| Message ID | 20230606023202.22454-1-vladimir@nikishkin.pw (mailing list archive) |
|---|---|
| State | Accepted |
| Commit | 98b0b0cb67ffbef9d6aa1696e117f98139ca27df |
| Delegated to: | David Ahern |
| Headers | show |
| Series | [iproute2-next,v8] ip-link: add support for nolocalbypass in vxlan | expand |
| Context | Check | Description |
|---|---|---|
| netdev/tree_selection | success | Not a local patch |
On Tue, Jun 06, 2023 at 10:32:02AM +0800, Vladimir Nikishkin wrote: > Add userspace support for the [no]localbypass vxlan netlink > attribute. With localbypass on (default), the vxlan driver processes > the packets destined to the local machine by itself, bypassing the > userspace nework stack. With nolocalbypass the packets are always > forwarded to the userspace network stack, so userspace programs, > such as tcpdump have a chance to process them. > > Signed-off-by: Vladimir Nikishkin <vladimir@nikishkin.pw> Reviewed-by: Ido Schimmel <idosch@nvidia.com>
On Tue, Jun 06, 2023 at 10:32:02AM +0800, Vladimir Nikishkin wrote: > Add userspace support for the [no]localbypass vxlan netlink > attribute. With localbypass on (default), the vxlan driver processes > the packets destined to the local machine by itself, bypassing the > userspace nework stack. With nolocalbypass the packets are always > forwarded to the userspace network stack, so userspace programs, > such as tcpdump have a chance to process them. > > Signed-off-by: Vladimir Nikishkin <vladimir@nikishkin.pw> Reviewed-by: Andrea Claudi <aclaudi@redhat.com>
On 06/06/2023 05:32, Vladimir Nikishkin wrote: > Add userspace support for the [no]localbypass vxlan netlink > attribute. With localbypass on (default), the vxlan driver processes > the packets destined to the local machine by itself, bypassing the > userspace nework stack. With nolocalbypass the packets are always > forwarded to the userspace network stack, so userspace programs, > such as tcpdump have a chance to process them. > > Signed-off-by: Vladimir Nikishkin <vladimir@nikishkin.pw> > --- > v7=>v8: fix indentation. Make sure patch applies in iproute2-next. > > ip/iplink_vxlan.c | 10 ++++++++++ > man/man8/ip-link.8.in | 10 ++++++++++ > 2 files changed, 20 insertions(+) > Reviewed-by: Nikolay Aleksandrov <razor@blackwall.org>
Hello: This patch was applied to iproute2/iproute2-next.git (main) by David Ahern <dsahern@kernel.org>: On Tue, 6 Jun 2023 10:32:02 +0800 you wrote: > Add userspace support for the [no]localbypass vxlan netlink > attribute. With localbypass on (default), the vxlan driver processes > the packets destined to the local machine by itself, bypassing the > userspace nework stack. With nolocalbypass the packets are always > forwarded to the userspace network stack, so userspace programs, > such as tcpdump have a chance to process them. > > [...] Here is the summary with links: - [iproute2-next,v8] ip-link: add support for nolocalbypass in vxlan https://git.kernel.org/pub/scm/network/iproute2/iproute2-next.git/commit/?id=98b0b0cb67ff You are awesome, thank you!
diff --git a/ip/iplink_vxlan.c b/ip/iplink_vxlan.c index 3053cdb8..7781d60b 100644 --- a/ip/iplink_vxlan.c +++ b/ip/iplink_vxlan.c @@ -36,6 +36,7 @@ static const struct vxlan_bool_opt { { "udp_zero_csum6_rx", IFLA_VXLAN_UDP_ZERO_CSUM6_RX, false }, { "remcsum_tx", IFLA_VXLAN_REMCSUM_TX, false }, { "remcsum_rx", IFLA_VXLAN_REMCSUM_RX, false }, + { "localbypass", IFLA_VXLAN_LOCALBYPASS, true }, }; static void print_explain(FILE *f) @@ -62,6 +63,7 @@ static void print_explain(FILE *f) " [ [no]udp6zerocsumtx ]\n" " [ [no]udp6zerocsumrx ]\n" " [ [no]remcsumtx ] [ [no]remcsumrx ]\n" + " [ [no]localbypass ]\n" " [ [no]external ] [ gbp ] [ gpe ]\n" " [ [no]vnifilter ]\n" "\n" @@ -327,6 +329,14 @@ static int vxlan_parse_opt(struct link_util *lu, int argc, char **argv, check_duparg(&attrs, IFLA_VXLAN_REMCSUM_RX, *argv, *argv); addattr8(n, 1024, IFLA_VXLAN_REMCSUM_RX, 0); + } else if (strcmp(*argv, "localbypass") == 0) { + check_duparg(&attrs, IFLA_VXLAN_LOCALBYPASS, + *argv, *argv); + addattr8(n, 1024, IFLA_VXLAN_LOCALBYPASS, 1); + } else if (strcmp(*argv, "nolocalbypass") == 0) { + check_duparg(&attrs, IFLA_VXLAN_LOCALBYPASS, + *argv, *argv); + addattr8(n, 1024, IFLA_VXLAN_LOCALBYPASS, 0); } else if (!matches(*argv, "external")) { check_duparg(&attrs, IFLA_VXLAN_COLLECT_METADATA, *argv, *argv); diff --git a/man/man8/ip-link.8.in b/man/man8/ip-link.8.in index bf3605a9..6a82ddc4 100644 --- a/man/man8/ip-link.8.in +++ b/man/man8/ip-link.8.in @@ -634,6 +634,8 @@ the following additional arguments are supported: ] [ .RB [ no ] udp6zerocsumrx ] [ +.RB [ no ] localbypass +] [ .BI ageing " SECONDS " ] [ .BI maxaddress " NUMBER " @@ -742,6 +744,14 @@ are entered into the VXLAN device forwarding database. .RB [ no ] udp6zerocsumrx - allow incoming UDP packets over IPv6 with zero checksum field. +.sp +.RB [ no ] localbypass +- if FDB destination is local, with nolocalbypass set, forward encapsulated +packets to the userspace network stack. If there is a userspace process +listening for these packets, it will have a chance to process them. If +localbypass is active (default), bypass the kernel network stack and +inject the packets into the target VXLAN device, assuming one exists. + .sp .BI ageing " SECONDS" - specifies the lifetime in seconds of FDB entries learnt by the kernel.
Add userspace support for the [no]localbypass vxlan netlink attribute. With localbypass on (default), the vxlan driver processes the packets destined to the local machine by itself, bypassing the userspace nework stack. With nolocalbypass the packets are always forwarded to the userspace network stack, so userspace programs, such as tcpdump have a chance to process them. Signed-off-by: Vladimir Nikishkin <vladimir@nikishkin.pw> --- v7=>v8: fix indentation. Make sure patch applies in iproute2-next. ip/iplink_vxlan.c | 10 ++++++++++ man/man8/ip-link.8.in | 10 ++++++++++ 2 files changed, 20 insertions(+)