthop"
2144 # attempt to create group with same nexthop
2145 run_cmd "$IP nexthop add id 103 group 1/1"
2146 log_test $? 2 "Create group with same nexthop multiple times"
2148 # replace nexthop with a group - fails
2149 run_cmd "$IP nexthop replace id 2 group 1"
2150 log_test $? 2 "Replace nexthop with nexthop group"
2152 # replace nexthop group with a nexthop - fails
2153 run_cmd "$IP nexthop replace id 101 dev veth1"
2154 log_test $? 2 "Replace nexthop group with nexthop"
2156 # nexthop group with other attributes fail
2157 run_cmd "$IP nexthop add id 104 group 1 dev veth1"
2158 log_test $? 2 "Nexthop group and device"
2160 # Tests to ensure that flushing works as expected.
2161 run_cmd "$IP nexthop add id 105 blackhole proto 99"
2162 run_cmd "$IP nexthop add id 106 blackhole proto 100"
2163 run_cmd "$IP nexthop add id 107 blackhole proto 99"
2164 run_cmd "$IP nexthop flush proto 99"
2165 check_nexthop "id 105" ""
2166 check_nexthop "id 106" "id 106 blackhole proto 100"
2167 check_nexthop "id 107" ""
2168 run_cmd "$IP nexthop flush proto 100"
2169 check_nexthop "id 106" ""
2171 run_cmd "$IP nexthop flush proto 100"
2172 log_test $? 0 "Test proto flush"
2174 run_cmd "$IP nexthop add id 104 group 1 blackhole"
2175 log_test $? 2 "Nexthop group and blackhole"
2177 $IP nexthop flush >/dev/null 2>&1
2179 # Test to ensure that flushing with a multi-part nexthop dump works as
2181 local batch_file=$(mktemp)
2183 for i in $(seq 1 $((64 * 1024))); do
2184 echo "nexthop add id $i blackhole" >> $batch_file
2188 $IP nexthop flush >/dev/null 2>&1
2189 [[ $($IP nexthop | wc -l) -eq 0 ]]
2190 log_test $? 0 "Large scale nexthop flushing"
2195 check_nexthop_buckets_balance()
2197 local nharg=$1; shift
2200 while (($# > 0)); do
2201 local selector=$1; shift
2202 local condition=$1; shift
2205 count=$($IP -j nexthop bucket ${nharg} ${selector} | jq length)
2206 (( $count $condition ))
2208 if ((ret != 0)); then
2219 echo "Basic resilient nexthop group functional tests"
2220 echo "----------------------------------------------"
2222 check_nexthop_res_support
2223 if [ $? -eq $ksft_skip ]; then
2227 run_cmd "$IP nexthop add id 1 dev veth1"
2230 # resilient nexthop group addition
2233 run_cmd "$IP nexthop add id 101 group 1 type resilient buckets 8"
2234 log_test $? 0 "Add a nexthop group with default parameters"
2236 run_cmd "$IP nexthop get id 101"
2237 check_nexthop "id 101" \
2238 "id 101 group 1 type resilient buckets 8 idle_timer 120 unbalanced_timer 0 unbalanced_time 0"
2239 log_test $? 0 "Get a nexthop group with default parameters"
2241 run_cmd "$IP nexthop add id 102 group 1 type resilient
2242 buckets 4 idle_timer 100 unbalanced_timer 5"
2243 run_cmd "$IP nexthop get id 102"
2244 check_nexthop "id 102" \
2245 "id 102 group 1 type resilient buckets 4 idle_timer 100 unbalanced_timer 5 unbalanced_time 0"
2246 log_test $? 0 "Get a nexthop group with non-default parameters"
2248 run_cmd "$IP nexthop add id 103 group 1 type resilient buckets 0"
2249 log_test $? 2 "Add a nexthop group with 0 buckets"
2252 # resilient nexthop group replacement
2255 run_cmd "$IP nexthop replace id 101 group 1 type resilient
2256 buckets 8 idle_timer 240 unbalanced_timer 80"
2257 log_test $? 0 "Replace nexthop group parameters"
2258 check_nexthop "id 101" \
2259 "id 101 group 1 type resilient buckets 8 idle_timer 240 unbalanced_timer 80 unbalanced_time 0"
2260 log_test $? 0 "Get a nexthop group after replacing parameters"
2262 run_cmd "$IP nexthop replace id 101 group 1 type resilient idle_timer 512"
2263 log_test $? 0 "Replace idle timer"
2264 check_nexthop "id 101" \
2265 "id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 80 unbalanced_time 0"
2266 log_test $? 0 "Get a nexthop group after replacing idle timer"
2268 run_cmd "$IP nexthop replace id 101 group 1 type resilient unbalanced_timer 256"
2269 log_test $? 0 "Replace unbalanced timer"
2270 check_nexthop "id 101" \
2271 "id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
2272 log_test $? 0 "Get a nexthop group after replacing unbalanced timer"
2274 run_cmd "$IP nexthop replace id 101 group 1 type resilient"
2275 log_test $? 0 "Replace with no parameters"
2276 check_nexthop "id 101" \
2277 "id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
2278 log_test $? 0 "Get a nexthop group after replacing no parameters"
2280 run_cmd "$IP nexthop replace id 101 group 1"
2281 log_test $? 2 "Replace nexthop group type - implicit"
2283 run_cmd "$IP nexthop replace id 101 group 1 type mpath"
2284 log_test $? 2 "Replace nexthop group type - explicit"
2286 run_cmd "$IP nexthop replace id 101 group 1 type resilient buckets 1024"
2287 log_test $? 2 "Replace number of nexthop buckets"
2289 check_nexthop "id 101" \
2290 "id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
2291 log_test $? 0 "Get a nexthop group after replacing with invalid parameters"
2294 # resilient nexthop buckets dump
2297 $IP nexthop flush >/dev/null 2>&1
2298 run_cmd "$IP nexthop add id 1 dev veth1"
2299 run_cmd "$IP nexthop add id 2 dev veth3"
2300 run_cmd "$IP nexthop add id 101 group 1/2 type resilient buckets 4"
2301 run_cmd "$IP nexthop add id 201 group 1/2"
2303 check_nexthop_bucket "" \
2304 "id 101 index 0 nhid 2 id 101 index 1 nhid 2 id 101 index 2 nhid 1 id 101 index 3 nhid 1"
2305 log_test $? 0 "Dump all nexthop buckets"
2307 check_nexthop_bucket "list id 101" \
2308 "id 101 index 0 nhid 2 id 101 index 1 nhid 2 id 101 index 2 nhid 1 id 101 index 3 nhid 1"
2309 log_test $? 0 "Dump all nexthop buckets in a group"
2312 (( $($IP -j nexthop bucket list id 101 |
2313 jq '[.[] | select(.bucket.idle_time > 0 and
2314 .bucket.idle_time < 2)] | length') == 4 ))
2315 log_test $? 0 "All nexthop buckets report a positive near-zero idle time"
2317 check_nexthop_bucket "list dev veth1" \
2318 "id 101 index 2 nhid 1 id 101 index 3 nhid 1"
2319 log_test $? 0 "Dump all nexthop buckets with a specific nexthop device"
2321 check_nexthop_bucket "list nhid 2" \
2322 "id 101 index 0 nhid 2 id 101 index 1 nhid 2"
2323 log_test $? 0 "Dump all nexthop buckets with a specific nexthop identifier"
2325 run_cmd "$IP nexthop bucket list id 111"
2326 log_test $? 2 "Dump all nexthop buckets in a non-existent group"
2328 run_cmd "$IP nexthop bucket list id 201"
2329 log_test $? 2 "Dump all nexthop buckets in a non-resilient group"
2331 run_cmd "$IP nexthop bucket list dev bla"
2332 log_test $? 255 "Dump all nexthop buckets using a non-existent device"
2334 run_cmd "$IP nexthop bucket list groups"
2335 log_test $? 255 "Dump all nexthop buckets with invalid 'groups' keyword"
2337 run_cmd "$IP nexthop bucket list fdb"
2338 log_test $? 255 "Dump all nexthop buckets with invalid 'fdb' keyword"
2340 # Dump should not loop endlessly when maximum nexthop ID is configured.
