Introduce srl2, an Ethernet pseudowire device over SRv6. It
encapsulates L2 frames in IPv6 with a Segment Routing Header for
transmission across an SRv6 network.
The encapsulation logic reuses seg6_do_srh_encap() with
IPPROTO_ETHERNET. The transmit path uses the standard IPv6 tunnel
infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
The device is configured with a segment list for point-to-point
L2 encapsulation.
Usage:
ip link add srl2-0 type srl2 segs fc00::a,fc00::b
Co-developed-by: Stefano Salsano <stefano.salsano@uniroma2.it>
Signed-off-by: Stefano Salsano <stefano.salsano@uniroma2.it>
Signed-off-by: Andrea Mayer <andrea.mayer@uniroma2.it>
---
include/linux/srl2.h | 7 +
include/uapi/linux/srl2.h | 20 +++
net/ipv6/Kconfig | 16 +++
net/ipv6/Makefile | 1 +
net/ipv6/seg6.c | 1 +
net/ipv6/srl2.c | 269 ++++++++++++++++++++++++++++++++++++++
6 files changed, 314 insertions(+)
create mode 100644 include/linux/srl2.h
create mode 100644 include/uapi/linux/srl2.h
create mode 100644 net/ipv6/srl2.c
diff --git a/include/linux/srl2.h b/include/linux/srl2.h
new file mode 100644
index 000000000000..c1342b979402
--- /dev/null
+++ b/include/linux/srl2.h
@@ -0,0 +1,7 @@
+/* SPDX-License-Identifier: GPL-2.0-or-later */
+#ifndef _LINUX_SRL2_H
+#define _LINUX_SRL2_H
+
+#include <uapi/linux/srl2.h>
+
+#endif
diff --git a/include/uapi/linux/srl2.h b/include/uapi/linux/srl2.h
new file mode 100644
index 000000000000..e7c8f6fc0791
--- /dev/null
+++ b/include/uapi/linux/srl2.h
@@ -0,0 +1,20 @@
+/* SPDX-License-Identifier: GPL-2.0-or-later WITH Linux-syscall-note */
+/*
+ * SRv6 L2 tunnel device
+ *
+ * Author:
+ * Andrea Mayer <andrea.mayer@uniroma2.it>
+ */
+
+#ifndef _UAPI_LINUX_SRL2_H
+#define _UAPI_LINUX_SRL2_H
+
+enum {
+ IFLA_SRL2_UNSPEC,
+ IFLA_SRL2_SRH, /* binary: struct ipv6_sr_hdr + segments */
+ __IFLA_SRL2_MAX,
+};
+
+#define IFLA_SRL2_MAX (__IFLA_SRL2_MAX - 1)
+
+#endif
diff --git a/net/ipv6/Kconfig b/net/ipv6/Kconfig
index b8f9a8c0302e..9c8f7e254435 100644
--- a/net/ipv6/Kconfig
+++ b/net/ipv6/Kconfig
@@ -318,6 +318,22 @@ config IPV6_SEG6_BPF
depends on IPV6_SEG6_LWTUNNEL
depends on IPV6 = y
+config IPV6_SRL2
+ tristate "IPv6: SRv6 L2 tunnel device"
+ depends on IPV6_SEG6_LWTUNNEL
+ select DST_CACHE
+ help
+ SRv6 virtual Ethernet device that encapsulates L2 frames in
+ IPv6 with a Segment Routing Header (SRH) for transmission
+ over an SRv6 network.
+ Intended for use with a remote seg6local L2 decapsulation
+ behavior, such as End.DT2U or End.DX2.
+
+ To compile this as a module, choose M here: the module will
+ be called srl2.
+
+ If unsure, say N.
+
config IPV6_RPL_LWTUNNEL
bool "IPv6: RPL Source Routing Header support"
depends on IPV6
diff --git a/net/ipv6/Makefile b/net/ipv6/Makefile
index 2c9ce2ccbde1..a7e81d0293ca 100644
--- a/net/ipv6/Makefile
+++ b/net/ipv6/Makefile
@@ -24,6 +24,7 @@ ipv6-$(CONFIG_SYN_COOKIES) += syncookies.o
ipv6-$(CONFIG_NETLABEL) += calipso.o
ipv6-$(CONFIG_IPV6_SEG6_LWTUNNEL) += seg6_iptunnel.o seg6_local.o
ipv6-$(CONFIG_IPV6_SEG6_HMAC) += seg6_hmac.o
+obj-$(CONFIG_IPV6_SRL2) += srl2.o
ipv6-$(CONFIG_IPV6_RPL_LWTUNNEL) += rpl_iptunnel.o
ipv6-$(CONFIG_IPV6_IOAM6_LWTUNNEL) += ioam6_iptunnel.o
diff --git a/net/ipv6/seg6.c b/net/ipv6/seg6.c
index 1c3ad25700c4..23213ab4fefd 100644
--- a/net/ipv6/seg6.c
+++ b/net/ipv6/seg6.c
@@ -72,6 +72,7 @@ bool seg6_validate_srh(struct ipv6_sr_hdr *srh, int len, bool reduced)
return true;
}
+EXPORT_SYMBOL_GPL(seg6_validate_srh);
struct ipv6_sr_hdr *seg6_get_srh(struct sk_buff *skb, int flags)
{
diff --git a/net/ipv6/srl2.c b/net/ipv6/srl2.c
new file mode 100644
index 000000000000..66aa5375d218
--- /dev/null
+++ b/net/ipv6/srl2.c
@@ -0,0 +1,269 @@
+// SPDX-License-Identifier: GPL-2.0-or-later
+/*
+ * SRv6 L2 tunnel device (srl2)
+ *
+ * A virtual Ethernet device that encapsulates L2 frames in IPv6 with a
+ * Segment Routing Header (SRH) for transmission over an SRv6 network.
+ * On the remote side, a seg6_local behavior such as End.DT2U or End.DX2
+ * decapsulates the inner Ethernet frame for L2 delivery.
