Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vlanmgr and Fdborch changes for PAC #3143

Open
wants to merge 44 commits into
base: master
Choose a base branch
from
Open

Vlanmgr and Fdborch changes for PAC #3143

wants to merge 44 commits into from
+530 −6

Conversation

anilkpan
Copy link
Contributor

Added Vlanmgr and Fdborch changes to support PAC.
The following PAC operations are supported to be passed down from Vlanmgr to OA for updating the ASIC DB:

  1. Port learning mode
  2. FDB entry
  3. VLAN membership

PAC HLD: https://github.com/sonic-net/SONiC/blob/master/doc/pac/Port%20Access%20Control.md

@anilkpan
Vlanmgr and Fdborch changes for PAC
f1fab49 
Added Vlanmgr and Fdborch changes to support  PAC.
@anilkpan anilkpan requested a review from prsunny as a code owner May 10, 2024 22:04
@anilkpan
Copy link
Contributor Author

The following PR needs to be merged to resolve the compilation error:
sonic-net/sonic-swss-common#871

@adyeung adyeung mentioned this pull request May 13, 2024
Merged
sutharsansr
sutharsansr reviewed Aug 19, 2024
View reviewed changes
orchagent/fdborch.cpp
@@ -1410,7 +1416,9 @@ bool FdbOrch::addFdbEntry(const FdbEntry& entry, const string& port_name,
attrs.push_back(attr);
}
}

attr.id = SAI_FDB_ENTRY_ATTR_PACKET_ACTION;
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should there be changes in fdborch to push the packet to PACD socket? https://github.com/sonic-net/SONiC/blob/master/doc/pac/Port%20Access%20Control.md#313-mab-packet-receive-flow. How are the packets delivered for authentication when MAB is enabled on the interface please?

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These packets that come to CPU are received by PACD as it registers socket for the same. If MAB is enabled, then PACD informs , the information that is required for authentication, such as mac address and the interface to MAB process. The communication between the PACD and MABD uses simple client-server socket communication.

@adyeung
Copy link

adyeung commented Oct 1, 2024

@sutharsansr pls review and sign off if you have no further comments

praveenraja1
praveenraja1 approved these changes Oct 6, 2024
View reviewed changes
cfgmgr/vlanmgr.cpp Show resolved Hide resolved
cfgmgr/vlanmgr.cpp Show resolved Hide resolved
@anilkpan
Copy link
Contributor Author

/azpw run Azure.sonic-swss

@mssonicbld
Copy link
Collaborator

/AzurePipelines run Azure.sonic-swss

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

prsunny
prsunny requested changes Oct 29, 2024
View reviewed changes
Copy link
Collaborator

@prsunny prsunny left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please add tests and fix code coverage

orchagent/orch.cpp Show resolved Hide resolved
@anilkpan anilkpan mentioned this pull request Nov 13, 2024
Closed
@anilkpan
Copy link
Contributor Author

/azpw run Azure.sonic-swss

@mssonicbld
Copy link
Collaborator

/AzurePipelines run Azure.sonic-swss

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

@anilkpan
Copy link
Contributor Author

/azpw run Azure.sonic-swss

@mssonicbld
Copy link
Collaborator

/AzurePipelines run Azure.sonic-swss

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

@adyeung
Copy link

adyeung commented Nov 19, 2024

@prsunny please help review and signoff, this is planned for 202411

@anilkpan
Copy link
Contributor Author

vstest failing after rebasing with latest upstream/master

@anilkpan
Copy link
Contributor Author

/azpw run Azure.sonic-swss

@mssonicbld
Copy link
Collaborator

/AzurePipelines run Azure.sonic-swss

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

@anilkpan
Copy link
Contributor Author

@prsunny, can you please check and approve the PR for merge for 202411?

@anilkpan
Copy link
Contributor Author

/azpw run Azure.sonic-swss

@mssonicbld
Copy link
Collaborator

/AzurePipelines run Azure.sonic-swss

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@vijaya-ops vijaya-ops vijaya-ops left review comments

@praveenraja1 praveenraja1 praveenraja1 approved these changes

@sutharsansr sutharsansr sutharsansr approved these changes

@prsunny prsunny Awaiting requested review from prsunny prsunny is a code owner

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@anilkpan @adyeung @mssonicbld @prsunny @vijaya-ops @sutharsansr @praveenraja1