Fix CARP echo back for ESX vSwitch
Needs ReviewPublic
Actions

Authored by slw_zxy.spb.ru on Jul 1 2022, 1:02 PM.

Details

Reviewers

kp
melifaro
glebius

Summary

The 8151740c881f1f400dab7a3f4c7bb23439c11b66 commit introduces a workaround for the vSwitch bug, where an interface accepts a sent back multicast announcement. And that doesn't work at the moment:
IFNET_FOREACH_IFA iterates only addresses with non-zero ifa_carp, and the packet is sent with ifa_carp == NULL (i.e. from a general, non-carp source).
Also, it is checked that the carp_vhid field in the received packet is 0, but vhid should be from 1 to 255.

Diff Detail

Repository

rG FreeBSD src repository

Lint

Lint Skipped

Unit

Tests Skipped

Event Timeline

slw_zxy.spb.ru created this revision.Jul 1 2022, 1:02 PM

Herald added subscribers: glebius, melifaro. · View Herald TranscriptJul 1 2022, 1:02 PM

slw_zxy.spb.ru requested review of this revision.Jul 1 2022, 1:02 PM

osa added a subscriber: osa.Jul 1 2022, 2:20 PM

slw_zxy.spb.ru edited the summary of this revision. (Show Details)Jul 1 2022, 2:41 PM

slw_zxy.spb.ru edited the summary of this revision. (Show Details)Jul 1 2022, 3:16 PM

lwhsu added reviewers: kp, melifaro, glebius.Jul 5 2022, 12:20 AM

I'd rather do it slightly differently - there is already carp_forus_p() hook that is called in ether_input_internal(). I'd extend it to pass the source MAC there as well so the routine can check if this is the looped packet.
If the latter is true, I'd stamp mbuf with either M_LOOP or M_PROMISC flag to ensure it will be dropped early enough.