lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:   Tue, 16 May 2017 14:57:47 +0200
From:   Nicolas Dichtel <nicolas.dichtel@...nd.com>
To:     Ido Schimmel <idosch@...lanox.com>
Cc:     Jiri Pirko <jiri@...nulli.us>,
        Nikolay Aleksandrov <nikolay@...ulusnetworks.com>,
        Roopa Prabhu <roopa@...ulusnetworks.com>,
        netdev <netdev@...r.kernel.org>
Subject: Re: switchdev offload & ecmp

Le 15/05/2017 à 18:40, Ido Schimmel a écrit :
[snip]
>> Is there a consistency between the ecmp algorithm of the kernel and the one from
>> spectrum?
> 
> We currently use the hardware's defaults for ECMP hashing, which include
> both L3 and L4 fields. I'm aware of Nik's patch, but we've yet to
> reflect that. Note that the L4 fields aren't considered for fragmented
> packets.
Ok.

> 
>> I suspect that there can be scenarii where some packets of a flow are forwarded
>> by the driver and some other are forwarded by the kernel.
> 
> Can you elaborate? The kernel only sees specific packets, which were
> trapped to the CPU. See:
> https://git.kernel.org/pub/scm/linux/kernel/git/davem/net-next.git/tree/drivers/net/ethernet/mellanox/mlxsw/spectrum.c#n2996
Ok, this part was not clear for me, thank you for the pointer.

So, when an arp resolution is needed, the packets are not trapped to the CPU,
the device manages the queue itself?

> 
>> For example, an ecmp route with two nexthops: a connected route and a gw? 
> 
> Not sure I'm following you. A packet will either hit a remote route or a
> directly connected one. We distinguish between the two based on the
> scope of the first nexthop in the group. See:
> https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c#n2043
> 
>> In that case, the periodic nexthops update
>> (https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/drivers/net/ethernet/mellanox/mlxsw/spectrum_router.c#n987)
>> won't help. How do you ensure that all packets of the flow are always forwarded
>> through the same nexthop?
> 
> I don't think we can ensure that for a flow in which some packets are
> forwarded by the kernel and some by the device, but I failed to
> understand your example of such a flow.
I was trying to understand if nexthop choice is always the same in the kernel
and in the device. And I was also trying to understand if it's possible to have
some packets of a flow routed by the kernel and some others by the device.


Thank you for the answers,
Nicolas

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