From patchwork Fri Nov 10 10:15:38 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452300 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 45C6113ADD for ; Fri, 10 Nov 2023 10:16:05 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="hNK26qVo" Received: from mail-pl1-x633.google.com (mail-pl1-x633.google.com [IPv6:2607:f8b0:4864:20::633]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 70A4C27B3A for ; Fri, 10 Nov 2023 02:16:03 -0800 (PST) Received: by mail-pl1-x633.google.com with SMTP id d9443c01a7336-1c9b7c234a7so16702825ad.3 for ; Fri, 10 Nov 2023 02:16:03 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611362; x=1700216162; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=YU4A1lGFBinMgpkQudb+LVVkwai+N3AXoQMaVyke0JY=; b=hNK26qVoShJQK0IlMhaUGT9Zocd2MLK0cRiM7goPvUCWC5j6150G5F14CiReh74h51 kQmhKjGX6f0lTY6OQS31lDSLOwcRyk5Nh6BLBbHhPkQCsW6Edukb0Rgva3MT69CRnU18 MTQ5bMtWZlgKdau57VoyFQe3aL8ZZd7Z96Zlfo7oTu7wTJCA+8QuThWc/jQSwbp5AKie +3sQC1LlZCOIB7RRg9ht0HSIElErONNat8OWsawqyKSp0BfTzvgqcnU+5Kf+PwUPdrWD pAzJhwzKdcXueboXGYm0EJXMsz9RxMY+XIu81XqSpPLSwILF7nPP69jPGh911wcTT+Xn p8BA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611362; x=1700216162; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=YU4A1lGFBinMgpkQudb+LVVkwai+N3AXoQMaVyke0JY=; b=IETzzN+Tn9KezOD95nQ/2MrTpoiL9IXd+gZGu0rgHHIOxyAN1yu5bDvRxu0mZRGfpR 2er+WhlGLw9uzIJgu4MXCRz3IPX1khISAtmtNeq3W/W/TNYcHsiSh8tWYYjouJ60aUNA 35PcLNlPkxefvshfQzIYqQTPWtTMa2nC7hfR63VqId+trzlOcI2WIdC0GZA8XU9ddOqE DZsGm6FIo9OW5l9GMd1XWyCCVRknYAJwRcEf8pNjq2bl5oilZcCqCupVq4xYHQA5QxY4 iuSMYsGvxTF6SLrj4IbLT95Bxi7uwD7ATcfHAhpvCKAnwPQ+YOPJ/X5CLTjjscvNLGHu KDKA== X-Gm-Message-State: AOJu0YwkVxGaaE0vv61Qxlmb1HoSs6jWtKPIn0ic8YEg0T5Zs8QsX6gK aUHG2PcvG2SPHR0tZtA785Sphnf5KgA6Ig== X-Google-Smtp-Source: AGHT+IEgHSWcGKUFhm9k6q1a8AOPCcgfs5Ige5OJp9+bVTgfKsIl5cPWREUrFeMjp+rP7pmVYxF2lQ== X-Received: by 2002:a17:90b:4d0f:b0:281:a69:4430 with SMTP id mw15-20020a17090b4d0f00b002810a694430mr4251796pjb.42.1699611362258; Fri, 10 Nov 2023 02:16:02 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.15.58 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:01 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 01/10] net: bridge: add document for IFLA_BR enum Date: Fri, 10 Nov 2023 18:15:38 +0800 Message-ID: <20231110101548.1900519-2-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Add document for IFLA_BR enum so we can use it in Documentation/networking/bridge.rst. Signed-off-by: Hangbin Liu --- include/uapi/linux/if_link.h | 270 +++++++++++++++++++++++++++++++++++ 1 file changed, 270 insertions(+) diff --git a/include/uapi/linux/if_link.h b/include/uapi/linux/if_link.h index 29ff80da2775..32d6980b78d1 100644 --- a/include/uapi/linux/if_link.h +++ b/include/uapi/linux/if_link.h @@ -461,6 +461,276 @@ enum in6_addr_gen_mode { /* Bridge section */ +/** + * DOC: The bridge enum defination + * + * please *note* that all the timer in the following section is in clock_t + * type, which is seconds multiplied by user_hz (generally defined as 100). + * + * @IFLA_BR_FORWARD_DELAY + * The bridge forwarding delay is the time spent in LISTENING state + * (before moving to LEARNING) and in LEARNING state (before moving + * to FORWARDING). Only relevant if STP is enabled. + * + * The valid values are between (2 * USER_HZ) and (30 * USER_HZ). + * The default value is (15 * USER_HZ). + * + * @IFLA_BR_HELLO_TIME + * The time between hello packets sent by the bridge, when it is a root + * bridge or a designated bridge. Only relevant if STP is enabled. + * + * The valid values are between (1 * USER_HZ) and (10 * USER_HZ). + * The default value is (2 * USER_HZ). + * + * @IFLA_BR_MAX_AGE + * The hello packet timeout, is the time until another bridge in the + * spanning tree is assumed to be dead, after reception of its last hello + * message. Only relevant if STP is enabled. + * + * The valid values are between (6 * USER_HZ) and (40 * USER_HZ). + * The default value is (20 * USER_HZ). + * + * @IFLA_BR_AGEING_TIME + * Configure the bridge's FDB entries ageing time. It is the time a MAC + * address will be kept in the FDB after a packet has been received from + * that address. After this time has passed, entries are cleaned up. + * Allow values outside the 802.1 standard specification for special cases: + * + * * 0 - entry never ages (all permanent) + * * 1 - entry disappears (no persistence) + * + * The default value is (300 * USER_HZ). + * + * @IFLA_BR_STP_STATE + * Turn spanning tree protocol on (*IFLA_BR_STP_STATE* > 0) or off + * (*IFLA_BR_STP_STATE* == 0) for this bridge. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_PRIORITY + * set this bridge's spanning tree priority, used during STP root bridge + * election. + * + * The valid values are between 0 and 65535. + * + * @IFLA_BR_VLAN_FILTERING + * Turn VLAN filtering on (*IFLA_BR_VLAN_FILTERING* > 0) or off + * (*IFLA_BR_VLAN_FILTERING* == 0). When disabled, the bridge will not + * consider the VLAN tag when handling packets. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_VLAN_PROTOCOL + * Set the protocol used for VLAN filtering. + * + * The valid values are 0x8100(802.1Q) or 0x88A8(802.1AD). The default value + * is 0x8100(802.1Q). + * + * @IFLA_BR_GROUP_FWD_MASK + * The group forward mask. This is the bitmask that is applied to + * decide whether to forward incoming frames destined to link-local + * addresses. The addresses of the form is 01:80:C2:00:00:0X, which + * means the bridge does not forward any link-local frames coming on + * this port). + * + * The default value is 0. + * + * @IFLA_BR_ROOT_ID + * The bridge root id, read only. + * + * @IFLA_BR_BRIDGE_ID + * The bridge id, read only. + * + * @IFLA_BR_ROOT_PORT + * The bridge root port, read only. + * + * @IFLA_BR_ROOT_PATH_COST + * The bridge root path cost, read only. + * + * @IFLA_BR_TOPOLOGY_CHANGE + * The bridge topology change, read only. + * + * @IFLA_BR_TOPOLOGY_CHANGE_DETECTED + * The bridge topology change detected, read only. + * + * @IFLA_BR_HELLO_TIMER + * The bridge hello timer, read only. + * + * @IFLA_BR_TCN_TIMER + * The bridge tcn timer, read only. + * + * @IFLA_BR_TOPOLOGY_CHANGE_TIMER + * The bridge topology change timer, read only. + * + * @IFLA_BR_GC_TIMER + * The bridge gc timer, read only. + * + * @IFLA_BR_GROUP_ADDR + * set the MAC address of the multicast group this bridge uses for STP. + * The address must be a link-local address in standard Ethernet MAC address + * format. It is an address of the form 01:80:C2:00:00:0X, with X in [0, 4..f]. + * + * The default value is 0. + * + * @IFLA_BR_FDB_FLUSH + * Flush bridge's fdb dynamic entries. + * + * @IFLA_BR_MCAST_ROUTER + * Set bridge's multicast router if IGMP snooping is enabled. + * The valid values are: + * + * * 0 - disabled. + * * 1 - automatic (queried). + * * 2 - permanently enabled. + * + * The default value is 1. + * + * @IFLA_BR_MCAST_SNOOPING + * Turn multicast snooping on (*IFLA_BR_MCAST_SNOOPING* > 0) or off + * (*IFLA_BR_MCAST_SNOOPING* == 0). + * + * The default value is 1. + * + * @IFLA_BR_MCAST_QUERY_USE_IFADDR + * whether to use the bridge's own IP address as source address for IGMP + * queries (*IFLA_BR_MCAST_QUERY_USE_IFADDR* > 0) or the default of 0.0.0.0 + * (*IFLA_BR_MCAST_QUERY_USE_IFADDR* == 0). + * + * The default value is 0. + * + * @IFLA_BR_MCAST_QUERIER + * Enable (*IFLA_BR_MULTICAST_QUERIER* > 0) or disable + * (*IFLA_BR_MULTICAST_QUERIER* == 0) IGMP querier, ie sending of multicast + * queries by the bridge. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_MCAST_HASH_ELASTICITY + * Set multicast database hash elasticity, It is the maximum chain length in + * the multicast hash table. This attribute is *deprecated* and the value + * is always 16. + * + * @IFLA_BR_MCAST_HASH_MAX + * Set maximum size of the multicast hash table + * + * The default value is 4096, value must be a power of 2. + * + * @IFLA_BR_MCAST_LAST_MEMBER_CNT + * The Last Member Query Count is the number of Group-Specific Queries + * sent before the router assumes there are no local members. The Last + * Member Query Count is also the number of Group-and-Source-Specific + * Queries sent before the router assumes there are no listeners for a + * particular source. + * + * The default value is 2. + * + * @IFLA_BR_MCAST_STARTUP_QUERY_CNT + * The Startup Query Count is the number of Queries sent out on startup, + * separated by the Startup Query Interval. + * + * The default value is 2. + * + * @IFLA_BR_MCAST_LAST_MEMBER_INTVL + * The Last Member Query Interval is the Max Response Time inserted into + * Group-Specific Queries sent in response to Leave Group messages, and + * is also the amount of time between Group-Specific Query messages. + * + * The default value is (1 * USER_HZ). + * + * @IFLA_BR_MCAST_MEMBERSHIP_INTVL + * The interval after which the bridge will leave a group, if no membership + * reports for this group are received. + * + * The default value is (260 * USER_HZ). + * + * @IFLA_BR_MCAST_QUERIER_INTVL + * The interval between queries sent by other routers. if no queries are + * seen after this delay has passed, the bridge will start to send its own + * queries (as if **IFLA_BR_MCAST_QUERIER_INTVL** was enabled). + * + * The default value is (255 * USER_HZ). + * + * @IFLA_BR_MCAST_QUERY_INTVL + * The Query Interval is the interval between General Queries sent by + * the Querier. + * + * The default value is (125 * USER_HZ). The minimum value is (1 * USER_HZ). + * + * @IFLA_BR_MCAST_QUERY_RESPONSE_INTVL + * The Max Response Time used to calculate the Max Resp Code inserted + * into the periodic General Queries. + * + * The default value is (10 * USER_HZ). + * + * @IFLA_BR_MCAST_STARTUP_QUERY_INTVL + * The interval between queries in the startup phase. + * + * The default value is (125 * USER_HZ) / 4. The minimum value is (1 * USER_HZ). + * + * @IFLA_BR_NF_CALL_IPTABLES + * Enable (*NF_CALL_IPTABLES* > 0) or disable (*NF_CALL_IPTABLES* == 0) + * iptables hooks on the bridge. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_NF_CALL_IP6TABLES + * Enable (*NF_CALL_IP6TABLES* > 0) or disable (*NF_CALL_IP6TABLES* == 0) + * ip6tables hooks on the bridge. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_NF_CALL_ARPTABLES + * Enable (*NF_CALL_ARPTABLES* > 0) or disable (*NF_CALL_ARPTABLES* == 0) + * arptables hooks on the bridge. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_VLAN_DEFAULT_PVID + * The default PVID (native/untagged VLAN ID) for this bridge. + * + * The default value is 1. + * + * @IFLA_BR_PAD + * Bridge attribute padding type for netlink message. + * + * @IFLA_BR_VLAN_STATS_ENABLED + * Enable (*IFLA_BR_VLAN_STATS_ENABLED* == 1) or disable + * (*IFLA_BR_VLAN_STATS_ENABLED* == 0) per-VLAN stats accounting. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_MCAST_STATS_ENABLED + * Enable (*IFLA_BR_MCAST_STATS_ENABLED* > 0) or disable + * (*IFLA_BR_MCAST_STATS_ENABLED* == 0) multicast (IGMP/MLD) stats + * accounting. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_MCAST_IGMP_VERSION + * Set the IGMP version. + * + * The valid values are 2 and 3. The default value is 2. + * + * @IFLA_BR_MCAST_MLD_VERSION + * Set the MLD version. + * + * The valid values are 1 and 2. The default value is 1. + * + * @IFLA_BR_VLAN_STATS_PER_PORT + * Enable (*IFLA_BR_VLAN_STATS_PER_PORT* == 1) or disable + * (*IFLA_BR_VLAN_STATS_PER_PORT* == 0) per-VLAN per-port stats accounting. + * Can be changed only when there are no port VLANs configured. + * + * The default value is 0 (disabled). + * + * @IFLA_BR_MULTI_BOOLOPT + * The multi_boolopt is used to control new boolean options to avoid adding + * new netlink attributes. + * + * @IFLA_BR_MCAST_QUERIER_STATE + * Bridge mcast querier states, read only. + */ + enum { IFLA_BR_UNSPEC, IFLA_BR_FORWARD_DELAY, From patchwork Fri Nov 10 10:15:39 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452301 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id AA88713AE3 for ; Fri, 10 Nov 2023 10:16:09 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="edn46S15" Received: from mail-pf1-x429.google.com (mail-pf1-x429.google.com [IPv6:2607:f8b0:4864:20::429]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 9814A27B3A for ; Fri, 10 Nov 2023 02:16:07 -0800 (PST) Received: by mail-pf1-x429.google.com with SMTP id d2e1a72fcca58-6c115026985so1927846b3a.1 for ; Fri, 10 Nov 2023 02:16:07 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611366; x=1700216166; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=4sAiLIgT4qi4t1bVCW7qCl8HWX6A6KvoLcdNT6YyDaE=; b=edn46S152MfqIIkQVJ/oJmrfvixSVNqjwioU+GS/HnAjvgMHp2FScC0EzGVvriiEY4 XD+Uo1XJuX7x2MmHQ5O9veORmKmflfgSWmSo9n9RQks3qMuwycwTsYlAFaPtMpA6g3aV Fel5jTkcHWk/OznfYJh5OvtMYd0o/xFNg+IoSHfeJRaGVq660PVDL9MMuitEvN+RxQqo UKd/iTpDofeHrA0X7IzYJD4Fjwe9mXTD+2ssENk/PcvktvAyms3XbcHf2SbQI2QdQUty NXXCLIOWzKWD3SC35RS2B0mAxkkqUH8G9zSV+RGRITrNgR/GvzNT81ZeJgtYPHxNKenJ u38w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611366; x=1700216166; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=4sAiLIgT4qi4t1bVCW7qCl8HWX6A6KvoLcdNT6YyDaE=; b=hAhEnEMw0FAtW/7swOty0CPuHC6JcQtjXjkuleAPtHiLOoH5WMKMPNi50I2WnI2/uy YXnHpYAinWn3BWxaXDgVcElnzuJQo1yQSfGlyQoSTqT2mHQ05s+GkKByB8p+aprrzUWg pSSMA9jPwxIwOZW4uGpISicLU+xjTtOB+5BYiVqH54DXZfHhGBeSY5Z1vRZG0QVBj5kE uveuV9cwiTPj/KsJ6b1OeRPvwYZrnOjJmS5u6Y8H9hmdVtrGMFMR0/Bde0tIeb+E0Fpd DCYYRIgMaV1e19w+B8pFEDk2Qix18ugq0sHQr4+5REgVgwRVz7g4f5UVdWnjQFHjIq6Q tLbQ== X-Gm-Message-State: AOJu0YycP78IdXE/he4ltyOcfTYEKLh7eH/a43J+oWer/q97mKKxK4m5 /vOqSylbNLDIJ27I11dWQ6KlxdzejTcY7Q== X-Google-Smtp-Source: AGHT+IF1b5cA+n17w6IQlUG0HI7T8uI+7ynFe8cY4UjXyuGFaIVvIbbT7K4MwTbGbM6E87zg34dSrA== X-Received: by 2002:a05:6a20:432c:b0:181:16dc:d1ae with SMTP id h44-20020a056a20432c00b0018116dcd1aemr8792079pzk.48.1699611366298; Fri, 10 Nov 2023 02:16:06 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.02 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:05 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 02/10] net: bridge: add document for IFLA_BRPORT enum Date: Fri, 10 Nov 2023 18:15:39 +0800 Message-ID: <20231110101548.1900519-3-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Add document for IFLA_BRPORT enum so we can use it in Documentation/networking/bridge.rst. Signed-off-by: Hangbin Liu --- include/uapi/linux/if_link.h | 227 +++++++++++++++++++++++++++++++++++ 1 file changed, 227 insertions(+) diff --git a/include/uapi/linux/if_link.h b/include/uapi/linux/if_link.h index 32d6980b78d1..a196a6e4dafb 100644 --- a/include/uapi/linux/if_link.h +++ b/include/uapi/linux/if_link.h @@ -792,11 +792,238 @@ struct ifla_bridge_id { __u8 addr[6]; /* ETH_ALEN */ }; +/** + * DOC: The bridge mode enum defination + * + * @BRIDGE_MODE_HAIRPIN + * Controls whether traffic may be send back out of the port on which it + * was received. This option is also called reflective relay mode, and is + * used to support basic VEPA (Virtual Ethernet Port Aggregator) + * capabilities. By default, this flag is turned off and the bridge will + * not forward traffic back out of the receiving port. + */ + enum { BRIDGE_MODE_UNSPEC, BRIDGE_MODE_HAIRPIN, }; +/** + * DOC: The bridge port enum defination + * + * @IFLA_BRPORT_STATE + * The operation state of the port. Except state 0 (disable STP or BPDU + * filter feature), this is primarily used by user space STP/RSTP + * implementation. + * + * * 0 - port is in STP *DISABLED* state. Make this port completely + * inactive for STP. This is also called BPDU filter and could be used + * to disable STP on an untrusted port, like a leaf virtual devices. + * The traffic forwarding is also stopped on this port. + * * 1 - port is in STP *LISTENING* state. Only valid if STP is enabled + * on the bridge. In this state the port listens for STP BPDUs and + * drops all other traffic frames. + * * 2 - port is in STP *LEARNING* state. Only valid if STP is enabled on + * the bridge. In this state the port will accept traffic only for the + * purpose of updating MAC address tables. + * * 3 - port is in STP *FORWARDING* state. Port is fully active. + * * 4 - port is in STP *BLOCKING* state. Only valid if STP is enabled on + * the bridge. This state is used during the STP election process. + * In this state, port will only process STP BPDUs. + * + * @IFLA_BRPORT_PRIORITY + * The STP port priority. The valid values are between 0 and 255. + * + * @IFLA_BRPORT_COST + * The STP path cost of the port. The valid values are between 1 and 65535. + * + * @IFLA_BRPORT_MODE + * Set the bridge port mode. See *BRIDGE_MODE_HAIRPIN* for more details. + * + * @IFLA_BRPORT_GUARD + * Controls whether STP BPDUs will be processed by the bridge port. By + * default, the flag is turned off allowed BPDU processing. Turning this + * flag on will disables the bridge port if a STP BPDU packet is received. + * + * If running Spanning Tree on bridge, hostile devices on the network may + * send BPDU on a port and cause network failure. Setting *guard on* will + * detect and stop this by disabling the port. The port will be restarted + * if link is brought down, or removed and reattached. + * + * @IFLA_BRPORT_PROTECT + * Controls whether a given port is allowed to become root port or not. + * Only used when STP is enabled on the bridge. By default the flag is off. + * + * This feature is also called root port guard. If BPDU is received from a + * leaf (edge) port, it should not be elected as root port. This could + * be used if using STP on a bridge and the downstream bridges are not fully + * trusted; this prevents a hostile guest from rerouting traffic. + * + * @IFLA_BRPORT_FAST_LEAVE + * This flag allows the bridge to immediately stop multicast traffic on a + * port that receives IGMP Leave message. It is only used with IGMP snooping + * is enabled on the bridge. By default the flag is off. + * + * @IFLA_BRPORT_LEARNING + * Controls whether a given port will learn MAC addresses from received + * traffic or not. If learning if off, the bridge will end up flooding any + * traffic for which it has no FDB entry. By default this flag is on. + * + * @IFLA_BRPORT_UNICAST_FLOOD + * Controls whether unicast traffic for which there is no FDB entry will + * be flooded towards this given port. By default this flag is on. + * + * @IFLA_BRPORT_PROXYARP + * Enable proxy ARP on this port. + * + * @IFLA_BRPORT_LEARNING_SYNC + * Controls whether a given port will sync MAC addresses learned on device + * port to bridge FDB. + * + * @IFLA_BRPORT_PROXYARP_WIFI + * Enable proxy ARP on this port which meets extended requirements by + * IEEE 802.11 and Hotspot 2.0 specifications. + * + * @IFLA_BRPORT_ROOT_ID + * + * @IFLA_BRPORT_BRIDGE_ID + * + * @IFLA_BRPORT_DESIGNATED_PORT + * + * @IFLA_BRPORT_DESIGNATED_COST + * + * @IFLA_BRPORT_ID + * + * @IFLA_BRPORT_NO + * + * @IFLA_BRPORT_TOPOLOGY_CHANGE_ACK + * + * @IFLA_BRPORT_CONFIG_PENDING + * + * @IFLA_BRPORT_MESSAGE_AGE_TIMER + * + * @IFLA_BRPORT_FORWARD_DELAY_TIMER + * + * @IFLA_BRPORT_HOLD_TIMER + * + * @IFLA_BRPORT_FLUSH + * Flush bridge ports' fdb dynamic entries. + * + * @IFLA_BRPORT_MULTICAST_ROUTER + * Configure the port's multicast router presence. A port with + * a multicast router will receive all multicast traffic. + * The valid values are: + * + * * 0 disable multicast routers on this port + * * 1 let the system detect the presence of routers (default) + * * 2 permanently enable multicast traffic forwarding on this port + * * 3 enable multicast routers temporarily on this port, not depending + * on incoming queries. + * + * @IFLA_BRPORT_PAD + * + * @IFLA_BRPORT_MCAST_FLOOD + * Controls whether a given port will flood multicast traffic for which + * there is no MDB entry. By default this flag is on. + * + * @IFLA_BRPORT_MCAST_TO_UCAST + * Controls whether a given port will replicate packets using unicast + * instead of multicast. By default this flag is off. + * + * This is done by copying the packet per host and changing the multicast + * destination MAC to a unicast one accordingly. + * + * *mcast_to_unicast* works on top of the multicast snooping feature of the + * bridge. Which means unicast copies are only delivered to hosts which + * are interested in unicast and signaled this via IGMP/MLD reports previously. + * + * This feature is intended for interface types which have a more reliable + * and/or efficient way to deliver unicast packets than broadcast ones + * (e.g. WiFi). + * + * However, it should only be enabled on interfaces where no IGMPv2/MLDv1 + * report suppression takes place. IGMP/MLD report suppression issue is + * usually overcome by the network daemon (supplicant) enabling AP isolation + * and by that separating all STAs. + * + * Delivery of STA-to-STA IP multicast is made possible again by enabling + * and utilizing the bridge hairpin mode, which considers the incoming port + * as a potential outgoing port, too (see *BRIDGE_MODE_HAIRPIN* option). + * Hairpin mode is performed after multicast snooping, therefore leading + * to only deliver reports to STAs running a multicast router. + * + * @IFLA_BRPORT_VLAN_TUNNEL + * Controls whether vlan to tunnel mapping is enabled on the port. + * By default this flag is off. + * + * @IFLA_BRPORT_BCAST_FLOOD + * Controls flooding of broadcast traffic on the given port. By default + * this flag is on. + * + * @IFLA_BRPORT_GROUP_FWD_MASK + * Set the group forward mask. This is a bitmask that is applied to + * decide whether to forward incoming frames destined to link-local + * addresses. The addresses of the form are 01:80:C2:00:00:0X (defaults + * to 0, which means the bridge does not forward any link-local frames + * coming on this port). + * + * @IFLA_BRPORT_NEIGH_SUPPRESS + * Controls whether neighbor discovery (arp and nd) proxy and suppression + * is enabled on the port. By default this flag is off. + * + * @IFLA_BRPORT_ISOLATED + * Controls whether a given port will be isolated, which means it will be + * able to communicate with non-isolated ports only. By default this + * flag is off. + * + * @IFLA_BRPORT_BACKUP_PORT + * Set a backup port. If the port loses carrier all traffic will be + * redirected to the configured backup port. Set the value to 0 to disable + * it. + * + * @IFLA_BRPORT_MRP_RING_OPEN + * + * @IFLA_BRPORT_MRP_IN_OPEN + * + * @IFLA_BRPORT_MCAST_EHT_HOSTS_LIMIT + * The number of per-port EHT hosts limit. The default value is 512. + * Setting to 0 is not allowed. + * + * @IFLA_BRPORT_MCAST_EHT_HOSTS_CNT + * The current number of tracked hosts, read only. + * + * @IFLA_BRPORT_LOCKED + * Controls whether a port will be locked, meaning that hosts behind the + * port will not be able to communicate through the port unless an FDB + * entry with the units MAC address is in the FDB. The common use case is that + * hosts are allowed access through authentication with the IEEE 802.1X + * protocol or based on whitelists. By default this flag is off. + * + * @IFLA_BRPORT_MAB + * + * @IFLA_BRPORT_MCAST_N_GROUPS + * + * @IFLA_BRPORT_MCAST_MAX_GROUPS + * Sets the maximum number of MDB entries that can be registered for a + * given port. Attempts to register more MDB entries at the port than this + * limit allows will be rejected, whether they are done through netlink + * (e.g. the bridge tool), or IGMP or MLD membership reports. Setting a + * limit to 0 disables the limit. The default value is 0. + * + * @IFLA_BRPORT_NEIGH_VLAN_SUPPRESS + * Controls whether neighbor discovery (arp and nd) proxy and suppression is + * enabled for a given VLAN on a given port. By default this flag is off. + * + * Note that this option only takes effect when *IFLA_BRPORT_NEIGH_SUPPRESS* + * is enabled for a given port. + * + * @IFLA_BRPORT_BACKUP_NHID + * The FDB nexthop object ID to attach to packets being redirected to a + * backup port that has VLAN tunnel mapping enabled (via the + * *IFLA_BRPORT_VLAN_TUNNEL* option). Setting a value of 0 (default) has + * the effect of not attaching any ID. + */ + enum { IFLA_BRPORT_UNSPEC, IFLA_BRPORT_STATE, /* Spanning tree state */ From patchwork Fri Nov 10 10:15:40 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452302 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id AA6AD13FE7 for ; Fri, 10 Nov 2023 10:16:12 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="XilChS5R" Received: from mail-pj1-x102e.google.com (mail-pj1-x102e.google.com [IPv6:2607:f8b0:4864:20::102e]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 7C94F27B3D for ; Fri, 10 Nov 2023 02:16:11 -0800 (PST) Received: by mail-pj1-x102e.google.com with SMTP id 98e67ed59e1d1-2809b4d648bso1679657a91.2 for ; Fri, 10 Nov 2023 02:16:11 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611370; x=1700216170; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=1iu/XicMEh4XOAp+BOU3UzbdELMKrxAqCsG1rt/3Ub4=; b=XilChS5RXui8947sJL8qZb7bepoSh/M3UQYnRJ6WH5IK8zk6RMJLmdoRMKmL0Cfoy5 Vr1I6XRwW3Gz0rVpnnDvjPBEG6Z5Y9eriz+pScA7ZB+CkkdqQ/SJIPDxwhgYOM39b3I9 hpDEVhMoM/Sg5mquv3J1ziiovryNjiXGvjbJ6VlcOx7BpJDZcPupaePxU5ldfn3VcAxf HSDXlDau2zj79W80foKA2fV+I+kgmUbS5PgXVWt4TtonvsmzcJs0i2rvcFQZjqUU+EX6 AAQv0fZXMR1s3CroHQCWkhVCXtpyMsyhyIVekvkakU4Tmv1JvKcbAFN5pvgBuONZd72G BI3Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611370; x=1700216170; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=1iu/XicMEh4XOAp+BOU3UzbdELMKrxAqCsG1rt/3Ub4=; b=Po+VJHyYQzNGJxWy/eBk+r6BNlde9OQ4vZoAhEQ3DIbzldgmLW8xNcNFBG7BklFE95 VvPUkL4ifAa9vEkUfLxBRYRXIBeNP4JcdCcEqBAeSZk5vRH+EsYHU0/JmLOStz9Jn1M+ 2xeGktedmt1ov8CSRbhEnKlTumpNomoM9FvgCZDLgpMoxg590CKzWEm6xE2tbrMlgtnv n5fh2WTuRijlecdIl7ZWHJgUbclUZTLD5JLyoQP7e0ZpOZt3fwy8vrwiQLrJR2A6sH/0 Qs8sZKT5w7/C6JiwO+WHGiv1Q/UWEiWkM7QWfv/wRE72LVV34vavmW2EcnQxknEHS3AB PQ1g== X-Gm-Message-State: AOJu0YxoYVb5MCUgDbMBUP0Yzyan/RcMmMi6f74260dEOHO0ttGdBTVN 69T9qEAob1f5NbiGxzNu15Ta1XjV4GFtaQ== X-Google-Smtp-Source: AGHT+IFZCNMCcC/VkoH2BgnXs8Ygoh83K/0H0MMsf4L+9nxPNrXCQH/U3EWMNQgdxwCmTE5p7XUcCA== X-Received: by 2002:a17:90b:4a50:b0:27d:3439:c141 with SMTP id lb16-20020a17090b4a5000b0027d3439c141mr3778710pjb.39.1699611370360; Fri, 10 Nov 2023 02:16:10 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.06 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:09 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 03/10] net: bridge: add document for bridge sysfs attribute Date: Fri, 10 Nov 2023 18:15:40 +0800 Message-ID: <20231110101548.1900519-4-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Although the sysfs interface is deprecated and should not be extended if new options are added. There are still users and admins use this interface to config bridge options. It would help users to know what the meaning of each field. Add correspond netlink enums (as we have document for them) for bridge sysfs attributes, so we can use it in Documentation/networking/bridge.rst. Signed-off-by: Hangbin Liu --- net/bridge/br_sysfs_br.c | 93 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 93 insertions(+) diff --git a/net/bridge/br_sysfs_br.c b/net/bridge/br_sysfs_br.c index ea733542244c..148ecf5aafc6 100644 --- a/net/bridge/br_sysfs_br.c +++ b/net/bridge/br_sysfs_br.c @@ -933,6 +933,99 @@ static ssize_t vlan_stats_per_port_store(struct device *d, static DEVICE_ATTR_RW(vlan_stats_per_port); #endif +/** + * DOC: The sysfs bridge attrs + * + * @forward_delay: IFLA_BR_FORWARD_DELAY + * + * @hello_time: IFLA_BR_HELLO_TIME + * + * @max_age: IFLA_BR_MAX_AGE + * + * @ageing_time: IFLA_BR_AGEING_TIME + * + * @stp_state: IFLA_BR_STP_STATE + * + * @group_fwd_mask: IFLA_BR_GROUP_FWD_MASK + * + * @priority: IFLA_BR_PRIORITY + * + * @bridge_id: IFLA_BR_BRIDGE_ID + * + * @root_id: IFLA_BR_ROOT_ID + * + * @root_path_cost: IFLA_BR_ROOT_PATH_COST + * + * @root_port: IFLA_BR_ROOT_PORT + * + * @topology_change: IFLA_BR_TOPOLOGY_CHANGE + * + * @topology_change_detected: IFLA_BR_TOPOLOGY_CHANGE_DETECTED + * + * @hello_timer: IFLA_BR_HELLO_TIMER + * + * @tcn_timer: IFLA_BR_TCN_TIMER + * + * @topology_change_timer: IFLA_BR_TOPOLOGY_CHANGE_TIMER + * + * @gc_timer: IFLA_BR_GC_TIMER + * + * @group_addr: IFLA_BR_GROUP_ADDR + * + * @flush: IFLA_BR_FDB_FLUSH + * + * @no_linklocal_learn: BR_BOOLOPT_NO_LL_LEARN + * + * @multicast_router: IFLA_BR_MCAST_ROUTER + * + * @multicast_snooping: IFLA_BR_MCAST_SNOOPING + * + * @multicast_querier: IFLA_BR_MCAST_QUERIER + * + * @multicast_query_use_ifaddr: IFLA_BR_MCAST_QUERY_USE_IFADDR + * + * @hash_elasticity: IFLA_BR_MCAST_HASH_ELASTICITY + * + * @hash_max: IFLA_BR_MCAST_HASH_MAX + * + * @multicast_last_member_count: IFLA_BR_MCAST_LAST_MEMBER_CNT + * + * @multicast_startup_query_count: IFLA_BR_MCAST_STARTUP_QUERY_CNT + * + * @multicast_last_member_interval: IFLA_BR_MCAST_LAST_MEMBER_INTVL + * + * @multicast_membership_interval: IFLA_BR_MCAST_MEMBERSHIP_INTVL + * + * @multicast_querier_interval: IFLA_BR_MCAST_QUERIER_INTVL + * + * @multicast_query_interval: IFLA_BR_MCAST_QUERY_INTVL + * + * @multicast_query_response_interval: IFLA_BR_MCAST_QUERY_RESPONSE_INTVL + * + * @multicast_startup_query_interval: IFLA_BR_MCAST_STARTUP_QUERY_INTVL + * + * @multicast_stats_enabled: IFLA_BR_MCAST_STATS_ENABLED + * + * @multicast_igmp_version: IFLA_BR_MCAST_IGMP_VERSION + * + * @multicast_mld_version: IFLA_BR_MCAST_MLD_VERSION + * + * @nf_call_iptables: IFLA_BR_NF_CALL_IPTABLES + * + * @nf_call_ip6tables: IFLA_BR_NF_CALL_IP6TABLES + * + * @nf_call_arptables: IFLA_BR_NF_CALL_ARPTABLES + * + * @vlan_filtering: IFLA_BR_VLAN_FILTERING + * + * @vlan_protocol: IFLA_BR_VLAN_PROTOCOL + * + * @default_pvid: IFLA_BR_VLAN_DEFAULT_PVID + * + * @vlan_stats_enabled: IFLA_BR_VLAN_STATS_ENABLED + * + * @vlan_stats_per_port: IFLA_BR_VLAN_STATS_PER_PORT + */ static struct attribute *bridge_attrs[] = { &dev_attr_forward_delay.attr, &dev_attr_hello_time.attr, From patchwork Fri Nov 10 10:15:41 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452303 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id EC53413AEC for ; Fri, 10 Nov 2023 10:16:17 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="jpEwA951" Received: from mail-pf1-x431.google.com (mail-pf1-x431.google.com [IPv6:2607:f8b0:4864:20::431]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id BB61E27B3D for ; Fri, 10 Nov 2023 02:16:15 -0800 (PST) Received: by mail-pf1-x431.google.com with SMTP id d2e1a72fcca58-6c10f098a27so1651512b3a.2 for ; Fri, 10 Nov 2023 02:16:15 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611374; x=1700216174; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=navMiCGRd9pBWD05coLFaYzT6FFtcpjB5T1w91L5O+Q=; b=jpEwA951fmSqmSZnd1Ws4UYVfL0UVta3Co0qFnL8/zaUaBo7n6GmiR64uRRRv0tGk2 LbjZ/I0CQ7aA3DBgZ7n0k8j4uspMsscIdefn+SWF22ILIX3TPZFMKQegTL5zUuIoqJFb v5XucdpaFFEI419BbZXI2myEa2VYy7BhUiOR92+EMT5uLjm5nTymLFnHwhPtMDX0jDa6 O+bxsN7Wlj42XUyRZPM2fWUeJIydKdt5tzPk1B6XD+giPfE2TDxOZ5Q5mcIOwuaDtUe9 iQg9fp8we6i8WlAqXO1MohVlCTQoAKvYYQFyoGLznXy4PVKsQ+s9DNfYam6Qi1Ldss2Y aAJw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611374; x=1700216174; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=navMiCGRd9pBWD05coLFaYzT6FFtcpjB5T1w91L5O+Q=; b=u4YPqaKru3MGDPWYsOFLF4VJi29tYopyAGs4f8VWDL+/UC/6/2dqEcmuuG4lqaDnwW jvLgqsSWzXSUjba9z0hdFyRn8MndOTLyYeQs7pctIs+HxDeBK0MfJJ7Np/sdoeGq8XP6 e6Fa0Wg3kozPrNy02oFDQiuuZSggik11c6qRaTpOmnOv8EB6NOEx1D5UQi+EkYeTpuEj 2VQ5b8uoI03Emr50tMoJ4N/r0uRKkPZeImtEUYBipLHxyHpGgjBRCHD5mTND5kpluiYx hl5KwZKtobUzf7oHcx4ZJxcajKw+08FV+/C4oHgfvt/dop6QuB1G5q/0GMYvihWaQ0Ad LM4A== X-Gm-Message-State: AOJu0YyurrwrckOAT9WlMSXtPLUCEdpSEBZIxyZ/o7Iime/3s8vKxjhw I8+mUkNIo6Zv2m8AsUd8GvV+C8GqMq82rA== X-Google-Smtp-Source: AGHT+IHnIMr4aYqcq+AcHylO/ogzlVpUlFmcz5fMvKOIre5714Ks6D7bpfc6a5ysYGTO2pWNp1LXtA== X-Received: by 2002:a05:6300:800a:b0:180:7df:76ca with SMTP id an10-20020a056300800a00b0018007df76camr7484556pzc.62.1699611374426; Fri, 10 Nov 2023 02:16:14 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.10 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:13 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 04/10] docs: bridge: Add kAPI/uAPI fields Date: Fri, 10 Nov 2023 18:15:41 +0800 Message-ID: <20231110101548.1900519-5-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC The current bridge kernel doc is too old. It only pointed to the linuxfoundation wiki page which lacks of the new features. Here let's start the new bridge document and put all the bridge info so new developers and users could catch up the last bridge status soon. First add kAPI/uAPI and FAQ fields. These 2 fileds are only examples and more APIs need to be added in future. Signed-off-by: Hangbin Liu --- Documentation/networking/bridge.rst | 83 +++++++++++++++++++++++++---- 1 file changed, 73 insertions(+), 10 deletions(-) diff --git a/Documentation/networking/bridge.rst b/Documentation/networking/bridge.rst index c859f3c1636e..d06c51960f45 100644 --- a/Documentation/networking/bridge.rst +++ b/Documentation/networking/bridge.rst @@ -4,18 +4,81 @@ Ethernet Bridging ================= -In order to use the Ethernet bridging functionality, you'll need the -userspace tools. +Introduction +============ -Documentation for Linux bridging is on: - https://wiki.linuxfoundation.org/networking/bridge +A bridge is a way to connect multiple Ethernet segments together in a protocol +independent way. Packets are forwarded based on Layer 2 destination Ethernet +address, rather than IP address (like a router). Since forwarding is done +at Layer 2, all Layer 3 protocols can pass through a bridge transparently. -The bridge-utilities are maintained at: - git://git.kernel.org/pub/scm/linux/kernel/git/shemminger/bridge-utils.git +Bridge kAPI +=========== -Additionally, the iproute2 utilities can be used to configure -bridge devices. +Here are some core structures of bridge code. -If you still have questions, don't hesitate to post to the mailing list -(more info https://lists.linux-foundation.org/mailman/listinfo/bridge). +.. kernel-doc:: net/bridge/br_private.h + :identifiers: net_bridge_vlan +Bridge uAPI +=========== + +Modern Linux bridge uAPI is accessed via Netlink interface. You can find +below files where the bridge and bridge port netlink attributes are defined. + +Bridge netlink attributes +------------------------- + +.. kernel-doc:: include/uapi/linux/if_link.h + :doc: The bridge enum defination + +Bridge port netlink attributes +------------------------------ + +.. kernel-doc:: include/uapi/linux/if_link.h + :doc: The bridge port enum defination + +Bridge sysfs +------------ + +All the sysfs parameters are also exported via the bridge netlink API. +Here you can find the explanation based on the correspond netlink attributes. + +NOTE: the sysfs interface is deprecated and should not be extended if new +options are added. + +.. kernel-doc:: net/bridge/br_sysfs_br.c + :doc: The sysfs bridge attrs + +FAQ +=== + +What does a bridge do? +---------------------- + +A bridge transparently forwards traffic between multiple network interfaces. +In plain English this means that a bridge connects two or more physical +Ethernet networks, to form one larger (logical) Ethernet network. + +Is it L3 protocol independent? +------------------------------ + +Yes. The bridge sees all frames, but it *uses* only L2 headers/information. +As such, the bridging functionality is protocol independent, and there should +be no trouble forwarding IPX, NetBEUI, IP, IPv6, etc. + +Contact Info +============ + +The code is currently maintained by Roopa Prabhu and +Nikolay Aleksandrov . Bridge bugs and enhancements +are discussed on the linux-netdev mailing list netdev@vger.kernel.org and +bridge@lists.linux-foundation.org. + +The list is open to anyone interested: http://vger.kernel.org/vger-lists.html#netdev + +External Links +============== + +The old Documentation for Linux bridging is on: +https://wiki.linuxfoundation.org/networking/bridge From patchwork Fri Nov 10 10:15:42 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452304 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 3D3DA13FFF for ; Fri, 10 Nov 2023 10:16:22 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="SVgCfzDJ" Received: from mail-pj1-x102f.google.com (mail-pj1-x102f.google.com [IPv6:2607:f8b0:4864:20::102f]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id E559D27B3F for ; Fri, 10 Nov 2023 02:16:19 -0800 (PST) Received: by mail-pj1-x102f.google.com with SMTP id 98e67ed59e1d1-28003daaaa6so1630826a91.0 for ; Fri, 10 Nov 2023 02:16:19 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611378; x=1700216178; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=h38H0mJZ2F6o36bbQbxRN2ee8icupz6sPpnBbZTOYdQ=; b=SVgCfzDJt7fKMBPBILaCj3e7knThCB+o6aUss5LbIbjoiHDBEn4HQ/DOUW83guUNVo CVVvl00GSevO4ljzlxomu0HX5l4jNNYa97Z153CT8PXJCmww4ssU/q2ArdkHp7BWC82I x2QmKlYqu2UXVkmu6sETbOUYdKrd5UCYQVWFuELsLQBmrD9nYyS7E6Eyl6rdMZD4wPQH /W5l1WVYVxrsGIVVf4K69b5beeCHUpFQuIM9RxJKXL9gR5Uf4fs/WsG7VNOwKbdi/x0Y zgehK/iA7exXz6VlMAhdiRZ53gowAhcHnbGwEw1/qRxOG133RJDiXMYDKA91C9GVzH4T CJIQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611378; x=1700216178; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=h38H0mJZ2F6o36bbQbxRN2ee8icupz6sPpnBbZTOYdQ=; b=GZQSvaeUZJcvSFMBk+jhBY0uE1ScMRjVdFXSkp8zQ4G5wZK+6nvTGxnrhjwbv++Oad jNji2rPTeGQZym1cIIQyYVOTjfdZCXHb171OmNn8t03iLlvK+nqKMR3yfKuuVhRw/0KA 1W27qu1b2B/gG8xgcYAesNXzt20gUGarlUcJn5TOuvo4kC1psqnK1T7vHD7w3VEYCrga hAvkMA5O2qvipUo19YzYX93S2DVLam+yHhBkO9XXOq0aqxQGwvoxyOm4ftiDjg4leIgT oLPSigwsB4QuDZ61jxzNJO8wSMtgFaooJxCyoAqKgVwJkzDz/CXd/vHt5iUhuChtdS/v t5zQ== X-Gm-Message-State: AOJu0YyW3pi56RDDaTxoKt1kIt50+7MzMYAV3sUIHkxom/XWClX5cCDw 7h+2StPoPAQ6N9gwr3fnUuyBmjvbDcXLjQ== X-Google-Smtp-Source: AGHT+IGKlc3FlfmMscR8OSxdURlYXPqqLK5iAS204zg8PHC6rQloTXp/eKxPJ9GAMoYEDO9HvZ1sqg== X-Received: by 2002:a17:90b:4f86:b0:27d:b87b:a9d4 with SMTP id qe6-20020a17090b4f8600b0027db87ba9d4mr4218357pjb.7.1699611378541; Fri, 10 Nov 2023 02:16:18 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.14 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:17 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 05/10] docs: bridge: add STP doc Date: Fri, 10 Nov 2023 18:15:42 +0800 Message-ID: <20231110101548.1900519-6-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Add STP part for bridge document. Signed-off-by: Hangbin Liu --- Documentation/networking/bridge.rst | 85 +++++++++++++++++++++++++++++ 1 file changed, 85 insertions(+) diff --git a/Documentation/networking/bridge.rst b/Documentation/networking/bridge.rst index d06c51960f45..e168f86ddd82 100644 --- a/Documentation/networking/bridge.rst +++ b/Documentation/networking/bridge.rst @@ -50,6 +50,91 @@ options are added. .. kernel-doc:: net/bridge/br_sysfs_br.c :doc: The sysfs bridge attrs +STP +=== + +The STP (Spanning Tree Protocol) implementation in the Linux bridge driver +is a critical feature that helps prevent loops and broadcast storms in +Ethernet networks by identifying and disabling redundant links. In a Linux +bridge context, STP is crucial for network stability and availability. + +STP is a Layer 2 protocol that operates at the Data Link Layer of the OSI +model. It was originally developed as IEEE 802.1D and has since evolved into +multiple versions, including Rapid Spanning Tree Protocol (RSTP) and +`Multiple Spanning Tree Protocol (MSTP) +`_. + +Bridge Ports and STP States +--------------------------- + +In the context of STP, bridge ports can be in one of the following states: + * Blocking: The port is disabled for data traffic and only listens for + BPDUs (Bridge Protocol Data Units) from other devices to determine the + network topology. + * Listening: The port begins to participate in the STP process and listens + for BPDUs. + * Learning: The port continues to listen for BPDUs and begins to learn MAC + addresses from incoming frames but does not forward data frames. + * Forwarding: The port is fully operational and forwards both BPDUs and + data frames. + * Disabled: The port is administratively disabled and does not participate + in the STP process. The data frames forwarding are also disabled. + +Root Bridge and Convergence +--------------------------- + +In the context of networking and Ethernet bridging in Linux, the root bridge +is a designated switch in a bridged network that serves as a reference point +for the spanning tree algorithm to create a loop-free topology. + +Here's how the STP works and root bridge is chosen: + 1. Bridge Priority: Each bridge running a spanning tree protocol, has a + configurable Bridge Priority value. The lower the value, the higher the + priority. By default, the Bridge Priority is set to a standard value + (e.g., 32768). + 2. Bridge ID: The Bridge ID is composed of two components: Bridge Priority + and the MAC address of the bridge. It uniquely identifies each bridge + in the network. The Bridge ID is used to compare the priorities of + different bridges. + 3. Bridge Election: When the network starts, all bridges initially assume + that they are the root bridge. They start advertising Bridge Protocol + Data Units (BPDU) to their neighbors, containing their Bridge ID and + other information. + 4. BPDU Comparison: Bridges