[acl] Move ACL table constants to acltable.h (sonic-net#1671)

daall · web-flow · commit 1382f7adb52c · 2021-03-18T14:59:41.000-07:00
Signed-off-by: Danny Allen &lt;daall@microsoft.com&gt;
diff --git a/orchagent/aclorch.cpp b/orchagent/aclorch.cpp
@@ -3103,11 +3103,11 @@ void AclOrch::doAclTableTask(Consumer &consumer)
 
                 SWSS_LOG_DEBUG("TABLE ATTRIBUTE: %s : %s", attr_name.c_str(), attr_value.c_str());
 
-                if (attr_name == TABLE_DESCRIPTION)
+                if (attr_name == ACL_TABLE_DESCRIPTION)
                 {
                     newTable.description = attr_value;
                 }
-                else if (attr_name == TABLE_TYPE)
+                else if (attr_name == ACL_TABLE_TYPE)
                 {
                     if (!processAclTableType(attr_value, newTable.type))
                     {
@@ -3117,7 +3117,7 @@ void AclOrch::doAclTableTask(Consumer &consumer)
                         break;
                     }
                 }
-                else if (attr_name == TABLE_PORTS)
+                else if (attr_name == ACL_TABLE_PORTS)
                 {
                     if (!processAclTablePorts(attr_value, newTable))
                     {
@@ -3127,7 +3127,7 @@ void AclOrch::doAclTableTask(Consumer &consumer)
                         break;
                     }
                 }
-                else if (attr_name == TABLE_STAGE)
+                else if (attr_name == ACL_TABLE_STAGE)
                 {
                    if (!processAclTableStage(attr_value, newTable.stage))
                    {
@@ -3137,7 +3137,7 @@ void AclOrch::doAclTableTask(Consumer &consumer)
                        break;
                    }
                 }
-                else if (attr_name == TABLE_SERVICES)
+                else if (attr_name == ACL_TABLE_SERVICES)
                 {
                     // TODO: validate control plane ACL table has this attribute
                     continue;
diff --git a/orchagent/aclorch.h b/orchagent/aclorch.h
@@ -8,36 +8,21 @@
 #include <tuple>
 #include <map>
 #include <condition_variable>
+
 #include "orch.h"
 #include "switchorch.h"
 #include "portsorch.h"
 #include "mirrororch.h"
 #include "dtelorch.h"
 #include "observer.h"
 
+#include "acltable.h"
+
 // ACL counters update interval in the DB
 // Value is in seconds. Should not be less than 5 seconds
 // (in worst case update of 1265 counters takes almost 5 sec)
 #define COUNTERS_READ_INTERVAL 10
 
-#define TABLE_DESCRIPTION "POLICY_DESC"
-#define TABLE_TYPE        "TYPE"
-#define TABLE_PORTS       "PORTS"
-#define TABLE_SERVICES    "SERVICES"
-
-#define TABLE_TYPE_L3                   "L3"
-#define TABLE_TYPE_L3V6                 "L3V6"
-#define TABLE_TYPE_MIRROR               "MIRROR"
-#define TABLE_TYPE_MIRRORV6             "MIRRORV6"
-#define TABLE_TYPE_MIRROR_DSCP          "MIRROR_DSCP"
-#define TABLE_TYPE_PFCWD                "PFCWD"
-#define TABLE_TYPE_CTRLPLANE            "CTRLPLANE"
-#define TABLE_TYPE_DTEL_FLOW_WATCHLIST  "DTEL_FLOW_WATCHLIST"
-#define TABLE_TYPE_DTEL_DROP_WATCHLIST  "DTEL_DROP_WATCHLIST"
-#define TABLE_TYPE_MCLAG                "MCLAG"
-#define TABLE_TYPE_MUX                  "MUX"
-#define TABLE_TYPE_DROP                 "DROP"
-
 #define RULE_PRIORITY           "PRIORITY"
 #define MATCH_IN_PORTS          "IN_PORTS"
 #define MATCH_OUT_PORTS         "OUT_PORTS"
@@ -109,24 +94,6 @@
 #define RULE_OPER_ADD           0
 #define RULE_OPER_DELETE        1
 
-typedef enum
-{
-    ACL_TABLE_UNKNOWN,
-    ACL_TABLE_L3,
-    ACL_TABLE_L3V6,
-    ACL_TABLE_MIRROR,
-    ACL_TABLE_MIRRORV6,
-    ACL_TABLE_MIRROR_DSCP,
-    ACL_TABLE_PFCWD,
-    ACL_TABLE_CTRLPLANE,
-    ACL_TABLE_DTEL_FLOW_WATCHLIST,
-    ACL_TABLE_DTEL_DROP_WATCHLIST,
-    ACL_TABLE_MCLAG,
-    ACL_TABLE_MUX,
-    ACL_TABLE_DROP
-} acl_table_type_t;
-
-typedef map<string, acl_table_type_t> acl_table_type_lookup_t;
 typedef map<string, sai_acl_entry_attr_t> acl_rule_attr_lookup_t;
 typedef map<string, sai_acl_ip_type_t> acl_ip_type_lookup_t;
 typedef map<string, sai_acl_dtel_flow_op_t> acl_dtel_flow_op_type_lookup_t;
diff --git a/orchagent/acltable.h b/orchagent/acltable.h
@@ -1,24 +1,35 @@
-#ifndef SWSS_ACLTABLE_H
-#define SWSS_ACLTABLE_H
+#pragma once
 
 extern "C" {
 #include "sai.h"
 }
 
-#include <set>
 #include <string>
-#include <vector>
-#include <map>
-
-using namespace std;
-
-/* TODO: move all acltable and aclrule implementation out of aclorch */
-
-#define STAGE_INGRESS     "INGRESS"
-#define STAGE_EGRESS      "EGRESS"
-#define TABLE_INGRESS     STAGE_INGRESS
-#define TABLE_EGRESS      STAGE_EGRESS
-#define TABLE_STAGE       "STAGE"
+#include <unordered_map>
+
+// TODO: Move the rest of AclTable implementation out of AclOrch
+
+#define ACL_TABLE_DESCRIPTION  "POLICY_DESC"
+#define ACL_TABLE_STAGE        "STAGE"
+#define ACL_TABLE_TYPE         "TYPE"
+#define ACL_TABLE_PORTS        "PORTS"
+#define ACL_TABLE_SERVICES     "SERVICES"
+
+#define STAGE_INGRESS  "INGRESS"
+#define STAGE_EGRESS   "EGRESS"
+
+#define TABLE_TYPE_L3                   "L3"
+#define TABLE_TYPE_L3V6                 "L3V6"
+#define TABLE_TYPE_MIRROR               "MIRROR"
+#define TABLE_TYPE_MIRRORV6             "MIRRORV6"
+#define TABLE_TYPE_MIRROR_DSCP          "MIRROR_DSCP"
+#define TABLE_TYPE_PFCWD                "PFCWD"
+#define TABLE_TYPE_CTRLPLANE            "CTRLPLANE"
+#define TABLE_TYPE_DTEL_FLOW_WATCHLIST  "DTEL_FLOW_WATCHLIST"
+#define TABLE_TYPE_DTEL_DROP_WATCHLIST  "DTEL_DROP_WATCHLIST"
+#define TABLE_TYPE_MCLAG                "MCLAG"
+#define TABLE_TYPE_MUX                  "MUX"
+#define TABLE_TYPE_DROP                 "DROP"
 
 typedef enum
 {
@@ -27,6 +38,23 @@ typedef enum
     ACL_STAGE_EGRESS
 } acl_stage_type_t;
 
-typedef map<string, acl_stage_type_t> acl_stage_type_lookup_t;
+typedef std::unordered_map<std::string, acl_stage_type_t> acl_stage_type_lookup_t;
 
-#endif /* SWSS_ACLTABLE_H */
+typedef enum
+{
+    ACL_TABLE_UNKNOWN,
+    ACL_TABLE_L3,
+    ACL_TABLE_L3V6,
+    ACL_TABLE_MIRROR,
+    ACL_TABLE_MIRRORV6,
+    ACL_TABLE_MIRROR_DSCP,
+    ACL_TABLE_PFCWD,
+    ACL_TABLE_CTRLPLANE,
+    ACL_TABLE_DTEL_FLOW_WATCHLIST,
+    ACL_TABLE_DTEL_DROP_WATCHLIST,
+    ACL_TABLE_MCLAG,
+    ACL_TABLE_MUX,
+    ACL_TABLE_DROP
+} acl_table_type_t;
+
+typedef std::unordered_map<std::string, acl_table_type_t> acl_table_type_lookup_t;
diff --git a/tests/mock_tests/aclorch_ut.cpp b/tests/mock_tests/aclorch_ut.cpp
@@ -748,10 +748,7 @@ namespace aclorch_test
         {
             for (const auto &fv : values)
             {
-                if (fv.first == TABLE_DESCRIPTION)
-                {
-                }
-                else if (fv.first == TABLE_TYPE)
+                if (fv.first == ACL_TABLE_TYPE)
                 {
                     if (fv.second == TABLE_TYPE_L3)
                     {
@@ -772,16 +769,16 @@ namespace aclorch_test
                         return false;
                     }
                 }
-                else if (fv.first == TABLE_STAGE)
+                else if (fv.first == ACL_TABLE_STAGE)
                 {
-                    if (fv.second == TABLE_INGRESS)
+                    if (fv.second == STAGE_INGRESS)
                     {
                         if (acl_table.stage != ACL_STAGE_INGRESS)
                         {
                             return false;
                         }
                     }
-                    else if (fv.second == TABLE_EGRESS)
+                    else if (fv.second == STAGE_EGRESS)
                     {
                         if (acl_table.stage != ACL_STAGE_EGRESS)
                         {
@@ -793,9 +790,6 @@ namespace aclorch_test
                         return false;
                     }
                 }
-                else if (fv.first == TABLE_PORTS)
-                {
-                }
             }
 