+ *
+ * The encapsulation logic reuses seg6_do_srh_encap() from seg6_iptunnel.c
+ * with IPPROTO_ETHERNET (143). The transmit path uses the standard IPv6
+ * tunnel infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
+ *
+ * Authors:
+ * Andrea Mayer <andrea.mayer@uniroma2.it>
+ * Stefano Salsano <stefano.salsano@uniroma2.it>
+ */
+
+#include <linux/module.h>
+#include <linux/netdevice.h>
+#include <linux/etherdevice.h>
+#include <net/dst_cache.h>
+#include <net/ip6_route.h>
+#include <net/ip_tunnels.h>
+#include <net/ip6_tunnel.h>
+#include <net/seg6.h>
+#include <linux/seg6.h>
+#include <linux/srl2.h>
+
+/* Conservative initial estimate for SRH size before newlink provides
+ * the actual value. 256 bytes accommodates up to 15 SIDs.
+ */
+#define SRL2_SRH_HEADROOM_EST 256
+
+struct srl2_priv {
+ struct ipv6_sr_hdr *srh;
+ struct dst_cache dst_cache;
+};
+
+/*
+ * srl2_xmit - encapsulate an L2 frame in IPv6+SRH and transmit
+ *
+ * When the bridge (or local stack) sends a frame through this device,
+ * skb->data points to the inner Ethernet header. We look up a route
+ * towards the first SID, prepend the outer IPv6+SRH via
+ * seg6_do_srh_encap(), and transmit via ip6tunnel_xmit().
+ *
+ * The route lookup result is cached per-cpu in dst_cache. Since the
+ * first SID is constant for the lifetime of the device, the cache
+ * avoids repeated route lookups in the common case.
+ */
+static netdev_tx_t srl2_xmit(struct sk_buff *skb, struct net_device *dev)
+{
+ struct srl2_priv *priv = netdev_priv(dev);
+ struct net *net = dev_net(dev);
+ struct dst_entry *dst;
+ struct flowi6 fl6;
+ int err;
+
+ local_bh_disable();
+ dst = dst_cache_get(&priv->dst_cache);
+ local_bh_enable();
+
+ if (unlikely(!dst)) {
+ memset(&fl6, 0, sizeof(fl6));
+ fl6.daddr = priv->srh->segments[priv->srh->first_segment];
+
+ dst = ip6_route_output(net, NULL, &fl6);
+ if (dst->error) {
+ dst_release(dst);
+ DEV_STATS_INC(dev, tx_carrier_errors);
+ goto drop;
+ }
+
+ if (dst_dev(dst) == dev) {
+ dst_release(dst);
+ DEV_STATS_INC(dev, collisions);
+ goto drop;
+ }
+
+ local_bh_disable();
+ /* saddr is unused */
+ dst_cache_set_ip6(&priv->dst_cache, dst, &fl6.saddr);
+ local_bh_enable();
+ }
+
+ skb_scrub_packet(skb, false);
+
+ skb_dst_set(skb, dst);
+
+ err = seg6_do_srh_encap(skb, priv->srh, IPPROTO_ETHERNET);
+ if (unlikely(err)) {
+ DEV_STATS_INC(dev, tx_errors);
+ kfree_skb(skb);
+ return NETDEV_TX_OK;
+ }
+
+ skb->protocol = htons(ETH_P_IPV6);
+
+ ip6tunnel_xmit(NULL, skb, dev, 0);
+
+ return NETDEV_TX_OK;
+
+drop:
+ DEV_STATS_INC(dev, tx_dropped);
+ kfree_skb(skb);
+ return NETDEV_TX_OK;
+}
+
+static int srl2_dev_init(struct net_device *dev)
+{
+ struct srl2_priv *priv = netdev_priv(dev);
+
+ return dst_cache_init(&priv->dst_cache, GFP_KERNEL);
+}
+
+static void srl2_dev_uninit(struct net_device *dev)
+{
+ struct srl2_priv *priv = netdev_priv(dev);
+
+ dst_cache_destroy(&priv->dst_cache);
+}
+
+static void srl2_dev_free(struct net_device *dev)
+{
+ struct srl2_priv *priv = netdev_priv(dev);
+
+ kfree(priv->srh);
+}
+
+static const struct net_device_ops srl2_netdev_ops = {
+ .ndo_init = srl2_dev_init,
+ .ndo_uninit = srl2_dev_uninit,
+ .ndo_start_xmit = srl2_xmit,
+ .ndo_set_mac_address = eth_mac_addr,
+ .ndo_validate_addr = eth_validate_addr,
+};
+
+static void srl2_setup(struct net_device *dev)
+{
+ ether_setup(dev);
+
+ dev->netdev_ops = &srl2_netdev_ops;
+ dev->needs_free_netdev = true;
+ dev->pcpu_stat_type = NETDEV_PCPU_STAT_DSTATS;
+ dev->needed_headroom = LL_MAX_HEADER + sizeof(struct ipv6hdr) +
+ SRL2_SRH_HEADROOM_EST;
+
+ dev->priv_flags &= ~IFF_TX_SKB_SHARING;
+ dev->priv_flags |= IFF_LIVE_ADDR_CHANGE | IFF_NO_QUEUE;
+ dev->lltx = true;
+
+ eth_hw_addr_random(dev);
+}
+
+static const struct nla_policy srl2_policy[IFLA_SRL2_MAX + 1] = {
+ [IFLA_SRL2_SRH] = { .type = NLA_BINARY },
+};
+
+static int srl2_validate(struct nlattr *tb[], struct nlattr *data[],
+ struct netlink_ext_ack *extack)
+{
+ if (!data || !data[IFLA_SRL2_SRH]) {
+ NL_SET_ERR_MSG(extack, "SRH with segment list is required");
+ return -EINVAL;
+ }
+
+ return 0;
+}
+
+static int srl2_newlink(struct net_device *dev,
+ struct rtnl_newlink_params *params,
+ struct netlink_ext_ack *extack)
+{
+ struct srl2_priv *priv = netdev_priv(dev);
+ struct nlattr **data = params->data;
+ struct ipv6_sr_hdr *srh;
+ int srhlen;
+ int len;
+
+ srh = nla_data(data[IFLA_SRL2_SRH]);
+ len = nla_len(data[IFLA_SRL2_SRH]);
+
+ if (len < sizeof(*srh) + sizeof(struct in6_addr)) {
+ NL_SET_ERR_MSG(extack, "SRH too short");
+ return -EINVAL;
+ }
+
+ if (!seg6_validate_srh(srh, len, false)) {
+ NL_SET_ERR_MSG(extack, "Invalid SRH");
+ return -EINVAL;
+ }
+
+ priv->srh = kmemdup(srh, len, GFP_KERNEL);
+ if (!priv->srh)
+ return -ENOMEM;
+
+ srhlen = ipv6_optlen(srh);
+
+ dev->needed_headroom = LL_MAX_HEADER + sizeof(struct ipv6hdr) + srhlen;
+
+ /* dev->mtu is the inner L3 payload size. Since SRv6 encapsulation
+ * carries the full inner Ethernet frame, subtract both the outer
+ * IPv6+SRH overhead and ETH_HLEN from ETH_DATA_LEN.
+ */
+ dev->mtu = ETH_DATA_LEN - sizeof(struct ipv6hdr) - srhlen - ETH_HLEN;
+ dev->min_mtu = ETH_MIN_MTU;
+ dev->max_mtu = IP_MAX_MTU - sizeof(struct ipv6hdr) - srhlen - ETH_HLEN;
+
+ dev->priv_destructor = srl2_dev_free;
+
+ return register_netdevice(dev);
+}
+
+static void srl2_dellink(struct net_device *dev, struct list_head *head)
+{
+ unregister_netdevice_queue(dev, head);
+}
+
+static size_t srl2_get_size(const struct net_device *dev)
+{
+ const struct srl2_priv *priv = netdev_priv(dev);
+ int srhlen = ipv6_optlen(priv->srh);
+
+ return nla_total_size(srhlen);
+}
+
+static int srl2_fill_info(struct sk_buff *skb, const struct net_device *dev)
+{
+ const struct srl2_priv *priv = netdev_priv(dev);
+ int srhlen = ipv6_optlen(priv->srh);
+
+ if (nla_put(skb, IFLA_SRL2_SRH, srhlen, priv->srh))
+ return -EMSGSIZE;
+
+ return 0;
+}
+
+static struct rtnl_link_ops srl2_link_ops __read_mostly = {
+ .kind = "srl2",
+ .maxtype = IFLA_SRL2_MAX,
+ .policy = srl2_policy,
+ .priv_size = sizeof(struct srl2_priv),
+ .setup = srl2_setup,
+ .validate = srl2_validate,
+ .newlink = srl2_newlink,
+ .dellink = srl2_dellink,
+ .get_size = srl2_get_size,
+ .fill_info = srl2_fill_info,
+};
+
+static int __init srl2_init(void)
+{
+ return rtnl_link_register(&srl2_link_ops);
+}
+
+static void __exit srl2_exit(void)
+{
+ rtnl_link_unregister(&srl2_link_ops);
+}
+
+module_init(srl2_init);
+module_exit(srl2_exit);
+
+MODULE_AUTHOR("Andrea Mayer <andrea.mayer@uniroma2.it>");
+MODULE_AUTHOR("Stefano Salsano <stefano.salsano@uniroma2.it>");
+MODULE_DESCRIPTION("SRv6 L2 tunnel device");
+MODULE_LICENSE("GPL");
+MODULE_ALIAS_RTNL_LINK("srl2");
--
2.20.1
Le 22/03/2026 à 01:05, Andrea Mayer a écrit :
> Introduce srl2, an Ethernet pseudowire device over SRv6. It
> encapsulates L2 frames in IPv6 with a Segment Routing Header for
> transmission across an SRv6 network.
>
> The encapsulation logic reuses seg6_do_srh_encap() with
> IPPROTO_ETHERNET. The transmit path uses the standard IPv6 tunnel
> infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
>
> The device is configured with a segment list for point-to-point
> L2 encapsulation.
>
> Usage:
>
> ip link add srl2-0 type srl2 segs fc00::a,fc00::b
>
> Co-developed-by: Stefano Salsano <stefano.salsano@uniroma2.it>
> Signed-off-by: Stefano Salsano <stefano.salsano@uniroma2.it>
> Signed-off-by: Andrea Mayer <andrea.mayer@uniroma2.it>
> ---
> include/linux/srl2.h | 7 +
> include/uapi/linux/srl2.h | 20 +++
> net/ipv6/Kconfig | 16 +++
> net/ipv6/Makefile | 1 +
> net/ipv6/seg6.c | 1 +
> net/ipv6/srl2.c | 269 ++++++++++++++++++++++++++++++++++++++
> 6 files changed, 314 insertions(+)
> create mode 100644 include/linux/srl2.h
> create mode 100644 include/uapi/linux/srl2.h
> create mode 100644 net/ipv6/srl2.c
>
> diff --git a/include/linux/srl2.h b/include/linux/srl2.h
> new file mode 100644
> index 000000000000..c1342b979402
> --- /dev/null
> +++ b/include/linux/srl2.h
> @@ -0,0 +1,7 @@
> +/* SPDX-License-Identifier: GPL-2.0-or-later */
> +#ifndef _LINUX_SRL2_H
> +#define _LINUX_SRL2_H
> +
> +#include <uapi/linux/srl2.h>
> +
> +#endif
Is this really needed?
> diff --git a/include/uapi/linux/srl2.h b/include/uapi/linux/srl2.h
> new file mode 100644
> index 000000000000..e7c8f6fc0791
> --- /dev/null
> +++ b/include/uapi/linux/srl2.h
> @@ -0,0 +1,20 @@
> +/* SPDX-License-Identifier: GPL-2.0-or-later WITH Linux-syscall-note */
> +/*
> + * SRv6 L2 tunnel device
> + *
> + * Author:
> + * Andrea Mayer <andrea.mayer@uniroma2.it>
> + */
> +
> +#ifndef _UAPI_LINUX_SRL2_H
> +#define _UAPI_LINUX_SRL2_H
> +
> +enum {
> + IFLA_SRL2_UNSPEC,
> + IFLA_SRL2_SRH, /* binary: struct ipv6_sr_hdr + segments */
> + __IFLA_SRL2_MAX,
> +};
> +
> +#define IFLA_SRL2_MAX (__IFLA_SRL2_MAX - 1)
It should probably be generated automatically from specs, see
https://docs.kernel.org/userspace-api/netlink/intro-specs.html
> +
> +#endif
> diff --git a/net/ipv6/Kconfig b/net/ipv6/Kconfig
> index b8f9a8c0302e..9c8f7e254435 100644
> --- a/net/ipv6/Kconfig
> +++ b/net/ipv6/Kconfig
> @@ -318,6 +318,22 @@ config IPV6_SEG6_BPF
> depends on IPV6_SEG6_LWTUNNEL
> depends on IPV6 = y
>
> +config IPV6_SRL2
> + tristate "IPv6: SRv6 L2 tunnel device"
> + depends on IPV6_SEG6_LWTUNNEL
> + select DST_CACHE
> + help
> + SRv6 virtual Ethernet device that encapsulates L2 frames in
> + IPv6 with a Segment Routing Header (SRH) for transmission
> + over an SRv6 network.
