-
Notifications
You must be signed in to change notification settings - Fork 547
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Added support for EVPN L3 VXLAN as described in the PR Azure/SONiC#437 #1267
Changes from all commits
16c7f0a
11cf178
2171210
b0c9342
9b3fe9d
8419ee2
cd8c5df
f542d8f
c9ccfe4
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -19,6 +19,7 @@ VrfMgr::VrfMgr(DBConnector *cfgDb, DBConnector *appDb, DBConnector *stateDb, con | |
Orch(cfgDb, tableNames), | ||
m_appVrfTableProducer(appDb, APP_VRF_TABLE_NAME), | ||
m_appVnetTableProducer(appDb, APP_VNET_TABLE_NAME), | ||
m_appVxlanVrfTableProducer(appDb, APP_VXLAN_VRF_TABLE_NAME), | ||
m_stateVrfTable(stateDb, STATE_VRF_TABLE_NAME), | ||
m_stateVrfObjectTable(stateDb, STATE_VRF_OBJECT_TABLE_NAME) | ||
{ | ||
|
@@ -203,23 +204,40 @@ void VrfMgr::doTask(Consumer &consumer) | |
string op = kfvOp(t); | ||
if (op == SET_COMMAND) | ||
{ | ||
if (!setLink(vrfName)) | ||
if (consumer.getTableName() == CFG_VXLAN_EVPN_NVO_TABLE_NAME) | ||
{ | ||
SWSS_LOG_ERROR("Failed to create vrf netdev %s", vrfName.c_str()); | ||
} | ||
|
||
vector<FieldValueTuple> fvVector; | ||
fvVector.emplace_back("state", "ok"); | ||
m_stateVrfTable.set(vrfName, fvVector); | ||
|
||
SWSS_LOG_NOTICE("Created vrf netdev %s", vrfName.c_str()); | ||
if (consumer.getTableName() == CFG_VRF_TABLE_NAME) | ||
{ | ||
m_appVrfTableProducer.set(vrfName, kfvFieldsValues(t)); | ||
doVrfEvpnNvoAddTask(t); | ||
} | ||
else | ||
{ | ||
m_appVnetTableProducer.set(vrfName, kfvFieldsValues(t)); | ||
if (!setLink(vrfName)) | ||
{ | ||
SWSS_LOG_ERROR("Failed to create vrf netdev %s", vrfName.c_str()); | ||
} | ||
|
||
bool status = true; | ||
vector<FieldValueTuple> fvVector; | ||
fvVector.emplace_back("state", "ok"); | ||
m_stateVrfTable.set(vrfName, fvVector); | ||
|
||
SWSS_LOG_NOTICE("Created vrf netdev %s", vrfName.c_str()); | ||
if (consumer.getTableName() == CFG_VRF_TABLE_NAME) | ||
{ | ||
status = doVrfVxlanTableCreateTask (t); | ||
if (status == false) | ||
{ | ||
SWSS_LOG_ERROR("VRF VNI Map Config Failed"); | ||
it = consumer.m_toSync.erase(it); | ||
continue; | ||
} | ||
|
||
m_appVrfTableProducer.set(vrfName, kfvFieldsValues(t)); | ||
|
||
} | ||
else | ||
{ | ||
m_appVnetTableProducer.set(vrfName, kfvFieldsValues(t)); | ||
} | ||
} | ||
} | ||
else if (op == DEL_COMMAND) | ||
|
@@ -229,7 +247,11 @@ void VrfMgr::doTask(Consumer &consumer) | |
* Now state VRF_TABLE|Vrf represent vrf exist in appDB, if it exist vrf device is always effective. | ||
* VRFOrch add/del state VRF_OBJECT_TABLE|Vrf to represent object existence. VNETOrch is not do so now. | ||
*/ | ||
if (consumer.getTableName() == CFG_VRF_TABLE_NAME) | ||
if (consumer.getTableName() == CFG_VXLAN_EVPN_NVO_TABLE_NAME) | ||
{ | ||
doVrfEvpnNvoDelTask (t); | ||
} | ||
else if (consumer.getTableName() == CFG_VRF_TABLE_NAME) | ||
{ | ||
vector<FieldValueTuple> temp; | ||
|
||
|
@@ -242,6 +264,7 @@ void VrfMgr::doTask(Consumer &consumer) | |
continue; | ||
} | ||
|
||
doVrfVxlanTableRemoveTask (t); | ||
m_appVrfTableProducer.del(vrfName); | ||
m_stateVrfTable.del(vrfName); | ||
} | ||
|
@@ -258,9 +281,12 @@ void VrfMgr::doTask(Consumer &consumer) | |
m_stateVrfTable.del(vrfName); | ||
} | ||
|
||
if (!delLink(vrfName)) | ||
if (consumer.getTableName() != CFG_VXLAN_EVPN_NVO_TABLE_NAME) | ||
{ | ||
SWSS_LOG_ERROR("Failed to remove vrf netdev %s", vrfName.c_str()); | ||
if (!delLink(vrfName)) | ||
{ | ||
SWSS_LOG_ERROR("Failed to remove vrf netdev %s", vrfName.c_str()); | ||
} | ||
} | ||
|
||
SWSS_LOG_NOTICE("Removed vrf netdev %s", vrfName.c_str()); | ||
|
@@ -273,3 +299,187 @@ void VrfMgr::doTask(Consumer &consumer) | |
it = consumer.m_toSync.erase(it); | ||
} | ||
} | ||
|
||
bool VrfMgr::doVrfEvpnNvoAddTask(const KeyOpFieldsValuesTuple & t) | ||
{ | ||
SWSS_LOG_ENTER(); | ||
string tunnel_name = ""; | ||
const vector<FieldValueTuple>& data = kfvFieldsValues(t); | ||
for (auto idx : data) | ||
{ | ||
const auto &field = fvField(idx); | ||
const auto &value = fvValue(idx); | ||
|
||
if (field == "source_vtep") | ||
{ | ||
tunnel_name = value; | ||
} | ||
} | ||
|
||
if (m_evpnVxlanTunnel.empty()) | ||
{ | ||
m_evpnVxlanTunnel = tunnel_name; | ||
VrfVxlanTableSync(true); | ||
} | ||
|
||
SWSS_LOG_INFO("Added evpn nvo tunnel %s", m_evpnVxlanTunnel.c_str()); | ||
return true; | ||
} | ||
|
||
bool VrfMgr::doVrfEvpnNvoDelTask(const KeyOpFieldsValuesTuple & t) | ||
{ | ||
SWSS_LOG_ENTER(); | ||
|
||
if (!m_evpnVxlanTunnel.empty()) | ||
{ | ||
VrfVxlanTableSync(false); | ||
m_evpnVxlanTunnel = ""; | ||
} | ||
|
||
SWSS_LOG_INFO("Removed evpn nvo tunnel %s", m_evpnVxlanTunnel.c_str()); | ||
return true; | ||
} | ||
|
||
bool VrfMgr::doVrfVxlanTableCreateTask(const KeyOpFieldsValuesTuple & t) | ||
{ | ||
SWSS_LOG_ENTER(); | ||
|
||
auto vrf_name = kfvKey(t); | ||
uint32_t vni = 0, old_vni = 0; | ||
string s_vni = ""; | ||
bool add = true; | ||
|
||
const vector<FieldValueTuple>& data = kfvFieldsValues(t); | ||
for (auto idx : data) | ||
{ | ||
const auto &field = fvField(idx); | ||
const auto &value = fvValue(idx); | ||
|
||
if (field == "vni") | ||
{ | ||
s_vni = value; | ||
vni = static_cast<uint32_t>(stoul(value)); | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. I dont think this vni conversion is required. I can't find it being used other than "if" check. You could always check if There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Storing integer value in internal data structure vrf_vni_map_table_. So converted to integer. |
||
} | ||
} | ||
|
||
if (vni != 0) | ||
{ | ||
for (auto itr : m_vrfVniMapTable) | ||
{ | ||
if (vni == itr.second) | ||
{ | ||
SWSS_LOG_ERROR(" vni %d is already mapped to vrf %s", vni, itr.first.c_str()); | ||
return false; | ||
} | ||
} | ||
} | ||
|
||
old_vni = getVRFmappedVNI(vrf_name); | ||
SWSS_LOG_INFO("VRF VNI map update vrf %s, vni %d, old_vni %d", vrf_name.c_str(), vni, old_vni); | ||
if (vni != old_vni) | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. So what triggers this value change? VRF_TABLE is part of config_db right? so is this some user config that they change the vni value? There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Yes. VRF VNI Map is stored in CONFIG DB VRF_TABLE, This takes care of scenario if VRF VNI mapping is changed. |
||
{ | ||
if (vni == 0) | ||
{ | ||
m_vrfVniMapTable.erase(vrf_name); | ||
s_vni = to_string(old_vni); | ||
add = false; | ||
} | ||
else | ||
{ | ||
if (old_vni != 0) | ||
{ | ||
SWSS_LOG_ERROR(" vrf %s is already mapped to vni %d", vrf_name.c_str(), old_vni); | ||
return false; | ||
} | ||
m_vrfVniMapTable[vrf_name] = vni; | ||
} | ||
|
||
} | ||
|
||
if ((vni == 0) && add) | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. What will be this case, where VNI is 0 and is still an 'add' condition? There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. This is to take care of the scenario when VRF is configured but VRF to VNI Mapping is not configured. |
||
{ | ||
return true; | ||
} | ||
|
||
SWSS_LOG_INFO("VRF VNI map update vrf %s, s_vni %s, add %d", vrf_name.c_str(), s_vni.c_str(), add); | ||
doVrfVxlanTableUpdate(vrf_name, s_vni, add); | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. There could be VNIs which are only mapped to VLANs but not VRFs. How do we make sure that, we are using unique VNIs here? There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. VNI can be both L2 + L3. For the case where Vlan associated with VNI is tenant Vlan as well. There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Didnt quite understand this. An L2 VNI between 2 leafs for a given Tenant, could also be a L3 VNI for different Tenant? There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. VLAN-X +VNI-X -- L2 VXLAN There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Currently it is taken care in CLI Validation. There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. @tapashdas If the configuration is done directly in config_db, we would need to check the validity of the global VLAN/VRF-->VNI mapping. It will be better to maintain or validate global vlan/vrf<-->VNI mapping in the cfgmgr. There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. @tapashdas In vxlanmgr.cpp, if the vni is already mapped to a vlan, mapper entry is rejected. But here the mapping entry is updated. Can we reject the config similar to vxlanmgr? There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. ok. Will do. |
||
return true; | ||
} | ||
|
||
bool VrfMgr::doVrfVxlanTableRemoveTask(const KeyOpFieldsValuesTuple & t) | ||
{ | ||
SWSS_LOG_ENTER(); | ||
|
||
auto vrf_name = kfvKey(t); | ||
uint32_t vni = 0; | ||
string s_vni = ""; | ||
|
||
vni = getVRFmappedVNI(vrf_name); | ||
SWSS_LOG_INFO("VRF VNI map remove vrf %s, vni %d", vrf_name.c_str(), vni); | ||
if (vni != 0) | ||
{ | ||
s_vni = to_string(vni); | ||
doVrfVxlanTableUpdate(vrf_name, s_vni, false); | ||
m_vrfVniMapTable.erase(vrf_name); | ||
} | ||
|
||
return true; | ||
} | ||
|
||
bool VrfMgr::doVrfVxlanTableUpdate(const string& vrf_name, const string& vni, bool add) | ||
{ | ||
SWSS_LOG_ENTER(); | ||
string key; | ||
|
||
if (m_evpnVxlanTunnel.empty()) | ||
{ | ||
SWSS_LOG_INFO("NVO Tunnel not present. vrf %s, vni %s, add %d", vrf_name.c_str(), vni.c_str(), add); | ||
return false; | ||
} | ||
|
||
key = m_evpnVxlanTunnel + ":" + "evpn_map_" + vni + "_" + vrf_name; | ||
|
||
std::vector<FieldValueTuple> fvVector; | ||
FieldValueTuple v1("vni", vni); | ||
FieldValueTuple v2("vrf", vrf_name); | ||
fvVector.push_back(v1); | ||
fvVector.push_back(v2); | ||
|
||
SWSS_LOG_INFO("VRF VNI map table update vrf %s, vni %s, add %d", vrf_name.c_str(), vni.c_str(), add); | ||
if (add) | ||
{ | ||
m_appVxlanVrfTableProducer.set(key, fvVector); | ||
} | ||
else | ||
{ | ||
m_appVxlanVrfTableProducer.del(key); | ||
} | ||
|
||
return true; | ||
} | ||
|
||
void VrfMgr::VrfVxlanTableSync(bool add) | ||
{ | ||
SWSS_LOG_ENTER(); | ||
string s_vni = ""; | ||
|
||
for (auto itr : m_vrfVniMapTable) | ||
{ | ||
s_vni = to_string(itr.second); | ||
SWSS_LOG_INFO("vrf %s, vni %s, add %d", (itr.first).c_str(), s_vni.c_str(), add); | ||
doVrfVxlanTableUpdate(itr.first, s_vni, add); | ||
} | ||
} | ||
|
||
uint32_t VrfMgr::getVRFmappedVNI(const std::string& vrf_name) | ||
{ | ||
if (m_vrfVniMapTable.find(vrf_name) != std::end(m_vrfVniMapTable)) | ||
{ | ||
return m_vrfVniMapTable.at(vrf_name); | ||
} | ||
else | ||
{ | ||
return 0; | ||
} | ||
} | ||
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
How would we recover from Vrf creation failures?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is existing vrfmgr code in base/master branch. Not changed due to EVPN changes. Need to address this separately.