#!/usr/bin/env python3 # SPDX-License-Identifier: GPL-2.0 # Controls the openvswitch module. Part of the kselftest suite, but # can be used for some diagnostic purpose as well. import argparseimport errnoimport ipaddressimport loggingimport mathimport multiprocessingimport reimport socketimport structimport sysimport timeimport typesimport uuidtry :from pyroute2 import NDBfrom pyroute2.netlink import NLA_F_NESTEDfrom pyroute2.netlink import NLM_F_ACKfrom pyroute2.netlink import NLM_F_DUMPfrom pyroute2.netlink import NLM_F_REQUESTfrom pyroute2.netlink import genlmsgfrom pyroute2.netlink import nlafrom pyroute2.netlink import nlmsg_atomsfrom pyroute2.netlink.event import EventSocketfrom pyroute2.netlink.exceptions import NetlinkErrorfrom pyroute2.netlink.generic import GenericNetlinkSocketfrom pyroute2.netlink.nlsocket import Marshalimport pyroute2import pyroute2.iprouteexcept ModuleNotFoundError:"Need to install the python pyroute2 package >= 0.6." )"ovs_datapath" "ovs_vport" "ovs_flow" "ovs_packet" "ovs_meter" "ovs_ct_limit" def macstr(mac):":" .join(["%02X" % i for i in mac])return outstrdef strcspn(str1, str2):for char in str1:if str2.find(char) != -1:return totreturn totdef strspn(str1, str2):for char in str1:if str2.find(char) == -1:return totreturn totdef intparse(statestr, defmask="0xffffffff" ):"0123456789abcdefABCDEFx/" )# scan until "/" "x0123456789abcdefABCDEF" )if firstnum[-1] == "/" :None if defmask is not None :if statestr[count] == "/" :# this is wrong... return statestr[totalparse + 1 :], k, mdef parse_flags(flag_str, flag_vals):if len(flag_str) == 0:return flag_str, bitResult, maskResultif flag_str[0].isdigit():while flag_str[idx].isdigit() or flag_str[idx] == "x" :while len(flag_str) > 0 and (flag_str[0] == "+" or flag_str[0] == "-" ):if flag_str[0] == "+" :True elif flag_str[0] == "-" :False while ("+" and flag_str[flag_len] != "-" and flag_str[flag_len] != "," and flag_str[flag_len] != ")" if flag in flag_vals:if maskResult & flag_vals[flag]:raise KeyError("Flag %s set once, cannot be set in multiples" % flagif setFlag:else :raise KeyError("Missing flag value: %s" % flag)return flag_str, bitResult, maskResultdef parse_ct_state(statestr):"new" : 1 << 0,"est" : 1 << 1,"rel" : 1 << 2,"rpl" : 1 << 3,"inv" : 1 << 4,"trk" : 1 << 5,"snat" : 1 << 6,"dnat" : 1 << 7,return parse_flags(statestr, ct_flags)def convert_mac(data):def to_bytes(mac):":" )for i in mac_split])return bytes(ret)'/' )if not mac_str:"00:00:00:00:00:00" elif not mask_str:"FF:FF:FF:FF:FF:FF" return to_bytes(mac_str), to_bytes(mask_str)def convert_ipv4(data):'/' )if not ip:elif not mask:elif mask.isdigit():return int(ipaddress.IPv4Address(ip)), int(ipaddress.IPv4Address(mask))def convert_ipv6(data):'/' )if not ip:elif not mask:'ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff' elif mask.isdigit():"::/" + mask).hostmaskreturn ipaddress.IPv6Address(ip).packed, ipaddress.IPv6Address(mask).packeddef convert_int(size):def convert_int_sized(data):'/' )if not value:return 0, 0elif not mask:return int(value, 0), pow(2, size) - 1else :return int(value, 0), int(mask, 0)return convert_int_sizeddef parse_starts_block(block_str, scanstr, returnskipped, scanregex=False ):if scanregex:if m is None :if returnskipped:return block_strreturn False if returnskipped:return block_strreturn True if block_str.startswith(scanstr):if returnskipped:else :return True if returnskipped:return block_strreturn False def parse_extract_field(False , defval=None if fieldstr and not block_str.startswith(fieldstr):return block_str, defvalif fieldstr:if str_skiplen == 0:return str_skipped, defvalelse :if m is None :raise ValueError("Bad fmt string" )if convert:if masked:if str_skipped[0] == "/" :raise ValueError("Masking support TBD..." )", " ) :]return str_skipped, datadef parse_attrs(actstr, attr_desc):"" "Parses the given action string and returns a list of netlink in the attribute description list is a tuple such as :is the string representing the attributeis the name of the attribute as defined in the uAPI.is a callable accepting a string and returning eitheror a tuple ofand the remaining string)and the remaining string."" " def parse_attr(actstr, key, func):if not func:return None , actstrif delim == "=" :",)" )else :if isinstance(ret, tuple):else :",)" ):]if delim == "(" :if not actstr or actstr[0] != ")" :raise ValueError("Action contains unbalanced parentheses" )", " ) :]return datum, actstrwhile actstr and actstr[0] != ")" and attr_desc:False for i, (key, attr, func) in enumerate(attr_desc):if actstr.startswith(key):True del attr_desc[i]if not found:raise ValueError("Unknown attribute: '%s'" % actstr)", " ) :]if actstr[0] != ")" :raise ValueError("Action string contains extra garbage or has " "unbalanced parenthesis: '%s'" % actstr)return attrs, actstr[1:]class ovs_dp_msg(genlmsg):# include the OVS version # We need a custom header rather than just being able to rely on # genlmsg because fields ends up not expressing everything correctly # if we use the canonical example of setting fields = (('customfield',),) "dpifindex" , "I" ),)class ovsactions(nla):"OVS_ACTION_ATTR_UNSPEC" , "none" ),"OVS_ACTION_ATTR_OUTPUT" , "uint32" ),"OVS_ACTION_ATTR_USERSPACE" , "userspace" ),"OVS_ACTION_ATTR_SET" , "ovskey" ),"OVS_ACTION_ATTR_PUSH_VLAN" , "none" ),"OVS_ACTION_ATTR_POP_VLAN" , "flag" ),"OVS_ACTION_ATTR_SAMPLE" , "sample" ),"OVS_ACTION_ATTR_RECIRC" , "uint32" ),"OVS_ACTION_ATTR_HASH" , "none" ),"OVS_ACTION_ATTR_PUSH_MPLS" , "none" ),"OVS_ACTION_ATTR_POP_MPLS" , "flag" ),"OVS_ACTION_ATTR_SET_MASKED" , "ovskey" ),"OVS_ACTION_ATTR_CT" , "ctact" ),"OVS_ACTION_ATTR_TRUNC" , "uint32" ),"OVS_ACTION_ATTR_PUSH_ETH" , "none" ),"OVS_ACTION_ATTR_POP_ETH" , "flag" ),"OVS_ACTION_ATTR_CT_CLEAR" , "flag" ),"OVS_ACTION_ATTR_PUSH_NSH" , "none" ),"OVS_ACTION_ATTR_POP_NSH" , "flag" ),"OVS_ACTION_ATTR_METER" , "none" ),"OVS_ACTION_ATTR_CLONE" , "recursive" ),"OVS_ACTION_ATTR_CHECK_PKT_LEN" , "none" ),"OVS_ACTION_ATTR_ADD_MPLS" , "none" ),"OVS_ACTION_ATTR_DEC_TTL" , "none" ),"OVS_ACTION_ATTR_DROP" , "uint32" ),"OVS_ACTION_ATTR_PSAMPLE" , "psample" ),class psample(nla):"OVS_PSAMPLE_ATTR_UNSPEC" , "none" ),"OVS_PSAMPLE_ATTR_GROUP" , "uint32" ),"OVS_PSAMPLE_ATTR_COOKIE" , "array(uint8)" ),def dpstr(self, more=False ):"group=%d" % self.get_attr("OVS_PSAMPLE_ATTR_GROUP" )"OVS_PSAMPLE_ATTR_COOKIE" )if cookie:",cookie(%s)" % \"" .join(format(x, "02x" ) for x in cookie)return "psample(%s)" % argsdef parse(self, actstr):"group" , "OVS_PSAMPLE_ATTR_GROUP" , int),"cookie" , "OVS_PSAMPLE_ATTR_COOKIE" ,lambda x: list(bytearray.fromhex(x)))for attr in attrs:"attrs" ].append(attr)return actstrclass sample(nla):"OVS_SAMPLE_ATTR_UNSPEC" , "none" ),"OVS_SAMPLE_ATTR_PROBABILITY" , "uint32" ),"OVS_SAMPLE_ATTR_ACTIONS" , "ovsactions" ),def dpstr(self, more=False ):"sample={:.2f}%" .format("OVS_SAMPLE_ATTR_PROBABILITY" ) /"OVS_SAMPLE_ATTR_ACTIONS" )if actions:"actions(%s)" % actions.dpstr(more))return "sample(%s)" % "," .join(args)def parse(self, actstr):def parse_nested_actions(actstr):return subacts, actstr[parsed_len :]def percent_to_rate(percent):'%' ))return int(math.floor(UINT32_MAX * (percent / 100.0) + .5))"sample" , "OVS_SAMPLE_ATTR_PROBABILITY" , percent_to_rate),"actions" , "OVS_SAMPLE_ATTR_ACTIONS" , parse_nested_actions),for attr in attrs:"attrs" ].append(attr)return actstrclass ctact(nla):"OVS_CT_ATTR_NONE" , "none" ),"OVS_CT_ATTR_COMMIT" , "flag" ),"OVS_CT_ATTR_ZONE" , "uint16" ),"OVS_CT_ATTR_MARK" , "none" ),"OVS_CT_ATTR_LABELS" , "none" ),"OVS_CT_ATTR_HELPER" , "asciiz" ),"OVS_CT_ATTR_NAT" , "natattr" ),"OVS_CT_ATTR_FORCE_COMMIT" , "flag" ),"OVS_CT_ATTR_EVENTMASK" , "uint32" ),"OVS_CT_ATTR_TIMEOUT" , "asciiz" ),class natattr(nla):"OVS_NAT_ATTR_NONE" , "none" ),"OVS_NAT_ATTR_SRC" , "flag" ),"OVS_NAT_ATTR_DST" , "flag" ),"OVS_NAT_ATTR_IP_MIN" , "ipaddr" ),"OVS_NAT_ATTR_IP_MAX" , "ipaddr" ),"OVS_NAT_ATTR_PROTO_MIN" , "uint16" ),"OVS_NAT_ATTR_PROTO_MAX" , "uint16" ),"OVS_NAT_ATTR_PERSISTENT" , "flag" ),"OVS_NAT_ATTR_PROTO_HASH" , "flag" ),"OVS_NAT_ATTR_PROTO_RANDOM" , "flag" ),def dpstr(self, more=False ):"nat(" if self.get_attr("OVS_NAT_ATTR_SRC" ):"src" elif self.get_attr("OVS_NAT_ATTR_DST" ):"dst" else :"XXX-unknown-nat" if self.get_attr("OVS_NAT_ATTR_IP_MIN" ) or self.get_attr("OVS_NAT_ATTR_IP_MAX" if self.get_attr("OVS_NAT_ATTR_IP_MIN" ):"=%s," % str("OVS_NAT_ATTR_IP_MIN" )if self.get_attr("OVS_NAT_ATTR_IP_MAX" ):"-%s," % str("OVS_NAT_ATTR_IP_MAX" )else :"," if self.get_attr("OVS_NAT_ATTR_PROTO_MIN" ):"proto_min=%d," % self.get_attr("OVS_NAT_ATTR_PROTO_MIN" if self.get_attr("OVS_NAT_ATTR_PROTO_MAX" ):"proto_max=%d," % self.get_attr("OVS_NAT_ATTR_PROTO_MAX" if self.get_attr("OVS_NAT_ATTR_PERSISTENT" ):"persistent," if self.get_attr("OVS_NAT_ATTR_HASH" ):"hash," if self.get_attr("OVS_NAT_ATTR_RANDOM" ):"random" ")" return print_strdef dpstr(self, more=False ):"ct(" if self.get_attr("OVS_CT_ATTR_COMMIT" ) is not None :"commit," if self.get_attr("OVS_CT_ATTR_ZONE" ) is not None :"zone=%d," % self.get_attr("OVS_CT_ATTR_ZONE" )if self.get_attr("OVS_CT_ATTR_HELPER" ) is not None :"helper=%s," % self.get_attr("OVS_CT_ATTR_HELPER" )if self.get_attr("OVS_CT_ATTR_NAT" ) is not None :"OVS_CT_ATTR_NAT" ).dpstr(more)"," if self.get_attr("OVS_CT_ATTR_FORCE_COMMIT" ) is not None :"force," if self.get_attr("OVS_CT_ATTR_EVENTMASK" ) is not None :"emask=0x%X," % self.get_attr("OVS_CT_ATTR_EVENTMASK" if self.get_attr("OVS_CT_ATTR_TIMEOUT" ) is not None :"timeout=%s" % self.get_attr("OVS_CT_ATTR_TIMEOUT" ")" return print_strclass userspace(nla):"OVS_USERSPACE_ATTR_UNUSED" , "none" ),"OVS_USERSPACE_ATTR_PID" , "uint32" ),"OVS_USERSPACE_ATTR_USERDATA" , "array(uint8)" ),"OVS_USERSPACE_ATTR_EGRESS_TUN_PORT" , "uint32" ),def dpstr(self, more=False ):"userspace(" if self.get_attr("OVS_USERSPACE_ATTR_PID" ) is not None :"pid=%d," % self.get_attr("OVS_USERSPACE_ATTR_PID" if self.get_attr("OVS_USERSPACE_ATTR_USERDATA" ) is not None :"userdata=" for f in self.get_attr("OVS_USERSPACE_ATTR_USERDATA" ):"%x." % fif self.get_attr("OVS_USERSPACE_ATTR_EGRESS_TUN_PORT" ) is not None :"egress_tun_port=%d" % self.get_attr("OVS_USERSPACE_ATTR_EGRESS_TUN_PORT" ")" return print_strdef parse(self, actstr):"pid" , "OVS_USERSPACE_ATTR_PID" , int),"userdata" , "OVS_USERSPACE_ATTR_USERDATA" ,lambda x: list(bytearray.fromhex(x))),"egress_tun_port" , "OVS_USERSPACE_ATTR_EGRESS_TUN_PORT" , int)for attr in attrs:"attrs" ].append(attr)return actstrdef dpstr(self, more=False ):"" for field in self["attrs" ]:if field[1] == "none" or self.get_attr(field[0]) is None :continue if print_str != "" :"," if field[0] == "OVS_ACTION_ATTR_OUTPUT" :"%d" % int(self.get_attr(field[0]))elif field[0] == "OVS_ACTION_ATTR_RECIRC" :"recirc(0x%x)" % int(self.get_attr(field[0]))elif field[0] == "OVS_ACTION_ATTR_TRUNC" :"trunc(%d)" % int(self.get_attr(field[0]))elif field[0] == "OVS_ACTION_ATTR_DROP" :"drop(%d)" % int(self.get_attr(field[0]))elif field[0] == "OVS_ACTION_ATTR_CT_CLEAR" :"ct_clear" elif field[0] == "OVS_ACTION_ATTR_POP_VLAN" :"pop_vlan" elif field[0] == "OVS_ACTION_ATTR_POP_ETH" :"pop_eth" elif field[0] == "OVS_ACTION_ATTR_POP_NSH" :"pop_nsh" elif field[0] == "OVS_ACTION_ATTR_POP_MPLS" :"pop_mpls" else :if field[0] == "OVS_ACTION_ATTR_CLONE" :"clone(" ")" elif field[0] == "OVS_ACTION_ATTR_SET" or \"OVS_ACTION_ATTR_SET_MASKED" :"set" None if field[0] == "OVS_ACTION_ATTR_SET_MASKED" :"_masked" "(" ")" else :try :except :"{ATTR: %s not decoded}" % field[0]return