Gitiles
Code Review Sign In
gerrit.onosproject.org / spring-open / 08ee8528a42044e01347770af3581ae1c0dfe450 / . / src / main / java / net / onrc / onos / ofcontroller / proxyarp / ProxyArpManager.java
blob: 8eb64a27035e0f27b522f4c3321e820a5f7f6e93 [file] [log] [blame]
package net.onrc.onos.ofcontroller.proxyarp;
import java.io.IOException;
import java.net.InetAddress;
import java.net.UnknownHostException;
import java.util.ArrayList;
import java.util.Collection;
import java.util.HashMap;
import java.util.Iterator;
import java.util.List;
import java.util.Map;
import java.util.Set;
import java.util.Timer;
import java.util.TimerTask;
import net.floodlightcontroller.core.FloodlightContext;
import net.floodlightcontroller.core.IFloodlightProviderService;
import net.floodlightcontroller.core.IOFMessageListener;
import net.floodlightcontroller.core.IOFSwitch;
import net.floodlightcontroller.packet.ARP;
import net.floodlightcontroller.packet.Ethernet;
import net.floodlightcontroller.packet.IPv4;
import net.floodlightcontroller.topology.ITopologyService;
import net.floodlightcontroller.util.MACAddress;
import net.onrc.onos.ofcontroller.bgproute.ILayer3InfoService;
import net.onrc.onos.ofcontroller.bgproute.Interface;
import org.openflow.protocol.OFMessage;
import org.openflow.protocol.OFPacketIn;
import org.openflow.protocol.OFPacketOut;
import org.openflow.protocol.OFPort;
import org.openflow.protocol.OFType;
import org.openflow.protocol.action.OFAction;
import org.openflow.protocol.action.OFActionOutput;
import org.openflow.util.HexString;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import com.google.common.collect.HashMultimap;
import com.google.common.collect.Multimaps;
import com.google.common.collect.SetMultimap;
//TODO REST API to inspect ARP table
public class ProxyArpManager implements IProxyArpService, IOFMessageListener {
private static Logger log = LoggerFactory.getLogger(ProxyArpManager.class);
private final long ARP_ENTRY_TIMEOUT = 600000; //ms (== 10 mins)
private final long ARP_TIMER_PERIOD = 60000; //ms (== 1 min)
private IFloodlightProviderService floodlightProvider;
private ITopologyService topology;
private ILayer3InfoService layer3;
private Map<InetAddress, ArpTableEntry> arpTable;
private SetMultimap<InetAddress, ArpRequest> arpRequests;
//public enum Mode {L2_MODE, L3_MODE}
//private Mode mode;
//private IPatriciaTrie<Interface> interfacePtrie = null;
//private Collection<Interface> interfaces = null;
//private MACAddress routerMacAddress = null;
//private SwitchPort bgpdAttachmentPoint = null;
private class ArpRequest {
private IArpRequester requester;
private boolean retry;
private long requestTime;
public ArpRequest(IArpRequester requester, boolean retry){
this.requester = requester;
this.retry = retry;
this.requestTime = System.currentTimeMillis();
}
public ArpRequest(ArpRequest old) {
this.requester = old.requester;
this.retry = old.retry;
this.requestTime = System.currentTimeMillis();
}
public boolean isExpired() {
return (System.currentTimeMillis() - requestTime)
> IProxyArpService.ARP_REQUEST_TIMEOUT;
}
public boolean shouldRetry() {
return retry;
}
public void dispatchReply(InetAddress ipAddress, byte[] replyMacAddress) {
log.debug("Dispatching reply for {} to {}", ipAddress.getHostAddress(),
requester);
requester.arpResponse(ipAddress, replyMacAddress);
}
}
public ProxyArpManager(IFloodlightProviderService floodlightProvider,
ITopologyService topology, ILayer3InfoService layer3){
this.floodlightProvider = floodlightProvider;
this.topology = topology;
this.layer3 = layer3;
arpTable = new HashMap<InetAddress, ArpTableEntry>();
arpRequests = Multimaps.synchronizedSetMultimap(
HashMultimap.<InetAddress, ArpRequest>create());
//mode = Mode.L2_MODE;
}
/*
public void setL3Mode(IPatriciaTrie<Interface> interfacePtrie,
Collection<Interface> interfaces, MACAddress routerMacAddress) {
this.interfacePtrie = interfacePtrie;
this.interfaces = interfaces;
this.routerMacAddress = routerMacAddress;
mode = Mode.L3_MODE;
}
*/
public void startUp() {
Timer arpTimer = new Timer();
arpTimer.scheduleAtFixedRate(new TimerTask() {
@Override
public void run() {
doPeriodicArpProcessing();
}
}, 0, ARP_TIMER_PERIOD);
}
/*
* Function that runs periodically to manage the asynchronous request mechanism.
* It basically cleans up old ARP requests if we don't get a response for them.
* The caller can designate that a request should be retried indefinitely, and
* this task will handle that as well.
*/
private void doPeriodicArpProcessing() {
SetMultimap<InetAddress, ArpRequest> retryList
= HashMultimap.<InetAddress, ArpRequest>create();
//Have to synchronize externally on the Multimap while using an iterator,
//even though it's a synchronizedMultimap
synchronized (arpRequests) {
log.debug("Current have {} outstanding requests",
arpRequests.size());
Iterator<Map.Entry<InetAddress, ArpRequest>> it
= arpRequests.entries().iterator();
while (it.hasNext()) {
Map.Entry<InetAddress, ArpRequest> entry
= it.next();
ArpRequest request = entry.getValue();
if (request.isExpired()) {
log.debug("Cleaning expired ARP request for {}",
entry.getKey().getHostAddress());
it.remove();
if (request.shouldRetry()) {
retryList.put(entry.getKey(), request);
}
}
}
}
for (Map.Entry<InetAddress, Collection<ArpRequest>> entry
: retryList.asMap().entrySet()) {
InetAddress address = entry.getKey();
log.debug("Resending ARP request for {}", address.getHostAddress());
sendArpRequestForAddress(address);
for (ArpRequest request : entry.getValue()) {
arpRequests.put(address, new ArpRequest(request));
}
}
}
@Override
public String getName() {
return "ProxyArpManager";
}
@Override
public boolean isCallbackOrderingPrereq(OFType type, String name) {
return false;
}
@Override
public boolean isCallbackOrderingPostreq(OFType type, String name) {
return false;
}
@Override
public Command receive(
IOFSwitch sw, OFMessage msg, FloodlightContext cntx) {
if (msg.getType() != OFType.PACKET_IN){
return Command.CONTINUE;
}
OFPacketIn pi = (OFPacketIn) msg;
Ethernet eth = IFloodlightProviderService.bcStore.get(cntx,
IFloodlightProviderService.CONTEXT_PI_PAYLOAD);
if (eth.getEtherType() == Ethernet.TYPE_ARP){
ARP arp = (ARP) eth.getPayload();
if (arp.getOpCode() == ARP.OP_REQUEST) {
handleArpRequest(sw, pi, arp);
}
else if (arp.getOpCode() == ARP.OP_REPLY) {
handleArpReply(sw, pi, arp);
}
}
//TODO should we propagate ARP or swallow it?
//Always propagate for now so DeviceManager can learn the host location
return Command.CONTINUE;
}
protected void handleArpRequest(IOFSwitch sw, OFPacketIn pi, ARP arp) {
if (log.isTraceEnabled()) {
log.trace("ARP request received for {}",
inetAddressToString(arp.getTargetProtocolAddress()));
}
InetAddress target;
//InetAddress source;
try {
target = InetAddress.getByAddress(arp.getTargetProtocolAddress());
//source = InetAddress.getByAddress(arp.getSenderProtocolAddress());
} catch (UnknownHostException e) {
log.debug("Invalid address in ARP request", e);
return;
}
//if (mode == Mode.L3_MODE) {
//if (originatedOutsideNetwork(source)) {
//if (originatedOutsideNetwork(sw.getId(), pi.getInPort())) {
if (layer3.fromExternalNetwork(sw.getId(), pi.getInPort())) {
//If the request came from outside our network, we only care if
//it was a request for one of our interfaces.
//if (isInterfaceAddress(target)) {
if (layer3.isInterfaceAddress(target)) {
log.trace("ARP request for our interface. Sending reply {} => {}",
target.getHostAddress(), layer3.getRouterMacAddress().toString());
sendArpReply(arp, sw.getId(), pi.getInPort(), layer3.getRouterMacAddress().toBytes());
}
return;
}
/*
Interface intf = interfacePtrie.match(new Prefix(target.getAddress(), 32));
//if (intf != null && target.equals(intf.getIpAddress())) {
if (intf != null) {
if (target.equals(intf.getIpAddress())) {
//ARP request for one of our interfaces, we can reply straight away
sendArpReply(arp, sw.getId(), pi.getInPort(), routerMacAddress.toBytes());
}
// If we didn't enter the above if block, then we found a matching
// interface for the target IP but the request wasn't for us.
// This is someone else ARPing for a different host in the subnet.
// We shouldn't do anything in this case - if we let processing continue
// we'll end up erroneously re-broadcasting an ARP for someone else.
return;
}
*/
//}
byte[] mac = lookupArpTable(arp.getTargetProtocolAddress());
if (mac == null){
//Mac address is not in our arp table.
//Record where the request came from so we know where to send the reply
arpRequests.put(target, new ArpRequest(
new HostArpRequester(this, arp, sw.getId(), pi.getInPort()), false));
//Flood the request out edge ports
//broadcastArpRequestOutEdge(pi.getPacketData(), sw.getId(), pi.getInPort());
sendArpRequestToSwitches(target, pi.getPacketData(), sw.getId(), pi.getInPort());
}
else {
//We know the address, so send a reply
if (log.isTraceEnabled()) {
log.trace("Sending reply: {} => {} to host at {}/{}", new Object [] {
inetAddressToString(arp.getTargetProtocolAddress()),
MACAddress.valueOf(mac).toString(),
HexString.toHexString(sw.getId()), pi.getInPort()});
}
sendArpReply(arp, sw.getId(), pi.getInPort(), mac);
}
}
protected void handleArpReply(IOFSwitch sw, OFPacketIn pi, ARP arp){
if (log.isTraceEnabled()) {
log.trace("ARP reply recieved: {} => {}, on {}/{}", new Object[] {
inetAddressToString(arp.getSenderProtocolAddress()),
HexString.toHexString(arp.getSenderHardwareAddress()),
HexString.toHexString(sw.getId()), pi.getInPort()});
}
updateArpTable(arp);
//See if anyone's waiting for this ARP reply
InetAddress addr;
try {
addr = InetAddress.getByAddress(arp.getSenderProtocolAddress());
} catch (UnknownHostException e) {
log.debug("Invalid address in ARP request", e);
return;
}
Set<ArpRequest> requests = arpRequests.get(addr);
//Synchronize on the Multimap while using an iterator for one of the sets
List<ArpRequest> requestsToSend = new ArrayList<ArpRequest>(requests.size());
synchronized (arpRequests) {
Iterator<ArpRequest> it = requests.iterator();
while (it.hasNext()) {
ArpRequest request = it.next();
it.remove();
//request.dispatchReply(addr, arp.getSenderHardwareAddress());
requestsToSend.add(request);
}
}
//Don't hold an ARP lock while dispatching requests
for (ArpRequest request : requestsToSend) {
request.dispatchReply(addr, arp.getSenderHardwareAddress());
}
}
private synchronized byte[] lookupArpTable(byte[] ipAddress){
InetAddress addr;
try {
addr = InetAddress.getByAddress(ipAddress);
} catch (UnknownHostException e) {
log.warn("Unable to create InetAddress", e);
return null;
}
ArpTableEntry arpEntry = arpTable.get(addr);
if (arpEntry == null){
//log.debug("MAC for {} unknown", bytesToStringAddr(ipAddress));
return null;
}
if (System.currentTimeMillis() - arpEntry.getTimeLastSeen()
> ARP_ENTRY_TIMEOUT){
//Entry has timed out so we'll remove it and return null
log.debug("Timing out old ARP entry for {}", inetAddressToString(ipAddress));
arpTable.remove(addr);
return null;
}
return arpEntry.getMacAddress();
}
private synchronized void updateArpTable(ARP arp){
InetAddress addr;
try {
addr = InetAddress.getByAddress(arp.getSenderProtocolAddress());
} catch (UnknownHostException e) {
log.warn("Unable to create InetAddress", e);
return;
}
ArpTableEntry arpEntry = arpTable.get(addr);
if (arpEntry != null
&& arpEntry.getMacAddress() == arp.getSenderHardwareAddress()){
arpEntry.setTimeLastSeen(System.currentTimeMillis());
}
else {
arpTable.put(addr,
new ArpTableEntry(arp.getSenderHardwareAddress(),
System.currentTimeMillis()));
}
}
private void sendArpRequestForAddress(InetAddress ipAddress) {
//TODO what should the sender IP address and MAC address be if no
//IP addresses are configured? Will there ever be a need to send
//ARP requests from the controller in that case?
//All-zero MAC address doesn't seem to work - hosts don't respond to it
byte[] zeroIpv4 = {0x0, 0x0, 0x0, 0x0};
byte[] zeroMac = {0x0, 0x0, 0x0, 0x0, 0x0, 0x0};
byte[] genericNonZeroMac = {0x0, 0x0, 0x0, 0x0, 0x0, 0x01};
byte[] broadcastMac = {(byte)0xff, (byte)0xff, (byte)0xff,
(byte)0xff, (byte)0xff, (byte)0xff};
ARP arpRequest = new ARP();
arpRequest.setHardwareType(ARP.HW_TYPE_ETHERNET)
.setProtocolType(ARP.PROTO_TYPE_IP)
.setHardwareAddressLength((byte)Ethernet.DATALAYER_ADDRESS_LENGTH)
.setProtocolAddressLength((byte)IPv4.ADDRESS_LENGTH)
.setOpCode(ARP.OP_REQUEST)
//.setSenderHardwareAddress(bgpdMac)
//.setSenderHardwareAddress(routerMacAddress.toBytes())
//.setSenderProtocolAddress(zeroIpv4)
.setTargetHardwareAddress(zeroMac)
.setTargetProtocolAddress(ipAddress.getAddress());
MACAddress routerMacAddress = layer3.getRouterMacAddress();
byte[] senderMacAddress = null;
if (routerMacAddress != null) {
senderMacAddress = routerMacAddress.toBytes();
}
else {
//TODO hack for now as it's unclear what the MAC address should be
senderMacAddress = genericNonZeroMac;
}
arpRequest.setSenderHardwareAddress(senderMacAddress);
byte[] senderIPAddress = zeroIpv4;
//if (mode == Mode.L3_MODE) {
//Interface intf = interfacePtrie.match(new Prefix(ipAddress.getAddress(), 32));
Interface intf = layer3.getOutgoingInterface(ipAddress);
if (intf != null) {
senderIPAddress = intf.getIpAddress().getAddress();
}
//}
arpRequest.setSenderProtocolAddress(senderIPAddress);
Ethernet eth = new Ethernet();
//eth.setSourceMACAddress(routerMacAddress.toBytes())
eth.setSourceMACAddress(senderMacAddress)
.setDestinationMACAddress(broadcastMac)
.setEtherType(Ethernet.TYPE_ARP)
.setPayload(arpRequest);
//broadcastArpRequestOutEdge(eth.serialize(), 0, OFPort.OFPP_NONE.getValue());
sendArpRequestToSwitches(ipAddress, eth.serialize());
}
private void sendArpRequestToSwitches(InetAddress dstAddress, byte[] arpRequest) {
sendArpRequestToSwitches(dstAddress, arpRequest, 0, OFPort.OFPP_NONE.getValue());
}
private void sendArpRequestToSwitches(InetAddress dstAddress, byte[] arpRequest,
long inSwitch, short inPort) {
/*
if (mode == Mode.L2_MODE) {
//log.debug("mode is l2");
broadcastArpRequestOutEdge(arpRequest, inSwitch, inPort);
}
else if (mode == Mode.L3_MODE) {
//log.debug("mode is l3");
//TODO the case where it should be broadcast out all non-interface
//edge ports
Interface intf = interfacePtrie.match(new Prefix(dstAddress.getAddress(), 32));
if (intf != null) {
sendArpRequestOutPort(arpRequest, intf.getDpid(), intf.getPort());
}
else {
log.debug("No interface found to send ARP request for {}",
dstAddress.getHostAddress());
}
}
*/
if (layer3.hasLayer3Configuration()) {
Interface intf = layer3.getOutgoingInterface(dstAddress);
if (intf != null) {
sendArpRequestOutPort(arpRequest, intf.getDpid(), intf.getPort());
}
else {
//TODO here it should be broadcast out all non-interface edge ports.
//I think we can assume that if it's not a request for an external
//network, it's an ARP for a host in our own network. So we want to
//send it out all edge ports that don't have an interface configured
//to ensure it reaches all hosts in our network.
log.debug("No interface found to send ARP request for {}",
dstAddress.getHostAddress());
}
}
else {
broadcastArpRequestOutEdge(arpRequest, inSwitch, inPort);
}
}
private void broadcastArpRequestOutEdge(byte[] arpRequest, long inSwitch, short inPort) {
for (IOFSwitch sw : floodlightProvider.getSwitches().values()){
Collection<Short> enabledPorts = sw.getEnabledPortNumbers();
Set<Short> linkPorts = topology.getPortsWithLinks(sw.getId());
if (linkPorts == null){
//I think this means the switch isn't known to topology yet.
//Maybe it only just joined.
continue;
}
OFPacketOut po = new OFPacketOut();
po.setInPort(OFPort.OFPP_NONE)
.setBufferId(-1)
.setPacketData(arpRequest);
List<OFAction> actions = new ArrayList<OFAction>();
for (short portNum : enabledPorts){
if (linkPorts.contains(portNum) ||
(sw.getId() == inSwitch && portNum == inPort)){
//If this port isn't an edge port or is the ingress port
//for the ARP, don't broadcast out it
continue;
}
actions.add(new OFActionOutput(portNum));
//log.debug("Broadcasting out {}/{}", HexString.toHexString(sw.getId()), portNum);
}
po.setActions(actions);
short actionsLength = (short) (actions.size() * OFActionOutput.MINIMUM_LENGTH);
po.setActionsLength(actionsLength);
po.setLengthU(OFPacketOut.MINIMUM_LENGTH + actionsLength
+ arpRequest.length);
List<OFMessage> msgList = new ArrayList<OFMessage>();
msgList.add(po);
try {
sw.write(msgList, null);
sw.flush();
} catch (IOException e) {
log.error("Failure writing packet out to switch", e);
}
}
}
private void sendArpRequestOutPort(byte[] arpRequest, long dpid, short port) {
log.debug("Sending ARP request out {}/{}", HexString.toHexString(dpid), port);
OFPacketOut po = new OFPacketOut();
po.setInPort(OFPort.OFPP_NONE)
.setBufferId(-1)
.setPacketData(arpRequest);
List<OFAction> actions = new ArrayList<OFAction>();
actions.add(new OFActionOutput(port));
po.setActions(actions);
short actionsLength = (short) (actions.size() * OFActionOutput.MINIMUM_LENGTH);
po.setActionsLength(actionsLength);
po.setLengthU(OFPacketOut.MINIMUM_LENGTH + actionsLength
+ arpRequest.length);
IOFSwitch sw = floodlightProvider.getSwitches().get(dpid);
if (sw == null) {
log.debug("Switch not found when sending ARP request");
return;
}
try {
sw.write(po, null);
sw.flush();
} catch (IOException e) {
log.error("Failure writing packet out to switch", e);
}
}
private String inetAddressToString(byte[] bytes) {
try {
return InetAddress.getByAddress(bytes).getHostAddress();
} catch (UnknownHostException e) {
log.warn("Invalid IP address", e);
return "";
}
}
/*
* IProxyArpService methods
*/
public void sendArpReply(ARP arpRequest, long dpid, short port, byte[] targetMac) {
log.trace("Sending reply {} => {} to {}", new Object[] {
inetAddressToString(arpRequest.getTargetProtocolAddress()),
HexString.toHexString(targetMac),
inetAddressToString(arpRequest.getSenderProtocolAddress())});
ARP arpReply = new ARP();
arpReply.setHardwareType(ARP.HW_TYPE_ETHERNET)
.setProtocolType(ARP.PROTO_TYPE_IP)
.setHardwareAddressLength((byte)Ethernet.DATALAYER_ADDRESS_LENGTH)