> + Intended for use with a remote seg6local L2 decapsulation
> + behavior, such as End.DT2U or End.DX2.
> +
> + To compile this as a module, choose M here: the module will
> + be called srl2.
> +
> + If unsure, say N.
> +
> config IPV6_RPL_LWTUNNEL
> bool "IPv6: RPL Source Routing Header support"
> depends on IPV6
> diff --git a/net/ipv6/Makefile b/net/ipv6/Makefile
> index 2c9ce2ccbde1..a7e81d0293ca 100644
> --- a/net/ipv6/Makefile
> +++ b/net/ipv6/Makefile
> @@ -24,6 +24,7 @@ ipv6-$(CONFIG_SYN_COOKIES) += syncookies.o
> ipv6-$(CONFIG_NETLABEL) += calipso.o
> ipv6-$(CONFIG_IPV6_SEG6_LWTUNNEL) += seg6_iptunnel.o seg6_local.o
> ipv6-$(CONFIG_IPV6_SEG6_HMAC) += seg6_hmac.o
> +obj-$(CONFIG_IPV6_SRL2) += srl2.o
> ipv6-$(CONFIG_IPV6_RPL_LWTUNNEL) += rpl_iptunnel.o
> ipv6-$(CONFIG_IPV6_IOAM6_LWTUNNEL) += ioam6_iptunnel.o
>
> diff --git a/net/ipv6/seg6.c b/net/ipv6/seg6.c
> index 1c3ad25700c4..23213ab4fefd 100644
> --- a/net/ipv6/seg6.c
> +++ b/net/ipv6/seg6.c
> @@ -72,6 +72,7 @@ bool seg6_validate_srh(struct ipv6_sr_hdr *srh, int len, bool reduced)
>
> return true;
> }
> +EXPORT_SYMBOL_GPL(seg6_validate_srh);
>
> struct ipv6_sr_hdr *seg6_get_srh(struct sk_buff *skb, int flags)
> {
> diff --git a/net/ipv6/srl2.c b/net/ipv6/srl2.c
> new file mode 100644
> index 000000000000..66aa5375d218
> --- /dev/null
> +++ b/net/ipv6/srl2.c
> @@ -0,0 +1,269 @@
> +// SPDX-License-Identifier: GPL-2.0-or-later
> +/*
> + * SRv6 L2 tunnel device (srl2)
> + *
> + * A virtual Ethernet device that encapsulates L2 frames in IPv6 with a
> + * Segment Routing Header (SRH) for transmission over an SRv6 network.
> + * On the remote side, a seg6_local behavior such as End.DT2U or End.DX2
> + * decapsulates the inner Ethernet frame for L2 delivery.
> + *
> + * The encapsulation logic reuses seg6_do_srh_encap() from seg6_iptunnel.c
> + * with IPPROTO_ETHERNET (143). The transmit path uses the standard IPv6
> + * tunnel infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
> + *
> + * Authors:
> + * Andrea Mayer <andrea.mayer@uniroma2.it>
> + * Stefano Salsano <stefano.salsano@uniroma2.it>
> + */
> +
> +#include <linux/module.h>
> +#include <linux/netdevice.h>
> +#include <linux/etherdevice.h>
> +#include <net/dst_cache.h>
> +#include <net/ip6_route.h>
> +#include <net/ip_tunnels.h>
> +#include <net/ip6_tunnel.h>
> +#include <net/seg6.h>
> +#include <linux/seg6.h>
> +#include <linux/srl2.h>
> +
> +/* Conservative initial estimate for SRH size before newlink provides
> + * the actual value. 256 bytes accommodates up to 15 SIDs.
> + */
> +#define SRL2_SRH_HEADROOM_EST 256
> +
> +struct srl2_priv {
> + struct ipv6_sr_hdr *srh;
> + struct dst_cache dst_cache;
> +};
> +
> +/*
> + * srl2_xmit - encapsulate an L2 frame in IPv6+SRH and transmit
> + *
> + * When the bridge (or local stack) sends a frame through this device,
> + * skb->data points to the inner Ethernet header. We look up a route
> + * towards the first SID, prepend the outer IPv6+SRH via
> + * seg6_do_srh_encap(), and transmit via ip6tunnel_xmit().
> + *
> + * The route lookup result is cached per-cpu in dst_cache. Since the
> + * first SID is constant for the lifetime of the device, the cache
> + * avoids repeated route lookups in the common case.
