vrrpd: delay sending advert/garp/una for ifup pt 2

Pt 2: When transitioning directly into Master (because we are the
address owner), wait until Zebra sets the macvlan device to protodown
off before transmitting advertisements, gratuitous ARPs, or Unsolicited
Neighbor Advertisements.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: delay sending adverts/garp/una for iface up

When transitioning to Master from Backup, wait until Zebra sets the
macvlan device to protodown off before transmitting advertisements,
gratuitous ARPs, or Unsolicited Neighbor Advertisements.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: allow user to set priority = 255

Too many problems with implicit ownership determination via duplicate
address assignment. Will revisit that in the future. For now, allow user
to specify 255 as a priority value. This is functionally no different
than any other priority value; it just serves as a self-documenting way
of saying you want one router to always be master.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix sign compare on armel

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix interface block config writes

Improper reuse of list node broke config writes of multiple instances

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix autoconfig of protodown'd interfaces

When autoconfiguring VRRP, interfaces that are protodown'd should be
automatically brought up. Otherwise Zebra won't send us their interface
addresses and we'll sit in Initialize forever.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add more debugging info

* Add reason why we are discarding adverts
* Add primary IP to show vrrp output

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix unsigned - signed cmp

For some reason this warning only shows up on armel

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: check start for manual v6 addr add

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: use parent interface LLA for advert tx

Interface MACs for v6 macvlan devices are the same, so the link local
address will be the same, which breaks mastership election based on
primary address comparison. Use the parent interface link local address.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: only update one vrrp_router list at a time

When using an autoconfigured VRRP instance, when an interface address
was added or deleted we were trying to update the address list for both
v4 and v6 vrrp_router's which sometimes would cause all the addresses to
get deleted off of one of them and result in an automatic shutdown.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: set autoconfed VRRP ifaces protodown off

If we just detected a macvlan and used it to automatically create an
interface, set that interface into protodown off. This way users don't
have to manually bring the interface back up in order to get autoconfig
to work again.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix bad fmt specifiers in dgram validator

They used a %u where they should have used a PRIu16, and a %lu where
they wanted a %zu. Shame!

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: log why vrouter could not be started

If we do a checkstart and cannot start the VRRP router, log the reason
why for debugging purposes.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: be less smart about interface state

Stop caring about interface state so much. It's screwing up autoconfig
because Zebra's message semantics are pretty much absolute nonsense when
it comes to indicating interface state.

This change will cause us to do things like attempt to transmit
advertisements on a down interface, but I'd rather have the user see
those error messages in the log file than force them to fight vrrpd to
convince it that, yes, they actually do want a VRRP instance created.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: style cleanup

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: allow configuring global defaults

Allow configuring the following as global defaults:

- Priority
- Advertisement interval
- Preempt mode
- Administrative shutdown

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add statistics collection

Collect and display the following:
- Advertisement Tx/Rx
- GARP Tx/Rx
- NDISC Tx/Rx
- # transitions

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: follow frrouting json conventions

Use camelCase for json keys

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: do not transition to backup on ifdown

Transitioning to backup on an interface down causes all sorts of
problems when it comes back up, not least of which is breaking preempt
mode.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: stop session before nulling iface

When an interface is deleted from the system, stop any attached VRRP
sessions before nulling out the interface fields.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: cleanup formatting for vty show cmd

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add json support to show command

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

lib: add more convenient boolean adder for json

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: default to accept mode = true

We have no facilities to enforce accept mode = false yet so this is
updated to reflect the actual state of the system.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add administrative shutdown option

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: don't update interface addrs on ifup

Updating interface addresses on autoconfigured VRRP instances when we
receive notification that an interface is up will cause us to delete
that VRRP instance because Zebra deletes all interface addresses when an
interfaces goes down so when it comes back up it has no addresses which
causes us to delete the instance, then Zebra subsequently sends us the
addresses which causes the instance to get recreated, however in a
non-owner scenario this will merely cause us to start in Backup, wait a
while, transition to Master, protodown off our interface, get an
interface up notification, delete all our ip addresses, destroy
ourselves, receive address notifications, recreate ourselves, reenter
Backup and cycle through it all over again.

So we just have to assume that no addresses went away since this
interface was last up.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: use if_is_operative()

Checks for interface usability instead of admin state, which is what I
wanted anyway. Also removes the operstate check when binding interfaces.
This way we can bind currently inoperative interfaces, won't start until
they're at least admin up, but *will* start if they're carrier down,
because we can fix that (and probably caused it :)

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: enable vrrp zebra debugging

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: ignore address deletion if iface is down

See code comment for explanation

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: check for v6 link-local before starting

Having a v6 link-local is a precondition for starting a v6 VRRP router;
check that we do.

Also add some helpful comments to the check-start function because good
lord that thing is getting unwieldy.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: tweak interface tracking on ifdown

Change the interface tracking code to react to an interface down by
automatically transitioning to Backup, instead of shutting down the
session. This is because we get ZEBRA_INTERFACE_DOWN messages when we
set an interface to protodown as part of transitioning to Backup; if we
shut down the session in response to these messages, we end up shutting
ourselves down every time we try to transition to Backup.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: only bind to link locals for v6 adverts

Was missing a check to make sure that the v6 address we select as the
source IP for advertisements was a link local address

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: interface tracking

* Dynamically bind interfaces when they become available
* Automatically start VRRP sessions when their interfaces are added or
  come up
* Automatically shut down VRRP sessions when their interfaces are
  deleted or go down
* Automatically unbind interfaces when they are deleted

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: better messaging for interface binds

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: skip binding interface after create

When automatically creating new VRRP instances, we don't need to try to
bind them to macvlan interfaces again. We only need to do that when we
got notified that a new interface came up and want an existing VRRP
instance to update its interface bindings.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: close sockets on shutdown

When shutting down a VRRP router, kill the sockets as well. Too
dangerous to try to reuse them.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: log addresses for autoconfig

When adding and removing addreses. log them. Also include a VRID tag
when autoconfiguring new instances.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix incorrect index for vrrp event names

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: update auto*, init scripts, etc

Add vrrpd to all the usual places daemons need to go

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix err messaging for ipv6 addr add

* Add newline to message
* Change pasted IPv4 to IPv6

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add support for configuration writing

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: remove ifindex from hash key computation

Ifindexes apparently change more often than one might expect and so are
not suitable for use in hash keys.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: set DSCP byte on adverts to CS6

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: properly retrieve pkt src address

* Fix null dereference when retrieving IPv6 source address
* Change IPv4 code path to use system-specified source address instead
  of the one delivered in the IPv4 raw header

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix bug in v6 autoconfiguration

Typo caused the IPv4 VRRP router to be shutdown instead of the IPv6 one,
and sometimes a crash.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: use debugging knobs

* Gate all debugging messages with the debugging system
* Simplify a bit of debugging where it was easy to do inline

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add debugging knobs

* Add control structures for debugging
* Add CLI commands for debugging

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: minor cosmetic fix for sh vrrp

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: set sockets to -1 after closing

This also fixes a bug where assigning the same address as a VIP twice
would succeed the second time even if it actually failed both times.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix missing \n in cli

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: autoconfig support, continued

* Add support for interface up/down + address add/del events when using
  autoconfigure mode
* Add autoconfig information to show command

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: allow creation of adverts with no addresses

Fuzz testing revealed a crash in which VRRPD tries to create an
advertisement packet with no IP addresses. Should never occur under
normal use but might as well patch.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: ingress pkt validation dbg cleanups

* Use proper format specifiers for some data
* Print the correct sizes when reporting IP size errors

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: don't restart when changing priority

Both master and backup should be able to react to priority changes
without requiring a restart.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: properly find iface in manual cfg mode

As a crutch, interface search when manually configuring VRRP on an
interface did a prefix match on the name of macvlan interfaces,
comparing its name to the name of the interface VRRP was configured on
in order to determine if the interface under question was a subinterface
of the configured interface. This is obviously fragile and prone to
failure. We now pass up parent interface info from Zebra so use that
instead to correctly deduce parent-child relationships.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: autoconfig support

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add cli for preempt mode

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: specify version when parsing vrrp packet

Move a bit more validation into vrrp_packet.c

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix skew time calculation

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: protodown macvlan in backup state

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add support for VRRPv2

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: better logging for advertisement rx

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: use ipaddr size macro

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

lib: add sizing macro to ipaddr.h

Useful for getting the size of the relevant data in the `ip` field of
struct ipaddr.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: use address cmp for priority tiebreak

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: check rx'd advertisement checksum

And retrieve source address, since we need it anyway.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: cleanup vrrp packet crafting code

* Prefix all packet functions with 'vrrp_pkt'
* Break out checksum computation into separate function
* Accept version field when building advertisements
* Update doc comments

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: use correct mtypes

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: handle address deletion, don't accept dupes

* Do nothing if user tries to add the same IP twice
* Implement deletion of IPs
* Deactivate virtual router if all IPs are deleted
* Deduplicate add / remove code

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: same VRID, different interface

Identify VRRP instances by the 2-tuple (ifp, vrid) instead of by VRID,
allowing the same instance to be configured on different interfaces.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix headers

* Add include guards where missing
* Add include guard comments where missing
* Fix copyright notices
* Sort includes

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: improve show vrrp

* Dump all relevant interface names for each instance
* Compact IPvX address display

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: send ND Router Advertisements

Send ND Router Advertisements when IPv6 VR is in Master state.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: send ICMPv6 Neighbor Advertisements

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

lib: add function to get iface link-local

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: allow searching for interfaces late

Break out code for assigning macvlan interface to a vrrp router into its
own function so it can be called multiple times. This allows bringing up
IPv4 and IPv6 at different times if all the interfaces are not created
yet.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: implement `no` variants of commands

Except removing v4/v6 addresses

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: unset active flag on shutdown

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix priority setting

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: disable multicast loopback

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: remove bad priority check

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix a few bad XFREEs

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: compute VRRPv3 checksum

Correctly compute VRRPv3 checksum. Pseudoheaders are used for both IPv4
and IPv6.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

lib: add internet checksum with pseudoheaders

Add convenience functions to compute the Internet checksum of a data
block, including a pseudoheader.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: bind sockets to interfaces

Bind Rx socket to inbound interface.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix ownership discovery and mcast OIF

* Look for virtual IP ownership on the parent of the macvlan, not the
  macvlan itself
* IPv4: bind socket to real IP of the macvlan parent, but transmit on
  the macvlan interface
* IPv6: bind socket to IPv6 link local of the macvlan interface

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: transition to master when adv timer expires

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: handle incoming advertisements

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: add initial macvlan support

* Search for macvlan interfaces with the appropriate name and MAC
  address when starting up a new VRRP instance
* Split VRRP socket into two; one for Tx, one for Rx
* Bind Tx socket to the macvlan subinterface so our VRRP advertisements
  go out with the correct MAC address
* Send ARP requests from this macvlan subinterface
* Improve error messaging

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix memleak when sending advertisements

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: read and validate vrrp advertisements

* Validate IPvX headers and packet contents
* Remove filter of non-255 TTL IPv4 packets; better to receive, log and
  drop them ourselves
* Set outgoing packet TTL / hop limit to 255
* Use existing sockopt functions

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: ipv6 support

Add initial support for IPv6.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: elect self to Master when owning v4 address

If the primary address is v4, and we own the address on our configured
interface, set ourselves to Master.

This introduces the concept of a separate priority value used to store
the configured vs effective priority.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: handle rescheduling Adver_Timer, Shutdown

* Reschedule Adver_Timer when necessary
* Handle Shutdown event appropriately for all states

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: improve logging

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: implement advertisement send

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: fix packet encode

* Properly encode VRRP packets
* Calculate checksum appropriately
* Update signature to provide caller both packet and result length

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

vrrpd: merge keepalived packet header

Pick up some smartness from keepalived.

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>

lib: add list_to_array

Signed-off-by: Quentin Young <qlyoung@cumulusnetworks.com>