| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <54FD3C23.2010002@cumulusnetworks.com>
Date: Sun, 08 Mar 2015 23:22:27 -0700
From: roopa <roopa@...ulusnetworks.com>
To: Scott Feldman <sfeldma@...il.com>
CC: Jamal Hadi Salim <jhs@...atatu.com>,
Netdev <netdev@...r.kernel.org>,
"David S. Miller" <davem@...emloft.net>,
Jiří Pírko <jiri@...nulli.us>,
"alexander.h.duyck@...hat.com" <alexander.h.duyck@...hat.com>
Subject: Re: [PATCH net-next v4 2/8] netdevice: add IPv4 fib add/del ops
On 3/8/15, 3:16 PM, Scott Feldman wrote:
> On Sun, Mar 8, 2015 at 7:31 AM, roopa <roopa@...ulusnetworks.com> wrote:
>> On 3/6/15, 11:59 AM, Scott Feldman wrote:
>>>
>>> I considered passing netlink flags in to driver, but the kernel logic
>>> in fib_table_insert() already takes care of the checks required by the
>>> flags, and from the driver's perspective, only three ops are needed:
>>> add, del, and mod. And I've combined add and mod into the same op,
>>> with the assumption the driver can know if an entry exists or not.
>>>
>>> Can it work?
>>>
>>> Let's try the various user cmds and see what happens:
>>>
>>> ip route add ... CREATE|EXCL
>>>
>>> if kernel FIB entry exists
>>> return -EEXIST to user
>>> else
>>> call driver add op
>>> add kernel FIB entry
>>>
>>> ip route change ... REPLACE
>>>
>>> if kernel FIB entry exists
>>> call driver add op // driver treats this as a mod
>>> modify kernel FIB entry
>>> else
>>> return -ENOENT
>>>
>>> ip route replace ... CREATE|REPLACE
>>>
>>> if kernel FIB entry exists
>>> call driver add op // driver treats this as a mod
>>> modify kernel FIB entry
>>> else
>>> call driver add op
>>> add kernel FIB entry
>>>
>>> ip route prepend ... CREATE
>>>
>>> if kernel FIB entry exists
>>> call driver add op // driver treats this as a mod
>>> prepend kernel FIB entry
>>> else
>>> call driver add op
>>> add kernel FIB entry
>>>
>>> ip route append ... CREATE|APPEND
>>>
>>> if kernel FIB entry exists
>>> call driver add op // driver treats this as a mod
>>> append kernel FIB entry
>>> else
>>> call driver add op
>>> add kernel FIB entry
>>>
>>>
>>> I'm not 100% on the prepend/append cases. Maybe don't try to offload
>>> prepend/append cases?
>> We will have to offload prepend/append cases as well (I had also raised this
>> earlier in v2).
> Can you show an working example of prepend/append case where
> programming hardware would be different than the replace case?
>
>
scott, I don't have an example of kernel vs hw right now. But, since we
only want to know if the switch driver can figure out
the kernel route ordering in case of append vs replace, below kernel
append and replace examples
might help (just pasting it from my notes and may contain unneeded
information).
Thanks,
Roopa
append:
=====
#ipv4
ip route show
10.0.12.2
nexthop via 10.0.13.2 dev dummy0 weight 1
nexthop via 10.0.14.2 dev dummy1 weight 1
ip route append 10.0.12.2 nexthop via 10.0.15.2 dev dummy2
ip monitor route
10.0.12.2 via 10.0.15.2 dev dummy2
# A new route was appended
ip route show
10.0.12.2
nexthop via 10.0.13.2 dev dummy0 weight 1
nexthop via 10.0.14.2 dev dummy1 weight 1
10.0.12.2 via 10.0.15.2 dev dummy2
#ipv6
ip -6 route show
3ffe:304:124:2306::/64 via fe80::b077:f0ff:fe23:5cc7 dev dummy0 metric 1024
3ffe:304:124:2306::/64 via fe80::d850:e7ff:fe87:cf6a dev dummy1 metric 1024
ip monitor route
3ffe:304:124:2306::/64 via fe80::c26:cdff:feca:18f2 dev dummy2 metric 1024
ip -6 route append 3ffe:304:124:2306::/64 nexthop via
fe80::c26:cdff:feca:18f2 dev dummy2
# A new nexthop was appended to the existing multipath route
ip -6 route show
3ffe:304:124:2306::/64 via fe80::b077:f0ff:fe23:5cc7 dev dummy0 metric 1024
3ffe:304:124:2306::/64 via fe80::d850:e7ff:fe87:cf6a dev dummy1 metric 1024
3ffe:304:124:2306::/64 nexthop via fe80::c26:cdff:feca:18f2 dev dummy2
replace:
=====
# ip route show
10.0.12.2
nexthop via 10.0.13.2 dev dummy0 weight 1
nexthop via 10.0.14.2 dev dummy1 weight 1
#ip route replace 10.0.12.2 nexthop via 10.0.15.2 dev dummy2
#ip monitor route
10.0.12.2 via 10.0.15.2 dev dummy2
# ipv4 route was replaced
ip route show
10.0.12.2 via 10.0.15.2 dev dummy2
#ipv6
ip -6 route show
3ffe:304:124:2306::/64 via fe80::b077:f0ff:fe23:5cc7 dev dummy0 metric 1024
3ffe:304:124:2306::/64 via fe80::d850:e7ff:fe87:cf6a dev dummy1 metric 1024
ip -6 route replace 3ffe:304:124:2306::/64 nexthop via
fe80::c26:cdff:feca:18f2 dev dummy2
ip monitor route
3ffe:304:124:2306::/64 via fe80::c26:cdff:feca:18f2 dev dummy2 metric 1024
# ipv6 nexthop was replaced
ip -6 route show
3ffe:304:124:2306::/64 via fe80::c26:cdff:feca:18f2 dev dummy2 metric 1024
3ffe:304:124:2306::/64 via fe80::d850:e7ff:fe87:cf6a dev dummy1 metric 1024
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists