Released: 02/04/2025
Due: 02/27/2025

Part 0: Overview and Setup

Overview

Your task is to implement a basic switch and router using P4 for the data plane and Python for the control plane.

Setup

Clone the skeleton code to your private repository.

  • To obtain the skeleton code, create a private repository by selecting Use this template> Create a repository on the GitHub repository page.
  • Don’t forget to select Private while creating the repository.

Note: You should instantiate your experiment in the same way in A0 and A1.

  • Make sure to use profile cs356-base
  • Make sure to specify your group during instantiation. If you cannot see the Group options yet, please contact TA through Ed or email.

Note: Don’t forget to execute below for every CloudLab experiment instantiation.

  • After ssh to the reserved node, type the commands below. $ sudo usermod -aG docker $USER
  • Then restart the SSH session to make sure the changes are applied.

Note: You should save changes you make to your private GitHub repo. Otherwise, you will lose the changes when your CloudLab experiment ends.

Part 1: Switching with P4

Overview

In this part of the assignment, you will implement a software switch with P4. Kathara lab for this part is located in assignment2/labs/star_four_hosts. The skeleton codes are located in the assignment2/labs/star_four_hosts/shared. The virtual network topology is illustrated below. P1_topology Your task is to complete l2_basic_forwarding.p4 and controller.py to make the switch s1 work so that h[1-4] can talk to each other.

Specification

  1. Parse the ethernet header.
    • P4 task: Complete the definition of header ethernet_t.
      Task specificaiton
      • The parser is already implemented, and your job is to define an ethernet header format, header ethernet_t.
      • You don’t have to include a 64-bit preamble to the header format definition as it’s part of physical layer.
  2. Implement forwarding.
    • P4 task: Complete the definition of table dmac_forward.
      Task specification
      • Check whether the destination MAC address has a MAC-to-port mapping
      • Upon hit, forward the packet to the retrieved port using action forward_to_port().
      • Upon miss, broadcast the packet using action broadcast().

  3. Implement MAC learning. MAC-to-port mapping should expire after 15 seconds from the last packet arrival from the interface.

    • P4 task: Complete the definition of table smac_table.
      Task specification
      • Check whether the source MAC address of the packet has a MAC-to-port mapping.
      • Upon hit, do nothing (NoAction()).
      • Upon miss, send the MAC-to-port mapping to the controller (learn()).
        • Define a MAC learning digest message format, struct mac_learn_digest_t. It should contain the 48-bit source MAC address and 9-bit ingress port of the packet.
        • Complete the action learn() by initializing the MAC learning digest message.
    • Controller task: Install table entries for the tables when a digest message arrives. Set a 15-second timeout for each entry.
      Task specification
      • Table entry insertion API is provided. Please refer to the Appendix for details.
      • smac_table: Install a table entry with the MAC address as a key. NoAction() as an action.
      • dmac_forward: Install a table entry with the MAC address as a key, forward_to_port() as an action, and egress_port as an action parameter.

Test your implementation

  1. Compile the P4 code and launch the P4 and controller program on the switch (s1).
    • All the necessary commands are provided as script files in the Kathara lab’s shared directory.
    • After starting the Kathara lab, compile the P4 code with $ bash compile_p4.sh on s1. For example: 
      # under `star_four_hosts/` directory
kathara connect s1
cd /shared && bash compile_p4.sh
    • Then launch the compiled P4 program with $ bash run_switch.sh and the controller with $ bash run_controller.sh on s1. Both scripts are located in the shared directory.
  2. Test the functionality.
    • You may use ping to check whether your switch works as expected on a host (h[1-4]).
    • Once you implement forwarding, the packet should arrive at each host in the local network except the sender for every ping.
    • Once you implement MAC learning, the packet should arrive at each host in the local network except the sender until the table insertion is done. Then, the packet must arrive only at the destination host until the table entry expires. In other words, if the broadcasting behavior disappears after some time, you have implemented MAC learning properly.
    • To check if the packet arrives at a host, use tcpdump -i <interface> (e.g., tcpdump -i eth0) to sniff the packet on the host’s interface. The interface name can be retrieved by using ifconfig. For more details, refer to man tcpdump. Use tcpdump -i any to sniff packets from all interfaces.

Part 2: Router with P4

Overview

In this part of the assignment, you will implement a static software router with P4. Since it’s static, it routes a packet based on a given routing information. Kathara lab for this part is located in assignment2/labs/three_routers_three_hosts. The skeleton codes are located in the assignment2/labs/three_routers_three_hosts/shared. The virtual network topology is illustrated below. P2_topology

Your task is to complete l3_static_routing.p4 and controller.py to make the routers r[1-3] work so that hosts in different local networks can talk to each other.

