2 # SPDX-License-Identifier: GPL-2.0
4 # ns: me | ns: peer | ns: remote
5 # 2001:db8:91::1 | 2001:db8:91::2 |
6 # 172.16.1.1 | 172.16.1.2 |
7 # veth1 <---|---> veth2 |
8 # | veth5 <--|--> veth6 172.16.101.1
9 # veth3 <---|---> veth4 | 2001:db8:101::1
10 # 172.16.2.1 | 172.16.2.2 |
11 # 2001:db8:92::1 | 2001:db8:92::2 |
13 # This test is for checking IPv4 and IPv6 FIB behavior with nexthop
14 # objects. Device reference counts and network namespace cleanup tested
15 # by use of network namespace for peer.
18 # Kselftest framework requirement - SKIP code is 4.
21 # all tests in this script. Can be overridden with -t option
65 ################################################################################
74 if [ ${rc} -eq ${expected} ]; then
75 printf "TEST: %-60s [ OK ]\n" "${msg}"
76 nsuccess=$((nsuccess+1))
80 printf "TEST: %-60s [FAIL]\n" "${msg}"
81 if [ "$VERBOSE" = "1" ]; then
82 echo " rc=$rc, expected $expected"
85 if [ "${PAUSE_ON_FAIL}" = "yes" ]; then
87 echo "hit enter to continue, 'q' to quit"
89 [ "$a" = "q" ] && exit 1
93 if [ "${PAUSE}" = "yes" ]; then
95 echo "hit enter to continue, 'q' to quit"
97 [ "$a" = "q" ] && exit 1
100 [ "$VERBOSE" = "1" ] && echo
107 local stderr="2>/dev/null"
109 if [ "$VERBOSE" = "1" ]; then
110 printf "COMMAND: $cmd\n"
114 out=$(eval $cmd $stderr)
116 if [ "$VERBOSE" = "1" -a -n "$out" ]; then
129 [ -n "$2" ] && ns="-netns $2"
130 addr=$(ip $ns -6 -br addr show dev ${dev} | \
132 for (i = 3; i <= NF; ++i) {
140 [ -z "$addr" ] && return 1
151 ip netns del ${n} 2>/dev/null
155 ip netns set ${n} $((nsid++))
156 ip -netns ${n} addr add 127.0.0.1/8 dev lo
157 ip -netns ${n} link set lo up
159 ip netns exec ${n} sysctl -qw net.ipv4.ip_forward=1
160 ip netns exec ${n} sysctl -qw net.ipv4.fib_multipath_use_neigh=1
161 ip netns exec ${n} sysctl -qw net.ipv4.conf.default.ignore_routes_with_linkdown=1
162 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.keep_addr_on_down=1
163 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.forwarding=1
164 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.forwarding=1
165 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.ignore_routes_with_linkdown=1
166 ip netns exec ${n} sysctl -qw net.ipv6.conf.all.accept_dad=0
167 ip netns exec ${n} sysctl -qw net.ipv6.conf.default.accept_dad=0
181 BRIDGE="bridge -netns me"
183 $IP li add veth1 type veth peer name veth2
185 $IP addr add 172.16.1.1/24 dev veth1
186 $IP -6 addr add 2001:db8:91::1/64 dev veth1 nodad
188 $IP li add veth3 type veth peer name veth4
190 $IP addr add 172.16.2.1/24 dev veth3
191 $IP -6 addr add 2001:db8:92::1/64 dev veth3 nodad
193 $IP li set veth2 netns peer up
194 ip -netns peer addr add 172.16.1.2/24 dev veth2
195 ip -netns peer -6 addr add 2001:db8:91::2/64 dev veth2 nodad
197 $IP li set veth4 netns peer up
198 ip -netns peer addr add 172.16.2.2/24 dev veth4
199 ip -netns peer -6 addr add 2001:db8:92::2/64 dev veth4 nodad
201 ip -netns remote li add veth5 type veth peer name veth6
202 ip -netns remote li set veth5 up
203 ip -netns remote addr add dev veth5 172.16.101.1/24
204 ip -netns remote -6 addr add dev veth5 2001:db8:101::1/64 nodad
205 ip -netns remote ro add 172.16.0.0/22 via 172.16.101.2
206 ip -netns remote -6 ro add 2001:db8:90::/40 via 2001:db8:101::2
208 ip -netns remote li set veth6 netns peer up
209 ip -netns peer addr add dev veth6 172.16.101.2/24
210 ip -netns peer -6 addr add dev veth6 2001:db8:101::2/64 nodad
218 for ns in me peer remote; do
219 ip netns del ${ns} 2>/dev/null
229 [ "${out}" = "${expected}" ] && return 0
231 if [ -z "${out}" ]; then
232 if [ "$VERBOSE" = "1" ]; then
233 printf "\nNo entry found\n"
235 printf " ${expected}\n"
241 if [ "${out}" != "${expected}" ]; then
243 if [ "${VERBOSE}" = "1" ]; then
244 printf " Unexpected entry. Have:\n"
246 printf " Expected:\n"
247 printf " ${expected}\n\n"
249 echo " WARNING: Unexpected route entry"
262 out=$($IP nexthop ls ${nharg} 2>/dev/null)
264 check_output "${out}" "${expected}"
267 check_nexthop_bucket()
273 # remove the idle time since we cannot match it
274 out=$($IP nexthop bucket ${nharg} \
275 | sed s/idle_time\ [0-9.]*\ // 2>/dev/null)
277 check_output "${out}" "${expected}"
286 out=$($IP route ls match ${pfx} 2>/dev/null)
288 check_output "${out}" "${expected}"
297 out=$($IP -6 route ls match ${pfx} 2>/dev/null | sed -e 's/pref medium//')
299 check_output "${out}" "${expected}"
308 local grpidstart=1000
315 if [ $ipv -eq 4 ]; then
318 ipstr="2001:db8:91::"
322 # Create $grpnum groups with specified $ecmp and dump them
325 # create nexthops with different gateways
327 while [ $iter -le $(($ecmp + 1)) ]
329 nhidstr="$(($nhidstart + $iter))"
330 run_cmd "$IP nexthop add id $nhidstr via $ipstr$iter dev veth1"
331 check_nexthop "id $nhidstr" "id $nhidstr via $ipstr$iter dev veth1 scope link"
333 if [ $iter -le $ecmp ]; then
341 # create duplicate large ecmp groups
343 while [ $iter -le $grpnum ]
345 grpidstr="$(($grpidstart + $iter))"
346 run_cmd "$IP nexthop add id $grpidstr group $grpstr"
347 check_nexthop "id $grpidstr" "id $grpidstr group $grpstr"
352 run_cmd "$IP nexthop list"
353 log_test $? 0 "Dump large (x$ecmp) ecmp groups"
356 check_large_res_grp()
362 if [ $ipv -eq 4 ]; then
365 ipstr="2001:db8:91::2"
368 # create a resilient group with $buckets buckets and dump them
369 run_cmd "$IP nexthop add id 100 via $ipstr dev veth1"
370 run_cmd "$IP nexthop add id 1000 group 100 type resilient buckets $buckets"
371 run_cmd "$IP nexthop bucket list"
372 log_test $? 0 "Dump large (x$buckets) nexthop buckets"
380 if out=$($IP -j route get "$pfx" | jq -re ".[0].dev"); then
391 out=$(get_route_dev "$pfx")
393 check_output "$out" "$expected"
400 # start the monitor in the background
401 tmpfile=`mktemp /var/run/nexthoptestXXX`
402 mpid=`($IP monitor $mtype > $tmpfile & echo $!) 2>/dev/null`
404 echo "$mpid $tmpfile"
413 # check the monitor results
415 lines=`wc -l $tmpfile | cut "-d " -f1`
423 check_nexthop_fdb_support()
425 $IP nexthop help 2>&1 | grep -q fdb
426 if [ $? -ne 0 ]; then
427 echo "SKIP: iproute2 too old, missing fdb nexthop support"
432 check_nexthop_res_support()
434 $IP nexthop help 2>&1 | grep -q resilient
435 if [ $? -ne 0 ]; then
436 echo "SKIP: iproute2 too old, missing resilient nexthop group support"
446 echo "IPv6 fdb groups functional"
447 echo "--------------------------"
449 check_nexthop_fdb_support
450 if [ $? -eq $ksft_skip ]; then
454 # create group with multiple nexthops
455 run_cmd "$IP nexthop add id 61 via 2001:db8:91::2 fdb"
456 run_cmd "$IP nexthop add id 62 via 2001:db8:91::3 fdb"
457 run_cmd "$IP nexthop add id 102 group 61/62 fdb"
458 check_nexthop "id 102" "id 102 group 61/62 fdb"
459 log_test $? 0 "Fdb Nexthop group with multiple nexthops"
462 run_cmd "$IP nexthop get id 102"
463 check_nexthop "id 102" "id 102 group 61/62 fdb"
464 log_test $? 0 "Get Fdb nexthop group by id"
466 # fdb nexthop group can only contain fdb nexthops
467 run_cmd "$IP nexthop add id 63 via 2001:db8:91::4"
468 run_cmd "$IP nexthop add id 64 via 2001:db8:91::5"
469 run_cmd "$IP nexthop add id 103 group 63/64 fdb"
470 log_test $? 2 "Fdb Nexthop group with non-fdb nexthops"
472 # Non fdb nexthop group can not contain fdb nexthops
473 run_cmd "$IP nexthop add id 65 via 2001:db8:91::5 fdb"
474 run_cmd "$IP nexthop add id 66 via 2001:db8:91::6 fdb"
475 run_cmd "$IP nexthop add id 104 group 65/66"
476 log_test $? 2 "Non-Fdb Nexthop group with fdb nexthops"
478 # fdb nexthop cannot have blackhole
479 run_cmd "$IP nexthop add id 67 blackhole fdb"
480 log_test $? 2 "Fdb Nexthop with blackhole"
482 # fdb nexthop with oif
483 run_cmd "$IP nexthop add id 68 via 2001:db8:91::7 dev veth1 fdb"
484 log_test $? 2 "Fdb Nexthop with oif"
486 # fdb nexthop with onlink
487 run_cmd "$IP nexthop add id 68 via 2001:db8:91::7 onlink fdb"
488 log_test $? 2 "Fdb Nexthop with onlink"
490 # fdb nexthop with encap
491 run_cmd "$IP nexthop add id 69 encap mpls 101 via 2001:db8:91::8 dev veth1 fdb"
492 log_test $? 2 "Fdb Nexthop with encap"
494 run_cmd "$IP link add name vx10 type vxlan id 1010 local 2001:db8:91::9 remote 2001:db8:91::10 dstport 4789 nolearning noudpcsum tos inherit ttl 100"
495 run_cmd "$BRIDGE fdb add 02:02:00:00:00:13 dev vx10 nhid 102 self"
496 log_test $? 0 "Fdb mac add with nexthop group"
498 ## fdb nexthops can only reference nexthop groups and not nexthops
499 run_cmd "$BRIDGE fdb add 02:02:00:00:00:14 dev vx10 nhid 61 self"
500 log_test $? 255 "Fdb mac add with nexthop"
502 run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 66"
503 log_test $? 2 "Route add with fdb nexthop"
505 run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 103"
506 log_test $? 2 "Route add with fdb nexthop group"
508 run_cmd "$IP nexthop del id 61"
509 run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
510 log_test $? 0 "Fdb entry after deleting a single nexthop"
