ligang/vpp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
vpp/test
History
Ole Troan 5297447bd6 nat: tweak rfc7857 tcp connection tracking 
The RFC7857 state machine introduced in 56c492a is a trade-off.
It tries to retain sessions as much as possible and also offers
some protection against spurious RST by re-establishing sessions if data
is received after the RST. From experience in the wild, this algorithm is
a little too liberal, as it leaves too many spurious established sessions
in the session table.

E.g. a oberserved pattern is:
client      server
         <- FIN, ACK
ACK      ->
ACK      ->
RST, ACK ->

With the current state machine this would leave the session in established state.

These proposed changes do:
 - require 3-way handshake to establish session.
   (current requires only to see SYNs from both sides)
 - RST will move session to transitory without recovery if data is sent after
 - Only a single FIN is needed to move to transitory

Fixes: 56c492aa0502751de2dd9d890096a82c5f04776d
Type: fix
Signed-off-by: Ole Troan <ot@cisco.com>
Change-Id: I92e593e00b2efe48d04997642d85bd59e0eaa2ea
Signed-off-by: Ole Troan <ot@cisco.com>
2022-04-21 10:35:58 +00:00
..
patches
build: Make the build work on Debian 11
2022-02-07 18:40:51 +00:00
scapy_handlers
scripts
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
bfd.py
bfd: Add an update API that has create new or modify existing semantics
2022-02-09 13:47:29 +00:00
config.py
tests: fix the RND_SEED parsing
2022-03-18 20:11:26 +00:00
debug_internal.py
debug.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
discover_tests.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
framework.py
tests: fix DEBUG=attach functionality
2022-03-22 00:50:23 +00:00
hook.py
tests: fix core file message
2022-03-27 09:21:34 +00:00
ipfix.py
tests: py2 cleanup - remove subclassing of object
2020-12-07 08:17:10 +00:00
lisp.py
tests: py2 cleanup - remove subclassing of object
2020-12-07 08:17:10 +00:00
log.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
Makefile
tests: fix DEBUG=attach functionality
2022-03-22 00:50:23 +00:00
remote_test.py
build: remove unnecessary executable bits
2021-11-02 22:26:34 +00:00
requirements-3.txt
tests: Update python packages
2022-02-07 16:39:35 +00:00
requirements.txt
tests: Update python packages
2022-02-07 16:39:35 +00:00
run_tests.py
tests: fix core file message
2022-03-27 09:21:34 +00:00
sanity_import_vpp_papi.py
misc: Fix python scripts shebang line
2019-11-05 21:08:59 +00:00
sanity_run_vpp.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
template_bd.py
tests: remove py2/py3 six compatability library
2020-12-03 19:43:23 +00:00
template_classifier.py
ip: add classifier-based ACLs support on ip punt
2021-10-06 11:58:43 +00:00
template_ipsec.py
ipsec: perf improvement of ipsec4_input_node using flow cache
2022-04-14 12:46:51 +00:00
test_abf.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_acl_plugin_conns.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_acl_plugin_l2l3.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_acl_plugin_macip.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_acl_plugin.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_adl.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_api_trace.py
api: API trace improvements
2021-09-28 16:06:19 +00:00
test_arping.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_bfd.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_bier.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_bihash.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_bond.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_buffers.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_cdp.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_classifier_ip6.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_classifier.py
classify: add API to retrieve punt ACL tables
2022-03-08 18:16:03 +00:00
test_classify_l2_acl.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_cli.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_cnat.py
vlib: add virtual time support
2021-11-22 16:44:26 +00:00
test_container.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_counters.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_crypto.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_det44.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_dhcp6.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_dhcp.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_dns.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_dslite.py
