From: Jesse Gross <jesse@nicira.com>
To: Tom Herbert <therbert@google.com>
Cc: Andy Zhou <azhou@nicira.com>, David Miller <davem@davemloft.net>,
Linux Netdev List <netdev@vger.kernel.org>
Subject: Re: [net-next 10/10] openvswitch: Add support for Geneve tunneling.
Date: Thu, 24 Jul 2014 00:10:41 -0400 [thread overview]
Message-ID: <CAEP_g=_1q3ACX5NTHxLDnysL+dTMUVzdLpgw1apLKEdDSWPztw@mail.gmail.com> (raw)
In-Reply-To: <CA+mtBx8UWoQhgGoXtyh=hHkhbodZyC8JSxnCfZFM5CpUT1ZZ9A@mail.gmail.com>
On Wed, Jul 23, 2014 at 4:29 PM, Tom Herbert <therbert@google.com> wrote:
> On Tue, Jul 22, 2014 at 3:19 AM, Andy Zhou <azhou@nicira.com> wrote:
>> diff --git a/net/openvswitch/vport-geneve.c b/net/openvswitch/vport-geneve.c
>> new file mode 100644
>> index 0000000..b1b0a3b
>> --- /dev/null
>> +++ b/net/openvswitch/vport-geneve.c
>> +static void geneve_rcv(struct geneve_sock *gs, struct sk_buff *skb)
>> +{
>> + struct vport *vport = gs->uts.data;
>> + struct genevehdr *geneveh;
>> + int opts_len;
>> + struct ovs_tunnel_info tun_info;
>> + __be64 key;
>> + __be16 flags;
>> +
>> + if (unlikely(!pskb_may_pull(skb, GENEVE_BASE_HLEN)))
>> + goto error;
>> +
>> + geneveh = geneve_hdr(skb);
>> +
>> + if (unlikely(geneveh->ver != GENEVE_VER))
>> + goto error;
>
>> +
>> + if (unlikely(geneveh->proto_type != htons(ETH_P_TEB)))
>
> Why? I thought the point of geneve carrying protocol field was to
> allow protocols other than Ethernet... is this temporary maybe?
Yes, it is temporary. Currently OVS only handles Ethernet packets but
this restriction can be lifted once we have a consumer that is capable
of handling other protocols.
> This check also applies in the OAM case where there is no data packet
> but we still enforce the protocol field to be Ethernert (meaning of
> prot_type when OAM bit is set is ambiguous in the draft). As I
> mentioned on the nvo3 list, this OAM bit is really a 1-bit packet
> type. If this bit is donated to version field (make it a type version
> field) then we can switch on ver_type above and create another
> processing path for OAM so that the prot_type is at least not
> unnecessarily verified in that case and the bits could even be reused
> for some OAM specific purpose.
I think the draft is clear :) The value of the OAM bit does not change
the interpretation of the protocol field. This is true in the other
drafts as well.
OAM packets are essentially just high priority packets (presumably
with some kind of control semantics but that depends on the control
plane). That means that they might be BFD or some other heartbeat,
header fragments for tracing, or really anything else that should be
treated as control. In all of these cases, the protocol type still
needs to indicate the format of the data.
>> + goto error;
>> +
>> + opts_len = geneveh->opt_len * 4;
>> +
>> + flags = TUNNEL_KEY |
>> + (udp_hdr(skb)->check != 0 ? TUNNEL_CSUM : 0) |
>> + (geneveh->oam ? TUNNEL_OAM : 0) |
>> + (geneveh->critical ? TUNNEL_CRIT_OPT : 0);
>
> Three conditionals in critical data path just extract the flags and
> not even do anything with them :-(. Also why should OVS care about
> checksum, it has already been validated at this point?
These flags are included in the flow structure, so they are consumed
by userspace.
OVS isn't validating the checksum, it's just marking which packets
have a checksum so that policy can be enforced. (I think you have
talked about something similar in the past - "I only want to accept
packets with a checksum even if no checksum is allowed by the
protocol.")
>> +static int geneve_send(struct vport *vport, struct sk_buff *skb)
>> +{
>> + struct ovs_key_ipv4_tunnel *tun_key;
>> + struct ovs_tunnel_info *tun_info = OVS_CB(skb)->tun_info;
>> + struct net *net = ovs_dp_get_net(vport->dp);
>> + struct geneve_port *geneve_port = geneve_vport(vport);
>> + __be16 dport = inet_sk(geneve_port->gs->uts.sock->sk)->inet_sport;
>> + __be16 sport;
>> + struct rtable *rt;
>> + struct flowi4 fl;
>> + u8 vni[3];
>> + __be16 df;
>> + int err;
>> + int sent;
>> +
>> + if (unlikely(!tun_info))
>> + return -EINVAL;
>> +
>> + tun_key = &tun_info->tunnel;
>> +
>> + /* Route lookup */
>> + memset(&fl, 0, sizeof(fl));
>> + fl.daddr = tun_key->ipv4_dst;
>> + fl.saddr = tun_key->ipv4_src;
>> + fl.flowi4_tos = RT_TOS(tun_key->ipv4_tos);
>> + fl.flowi4_mark = skb->mark;
>> + fl.flowi4_proto = IPPROTO_UDP;
>> +
>> + rt = ip_route_output_key(net, &fl);
>
> Route lookup on every packet? No route cached in the flow structs?