512 run_cmd "$IP nexthop del id 102"
513 log_test $? 0 "Fdb nexthop delete"
515 run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
516 log_test $? 254 "Fdb entry after deleting a nexthop group"
518 $IP link del dev vx10
526 echo "IPv4 fdb groups functional"
527 echo "--------------------------"
529 check_nexthop_fdb_support
530 if [ $? -eq $ksft_skip ]; then
534 # create group with multiple nexthops
535 run_cmd "$IP nexthop add id 12 via 172.16.1.2 fdb"
536 run_cmd "$IP nexthop add id 13 via 172.16.1.3 fdb"
537 run_cmd "$IP nexthop add id 102 group 12/13 fdb"
538 check_nexthop "id 102" "id 102 group 12/13 fdb"
539 log_test $? 0 "Fdb Nexthop group with multiple nexthops"
542 run_cmd "$IP nexthop get id 102"
543 check_nexthop "id 102" "id 102 group 12/13 fdb"
544 log_test $? 0 "Get Fdb nexthop group by id"
546 # fdb nexthop group can only contain fdb nexthops
547 run_cmd "$IP nexthop add id 14 via 172.16.1.2"
548 run_cmd "$IP nexthop add id 15 via 172.16.1.3"
549 run_cmd "$IP nexthop add id 103 group 14/15 fdb"
550 log_test $? 2 "Fdb Nexthop group with non-fdb nexthops"
552 # Non fdb nexthop group can not contain fdb nexthops
553 run_cmd "$IP nexthop add id 16 via 172.16.1.2 fdb"
554 run_cmd "$IP nexthop add id 17 via 172.16.1.3 fdb"
555 run_cmd "$IP nexthop add id 104 group 14/15"
556 log_test $? 2 "Non-Fdb Nexthop group with fdb nexthops"
558 # fdb nexthop cannot have blackhole
559 run_cmd "$IP nexthop add id 18 blackhole fdb"
560 log_test $? 2 "Fdb Nexthop with blackhole"
562 # fdb nexthop with oif
563 run_cmd "$IP nexthop add id 16 via 172.16.1.2 dev veth1 fdb"
564 log_test $? 2 "Fdb Nexthop with oif"
566 # fdb nexthop with onlink
567 run_cmd "$IP nexthop add id 16 via 172.16.1.2 onlink fdb"
568 log_test $? 2 "Fdb Nexthop with onlink"
570 # fdb nexthop with encap
571 run_cmd "$IP nexthop add id 17 encap mpls 101 via 172.16.1.2 dev veth1 fdb"
572 log_test $? 2 "Fdb Nexthop with encap"
574 run_cmd "$IP link add name vx10 type vxlan id 1010 local 10.0.0.1 remote 10.0.0.2 dstport 4789 nolearning noudpcsum tos inherit ttl 100"
575 run_cmd "$BRIDGE fdb add 02:02:00:00:00:13 dev vx10 nhid 102 self"
576 log_test $? 0 "Fdb mac add with nexthop group"
578 # fdb nexthops can only reference nexthop groups and not nexthops
579 run_cmd "$BRIDGE fdb add 02:02:00:00:00:14 dev vx10 nhid 12 self"
580 log_test $? 255 "Fdb mac add with nexthop"
582 run_cmd "$IP ro add 172.16.0.0/22 nhid 15"
583 log_test $? 2 "Route add with fdb nexthop"
585 run_cmd "$IP ro add 172.16.0.0/22 nhid 103"
586 log_test $? 2 "Route add with fdb nexthop group"
588 run_cmd "$IP nexthop del id 12"
589 run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
590 log_test $? 0 "Fdb entry after deleting a single nexthop"
592 run_cmd "$IP nexthop del id 102"
593 log_test $? 0 "Fdb nexthop delete"
595 run_cmd "$BRIDGE fdb get to 02:02:00:00:00:13 dev vx10 self"
596 log_test $? 254 "Fdb entry after deleting a nexthop group"
598 $IP link del dev vx10
603 local rc dev match h addr
606 echo "IPv4 multipath selection"
607 echo "------------------------"
608 if [ ! -x "$(command -v jq)" ]; then
609 echo "SKIP: Could not run test; need jq tool"
613 # Use status of existing neighbor entry when determining nexthop for
616 gws=([veth1]=172.16.1.2 [veth3]=172.16.2.2)
618 other_dev=([veth1]=veth3 [veth3]=veth1)
620 run_cmd "$IP nexthop add id 1 via ${gws["veth1"]} dev veth1"
621 run_cmd "$IP nexthop add id 2 via ${gws["veth3"]} dev veth3"
622 run_cmd "$IP nexthop add id 1001 group 1/2"
623 run_cmd "$IP ro add 172.16.101.0/24 nhid 1001"
625 for dev in veth1 veth3; do
627 for h in {1..254}; do
629 if [ "$(get_route_dev "$addr")" = "$dev" ]; then
634 if (( match == 0 )); then
635 echo "SKIP: Did not find a route using device $dev"
638 run_cmd "$IP neigh add ${gws[$dev]} dev $dev nud failed"
639 if ! check_route_dev "$addr" "${other_dev[$dev]}"; then
643 run_cmd "$IP neigh del ${gws[$dev]} dev $dev"
645 log_test $rc 0 "Use valid neighbor during multipath selection"
647 run_cmd "$IP neigh add 172.16.1.2 dev veth1 nud incomplete"
648 run_cmd "$IP neigh add 172.16.2.2 dev veth3 nud incomplete"
649 run_cmd "$IP route get 172.16.101.1"
650 # if we did not crash, success
651 log_test $rc 0 "Multipath selection with no valid neighbor"
656 local rc dev match h addr
659 echo "IPv6 multipath selection"
660 echo "------------------------"
661 if [ ! -x "$(command -v jq)" ]; then
662 echo "SKIP: Could not run test; need jq tool"
666 # Use status of existing neighbor entry when determining nexthop for
669 gws=([veth1]=2001:db8:91::2 [veth3]=2001:db8:92::2)
671 other_dev=([veth1]=veth3 [veth3]=veth1)
673 run_cmd "$IP nexthop add id 1 via ${gws["veth1"]} dev veth1"
674 run_cmd "$IP nexthop add id 2 via ${gws["veth3"]} dev veth3"
675 run_cmd "$IP nexthop add id 1001 group 1/2"
676 run_cmd "$IP ro add 2001:db8:101::/64 nhid 1001"
678 for dev in veth1 veth3; do
680 for h in {1..65535}; do
681 addr=$(printf "2001:db8:101::%x" $h)
682 if [ "$(get_route_dev "$addr")" = "$dev" ]; then
687 if (( match == 0 )); then
688 echo "SKIP: Did not find a route using device $dev"
691 run_cmd "$IP neigh add ${gws[$dev]} dev $dev nud failed"
692 if ! check_route_dev "$addr" "${other_dev[$dev]}"; then
696 run_cmd "$IP neigh del ${gws[$dev]} dev $dev"
698 log_test $rc 0 "Use valid neighbor during multipath selection"
700 run_cmd "$IP neigh add 2001:db8:91::2 dev veth1 nud incomplete"
701 run_cmd "$IP neigh add 2001:db8:92::2 dev veth3 nud incomplete"
702 run_cmd "$IP route get 2001:db8:101::1"
703 # if we did not crash, success
704 log_test $rc 0 "Multipath selection with no valid neighbor"
707 ################################################################################
708 # basic operations (add, delete, replace) on nexthops and nexthop groups
718 echo "----------------------"
720 run_cmd "$IP nexthop add id 52 via 2001:db8:91::2 dev veth1"
722 log_test $rc 0 "Create nexthop with id, gw, dev"
723 if [ $rc -ne 0 ]; then
724 echo "Basic IPv6 create fails; can not continue"
728 run_cmd "$IP nexthop get id 52"
729 log_test $? 0 "Get nexthop by id"
730 check_nexthop "id 52" "id 52 via 2001:db8:91::2 dev veth1 scope link"
732 run_cmd "$IP nexthop del id 52"
733 log_test $? 0 "Delete nexthop by id"
734 check_nexthop "id 52" ""
739 # gw validation, no device - fails since dev required
740 run_cmd "$IP nexthop add id 52 via 2001:db8:92::3"
741 log_test $? 2 "Create nexthop - gw only"
743 # gw is not reachable throught given dev
744 run_cmd "$IP nexthop add id 53 via 2001:db8:3::3 dev veth1"
745 log_test $? 2 "Create nexthop - invalid gw+dev combination"
747 # onlink arg overrides gw+dev lookup
748 run_cmd "$IP nexthop add id 53 via 2001:db8:3::3 dev veth1 onlink"
749 log_test $? 0 "Create nexthop - gw+dev and onlink"
751 # admin down should delete nexthops
753 run_cmd "$IP -6 nexthop add id 55 via 2001:db8:91::3 dev veth1"
754 run_cmd "$IP nexthop add id 56 via 2001:db8:91::4 dev veth1"
755 run_cmd "$IP nexthop add id 57 via 2001:db8:91::5 dev veth1"
756 run_cmd "$IP li set dev veth1 down"
758 check_nexthop "dev veth1" ""
759 log_test $? 0 "Nexthops removed on admin down"
764 if [ ! -x "$(command -v mausezahn)" ]; then
765 echo "SKIP: Could not run test; need mausezahn tool"
769 run_cmd "$IP link set dev veth1 up"
770 run_cmd "$IP link add veth1.10 link veth1 up type vlan id 10"
771 run_cmd "$IP link add veth1.20 link veth1 up type vlan id 20"
772 run_cmd "$IP -6 addr add 2001:db8:91::1/64 dev veth1.10"
773 run_cmd "$IP -6 addr add 2001:db8:92::1/64 dev veth1.20"
774 run_cmd "$IP -6 neigh add 2001:db8:91::2 lladdr 00:11:22:33:44:55 dev veth1.10"
775 run_cmd "$IP -6 neigh add 2001:db8:92::2 lladdr 00:11:22:33:44:55 dev veth1.20"
776 run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1.10"
777 run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth1.20"
778 run_cmd "$IP nexthop add id 102 group 100"
779 run_cmd "$IP route add 2001:db8:101::1/128 nhid 102"
781 # create per-cpu dsts through nh 100
782 run_cmd "ip netns exec me mausezahn -6 veth1.10 -B 2001:db8:101::1 -A 2001:db8:91::1 -c 5 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1"
784 # remove nh 100 from the group to delete the route potentially leaving
785 # a stale per-cpu dst which holds a reference to the nexthop's net
786 # device and to the IPv6 route
787 run_cmd "$IP nexthop replace id 102 group 101"
788 run_cmd "$IP route del 2001:db8:101::1/128"
790 # add both nexthops to the group so a reference is taken on them
791 run_cmd "$IP nexthop replace id 102 group 100/101"
793 # if the bug described in commit "net: nexthop: release IPv6 per-cpu
794 # dsts when replacing a nexthop group" exists at this point we have
795 # an unlinked IPv6 route (but not freed due to stale dst) with a
796 # reference over the group so we delete the group which will again
797 # only unlink it due to the route reference
798 run_cmd "$IP nexthop del id 102"
