| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 12 Dec 2016 10:40:42 +0100
From: Jesper Dangaard Brouer <brouer@...hat.com>
To: Mike Rapoport <rppt@...ux.vnet.ibm.com>
Cc: "netdev@...r.kernel.org" <netdev@...r.kernel.org>,
linux-mm <linux-mm@...ck.org>,
John Fastabend <john.fastabend@...il.com>,
Willem de Bruijn <willemdebruijn.kernel@...il.com>,
Björn Töpel <bjorn.topel@...el.com>,
"Karlsson, Magnus" <magnus.karlsson@...el.com>,
Alexander Duyck <alexander.duyck@...il.com>,
Mel Gorman <mgorman@...hsingularity.net>,
Tom Herbert <tom@...bertland.com>,
Brenden Blanco <bblanco@...mgrid.com>,
Tariq Toukan <tariqt@...lanox.com>,
Saeed Mahameed <saeedm@...lanox.com>,
Jesse Brandeburg <jesse.brandeburg@...el.com>,
Kalman Meth <METH@...ibm.com>, brouer@...hat.com
Subject: Re: Designing a safe RX-zero-copy Memory Model for Networking
On Mon, 12 Dec 2016 10:38:13 +0200 Mike Rapoport <rppt@...ux.vnet.ibm.com> wrote:
> Hello Jesper,
>
> On Mon, Dec 05, 2016 at 03:31:32PM +0100, Jesper Dangaard Brouer wrote:
> > Hi all,
> >
> > This is my design for how to safely handle RX zero-copy in the network
> > stack, by using page_pool[1] and modifying NIC drivers. Safely means
> > not leaking kernel info in pages mapped to userspace and resilience
> > so a malicious userspace app cannot crash the kernel.
> >
> > Design target
> > =============
> >
> > Allow the NIC to function as a normal Linux NIC and be shared in a
> > safe manor, between the kernel network stack and an accelerated
> > userspace application using RX zero-copy delivery.
> >
> > Target is to provide the basis for building RX zero-copy solutions in
> > a memory safe manor. An efficient communication channel for userspace
> > delivery is out of scope for this document, but OOM considerations are
> > discussed below (`Userspace delivery and OOM`_).
>
> Sorry, if this reply is a bit off-topic.
It is very much on topic IMHO :-)
> I'm working on implementation of RX zero-copy for virtio and I've dedicated
> some thought about making guest memory available for physical NIC DMAs.
> I believe this is quite related to your page_pool proposal, at least from
> the NIC driver perspective, so I'd like to share some thoughts here.
Seems quite related. I'm very interested in cooperating with you! I'm
not very familiar with virtio, and how packets/pages gets channeled
into virtio.
> The idea is to dedicate one (or more) of the NIC's queues to a VM, e.g.
> using macvtap, and then propagate guest RX memory allocations to the NIC
> using something like new .ndo_set_rx_buffers method.
I believe the page_pool API/design aligns with this idea/use-case.
> What is your view about interface between the page_pool and the NIC
> drivers?
In my Prove-of-Concept implementation, the NIC driver (mlx5) register
a page_pool per RX queue. This is done for two reasons (1) performance
and (2) for supporting use-cases where only one single RX-ring queue is
(re)configured to support RX-zero-copy. There are some associated
extra cost of enabling this mode, thus it makes sense to only enable it
when needed.
I've not decided how this gets enabled, maybe some new driver NDO. It
could also happen when a XDP program gets loaded, which request this
feature.
The macvtap solution is nice and we should support it, but it requires
VM to have their MAC-addr registered on the physical switch. This
design is about adding flexibility. Registering an XDP eBPF filter
provides the maximum flexibility for matching the destination VM.
> Have you considered using "push" model for setting the NIC's RX memory?
I don't understand what you mean by a "push" model?
--
Best regards,
Jesper Dangaard Brouer
MSc.CS, Principal Kernel Engineer at Red Hat
LinkedIn: http://www.linkedin.com/in/brouer
Powered by blists - more mailing lists