> + */
> +static netdev_tx_t srl2_xmit(struct sk_buff *skb, struct net_device *dev)
> +{
> + struct srl2_priv *priv = netdev_priv(dev);
> + struct net *net = dev_net(dev);
> + struct dst_entry *dst;
> + struct flowi6 fl6;
> + int err;
> +
> + local_bh_disable();
> + dst = dst_cache_get(&priv->dst_cache);
> + local_bh_enable();
> +
> + if (unlikely(!dst)) {
> + memset(&fl6, 0, sizeof(fl6));
> + fl6.daddr = priv->srh->segments[priv->srh->first_segment];
> +
> + dst = ip6_route_output(net, NULL, &fl6);
> + if (dst->error) {
> + dst_release(dst);
> + DEV_STATS_INC(dev, tx_carrier_errors);
> + goto drop;
> + }
> +
> + if (dst_dev(dst) == dev) {
> + dst_release(dst);
> + DEV_STATS_INC(dev, collisions);
> + goto drop;
> + }
> +
> + local_bh_disable();
> + /* saddr is unused */
> + dst_cache_set_ip6(&priv->dst_cache, dst, &fl6.saddr);
> + local_bh_enable();
> + }
> +
> + skb_scrub_packet(skb, false);
> +
> + skb_dst_set(skb, dst);
> +
> + err = seg6_do_srh_encap(skb, priv->srh, IPPROTO_ETHERNET);
> + if (unlikely(err)) {
> + DEV_STATS_INC(dev, tx_errors);
> + kfree_skb(skb);
> + return NETDEV_TX_OK;
> + }
> +
> + skb->protocol = htons(ETH_P_IPV6);
> +
> + ip6tunnel_xmit(NULL, skb, dev, 0);
> +
> + return NETDEV_TX_OK;
> +
> +drop:
> + DEV_STATS_INC(dev, tx_dropped);
> + kfree_skb(skb);
> + return NETDEV_TX_OK;
> +}
> +
> +static int srl2_dev_init(struct net_device *dev)
> +{
> + struct srl2_priv *priv = netdev_priv(dev);
> +
> + return dst_cache_init(&priv->dst_cache, GFP_KERNEL);
> +}
> +
> +static void srl2_dev_uninit(struct net_device *dev)
> +{
> + struct srl2_priv *priv = netdev_priv(dev);
> +
> + dst_cache_destroy(&priv->dst_cache);
> +}
> +
> +static void srl2_dev_free(struct net_device *dev)
> +{
> + struct srl2_priv *priv = netdev_priv(dev);
> +
> + kfree(priv->srh);
> +}
> +
> +static const struct net_device_ops srl2_netdev_ops = {
> + .ndo_init = srl2_dev_init,
> + .ndo_uninit = srl2_dev_uninit,
> + .ndo_start_xmit = srl2_xmit,
> + .ndo_set_mac_address = eth_mac_addr,
> + .ndo_validate_addr = eth_validate_addr,
> +};
> +
> +static void srl2_setup(struct net_device *dev)
> +{
> + ether_setup(dev);
> +
> + dev->netdev_ops = &srl2_netdev_ops;
> + dev->needs_free_netdev = true;
> + dev->pcpu_stat_type = NETDEV_PCPU_STAT_DSTATS;
> + dev->needed_headroom = LL_MAX_HEADER + sizeof(struct ipv6hdr) +
> + SRL2_SRH_HEADROOM_EST;
> +
> + dev->priv_flags &= ~IFF_TX_SKB_SHARING;
> + dev->priv_flags |= IFF_LIVE_ADDR_CHANGE | IFF_NO_QUEUE;
> + dev->lltx = true;
> +
Maybe setting dev->netns_immutable to true ?
Regards,
Nicolas
> + eth_hw_addr_random(dev);
> +}
> +
> +static const struct nla_policy srl2_policy[IFLA_SRL2_MAX + 1] = {
> + [IFLA_SRL2_SRH] = { .type = NLA_BINARY },
> +};
> +
> +static int srl2_validate(struct nlattr *tb[], struct nlattr *data[],
> + struct netlink_ext_ack *extack)
> +{
> + if (!data || !data[IFLA_SRL2_SRH]) {
> + NL_SET_ERR_MSG(extack, "SRH with segment list is required");
> + return -EINVAL;
> + }
> +
> + return 0;
> +}
> +
> +static int srl2_newlink(struct net_device *dev,
> + struct rtnl_newlink_params *params,
> + struct netlink_ext_ack *extack)
> +{
> + struct srl2_priv *priv = netdev_priv(dev);
> + struct nlattr **data = params->data;
> + struct ipv6_sr_hdr *srh;
> + int srhlen;
> + int len;
> +
> + srh = nla_data(data[IFLA_SRL2_SRH]);
> + len = nla_len(data[IFLA_SRL2_SRH]);
> +
> + if (len < sizeof(*srh) + sizeof(struct in6_addr)) {
> + NL_SET_ERR_MSG(extack, "SRH too short");
> + return -EINVAL;
> + }
> +
> + if (!seg6_validate_srh(srh, len, false)) {
> + NL_SET_ERR_MSG(extack, "Invalid SRH");
> + return -EINVAL;
> + }
> +
> + priv->srh = kmemdup(srh, len, GFP_KERNEL);
> + if (!priv->srh)
> + return -ENOMEM;
> +
> + srhlen = ipv6_optlen(srh);
> +
> + dev->needed_headroom = LL_MAX_HEADER + sizeof(struct ipv6hdr) + srhlen;
> +
> + /* dev->mtu is the inner L3 payload size. Since SRv6 encapsulation
> + * carries the full inner Ethernet frame, subtract both the outer
> + * IPv6+SRH overhead and ETH_HLEN from ETH_DATA_LEN.
> + */
> + dev->mtu = ETH_DATA_LEN - sizeof(struct ipv6hdr) - srhlen - ETH_HLEN;
> + dev->min_mtu = ETH_MIN_MTU;
> + dev->max_mtu = IP_MAX_MTU - sizeof(struct ipv6hdr) - srhlen - ETH_HLEN;
> +
> + dev->priv_destructor = srl2_dev_free;
> +
> + return register_netdevice(dev);
> +}
> +
> +static void srl2_dellink(struct net_device *dev, struct list_head *head)
> +{
> + unregister_netdevice_queue(dev, head);
> +}
> +
> +static size_t srl2_get_size(const struct net_device *dev)
> +{
> + const struct srl2_priv *priv = netdev_priv(dev);
> + int srhlen = ipv6_optlen(priv->srh);
> +
> + return nla_total_size(srhlen);
> +}
> +
> +static int srl2_fill_info(struct sk_buff *skb, const struct net_device *dev)
> +{
> + const struct srl2_priv *priv = netdev_priv(dev);
> + int srhlen = ipv6_optlen(priv->srh);
> +
> + if (nla_put(skb, IFLA_SRL2_SRH, srhlen, priv->srh))
> + return -EMSGSIZE;
> +
> + return 0;
> +}
> +
> +static struct rtnl_link_ops srl2_link_ops __read_mostly = {
> + .kind = "srl2",
> + .maxtype = IFLA_SRL2_MAX,
> + .policy = srl2_policy,
> + .priv_size = sizeof(struct srl2_priv),
> + .setup = srl2_setup,
> + .validate = srl2_validate,
> + .newlink = srl2_newlink,
> + .dellink = srl2_dellink,
> + .get_size = srl2_get_size,
> + .fill_info = srl2_fill_info,
> +};
> +
> +static int __init srl2_init(void)
> +{
> + return rtnl_link_register(&srl2_link_ops);
> +}
> +
> +static void __exit srl2_exit(void)
> +{
> + rtnl_link_unregister(&srl2_link_ops);
> +}
> +
> +module_init(srl2_init);
> +module_exit(srl2_exit);
> +
> +MODULE_AUTHOR("Andrea Mayer <andrea.mayer@uniroma2.it>");
> +MODULE_AUTHOR("Stefano Salsano <stefano.salsano@uniroma2.it>");
> +MODULE_DESCRIPTION("SRv6 L2 tunnel device");
> +MODULE_LICENSE("GPL");
> +MODULE_ALIAS_RTNL_LINK("srl2");
On Thu, 26 Mar 2026 17:44:29 +0100
Nicolas Dichtel <nicolas.dichtel@6wind.com> wrote:
>
>
Thanks Nicolas for your time and for the review.
