sctp_vrf.sh 5.7 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189
  1. #!/bin/bash
  2. # SPDX-License-Identifier: GPL-2.0
  3. #
  4. # Testing For SCTP VRF.
  5. # TOPO: CLIENT_NS1 (veth1) <---> (veth1) -> vrf_s1
  6. # SERVER_NS
  7. # CLIENT_NS2 (veth1) <---> (veth2) -> vrf_s2
  8. source lib.sh
  9. CLIENT_IP4="10.0.0.1"
  10. CLIENT_IP6="2000::1"
  11. CLIENT_PORT=1234
  12. SERVER_IP4="10.0.0.2"
  13. SERVER_IP6="2000::2"
  14. SERVER_PORT=1234
  15. setup() {
  16. modprobe sctp
  17. modprobe sctp_diag
  18. setup_ns CLIENT_NS1 CLIENT_NS2 SERVER_NS
  19. ip net exec $CLIENT_NS1 sysctl -wq net.ipv6.conf.default.accept_dad=0
  20. ip net exec $CLIENT_NS2 sysctl -wq net.ipv6.conf.default.accept_dad=0
  21. ip net exec $SERVER_NS sysctl -wq net.ipv6.conf.default.accept_dad=0
  22. ip -n $SERVER_NS link add veth1 type veth peer name veth1 netns $CLIENT_NS1
  23. ip -n $SERVER_NS link add veth2 type veth peer name veth1 netns $CLIENT_NS2
  24. ip -n $CLIENT_NS1 link set veth1 up
  25. ip -n $CLIENT_NS1 addr add $CLIENT_IP4/24 dev veth1
  26. ip -n $CLIENT_NS1 addr add $CLIENT_IP6/24 dev veth1
  27. ip -n $CLIENT_NS2 link set veth1 up
  28. ip -n $CLIENT_NS2 addr add $CLIENT_IP4/24 dev veth1
  29. ip -n $CLIENT_NS2 addr add $CLIENT_IP6/24 dev veth1
  30. ip -n $SERVER_NS link add dummy1 type dummy
  31. ip -n $SERVER_NS link set dummy1 up
  32. ip -n $SERVER_NS link add vrf-1 type vrf table 10
  33. ip -n $SERVER_NS link add vrf-2 type vrf table 20
  34. ip -n $SERVER_NS link set vrf-1 up
  35. ip -n $SERVER_NS link set vrf-2 up
  36. ip -n $SERVER_NS link set veth1 master vrf-1
  37. ip -n $SERVER_NS link set veth2 master vrf-2
  38. ip -n $SERVER_NS addr add $SERVER_IP4/24 dev dummy1
  39. ip -n $SERVER_NS addr add $SERVER_IP4/24 dev veth1
  40. ip -n $SERVER_NS addr add $SERVER_IP4/24 dev veth2
  41. ip -n $SERVER_NS addr add $SERVER_IP6/24 dev dummy1
  42. ip -n $SERVER_NS addr add $SERVER_IP6/24 dev veth1
  43. ip -n $SERVER_NS addr add $SERVER_IP6/24 dev veth2
  44. ip -n $SERVER_NS link set veth1 up
  45. ip -n $SERVER_NS link set veth2 up
  46. ip -n $SERVER_NS route add table 10 $CLIENT_IP4 dev veth1 src $SERVER_IP4
  47. ip -n $SERVER_NS route add table 20 $CLIENT_IP4 dev veth2 src $SERVER_IP4
  48. ip -n $SERVER_NS route add $CLIENT_IP4 dev veth1 src $SERVER_IP4
  49. ip -n $SERVER_NS route add table 10 $CLIENT_IP6 dev veth1 src $SERVER_IP6
  50. ip -n $SERVER_NS route add table 20 $CLIENT_IP6 dev veth2 src $SERVER_IP6
  51. ip -n $SERVER_NS route add $CLIENT_IP6 dev veth1 src $SERVER_IP6
  52. }
  53. cleanup() {
  54. wait_client $CLIENT_NS1
  55. wait_client $CLIENT_NS2
  56. stop_server
  57. cleanup_ns $CLIENT_NS1 $CLIENT_NS2 $SERVER_NS
  58. }
  59. start_server() {
  60. local IFACE=$1
  61. local CNT=0
  62. ip netns exec $SERVER_NS ./sctp_hello server $AF $SERVER_IP $SERVER_PORT $IFACE &
