首頁 探索 說明
登入
GfA
/
linux_kernel
5
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: 03e982eed4
分支列表 標籤列表
linux_kernel
/
samples
/
bpf
/
test_tunnel_bpf.sh

test_tunnel_bpf.sh 5.0 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198 
  1. #!/bin/bash
    2. 

  2. # SPDX-License-Identifier: GPL-2.0
    3. 

  3. # In Namespace 0 (at_ns0) using native tunnel
    4. 

  4. # Overlay IP: 10.1.1.100
    5. 

  5. # local 192.16.1.100 remote 192.16.1.200
    6. 

  6. # veth0 IP: 172.16.1.100, tunnel dev <type>00
    7. 

  7. 

  8. # Out of Namespace using BPF set/get on lwtunnel
    9. 

  9. # Overlay IP: 10.1.1.200
    10. 

  10. # local 172.16.1.200 remote 172.16.1.100
    11. 

  11. # veth1 IP: 172.16.1.200, tunnel dev <type>11
    12. 

  12. 

  13. function config_device {
    14. 

  14. 	ip netns add at_ns0
    15. 

  15. 	ip link add veth0 type veth peer name veth1
    16. 

  16. 	ip link set veth0 netns at_ns0
    17. 

  17. 	ip netns exec at_ns0 ip addr add 172.16.1.100/24 dev veth0
    18. 

  18. 	ip netns exec at_ns0 ip link set dev veth0 up
    19. 

  19. 	ip link set dev veth1 up mtu 1500
    20. 

  20. 	ip addr add dev veth1 172.16.1.200/24
    21. 

  21. }
    22. 

  22. 

  23. function add_gre_tunnel {
    24. 

  24. 	# in namespace
    25. 

  25. 	ip netns exec at_ns0 \
    26. 

  26. 		ip link add dev $DEV_NS type $TYPE key 2 local 172.16.1.100 remote 172.16.1.200
    27. 

  27. 	ip netns exec at_ns0 ip link set dev $DEV_NS up
    28. 

  28. 	ip netns exec at_ns0 ip addr add dev $DEV_NS 10.1.1.100/24
    29. 

  29. 

  30. 	# out of namespace
    31. 

  31. 	ip link add dev $DEV type $TYPE key 2 external
    32. 

  32. 	ip link set dev $DEV up
    33. 

  33. 	ip addr add dev $DEV 10.1.1.200/24
    34. 

  34. }
    35. 

  35. 

  36. function add_erspan_tunnel {
    37. 

  37. 	# in namespace
    38. 

  38. 	ip netns exec at_ns0 \
    39. 

  39. 		ip link add dev $DEV_NS type $TYPE seq key 2 local 172.16.1.100 remote 172.16.1.200 erspan 123
    40. 

  40. 	ip netns exec at_ns0 ip link set dev $DEV_NS up
    41. 

  41. 	ip netns exec at_ns0 ip addr add dev $DEV_NS 10.1.1.100/24
    42. 

  42. 

  43. 	# out of namespace
    44. 

  44. 	ip link add dev $DEV type $TYPE external
    45. 

  45. 	ip link set dev $DEV up
    46. 

  46. 	ip addr add dev $DEV 10.1.1.200/24
    47. 

  47. }
    48. 

  48. 

  49. function add_vxlan_tunnel {
    50. 

  50. 	# Set static ARP entry here because iptables set-mark works
    51. 

  51. 	# on L3 packet, as a result not applying to ARP packets,
    52. 

  52. 	# causing errors at get_tunnel_{key/opt}.
    53. 

  53. 

  54. 	# in namespace
    55. 

  55. 	ip netns exec at_ns0 \
    56. 

  56. 		ip link add dev $DEV_NS type $TYPE id 2 dstport 4789 gbp remote 172.16.1.200
    57. 

  57. 	ip netns exec at_ns0 ip link set dev $DEV_NS address 52:54:00:d9:01:00 up
    58. 