print_strdef parse(self, actstr):while len(actstr) != 0:False if actstr.startswith("drop" ):# If no reason is provided, the implicit drop is used (i.e no # action). If some reason is given, an explicit action is used. None if actstr.startswith("drop(" ):"drop(" ,"([0-9]+)" ,lambda x: int(x, 0),False ,None ,if reason is not None :"attrs" ].append(["OVS_ACTION_ATTR_DROP" , reason])True else :"drop" ): ]return (totallen - len(actstr))elif parse_starts_block(actstr, r"^(\d+)" , False , True ):None , r"(\d+)" , lambda x: int(x), False , "0" "attrs" ].append(["OVS_ACTION_ATTR_OUTPUT" , output])True elif parse_starts_block(actstr, "recirc(" , False ):"recirc(" ,"([0-9a-fA-Fx]+)" ,lambda x: int(x, 0),False ,"attrs" ].append(["OVS_ACTION_ATTR_RECIRC" , recircid])True "ct_clear" , "OVS_ACTION_ATTR_CT_CLEAR" ),"pop_vlan" , "OVS_ACTION_ATTR_POP_VLAN" ),"pop_eth" , "OVS_ACTION_ATTR_POP_ETH" ),"pop_nsh" , "OVS_ACTION_ATTR_POP_NSH" ),for flat_act in parse_flat_map:if parse_starts_block(actstr, flat_act[0], False ):"attrs" ].append([flat_act[1], True ])", " ) :]True if parse_starts_block(actstr, "clone(" , False ):"clone(" ):]"attrs" ].append(("OVS_ACTION_ATTR_CLONE" , subacts))True elif parse_starts_block(actstr, "set(" , False ):"set(" ):]None )"attrs" ].append(("OVS_ACTION_ATTR_SET" , k))if not actstr.startswith(")" ):")" + actstrTrue elif parse_starts_block(actstr, "set_masked(" , False ):"set_masked(" ):]"attrs" ].append(("OVS_ACTION_ATTR_SET_MASKED" , [k, m]))if not actstr.startswith(")" ):")" + actstrTrue elif parse_starts_block(actstr, "ct(" , False ):"ct(" ) :]for scan in ("commit" , "OVS_CT_ATTR_COMMIT" , None ),"force_commit" , "OVS_CT_ATTR_FORCE_COMMIT" , None ),"zone" , "OVS_CT_ATTR_ZONE" , int),"mark" , "OVS_CT_ATTR_MARK" , int),"helper" , "OVS_CT_ATTR_HELPER" , lambda x, y: str(x)),"timeout" , "OVS_CT_ATTR_TIMEOUT" , lambda x, y: str(x)),if actstr.startswith(scan[0]):if scan[2] is not None :if actstr[0] != "=" :raise ValueError("Invalid ct attr" )",)" )"attrs" ].append([scan[1], datum])else :"attrs" ].append([scan[1], None ])", " ) :]# it seems strange to put this here, but nat() is a complex # sub-action and this lets it sit anywhere in the ct() action if actstr.startswith("nat" ):if actstr.startswith("(" ):None if actstr.startswith("src" ):"OVS_NAT_ATTR_SRC" elif actstr.startswith("dst" ):"OVS_NAT_ATTR_DST" "=" , r"([0-9a-fA-F\.]+)" , str, False "-" , r"([0-9a-fA-F\.]+)" , str, False ":" , r"(\d+)" , int, False "-" , r"(\d+)" , int, False if t is not None :"attrs" ].append([t, None ])if ip_block_min is not None :"attrs" ].append("OVS_NAT_ATTR_IP_MIN" , ip_block_min]if ip_block_max is not None :"attrs" ].append("OVS_NAT_ATTR_IP_MAX" , ip_block_max]if proto_min is not None :"attrs" ].append("OVS_NAT_ATTR_PROTO_MIN" , proto_min]if proto_max is not None :"attrs" ].append("OVS_NAT_ATTR_PROTO_MAX" , proto_max]for natscan in ("persistent" , "OVS_NAT_ATTR_PERSISTENT" ),"hash" , "OVS_NAT_ATTR_PROTO_HASH" ),"random" , "OVS_NAT_ATTR_PROTO_RANDOM" ),if actstr.startswith(natscan[0]):"attrs" ].append([natscan[1], None ])", " ) :]"attrs" ].append(["OVS_CT_ATTR_NAT" , natact])", " ) :]"attrs" ].append(["OVS_ACTION_ATTR_CT" , ctact])True elif parse_starts_block(actstr, "sample(" , False ):"sample(" ) : ])"attrs" ].append(["OVS_ACTION_ATTR_SAMPLE" , sampleact])True elif parse_starts_block(actstr, "psample(" , False ):"psample(" ) : ])"attrs" ].append(["OVS_ACTION_ATTR_PSAMPLE" , psampleact])True elif parse_starts_block(actstr, "userspace(" , False ):"userspace(" ) : ])"attrs" ].append(["OVS_ACTION_ATTR_USERSPACE" , uact])True elif parse_starts_block(actstr, "trunc(" , False ):"trunc(" ,"([0-9]+)" ,False ,None ,"attrs" ].append(["OVS_ACTION_ATTR_TRUNC" , val])True ", " ) :]while parencount > 0:" " ):]if len(actstr) and actstr[0] != ")" :raise ValueError("Action str: '%s' unbalanced" % actstr)if len(actstr) and actstr[0] == ")" :return (totallen - len(actstr))", " ) :]if not parsed:raise ValueError("Action str: '%s' not supported" % actstr)return (totallen - len(actstr))class ovskey(nla):"OVS_KEY_ATTR_UNSPEC" , "none" ),"OVS_KEY_ATTR_ENCAP" , "none" ),"OVS_KEY_ATTR_PRIORITY" , "uint32" ),"OVS_KEY_ATTR_IN_PORT" , "uint32" ),"OVS_KEY_ATTR_ETHERNET" , "ethaddr" ),"OVS_KEY_ATTR_VLAN" , "uint16" ),"OVS_KEY_ATTR_ETHERTYPE" , "be16" ),"OVS_KEY_ATTR_IPV4" , "ovs_key_ipv4" ),"OVS_KEY_ATTR_IPV6" , "ovs_key_ipv6" ),"OVS_KEY_ATTR_TCP" , "ovs_key_tcp" ),"OVS_KEY_ATTR_UDP" , "ovs_key_udp" ),"OVS_KEY_ATTR_ICMP" , "ovs_key_icmp" ),"OVS_KEY_ATTR_ICMPV6" , "ovs_key_icmpv6" ),"OVS_KEY_ATTR_ARP" , "ovs_key_arp" ),"OVS_KEY_ATTR_ND" , "ovs_key_nd" ),"OVS_KEY_ATTR_SKB_MARK" , "uint32" ),"OVS_KEY_ATTR_TUNNEL" , "ovs_key_tunnel" ),"OVS_KEY_ATTR_SCTP" , "ovs_key_sctp" ),"OVS_KEY_ATTR_TCP_FLAGS" , "be16" ),"OVS_KEY_ATTR_DP_HASH" , "uint32" ),"OVS_KEY_ATTR_RECIRC_ID" , "uint32" ),"OVS_KEY_ATTR_MPLS" , "array(ovs_key_mpls)" ),"OVS_KEY_ATTR_CT_STATE" , "uint32" ),"OVS_KEY_ATTR_CT_ZONE" , "uint16" ),"OVS_KEY_ATTR_CT_MARK" , "uint32" ),"OVS_KEY_ATTR_CT_LABELS" , "none" ),"OVS_KEY_ATTR_CT_ORIG_TUPLE_IPV4" , "ovs_key_ct_tuple_ipv4" ),"OVS_KEY_ATTR_CT_ORIG_TUPLE_IPV6" , "ovs_key_ct_tuple_ipv6" ),"OVS_KEY_ATTR_NSH" , "none" ),"OVS_KEY_ATTR_PACKET_TYPE" , "none" ),"OVS_KEY_ATTR_ND_EXTENSIONS" , "none" ),"OVS_KEY_ATTR_TUNNEL_INFO" , "none" ),"OVS_KEY_ATTR_IPV6_EXTENSIONS" , "none" ),class ovs_key_proto(nla):"src" , "!H" ),"dst" , "!H" ),"src" , "src" , "%d" , lambda x: int(x) if x else 0,"dst" , "dst" , "%d" , lambda x: int(x) if x else 0,def __init__(None ,None ,None ,None ,None ,def parse(self, flowstr, typeInst):if not flowstr.startswith(self.proto_str):return None , None if flowstr.startswith("(" ):"" "" for f in self.fields_map:if flowstr.startswith(f[1]):# the following assumes that the field looks # something like 'field.' where '.' is a # character that we don't exactly care about. for c in flowstr:if c == "," or c == ")" :break else :"" if len(f) > 4:else :", " ) :]if len(flowstr) == 0:return flowstr, k, m"), " ) :]return flowstr, k, mdef dpstr(self, masked=None , more=False ):"(" False for f in self.fields_map:if first:"," if masked is None :"%s=" % f[0]if isinstance(f[2], str):else :True elif more or f[3](masked[f[1]]) != 0:"%s=" % f[0]if isinstance(f[2], str):else :"/" if isinstance(f[2], str):else :True ")" return outstrclass ethaddr(ovs_key_proto):"src" , "!6s" ),"dst" , "!6s" ),"src" ,"src" ,lambda x: int.from_bytes(x, "big" ),"dst" ,"dst" ,lambda x: int.from_bytes(x, "big" ),def __init__(None ,None ,None ,None ,None ,"eth" ,class ovs_key_ipv4(ovs_key_proto):"src" , "!I" ),"dst" , "!I" ),"proto" , "B" ),"tos" , "B" ),"ttl" , "B" ),"frag" , "B" ),"src" ,"src" ,lambda x: str(ipaddress.IPv4Address(x)),"dst" ,"dst" ,lambda x: str(ipaddress.IPv4Address(x)),"proto" , "proto" , "%d" , lambda x: int(x) if x else 0,"tos" , "tos" , "%d" , lambda x: int(x) if x else 0,"ttl" , "ttl" , "%d" , lambda x: int(x) if x else 0,"frag" , "frag" , "%d" , lambda x: int(x) if x else 0,def __init__(None ,None ,None ,None ,None ,"ipv4" ,class ovs_key_ipv6(ovs_key_proto):"src" , "!16s" ),"dst" , "!16s" ),"label" , "!I" ),"proto" , "B" ),"tclass" , "B" ),"hlimit" , "B" ),"frag" , "B" ),"src" ,"src" ,lambda x: str(ipaddress.IPv6Address(x)),lambda x: ipaddress.IPv6Address(x).packed if x else 0,"dst" ,"dst" ,lambda x: str(ipaddress.IPv6Address(x)),lambda x: ipaddress.IPv6Address(x).packed if x else 0,"label" , "label" , "%d" , lambda x: int(x) if x else 0),"proto" , "proto" , "%d" , lambda x: int(x) if x else 0),"tclass" , "tclass" , "%d" , lambda x: int(x) if x else 0),"hlimit" , "hlimit" , "%d" , lambda x: int(x) if x else 0),"frag" , "frag" , "%d" , lambda x: int(x) if x else 0),def __init__(None ,None ,None ,None ,None ,"ipv6" ,class ovs_key_tcp(ovs_key_proto):def __init__(None ,None ,None ,None ,None ,"tcp" ,class ovs_key_udp(ovs_key_proto):def __init__(None ,None ,None ,None ,None ,"udp" ,class ovs_key_sctp(ovs_key_proto):def __init__(None ,None ,None ,None ,None ,"sctp" ,class ovs_key_icmp(ovs_key_proto):"type" , "B" ),"code" , "B" ),"type" , "type" , "%d" , lambda x: int(x) if x else 0),"code" , "code" , "%d" , lambda x: int(x) if x else 0),def __init__(None ,None ,None ,None ,None ,"icmp" ,class ovs_key_icmpv6(ovs_key_icmp):def __init__(None ,None ,None ,None ,None ,"icmpv6" ,class ovs_key_arp(ovs_key_proto):"sip" , "!I" ),"tip" , "!I" ),"op" , "!H" ),"sha" , "!6s" ),"tha" , "!6s" ),"pad" , "xx" ),"sip" ,"sip" ,lambda x: str(ipaddress.IPv4Address(x)),"tip" ,"tip" ,lambda x: str(ipaddress.IPv4Address(x)),"op" , "op" , "%d" , lambda x: int(x) if x else 0),"sha" ,"sha" ,lambda x: int.from_bytes(x, "big" ),"tha" ,"tha" ,lambda x: int.from_bytes(x, "big" ),def __init__(None ,None ,None ,None ,None ,"arp" ,class ovs_key_nd(ovs_key_proto):"target" , "!16s" ),"sll" , "!6s" ),"tll" , "!6s" ),"target" ,"target" ,lambda x: str(ipaddress.IPv6Address(x)),"sll" , "sll" , macstr, lambda x: int.from_bytes(x, "big" )),"tll" , "tll" , macstr, lambda x: int.from_bytes(x, "big" )),def __init__(None ,None ,None ,None ,None ,"nd" ,class ovs_key_ct_tuple_ipv4(ovs_key_proto):"src" , "!I" ),"dst" , "!I" ),"tp_src" , "!H" ),"tp_dst" , "!H" ),"proto" , "B" ),"src" ,"src" ,lambda x: str(ipaddress.IPv4Address(x)),"dst" ,"dst" ,lambda x: str(ipaddress.IPv4Address(x)),"tp_src" , "tp_src" , "%d" , int),"tp_dst" , "tp_dst" , "%d" , int),"proto" , "proto" , "%d" , int),def __init__(None ,None ,None ,None ,None ,"ct_tuple4" ,class ovs_key_ct_tuple_ipv6(nla):"src" , "!16s" ),"dst" , "!16s" ),"tp_src" , "!H" ),"tp_dst" , "!H" ),"proto" , "B" ),"src" ,"src" ,lambda x: str(ipaddress.IPv6Address(x)),"dst" ,"dst" ,lambda x: str(ipaddress.IPv6Address(x)),"tp_src" , "tp_src" , "%d" , int),"tp_dst" , "tp_dst" , "%d" , int),"proto" , "proto" , "%d" , int),def __init__(None ,None ,None ,None ,None ,"ct_tuple6" ,class ovs_key_tunnel(nla):"OVS_TUNNEL_KEY_ATTR_ID" , "be64" ),"OVS_TUNNEL_KEY_ATTR_IPV4_SRC" , "ipaddr" ),"OVS_TUNNEL_KEY_ATTR_IPV4_DST" , "ipaddr" ),"OVS_TUNNEL_KEY_ATTR_TOS" , "uint8" ),"OVS_TUNNEL_KEY_ATTR_TTL" , "uint8" ),"OVS_TUNNEL_KEY_ATTR_DONT_FRAGMENT" , "flag" ),"OVS_TUNNEL_KEY_ATTR_CSUM" , "flag" ),"OVS_TUNNEL_KEY_ATTR_OAM" , "flag" ),"OVS_TUNNEL_KEY_ATTR_GENEVE_OPTS" , "array(uint32)" ),"OVS_TUNNEL_KEY_ATTR_TP_SRC" , "be16" ),"OVS_TUNNEL_KEY_ATTR_TP_DST" , "be16" ),"OVS_TUNNEL_KEY_ATTR_VXLAN_OPTS" , "none" ),"OVS_TUNNEL_KEY_ATTR_IPV6_SRC" , "ipaddr" ),"OVS_TUNNEL_KEY_ATTR_IPV6_DST" , "ipaddr" ),"OVS_TUNNEL_KEY_ATTR_PAD" , "none" ),"OVS_TUNNEL_KEY_ATTR_ERSPAN_OPTS" , "none" ),"OVS_TUNNEL_KEY_ATTR_IPV4_INFO_BRIDGE" , "flag" ),def parse(self, flowstr, mask=None ):if not flowstr.startswith("tunnel(" ):return None , None if mask is not None :"tunnel(" ):]None "tun_id=" , r"(\d+)" , int, "OVS_TUNNEL_KEY_ATTR_ID" ,None , None ),"src=" , r"([0-9a-fA-F\.]+)" , str,"OVS_TUNNEL_KEY_ATTR_IPV4_SRC" , "255.255.255.255" , "0.0.0.0" ,False ),"dst=" , r"([0-9a-fA-F\.]+)" , str,"OVS_TUNNEL_KEY_ATTR_IPV4_DST" , "255.255.255.255" , "0.0.0.0" ,False ),"ipv6_src=" , r"([0-9a-fA-F:]+)" , str,"OVS_TUNNEL_KEY_ATTR_IPV6_SRC" ,"ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff" , "::" , True ),"ipv6_dst=" , r"([0-9a-fA-F:]+)" , str,"OVS_TUNNEL_KEY_ATTR_IPV6_DST" ,"ffff:ffff:ffff:ffff:ffff:ffff:ffff:ffff" , "::" , True ),"tos=" , r"(\d+)" , int, "OVS_TUNNEL_KEY_ATTR_TOS" , 255, 0,None ),"ttl=" , r"(\d+)" , int, "OVS_TUNNEL_KEY_ATTR_TTL" , 255, 0,None ),"tp_src=" , r"(\d+)" , int, "OVS_TUNNEL_KEY_ATTR_TP_SRC" ,None ),"tp_dst=" , r"(\d+)" , int, "OVS_TUNNEL_KEY_ATTR_TP_DST" ,None ),"OVS_TUNNEL_KEY_ATTR_TTL" ]for prefix, regex, typ, attr_name, mask_val, default_val, v46_flag in fields:False )if not attr_name:raise Exception("Bad list value in tunnel fields" )if value is None and attr_name in forced_include:if value is not None :if v46_flag is not None :if v6_address is None :if v46_flag != v6_address:raise ValueError("Cannot mix v6 and v4 addresses" )"attrs" ].append([attr_name, value])if mask is not None :"attrs" ].append([attr_name, mask_val])else :if v46_flag is not None :if v6_address is None or v46_flag != v6_address:continue if mask is not None :"attrs" ].append([attr_name, default_val])if k["attrs" ][0][0] != "OVS_TUNNEL_KEY_ATTR_ID" :raise ValueError("Needs a tunid set" )if flowstr.startswith("flags(" ):"flags(" ):]")" )"df" : "OVS_TUNNEL_KEY_ATTR_DONT_FRAGMENT" ,"csum" : "OVS_TUNNEL_KEY_ATTR_CSUM" ,"oam" : "OVS_TUNNEL_KEY_ATTR_OAM" for flag in flags.split("|" ):if flag in flag_attrs:"attrs" ].append([flag_attrs[flag], True ])if mask is not None :"attrs" ].append([flag_attrs[flag], True ])", " ) :]return flowstr, k, maskdef dpstr(self, mask=None , more=False ):"tunnel(" for k in self["attrs" ]:False if k[0] == "OVS_TUNNEL_KEY_ATTR_ID" :"tun_id=%d" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_IPV4_SRC" :"src=%s" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_IPV4_DST" :"dst=%s" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_IPV6_SRC" :"ipv6_src=%s" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_IPV6_DST" :"ipv6_dst=%s" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_TOS" :"tos=%d" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_TTL" :"ttl=%d" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_TP_SRC" :"tp_src=%d" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_TP_DST" :"tp_dst=%d" % k[1]elif k[0] == "OVS_TUNNEL_KEY_ATTR_DONT_FRAGMENT" :True "df" )elif k[0] == "OVS_TUNNEL_KEY_ATTR_CSUM" :True "csum" )elif k[0] == "OVS_TUNNEL_KEY_ATTR_OAM" :True "oam" )if not noprint:"," if len(flagsattrs):"flags(" + "|" .join(flagsattrs) + ")" ")" return print_strclass ovs_key_mpls(nla):"lse" , ">I" ),)def parse(self, flowstr, mask=None ):for field in ("OVS_KEY_ATTR_PRIORITY" , "skb_priority" , intparse),"OVS_KEY_ATTR_SKB_MARK" , "skb_mark" , intparse),"OVS_KEY_ATTR_RECIRC_ID" , "recirc_id" , intparse),"OVS_KEY_ATTR_TUNNEL" , "tunnel" , ovskey.ovs_key_tunnel),"OVS_KEY_ATTR_DP_HASH" , "dp_hash" , intparse),"OVS_KEY_ATTR_CT_STATE" , "ct_state" , parse_ct_state),"OVS_KEY_ATTR_CT_ZONE" , "ct_zone" , intparse),"OVS_KEY_ATTR_CT_MARK" , "ct_mark" , intparse),"OVS_KEY_ATTR_IN_PORT" , "in_port" , intparse),"OVS_KEY_ATTR_ETHERNET" ,"eth" ,"OVS_KEY_ATTR_ETHERTYPE" ,"eth_type" ,lambda x: intparse(x, "0xffff" ),"OVS_KEY_ATTR_IPV4" ,"ipv4" ,"OVS_KEY_ATTR_IPV6" ,"ipv6" ,"OVS_KEY_ATTR_ARP" ,"arp" ,"OVS_KEY_ATTR_TCP" ,"tcp" ,"OVS_KEY_ATTR_UDP" ,"udp" ,"OVS_KEY_ATTR_ICMP" ,"icmp" ,"OVS_KEY_ATTR_TCP_FLAGS" ,"tcp_flags" ,lambda x: parse_flags(x, None ),"(" if not flowstr.startswith(fld):continue if not isinstance(field[2], types.FunctionType):else :if m and mask is not None :"attrs" ].append([field[0], m])"attrs" ].append([field[0], k])"), " ) :]return flowstrdef dpstr(self, mask=None , more=False ):"" for field in ("OVS_KEY_ATTR_PRIORITY" ,"skb_priority" ,"%d" ,lambda x: False ,True ,"OVS_KEY_ATTR_SKB_MARK" ,"skb_mark" ,"%d" ,lambda x: False ,True ,"OVS_KEY_ATTR_RECIRC_ID" ,"recirc_id" ,"0x%08X" ,lambda x: False ,True ,"OVS_KEY_ATTR_DP_HASH" ,"dp_hash" ,"0x%08X" ,lambda x: False ,True ,"OVS_KEY_ATTR_TUNNEL" ,"tunnel" ,None ,False ,False ,"OVS_KEY_ATTR_CT_STATE" ,"ct_state" ,"0x%04x" ,lambda x: False ,True ,"OVS_KEY_ATTR_CT_ZONE" ,"ct_zone" ,"0x%04x" ,lambda x: False ,True ,"OVS_KEY_ATTR_CT_MARK" ,"ct_mark" ,"0x%08x" ,lambda x: False ,True ,"OVS_KEY_ATTR_CT_ORIG_TUPLE_IPV4" ,None ,None ,False ,False ,"OVS_KEY_ATTR_CT_ORIG_TUPLE_IPV6" ,None ,None ,False ,False ,"OVS_KEY_ATTR_IN_PORT" ,"in_port" ,"%d" ,lambda x: True ,True ,"OVS_KEY_ATTR_ETHERNET" , None , None , False , False ),"OVS_KEY_ATTR_ETHERTYPE" ,"eth_type" ,"0x%04x" ,lambda x: int(x) == 0xFFFF,True ,"OVS_KEY_ATTR_IPV4" , None , None , False , False ),"OVS_KEY_ATTR_IPV6" , None , None , False , False ),"OVS_KEY_ATTR_ARP" , None , None , False , False ),"OVS_KEY_ATTR_TCP" , None , None , False , False ),"OVS_KEY_ATTR_TCP_FLAGS" ,"tcp_flags" ,"0x%04x" ,lambda x: False ,True ,"OVS_KEY_ATTR_UDP" , None , None , False , False ),"OVS_KEY_ATTR_SCTP" , None , None , False , False ),"OVS_KEY_ATTR_ICMP" , None , None , False , False ),"OVS_KEY_ATTR_ICMPV6" , None , None , False , False ),"OVS_KEY_ATTR_ND" , None , None , False , False ),if v is not None :None if mask is None else mask.get_attr(field[0])if field[4] is False :"," else :if m is None or field[3](m):"(" ")," elif more or m != 0:"(" "/" + (field[2] % m)")," return print_strclass OvsPacket(GenericNetlinkSocket):# Flow table miss # USERSPACE action # Apply actions to packet class ovs_packet_msg(ovs_dp_msg):"OVS_PACKET_ATTR_UNSPEC" , "none" ),"OVS_PACKET_ATTR_PACKET" , "array(uint8)" ),"OVS_PACKET_ATTR_KEY" , "ovskey" ),"OVS_PACKET_ATTR_ACTIONS" , "ovsactions" ),"OVS_PACKET_ATTR_USERDATA" , "none" ),"OVS_PACKET_ATTR_EGRESS_TUN_KEY" , "none" ),"OVS_PACKET_ATTR_UNUSED1" , "none" ),"OVS_PACKET_ATTR_UNUSED2" , "none" ),"OVS_PACKET_ATTR_PROBE" , "none" ),"OVS_PACKET_ATTR_MRU" , "uint16" ),"OVS_PACKET_ATTR_LEN" , "uint32" ),"OVS_PACKET_ATTR_HASH" , "uint64" ),def __init__(self):def upcall_handler(self, up=None ):"listening on upcall packet handler:" , self.epid)while True :try :for msg in msgs:if not up:continue if msg["cmd" ] == OvsPacket.OVS_PACKET_CMD_MISS:elif msg["cmd" ] == OvsPacket.OVS_PACKET_CMD_ACTION:elif msg["cmd" ] == OvsPacket.OVS_PACKET_CMD_EXECUTE:else :"Unkonwn cmd: %d" % msg["cmd" ])except NetlinkError as ne:raise neclass OvsDatapath(GenericNetlinkSocket):class dp_cmd_msg(ovs_dp_msg):"" " class that will be used to communicate with the kernel module."" " "OVS_DP_ATTR_UNSPEC" , "none" ),"OVS_DP_ATTR_NAME" , "asciiz" ),"OVS_DP_ATTR_UPCALL_PID" , "array(uint32)" ),"OVS_DP_ATTR_STATS" , "dpstats" ),"OVS_DP_ATTR_MEGAFLOW_STATS" , "megaflowstats" ),"OVS_DP_ATTR_USER_FEATURES" , "uint32" ),"OVS_DP_ATTR_PAD" , "none" ),"OVS_DP_ATTR_MASKS_CACHE_SIZE" , "uint32" ),"OVS_DP_ATTR_PER_CPU_PIDS" , "array(uint32)" ),class dpstats(nla):"hit" , "=Q" ),"missed" , "=Q" ),"lost" , "=Q" ),"flows" , "=Q" ),class megaflowstats(nla):"mask_hit" , "=Q" ),"masks" , "=I" ),"padding" , "=I" ),"cache_hits" , "=Q" ),"pad1" , "=Q" ),def __init__(self):def info(self, dpname, ifindex=0):"cmd" ] = OVS_DP_CMD_GET"version" ] = OVS_DATAPATH_VERSION"reserved" ] = 0"dpifindex" ] = ifindex"attrs" ].append(["OVS_DP_ATTR_NAME" , dpname])try :except NetlinkError as ne:if ne.code == errno.ENODEV:None else :raise nereturn replydef create(False , versionStr=None , p=OvsPacket()"cmd" ] = OVS_DP_CMD_NEWif versionStr is None :"version" ] = OVS_DATAPATH_VERSIONelse :"version" ] = int(versionStr.split(":" )[0], 0)"reserved" ] = 0"dpifindex" ] = 0"attrs" ].append(["OVS_DP_ATTR_NAME" , dpname])if versionStr is not None and versionStr.find(":" ) != -1:":" )[1], 0)else :if versionStr is None or versionStr.find(":" ) == -1:for i in range(1, nproc):"attrs" ].append(["OVS_DP_ATTR_UPCALL_PID" , procarray])"attrs" ].append(["OVS_DP_ATTR_USER_FEATURES" , dpfeatures])if not shouldUpcall:"attrs" ].append(["OVS_DP_ATTR_UPCALL_PID" , [0]])try :except NetlinkError as ne:if ne.code == errno.EEXIST:None else :raise nereturn replydef destroy(self, dpname):
Messung V0.5 C=99 H=94 G=96
¤ Dauer der Verarbeitung: 0.29 Sekunden
(vorverarbeitet)
¤ *© Formatika GbR, Deutschland