800 # delete the nexthop with stale dst, since we have an unlinked
801 # group with a ref to it and an unlinked IPv6 route with ref to the
802 # group, the nh will only be unlinked and not freed so the stale dst
803 # remains forever and we get a net device refcount imbalance
804 run_cmd "$IP nexthop del id 100"
806 # if a reference was lost this command will hang because the net device
808 timeout -s KILL 5 ip netns exec me ip link del veth1.10 >/dev/null 2>&1
810 # we can't cleanup if the command is hung trying to delete the netdev
811 if [ $? -eq 137 ]; then
816 run_cmd "$IP link del veth1.20"
817 run_cmd "$IP nexthop flush"
827 echo "IPv6 groups functional"
828 echo "----------------------"
830 # basic functionality: create a nexthop group, default weight
831 run_cmd "$IP nexthop add id 61 via 2001:db8:91::2 dev veth1"
832 run_cmd "$IP nexthop add id 101 group 61"
833 log_test $? 0 "Create nexthop group with single nexthop"
836 run_cmd "$IP nexthop get id 101"
837 log_test $? 0 "Get nexthop group by id"
838 check_nexthop "id 101" "id 101 group 61"
840 # delete nexthop group
841 run_cmd "$IP nexthop del id 101"
842 log_test $? 0 "Delete nexthop group by id"
843 check_nexthop "id 101" ""
845 $IP nexthop flush >/dev/null 2>&1
846 check_nexthop "id 101" ""
849 # create group with multiple nexthops - mix of gw and dev only
851 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
852 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
853 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
854 run_cmd "$IP nexthop add id 65 dev veth1"
855 run_cmd "$IP nexthop add id 102 group 62/63/64/65"
856 log_test $? 0 "Nexthop group with multiple nexthops"
857 check_nexthop "id 102" "id 102 group 62/63/64/65"
859 # Delete nexthop in a group and group is updated
860 run_cmd "$IP nexthop del id 63"
861 check_nexthop "id 102" "id 102 group 62/64/65"
862 log_test $? 0 "Nexthop group updated when entry is deleted"
864 # create group with multiple weighted nexthops
865 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
866 run_cmd "$IP nexthop add id 103 group 62/63,2/64,3/65,4"
867 log_test $? 0 "Nexthop group with weighted nexthops"
868 check_nexthop "id 103" "id 103 group 62/63,2/64,3/65,4"
870 # Delete nexthop in a weighted group and group is updated
871 run_cmd "$IP nexthop del id 63"
872 check_nexthop "id 103" "id 103 group 62/64,3/65,4"
873 log_test $? 0 "Weighted nexthop group updated when entry is deleted"
875 # admin down - nexthop is removed from group
876 run_cmd "$IP li set dev veth1 down"
877 check_nexthop "dev veth1" ""
878 log_test $? 0 "Nexthops in groups removed on admin down"
880 # expect groups to have been deleted as well
883 run_cmd "$IP li set dev veth1 up"
885 $IP nexthop flush >/dev/null 2>&1
887 # group with nexthops using different devices
889 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
890 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
891 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
892 run_cmd "$IP nexthop add id 65 via 2001:db8:91::5 dev veth1"
894 run_cmd "$IP nexthop add id 72 via 2001:db8:92::2 dev veth3"
895 run_cmd "$IP nexthop add id 73 via 2001:db8:92::3 dev veth3"
896 run_cmd "$IP nexthop add id 74 via 2001:db8:92::4 dev veth3"
897 run_cmd "$IP nexthop add id 75 via 2001:db8:92::5 dev veth3"
900 # multiple groups with same nexthop
901 run_cmd "$IP nexthop add id 104 group 62"
902 run_cmd "$IP nexthop add id 105 group 62"
903 check_nexthop "group" "id 104 group 62 id 105 group 62"
904 log_test $? 0 "Multiple groups with same nexthop"
906 run_cmd "$IP nexthop flush groups"
907 [ $? -ne 0 ] && return 1
909 # on admin down of veth1, it should be removed from the group
910 run_cmd "$IP nexthop add id 105 group 62/63/72/73/64"
911 run_cmd "$IP li set veth1 down"
912 check_nexthop "id 105" "id 105 group 72/73"
913 log_test $? 0 "Nexthops in group removed on admin down - mixed group"
915 run_cmd "$IP nexthop add id 106 group 105/74"
916 log_test $? 2 "Nexthop group can not have a group as an entry"
918 # a group can have a blackhole entry only if it is the only
919 # nexthop in the group. Needed for atomic replace with an
920 # actual nexthop group
921 run_cmd "$IP -6 nexthop add id 31 blackhole"
922 run_cmd "$IP nexthop add id 107 group 31"
923 log_test $? 0 "Nexthop group with a blackhole entry"
925 run_cmd "$IP nexthop add id 108 group 31/24"
926 log_test $? 2 "Nexthop group can not have a blackhole and another nexthop"
929 log_test $? 0 "Nexthop group replace refcounts"
937 echo "IPv6 resilient groups functional"
938 echo "--------------------------------"
940 check_nexthop_res_support
941 if [ $? -eq $ksft_skip ]; then
946 # migration of nexthop buckets - equal weights
948 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
949 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
950 run_cmd "$IP nexthop add id 102 group 62/63 type resilient buckets 2 idle_timer 0"
952 run_cmd "$IP nexthop del id 63"
953 check_nexthop "id 102" \
954 "id 102 group 62 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
955 log_test $? 0 "Nexthop group updated when entry is deleted"
956 check_nexthop_bucket "list id 102" \
957 "id 102 index 0 nhid 62 id 102 index 1 nhid 62"
958 log_test $? 0 "Nexthop buckets updated when entry is deleted"
960 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
961 run_cmd "$IP nexthop replace id 102 group 62/63 type resilient buckets 2 idle_timer 0"
962 check_nexthop "id 102" \
963 "id 102 group 62/63 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
964 log_test $? 0 "Nexthop group updated after replace"
965 check_nexthop_bucket "list id 102" \
966 "id 102 index 0 nhid 63 id 102 index 1 nhid 62"
967 log_test $? 0 "Nexthop buckets updated after replace"
969 $IP nexthop flush >/dev/null 2>&1
972 # migration of nexthop buckets - unequal weights
974 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
975 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
976 run_cmd "$IP nexthop add id 102 group 62,3/63,1 type resilient buckets 4 idle_timer 0"
978 run_cmd "$IP nexthop del id 63"
979 check_nexthop "id 102" \
980 "id 102 group 62,3 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
981 log_test $? 0 "Nexthop group updated when entry is deleted - nECMP"
982 check_nexthop_bucket "list id 102" \
983 "id 102 index 0 nhid 62 id 102 index 1 nhid 62 id 102 index 2 nhid 62 id 102 index 3 nhid 62"
984 log_test $? 0 "Nexthop buckets updated when entry is deleted - nECMP"
986 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
987 run_cmd "$IP nexthop replace id 102 group 62,3/63,1 type resilient buckets 4 idle_timer 0"
988 check_nexthop "id 102" \
989 "id 102 group 62,3/63 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
990 log_test $? 0 "Nexthop group updated after replace - nECMP"
991 check_nexthop_bucket "list id 102" \
992 "id 102 index 0 nhid 63 id 102 index 1 nhid 62 id 102 index 2 nhid 62 id 102 index 3 nhid 62"
993 log_test $? 0 "Nexthop buckets updated after replace - nECMP"
1001 echo "IPv6 functional runtime"
1002 echo "-----------------------"
1007 run_cmd "$IP nexthop add id 81 via 2001:db8:91::2 dev veth1"
1008 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
1009 log_test $? 0 "Route add"
1011 run_cmd "$IP ro delete 2001:db8:101::1/128 nhid 81"
1012 log_test $? 0 "Route delete"
1014 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
1015 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1016 log_test $? 0 "Ping with nexthop"
1018 run_cmd "$IP nexthop add id 82 via 2001:db8:92::2 dev veth3"
1019 run_cmd "$IP nexthop add id 122 group 81/82"
1020 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
1021 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1022 log_test $? 0 "Ping - multipath"
1025 # IPv6 with blackhole nexthops
1027 run_cmd "$IP -6 nexthop add id 83 blackhole"
1028 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 83"
1029 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1030 log_test $? 2 "Ping - blackhole"
1032 run_cmd "$IP nexthop replace id 83 via 2001:db8:91::2 dev veth1"
1033 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1034 log_test $? 0 "Ping - blackhole replaced with gateway"
1036 run_cmd "$IP -6 nexthop replace id 83 blackhole"
1037 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1038 log_test $? 2 "Ping - gateway replaced by blackhole"
1040 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
1041 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1042 if [ $? -eq 0 ]; then
1043 run_cmd "$IP nexthop replace id 122 group 83"
1044 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1045 log_test $? 2 "Ping - group with blackhole"
1047 run_cmd "$IP nexthop replace id 122 group 81/82"
1048 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1049 log_test $? 0 "Ping - group blackhole replaced with gateways"
1051 log_test 2 0 "Ping - multipath failed"