  58. 	ip netns exec at_ns0 ip addr add dev $DEV_NS 10.1.1.100/24
    59. 

  59. 	ip netns exec at_ns0 arp -s 10.1.1.200 52:54:00:d9:02:00
    60. 

  60. 	ip netns exec at_ns0 iptables -A OUTPUT -j MARK --set-mark 0x800FF
    61. 

  61. 

  62. 	# out of namespace
    63. 

  63. 	ip link add dev $DEV type $TYPE external gbp dstport 4789
    64. 

  64. 	ip link set dev $DEV address 52:54:00:d9:02:00 up
    65. 

  65. 	ip addr add dev $DEV 10.1.1.200/24
    66. 

  66. 	arp -s 10.1.1.100 52:54:00:d9:01:00
    67. 

  67. }
    68. 

  68. 

  69. function add_geneve_tunnel {
    70. 

  70. 	# in namespace
    71. 

  71. 	ip netns exec at_ns0 \
    72. 

  72. 		ip link add dev $DEV_NS type $TYPE id 2 dstport 6081 remote 172.16.1.200
    73. 

  73. 	ip netns exec at_ns0 ip link set dev $DEV_NS up
    74. 

  74. 	ip netns exec at_ns0 ip addr add dev $DEV_NS 10.1.1.100/24
    75. 

  75. 

  76. 	# out of namespace
    77. 

  77. 	ip link add dev $DEV type $TYPE dstport 6081 external
    78. 

  78. 	ip link set dev $DEV up
    79. 

  79. 	ip addr add dev $DEV 10.1.1.200/24
    80. 

  80. }
    81. 

  81. 

  82. function add_ipip_tunnel {
    83. 

  83. 	# in namespace
    84. 

  84. 	ip netns exec at_ns0 \
    85. 

  85. 		ip link add dev $DEV_NS type $TYPE local 172.16.1.100 remote 172.16.1.200
    86. 

  86. 	ip netns exec at_ns0 ip link set dev $DEV_NS up
    87. 

  87. 	ip netns exec at_ns0 ip addr add dev $DEV_NS 10.1.1.100/24
    88. 

  88. 

  89. 	# out of namespace
    90. 

  90. 	ip link add dev $DEV type $TYPE external
    91. 

  91. 	ip link set dev $DEV up
    92. 

  92. 	ip addr add dev $DEV 10.1.1.200/24
    93. 

  93. }
    94. 

  94. 

  95. function attach_bpf {
    96. 

  96. 	DEV=$1
    97. 

  97. 	SET_TUNNEL=$2
    98. 

  98. 	GET_TUNNEL=$3
    99. 

  99. 	tc qdisc add dev $DEV clsact
    100. 

  100. 	tc filter add dev $DEV egress bpf da obj tcbpf2_kern.o sec $SET_TUNNEL
    101. 

  101. 	tc filter add dev $DEV ingress bpf da obj tcbpf2_kern.o sec $GET_TUNNEL
    102. 

  102. }
    103. 

  103. 

  104. function test_gre {
    105. 

  105. 	TYPE=gretap
    106. 

  106. 	DEV_NS=gretap00
    107. 

  107. 	DEV=gretap11
    108. 

  108. 	config_device
    109. 

  109. 	add_gre_tunnel
    110. 

  110. 	attach_bpf $DEV gre_set_tunnel gre_get_tunnel
    111. 

  111. 	ping -c 1 10.1.1.100
    112. 

  112. 	ip netns exec at_ns0 ping -c 1 10.1.1.200
    113. 

  113. 	cleanup
    114. 

  114. }
    115. 

  115. 

  116. function test_erspan {
    117. 

  117. 	TYPE=erspan
    118. 

  118. 	DEV_NS=erspan00
    119. 

  119. 	DEV=erspan11
    120. 

  120. 	config_device
    121. 

  121. 	add_erspan_tunnel
    122. 

  122. 	attach_bpf $DEV erspan_set_tunnel erspan_get_tunnel
    123. 

  123. 	ping -c 1 10.1.1.100
    124. 

  124. 	ip netns exec at_ns0 ping -c 1 10.1.1.200
    125. 

  125. 	cleanup
    126. 

  126. }
    127. 

  127. 

  128. function test_vxlan {
    129. 

  129. 	TYPE=vxlan
    130. 

  130. 	DEV_NS=vxlan00
    131. 

  131. 	DEV=vxlan11
    132. 

  132. 	config_device
    133. 

  133. 	add_vxlan_tunnel
    134. 

  134. 	attach_bpf $DEV vxlan_set_tunnel vxlan_get_tunnel
    135. 

  135. 	ping -c 1 10.1.1.100
    136. 

  136. 	ip netns exec at_ns0 ping -c 1 10.1.1.200
    137. 

  137. 	cleanup
    138. 

  138. }
    139. 

  139. 

  140. function test_geneve {
    141. 

  141. 	TYPE=geneve
    142. 

  142. 	DEV_NS=geneve00
    143. 

  143. 	DEV=geneve11
    144. 

  144. 	config_device
    145. 

  145. 	add_geneve_tunnel
    146. 

  146. 	attach_bpf $DEV geneve_set_tunnel geneve_get_tunnel
    147. 

  147. 	ping -c 1 10.1.1.100
    148. 

  148. 	ip netns exec at_ns0 ping -c 1 10.1.1.200
    149. 

  149. 	cleanup
    150. 

  150. }
    151. 

  151. 

  152. function test_ipip {
    153. 

  153. 	TYPE=ipip
    154. 

  154. 	DEV_NS=ipip00
    155. 

  155. 	DEV=ipip11
    156. 

  156. 	config_device
    157. 

  157. 	tcpdump -nei veth1 &
    158. 

  158. 	cat /sys/kernel/debug/tracing/trace_pipe &
    159. 

  159. 	add_ipip_tunnel
    160. 

  160. 	ethtool -K veth1 gso off gro off rx off tx off
    161. 

  161. 	ip link set dev veth1 mtu 1500
    162. 

  162. 	attach_bpf $DEV ipip_set_tunnel ipip_get_tunnel
    163. 

  163. 	ping -c 1 10.1.1.100
    164. 

  164. 	ip netns exec at_ns0 ping -c 1 10.1.1.200
    165. 

  165. 	ip netns exec at_ns0 iperf -sD -p 5200 > /dev/null
    166. 

  166. 	sleep 0.2
    167. 

  167. 	iperf -c 10.1.1.100 -n 5k -p 5200
    168. 

  168. 	cleanup
    169. 

  169. }
    170. 

  170. 

  171. function cleanup {
    172. 

  172. 	set +ex
    173. 

  173. 	pkill iperf
    174. 

  174. 	ip netns delete at_ns0
    175. 

  175. 	ip link del veth1
    176. 

  176. 	ip link del ipip11
    177. 

  177. 	ip link del gretap11
    178. 

  178. 	ip link del vxlan11
    179. 

  179. 	ip link del geneve11
    180. 

  180. 	ip link del erspan11
    181. 

  181. 	pkill tcpdump
    182. 

  182. 	pkill cat
    183. 

  183. 	set -ex
    184. 

  184. }
    185. 

  185. 

  186. trap cleanup 0 2 3 6 9
    187. 

  187. cleanup
    188. 

  188. echo "Testing GRE tunnel..."
    189. 

  189. test_gre
    190. 

  190. echo "Testing ERSPAN tunnel..."
    191. 

  191. test_erspan
    192. 

  192. echo "Testing VXLAN tunnel..."
    193. 

  193. test_vxlan
    194. 

  194. echo "Testing GENEVE tunnel..."
    195. 

  195. test_geneve
    196. 

  196. echo "Testing IPIP tunnel..."
    197. 

  197. test_ipip
    198. 

  198. echo "*** PASS ***"
    199.