lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <20141210095918.GC1863@nanopsycho.orion>
Date:	Wed, 10 Dec 2014 10:59:18 +0100
From:	Jiri Pirko <jiri@...nulli.us>
To:	roopa@...ulusnetworks.com
Cc:	sfeldma@...il.com, jhs@...atatu.com, bcrl@...ck.org, tgraf@...g.ch,
	john.fastabend@...il.com, stephen@...workplumber.org,
	linville@...driver.com, vyasevic@...hat.com,
	netdev@...r.kernel.org, davem@...emloft.net,
	shm@...ulusnetworks.com, gospo@...ulusnetworks.com
Subject: Re: [PATCH net-next v2 3/4] bridge: offload bridge port attributes
 to switch asic if feature flag set

Wed, Dec 10, 2014 at 10:05:19AM CET, roopa@...ulusnetworks.com wrote:
>From: Roopa Prabhu <roopa@...ulusnetworks.com>
>
>This patch adds support to set/del bridge port attributes in hardware from
>the bridge driver.
>
>When the user sends a bridge setlink message, it will come in with 'master',
>   - go to the bridge driver ndo_bridge_setlink handler,
>   - set settings in the kernel
>   - if offload mode is set on the port, also call the swicthdev api to
>     propagate the attrs to the switchdev hardware
>
>   If you want to act on the hw alone, you can still use the self flag to
>   go to the switch hw or switch port driver directly.
>
>This is done in the bridge driver to rollback kernel settings
>on hw programming failure if required in the future.
>
>With this, it also makes sure a notification goes out only after the
>attributes are set both in the kernel and hw.
>
>The patch calls switchdev api only if BRIDGE_FLAGS_SELF is not set.
>This is because the offload cases with BRIDGE_FLAGS_SELF are handled in
>the caller (in rtnetlink.c). This needed flags (IFLA_BRIDGE_FLAGS) to be
>passed to bridge setlink and dellink functions, to avoid
>another call to parse of IFLA_AF_SPEC in br_setlink/br_getlink respectively.
>
>Signed-off-by: Roopa Prabhu <roopa@...ulusnetworks.com>
>---
> drivers/net/ethernet/intel/ixgbe/ixgbe_main.c |    2 +-
> drivers/net/ethernet/rocker/rocker.c          |    2 +-
> include/linux/netdevice.h                     |    4 +--
> net/bridge/br_netlink.c                       |   38 +++++++++++++++++++++----
> net/bridge/br_private.h                       |    4 +--
> net/core/rtnetlink.c                          |    8 +++---
> 6 files changed, 43 insertions(+), 15 deletions(-)
>
>diff --git a/drivers/net/ethernet/intel/ixgbe/ixgbe_main.c b/drivers/net/ethernet/intel/ixgbe/ixgbe_main.c
>index 9afa167..0b8cf39 100644
>--- a/drivers/net/ethernet/intel/ixgbe/ixgbe_main.c
>+++ b/drivers/net/ethernet/intel/ixgbe/ixgbe_main.c
>@@ -7721,7 +7721,7 @@ static int ixgbe_ndo_fdb_add(struct ndmsg *ndm, struct nlattr *tb[],
> }
> 
> static int ixgbe_ndo_bridge_setlink(struct net_device *dev,
>-				    struct nlmsghdr *nlh)
>+				    struct nlmsghdr *nlh, u16 flags)
> {
> 	struct ixgbe_adapter *adapter = netdev_priv(dev);
> 	struct nlattr *attr, *br_spec;
>diff --git a/drivers/net/ethernet/rocker/rocker.c b/drivers/net/ethernet/rocker/rocker.c
>index fded127..377979c 100644
>--- a/drivers/net/ethernet/rocker/rocker.c
>+++ b/drivers/net/ethernet/rocker/rocker.c
>@@ -3696,7 +3696,7 @@ skip:
> }
> 
> static int rocker_port_bridge_setlink(struct net_device *dev,
>-				      struct nlmsghdr *nlh)
>+				      struct nlmsghdr *nlh, u16 flags)
> {
> 	struct rocker_port *rocker_port = netdev_priv(dev);
> 	struct nlattr *protinfo;
>diff --git a/include/linux/netdevice.h b/include/linux/netdevice.h
>index 29c92ee..a9c2ce2 100644
>--- a/include/linux/netdevice.h
>+++ b/include/linux/netdevice.h
>@@ -1151,13 +1151,13 @@ struct net_device_ops {
> 						int idx);
> 
> 	int			(*ndo_bridge_setlink)(struct net_device *dev,
>-						      struct nlmsghdr *nlh);
>+						struct nlmsghdr *nlh, u16 flags);
> 	int			(*ndo_bridge_getlink)(struct sk_buff *skb,
> 						      u32 pid, u32 seq,
> 						      struct net_device *dev,
> 						      u32 filter_mask);
> 	int			(*ndo_bridge_dellink)(struct net_device *dev,
>-						      struct nlmsghdr *nlh);
>+						struct nlmsghdr *nlh, u16 flags);
> 	int			(*ndo_change_carrier)(struct net_device *dev,
> 						      bool new_carrier);
> 	int			(*ndo_get_phys_port_id)(struct net_device *dev,
>diff --git a/net/bridge/br_netlink.c b/net/bridge/br_netlink.c
>index 9f5eb55..b4299d1 100644
>--- a/net/bridge/br_netlink.c
>+++ b/net/bridge/br_netlink.c
>@@ -16,6 +16,7 @@
> #include <net/rtnetlink.h>
> #include <net/net_namespace.h>
> #include <net/sock.h>
>+#include <net/switchdev.h>
> #include <uapi/linux/if_bridge.h>
> 
> #include "br_private.h"
>@@ -359,13 +360,13 @@ static int br_setport(struct net_bridge_port *p, struct nlattr *tb[])
> }
> 
> /* Change state and parameters on port. */
>-int br_setlink(struct net_device *dev, struct nlmsghdr *nlh)
>+int br_setlink(struct net_device *dev, struct nlmsghdr *nlh, u16 flags)
> {
> 	struct nlattr *protinfo;
> 	struct nlattr *afspec;
> 	struct net_bridge_port *p;
> 	struct nlattr *tb[IFLA_BRPORT_MAX + 1];
>-	int err = 0;
>+	int err = 0, ret_offload = 0;
		     ^^^^^^^^^^^ you can reuse "err" for this.