.setProtocolAddressLength((byte)IPv4.ADDRESS_LENGTH)
.setOpCode(ARP.OP_REPLY)
.setSenderHardwareAddress(targetMac)
.setSenderProtocolAddress(arpRequest.getTargetProtocolAddress())
.setTargetHardwareAddress(arpRequest.getSenderHardwareAddress())
.setTargetProtocolAddress(arpRequest.getSenderProtocolAddress());
Ethernet eth = new Ethernet();
eth.setDestinationMACAddress(arpRequest.getSenderHardwareAddress())
.setSourceMACAddress(targetMac)
.setEtherType(Ethernet.TYPE_ARP)
.setPayload(arpReply);
List<OFAction> actions = new ArrayList<OFAction>();
actions.add(new OFActionOutput(port));
OFPacketOut po = new OFPacketOut();
po.setInPort(OFPort.OFPP_NONE)
.setBufferId(-1)
.setPacketData(eth.serialize())
.setActions(actions)
.setActionsLength((short)OFActionOutput.MINIMUM_LENGTH)
.setLengthU(OFPacketOut.MINIMUM_LENGTH + OFActionOutput.MINIMUM_LENGTH
+ po.getPacketData().length);
List<OFMessage> msgList = new ArrayList<OFMessage>();
msgList.add(po);
IOFSwitch sw = floodlightProvider.getSwitches().get(dpid);
if (sw == null) {
log.error("Switch {} not found when sending ARP reply",
HexString.toHexString(dpid));
return;
}
try {
log.debug("Sending ARP reply to {}/{}", HexString.toHexString(sw.getId()), port);
sw.write(msgList, null);
sw.flush();
} catch (IOException e) {
log.warn("Failure writing packet out to switch", e);
}
}
@Override
public byte[] getMacAddress(InetAddress ipAddress) {
return lookupArpTable(ipAddress.getAddress());
}
@Override
public void sendArpRequest(InetAddress ipAddress, IArpRequester requester,
boolean retry) {
arpRequests.put(ipAddress, new ArpRequest(requester, retry));
//Sanity check to make sure we don't send a request for our own address
//if (!isInterfaceAddress(ipAddress)) {
if (!layer3.isInterfaceAddress(ipAddress)) {
sendArpRequestForAddress(ipAddress);
}
}
/*
* TODO These methods might be more suited to some kind of L3 information service
* that ProxyArpManager could query, rather than having the information
* embedded in ProxyArpManager. There may be many modules that need L3 information.
*/
/*
private boolean originatedOutsideNetwork(InetAddress source) {
Interface intf = interfacePtrie.match(new Prefix(source.getAddress(), 32));
if (intf != null) {
if (intf.getIpAddress().equals(source)) {
// This request must have been originated by us (the controller)
return false;
}
else {
// Source was in one of our interface subnets, but wasn't us.
// It must be external.
return true;
}
}
else {
// Source is not in one of our interface subnets. It's probably a host
// in our network as we should only receive ARPs broadcast by external
// hosts if they're in the same subnet.
return false;
}
}
private boolean originatedOutsideNetwork(long inDpid, short inPort) {
for (Interface intf : interfaces) {
if (intf.getDpid() == inDpid && intf.getPort() == inPort) {
return true;
}
}
return false;
}
private boolean isInterfaceAddress(InetAddress address) {
Interface intf = interfacePtrie.match(new Prefix(address.getAddress(), 32));
return (intf != null && intf.getIpAddress().equals(address));
}
private boolean inInterfaceSubnet(InetAddress address) {
Interface intf = interfacePtrie.match(new Prefix(address.getAddress(), 32));
return (intf != null && !intf.getIpAddress().equals(address));
}
*/
}