2341 run_cmd "$IP nexthop add id $((2**32-1)) group 1/2 type resilient buckets 4"
2342 run_cmd "timeout 5 $IP nexthop bucket"
2343 log_test $? 0 "Maximum nexthop ID dump"
2346 # resilient nexthop buckets get requests
2349 check_nexthop_bucket "get id 101 index 0" "id 101 index 0 nhid 2"
2350 log_test $? 0 "Get a valid nexthop bucket"
2352 run_cmd "$IP nexthop bucket get id 101 index 999"
2353 log_test $? 2 "Get a nexthop bucket with valid group, but invalid index"
2355 run_cmd "$IP nexthop bucket get id 201 index 0"
2356 log_test $? 2 "Get a nexthop bucket from a non-resilient group"
2358 run_cmd "$IP nexthop bucket get id 999 index 0"
2359 log_test $? 2 "Get a nexthop bucket from a non-existent group"
2362 # tests for bucket migration
2365 $IP nexthop flush >/dev/null 2>&1
2367 run_cmd "$IP nexthop add id 1 dev veth1"
2368 run_cmd "$IP nexthop add id 2 dev veth3"
2369 run_cmd "$IP nexthop add id 101
2370 group 1/2 type resilient buckets 10
2371 idle_timer 1 unbalanced_timer 20"
2373 check_nexthop_buckets_balance "list id 101" \
2376 log_test $? 0 "Initial bucket allocation"
2378 run_cmd "$IP nexthop replace id 101
2379 group 1,2/2,3 type resilient"
2380 check_nexthop_buckets_balance "list id 101" \
2383 log_test $? 0 "Bucket allocation after replace"
2385 # Check that increase in idle timer does not make buckets appear busy.
2386 run_cmd "$IP nexthop replace id 101
2387 group 1,2/2,3 type resilient
2389 run_cmd "$IP nexthop replace id 101
2390 group 1/2 type resilient"
2391 check_nexthop_buckets_balance "list id 101" \
2394 log_test $? 0 "Buckets migrated after idle timer change"
2396 $IP nexthop flush >/dev/null 2>&1
2399 ################################################################################
2405 usage: ${0##*/} OPTS
2407 -t <test> Test(s) to run (default: all)
2408 (options: $ALL_TESTS)
2412 -P Pause after each test before cleanup
2413 -v verbose mode (show commands and output)
2417 -n num Number of nexthops to target
2418 -N Use new style to install routes in DUT
2424 ################################################################################
2427 while getopts :t:pP46hvw: o
2431 4) TESTS=${IPV4_TESTS};;
2432 6) TESTS=${IPV6_TESTS};;
2433 p) PAUSE_ON_FAIL=yes;;
2435 v) VERBOSE=$(($VERBOSE + 1));;
2436 w) PING_TIMEOUT=$OPTARG;;
2442 # make sure we don't pause twice
2443 [ "${PAUSE}" = "yes" ] && PAUSE_ON_FAIL=no
2445 if [ "$(id -u)" -ne 0 ];then
2446 echo "SKIP: Need root privileges"
2450 if [ ! -x "$(command -v ip)" ]; then
2451 echo "SKIP: Could not run test without ip tool"
2455 ip help 2>&1 | grep -q nexthop
2456 if [ $? -ne 0 ]; then
2457 echo "SKIP: iproute2 too old, missing nexthop command"
2461 out=$(ip nexthop ls 2>&1 | grep -q "Operation not supported")
2462 if [ $? -eq 0 ]; then
2463 echo "SKIP: kernel lacks nexthop support"
2470 none) IP="ip -netns $peer"; setup; exit 0;;
2471 *) setup; $t; cleanup;;
2475 if [ "$TESTS" != "none" ]; then
2476 printf "\nTests passed: %3d\n" ${nsuccess}
2477 printf "Tests failed: %3d\n" ${nfail}