  63. disown
  64. until ip netns exec $SERVER_NS ss -SlH | grep -q "$IFACE"; do
  65. [ $((CNT++)) -eq 30 ] && { RET=3; return $RET; }
  66. sleep 0.1
  67. done
  68. }
  69. stop_server() {
  70. local CNT=0
  71. ip netns exec $SERVER_NS pkill sctp_hello
  72. while ip netns exec $SERVER_NS ss -SaH | grep -q .; do
  73. [ $((CNT++)) -eq 30 ] && break
  74. sleep 0.1
  75. done
  76. }
  77. wait_client() {
  78. local CLIENT_NS=$1
  79. local CNT=0
  80. while ip netns exec $CLIENT_NS ss -SaH | grep -q .; do
  81. [ $((CNT++)) -eq 30 ] && break
  82. sleep 0.1
  83. done
  84. }
  85. do_test() {
  86. local CLIENT_NS=$1
  87. local IFACE=$2
  88. start_server $IFACE || return $RET
  89. timeout 3 ip netns exec $CLIENT_NS ./sctp_hello client $AF \
  90. $SERVER_IP $SERVER_PORT $CLIENT_IP $CLIENT_PORT
  91. RET=$?
  92. wait_client $CLIENT_NS
  93. stop_server
  94. return $RET
  95. }
  96. do_testx() {
  97. local IFACE1=$1
  98. local IFACE2=$2
  99. start_server $IFACE1 || return $RET
  100. start_server $IFACE2 || return $RET
  101. timeout 3 ip netns exec $CLIENT_NS1 ./sctp_hello client $AF \
  102. $SERVER_IP $SERVER_PORT $CLIENT_IP $CLIENT_PORT && \
  103. timeout 3 ip netns exec $CLIENT_NS2 ./sctp_hello client $AF \
  104. $SERVER_IP $SERVER_PORT $CLIENT_IP $CLIENT_PORT
  105. RET=$?
  106. wait_client $CLIENT_NS1
  107. wait_client $CLIENT_NS2
  108. stop_server
  109. return $RET
  110. }
  111. testup() {
  112. ip netns exec $SERVER_NS sysctl -wq net.sctp.l3mdev_accept=1
  113. echo -n "TEST 01: nobind, connect from client 1, l3mdev_accept=1, Y "
  114. do_test $CLIENT_NS1 || { echo "[FAIL]"; return $RET; }
  115. echo "[PASS]"
  116. echo -n "TEST 02: nobind, connect from client 2, l3mdev_accept=1, N "
  117. do_test $CLIENT_NS2 && { echo "[FAIL]"; return $RET; }
  118. echo "[PASS]"
  119. ip netns exec $SERVER_NS sysctl -wq net.sctp.l3mdev_accept=0
  120. echo -n "TEST 03: nobind, connect from client 1, l3mdev_accept=0, N "
  121. do_test $CLIENT_NS1 && { echo "[FAIL]"; return $RET; }
  122. echo "[PASS]"
  123. echo -n "TEST 04: nobind, connect from client 2, l3mdev_accept=0, N "
  124. do_test $CLIENT_NS2 && { echo "[FAIL]"; return $RET; }
  125. echo "[PASS]"
  126. echo -n "TEST 05: bind veth2 in server, connect from client 1, N "
  127. do_test $CLIENT_NS1 veth2 && { echo "[FAIL]"; return $RET; }
  128. echo "[PASS]"
  129. echo -n "TEST 06: bind veth1 in server, connect from client 1, Y "
  130. do_test $CLIENT_NS1 veth1 || { echo "[FAIL]"; return $RET; }
  131. echo "[PASS]"
  132. echo -n "TEST 07: bind vrf-1 in server, connect from client 1, Y "
  133. do_test $CLIENT_NS1 vrf-1 || { echo "[FAIL]"; return $RET; }
  134. echo "[PASS]"
  135. echo -n "TEST 08: bind vrf-2 in server, connect from client 1, N "
  136. do_test $CLIENT_NS1 vrf-2 && { echo "[FAIL]"; return $RET; }
  137. echo "[PASS]"
  138. echo -n "TEST 09: bind vrf-2 in server, connect from client 2, Y "
  139. do_test $CLIENT_NS2 vrf-2 || { echo "[FAIL]"; return $RET; }
  140. echo "[PASS]"
  141. echo -n "TEST 10: bind vrf-1 in server, connect from client 2, N "
  142. do_test $CLIENT_NS2 vrf-1 && { echo "[FAIL]"; return $RET; }
  143. echo "[PASS]"
  144. echo -n "TEST 11: bind vrf-1 & 2 in server, connect from client 1 & 2, Y "
  145. do_testx vrf-1 vrf-2 || { echo "[FAIL]"; return $RET; }
  146. echo "[PASS]"
  147. echo -n "TEST 12: bind vrf-2 & 1 in server, connect from client 1 & 2, Y "
  148. do_testx vrf-2 vrf-1 || { echo "[FAIL]"; return $RET; }
  149. echo "[PASS]"
  150. }
  151. trap cleanup EXIT
  152. setup && echo "Testing For SCTP VRF:" && \
  153. CLIENT_IP=$CLIENT_IP4 SERVER_IP=$SERVER_IP4 AF="-4" testup && echo "***v4 Tests Done***" &&
  154. CLIENT_IP=$CLIENT_IP6 SERVER_IP=$SERVER_IP6 AF="-6" testup && echo "***v6 Tests Done***"
  155. exit $?