Specification

  1. Parse the ethernet and IPv4 header.
    • Define a ethernet header format, header ethernet_t, and an IPv4 header format, header ipv4_t
    • Complete the state parse_ethernet in MyParser(). Check the ethernet frame type, and go to the parse_ipv4 state if the frame type is IPv4. Otherwise, accept the packet.
  2. Implement a routing table
    • P4 task: Define tables and actions.
      Task specification
      • Complete the definition of table ipv4_route.
        • Perform the longest prefix matching on dstIP.
        • Upon hit, record the next hop IP address (provided by the controller) in the metadata meta’s next_hop field using action forward_to_next_hop.
        • Upon miss, drop the packet.
      • Complete the definition of table arp_table.
        • Perform exact matching on the next_hop in the metadata meta.
        • Upon hit, change the dstMAC (provided by the controller) using action change_dst_mac.
        • Upon miss, drop the packet.
      • Complete the definition of table dmac_forward.
        • Perform an exact match on the destination MAC address of the packet.
        • Upon hit, change the egress port. (provided by the controller). Update the source MAC address to the egress port’s MAC address. (provided by the controller). Do this by completing and using action forward_to_port.
        • Upon miss, drop the packet.
      • Apply the tables in the apply block.
    • Controller task: Install the table entries for each table defined in the P4 code.
      Task specification
      • Parsing of routing information is provided in the skeleton code.
      • Table entry insertion API is provided. Please refer to the Appendix for details.
      • ipv4_route: Install table entries with the destination IP address as a key, forward_to_next_hop as an action, and next_hop_ip as an action parameter.
      • arp_table: Install table entries with the next_hop in the metadata as a key, change_mac as an action, and next_hop_mac as an action parameter.
      • dmac_forward: Install table entries with the MAC address as a key, forward_to_port() as an action, and egress_port and egress_mac as action parameters.
  3. Checksum and TTL
    • P4 task: Decrement the TTL field of the IPv4 header by 1.
      Task specification
      • Complete the definition of action decrement_ttl()
      • Call the action in the apply block in MyIngress().
    • P4 task: Verify and update the checksum field of the IPv4 header
      Task specification
      • Complete MyVerifyChecksum() and MyUpdateChecksum() using extern verify_checksum() and extern update_checksum.
      • They are defined in this link. Expand the below for a brief usage.
        extern usage

        extern void verify_checksum<T, O>(in bool condition, in T data, in O checksum, HashAlgorithm algo) extern void update_checksum<T, O>(in bool condition, in T data, inout O checksum, HashAlgorithm algo)

        • If the condition is false, the operation is not applied. (They don’t indicate a checksum error and change the checksum value.)
        • data is a tuple of values whose checksum is computed. The types of the values should be bit, int, or varbit.
        • checksum is the checksum of data that will be verified or updated.
        • Use HashAlgorithm.csum16 as algo
        • You don’t have to specify T and O explicitly.
        • Usage example: 
            /* Checksum will be calculated over all header fields but csum */
  /* as in the IP header checksum computation */
  header myproto_t {
      bit<4> ver;
      bit<4> hlen;
      bit<8> flags;
      bit<16> id;
      bit<16> len;
      bit<16> csum;
      bit<32> srcAddr;
      bit<32> dstAddr;
  }
  struct headers {
      myproto_t myproto;
  }
  ...
  control MyVerifyChecksum(inout headers hdr, inout metadata meta) {
      apply {
          verify_checksum(true,
              /* A tuple is enclosed in curly brackets*/
              { hdr.myproto.ver,
                  hdr.myproto.hlen,
                  hdr.myproto.flags,
                  hdr.myproto.id,
                  hdr.myproto.len,
                  hdr.myproto.srcAddr,
                  hdr.myproto.dstAddr
              },
              hdr.myproto.csum,
              HashAlgorithm.csum16);
      }
  }
  ...
  control MyComputeChecksum(inout headers hdr, inout metadata meta) {
      apply {
          update_checksum(true,
              /* A tuple is enclosed in curly brackets*/
              { hdr.myproto.ver,
                  hdr.myproto.hlen,
                  hdr.myproto.flags,
                  hdr.myproto.id,
                  hdr.myproto.len,
                  hdr.myproto.srcAddr,
                  hdr.myproto.dstAddr
              },
              hdr.myproto.csum,
              HashAlgorithm.csum16);
      }
  }

Test your implementation

  1. Compile the P4 code and launch the P4 and controller program on the routers (r[1-3]).
    • All the necessary commands are provided as script files in the Kathara lab’s shared directory.
    • After starting the Kathara lab, compile the P4 code with $ bash compile_p4.sh on one of any r[1-3] routers. For example: 
       # under `three_routers_three_hosts/` directory
 kathara connect r1
 cd /shared && bash compile_p4.sh
    • Then, on each router, launch the compiled P4 program with $ bash run_router.sh and the controller with $ bash r[1-3]_run_controller.sh.
  2. Test the functionality.
    • You may use ping to check whether your router works as expected on a host (h[1-3]).
    • To check if the packet arrives at a host, use $ tcpdump -i <interface> (e.g., tcpdump -i eth0) to sniff the packet on the host’s interface. The interface name can be retrieved by using ifconfig. For more details, refer to man tcpdump. Use tcpdump -i any to sniff packets from all interfaces.
    • To verify IPv4 checksum and check the TTL field, add the -v flag to the tcpdump command (e.g., tcpdump -v -i any).

Submission

Please submit your code (modified assignment2 repository) to the Canvas Assignments page in either tar.gz or zip format. The naming format for the file is assign2_groupX.[tar.gz/zip].

Appendix: Table Insertion API for controller.py

  1. Create a table entry you want to insert. In the skeleton code, the instance of the helper class, p4info_helper, is already created and initialized. Its role is to interpret the human-readable format of P4 objects in the way that the P4 program understands. To build a table entry in a way that the P4 program understands, you can use the helper class’s buildTableEntry() method. Its API is described below. 
     def buildTableEntry(self,
                     table_name, # human-readable table name in string
                     match_fields=None, # a dictionary with a human-readable match field as a key and its value as a value
                     default_action=False, # human-readable default action name in string (This is not necessary if you already define the default_action in the P4 code)
                     action_name=None, # human-readable action name in a string (This action is executed upon hit)
                     action_params=None, # a dictionary with a human-readable action parameter name as a key and its value as a value
                     priority=None # unused in our case ):

    For the value for the match_fields and action_params dictionaries, here’s a guideline to the format of the value:

    • IP address: String in the dotted decimal notation (e.g., 10.0.0.1)
    • IP prefix for longest prefix matching: a tuple with IP prefix in string and prefix length in integer. (e.g., (10.0.0.0, 24) which means the table key is in the range 10.0.0.[1-255])
    • MAC address: String in the xx:xx:xx:xx:xx:xx format (e.g., 00:00:0a:00:00:01)
    • Port number: Integer

    To set a timeout, you should change the attribute, idle_timeout_ns, of the table entry as below in integer and the unit of nanoseconds. table_entry.idle_timeout_ns = int(1 * 1e9) # timeout is 1 second

    For more details, refer to the file, assignment2/labs/star_four_hosts/shared/utils/p4runtime_lib/helper.py.

  2. Send a table entry to the switch. The Bmv2SwitchConnection object, s1, is provided and initialized. The object is the abstraction of a connection between the switch and the controller. To add a table entry you built in the above step, you can simply call the WriteTableEntry method of the Bmv2SwitchConnectoin object with table_entry as a parameter. (e.g., s1.WriteTableEntry(table_entry))

Usage example

Say there’s a l2_simple_switch.p4, and it defines a table in the ingress control block as below.

...
control MyIngress() {
    table dmac_forward {
        key = {
            hdr.ethernet.dstAddr: exact;
        }
        actions = {
            forward_to_port;
            drop;
        }
        size = 4;
        default_action = drop;
    }
    ...
}

When you compile this program, the compiler will create l2_simple_switch.p4info.txt. The P4info file contains a human-readable name to an instance id (integer) mapping. You can retrieve the arguments for the buildTableEntry method from here. Below is the example code snippet from the controller code used in the in-class demo.

mac_to_port = {"00:00:0a:00:00:01":1,
            "00:00:0a:00:00:02":2,
            "00:00:0a:00:00:03":3,
            "00:00:0a:00:00:04":4}
for eth_src_addr, port_id in mac_to_port.items():
    table_entry = p4info_helper.buildTableEntry(
        table_name="MyIngress.dmac_forward",
        match_fields={"hdr.ethernet.dstAddr": eth_src_addr},
        action_name="MyIngress.forward_to_port",
        action_params={"egress_port": port_id}
    )
    s1.WriteTableEntry(table_entry)