> 
> 	protinfo = nlmsg_find_attr(nlh, sizeof(struct ifinfomsg), IFLA_PROTINFO);
> 	afspec = nlmsg_find_attr(nlh, sizeof(struct ifinfomsg), IFLA_AF_SPEC);
>@@ -407,19 +408,32 @@ int br_setlink(struct net_device *dev, struct nlmsghdr *nlh)
> 				afspec, RTM_SETLINK);
> 	}
> 
>+	if (!(flags & BRIDGE_FLAGS_SELF)) {
>+		/*
		  ^^^^^^^^^^^^^^^^^ Comment should start here.
		  This is also something that should be
		  discovered by scripts/checkpatch.pl
>+		 * set bridge attributes in hardware if supported
>+		 */
>+		ret_offload = netdev_switch_port_bridge_setlink(dev, nlh, flags);
>+		if (ret_offload && ret_offload != -EOPNOTSUPP) {
>+			/*
			  ^^^^^^^^^ same here

>+			 * XXX Fix this in the future to rollback
>+			 * kernel settings and return error

		How hard would it be to do the rollback now?


>+			 */
>+			br_warn(p->br, "error hw set of bridge attributes on port %u(%s)\n",					(unsigned int) p->port_no, p->dev->name);

											    ^^^^
											    missing
											    "\n"
											    here?

>+		}
>+	}
>+
> 	if (err == 0)
> 		br_ifinfo_notify(RTM_NEWLINK, p);
>-
> out:
> 	return err;
> }
> 
> /* Delete port information */
>-int br_dellink(struct net_device *dev, struct nlmsghdr *nlh)
>+int br_dellink(struct net_device *dev, struct nlmsghdr *nlh, u16 flags)
> {
> 	struct nlattr *afspec;
> 	struct net_bridge_port *p;
>-	int err;
>+	int err = 0, ret_offload = 0;
> 
> 	afspec = nlmsg_find_attr(nlh, sizeof(struct ifinfomsg), IFLA_AF_SPEC);
> 	if (!afspec)
>@@ -433,6 +447,20 @@ int br_dellink(struct net_device *dev, struct nlmsghdr *nlh)
> 	err = br_afspec((struct net_bridge *)netdev_priv(dev), p,
> 			afspec, RTM_DELLINK);
> 
>+	if (!(flags & BRIDGE_FLAGS_SELF)) {
>+		/*
		  ^^^ and here



>+		 * del bridge attributes in hardware
>+		 */
>+		ret_offload = netdev_switch_port_bridge_dellink(dev, nlh, flags);
>+		if (ret_offload && ret_offload != -EOPNOTSUPP) {
>+			/*
			  ^^^ and here


>+			 * XXX Fix this in the future to rollback
>+			 * kernel settings and return error
>+			 */
>+			br_warn(p->br, "error hw delete of bridge port attributes on port %u(%s)\n", (unsigned int) p->port_no, p->dev->name);
>+		}
>+	}
>+
> 	return err;
> }
> static int br_validate(struct nlattr *tb[], struct nlattr *data[])
>diff --git a/net/bridge/br_private.h b/net/bridge/br_private.h
>index aea3d13..0ebad7c 100644
>--- a/net/bridge/br_private.h
>+++ b/net/bridge/br_private.h
>@@ -815,8 +815,8 @@ extern struct rtnl_link_ops br_link_ops;
> int br_netlink_init(void);
> void br_netlink_fini(void);
> void br_ifinfo_notify(int event, struct net_bridge_port *port);
>-int br_setlink(struct net_device *dev, struct nlmsghdr *nlmsg);
>-int br_dellink(struct net_device *dev, struct nlmsghdr *nlmsg);
>+int br_setlink(struct net_device *dev, struct nlmsghdr *nlmsg, u16 flags);
>+int br_dellink(struct net_device *dev, struct nlmsghdr *nlmsg, u16 flags);
> int br_getlink(struct sk_buff *skb, u32 pid, u32 seq, struct net_device *dev,
> 	       u32 filter_mask);
> 
>diff --git a/net/core/rtnetlink.c b/net/core/rtnetlink.c
>index 61cb7e7..3c48d97 100644
>--- a/net/core/rtnetlink.c
>+++ b/net/core/rtnetlink.c
>@@ -2922,7 +2922,7 @@ static int rtnl_bridge_setlink(struct sk_buff *skb, struct nlmsghdr *nlh)
> 			goto out;
> 		}
> 
>-		err = br_dev->netdev_ops->ndo_bridge_setlink(dev, nlh);
>+		err = br_dev->netdev_ops->ndo_bridge_setlink(dev, nlh, flags);
> 		if (err)
> 			goto out;
> 
>@@ -2933,7 +2933,7 @@ static int rtnl_bridge_setlink(struct sk_buff *skb, struct nlmsghdr *nlh)
> 		if (!dev->netdev_ops->ndo_bridge_setlink)
> 			err = -EOPNOTSUPP;
> 		else
>-			err = dev->netdev_ops->ndo_bridge_setlink(dev, nlh);
>+			err = dev->netdev_ops->ndo_bridge_setlink(dev, nlh, flags);
> 
> 		if (!err)
> 			flags &= ~BRIDGE_FLAGS_SELF;
>@@ -2995,7 +2995,7 @@ static int rtnl_bridge_dellink(struct sk_buff *skb, struct nlmsghdr *nlh)
> 			goto out;
> 		}
> 
>-		err = br_dev->netdev_ops->ndo_bridge_dellink(dev, nlh);
>+		err = br_dev->netdev_ops->ndo_bridge_dellink(dev, nlh, flags);
> 		if (err)
> 			goto out;
> 
>@@ -3006,7 +3006,7 @@ static int rtnl_bridge_dellink(struct sk_buff *skb, struct nlmsghdr *nlh)
> 		if (!dev->netdev_ops->ndo_bridge_dellink)
> 			err = -EOPNOTSUPP;
> 		else
>-			err = dev->netdev_ops->ndo_bridge_dellink(dev, nlh);
>+			err = dev->netdev_ops->ndo_bridge_dellink(dev, nlh, flags);
> 
> 		if (!err)
> 			flags &= ~BRIDGE_FLAGS_SELF;
>-- 
>1.7.10.4
>
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