| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 22 Dec 2014 07:10:27 -0500 From: Jamal Hadi Salim <jhs@...atatu.com> To: Roopa Prabhu <roopa@...ulusnetworks.com> CC: John Fastabend <john.fastabend@...il.com>, Hubert Sokolowski <h.sokolowski@....edu.pl>, "netdev@...r.kernel.org" <netdev@...r.kernel.org>, Vlad Yasevich <vyasevic@...hat.com>, Shrijeet Mukherjee <shm@...ulusnetworks.com> Subject: Re: SRIOV as bridge Re: [PATCH net-next RESEND] net: Do not call ndo_dflt_fdb_dump if ndo_fdb_dump is defined. On 12/22/14 01:24, Roopa Prabhu wrote: > On 12/21/14, 7:13 PM, Jamal Hadi Salim wrote: >> For SRIOV it is. Example to add via pf eth10 an >> fdb entry to the igb hardware fdb to point to vf1: >> ip link set eth10 vf 1 mac aa:bb:cc:dd:ee:ff vlan 10 >> That last part "vf 1 mac aa:bb:cc:dd:ee:ff vlan 10" is typically >> part of an "fdb add semantic" - but we explicitly call out >> eth10, the parent. The PF has control of the hardware fdb. > > Ah......i did not know this syntax with 'ip link set'. thanks for > pointing out. > I always thought that you can still use 'bridge fdb add' for vfs. > Curious why its not that way. > It was there before bridge command showed up. I think thats why John feels it can be repaired. The main challenge is that most of the time the VFs are "migrated" from host to VMs, so you cant even list them on the host. Actually you cant list them as netdevs (please someone correct me if i am wrong). What you see are PCI devices. From my notes: --- modprobe igb max_vfs=6 # lspci | grep 82576 0b:00.0 Ethernet controller: Intel Corporation 82576 Gigabit Network Connection (rev 01) 0b:00.1 Ethernet controller: Intel Corporation 82576 Gigabit Network Connection(rev 01) 0b:10.0 Ethernet controller: Intel Corporation 82576 Virtual Function (rev 01) 0b:10.1 Ethernet controller: Intel Corporation 82576 Virtual Function (rev 01) .. ... .... --- And then you can tell qemu to use one of these devices as a network device and holla it disappears from the host. What you can do from the host side is tell the embedded hardware switch to add an fdb which sends packets to a VF using the above syntax (via PF). I think PF as control interface to the VFs is a convinience issue. It just happened to be there and could be used as the anchor. This is why i was mapping it instead to theclassthingy which i think is more generic. > >> So what do you do if the user sets either one of master/self and it >> doesnt make sense? > > Am guessing it will continue to do what it does today. If there is no > master or if there is master and the master does not support the op, it > will return -EOPNOTSUPP. And, self does not make sense in cases where > the port driver does not support the op. In which case again you will > get a -EOPNOTSUPP. Have not thought through all the other cases yet. > So master is only valid if there is a software device parent? Again note - none of these VFs are attached to a bridge today. It doesnt seem to me like it even makes sense people want to do that. The PF could be and in such a case its master is the bridge. cheers, jamal -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists