From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=B1s+=5M=vger.kernel.org=bpf-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-2.2 required=3.0 tests=DKIM_SIGNED,DKIM_VALID,
	HEADER_FROM_DIFFERENT_DOMAINS,MAILING_LIST_MULTI,SPF_HELO_NONE,SPF_PASS,
	URIBL_BLOCKED,USER_AGENT_SANE_1 autolearn=no autolearn_force=no version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 5B7FEC43331
	for <bpf@archiver.kernel.org>; Fri, 27 Mar 2020 18:34:12 +0000 (UTC)
Received: from vger.kernel.org (vger.kernel.org [209.132.180.67])
	by mail.kernel.org (Postfix) with ESMTP id 3148620737
	for <bpf@archiver.kernel.org>; Fri, 27 Mar 2020 18:34:12 +0000 (UTC)
Authentication-Results: mail.kernel.org;
	dkim=pass (2048-bit key) header.d=mojatatu-com.20150623.gappssmtp.com header.i=@mojatatu-com.20150623.gappssmtp.com header.b="kqg/UNU3"
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1726900AbgC0SeL (ORCPT <rfc822;bpf@archiver.kernel.org>);
        Fri, 27 Mar 2020 14:34:11 -0400
Received: from mail-il1-f193.google.com ([209.85.166.193]:43584 "EHLO
        mail-il1-f193.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1726515AbgC0SeL (ORCPT <rfc822;bpf@vger.kernel.org>);
        Fri, 27 Mar 2020 14:34:11 -0400
Received: by mail-il1-f193.google.com with SMTP id g15so9684706ilj.10
        for <bpf@vger.kernel.org>; Fri, 27 Mar 2020 11:34:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=mojatatu-com.20150623.gappssmtp.com; s=20150623;
        h=subject:to:cc:references:from:message-id:date:user-agent
         :mime-version:in-reply-to:content-language:content-transfer-encoding;
        bh=09r2WOrp7wvjc0ckXYdVFEUESnByeqZbo2litgOdFvY=;
        b=kqg/UNU3JX9I2Xt9TkwnCldYTPJlu4P2jnJkAomKFHbwyLook3OZJsHQT7ycDMlzcN
         SCas29/91/kIbz5jggXrJSLJJZT+VjubA16+jtGz6w56P6OB1jXo/q7EJZ5wQFgucSo6
         hAfKPRlXgLp7QZOsTqF8uyhjsIAizhAn0sHy3iQP8TX55MWR71xnfhJ+1dwRbVeSACfG
         jQi1ltoJepQ4XKAeP7aFUNuGCOylMU3KLbVc9viMCvsw+kFAv3VkxDOSIBidkF1RSoAj
         6uvtY+LJ5yA2ug4fheR8pEEnGKOEsBp31avGed/f4VPo4G+GZVy6X30LhFH9vPJFXw8r
         5AlQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:subject:to:cc:references:from:message-id:date
         :user-agent:mime-version:in-reply-to:content-language
         :content-transfer-encoding;
        bh=09r2WOrp7wvjc0ckXYdVFEUESnByeqZbo2litgOdFvY=;
        b=YGhFbpsD5xQecS5eNBNr9KMDcvtwM1f3V1XY7msKZAjp+Mr9z9b36tF78PY9kNBARE
         9ciQjl2gw8UgwHZMe3Y3OQMXMl3D9sh+7itquUcBs3YZH+XTjlKGuR7KYKtsrOMl2kFH
         /3k+oqLJlPUmdLFRgXNTHWw6qfqQXuQR0zhqQF5xfRJSFp3CjwW9EKw+9u3JLXM5XZPb
         AkK8jZeAXSg+r+bAhCtVKAvxWFPDgxmM83Z2LBZkBdRcMhB/NINd4MWjA0Gc50EAhWdE
         OXQwdLce2hDOJDwoGYsNr1nZh7CJ4qQVykNyYMuUKND0sQKDBTqp5PWnCxfnRICrM4q6
         2OKw==
X-Gm-Message-State: ANhLgQ2sQJw3WCzUoQraJRqxtb5m6t6QKnAwNxHRkcZoP5PPXSN7U+3Q
        8+odEA8HKwQVx7YS0uuqCjJYjQ==
X-Google-Smtp-Source: ADFU+vtUBNtZi6++hllaaNBNCImnw+ZxgVcOvu3ukrmULjzYYI7SgMec9A5bFqkGFMYySqrxTpjOPg==
X-Received: by 2002:a92:8352:: with SMTP id f79mr482044ild.58.1585334050570;
        Fri, 27 Mar 2020 11:34:10 -0700 (PDT)
Received: from [10.0.0.125] (23-233-27-60.cpe.pppoe.ca. [23.233.27.60])
        by smtp.googlemail.com with ESMTPSA id t24sm2111485ill.63.2020.03.27.11.34.09
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Fri, 27 Mar 2020 11:34:09 -0700 (PDT)
Subject: Re: [PATCHv3 bpf-next 0/5] Add bpf_sk_assign eBPF helper
To:     Joe Stringer <joe@wand.net.nz>
Cc:     bpf <bpf@vger.kernel.org>, netdev <netdev@vger.kernel.org>,
        Daniel Borkmann <daniel@iogearbox.net>,
        Alexei Starovoitov <ast@kernel.org>,
        Eric Dumazet <eric.dumazet@gmail.com>,
        Lorenz Bauer <lmb@cloudflare.com>,
        Martin KaFai Lau <kafai@fb.com>,
        Roman Mashak <mrv@mojatatu.com>
References: <20200327042556.11560-1-joe@wand.net.nz>
 <9ee7da2e-3675-9bd2-e317-c86cfa284e85@mojatatu.com>
 <CAOftzPjWtL5a5j3GAJW5SOhWS1Jx43XWSwb7ksTaXC5-sAaw2w@mail.gmail.com>
From:   Jamal Hadi Salim <jhs@mojatatu.com>
Message-ID: <52f33dc9-734c-d509-8da3-3e2cbdbaec45@mojatatu.com>
Date:   Fri, 27 Mar 2020 14:34:09 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101
 Thunderbird/68.5.0
MIME-Version: 1.0
In-Reply-To: <CAOftzPjWtL5a5j3GAJW5SOhWS1Jx43XWSwb7ksTaXC5-sAaw2w@mail.gmail.com>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Language: en-GB
Content-Transfer-Encoding: 7bit
Sender: bpf-owner@vger.kernel.org
Precedence: bulk
List-ID: <bpf.vger.kernel.org>
X-Mailing-List: bpf@vger.kernel.org

On 2020-03-27 1:43 p.m., Joe Stringer wrote:
> On Fri, Mar 27, 2020 at 7:14 AM Jamal Hadi Salim <jhs@mojatatu.com> wrote:
>>

[..]
>>
>> Trying to understand so if we can port our tc action (and upstream),
>> we would need to replicate:
>>
>>    bpf_sk_assign() - invoked everytime we succeed finding the sk
>>    bpf_sk_release() - invoked everytime we are done processing the sk
> 
> The skb->destructor = sock_pfree() is the balanced other half of
> bpf_sk_assign(), so you shouldn't need to explicitly call
> bpf_sk_release() to handle the refcounting of the assigned socket.
>

per other thread, I think once you factor out what those two functions
call into the kernel proper we will just call those same
things..

> The `bpf_sk_release()` pairs with BPF socket lookup, so if you already
> have other socket lookup code handling the core tproxy logic (looking
> up established, then looking up listen sockets with different tuple)
> then you're presumably already handling that to avoid leaking
> references.
> 

Yes, we have all that code already.

> I think that looking at the test_sk_assign.c BPF program in patch 4/5
> should give you a good sense for what you'd need in the TC action
> logic.

Seems like we are on track. Thanks again for working on this.

cheers,
jamal