             return true;
@@ -951,17 +945,17 @@ namespace aclorch_test
 
         for (const auto &acl_table_type : { TABLE_TYPE_L3, TABLE_TYPE_L3V6 })
         {
-            for (const auto &acl_table_stage : { TABLE_INGRESS, TABLE_EGRESS })
+            for (const auto &acl_table_stage : { STAGE_INGRESS, STAGE_EGRESS })
             {
                 string acl_table_id = "acl_table_1";
 
                 auto kvfAclTable = deque<KeyOpFieldsValuesTuple>(
                     { { acl_table_id,
                         SET_COMMAND,
-                        { { TABLE_DESCRIPTION, "filter source IP" },
-                          { TABLE_TYPE, acl_table_type },
-                          { TABLE_STAGE, acl_table_stage },
-                          { TABLE_PORTS, "1,2" } } } });
+                        { { ACL_TABLE_DESCRIPTION, "filter source IP" },
+                          { ACL_TABLE_TYPE, acl_table_type },
+                          { ACL_TABLE_STAGE, acl_table_stage },
+                          { ACL_TABLE_PORTS, "1,2" } } } });
                 // FIXME:                  ^^^^^^^^^^^^^ fixed port
 
                 orch->doAclTableTask(kvfAclTable);
@@ -1012,12 +1006,12 @@ namespace aclorch_test
         auto kvfAclTable = deque<KeyOpFieldsValuesTuple>(
             { { acl_table_id,
                 SET_COMMAND,
-                { { TABLE_DESCRIPTION, "filter source IP" },
-                  { TABLE_TYPE, TABLE_TYPE_L3 },
+                { { ACL_TABLE_DESCRIPTION, "filter source IP" },
+                  { ACL_TABLE_TYPE, TABLE_TYPE_L3 },
                   //            ^^^^^^^^^^^^^ L3 ACL
-                  { TABLE_STAGE, TABLE_INGRESS },
+                  { ACL_TABLE_STAGE, STAGE_INGRESS },
                   // FIXME:      ^^^^^^^^^^^^^ only support / test for ingress ?
-                  { TABLE_PORTS, "1,2" } } } });
+                  { ACL_TABLE_PORTS, "1,2" } } } });
         // FIXME:                  ^^^^^^^^^^^^^ fixed port
 
         orch->doAclTableTask(kvfAclTable);
@@ -1102,12 +1096,12 @@ namespace aclorch_test
         auto kvfAclTable = deque<KeyOpFieldsValuesTuple>(
             { { acl_table_id,
                 SET_COMMAND,
-                { { TABLE_DESCRIPTION, "filter source IP" },
-                  { TABLE_TYPE, TABLE_TYPE_L3V6 },
+                { { ACL_TABLE_DESCRIPTION, "filter source IP" },
+                  { ACL_TABLE_TYPE, TABLE_TYPE_L3V6 },
                   //            ^^^^^^^^^^^^^ L3V6 ACL
-                  { TABLE_STAGE, TABLE_INGRESS },
+                  { ACL_TABLE_STAGE, STAGE_INGRESS },
                   // FIXME:      ^^^^^^^^^^^^^ only support / test for ingress ?
-                  { TABLE_PORTS, "1,2" } } } });
+                  { ACL_TABLE_PORTS, "1,2" } } } });
         // FIXME:                  ^^^^^^^^^^^^^ fixed port
 
         orch->doAclTableTask(kvfAclTable);

Original file line number	Diff line number	Diff line change
`@@ -3103,11 +3103,11 @@ void AclOrch::doAclTableTask(Consumer &consumer)`
`3103`	`3103`
`3104`	`3104`	`SWSS_LOG_DEBUG("TABLE ATTRIBUTE: %s : %s", attr_name.c_str(), attr_value.c_str());`
`3105`	`3105`
`3106`		`- if (attr_name == TABLE_DESCRIPTION)`
	`3106`	`+ if (attr_name == ACL_TABLE_DESCRIPTION)`
`3107`	`3107`	`{`
`3108`	`3108`	`newTable.description = attr_value;`
`3109`	`3109`	`}`
`3110`		`- else if (attr_name == TABLE_TYPE)`
	`3110`	`+ else if (attr_name == ACL_TABLE_TYPE)`
`3111`	`3111`	`{`
`3112`	`3112`	`if (!processAclTableType(attr_value, newTable.type))`
`3113`	`3113`	`{`
`@@ -3117,7 +3117,7 @@ void AclOrch::doAclTableTask(Consumer &consumer)`
`3117`	`3117`	`break;`
`3118`	`3118`	`}`
`3119`	`3119`	`}`
`3120`		`- else if (attr_name == TABLE_PORTS)`
	`3120`	`+ else if (attr_name == ACL_TABLE_PORTS)`
`3121`	`3121`	`{`
`3122`	`3122`	`if (!processAclTablePorts(attr_value, newTable))`
`3123`	`3123`	`{`
`@@ -3127,7 +3127,7 @@ void AclOrch::doAclTableTask(Consumer &consumer)`
`3127`	`3127`	`break;`
`3128`	`3128`	`}`
`3129`	`3129`	`}`
`3130`		`- else if (attr_name == TABLE_STAGE)`
	`3130`	`+ else if (attr_name == ACL_TABLE_STAGE)`
`3131`	`3131`	`{`
`3132`	`3132`	`if (!processAclTableStage(attr_value, newTable.stage))`
`3133`	`3133`	`{`
`@@ -3137,7 +3137,7 @@ void AclOrch::doAclTableTask(Consumer &consumer)`
`3137`	`3137`	`break;`
`3138`	`3138`	`}`
`3139`	`3139`	`}`
`3140`		`- else if (attr_name == TABLE_SERVICES)`
	`3140`	`+ else if (attr_name == ACL_TABLE_SERVICES)`
`3141`	`3141`	`{`
`3142`	`3142`	`// TODO: validate control plane ACL table has this attribute`
`3143`	`3143`	`continue;`
Original file line number	Diff line number	Diff line change
`@@ -748,10 +748,7 @@ namespace aclorch_test`
`748`	`748`	`{`
`749`	`749`	`for (const auto &fv : values)`
`750`	`750`	`{`
`751`		`- if (fv.first == TABLE_DESCRIPTION)`
`752`		`- {`
`753`		`- }`
`754`		`- else if (fv.first == TABLE_TYPE)`
	`751`	`+ if (fv.first == ACL_TABLE_TYPE)`
`755`	`752`	`{`
`756`	`753`	`if (fv.second == TABLE_TYPE_L3)`
`757`	`754`	`{`
`@@ -772,16 +769,16 @@ namespace aclorch_test`
`772`	`769`	`return false;`
`773`	`770`	`}`
`774`	`771`	`}`
`775`		`- else if (fv.first == TABLE_STAGE)`
	`772`	`+ else if (fv.first == ACL_TABLE_STAGE)`
`776`	`773`	`{`
`777`		`- if (fv.second == TABLE_INGRESS)`
	`774`	`+ if (fv.second == STAGE_INGRESS)`
`778`	`775`	`{`
`779`	`776`	`if (acl_table.stage != ACL_STAGE_INGRESS)`
`780`	`777`	`{`
`781`	`778`	`return false;`
`782`	`779`	`}`
`783`	`780`	`}`
`784`		`- else if (fv.second == TABLE_EGRESS)`
	`781`	`+ else if (fv.second == STAGE_EGRESS)`
`785`	`782`	`{`
`786`	`783`	`if (acl_table.stage != ACL_STAGE_EGRESS)`
`787`	`784`	`{`
`@@ -793,9 +790,6 @@ namespace aclorch_test`
`793`	`790`	`return false;`
`794`	`791`	`}`
`795`	`792`	`}`
`796`		`- else if (fv.first == TABLE_PORTS)`
`797`		`- {`
`798`		`- }`
`799`	`793`	`}`
`800`	`794`
`801`	`795`	`return true;`
`@@ -951,17 +945,17 @@ namespace aclorch_test`
`951`	`945`
`952`	`946`	`for (const auto &acl_table_type : { TABLE_TYPE_L3, TABLE_TYPE_L3V6 })`
`953`	`947`	`{`
`954`		`- for (const auto &acl_table_stage : { TABLE_INGRESS, TABLE_EGRESS })`
	`948`	`+ for (const auto &acl_table_stage : { STAGE_INGRESS, STAGE_EGRESS })`
`955`	`949`	`{`
`956`	`950`	`string acl_table_id = "acl_table_1";`
`957`	`951`
`958`	`952`	`auto kvfAclTable = deque<KeyOpFieldsValuesTuple>(`
`959`	`953`	`{ { acl_table_id,`
`960`	`954`	`SET_COMMAND,`
`961`		`- { { TABLE_DESCRIPTION, "filter source IP" },`
`962`		`- { TABLE_TYPE, acl_table_type },`
`963`		`- { TABLE_STAGE, acl_table_stage },`
`964`		`- { TABLE_PORTS, "1,2" } } } });`
	`955`	`+ { { ACL_TABLE_DESCRIPTION, "filter source IP" },`
	`956`	`+ { ACL_TABLE_TYPE, acl_table_type },`
	`957`	`+ { ACL_TABLE_STAGE, acl_table_stage },`
	`958`	`+ { ACL_TABLE_PORTS, "1,2" } } } });`
`965`	`959`	`// FIXME: ^^^^^^^^^^^^^ fixed port`
`966`	`960`
`967`	`961`	`orch->doAclTableTask(kvfAclTable);`
`@@ -1012,12 +1006,12 @@ namespace aclorch_test`
`1012`	`1006`	`auto kvfAclTable = deque<KeyOpFieldsValuesTuple>(`
`1013`	`1007`	`{ { acl_table_id,`
`1014`	`1008`	`SET_COMMAND,`
`1015`		`- { { TABLE_DESCRIPTION, "filter source IP" },`
`1016`		`- { TABLE_TYPE, TABLE_TYPE_L3 },`
	`1009`	`+ { { ACL_TABLE_DESCRIPTION, "filter source IP" },`
	`1010`	`+ { ACL_TABLE_TYPE, TABLE_TYPE_L3 },`
`1017`	`1011`	`// ^^^^^^^^^^^^^ L3 ACL`
`1018`		`- { TABLE_STAGE, TABLE_INGRESS },`
	`1012`	`+ { ACL_TABLE_STAGE, STAGE_INGRESS },`
`1019`	`1013`	`// FIXME: ^^^^^^^^^^^^^ only support / test for ingress ?`
`1020`		`- { TABLE_PORTS, "1,2" } } } });`
	`1014`	`+ { ACL_TABLE_PORTS, "1,2" } } } });`
`1021`	`1015`	`// FIXME: ^^^^^^^^^^^^^ fixed port`
`1022`	`1016`
`1023`	`1017`	`orch->doAclTableTask(kvfAclTable);`
`@@ -1102,12 +1096,12 @@ namespace aclorch_test`
`1102`	`1096`	`auto kvfAclTable = deque<KeyOpFieldsValuesTuple>(`
`1103`	`1097`	`{ { acl_table_id,`
`1104`	`1098`	`SET_COMMAND,`
`1105`		`- { { TABLE_DESCRIPTION, "filter source IP" },`
`1106`		`- { TABLE_TYPE, TABLE_TYPE_L3V6 },`
	`1099`	`+ { { ACL_TABLE_DESCRIPTION, "filter source IP" },`
	`1100`	`+ { ACL_TABLE_TYPE, TABLE_TYPE_L3V6 },`
`1107`	`1101`	`// ^^^^^^^^^^^^^ L3V6 ACL`
`1108`		`- { TABLE_STAGE, TABLE_INGRESS },`
	`1102`	`+ { ACL_TABLE_STAGE, STAGE_INGRESS },`
`1109`	`1103`	`// FIXME: ^^^^^^^^^^^^^ only support / test for ingress ?`
`1110`		`- { TABLE_PORTS, "1,2" } } } });`
	`1104`	`+ { ACL_TABLE_PORTS, "1,2" } } } });`
`1111`	`1105`	`// FIXME: ^^^^^^^^^^^^^ fixed port`
`1112`	`1106`
`1113`	`1107`	`orch->doAclTableTask(kvfAclTable);`