nat: nat44-ed cleanup & fixes
2022-04-01 13:26:04 +00:00
test_dvr.py
misc: deprecate gbp and its dependents
2021-11-23 13:03:36 +00:00
test_endian.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_fib.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_flowprobe.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_geneve.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_gre.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_gro.py
gso: do not gro on small packets
2021-09-27 09:54:56 +00:00
test_gso.py
ip: rate-limit the sending of ICMP error messages
2022-03-04 16:14:11 +00:00
test_gtpu.py
udp: fix severity error info
2021-10-07 15:34:31 +00:00
test_http.py
tests: add http tps test
2022-03-22 14:31:45 +00:00
test_igmp.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_ikev2.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_interface_crud.py
tests: add interface function chaining
2019-12-04 23:16:44 +00:00
test_ip4_irb.py
ip: Protocol Independent IP Neighbors
2019-12-17 10:56:20 +00:00
test_ip4_vrf_multi_instance.py
build: remove unnecessary executable bits
2021-11-02 22:26:34 +00:00
test_ip4.py
ip: The check for 'same packet' must include the FIB index
2022-03-24 15:39:16 +00:00
test_ip6_nd_mirror_proxy.py
ip6-nd: add ip6-nd proxy
2021-09-16 07:12:13 +00:00
test_ip6_vrf_multi_instance.py
ip: unlock_fib on if delete
2021-11-23 09:03:30 +00:00
test_ip6.py
ip6-nd: stop sending RA by default
2022-03-24 14:26:28 +00:00
test_ip_ecmp.py
ip: Protocol Independent IP Neighbors
2019-12-17 10:56:20 +00:00
test_ip_mcast.py
fib: fix the drop counter for ipv6 RPF failures
2021-10-12 16:55:08 +00:00
test_ipfix_export.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_ipip.py
tests: fix test failure with parrallel test
2022-03-10 14:08:19 +08:00
test_ipsec_ah.py
tests docs: upgrade python packages
2021-08-13 15:57:21 +00:00
test_ipsec_api.py
ipsec: User can choose the UDP source port
2020-05-05 18:36:33 +00:00
test_ipsec_default.py
ipsec: input: drop by default for non-matching pkts
2022-03-08 17:43:43 +00:00
test_ipsec_esp.py
docs: vnet comment nitfixes
2021-10-06 12:32:20 +00:00
test_ipsec_nat.py
build: remove unnecessary executable bits
2021-11-02 22:26:34 +00:00
test_ipsec_spd_flow_cache_input.py
ipsec: perf improvement of ipsec4_input_node using flow cache
2022-04-14 12:46:51 +00:00
test_ipsec_spd_flow_cache_output.py
ipsec: perf improvement of ipsec4_input_node using flow cache
2022-04-14 12:46:51 +00:00
test_ipsec_tun_if_esp.py
ipsec: IPSec interface correct drop w/ no protection
2022-01-17 19:55:13 +00:00
test_l2_fib.py
vlib: add virtual time support
2021-11-22 16:44:26 +00:00
test_l2_flood.py
tests: python3 use byte strings in raw()
2019-11-08 13:25:56 +00:00
test_l2bd_arp_term.py
ip: Protocol Independent IP Neighbors
2019-12-17 10:56:20 +00:00
test_l2bd_learnlimit_bdenabled.py
tests: fix test failure with parrallel test
2022-03-10 14:08:19 +08:00
test_l2bd_learnlimit_enabled.py
tests: fix test failure with parrallel test
2022-03-10 14:08:19 +08:00
test_l2bd_learnlimit.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_l2bd_multi_instance.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_l2bd.py
misc: Fix python scripts shebang line
2019-11-05 21:08:59 +00:00
test_l2tp.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_l2xc_multi_instance.py
misc: Fix python scripts shebang line
2019-11-05 21:08:59 +00:00
test_l2xc.py
misc: Fix python scripts shebang line
2019-11-05 21:08:59 +00:00
test_l3xc.py
tests: Consolidate the implementations of send_and_expect_X
2022-02-18 09:20:40 +00:00
test_lacp.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_lb_api.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_lb.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_linux_cp.py
tests: Remove the error output from the linux-cp tests
2021-11-09 17:29:32 +00:00
test_lisp.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_mactime.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_map_br.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_map.py
ip: IPv4 Fragmentation fix for l2fragmetable size
2022-03-09 19:15:05 +00:00
test_memif.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_mpcap.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_mpls.py
mpls: Set the MTU field in the frag-needed ICMP when doing MPLS fragmentation
2022-03-24 13:56:43 +00:00
test_mss_clamp.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_mtu.py
ip: rate-limit the sending of ICMP error messages
2022-03-04 16:14:11 +00:00
test_nat44_ed_output.py
nat: nat44-ed cleanup & fixes
2022-04-01 13:26:04 +00:00
test_nat44_ed.py
nat: tweak rfc7857 tcp connection tracking
2022-04-21 10:35:58 +00:00
test_nat44_ei.py
ip: rate-limit the sending of ICMP error messages
2022-03-04 16:14:11 +00:00
test_nat64.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_nat66.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_neighbor.py
vlib: add virtual time support
2021-11-22 16:44:26 +00:00
test_node_variants.py
build: rework x86 CPU variants
2020-04-30 13:25:29 +02:00
test_offload.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_p2p_ethernet.py
ip-neighbor: Use ip_address_t rather than ip46_address_t
2020-11-20 10:27:01 +00:00
test_pcap.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_pg.py
pg: A Tunnel mode variant of a pg interface
2021-06-14 13:12:34 +00:00
test_ping.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_pipe.py
gre: set proper fib index for unnumbered interfaces, unset fib index before forwarding gre payload
2021-07-28 08:25:38 +00:00
test_pnat.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_policer_input.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_policer.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_pppoe.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_punt.py
ip: rate-limit the sending of ICMP error messages
2022-03-04 16:14:11 +00:00
test_qos.py
misc: Fix python scripts shebang line
2019-11-05 21:08:59 +00:00
test_quic.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_reassembly.py
ip: rate-limit the sending of ICMP error messages
2022-03-04 16:14:11 +00:00
test_session.py
tests: add segment manager tests
2021-12-02 17:53:11 +00:00
test_sixrd.py
ip: Protocol Independent IP Neighbors
2019-12-17 10:56:20 +00:00
test_span.py
vxlan: vxlan/vxlan.api API cleanup
2020-03-16 09:18:46 +00:00
test_sparse_vec.py
misc: Fix python scripts shebang line
2019-11-05 21:08:59 +00:00
test_srmpls.py
ip: Protocol Independent IP Neighbors
2019-12-17 10:56:20 +00:00
test_srv6_ad_flow.py
tests: fix test failure with parrallel test
2022-03-10 14:08:19 +08:00
test_srv6_ad.py
tests: fix test failure with parrallel test
2022-03-10 14:08:19 +08:00
test_srv6_as.py
tests: fix test failure with parrallel test
2022-03-10 14:08:19 +08:00
test_srv6_mobile.py
srv6-mobile: Update GTP4/6.D function
2022-01-05 10:52:22 +00:00
test_srv6_un.py
tests: Fix unversioned python shebang lines
2020-11-30 16:56:43 -05:00
test_srv6.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_stats_client.py
stats: fix memory leaks
2022-02-06 11:45:11 +00:00
test_string.py
unittest: remove clib_count_equal_* tests
2021-11-06 16:44:56 +00:00
test_svs.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_syslog.py
tests: vpp_interface remove deprecated packed properties
2020-05-03 15:21:42 -04:00
test_tap.py
tap: implement sw_interface_tap_v2_dump filtering by sw_if_index
2020-05-01 18:08:45 +00:00
test_tcp.py
hsa: fix builtin echo apps with multiple workers
2021-03-04 10:59:11 +00:00
test_tls.py
tests: remove bond, pipe, session and api_namespace from vpp_papi_provider
2020-11-24 11:24:53 +01:00
test_trace_filter.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_udp.py
udp: fix inner packet checksum calculation in udp-encap
2022-03-30 17:51:33 +00:00
test_urpf.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_util.py
build: remove unnecessary executable bits
2021-11-02 22:26:34 +00:00
test_vapi.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_vcl.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_vhost.py
devices: vhost API cleanup
2019-12-11 15:23:55 +00:00
test_vlib.py
tests: fix core file message
2022-03-27 09:21:34 +00:00
test_vpe_api.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_vppinfra.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_vrrp.py
ip: fix arc start in ip46-local for local mfib entries
2022-04-12 16:06:43 +00:00
test_vtr.py
interface: Allow VLAN tag-rewrite on non-sub-interfaces too.