> Le 22/03/2026 à 01:05, Andrea Mayer a écrit :
> > Introduce srl2, an Ethernet pseudowire device over SRv6. It
> > encapsulates L2 frames in IPv6 with a Segment Routing Header for
> > transmission across an SRv6 network.
> >
> > The encapsulation logic reuses seg6_do_srh_encap() with
> > IPPROTO_ETHERNET. The transmit path uses the standard IPv6 tunnel
> > infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
> >
> > The device is configured with a segment list for point-to-point
> > L2 encapsulation.
> >
> > Usage:
> >
> > ip link add srl2-0 type srl2 segs fc00::a,fc00::b
> >
> > Co-developed-by: Stefano Salsano <stefano.salsano@uniroma2.it>
> > Signed-off-by: Stefano Salsano <stefano.salsano@uniroma2.it>
> > Signed-off-by: Andrea Mayer <andrea.mayer@uniroma2.it>
> > ---
> > include/linux/srl2.h | 7 +
> > include/uapi/linux/srl2.h | 20 +++
> > net/ipv6/Kconfig | 16 +++
> > net/ipv6/Makefile | 1 +
> > net/ipv6/seg6.c | 1 +
> > net/ipv6/srl2.c | 269 ++++++++++++++++++++++++++++++++++++++
> > 6 files changed, 314 insertions(+)
> > create mode 100644 include/linux/srl2.h
> > create mode 100644 include/uapi/linux/srl2.h
> > create mode 100644 net/ipv6/srl2.c
> >
> > diff --git a/include/linux/srl2.h b/include/linux/srl2.h
> > new file mode 100644
> > index 000000000000..c1342b979402
> > --- /dev/null
> > +++ b/include/linux/srl2.h
> > @@ -0,0 +1,7 @@
> > +/* SPDX-License-Identifier: GPL-2.0-or-later */
> > +#ifndef _LINUX_SRL2_H
> > +#define _LINUX_SRL2_H
> > +
> > +#include <uapi/linux/srl2.h>
> > +
> > +#endif
> Is this really needed?
No. Moving IFLA_SRL2_* to if_link.h makes both srl2.h headers
unnecessary.
>
> > diff --git a/include/uapi/linux/srl2.h b/include/uapi/linux/srl2.h
> > new file mode 100644
> > index 000000000000..e7c8f6fc0791
> > --- /dev/null
> > +++ b/include/uapi/linux/srl2.h
> > @@ -0,0 +1,20 @@
> > +/* SPDX-License-Identifier: GPL-2.0-or-later WITH Linux-syscall-note */
> > +/*
> > + * SRv6 L2 tunnel device
> > + *
> > + * Author:
> > + * Andrea Mayer <andrea.mayer@uniroma2.it>
> > + */
> > +
> > +#ifndef _UAPI_LINUX_SRL2_H
> > +#define _UAPI_LINUX_SRL2_H
> > +
> > +enum {
> > + IFLA_SRL2_UNSPEC,
> > + IFLA_SRL2_SRH, /* binary: struct ipv6_sr_hdr + segments */
> > + __IFLA_SRL2_MAX,
> > +};
> > +
> > +#define IFLA_SRL2_MAX (__IFLA_SRL2_MAX - 1)
> It should probably be generated automatically from specs, see
> https://docs.kernel.org/userspace-api/netlink/intro-specs.html
>
We'll add srl2 to rt-link.yaml. It seems that if_link.h is not
auto-generated from the spec yet, so I think we need to add
IFLA_SRL2_* there manually like the other link types.
> > [snip]
> > +static void srl2_setup(struct net_device *dev)
> > +{
> > + ether_setup(dev);
> > +
> > + dev->netdev_ops = &srl2_netdev_ops;
> > + dev->needs_free_netdev = true;
> > + dev->pcpu_stat_type = NETDEV_PCPU_STAT_DSTATS;
> > + dev->needed_headroom = LL_MAX_HEADER + sizeof(struct ipv6hdr) +
> > + SRL2_SRH_HEADROOM_EST;
> > +
> > + dev->priv_flags &= ~IFF_TX_SKB_SHARING;
> > + dev->priv_flags |= IFF_LIVE_ADDR_CHANGE | IFF_NO_QUEUE;
> > + dev->lltx = true;
> > +
> Maybe setting dev->netns_immutable to true ?
>
It makes sense; the SRv6 configuration is bound to the current
netns, so the device should stay there as well.
> Regards,
> Nicolas
Thanks,
Andrea
On Sun, Mar 22, 2026 at 12:06 AM Andrea Mayer <andrea.mayer@uniroma2.it> wrote: > > Introduce srl2, an Ethernet pseudowire device over SRv6. It > encapsulates L2 frames in IPv6 with a Segment Routing Header for > transmission across an SRv6 network. > > The encapsulation logic reuses seg6_do_srh_encap() with > IPPROTO_ETHERNET. The transmit path uses the standard IPv6 tunnel > infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit). > > The device is configured with a segment list for point-to-point > L2 encapsulation. > > Usage: > > ip link add srl2-0 type srl2 segs fc00::a,fc00::b Thinking out loud... We'll likely need SRv6 encap configurations specific to each entry (i.e., MAC address), rather than (or in addition to) per interface. We could also add a "mode" (e.g., "normal" mode or reduced mode?).
Il 25/03/2026 14:43, Justin Iurman ha scritto: > On Sun, Mar 22, 2026 at 12:06 AM Andrea Mayer <andrea.mayer@uniroma2.it> wrote: >> >> Introduce srl2, an Ethernet pseudowire device over SRv6. It >> encapsulates L2 frames in IPv6 with a Segment Routing Header for >> transmission across an SRv6 network. >> >> The encapsulation logic reuses seg6_do_srh_encap() with >> IPPROTO_ETHERNET. The transmit path uses the standard IPv6 tunnel >> infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit). >> >> The device is configured with a segment list for point-to-point >> L2 encapsulation. >> >> Usage: >> >> ip link add srl2-0 type srl2 segs fc00::a,fc00::b > > Thinking out loud... > > We'll likely need SRv6 encap configurations specific to each entry > (i.e., MAC address), rather than (or in addition to) per interface. agreed, this is the natural next step towards multipoint we've started exploring the design for this, happy to collaborate if you're interested > We could also add a "mode" (e.g., "normal" mode or reduced mode?). good point, the infrastructure is already in place, so adding a "mode" parameter to sr6 to support reduced encap should be straightforward we suggest to address it as an immediate follow-up to this baseline series and we have already some prototype code ready ciao Stefano and Andrea -- ******************************************************************* Prof. Stefano Salsano Dipartimento Ingegneria Elettronica Universita' di Roma Tor Vergata Viale Politecnico, 1 - 00133 Roma - ITALY http://netgroup.uniroma2.it/Stefano_Salsano/ E-mail : stefano.salsano@uniroma2.it Office : (Tel.) +39 06 72597770 (Fax.) +39 06 72597435 *******************************************************************
On Sun, Mar 22, 2026 at 12:06 AM Andrea Mayer <andrea.mayer@uniroma2.it> wrote:
>
> Introduce srl2, an Ethernet pseudowire device over SRv6. It
> encapsulates L2 frames in IPv6 with a Segment Routing Header for
> transmission across an SRv6 network.
>
> The encapsulation logic reuses seg6_do_srh_encap() with
> IPPROTO_ETHERNET. The transmit path uses the standard IPv6 tunnel
> infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
>
> The device is configured with a segment list for point-to-point
> L2 encapsulation.
>
> Usage:
>
> ip link add srl2-0 type srl2 segs fc00::a,fc00::b
>
> Co-developed-by: Stefano Salsano <stefano.salsano@uniroma2.it>
> Signed-off-by: Stefano Salsano <stefano.salsano@uniroma2.it>
> Signed-off-by: Andrea Mayer <andrea.mayer@uniroma2.it>
> ---
> include/linux/srl2.h | 7 +
> include/uapi/linux/srl2.h | 20 +++
> net/ipv6/Kconfig | 16 +++
> net/ipv6/Makefile | 1 +
> net/ipv6/seg6.c | 1 +
> net/ipv6/srl2.c | 269 ++++++++++++++++++++++++++++++++++++++
> 6 files changed, 314 insertions(+)
> create mode 100644 include/linux/srl2.h
> create mode 100644 include/uapi/linux/srl2.h
> create mode 100644 net/ipv6/srl2.c
>
[snip]
> diff --git a/net/ipv6/srl2.c b/net/ipv6/srl2.c
> new file mode 100644
> index 000000000000..66aa5375d218
> --- /dev/null
> +++ b/net/ipv6/srl2.c
> @@ -0,0 +1,269 @@
> +// SPDX-License-Identifier: GPL-2.0-or-later
> +/*
> + * SRv6 L2 tunnel device (srl2)
> + *
> + * A virtual Ethernet device that encapsulates L2 frames in IPv6 with a
> + * Segment Routing Header (SRH) for transmission over an SRv6 network.
> + * On the remote side, a seg6_local behavior such as End.DT2U or End.DX2
> + * decapsulates the inner Ethernet frame for L2 delivery.
> + *
> + * The encapsulation logic reuses seg6_do_srh_encap() from seg6_iptunnel.c
> + * with IPPROTO_ETHERNET (143). The transmit path uses the standard IPv6
> + * tunnel infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
> + *
> + * Authors:
> + * Andrea Mayer <andrea.mayer@uniroma2.it>
> + * Stefano Salsano <stefano.salsano@uniroma2.it>
> + */
> +
> +#include <linux/module.h>
> +#include <linux/netdevice.h>
> +#include <linux/etherdevice.h>
> +#include <net/dst_cache.h>
> +#include <net/ip6_route.h>
> +#include <net/ip_tunnels.h>
> +#include <net/ip6_tunnel.h>
> +#include <net/seg6.h>
> +#include <linux/seg6.h>
> +#include <linux/srl2.h>
> +
> +/* Conservative initial estimate for SRH size before newlink provides
> + * the actual value. 256 bytes accommodates up to 15 SIDs.
> + */
> +#define SRL2_SRH_HEADROOM_EST 256
> +
> +struct srl2_priv {
> + struct ipv6_sr_hdr *srh;
> + struct dst_cache dst_cache;
> +};
> +
> +/*
> + * srl2_xmit - encapsulate an L2 frame in IPv6+SRH and transmit
> + *
> + * When the bridge (or local stack) sends a frame through this device,
> + * skb->data points to the inner Ethernet header. We look up a route
> + * towards the first SID, prepend the outer IPv6+SRH via
> + * seg6_do_srh_encap(), and transmit via ip6tunnel_xmit().
> + *
> + * The route lookup result is cached per-cpu in dst_cache. Since the
> + * first SID is constant for the lifetime of the device, the cache
> + * avoids repeated route lookups in the common case.
> + */
> +static netdev_tx_t srl2_xmit(struct sk_buff *skb, struct net_device *dev)
> +{
> + struct srl2_priv *priv = netdev_priv(dev);
> + struct net *net = dev_net(dev);
> + struct dst_entry *dst;
> + struct flowi6 fl6;
> + int err;
> +
> + local_bh_disable();
> + dst = dst_cache_get(&priv->dst_cache);
> + local_bh_enable();
> +
> + if (unlikely(!dst)) {
> + memset(&fl6, 0, sizeof(fl6));
> + fl6.daddr = priv->srh->segments[priv->srh->first_segment];
> +
> + dst = ip6_route_output(net, NULL, &fl6);
> + if (dst->error) {
> + dst_release(dst);
> + DEV_STATS_INC(dev, tx_carrier_errors);
> + goto drop;
> + }
> +
> + if (dst_dev(dst) == dev) {
> + dst_release(dst);
> + DEV_STATS_INC(dev, collisions);
> + goto drop;
> + }
> +
> + local_bh_disable();
> + /* saddr is unused */
> + dst_cache_set_ip6(&priv->dst_cache, dst, &fl6.saddr);
> + local_bh_enable();
> + }
> +
> + skb_scrub_packet(skb, false);
> +
> + skb_dst_set(skb, dst);
> +
> + err = seg6_do_srh_encap(skb, priv->srh, IPPROTO_ETHERNET);
We shouldn't be reusing seg6_do_srh_encap() as it also manages its own
lwt dst_cache. There's probably a need to rework that part to avoid
code duplication.
On Tue, Mar 24, 2026 at 4:08 PM Justin Iurman <justin.iurman@6wind.com> wrote:
>
> On Sun, Mar 22, 2026 at 12:06 AM Andrea Mayer <andrea.mayer@uniroma2.it> wrote:
> >
> > Introduce srl2, an Ethernet pseudowire device over SRv6. It
> > encapsulates L2 frames in IPv6 with a Segment Routing Header for
> > transmission across an SRv6 network.
> >
> > The encapsulation logic reuses seg6_do_srh_encap() with
> > IPPROTO_ETHERNET. The transmit path uses the standard IPv6 tunnel
> > infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
> >
> > The device is configured with a segment list for point-to-point
> > L2 encapsulation.
> >
> > Usage:
> >
> > ip link add srl2-0 type srl2 segs fc00::a,fc00::b
> >
> > Co-developed-by: Stefano Salsano <stefano.salsano@uniroma2.it>
> > Signed-off-by: Stefano Salsano <stefano.salsano@uniroma2.it>
> > Signed-off-by: Andrea Mayer <andrea.mayer@uniroma2.it>
> > ---
> > include/linux/srl2.h | 7 +
> > include/uapi/linux/srl2.h | 20 +++
> > net/ipv6/Kconfig | 16 +++
> > net/ipv6/Makefile | 1 +
> > net/ipv6/seg6.c | 1 +
> > net/ipv6/srl2.c | 269 ++++++++++++++++++++++++++++++++++++++
> > 6 files changed, 314 insertions(+)
> > create mode 100644 include/linux/srl2.h
> > create mode 100644 include/uapi/linux/srl2.h
> > create mode 100644 net/ipv6/srl2.c
> >
>
> [snip]
>
> > diff --git a/net/ipv6/srl2.c b/net/ipv6/srl2.c
> > new file mode 100644
> > index 000000000000..66aa5375d218
> > --- /dev/null
> > +++ b/net/ipv6/srl2.c
> > @@ -0,0 +1,269 @@
> > +// SPDX-License-Identifier: GPL-2.0-or-later
> > +/*
> > + * SRv6 L2 tunnel device (srl2)
> > + *
> > + * A virtual Ethernet device that encapsulates L2 frames in IPv6 with a
> > + * Segment Routing Header (SRH) for transmission over an SRv6 network.
> > + * On the remote side, a seg6_local behavior such as End.DT2U or End.DX2
> > + * decapsulates the inner Ethernet frame for L2 delivery.
> > + *
> > + * The encapsulation logic reuses seg6_do_srh_encap() from seg6_iptunnel.c
> > + * with IPPROTO_ETHERNET (143). The transmit path uses the standard IPv6
> > + * tunnel infrastructure (dst_cache, ip6_route_output, ip6tunnel_xmit).
> > + *
> > + * Authors:
> > + * Andrea Mayer <andrea.mayer@uniroma2.it>
> > + * Stefano Salsano <stefano.salsano@uniroma2.it>
> > + */
> > +
> > +#include <linux/module.h>
> > +#include <linux/netdevice.h>
> > +#include <linux/etherdevice.h>
> > +#include <net/dst_cache.h>
> > +#include <net/ip6_route.h>
> > +#include <net/ip_tunnels.h>
> > +#include <net/ip6_tunnel.h>
> > +#include <net/seg6.h>
> > +#include <linux/seg6.h>
> > +#include <linux/srl2.h>
> > +
> > +/* Conservative initial estimate for SRH size before newlink provides
> > + * the actual value. 256 bytes accommodates up to 15 SIDs.
> > + */
> > +#define SRL2_SRH_HEADROOM_EST 256
> > +
> > +struct srl2_priv {
> > + struct ipv6_sr_hdr *srh;
> > + struct dst_cache dst_cache;
> > +};
> > +
> > +/*
> > + * srl2_xmit - encapsulate an L2 frame in IPv6+SRH and transmit
> > + *
> > + * When the bridge (or local stack) sends a frame through this device,
> > + * skb->data points to the inner Ethernet header. We look up a route
> > + * towards the first SID, prepend the outer IPv6+SRH via
> > + * seg6_do_srh_encap(), and transmit via ip6tunnel_xmit().
> > + *
> > + * The route lookup result is cached per-cpu in dst_cache. Since the
> > + * first SID is constant for the lifetime of the device, the cache
> > + * avoids repeated route lookups in the common case.
> > + */
> > +static netdev_tx_t srl2_xmit(struct sk_buff *skb, struct net_device *dev)
> > +{
> > + struct srl2_priv *priv = netdev_priv(dev);
> > + struct net *net = dev_net(dev);
> > + struct dst_entry *dst;
> > + struct flowi6 fl6;
> > + int err;
> > +
> > + local_bh_disable();
> > + dst = dst_cache_get(&priv->dst_cache);
> > + local_bh_enable();
> > +
> > + if (unlikely(!dst)) {
> > + memset(&fl6, 0, sizeof(fl6));
> > + fl6.daddr = priv->srh->segments[priv->srh->first_segment];
> > +
> > + dst = ip6_route_output(net, NULL, &fl6);
> > + if (dst->error) {
> > + dst_release(dst);
> > + DEV_STATS_INC(dev, tx_carrier_errors);
> > + goto drop;
> > + }
> > +
> > + if (dst_dev(dst) == dev) {
> > + dst_release(dst);
> > + DEV_STATS_INC(dev, collisions);
> > + goto drop;
> > + }
> > +
> > + local_bh_disable();
> > + /* saddr is unused */
> > + dst_cache_set_ip6(&priv->dst_cache, dst, &fl6.saddr);
> > + local_bh_enable();
> > + }
> > +
> > + skb_scrub_packet(skb, false);
> > +
> > + skb_dst_set(skb, dst);
> > +
> > + err = seg6_do_srh_encap(skb, priv->srh, IPPROTO_ETHERNET);
>
> We shouldn't be reusing seg6_do_srh_encap() as it also manages its own
> lwt dst_cache. There's probably a need to rework that part to avoid
> code duplication.
Never mind, it's just that dst_dev_overhead() would be called with a
default (NULL) dst_entry, so I guess we should remove the likely
annotation for perf reasons in this case. FYI, dst_dev_overhead() was
introduced to mitigate a double reallocation in skb's, but I don't
think we should worry about it in this context as it is only triggered
for much more segments (see https://arxiv.org/pdf/2503.14959, and
related commits 0600cf40e9b3 and 40475b63761a).
© 2016 - 2026 Red Hat, Inc.