exchange BPDUs to determine the root bridge. + Each bridge examines the received BPDUs, including the Bridge Priority + and Bridge ID, to determine if it should adjust its own priorities. + The bridge with the lowest Bridge ID will become the root bridge. + 5. Root Bridge Announcement: Once the root bridge is determined, it sends + BPDUs with information about the root bridge to all other bridges in the + network. This information is used by other bridges to calculate the + shortest path to the root bridge and, in doing so, create a loop-free + topology. + 6. Forwarding Ports: After the root bridge is selected and the spanning tree + topology is established, each bridge determines which of its ports should + be in the forwarding state (used for data traffic) and which should be in + the blocking state (used to prevent loops). The root bridge's ports are + all in the forwarding state. while other bridges have some ports in the + blocking state to avoid loops. + 7. Root Ports: After the root bridge is selected and the spanning tree + topology is established, each non-root bridge processes incoming + BPDUs and determines which of its ports provides the shortest path to the + root bridge based on the information in the received BPDUs. This port is + designated as the root port. And it is in the Forwarding state, allowing + it to actively forward network traffic. + 8. Designated ports: A designated port is the port through which the non-root + bridge will forward traffic towards the designated segment. Designated ports + are placed in the Forwarding state. All other ports on the non-root + bridge that are not designated for specific segments are placed in the + Blocking state to prevent network loops. + +STP ensures network convergence by calculating the shortest path and disabling +redundant links. When network topology changes occur (e.g., a link failure), +STP recalculates the network topology to restore connectivity while avoiding loops. + +Proper configuration of STP parameters, such as the bridge priority, can +influence which bridge becomes the Root Bridge. Careful configuration can +optimize network performance and path selection. + FAQ === From patchwork Fri Nov 10 10:15:43 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452305 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 87F11134DF for ; Fri, 10 Nov 2023 10:16:24 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="MUPT7zA7" Received: from mail-pl1-x62c.google.com (mail-pl1-x62c.google.com [IPv6:2607:f8b0:4864:20::62c]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 879BC27B3D for ; Fri, 10 Nov 2023 02:16:23 -0800 (PST) Received: by mail-pl1-x62c.google.com with SMTP id d9443c01a7336-1cc131e52f1so22968255ad.0 for ; Fri, 10 Nov 2023 02:16:23 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611382; x=1700216182; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=/YUXjSQL75/qo4K29KturJ12RMBsS82DTP6+14IpWzw=; b=MUPT7zA7qVCV67TyVw37INpYHeqON0j0BULhH09OwdlQ7j8N+2ONU7BTx5x+OB0Q+/ tdWX80r9s24gOfRRxKSdVM3364LF4O0+145wthCEKD4adlEd93WBVu83oGjRlMU/o/zf V1hz8vvvR13gg3il7EvARSutIrHToFd9D+Gy6ebyDMe9Wk2+rlEj5/wBJILSGMeUB6xQ vEGq0SZURH6bcvbPB8O7OHx7I/fMM1ej0KrGgszGkQRBnGv/a91NCO303rNe1wpXdhpx UZZZuQ/+rxAUIViY/Sxs1FOIcjEeuscjWveytyuLar6wH6I4vz5J/rLL9wDbvUpdqKS8 nivg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611382; x=1700216182; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=/YUXjSQL75/qo4K29KturJ12RMBsS82DTP6+14IpWzw=; b=ZF2CG2XfGaAAw3X484lDARyta/F0iQt6P+dYVZaiNQcoNfRE8sF2EoJmTPUuicvJn/ qeVWjTAGZm/OFRyhJFGzHzdtjHt+e9KLV+jIj31QYoWweSy9UyxFNB+o5e0p8KOyidKJ qEL+7NaM9C6e1ZKJHMfUQD8CWa/L33gBOJfTo9uPt1LiTkPEXGrL2md4M3Th3XZBWe2D IvgGNihOmfabDJ1tIaqX5sPCwhEy1vni41cnX2pnk3MX6eiW0yZ4fnMiLG/xmOod27vD FLRlO4JqanuVG2uWI8f1/IclAJn1JiEbROdv+XZqkYsGjoVftxTvzN6iWwIumfma9WNn 7leQ== X-Gm-Message-State: AOJu0YzI/znqVz3mImGVzN0YOx7tfZTILQUCn/c45q7ccISZ6YBleScK 4/C+Ped+ggr5Io/oWtZuyA5NqNvEk8qTiw== X-Google-Smtp-Source: AGHT+IEa/uzDJqMt28cr8GvooC8jrxkY3kXGLz1lSAJdmSWDo4OqdXFidMZ4d6xyxc8THB/EiW0WNA== X-Received: by 2002:a17:90a:7c06:b0:283:7e0:2e51 with SMTP id v6-20020a17090a7c0600b0028307e02e51mr2793029pjf.0.1699611382592; Fri, 10 Nov 2023 02:16:22 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.18 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:22 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 06/10] docs: bridge: add VLAN doc Date: Fri, 10 Nov 2023 18:15:43 +0800 Message-ID: <20231110101548.1900519-7-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Add VLAN part for bridge document. Signed-off-by: Hangbin Liu --- Documentation/networking/bridge.rst | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) diff --git a/Documentation/networking/bridge.rst b/Documentation/networking/bridge.rst index e168f86ddd82..88dfc6eb0919 100644 --- a/Documentation/networking/bridge.rst +++ b/Documentation/networking/bridge.rst @@ -135,6 +135,35 @@ Proper configuration of STP parameters, such as the bridge priority, can influence which bridge becomes the Root Bridge. Careful configuration can optimize network performance and path selection. +VLAN +==== + +A LAN (Local Area Network) is a network that covers a small geographic area, +typically within a single building or a campus. LANs are used to connect +computers, servers, printers, and other networked devices within a localized +area. LANs can be wired (using Ethernet cables) or wireless (using Wi-Fi). + +A VLAN (Virtual Local Area Network) is a logical segmentation of a physical +network into multiple isolated broadcast domains. VLANs are used to divide +a single physical LAN into multiple virtual LANs, allowing different groups of +devices to communicate as if they were on separate physical networks. + +Typically there are two VLAN implementations, IEEE 802.1Q and IEEE 802.1ad +(also known as QinQ). IEEE 802.1Q is a standard for VLAN tagging in Ethernet +networks. It allows network administrators to create logical VLANs on a +physical network and tag Ethernet frames with VLAN information, which is +called *VLAN-tagged frames*. IEEE 802.1ad, commonly known as QinQ or Double +VLAN, is an extension of the IEEE 802.1Q standard. QinQ allows for the +stacking of multiple VLAN tags within a single Ethernet frame. The Linux +bridge supports both the IEEE 802.1Q and `802.1AD +`_ +protocol for VLAN tagging. + +The `VLAN filtering `_ +on bridge is disabled by default. After enabling VLAN +filter on bridge, the bridge can handle VLAN-tagged frames and forward them +to the appropriate destinations. + FAQ === From patchwork Fri Nov 10 10:15:44 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452306 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id A5FE313FE6 for ; Fri, 10 Nov 2023 10:16:28 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="FWfVVfJB" Received: from mail-pf1-x42b.google.com (mail-pf1-x42b.google.com [IPv6:2607:f8b0:4864:20::42b]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 8BD1127B3D for ; Fri, 10 Nov 2023 02:16:27 -0800 (PST) Received: by mail-pf1-x42b.google.com with SMTP id d2e1a72fcca58-6bd0e1b1890so1644108b3a.3 for ; Fri, 10 Nov 2023 02:16:27 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611386; x=1700216186; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=nlYhocWc8bFOSx5GVul6Jouf/5+cjWsgGhm8vCIaY7w=; b=FWfVVfJB2I49cujzegD462yCZVL3gUEjZG8vpbeOmBl9si7NOMZAGwydyh2a53v0z7 zGT0Q87Ku4dr8RR3vckFx/SmbyS5G3+W/y11H7WzB4uYEfSH0s+zl96l6+/WqXCKWL8/ UZGw5A/BFWSngnj2v66LLTCx/GzMMKSegllelm509Ev2PkrgcXtoWqykQSS9T7iUsDU8 7b3gKMp+sKH0pxj33VxpmbBB9wx+VnCKhvQ+wINU6/zj4oAeIGptQU6nqmJk2H+4eEcl +xn4uQFZefj72PN/ZC6hpBwO1HIPCEGFHxnYKboJVnQR0S64lGSAd3uj5B6aGOK06C5+ UE1w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611386; x=1700216186; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=nlYhocWc8bFOSx5GVul6Jouf/5+cjWsgGhm8vCIaY7w=; b=PD/iEl7qsbR/OWnMdHwKOxWjPXyQZ20gCG0f3v9x+qcQ9BfnaBmD0LdQmij93+ly3y 2Vjp6FJE8S0ZPOpIJoB5XeqPJNV3vCsNYZG81yv9wNK8wlPqCaxQGxkKwWzWaj6rZ4LR b6hV25lgSiDa7RuB6TTfNZykpRKLRssfh19/uCGrfsd/sHR8uqbh5BI0Cnhf0RBlWV+w uHW8xUZoC3kxmOgl7JN7o9/Yjkz97xN9TENwxGN7pthpzDWZN0ZS3fZHV9QsWdggIt7f wpxhyHISgLrHY8zbi9yr6j0dV9FanGMPuZcL2qddH7/dlQmgUR6j0vouQ/ugnILtGiRc qfkg== X-Gm-Message-State: AOJu0YyyjfGHexz6m8Z4yCoSqrxd2FDmxZZ98Plo0w7t5bfPIh14Uvov 7SWzET2YqL8Wrdog2CosMNSiMEQyVlK9AQ== X-Google-Smtp-Source: AGHT+IG2tlFgC9vtRpUWIXkiMxcrgcSo34L+CqKUP7vvP4DLnGh3resbPCn40gbxpvash49LsMR3sw== X-Received: by 2002:a05:6a20:3956:b0:17a:eddb:ac65 with SMTP id r22-20020a056a20395600b0017aeddbac65mr8069418pzg.9.1699611386642; Fri, 10 Nov 2023 02:16:26 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.22 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:26 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 07/10] docs: bridge: add multicast doc Date: Fri, 10 Nov 2023 18:15:44 +0800 Message-ID: <20231110101548.1900519-8-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Add multicast part for bridge document. Signed-off-by: Hangbin Liu --- Documentation/networking/bridge.rst | 55 +++++++++++++++++++++++++++++ 1 file changed, 55 insertions(+) diff --git a/Documentation/networking/bridge.rst b/Documentation/networking/bridge.rst index 88dfc6eb0919..1fe645c9543d 100644 --- a/Documentation/networking/bridge.rst +++ b/Documentation/networking/bridge.rst @@ -164,6 +164,61 @@ on bridge is disabled by default. After enabling VLAN filter on bridge, the bridge can handle VLAN-tagged frames and forward them to the appropriate destinations. +Multicast +========= + +The Linux bridge driver has multicast support allowing it to process Internet +Group Management Protocol (IGMP) or Multicast Listener Discovery (MLD) +messages, and to efficiently forward multicast data packets. The bridge +driver support IGMPv2/IGMPv3 and MLDv1/MLDv2. + +Multicast snooping +------------------ + +Multicast snooping is a networking technology that allows network switches +to intelligently manage multicast traffic within a local area network (LAN). + +The switch maintains a multicast group table, which records the association +between multicast group addresses and the ports where hosts have joined these +groups. The group table is dynamically updated based on the IGMP/MLD messages +received. With the multicast group information gathered through snooping, the +switch optimizes the forwarding of multicast traffic. Instead of blindly +broadcasting the multicast traffic to all ports, it sends the multicast +traffic based on the destination MAC address only to ports which have joined +the respective destination multicast group. + +When created, the Linux bridge devices have multicast snooping enabled by +default. It maintains a Multicast forwarding database (MDB) which keeps track +of port and group relationships. + +IGMPv3/MLDv2 ETH support +------------------------ + +The Linux bridge supports IGMPv3/MLDv2 ETH (Explicit Tracking of Hosts), which +was added by `474ddb37fa3a ("net: bridge: multicast: add EHT allow/block handling") +`_ + +The explicit tracking of hosts enables the device to keep track of each +individual host that is joined to a particular group or channel. The main +benefit of the explicit tracking of hosts in IGMP is to allow minimal leave +latencies when a host leaves a multicast group or channel. + +The length of time between a host wanting to leave and a device stopping +traffic forwarding is called the IGMP leave latency. A device configured +with IGMPv3 or MLDv2 and explicit tracking can immediately stop forwarding +traffic if the last host to request to receive traffic from the device +indicates that it no longer wants to receive traffic. The leave latency +is thus bound only by the packet transmission latencies in the multiaccess +network and the processing time in the device. + +Other multicast features +------------------------ +The Linux bridge also supports `per-VLAN multicast snooping +`_, +which is disabled by default but can be enabled. And `Multicast Router Discovery +`_, +which help identify the location of multicast routers. + FAQ === From patchwork Fri Nov 10 10:15:45 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452307 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 03469134DF for ; Fri, 10 Nov 2023 10:16:32 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="bMBTlmUV" Received: from mail-pj1-x1034.google.com (mail-pj1-x1034.google.com [IPv6:2607:f8b0:4864:20::1034]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id C4BCE27B3F for ; Fri, 10 Nov 2023 02:16:31 -0800 (PST) Received: by mail-pj1-x1034.google.com with SMTP id 98e67ed59e1d1-280260db156so1606665a91.2 for ; Fri, 10 Nov 2023 02:16:31 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611390; x=1700216190; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=cAl1qrWA2Vjv6+R6pNb3HshMnAG0HgniuTWWiLPfzQ8=; b=bMBTlmUVzlpq11Suk3gxUHJwXiwexa5/cH5/tekNA6O99tcqQEQqgLhu+taAZWnsyy JMAmH7EtyeqzBw/oxGTAgRxq8y5gHo877IwYA+jdRZc40Ese9ym4ubyQPvCyqik1G8Nw iNLSvw06qUyEWBLH9VGc8+0V1ZkHn0ME5GqxXGDAQOtI4fObcetKH2TMXLJlhOf0hoZ5 scIrdhBBSYZ2PNwEhKom/BwjR8LYGgKlUreHTVQoTsl6zHK2jxSuu5cG9OvRIE6k5+Ol yxcpeWyYFyG/nHYZLiHVQAcXCovPg+I3AaLgwKvF+CIhBCF7vet1ht2+69t87PXjPNMI ZBoA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611390; x=1700216190; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=cAl1qrWA2Vjv6+R6pNb3HshMnAG0HgniuTWWiLPfzQ8=; b=bIlovCDXG/KcvnrxNaxHr2ql2KYa85+JYrCKmpuYBYAJUQb8fxVFMuXSesArH9uqiJ Zh6BvVG70GwXq1my60UaxoSYugdreP997rS1hkuf5RDLaKvVTTOHKdVjj/VbLKQ+mM4q Ck144OTdOZ2bJ8N6pa0YsX8tDELfXBTBTdeP+lZc2zgfod+psVvpLRvkvx5/oezKMI7w 7qVWAObdjTcSplPwi/iiP0+u101iqnjIZG9jAY5KooRPYi3F/7DQKbglNsRMIll5vEzJ hGiGMGY02oUIvnZ4wxWK3z+e0pruvwuiNkedloA6ZUnxWkzWWmP0KmzYjEdviMHcvrPG LInw== X-Gm-Message-State: AOJu0Yw3NohEoIVXUXKWjEhRkQzRFfrdkYBevoWVPrhiujgCgG4/+G/l EKwbwcodCxpBUr5apVYBvAQlq+xEM/+Cng== X-Google-Smtp-Source: AGHT+IFBheYR5oWHREMjyIqz0H6KaoKzJi8ZXutPilkRhE1gcYlQ5I5gg422BvnHqpODg2GjbpKrbw== X-Received: by 2002:a17:90b:1b0c:b0:27c:f8f4:fedb with SMTP id nu12-20020a17090b1b0c00b0027cf8f4fedbmr4764777pjb.21.1699611390669; Fri, 10 Nov 2023 02:16:30 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.26 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:30 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 08/10] docs: bridge: add switchdev doc Date: Fri, 10 Nov 2023 18:15:45 +0800 Message-ID: <20231110101548.1900519-9-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Add switchdev part for bridge document. Signed-off-by: Hangbin Liu --- Documentation/networking/bridge.rst | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) diff --git a/Documentation/networking/bridge.rst b/Documentation/networking/bridge.rst index 1fe645c9543d..4ff1e4ab6dd5 100644 --- a/Documentation/networking/bridge.rst +++ b/Documentation/networking/bridge.rst @@ -219,6 +219,24 @@ which is disabled by default but can be enabled. And `Multicast Router Discovery `_, which help identify the location of multicast routers. +Switchdev +========= + +Linux Bridge Switchdev is a feature in the Linux kernel that extends the +capabilities of the traditional Linux bridge to work more efficiently with +hardware switches that support switchdev. With Linux Bridge Switchdev, certain +networking functions like forwarding, filtering, and learning of Ethernet +frames can be offloaded to a hardware switch. This offloading reduces the +burden on the Linux kernel and CPU, leading to improved network performance +and lower latency. + +To use Linux Bridge Switchdev, you need hardware switches that support the +switchdev interface. This means that the switch hardware needs to have the +necessary drivers and functionality to work in conjunction with the Linux +kernel. + +Please see the :ref:`switchdev` document for more deatils. + FAQ === From patchwork Fri Nov 10 10:15:46 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452308 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id E5C1E13AED for ; Fri, 10 Nov 2023 10:16:36 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="J0rGncLY" Received: from mail-pl1-x631.google.com (mail-pl1-x631.google.com [IPv6:2607:f8b0:4864:20::631]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id EF1A186AD for ; Fri, 10 Nov 2023 02:16:35 -0800 (PST) Received: by mail-pl1-x631.google.com with SMTP id d9443c01a7336-1ccbb7f79cdso15738315ad.3 for ; Fri, 10 Nov 2023 02:16:35 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611395; x=1700216195; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=mgXzwv45DXqIjIa1iLwDoPoHFYa3u1erq+7g3zqSByw=; b=J0rGncLY2yqxsHTRRSdpRkOproBR3RM2J5RvUByRJJer5Q+yoJpgrsz5Is2T5HdAL3 lWvFJxeD6H3QAxnD9n8V3VEP8pRRSp+AeRxugJ4LJQhEsg77NSfNFqOasTD4zgzoexO+ Uni+RHRtxmAlyDwsU9VEPl0FxnvZ2lNiuZ+12/wiKWtJKXum9v2n5uPgoB5XT2ZFmQOf FxPEHfVS8wBhcNx3Bfe+sUN7Ht72i8zCo3ywuK/RoKB4rKHcAaA5WZh60dd3Wc5Nf1XY xkuFBdAZmR1I4Xof85u3sdQquuaOMxAGlQVp/fMLEVpVHtUR8iQudTdZnaOO9ftJicc9 G5nA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611395; x=1700216195; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=mgXzwv45DXqIjIa1iLwDoPoHFYa3u1erq+7g3zqSByw=; b=BJw7w0r6QjITLfK+cBP5Dr1jq5RiGYemenD0xlx0ITXvACKZp76Sy8kFfMdPALPeUX kBfOd77vlYJQ2gaPdSic2PMUDnTQlvEAinF1N4DybSQFqkpEKwlA+jzF/1qYaUjcblrD zvjArzN0NDfnrgXLJKtcrFlHxn3IYfpXfjMEMt58aH2dZXwDN6s6mrjpFEb/wZvskyiE l5l+rMm+EdXU/n+SmwXhIavFjE2TecDdDf6ZN/YXwfvPM8udap0Ur9EgFL7F7jubPp0l /NWjZAaycpAcGSG15Kl1YoG0kBe+5vII3X3mV12lLGk++k88dzO7M5MKtx/MqrnGH5Pe DOQg== X-Gm-Message-State: AOJu0YwcV0wG0PhxrjtAyXBTU40NSDznYAlrRIHW4z/GpkLAlukBwSkB t85t3GIgqDet0kyWX6q3w9ET3xoaBsrnVA== X-Google-Smtp-Source: AGHT+IEipp5smOXO7sdtdo6mrg7+nefauUOuV77yHew8vZqFqiGp6b8LyplUAD5TD9GeBLkAAcwDpg== X-Received: by 2002:a17:90a:e7c7:b0:281:1c2e:9e6a with SMTP id kb7-20020a17090ae7c700b002811c2e9e6amr3835979pjb.39.1699611394744; Fri, 10 Nov 2023 02:16:34 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.30 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:34 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 09/10] docs: bridge: add netfilter doc Date: Fri, 10 Nov 2023 18:15:46 +0800 Message-ID: <20231110101548.1900519-10-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Add netfilter part for bridge document. Signed-off-by: Hangbin Liu --- Documentation/networking/bridge.rst | 36 +++++++++++++++++++++++++++++ 1 file changed, 36 insertions(+) diff --git a/Documentation/networking/bridge.rst b/Documentation/networking/bridge.rst index 4ff1e4ab6dd5..7f63d21c9f46 100644 --- a/Documentation/networking/bridge.rst +++ b/Documentation/networking/bridge.rst @@ -237,6 +237,42 @@ kernel. Please see the :ref:`switchdev` document for more deatils. +Netfilter +========= + +The bridge netfilter module is a legacy feature that allows to filter bridged +packets with iptables and ip6tables. Its use is discouraged. Users should +consider using nftables for packet filtering. + +The older ebtables tool is more feature-limited compared to nftables, but +just like nftables it doesn't need this module either to function. + +The br_netfilter module intercepts packets entering the bridge, performs +minimal sanity tests on ipv4 and ipv6 packets and then pretends that +these packets are being routed, not bridged. br_netfilter then calls +the ip and ipv6 netfilter hooks from the bridge layer, i.e. ip(6)tables +rulesets will also see these packets. + +br_netfilter is also the reason for the iptables *physdev* match: +This match is the only way to reliably tell routed and bridged packets +apart in an iptables ruleset. + +Note that ebtables and nftables will work fine without the br_netfilter module. +iptables/ip6tables/arptables do not work for bridged traffic because they +plug in the routing stack. nftables rules in ip/ip6/inet/arp families won't +see traffic that is forwarded by a bridge either, but thats very much how it +should be. + +Historically the feature set of ebtables was very limited (it still is), +this module was added to pretend packets are routed and invoke the ipv4/ipv6 +netfilter hooks from the bridge so users had access to the more feature-rich +iptables matching capabilities (including conntrack). nftables doesn't have +this limitation, pretty much all features work regardless of the protocol family. + +So, br_netfilter is only needed if users, for some reason, need to use +ip(6)tables to filter packets forwarded by the bridge, or NAT bridged +traffic. For pure link layer filtering, this module isn't needed. + FAQ === From patchwork Fri Nov 10 10:15:47 2023 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: Hangbin Liu X-Patchwork-Id: 13452309 X-Patchwork-Delegate: kuba@kernel.org Received: from lindbergh.monkeyblade.net (lindbergh.monkeyblade.net [23.128.96.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 1B25613ADB for ; Fri, 10 Nov 2023 10:16:41 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="je72nvip" Received: from mail-pl1-x62f.google.com (mail-pl1-x62f.google.com [IPv6:2607:f8b0:4864:20::62f]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id D525283DF for ; Fri, 10 Nov 2023 02:16:39 -0800 (PST) Received: by mail-pl1-x62f.google.com with SMTP id d9443c01a7336-1cc58219376so16834395ad.1 for ; Fri, 10 Nov 2023 02:16:39 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1699611399; x=1700216199; darn=vger.kernel.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:from:to:cc:subject:date :message-id:reply-to; bh=UXf/A0uy+9wHrukHMCOqfndxWDOODJT68setAz5NS1o=; b=je72nvipCn+mOkYiriAd6FsGHjyV0GCd73S5cT4FLymgNS31JZZ0rVtHNtNOkPw28n NSo9Bd5UqoxthaZ45rd9hYHVVGng0alrV2npQJqsCk+pWfXllSIbWpi2YzFPoJsLQPoC 1vjTTyP+XdcR2YMIgOHhbnOrcDuGqtkQ8P8hsySzypf1L8EHv5r6fIdzLobEqdBILxkk vRasBm16VhZadPsniOUmpYWFK1ea3V33fGD9glnHCMY12UptwVVTBHPpICJ70R3Vzj3b ebKghT/yMH11WmfG+g+VT6ey6o/Qp3CPCXpNnV9FBjCOQNUnwv9gM1nXQ5GfJxesu+lN +UbQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1699611399; x=1700216199; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:date:subject:cc:to:from:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=UXf/A0uy+9wHrukHMCOqfndxWDOODJT68setAz5NS1o=; b=Ztut0bXNOUqMkppyhhAJw4dTtBEnz0BBrHw1Te4kPty48w3Rxc9z8hC15Qw9N42yRY xKQaGqvyvBKExcbQNl3YO+PXaAUxpKLfzOpRqde3BO6wthQN5/9AeL+9CGQKyOnnkTPN Zh8Wc/g1IzU/px9QuPMI4qvhRUGDBRZexEGdr3yUnomPidER4El8lI2dop739pWbimdk Ck04+2lwrdXzKJkwxilkXyn9UZsfh1OTHG+QezRtC+GMbWll2+/hKSO+VqHQ6b0pVV5f BVXe8KWKcQ6netMnx0eDGVPrB2JNxAyWNtitVy4KmrVJcunpNzMDyrHMmtwxyam00U4O M/FQ== X-Gm-Message-State: AOJu0Yzjs2aLG/zJcfxsyE3JWMMu6ciQexifSUlhNeEE8S5KeQpMj0KB /wEdxOtK3vNcgUwtXsql7Jr2QEDfqhfhtg== X-Google-Smtp-Source: AGHT+IHNmzc5uU57q2aQw3UcN09r+VlbRx6iTMMIrXVRbfK6/hOUNdZHRWqDuoSJdO1JZoDTwczJXA== X-Received: by 2002:a17:90b:4b84:b0:27d:348:94a8 with SMTP id lr4-20020a17090b4b8400b0027d034894a8mr4332781pjb.6.1699611398779; Fri, 10 Nov 2023 02:16:38 -0800 (PST) Received: from Laptop-X1.redhat.com ([43.228.180.230]) by smtp.gmail.com with ESMTPSA id cc13-20020a17090af10d00b0027d015c365csm1244631pjb.31.2023.11.10.02.16.35 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 10 Nov 2023 02:16:38 -0800 (PST) From: Hangbin Liu To: netdev@vger.kernel.org Cc: "David S . Miller" , David Ahern , Eric Dumazet , Jakub Kicinski , Paolo Abeni , Ido Schimmel , Nikolay Aleksandrov , Roopa Prabhu , Stephen Hemminger , Florian Westphal , Andrew Lunn , Florian Fainelli , Vladimir Oltean , Jiri Pirko , Hangbin Liu Subject: [RFC PATCHv3 net-next 10/10] docs: bridge: add small features Date: Fri, 10 Nov 2023 18:15:47 +0800 Message-ID: <20231110101548.1900519-11-liuhangbin@gmail.com> X-Mailer: git-send-email 2.41.0 In-Reply-To: <20231110101548.1900519-1-liuhangbin@gmail.com> References: <20231110101548.1900519-1-liuhangbin@gmail.com> Precedence: bulk X-Mailing-List: netdev@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 X-Patchwork-Delegate: kuba@kernel.org X-Patchwork-State: RFC Add some small features in the "Others" part of bridge document. Signed-off-by: Hangbin Liu --- Documentation/networking/bridge.rst | 14 ++++++++++++++ 1 file changed, 14 insertions(+) diff --git a/Documentation/networking/bridge.rst b/Documentation/networking/bridge.rst index 7f63d21c9f46..8adf99774d59 100644 --- a/Documentation/networking/bridge.rst +++ b/Documentation/networking/bridge.rst @@ -273,6 +273,20 @@ So, br_netfilter is only needed if users, for some reason, need to use ip(6)tables to filter packets forwarded by the bridge, or NAT bridged traffic. For pure link layer filtering, this module isn't needed. +Other Features +============== + +The Linux bridge also supports `IEEE 802.11 Proxy ARP +`_, +`Media Redundancy Protocol (MRP) +`_, +`Media Redundancy Protocol (MRP) LC mode +`_, +`IEEE 802.1X port authentication +`_, +and `MAC Authentication Bypass (MAB) +`_. + FAQ ===