This is a possible future optimization.
next prev parent reply other threads:[~2014-07-24 4:11 UTC|newest]
Thread overview: 46+ messages / expand[flat|nested] mbox.gz Atom feed top
2014-07-22 10:19 [net-next 00/10] Add Geneve Andy Zhou
2014-07-22 10:19 ` [net-next 01/10] net: Rename ndo_add_vxlan_port to ndo_add_udp_tunnel_port Andy Zhou
2014-07-22 10:49 ` Varka Bhadram
2014-07-24 6:40 ` Or Gerlitz
2014-07-24 20:28 ` Andy Zhou
2014-07-22 10:19 ` [net-next 02/10] udp: Expand UDP tunnel common APIs Andy Zhou
[not found] ` <CA+mtBx9M_BpjT-_Egng+jFxmqJzdC2Npg0ufE2ZSAb9Lhw8hxg@mail.gmail.com>
2014-07-22 21:02 ` Andy Zhou
2014-07-22 21:16 ` Tom Herbert
2014-07-22 21:56 ` Jesse Gross
2014-07-22 22:38 ` Tom Herbert
2014-07-22 22:55 ` Alexander Duyck
2014-07-22 23:24 ` Tom Herbert
2014-07-23 2:16 ` Alexander Duyck
2014-07-23 3:53 ` Tom Herbert
2014-07-23 4:35 ` Jesse Gross
2014-07-23 15:45 ` Tom Herbert
2014-07-24 3:24 ` Jesse Gross
2014-07-22 23:12 ` Jesse Gross
2014-07-23 19:57 ` Tom Herbert
2014-07-24 20:23 ` Andy Zhou
2014-07-24 20:47 ` Tom Herbert
2014-07-24 20:54 ` Andy Zhou
2014-07-22 10:19 ` [net-next 03/10] vxlan: Remove vxlan_get_rx_port() Andy Zhou
[not found] ` <CAKgT0UeRSc3MaZrLmXyx4jPZO+F1hS5imR1TjFkvKp4S8nQmeg@mail.gmail.com>
2014-07-23 3:57 ` Andy Zhou
2014-07-22 10:19 ` [net-next 04/10] net: Refactor vxlan driver to make use of common UDP tunnel functions Andy Zhou
2014-07-24 6:46 ` Or Gerlitz
2014-07-22 10:19 ` [net-next 05/10] net: Add Geneve tunneling protocol driver Andy Zhou
2014-07-22 23:12 ` Alexander Duyck
2014-07-22 23:24 ` Jesse Gross
2014-07-23 14:11 ` John W. Linville
2014-07-23 18:20 ` Stephen Hemminger
2014-07-22 10:19 ` [net-next 06/10] openvswitch: Eliminate memset() from flow_extract Andy Zhou
2014-07-22 10:19 ` [net-next 07/10] openvswitch: Add support for matching on OAM packets Andy Zhou
2014-07-22 10:19 ` [net-next 08/10] openvswitch: Wrap struct ovs_key_ipv4_tunnel in a new structure Andy Zhou
2014-07-22 10:19 ` [net-next 09/10] openvswitch: Factor out allocation and verification of actions Andy Zhou
2014-07-22 10:19 ` [net-next 10/10] openvswitch: Add support for Geneve tunneling Andy Zhou
2014-07-23 20:29 ` Tom Herbert
2014-07-24 4:10 ` Jesse Gross [this message]
[not found] ` <CA+mtBx9umxiFYtnG1kzFkK+Ev=b=4f3q2OOow2QcfCB5rUTUyA@mail.gmail.com>
2014-07-24 22:59 ` Jesse Gross
2014-07-24 23:45 ` Tom Herbert
2014-07-25 1:04 ` Jesse Gross
2014-07-22 10:54 ` [net-next 00/10] Add Geneve Varka Bhadram
2014-07-24 6:58 ` Or Gerlitz
2014-07-24 17:40 ` Tom Herbert
2014-07-24 21:03 ` Andy Zhou
2014-07-24 22:03 ` Tom Herbert
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CAEP_g=_1q3ACX5NTHxLDnysL+dTMUVzdLpgw1apLKEdDSWPztw@mail.gmail.com' \
--to=jesse@nicira.com \
--cc=azhou@nicira.com \
--cc=davem@davemloft.net \
--cc=netdev@vger.kernel.org \
--cc=therbert@google.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.