2019-11-12 20:37:55 +00:00
test_vxlan6.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
test_vxlan_gpe.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
test_vxlan.py
vxlan: add l2 mode test
2022-03-09 15:04:26 +00:00
test_wireguard.py
build: remove unnecessary executable bits
2021-11-02 22:26:34 +00:00
util.py
tests: better reporting for unexpected packets
2022-02-24 12:51:33 +00:00
vpp_acl.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_bier.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_bond_interface.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_bvi_interface.py
vpp_devices.py
tap: implement sw_interface_tap_v2_dump filtering by sw_if_index
2020-05-01 18:08:45 +00:00
vpp_dhcp.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_gre_interface.py
gre: Tunnel encap/decap flags
2020-01-30 20:12:19 +00:00
vpp_igmp.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_ikev2.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_interface.py
stats: python vpp_stats rewrite to access stat segment directly
2021-03-25 08:37:46 +00:00
vpp_ip_route.py
fib: Allow the creation of new source on the API
2021-03-16 12:12:23 +00:00
vpp_ip.py
ip: The check for 'same packet' must include the FIB index
2022-03-24 15:39:16 +00:00
vpp_ipip_tun_interface.py
linux-cp: Add tests for tun devices
2021-06-14 13:13:13 +00:00
vpp_ipsec.py
ipsec: Record the number of packets lost from an SA
2021-09-29 14:27:48 +00:00
vpp_l2.py
tests: Apply the 'return self' pattern for the L2 objects
2021-11-03 10:54:43 +00:00
vpp_lb.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_lo_interface.py
vpp_memif.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_mpls_tunnel_interface.py
vpp_neighbor.py
stats: python vpp_stats rewrite to access stat segment directly
2021-03-25 08:37:46 +00:00
vpp_object.py
tests: py2 cleanup - remove subclassing of object
2020-12-07 08:17:10 +00:00
vpp_papi_provider.py
tests: make tests less make dependent
2022-02-17 18:02:35 +00:00
vpp_pg_interface.py
tests: better reporting for unexpected packets
2022-02-24 12:51:33 +00:00
vpp_policer.py
tests: test input policer
2021-02-19 10:48:20 +00:00
vpp_pppoe_interface.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_qos.py
vpp_srv6.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vpp_sub_interface.py
ip: add IPv6 ping test for link-layer address
2021-01-20 13:53:33 +00:00
vpp_teib.py
tests: Fix unversioned python shebang lines
2020-11-30 16:56:43 -05:00
vpp_tunnel_interface.py
tests: remove py2/py3 six compatability library
2020-12-03 19:43:23 +00:00
vpp_udp_decap.py
udp: add udp decapsulation
2021-05-29 18:13:01 +00:00
vpp_udp_encap.py
misc: Fix python scripts shebang line
2019-11-05 21:08:59 +00:00
vpp_vhost_interface.py
vhost: Add event index for interrupt notification to driver
2021-01-08 13:10:58 +00:00
vpp_vxlan_gpe_tunnel.py
vxlan-gpe: add udp-port configuration support
2021-10-08 11:38:56 +00:00
vpp_vxlan_tunnel.py
tests: move test source to vpp/test
2021-05-13 09:33:06 +00:00
vrf.py