| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Wed, 2 Oct 2013 15:35:07 -0500 From: Shawn Bohrer <sbohrer@...advisors.com> To: Eric Dumazet <eric.dumazet@...il.com> Cc: David Miller <davem@...emloft.net>, tomk@...advisors.com, netdev <netdev@...r.kernel.org> Subject: Re: [net-next 2/3] udp: Add udp early demux On Wed, Oct 02, 2013 at 11:09:25AM -0700, Eric Dumazet wrote: > On Wed, 2013-10-02 at 12:34 -0500, Shawn Bohrer wrote: > > On Tue, Oct 01, 2013 at 01:52:49PM -0700, Eric Dumazet wrote: > > > On Tue, 2013-10-01 at 14:33 -0500, Shawn Bohrer wrote: > > > > The removal of the routing cache introduced a performance regression for > > > > some UDP workloads since a dst lookup must be done for each packet. > > > > This change caches the dst per socket in a similar manner to what we do > > > > for TCP by implementing early_demux. > > > > > > > > For UDP multicast we can only cache the dst if there is only one > > > > receiving socket on the host. Since caching only works when there is > > > > one receiving socket we do the multicast socket lookup using RCU. > > > > > > For unicast, we should find a matching socket for early demux only if > > > this is a connected socket. > > > > > > Otherwise, forwarding setups will break. > > > > > > You probably need to add a minimum score to __udp4_lib_lookup() > > > > Perhaps I'm missing something but I don't think a minimum score would > > work because compute_score() and compute_score2() have several ways of > > returning a score of lets say 4 and I don't think they all mean the > > socket is connected. > > Just change how score is computed. The existing +4 values are not hard > coded anywhere. > > You want to compute a score so that a single compare against a threshold > is enough to tell you what's going on, before even taking a refcount on > the socket. Sorry, I must be a little slow today. I understand what you are suggesting but I don't see how to implement it with a score. Or at least not without potentially changing existing behavior. For example I could make the inet->inet_daddr case add +100 to the score and I would know that a score >= 100 was connected. However, this would unfairly favor that one case making a socket that only had a matching inet_daddr be better than one that only had a matching inet_dport, sk_bound_dev_if, and inet_rcv_saddr. The other possibility I can think of would be to use a bit mask so I could see which tests passed and I could compute a score by counting the set bits. This would probably work since most of the tests currently add an equal weight of 4 except for the one (sk->sk_family == PF_INET) test which I'm not sure how to handle using this strategy. Did you have something specific in mind with your suggestion? Thanks, Shawn -- --------------------------------------------------------------- This email, along with any attachments, is confidential. If you believe you received this message in error, please contact the sender immediately and delete all copies of the message. Thank you. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists