test: added router integration test (intrusive)

Author: alfreb

test/net/integration/router/CMakeLists.txt

@@ -0,0 +1,19 @@
+cmake_minimum_required(VERSION 2.8.9)
+
+# IncludeOS install location
+if (NOT DEFINED ENV{INCLUDEOS_PREFIX})
+  set(ENV{INCLUDEOS_PREFIX} /usr/local)
+endif()
+
+set(CMAKE_TOOLCHAIN_FILE $ENV{INCLUDEOS_PREFIX}/includeos/i686-elf-toolchain.cmake)
+
+project (test_udp)
+
+set(SERVICE_NAME "Routing test service")
+set(BINARY       "test_router")
+set(MAX_MEM 128)
+set(SOURCES service.cpp)
+set(DRIVERS virtionet) #vmxnet3
+
+# include service build script
+include($ENV{INCLUDEOS_PREFIX}/includeos/service.cmake)

test/net/integration/router/diagram.md

@@ -0,0 +1,25 @@
+                                                                                                                      +
+                                            +--------------------+                          Network Namespace 0       |     Network Namespace 1
+                                            |                    |                                                    |
+                                            |     IncludeOS      |                                                    |
+                                            |      router        |                                                    |
+                                            |                    |                                                    |
+                                            | eth0          eth1 |                                                    |
+                   +-------------------+    +--+--------------+--+    +-------------------+       +------------+      |      +------------+
+                   |                   |       ^              |       |                   |       |            |      |      |            |
+                   |  Bridge43 (Linux) +-------+              +------>+  Bridge44 (Linux) +------>+   veth0    +------------>+   veth1    |
+                   |     TAP device    |                              |     TAP device    |       |  (NO IP)   |      |      | 10.42.42.2 |
+                   |      10.0.0.1     |                              |      (NO IP)      |       |            |      |      |            |
+                   |                   |                              |                   |       +------------+      |      +-----+------+
+                   +--------+----------+                              +-------------------+                           |            |
+                            ^                                                                                         |            |
+                            |                                                                                         |            |
+                            |                                                                                         |            |
+$ nc 10.42.42.2 -u 4242 +---+                                                                                         |            +--> $ nc -u -l 10.42.42.2 4242
+                                                                                                                      |
+                                                                                                                      |
+                                                                                                                      |
+                                                                                                                      |
+                                                                                                                      |
+                                                                                                                      +
+

test/net/integration/router/service.cpp

@@ -0,0 +1,123 @@
+// This file is a part of the IncludeOS unikernel - www.includeos.org
+//
+// Copyright 2015 Oslo and Akershus University College of Applied Sciences
+// and Alfred Bratterud
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// #define DEBUG // Debug supression
+// #define NO_INFO
+
+#include <os>
+#include <kernel/irq_manager.hpp>
+#include <list>
+#include <net/inet4>
+#include <net/router.hpp>
+#include <timers>
+#include <profile>
+
+#define USE_STACK_SAMPLING
+
+using namespace net;
+using namespace std::chrono;
+
+std::unique_ptr<Router<IP4> > router;
+
+bool route_checker(IP4::addr addr) {
+  INFO("Route checker", "asked for route to IP %s", addr.to_string().c_str());
+
+  bool have_route = router->route_check(addr);
+
+  INFO("Route checker", "The router says %i", have_route);
+
+  if (have_route)
+    INFO2("* Responding YES");
+  else
+    INFO2("* Responding NO");
+
+  return have_route;
+}
+
+void ip_forward (Inet<IP4>& stack,  IP4::IP_packet_ptr pckt) {
+
+  // Packet could have been erroneously moved prior to this call
+  if (not pckt)
+    return;
+
+  Inet<IP4>* route = router->get_first_interface(pckt->dst());
+
+  if (not route){
+    INFO("ip_fwd", "No route found for %s dropping\n", pckt->dst().to_string().c_str());
+    return;
+  }
+
+  if (route == &stack) {
+    INFO("ip_fwd", "* Oh, this packet was for me, sow why was it forwarded here? \n");
+    return;
+  }
+
+  debug("ip_fwd %s transmitting packet to %s", ifname, route->ifname().c_str());
+  route->ip_obj().ship(std::move(pckt));
+}
+
+
+void Service::start(const std::string&)
+{
+  auto& inet = Inet4::stack<0>();
+  inet.network_config({  10,  0,  0, 42 },   // IP
+                      { 255, 255, 0,  0 },   // Netmask
+                      {  10,  0,  0,  1 } ); // Gateway
+
+  INFO("Router","Interface 1 IP: %s\n", inet.ip_addr().str().c_str());
+
+  auto& inet2 = Inet4::stack<1>();
+  inet2.network_config({  10,  42,  42, 43 },   // IP
+                      { 255, 255, 255,  0 },   // Netmask
+                      {  10,  42,  42,  2 } ); // Gateway
+
+  INFO("Router","Interface2 IP: %s\n", inet2.ip_addr().str().c_str());
+
+
+  // IP Forwarding
+  inet.ip_obj().set_packet_forwarding(ip_forward);
+  inet2.ip_obj().set_packet_forwarding(ip_forward);
+
+  // ARP Route checker
+  inet.set_route_checker(route_checker);
+  inet2.set_route_checker(route_checker);
+
+
+  /** Some times it's nice to add dest. to arp-cache to avoid having it respond to arp */
+  // inet2.cache_link_ip({10,42,42,2}, {0x10,0x11, 0x12, 0x13, 0x14, 0x15});
+  // inet2.cache_link_ip({10,42,42,2}, {0x1e,0x5f,0x30,0x98,0x19,0x8b});
+  // inet2.cache_link_ip({10,42,42,2}, {0xc0,0x00, 0x10, 0x00, 0x00, 0x02});
+
+  // Routing table
+  Router<IP4>::Routing_table routing_table{
+    {{10, 42, 42, 0 }, { 255, 255, 255, 0}, {10, 42, 42, 2}, inet2 , 1 },
+    {{10, 0, 0, 0 }, { 255, 255, 255, 0}, {10, 0, 0, 1}, inet , 1 }
+  };
+
+  router = std::make_unique<Router<IP4>>(Super_stack::inet().ip4_stacks(), routing_table);
+
+  INFO("Router", "Routing enabled - routing table:");
+
+  for (auto r : routing_table)
+    INFO2("* %s/%i -> %s / %s, cost %i", r.net().str().c_str(),
+          __builtin_popcount(r.netmask().whole),
+          r.interface()->ifname().c_str(),
+          r.gateway().str().c_str(),
+          r.cost());
+  printf("\n");
+  INFO("Router","Service ready");
+}

test/net/integration/router/setup.sh

@@ -0,0 +1,70 @@
+#! /bin/bash
+source_net=10.0.0.0/24
+source_bridge=bridge43
+
+dest_net=10.42.42.0/24
+dest_bridge=bridge44
+dest_gateway=10.42.42.2
+
+
+export NSNAME="server1"
+shopt -s expand_aliases
+alias server1="sudo ip netns exec $NSNAME"
+
+setup() {
+
+  # TODO: it's probably not nice to install test deps here
+  sudo apt install iperf3
+
+  # Make sure the default bridge exists
+  $INCLUDEOS_PREFIX/includeos/scripts/create_bridge.sh
+
+  # Create veth link
+  sudo ip link add veth_src type veth peer name veth_dest
+
+  # Bring up source end
+  sudo ip link set veth_src up
+
+  # Add network namespace
+  sudo ip netns add $NSNAME
+
+  # Add destination to namespace
+  sudo ip link set veth_dest netns $NSNAME
+
+  # Bring up destination end, with IP, inside namespace
+  server1 ip addr add $dest_gateway/24 dev veth_dest
+  server1 ip link set veth_dest up
+  server1 ip link set lo up
+
+  # Create a second bridge and bring it up, no IP
+  sudo brctl addbr $dest_bridge
+  sudo ip link set dev $dest_bridge up
+
+  # Add source end to bridge44
+  sudo brctl addif $dest_bridge veth_src
+
+  # Route all traffic to the isolated network via bridge43
+  sudo ip route add $dest_net dev $source_bridge
+
+  # Route all traffic from server1 back to root namespace, via veth_dest
+  server1 sudo ip route add $source_net via $dest_gateway
+
+}
+
+undo(){
+  echo ">>> Deleting $dest_bridge"
+  sudo ip link set $dest_bridge down
+  sudo brctl delbr $dest_bridge
+  echo ">>> Deleting namespace and veth pair"
+  sudo ip netns del $NSNAME
+  echo ">>> Deleting route to namespace"
+  sudo ip route del $dest_net dev $source_bridge
+}
+
+
+if [ "$1" == "--clean" ]
+then
+  undo
+else
+  setup
+fi

test/net/integration/router/test.py

@@ -0,0 +1,69 @@
+#! /usr/bin/env python
+
+import sys
+import os
+import subprocess
+import thread
+
+includeos_src = os.environ.get('INCLUDEOS_SRC',
+                               os.path.realpath(os.path.join(os.getcwd(), os.path.dirname(__file__))).split('/test')[0])
+print 'includeos_src: {0}'.format(includeos_src)
+sys.path.insert(0,includeos_src)
+
+from vmrunner import vmrunner
+
+if1 = "tap0"
+if2 = "tap1"
+br1 = "bridge43"
+br2 = "bridge44"
+
+iperf_cmd = "iperf3"
+iperf_server_proc = None
+transmit_size = "100M"
+
+nsname="server1"
+
+def move_tap1(o):
+    print "Moving",if2, "to", br2
+    subprocess.call(["sudo", "brctl", "delif", br1, if2])
+    subprocess.call(["sudo", "brctl", "addif", br2, if2])
+
+
+def clean():
+    subprocess.call(["sudo","pkill",iperf_cmd])
+    subprocess.call(["./setup.sh", "--clean"])
+
+
+def iperf_server():
+    global iperf_server_proc, iperf_srv_log
+    iperf_server_proc = subprocess.Popen(["sudo","ip","netns","exec", nsname, iperf_cmd, "-s"],
+                                    stdout = subprocess.PIPE,
+                                    stdin = subprocess.PIPE,
+                                    stderr = subprocess.PIPE)
+
+def iperf_client(o):
+    print "Starting iperf client. Iperf output: "
+    print subprocess.check_output([iperf_cmd,"-c","10.42.42.2","-n", transmit_size])
+    vmrunner.vms[0].exit(0, "Test completed without errors")
+    return True
+
+
+subprocess.call("./setup.sh")
+
+vm = vmrunner.vms[0]
+
+# Move second interface to second bridge, right after boot
+# TODO: Add support for per-interface qemu-ifup scripts instead?
+vm.on_output("#include<os>", move_tap1)
+
+
+# Start iperf server right away, client when vm is up
+thread.start_new_thread(iperf_server, ())
+vm.on_output("Service ready", iperf_client)
+
+
+# Clean
+vm.on_exit(clean)
+
+# Boot the VM, taking a timeout as parameter
+vm.cmake().boot(30).clean()

test/net/integration/router/vm.json

@@ -0,0 +1,7 @@
+{
+  "image": "test_router.img",
+  "cpu" : "host",
+  "mem" : 320,
+  "net" : [{"device" : "virtio"},
+           {"device" : "virtio"}]
+}