| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 14 Sep 2019 08:45:53 +0200
From: Jiri Pirko <jiri@...nulli.us>
To: netdev@...r.kernel.org
Cc: davem@...emloft.net, idosch@...lanox.com, dsahern@...il.com,
jakub.kicinski@...ronome.com, tariqt@...lanox.com,
saeedm@...lanox.com, kuznet@....inr.ac.ru, yoshfuji@...ux-ipv6.org,
shuah@...nel.org, mlxsw@...lanox.com
Subject: [patch net-next 00/15] devlink: allow devlink instances to change network namespace
From: Jiri Pirko <jiri@...lanox.com>
Devlink from the beginning counts with network namespaces, but the
instances has been fixed to init_net.
Implement change of network namespace as part of "devlink reload"
procedure like this:
$ ip netns add testns1
$ devlink/devlink dev reload netdevsim/netdevsim10 netns testns1
This command reloads device "netdevsim10" into network
namespace "testns1".
Note that "devlink reload" reinstantiates driver objects, effectively it
reloads the driver instance, including possible hw reset etc. Newly
created netdevices respect the network namespace of the parent devlink
instance and according to that, they are created in target network
namespace.
Driver is able to refuse to be reloaded into different namespace. That
is the case of mlx4 right now.
FIB entries and rules are replayed during FIB notifier registration
which is triggered during reload (driver instance init). FIB notifier
is also registered to the target network namespace, that allows user
to use netdevsim devlink resources to setup per-namespace limits of FIB
entries and FIB rules. In fact, with multiple netdevsim instances
in each network namespace, user might setup different limits.
This maintains and extends current netdevsim resources behaviour.
Patch 1 prepares netdevsim code for the follow-up changes in the
patchset. It does not change the behaviour, only moves pet-init_netns
accounting to netdevsim instance, which is also in init_netns.
Patches 2-5 prepare the FIB notifier making it per-netns and to behave
correctly upon error conditions.
Patch 6 just exports a devlink_net helper so it can be used in drivers.
Patches 7-9 do preparations in mlxsw driver.
Patches 10-13 do preparations in netdevsim driver, namely patch 12
implements proper devlink reload where the driver instance objects are
actually re-created as they should be.
Patch 14 actually implements the possibility to reload into a different
network namespace.
Patch 15 adds needed selftests for devlink reload into namespace for
netdevsim driver.
Jiri Pirko (15):
netdevsim: change fib accounting and limitations to be per-device
net: fib_notifier: make FIB notifier per-netns
net: fib_notifier: propagate possible error during fib notifier
registration
mlxsw: spectrum_router: Don't rely on missing extack to symbolize dump
net: fib_notifier: propagate extack down to the notifier block
callback
net: devlink: export devlink net getter
mlxsw: spectrum: Take devlink net instead of init_net
mlxsw: Register port netdevices into net of core
mlxsw: Propagate extack down to register_fib_notifier()
netdevsim: add all ports in nsim_dev_create() and del them in
destroy()
netdevsim: implement proper devlink reload
netdevsim: register port netdevices into net of device
netdevsim: take devlink net instead of init_net
net: devlink: allow to change namespaces during reload
selftests: netdevsim: add tests for devlink reload with resources
drivers/net/ethernet/mellanox/mlx4/main.c | 4 +
.../net/ethernet/mellanox/mlx5/core/lag_mp.c | 9 +-
drivers/net/ethernet/mellanox/mlxsw/core.c | 13 +-
drivers/net/ethernet/mellanox/mlxsw/core.h | 12 +-
drivers/net/ethernet/mellanox/mlxsw/i2c.c | 2 +-
drivers/net/ethernet/mellanox/mlxsw/minimal.c | 4 +-
drivers/net/ethernet/mellanox/mlxsw/pci.c | 2 +-
.../net/ethernet/mellanox/mlxsw/spectrum.c | 16 +-
.../net/ethernet/mellanox/mlxsw/spectrum.h | 9 +-
.../ethernet/mellanox/mlxsw/spectrum_nve.c | 2 +-
.../ethernet/mellanox/mlxsw/spectrum_router.c | 57 ++-
.../mellanox/mlxsw/spectrum_switchdev.c | 2 +-
.../net/ethernet/mellanox/mlxsw/switchib.c | 3 +-
.../net/ethernet/mellanox/mlxsw/switchx2.c | 4 +-
drivers/net/ethernet/rocker/rocker_main.c | 9 +-
drivers/net/netdevsim/dev.c | 341 +++++++++---------
drivers/net/netdevsim/fib.c | 175 +++++----
drivers/net/netdevsim/netdev.c | 10 +-
drivers/net/netdevsim/netdevsim.h | 15 +-
include/linux/mroute_base.h | 26 +-
include/net/devlink.h | 1 +
include/net/fib_notifier.h | 12 +-
include/net/fib_rules.h | 3 +-
include/net/ip6_fib.h | 11 +-
include/net/ip_fib.h | 11 +-
include/uapi/linux/devlink.h | 4 +
net/core/devlink.c | 158 +++++++-
net/core/fib_notifier.c | 95 +++--
net/core/fib_rules.c | 23 +-
net/ipv4/fib_notifier.c | 13 +-
net/ipv4/fib_rules.c | 5 +-
net/ipv4/fib_trie.c | 44 ++-
net/ipv4/ipmr.c | 13 +-
net/ipv4/ipmr_base.c | 30 +-
net/ipv6/fib6_notifier.c | 11 +-
net/ipv6/fib6_rules.c | 5 +-
net/ipv6/ip6_fib.c | 50 ++-
net/ipv6/ip6mr.c | 13 +-
.../drivers/net/netdevsim/devlink.sh | 120 +++++-
39 files changed, 848 insertions(+), 489 deletions(-)
--
2.21.0
Powered by blists - more mailing lists