1055 # device only and gw + dev only mix
1057 run_cmd "$IP -6 nexthop add id 85 dev veth1"
1058 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 85"
1059 log_test $? 0 "IPv6 route with device only nexthop"
1060 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 85 dev veth1 metric 1024"
1062 run_cmd "$IP nexthop add id 123 group 81/85"
1063 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 123"
1064 log_test $? 0 "IPv6 multipath route with nexthop mix - dev only + gw"
1065 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 123 metric 1024 nexthop via 2001:db8:91::2 dev veth1 weight 1 nexthop dev veth1 weight 1"
1068 # IPv6 route with v4 nexthop - not allowed
1070 run_cmd "$IP ro delete 2001:db8:101::1/128"
1071 run_cmd "$IP nexthop add id 84 via 172.16.1.1 dev veth1"
1072 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 84"
1073 log_test $? 2 "IPv6 route can not have a v4 gateway"
1075 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 81"
1076 run_cmd "$IP nexthop replace id 81 via 172.16.1.1 dev veth1"
1077 log_test $? 2 "Nexthop replace - v6 route, v4 nexthop"
1079 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 122"
1080 run_cmd "$IP nexthop replace id 81 via 172.16.1.1 dev veth1"
1081 log_test $? 2 "Nexthop replace of group entry - v6 route, v4 nexthop"
1083 run_cmd "$IP nexthop add id 86 via 2001:db8:92::2 dev veth3"
1084 run_cmd "$IP nexthop add id 87 via 172.16.1.1 dev veth1"
1085 run_cmd "$IP nexthop add id 88 via 172.16.1.1 dev veth1"
1086 run_cmd "$IP nexthop add id 124 group 86/87/88"
1087 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1088 log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
1090 run_cmd "$IP nexthop del id 88"
1091 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1092 log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
1094 run_cmd "$IP nexthop del id 87"
1095 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1096 log_test $? 0 "IPv6 route using a group after removing v4 gateways"
1098 run_cmd "$IP ro delete 2001:db8:101::1/128"
1099 run_cmd "$IP nexthop add id 87 via 172.16.1.1 dev veth1"
1100 run_cmd "$IP nexthop add id 88 via 172.16.1.1 dev veth1"
1101 run_cmd "$IP nexthop replace id 124 group 86/87/88"
1102 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1103 log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
1105 run_cmd "$IP nexthop replace id 88 via 2001:db8:92::2 dev veth3"
1106 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1107 log_test $? 2 "IPv6 route can not have a group with v4 and v6 gateways"
1109 run_cmd "$IP nexthop replace id 87 via 2001:db8:92::2 dev veth3"
1110 run_cmd "$IP ro replace 2001:db8:101::1/128 nhid 124"
1111 log_test $? 0 "IPv6 route using a group after replacing v4 gateways"
1113 $IP nexthop flush >/dev/null 2>&1
1118 run_cmd "$IP nexthop add id 86 via 2001:db8:91::2 dev veth1"
1119 run_cmd "$IP ro add 2001:db8:101::1/128 nhid 81"
1121 # route can not use prefsrc with nexthops
1122 run_cmd "$IP ro add 2001:db8:101::2/128 nhid 86 from 2001:db8:91::1"
1123 log_test $? 2 "IPv6 route can not use src routing with external nexthop"
1125 # check cleanup path on invalid metric
1126 run_cmd "$IP ro add 2001:db8:101::2/128 nhid 86 congctl lock foo"
1127 log_test $? 2 "IPv6 route with invalid metric"
1129 # rpfilter and default route
1130 $IP nexthop flush >/dev/null 2>&1
1131 run_cmd "ip netns exec me ip6tables -t mangle -I PREROUTING 1 -m rpfilter --invert -j DROP"
1132 run_cmd "$IP nexthop add id 91 via 2001:db8:91::2 dev veth1"
1133 run_cmd "$IP nexthop add id 92 via 2001:db8:92::2 dev veth3"
1134 run_cmd "$IP nexthop add id 93 group 91/92"
1135 run_cmd "$IP -6 ro add default nhid 91"
1136 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1137 log_test $? 0 "Nexthop with default route and rpfilter"
1138 run_cmd "$IP -6 ro replace default nhid 93"
1139 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 2001:db8:101::1"
1140 log_test $? 0 "Nexthop with multipath default route and rpfilter"
1143 # existing route with old nexthop; append route with new nexthop
1144 # existing route with old nexthop; replace route with new
1145 # existing route with new nexthop; replace route with old
1146 # route with src address and using nexthop - not allowed
1154 echo "IPv6 large groups (x$ecmp)"
1155 echo "---------------------"
1157 check_large_grp 6 $ecmp
1159 $IP nexthop flush >/dev/null 2>&1
1162 ipv6_large_res_grp()
1165 echo "IPv6 large resilient group (128k buckets)"
1166 echo "-----------------------------------------"
1168 check_nexthop_res_support
1169 if [ $? -eq $ksft_skip ]; then
1173 check_large_res_grp 6 $((128 * 1024))
1175 $IP nexthop flush >/dev/null 2>&1
1178 ipv6_del_add_loop1()
1181 $IP nexthop del id 100
1182 $IP nexthop add id 100 via 2001:db8:91::2 dev veth1
1183 done >/dev/null 2>&1
1186 ipv6_grp_replace_loop()
1189 $IP nexthop replace id 102 group 100/101
1190 done >/dev/null 2>&1
1202 echo "IPv6 runtime torture"
1203 echo "--------------------"
1204 if [ ! -x "$(command -v mausezahn)" ]; then
1205 echo "SKIP: Could not run test; need mausezahn tool"
1209 run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1"
1210 run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth3"
1211 run_cmd "$IP nexthop add id 102 group 100/101"
1212 run_cmd "$IP route add 2001:db8:101::1 nhid 102"
1213 run_cmd "$IP route add 2001:db8:101::2 nhid 102"
1215 ipv6_del_add_loop1 &
1217 ipv6_grp_replace_loop &
1219 ip netns exec me ping -f 2001:db8:101::1 >/dev/null 2>&1 &
1221 ip netns exec me ping -f 2001:db8:101::2 >/dev/null 2>&1 &
1223 ip netns exec me mausezahn -6 veth1 -B 2001:db8:101::2 -A 2001:db8:91::1 -c 0 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
1227 kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
1228 wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
1230 # if we did not crash, success
1231 log_test 0 0 "IPv6 torture test"
1234 ipv6_res_grp_replace_loop()
1237 $IP nexthop replace id 102 group 100/101 type resilient
1238 done >/dev/null 2>&1
1250 echo "IPv6 runtime resilient nexthop group torture"
1251 echo "--------------------------------------------"
1253 check_nexthop_res_support
1254 if [ $? -eq $ksft_skip ]; then
1258 if [ ! -x "$(command -v mausezahn)" ]; then
1259 echo "SKIP: Could not run test; need mausezahn tool"
1263 run_cmd "$IP nexthop add id 100 via 2001:db8:91::2 dev veth1"
1264 run_cmd "$IP nexthop add id 101 via 2001:db8:92::2 dev veth3"
1265 run_cmd "$IP nexthop add id 102 group 100/101 type resilient buckets 512 idle_timer 0"
1266 run_cmd "$IP route add 2001:db8:101::1 nhid 102"
1267 run_cmd "$IP route add 2001:db8:101::2 nhid 102"
1269 ipv6_del_add_loop1 &
1271 ipv6_res_grp_replace_loop &
1273 ip netns exec me ping -f 2001:db8:101::1 >/dev/null 2>&1 &
1275 ip netns exec me ping -f 2001:db8:101::2 >/dev/null 2>&1 &
1277 ip netns exec me mausezahn -6 veth1 \
1278 -B 2001:db8:101::2 -A 2001:db8:91::1 -c 0 \
1279 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
1283 kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
1284 wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
1286 # if we did not crash, success
1287 log_test 0 0 "IPv6 resilient nexthop group torture test"
1295 echo "IPv4 functional"
1296 echo "----------------------"
1299 # basic IPv4 ops - add, get, delete
1301 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1303 log_test $rc 0 "Create nexthop with id, gw, dev"
1304 if [ $rc -ne 0 ]; then
1305 echo "Basic IPv4 create fails; can not continue"
1309 run_cmd "$IP nexthop get id 12"
1310 log_test $? 0 "Get nexthop by id"
1311 check_nexthop "id 12" "id 12 via 172.16.1.2 dev veth1 scope link"
1313 run_cmd "$IP nexthop del id 12"
1314 log_test $? 0 "Delete nexthop by id"
1315 check_nexthop "id 52" ""
1320 # gw validation, no device - fails since dev is required
1321 run_cmd "$IP nexthop add id 12 via 172.16.2.3"
1322 log_test $? 2 "Create nexthop - gw only"
1324 # gw not reachable through given dev
1325 run_cmd "$IP nexthop add id 13 via 172.16.3.2 dev veth1"
1326 log_test $? 2 "Create nexthop - invalid gw+dev combination"
1328 # onlink flag overrides gw+dev lookup
1329 run_cmd "$IP nexthop add id 13 via 172.16.3.2 dev veth1 onlink"
1330 log_test $? 0 "Create nexthop - gw+dev and onlink"
1332 # admin down should delete nexthops
1334 run_cmd "$IP nexthop add id 15 via 172.16.1.3 dev veth1"
1335 run_cmd "$IP nexthop add id 16 via 172.16.1.4 dev veth1"
1336 run_cmd "$IP nexthop add id 17 via 172.16.1.5 dev veth1"
1337 run_cmd "$IP li set dev veth1 down"
1339 check_nexthop "dev veth1" ""
1340 log_test $? 0 "Nexthops removed on admin down"
1342 # nexthop route delete warning: route add with nhid and delete
1344 run_cmd "$IP li set dev veth1 up"
1345 run_cmd "$IP nexthop add id 12 via 172.16.1.3 dev veth1"
1346 out1=`dmesg | grep "WARNING:.*fib_nh_match.*" | wc -l`
1347 run_cmd "$IP route add 172.16.101.1/32 nhid 12"
1348 run_cmd "$IP route delete 172.16.101.1/32 dev veth1"
1349 out2=`dmesg | grep "WARNING:.*fib_nh_match.*" | wc -l`
1352 log_test $rc 0 "Delete nexthop route warning"
1353 run_cmd "$IP route delete 172.16.101.1/32 nhid 12"
1354 run_cmd "$IP nexthop del id 12"
1356 run_cmd "$IP nexthop add id 21 via 172.16.1.6 dev veth1"
1357 run_cmd "$IP ro add 172.16.101.0/24 nhid 21"
1358 run_cmd "$IP ro del 172.16.101.0/24 nexthop via 172.16.1.7 dev veth1 nexthop via 172.16.1.8 dev veth1"
1359 log_test $? 2 "Delete multipath route with only nh id based entry"
1361 run_cmd "$IP nexthop add id 22 via 172.16.1.6 dev veth1"
1362 run_cmd "$IP ro add 172.16.102.0/24 nhid 22"
1363 run_cmd "$IP ro del 172.16.102.0/24 dev veth1"
1364 log_test $? 2 "Delete route when specifying only nexthop device"
1366 run_cmd "$IP ro del 172.16.102.0/24 via 172.16.1.6"
1367 log_test $? 2 "Delete route when specifying only gateway"
1369 run_cmd "$IP ro del 172.16.102.0/24"
1370 log_test $? 0 "Delete route when not specifying nexthop attributes"
1378 echo "IPv4 groups functional"
1379 echo "----------------------"
1381 # basic functionality: create a nexthop group, default weight
1382 run_cmd "$IP nexthop add id 11 via 172.16.1.2 dev veth1"
1383 run_cmd "$IP nexthop add id 101 group 11"
1384 log_test $? 0 "Create nexthop group with single nexthop"
1387 run_cmd "$IP nexthop get id 101"
1388 log_test $? 0 "Get nexthop group by id"
1389 check_nexthop "id 101" "id 101 group 11"
1391 # delete nexthop group
1392 run_cmd "$IP nexthop del id 101"
1393 log_test $? 0 "Delete nexthop group by id"
1394 check_nexthop "id 101" ""
1396 $IP nexthop flush >/dev/null 2>&1
1399 # create group with multiple nexthops
1400 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1401 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1402 run_cmd "$IP nexthop add id 14 via 172.16.1.4 dev veth1"
1403 run_cmd "$IP nexthop add id 15 via 172.16.1.5 dev veth1"
1404 run_cmd "$IP nexthop add id 102 group 12/13/14/15"
1405 log_test $? 0 "Nexthop group with multiple nexthops"
1406 check_nexthop "id 102" "id 102 group 12/13/14/15"
1408 # Delete nexthop in a group and group is updated
1409 run_cmd "$IP nexthop del id 13"
1410 check_nexthop "id 102" "id 102 group 12/14/15"
1411 log_test $? 0 "Nexthop group updated when entry is deleted"
1413 # create group with multiple weighted nexthops
1414 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1415 run_cmd "$IP nexthop add id 103 group 12/13,2/14,3/15,4"
1416 log_test $? 0 "Nexthop group with weighted nexthops"
1417 check_nexthop "id 103" "id 103 group 12/13,2/14,3/15,4"
1419 # Delete nexthop in a weighted group and group is updated
1420 run_cmd "$IP nexthop del id 13"
1421 check_nexthop "id 103" "id 103 group 12/14,3/15,4"
1422 log_test $? 0 "Weighted nexthop group updated when entry is deleted"
1424 # admin down - nexthop is removed from group
1425 run_cmd "$IP li set dev veth1 down"
1426 check_nexthop "dev veth1" ""
1427 log_test $? 0 "Nexthops in groups removed on admin down"
1429 # expect groups to have been deleted as well
1432 run_cmd "$IP li set dev veth1 up"
1434 $IP nexthop flush >/dev/null 2>&1
1436 # group with nexthops using different devices
1438 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1439 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1440 run_cmd "$IP nexthop add id 14 via 172.16.1.4 dev veth1"
1441 run_cmd "$IP nexthop add id 15 via 172.16.1.5 dev veth1"
1443 run_cmd "$IP nexthop add id 22 via 172.16.2.2 dev veth3"
1444 run_cmd "$IP nexthop add id 23 via 172.16.2.3 dev veth3"
1445 run_cmd "$IP nexthop add id 24 via 172.16.2.4 dev veth3"
1446 run_cmd "$IP nexthop add id 25 via 172.16.2.5 dev veth3"
1449 # multiple groups with same nexthop
1450 run_cmd "$IP nexthop add id 104 group 12"
1451 run_cmd "$IP nexthop add id 105 group 12"
1452 check_nexthop "group" "id 104 group 12 id 105 group 12"
1453 log_test $? 0 "Multiple groups with same nexthop"
1455 run_cmd "$IP nexthop flush groups"
1456 [ $? -ne 0 ] && return 1
1458 # on admin down of veth1, it should be removed from the group
1459 run_cmd "$IP nexthop add id 105 group 12/13/22/23/14"
1460 run_cmd "$IP li set veth1 down"
1461 check_nexthop "id 105" "id 105 group 22/23"
1462 log_test $? 0 "Nexthops in group removed on admin down - mixed group"
1464 run_cmd "$IP nexthop add id 106 group 105/24"
1465 log_test $? 2 "Nexthop group can not have a group as an entry"
1467 # a group can have a blackhole entry only if it is the only
1468 # nexthop in the group. Needed for atomic replace with an
1469 # actual nexthop group
1470 run_cmd "$IP nexthop add id 31 blackhole"
1471 run_cmd "$IP nexthop add id 107 group 31"
1472 log_test $? 0 "Nexthop group with a blackhole entry"
1474 run_cmd "$IP nexthop add id 108 group 31/24"
1475 log_test $? 2 "Nexthop group can not have a blackhole and another nexthop"
1478 ipv4_res_grp_fcnal()
1483 echo "IPv4 resilient groups functional"
1484 echo "--------------------------------"
1486 check_nexthop_res_support
1487 if [ $? -eq $ksft_skip ]; then
1492 # migration of nexthop buckets - equal weights
1494 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1495 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1496 run_cmd "$IP nexthop add id 102 group 12/13 type resilient buckets 2 idle_timer 0"
1498 run_cmd "$IP nexthop del id 13"
1499 check_nexthop "id 102" \
1500 "id 102 group 12 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
1501 log_test $? 0 "Nexthop group updated when entry is deleted"
1502 check_nexthop_bucket "list id 102" \
1503 "id 102 index 0 nhid 12 id 102 index 1 nhid 12"
1504 log_test $? 0 "Nexthop buckets updated when entry is deleted"
1506 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1507 run_cmd "$IP nexthop replace id 102 group 12/13 type resilient buckets 2 idle_timer 0"
1508 check_nexthop "id 102" \
1509 "id 102 group 12/13 type resilient buckets 2 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
1510 log_test $? 0 "Nexthop group updated after replace"
1511 check_nexthop_bucket "list id 102" \
1512 "id 102 index 0 nhid 13 id 102 index 1 nhid 12"
1513 log_test $? 0 "Nexthop buckets updated after replace"
1515 $IP nexthop flush >/dev/null 2>&1
1518 # migration of nexthop buckets - unequal weights
1520 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1521 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1522 run_cmd "$IP nexthop add id 102 group 12,3/13,1 type resilient buckets 4 idle_timer 0"
1524 run_cmd "$IP nexthop del id 13"
1525 check_nexthop "id 102" \
1526 "id 102 group 12,3 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
1527 log_test $? 0 "Nexthop group updated when entry is deleted - nECMP"
1528 check_nexthop_bucket "list id 102" \
1529 "id 102 index 0 nhid 12 id 102 index 1 nhid 12 id 102 index 2 nhid 12 id 102 index 3 nhid 12"
1530 log_test $? 0 "Nexthop buckets updated when entry is deleted - nECMP"
1532 run_cmd "$IP nexthop add id 13 via 172.16.1.3 dev veth1"
1533 run_cmd "$IP nexthop replace id 102 group 12,3/13,1 type resilient buckets 4 idle_timer 0"
1534 check_nexthop "id 102" \
1535 "id 102 group 12,3/13 type resilient buckets 4 idle_timer 0 unbalanced_timer 0 unbalanced_time 0"
1536 log_test $? 0 "Nexthop group updated after replace - nECMP"
1537 check_nexthop_bucket "list id 102" \
1538 "id 102 index 0 nhid 13 id 102 index 1 nhid 12 id 102 index 2 nhid 12 id 102 index 3 nhid 12"
1539 log_test $? 0 "Nexthop buckets updated after replace - nECMP"
1547 lladdr=$(get_linklocal veth2 peer)
1548 run_cmd "$IP nexthop add id 11 via ${lladdr} dev veth1"
1550 run_cmd "$IP ro add 172.16.101.1/32 nhid 11"
1551 log_test $? 0 "IPv6 nexthop with IPv4 route"
1552 check_route "172.16.101.1" "172.16.101.1 nhid 11 via inet6 ${lladdr} dev veth1"
1555 run_cmd "$IP nexthop add id 12 via 172.16.1.2 dev veth1"
1556 run_cmd "$IP nexthop add id 101 group 11/12"
1558 run_cmd "$IP ro replace 172.16.101.1/32 nhid 101"
1559 log_test $? 0 "IPv6 nexthop with IPv4 route"
1561 check_route "172.16.101.1" "172.16.101.1 nhid 101 nexthop via inet6 ${lladdr} dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
1563 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
1564 log_test $? 0 "IPv4 route with IPv6 gateway"
1565 check_route "172.16.101.1" "172.16.101.1 via inet6 ${lladdr} dev veth1"
1567 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 2001:db8:50::1 dev veth1"
1568 log_test $? 2 "IPv4 route with invalid IPv6 gateway"
1571 ipv4_fcnal_runtime()
1577 echo "IPv4 functional runtime"
1578 echo "-----------------------"
1580 run_cmd "$IP nexthop add id 21 via 172.16.1.2 dev veth1"
1581 run_cmd "$IP ro add 172.16.101.1/32 nhid 21"
1582 log_test $? 0 "Route add"
1583 check_route "172.16.101.1" "172.16.101.1 nhid 21 via 172.16.1.2 dev veth1"
1585 run_cmd "$IP ro delete 172.16.101.1/32 nhid 21"
1586 log_test $? 0 "Route delete"
1591 run_cmd "$IP nexthop add id 22 via 172.16.1.2 dev veth1"
1592 run_cmd "$IP ro add 172.16.101.1/32 nhid 22 scope host"
1593 log_test $? 2 "Route add - scope conflict with nexthop"
1595 run_cmd "$IP nexthop replace id 22 dev veth3"
1596 run_cmd "$IP ro add 172.16.101.1/32 nhid 22 scope host"
1597 run_cmd "$IP nexthop replace id 22 via 172.16.2.2 dev veth3"
1598 log_test $? 2 "Nexthop replace with invalid scope for existing route"
1600 # check cleanup path on invalid metric
1601 run_cmd "$IP ro add 172.16.101.2/32 nhid 22 congctl lock foo"
1602 log_test $? 2 "IPv4 route with invalid metric"
1605 # add route with nexthop and check traffic
1607 run_cmd "$IP nexthop replace id 21 via 172.16.1.2 dev veth1"
1608 run_cmd "$IP ro replace 172.16.101.1/32 nhid 21"
1609 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1610 log_test $? 0 "Basic ping"
1612 run_cmd "$IP nexthop replace id 22 via 172.16.2.2 dev veth3"
1613 run_cmd "$IP nexthop add id 122 group 21/22"
1614 run_cmd "$IP ro replace 172.16.101.1/32 nhid 122"
1615 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1616 log_test $? 0 "Ping - multipath"
1618 run_cmd "$IP ro delete 172.16.101.1/32 nhid 122"
1621 # multiple default routes
1622 # - tests fib_select_default
1623 run_cmd "$IP nexthop add id 501 via 172.16.1.2 dev veth1"
1624 run_cmd "$IP ro add default nhid 501"
1625 run_cmd "$IP ro add default via 172.16.1.3 dev veth1 metric 20"
1626 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1627 log_test $? 0 "Ping - multiple default routes, nh first"
1630 run_cmd "$IP ro del default nhid 501"
1631 run_cmd "$IP ro del default via 172.16.1.3 dev veth1 metric 20"
1632 run_cmd "$IP ro add default via 172.16.1.2 dev veth1 metric 20"
1633 run_cmd "$IP nexthop replace id 501 via 172.16.1.3 dev veth1"
1634 run_cmd "$IP ro add default nhid 501 metric 20"
1635 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1636 log_test $? 0 "Ping - multiple default routes, nh second"
1638 run_cmd "$IP nexthop delete nhid 501"
1639 run_cmd "$IP ro del default"
1642 # IPv4 with blackhole nexthops
1644 run_cmd "$IP nexthop add id 23 blackhole"
1645 run_cmd "$IP ro replace 172.16.101.1/32 nhid 23"
1646 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1647 log_test $? 2 "Ping - blackhole"
1649 run_cmd "$IP nexthop replace id 23 via 172.16.1.2 dev veth1"
1650 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1651 log_test $? 0 "Ping - blackhole replaced with gateway"
1653 run_cmd "$IP nexthop replace id 23 blackhole"
1654 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1655 log_test $? 2 "Ping - gateway replaced by blackhole"
1657 run_cmd "$IP ro replace 172.16.101.1/32 nhid 122"
1658 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1659 if [ $? -eq 0 ]; then
1660 run_cmd "$IP nexthop replace id 122 group 23"
1661 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1662 log_test $? 2 "Ping - group with blackhole"
1664 run_cmd "$IP nexthop replace id 122 group 21/22"
1665 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1666 log_test $? 0 "Ping - group blackhole replaced with gateways"
1668 log_test 2 0 "Ping - multipath failed"
1672 # device only and gw + dev only mix
1674 run_cmd "$IP nexthop add id 85 dev veth1"
1675 run_cmd "$IP ro replace 172.16.101.1/32 nhid 85"
1676 log_test $? 0 "IPv4 route with device only nexthop"
1677 check_route "172.16.101.1" "172.16.101.1 nhid 85 dev veth1"
1679 run_cmd "$IP nexthop add id 123 group 21/85"
1680 run_cmd "$IP ro replace 172.16.101.1/32 nhid 123"
1681 log_test $? 0 "IPv4 multipath route with nexthop mix - dev only + gw"
1682 check_route "172.16.101.1" "172.16.101.1 nhid 123 nexthop via 172.16.1.2 dev veth1 weight 1 nexthop dev veth1 weight 1"
1688 lladdr=$(get_linklocal veth2 peer)
1689 run_cmd "$IP nexthop add id 24 via ${lladdr} dev veth1"
1691 run_cmd "$IP ro replace 172.16.101.1/32 nhid 24"
1692 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1693 log_test $? 0 "IPv6 nexthop with IPv4 route"
1695 $IP neigh sh | grep -q "${lladdr} dev veth1"
1696 if [ $? -eq 1 ]; then
1697 echo " WARNING: Neigh entry missing for ${lladdr}"
1698 $IP neigh sh | grep 'dev veth1'
1701 $IP neigh sh | grep -q "172.16.101.1 dev eth1"
1702 if [ $? -eq 0 ]; then
1703 echo " WARNING: Neigh entry exists for 172.16.101.1"
1704 $IP neigh sh | grep 'dev veth1'
1708 run_cmd "$IP nexthop add id 25 via 172.16.1.2 dev veth1"
1709 run_cmd "$IP nexthop add id 101 group 24/25"
1711 run_cmd "$IP ro replace 172.16.101.1/32 nhid 101"
1712 log_test $? 0 "IPv4 route with mixed v4-v6 multipath route"
1714 check_route "172.16.101.1" "172.16.101.1 nhid 101 nexthop via inet6 ${lladdr} dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
1716 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1717 log_test $? 0 "IPv6 nexthop with IPv4 route"
1719 run_cmd "$IP ro replace 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
1720 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1721 log_test $? 0 "IPv4 route with IPv6 gateway"
1723 $IP neigh sh | grep -q "${lladdr} dev veth1"
1724 if [ $? -eq 1 ]; then
1725 echo " WARNING: Neigh entry missing for ${lladdr}"
1726 $IP neigh sh | grep 'dev veth1'
1729 $IP neigh sh | grep -q "172.16.101.1 dev eth1"
1730 if [ $? -eq 0 ]; then
1731 echo " WARNING: Neigh entry exists for 172.16.101.1"
1732 $IP neigh sh | grep 'dev veth1'
1735 run_cmd "$IP ro del 172.16.101.1/32 via inet6 ${lladdr} dev veth1"
1736 run_cmd "$IP -4 ro add default via inet6 ${lladdr} dev veth1"
1737 run_cmd "ip netns exec me ping -c1 -w$PING_TIMEOUT 172.16.101.1"
1738 log_test $? 0 "IPv4 default route with IPv6 gateway"
1741 # MPLS as an example of LWT encap
1743 run_cmd "$IP nexthop add id 51 encap mpls 101 via 172.16.1.2 dev veth1"
1744 log_test $? 0 "IPv4 route with MPLS encap"
1745 check_nexthop "id 51" "id 51 encap mpls 101 via 172.16.1.2 dev veth1 scope link"
1746 log_test $? 0 "IPv4 route with MPLS encap - check"
1748 run_cmd "$IP nexthop add id 52 encap mpls 102 via inet6 2001:db8:91::2 dev veth1"
1749 log_test $? 0 "IPv4 route with MPLS encap and v6 gateway"
1750 check_nexthop "id 52" "id 52 encap mpls 102 via 2001:db8:91::2 dev veth1 scope link"
1751 log_test $? 0 "IPv4 route with MPLS encap, v6 gw - check"
1759 echo "IPv4 large groups (x$ecmp)"
1760 echo "---------------------"
1762 check_large_grp 4 $ecmp
1764 $IP nexthop flush >/dev/null 2>&1
1767 ipv4_large_res_grp()
1770 echo "IPv4 large resilient group (128k buckets)"
1771 echo "-----------------------------------------"
1773 check_nexthop_res_support
1774 if [ $? -eq $ksft_skip ]; then
1778 check_large_res_grp 4 $((128 * 1024))
1780 $IP nexthop flush >/dev/null 2>&1
1783 sysctl_nexthop_compat_mode_check()
1785 local sysctlname="net.ipv4.nexthop_compat_mode"
1788 IPE="ip netns exec me"
1790 $IPE sysctl -q $sysctlname 2>&1 >/dev/null
1791 if [ $? -ne 0 ]; then
1792 echo "SKIP: kernel lacks nexthop compat mode sysctl control"
1796 out=$($IPE sysctl $sysctlname 2>/dev/null)
1797 log_test $? 0 "$lprefix default nexthop compat mode check"
1798 check_output "${out}" "$sysctlname = 1"
1801 sysctl_nexthop_compat_mode_set()
1803 local sysctlname="net.ipv4.nexthop_compat_mode"
1807 IPE="ip netns exec me"
1809 out=$($IPE sysctl -w $sysctlname=$mode)
1810 log_test $? 0 "$lprefix set compat mode - $mode"
1811 check_output "${out}" "net.ipv4.nexthop_compat_mode = $mode"
1819 echo "IPv6 nexthop api compat mode test"
1820 echo "--------------------------------"
1822 sysctl_nexthop_compat_mode_check "IPv6"
1823 if [ $? -eq $ksft_skip ]; then
1827 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
1828 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
1829 run_cmd "$IP nexthop add id 122 group 62/63"
1830 ipmout=$(start_ip_monitor route)
1832 run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 122"
1833 # route add notification should contain expanded nexthops
1834 stop_ip_monitor $ipmout 3
1835 log_test $? 0 "IPv6 compat mode on - route add notification"
1837 # route dump should contain expanded nexthops
1838 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 122 metric 1024 nexthop via 2001:db8:91::2 dev veth1 weight 1 nexthop via 2001:db8:91::3 dev veth1 weight 1"
1839 log_test $? 0 "IPv6 compat mode on - route dump"
1841 # change in nexthop group should generate route notification
1842 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
1843 ipmout=$(start_ip_monitor route)
1844 run_cmd "$IP nexthop replace id 122 group 62/64"
1845 stop_ip_monitor $ipmout 3
1847 log_test $? 0 "IPv6 compat mode on - nexthop change"
1849 # set compat mode off
1850 sysctl_nexthop_compat_mode_set 0 "IPv6"
1852 run_cmd "$IP -6 ro del 2001:db8:101::1/128 nhid 122"
1854 run_cmd "$IP nexthop add id 62 via 2001:db8:91::2 dev veth1"
1855 run_cmd "$IP nexthop add id 63 via 2001:db8:91::3 dev veth1"
1856 run_cmd "$IP nexthop add id 122 group 62/63"
1857 ipmout=$(start_ip_monitor route)
1859 run_cmd "$IP -6 ro add 2001:db8:101::1/128 nhid 122"
1860 # route add notification should not contain expanded nexthops
1861 stop_ip_monitor $ipmout 1
1862 log_test $? 0 "IPv6 compat mode off - route add notification"
1864 # route dump should not contain expanded nexthops
1865 check_route6 "2001:db8:101::1" "2001:db8:101::1 nhid 122 metric 1024"
1866 log_test $? 0 "IPv6 compat mode off - route dump"
1868 # change in nexthop group should not generate route notification
1869 run_cmd "$IP nexthop add id 64 via 2001:db8:91::4 dev veth1"
1870 ipmout=$(start_ip_monitor route)
1871 run_cmd "$IP nexthop replace id 122 group 62/64"
1872 stop_ip_monitor $ipmout 0
1873 log_test $? 0 "IPv6 compat mode off - nexthop change"
1875 # nexthop delete should not generate route notification
1876 ipmout=$(start_ip_monitor route)
1877 run_cmd "$IP nexthop del id 122"
1878 stop_ip_monitor $ipmout 0
1879 log_test $? 0 "IPv6 compat mode off - nexthop delete"
1881 # set compat mode back on
1882 sysctl_nexthop_compat_mode_set 1 "IPv6"
1890 echo "IPv4 nexthop api compat mode"
1891 echo "----------------------------"
1893 sysctl_nexthop_compat_mode_check "IPv4"
1894 if [ $? -eq $ksft_skip ]; then
1898 run_cmd "$IP nexthop add id 21 via 172.16.1.2 dev veth1"
1899 run_cmd "$IP nexthop add id 22 via 172.16.1.2 dev veth1"
1900 run_cmd "$IP nexthop add id 122 group 21/22"
1901 ipmout=$(start_ip_monitor route)
1903 run_cmd "$IP ro add 172.16.101.1/32 nhid 122"
1904 stop_ip_monitor $ipmout 3
1906 # route add notification should contain expanded nexthops
1907 log_test $? 0 "IPv4 compat mode on - route add notification"
1909 # route dump should contain expanded nexthops
1910 check_route "172.16.101.1" "172.16.101.1 nhid 122 nexthop via 172.16.1.2 dev veth1 weight 1 nexthop via 172.16.1.2 dev veth1 weight 1"
1911 log_test $? 0 "IPv4 compat mode on - route dump"
1913 # change in nexthop group should generate route notification
1914 run_cmd "$IP nexthop add id 23 via 172.16.1.3 dev veth1"
1915 ipmout=$(start_ip_monitor route)
1916 run_cmd "$IP nexthop replace id 122 group 21/23"
1917 stop_ip_monitor $ipmout 3
1918 log_test $? 0 "IPv4 compat mode on - nexthop change"
1920 sysctl_nexthop_compat_mode_set 0 "IPv4"
1923 run_cmd "$IP ro del 172.16.101.1/32 nhid 122"
1925 ipmout=$(start_ip_monitor route)
1926 run_cmd "$IP ro add 172.16.101.1/32 nhid 122"
1927 stop_ip_monitor $ipmout 1
1928 # route add notification should not contain expanded nexthops
1929 log_test $? 0 "IPv4 compat mode off - route add notification"
1931 # route dump should not contain expanded nexthops
1932 check_route "172.16.101.1" "172.16.101.1 nhid 122"
1933 log_test $? 0 "IPv4 compat mode off - route dump"
1935 # change in nexthop group should not generate route notification
1936 ipmout=$(start_ip_monitor route)
1937 run_cmd "$IP nexthop replace id 122 group 21/22"
1938 stop_ip_monitor $ipmout 0
1939 log_test $? 0 "IPv4 compat mode off - nexthop change"
1941 # nexthop delete should not generate route notification
1942 ipmout=$(start_ip_monitor route)
1943 run_cmd "$IP nexthop del id 122"
1944 stop_ip_monitor $ipmout 0
1945 log_test $? 0 "IPv4 compat mode off - nexthop delete"
1947 sysctl_nexthop_compat_mode_set 1 "IPv4"
1950 ipv4_del_add_loop1()
1953 $IP nexthop del id 100
1954 $IP nexthop add id 100 via 172.16.1.2 dev veth1
1955 done >/dev/null 2>&1
1958 ipv4_grp_replace_loop()
1961 $IP nexthop replace id 102 group 100/101
1962 done >/dev/null 2>&1
1974 echo "IPv4 runtime torture"
1975 echo "--------------------"
1976 if [ ! -x "$(command -v mausezahn)" ]; then
1977 echo "SKIP: Could not run test; need mausezahn tool"
1981 run_cmd "$IP nexthop add id 100 via 172.16.1.2 dev veth1"
1982 run_cmd "$IP nexthop add id 101 via 172.16.2.2 dev veth3"
1983 run_cmd "$IP nexthop add id 102 group 100/101"
1984 run_cmd "$IP route add 172.16.101.1 nhid 102"
1985 run_cmd "$IP route add 172.16.101.2 nhid 102"
1987 ipv4_del_add_loop1 &
1989 ipv4_grp_replace_loop &
1991 ip netns exec me ping -f 172.16.101.1 >/dev/null 2>&1 &
1993 ip netns exec me ping -f 172.16.101.2 >/dev/null 2>&1 &
1995 ip netns exec me mausezahn veth1 -B 172.16.101.2 -A 172.16.1.1 -c 0 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
1999 kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
2000 wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
2002 # if we did not crash, success
2003 log_test 0 0 "IPv4 torture test"
2006 ipv4_res_grp_replace_loop()
2009 $IP nexthop replace id 102 group 100/101 type resilient
2010 done >/dev/null 2>&1
2022 echo "IPv4 runtime resilient nexthop group torture"
2023 echo "--------------------------------------------"
2025 check_nexthop_res_support
2026 if [ $? -eq $ksft_skip ]; then
2030 if [ ! -x "$(command -v mausezahn)" ]; then
2031 echo "SKIP: Could not run test; need mausezahn tool"
2035 run_cmd "$IP nexthop add id 100 via 172.16.1.2 dev veth1"
2036 run_cmd "$IP nexthop add id 101 via 172.16.2.2 dev veth3"
2037 run_cmd "$IP nexthop add id 102 group 100/101 type resilient buckets 512 idle_timer 0"
2038 run_cmd "$IP route add 172.16.101.1 nhid 102"
2039 run_cmd "$IP route add 172.16.101.2 nhid 102"
2041 ipv4_del_add_loop1 &
2043 ipv4_res_grp_replace_loop &
2045 ip netns exec me ping -f 172.16.101.1 >/dev/null 2>&1 &
2047 ip netns exec me ping -f 172.16.101.2 >/dev/null 2>&1 &
2049 ip netns exec me mausezahn veth1 \
2050 -B 172.16.101.2 -A 172.16.1.1 -c 0 \
2051 -t tcp "dp=1-1023, flags=syn" >/dev/null 2>&1 &
2055 kill -9 $pid1 $pid2 $pid3 $pid4 $pid5
2056 wait $pid1 $pid2 $pid3 $pid4 $pid5 2>/dev/null
2058 # if we did not crash, success
2059 log_test 0 0 "IPv4 resilient nexthop group torture test"
2065 echo "Basic functional tests"
2066 echo "----------------------"
2067 run_cmd "$IP nexthop ls"
2068 log_test $? 0 "List with nothing defined"
2070 run_cmd "$IP nexthop get id 1"
2071 log_test $? 2 "Nexthop get on non-existent id"
2073 # attempt to create nh without a device or gw - fails
2074 run_cmd "$IP nexthop add id 1"
2075 log_test $? 2 "Nexthop with no device or gateway"
2077 # attempt to create nh with down device - fails
2078 $IP li set veth1 down
2079 run_cmd "$IP nexthop add id 1 dev veth1"
2080 log_test $? 2 "Nexthop with down device"
2082 # create nh with linkdown device - fails
2084 ip -netns peer li set veth2 down
2085 run_cmd "$IP nexthop add id 1 dev veth1"
2086 log_test $? 2 "Nexthop with device that is linkdown"
2087 ip -netns peer li set veth2 up
2090 run_cmd "$IP nexthop add id 1 dev veth1"
2091 log_test $? 0 "Nexthop with device only"
2093 # create nh with duplicate id
2094 run_cmd "$IP nexthop add id 1 dev veth3"
2095 log_test $? 2 "Nexthop with duplicate id"
2098 run_cmd "$IP nexthop add id 2 blackhole"
2099 log_test $? 0 "Blackhole nexthop"
2101 # blackhole nexthop can not have other specs
2102 run_cmd "$IP nexthop replace id 2 blackhole dev veth1"
2103 log_test $? 2 "Blackhole nexthop with other attributes"
2105 # blackhole nexthop should not be affected by the state of the loopback
2107 run_cmd "$IP link set dev lo down"
2108 check_nexthop "id 2" "id 2 blackhole"
2109 log_test $? 0 "Blackhole nexthop with loopback device down"
2111 run_cmd "$IP link set dev lo up"
2113 # Dump should not loop endlessly when maximum nexthop ID is configured.
2114 run_cmd "$IP nexthop add id $((2**32-1)) blackhole"
2115 run_cmd "timeout 5 $IP nexthop"
2116 log_test $? 0 "Maximum nexthop ID dump"
2122 run_cmd "$IP nexthop add id 101 group 1"
2123 log_test $? 0 "Create group"
2125 run_cmd "$IP nexthop add id 102 group 2"
2126 log_test $? 0 "Create group with blackhole nexthop"
2128 # multipath group can not have a blackhole as 1 path
2129 run_cmd "$IP nexthop add id 103 group 1/2"
2130 log_test $? 2 "Create multipath group where 1 path is a blackhole"
2132 # multipath group can not have a member replaced by a blackhole
2133 run_cmd "$IP nexthop replace id 2 dev veth3"
2134 run_cmd "$IP nexthop replace id 102 group 1/2"
2135 run_cmd "$IP nexthop replace id 2 blackhole"
2136 log_test $? 2 "Multipath group can not have a member replaced by blackhole"
2138 # attempt to create group with non-existent nexthop
2139 run_cmd "$IP nexthop add id 103 group 12"
2140 log_test $? 2 "Create group with non-existent nexthop"
2142 # attempt to create group with same nexthop
2143 run_cmd "$IP nexthop add id 103 group 1/1"
2144 log_test $? 2 "Create group with same nexthop multiple times"
2146 # replace nexthop with a group - fails
2147 run_cmd "$IP nexthop replace id 2 group 1"
2148 log_test $? 2 "Replace nexthop with nexthop group"
2150 # replace nexthop group with a nexthop - fails
2151 run_cmd "$IP nexthop replace id 101 dev veth1"
2152 log_test $? 2 "Replace nexthop group with nexthop"
2154 # nexthop group with other attributes fail
2155 run_cmd "$IP nexthop add id 104 group 1 dev veth1"
2156 log_test $? 2 "Nexthop group and device"
2158 # Tests to ensure that flushing works as expected.
2159 run_cmd "$IP nexthop add id 105 blackhole proto 99"
2160 run_cmd "$IP nexthop add id 106 blackhole proto 100"
2161 run_cmd "$IP nexthop add id 107 blackhole proto 99"
2162 run_cmd "$IP nexthop flush proto 99"
2163 check_nexthop "id 105" ""
2164 check_nexthop "id 106" "id 106 blackhole proto 100"
2165 check_nexthop "id 107" ""
2166 run_cmd "$IP nexthop flush proto 100"
2167 check_nexthop "id 106" ""
2169 run_cmd "$IP nexthop flush proto 100"
2170 log_test $? 0 "Test proto flush"
2172 run_cmd "$IP nexthop add id 104 group 1 blackhole"
2173 log_test $? 2 "Nexthop group and blackhole"
2175 $IP nexthop flush >/dev/null 2>&1
2177 # Test to ensure that flushing with a multi-part nexthop dump works as
2179 local batch_file=$(mktemp)
2181 for i in $(seq 1 $((64 * 1024))); do
2182 echo "nexthop add id $i blackhole" >> $batch_file
2186 $IP nexthop flush >/dev/null 2>&1
2187 [[ $($IP nexthop | wc -l) -eq 0 ]]
2188 log_test $? 0 "Large scale nexthop flushing"
2193 check_nexthop_buckets_balance()
2195 local nharg=$1; shift
2198 while (($# > 0)); do
2199 local selector=$1; shift
2200 local condition=$1; shift
2203 count=$($IP -j nexthop bucket ${nharg} ${selector} | jq length)
2204 (( $count $condition ))
2206 if ((ret != 0)); then
2217 echo "Basic resilient nexthop group functional tests"
2218 echo "----------------------------------------------"
2220 check_nexthop_res_support
2221 if [ $? -eq $ksft_skip ]; then
2225 run_cmd "$IP nexthop add id 1 dev veth1"
2228 # resilient nexthop group addition
2231 run_cmd "$IP nexthop add id 101 group 1 type resilient buckets 8"
2232 log_test $? 0 "Add a nexthop group with default parameters"
2234 run_cmd "$IP nexthop get id 101"
2235 check_nexthop "id 101" \
2236 "id 101 group 1 type resilient buckets 8 idle_timer 120 unbalanced_timer 0 unbalanced_time 0"
2237 log_test $? 0 "Get a nexthop group with default parameters"
2239 run_cmd "$IP nexthop add id 102 group 1 type resilient
2240 buckets 4 idle_timer 100 unbalanced_timer 5"
2241 run_cmd "$IP nexthop get id 102"
2242 check_nexthop "id 102" \
2243 "id 102 group 1 type resilient buckets 4 idle_timer 100 unbalanced_timer 5 unbalanced_time 0"
2244 log_test $? 0 "Get a nexthop group with non-default parameters"
2246 run_cmd "$IP nexthop add id 103 group 1 type resilient buckets 0"
2247 log_test $? 2 "Add a nexthop group with 0 buckets"
2250 # resilient nexthop group replacement
2253 run_cmd "$IP nexthop replace id 101 group 1 type resilient
2254 buckets 8 idle_timer 240 unbalanced_timer 80"
2255 log_test $? 0 "Replace nexthop group parameters"
2256 check_nexthop "id 101" \
2257 "id 101 group 1 type resilient buckets 8 idle_timer 240 unbalanced_timer 80 unbalanced_time 0"
2258 log_test $? 0 "Get a nexthop group after replacing parameters"
2260 run_cmd "$IP nexthop replace id 101 group 1 type resilient idle_timer 512"
2261 log_test $? 0 "Replace idle timer"
2262 check_nexthop "id 101" \
2263 "id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 80 unbalanced_time 0"
2264 log_test $? 0 "Get a nexthop group after replacing idle timer"
2266 run_cmd "$IP nexthop replace id 101 group 1 type resilient unbalanced_timer 256"
2267 log_test $? 0 "Replace unbalanced timer"
2268 check_nexthop "id 101" \
2269 "id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
2270 log_test $? 0 "Get a nexthop group after replacing unbalanced timer"
2272 run_cmd "$IP nexthop replace id 101 group 1 type resilient"
2273 log_test $? 0 "Replace with no parameters"
2274 check_nexthop "id 101" \
2275 "id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
2276 log_test $? 0 "Get a nexthop group after replacing no parameters"
2278 run_cmd "$IP nexthop replace id 101 group 1"
2279 log_test $? 2 "Replace nexthop group type - implicit"
2281 run_cmd "$IP nexthop replace id 101 group 1 type mpath"
2282 log_test $? 2 "Replace nexthop group type - explicit"
2284 run_cmd "$IP nexthop replace id 101 group 1 type resilient buckets 1024"
2285 log_test $? 2 "Replace number of nexthop buckets"
2287 check_nexthop "id 101" \
2288 "id 101 group 1 type resilient buckets 8 idle_timer 512 unbalanced_timer 256 unbalanced_time 0"
2289 log_test $? 0 "Get a nexthop group after replacing with invalid parameters"
2292 # resilient nexthop buckets dump
2295 $IP nexthop flush >/dev/null 2>&1
2296 run_cmd "$IP nexthop add id 1 dev veth1"
2297 run_cmd "$IP nexthop add id 2 dev veth3"
2298 run_cmd "$IP nexthop add id 101 group 1/2 type resilient buckets 4"
2299 run_cmd "$IP nexthop add id 201 group 1/2"
2301 check_nexthop_bucket "" \
2302 "id 101 index 0 nhid 2 id 101 index 1 nhid 2 id 101 index 2 nhid 1 id 101 index 3 nhid 1"
2303 log_test $? 0 "Dump all nexthop buckets"
2305 check_nexthop_bucket "list id 101" \
2306 "id 101 index 0 nhid 2 id 101 index 1 nhid 2 id 101 index 2 nhid 1 id 101 index 3 nhid 1"
2307 log_test $? 0 "Dump all nexthop buckets in a group"
2310 (( $($IP -j nexthop bucket list id 101 |
2311 jq '[.[] | select(.bucket.idle_time > 0 and
2312 .bucket.idle_time < 2)] | length') == 4 ))
2313 log_test $? 0 "All nexthop buckets report a positive near-zero idle time"
2315 check_nexthop_bucket "list dev veth1" \
2316 "id 101 index 2 nhid 1 id 101 index 3 nhid 1"
2317 log_test $? 0 "Dump all nexthop buckets with a specific nexthop device"
2319 check_nexthop_bucket "list nhid 2" \
2320 "id 101 index 0 nhid 2 id 101 index 1 nhid 2"
2321 log_test $? 0 "Dump all nexthop buckets with a specific nexthop identifier"
2323 run_cmd "$IP nexthop bucket list id 111"
2324 log_test $? 2 "Dump all nexthop buckets in a non-existent group"
2326 run_cmd "$IP nexthop bucket list id 201"
2327 log_test $? 2 "Dump all nexthop buckets in a non-resilient group"
2329 run_cmd "$IP nexthop bucket list dev bla"
2330 log_test $? 255 "Dump all nexthop buckets using a non-existent device"
2332 run_cmd "$IP nexthop bucket list groups"
2333 log_test $? 255 "Dump all nexthop buckets with invalid 'groups' keyword"
2335 run_cmd "$IP nexthop bucket list fdb"
2336 log_test $? 255 "Dump all nexthop buckets with invalid 'fdb' keyword"
2338 # Dump should not loop endlessly when maximum nexthop ID is configured.
2339 run_cmd "$IP nexthop add id $((2**32-1)) group 1/2 type resilient buckets 4"
2340 run_cmd "timeout 5 $IP nexthop bucket"
2341 log_test $? 0 "Maximum nexthop ID dump"
2344 # resilient nexthop buckets get requests
2347 check_nexthop_bucket "get id 101 index 0" "id 101 index 0 nhid 2"
2348 log_test $? 0 "Get a valid nexthop bucket"
2350 run_cmd "$IP nexthop bucket get id 101 index 999"
2351 log_test $? 2 "Get a nexthop bucket with valid group, but invalid index"
2353 run_cmd "$IP nexthop bucket get id 201 index 0"
2354 log_test $? 2 "Get a nexthop bucket from a non-resilient group"
2356 run_cmd "$IP nexthop bucket get id 999 index 0"
2357 log_test $? 2 "Get a nexthop bucket from a non-existent group"
2360 # tests for bucket migration
2363 $IP nexthop flush >/dev/null 2>&1
2365 run_cmd "$IP nexthop add id 1 dev veth1"
2366 run_cmd "$IP nexthop add id 2 dev veth3"
2367 run_cmd "$IP nexthop add id 101
2368 group 1/2 type resilient buckets 10
2369 idle_timer 1 unbalanced_timer 20"
2371 check_nexthop_buckets_balance "list id 101" \
2374 log_test $? 0 "Initial bucket allocation"
2376 run_cmd "$IP nexthop replace id 101
2377 group 1,2/2,3 type resilient"
2378 check_nexthop_buckets_balance "list id 101" \
2381 log_test $? 0 "Bucket allocation after replace"
2383 # Check that increase in idle timer does not make buckets appear busy.
2384 run_cmd "$IP nexthop replace id 101
2385 group 1,2/2,3 type resilient
2387 run_cmd "$IP nexthop replace id 101
2388 group 1/2 type resilient"
2389 check_nexthop_buckets_balance "list id 101" \
2392 log_test $? 0 "Buckets migrated after idle timer change"
2394 $IP nexthop flush >/dev/null 2>&1
2397 ################################################################################
2403 usage: ${0##*/} OPTS
2405 -t <test> Test(s) to run (default: all)
2406 (options: $ALL_TESTS)
2410 -P Pause after each test before cleanup
2411 -v verbose mode (show commands and output)
2415 -n num Number of nexthops to target
2416 -N Use new style to install routes in DUT
2422 ################################################################################
2425 while getopts :t:pP46hvw: o
2429 4) TESTS=${IPV4_TESTS};;
2430 6) TESTS=${IPV6_TESTS};;
2431 p) PAUSE_ON_FAIL=yes;;
2433 v) VERBOSE=$(($VERBOSE + 1));;
2434 w) PING_TIMEOUT=$OPTARG;;
2440 # make sure we don't pause twice
2441 [ "${PAUSE}" = "yes" ] && PAUSE_ON_FAIL=no
2443 if [ "$(id -u)" -ne 0 ];then
2444 echo "SKIP: Need root privileges"
2448 if [ ! -x "$(command -v ip)" ]; then
2449 echo "SKIP: Could not run test without ip tool"
2453 ip help 2>&1 | grep -q nexthop
2454 if [ $? -ne 0 ]; then
2455 echo "SKIP: iproute2 too old, missing nexthop command"
2459 out=$(ip nexthop ls 2>&1 | grep -q "Operation not supported")
2460 if [ $? -eq 0 ]; then
2461 echo "SKIP: kernel lacks nexthop support"
2468 none) IP="ip -netns peer"; setup; exit 0;;
2469 *) setup; $t; cleanup;;
2473 if [ "$TESTS" != "none" ]; then
2474 printf "\nTests passed: %3d\n" ${nsuccess}
2475 printf "Tests failed: %3d\n" ${nfail}