netfilter: Add the capability to offload flowtable in XDP layer #7042
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![kernel-patches-daemon-bpf[bot]](https://avatars.githubusercontent.com/u/70728002?s=60&v=4){kind=small}
|
Upstream branch: 5c16727 |
kernel-patches-daemon-bpf
bot
force-pushed
the
bpf-next_base
branch
from
2a6f558
to
82dcd12
Compare
|
Upstream branch: 4505311 |
kernel-patches-daemon-bpf
bot
force-pushed
the
series/852307=>bpf-next
branch
from
e3a9738
to
c1daeb0
Compare
kernel-patches-daemon-bpf
bot
force-pushed
the
bpf-next_base
branch
from
82dcd12
to
0a226e9
Compare
|
Upstream branch: 83eea61 |
kernel-patches-daemon-bpf
bot
force-pushed
the
series/852307=>bpf-next
branch
from
c1daeb0
to
cc49190
Compare
kernel-patches-daemon-bpf
bot
force-pushed
the
bpf-next_base
branch
from
0a226e9
to
c7673c1
Compare
|
Upstream branch: 71ed6c2 |
kernel-patches-daemon-bpf
bot
force-pushed
the
series/852307=>bpf-next
branch
from
cc49190
to
145f04d
Compare
|
Upstream branch: 71ed6c2 |
kernel-patches-daemon-bpf
bot
force-pushed
the
series/852307=>bpf-next
branch
from
145f04d
to
64f766b
Compare
kernel-patches-daemon-bpf
bot
force-pushed
the
bpf-next_base
branch
from
c7673c1
to
0b7406d
Compare
This adds a small internal mapping table so that a new bpf (xdp) kfunc can perform lookups in a flowtable. As-is, xdp program has access to the device pointer, but no way to do a lookup in a flowtable -- there is no way to obtain the needed struct without questionable stunts. This allows to obtain an nf_flowtable pointer given a net_device structure. In order to keep backward compatibility, the infrastructure allows the user to add a given device to multiple flowtables, but it will always return the first added mapping performing the lookup since it assumes the right configuration is 1:1 mapping between flowtables and net_devices. Signed-off-by: Florian Westphal <fw@strlen.de> Co-developed-by: Lorenzo Bianconi <lorenzo@kernel.org> Signed-off-by: Lorenzo Bianconi <lorenzo@kernel.org>
Introduce bpf_xdp_flow_offload_lookup kfunc in order to perform the lookup of a given flowtable entry based on a fib tuple of incoming traffic. bpf_xdp_flow_offload_lookup can be used as building block to offload in xdp the processing of sw flowtable when hw flowtable is not available. Signed-off-by: Lorenzo Bianconi <lorenzo@kernel.org>
Introduce xdp_flowtable_offload bpf sample to offload sw flowtable logic in xdp layer if hw flowtable is not available or does not support a specific kind of traffic. Signed-off-by: Lorenzo Bianconi <lorenzo@kernel.org>
Introduce e2e selftest for bpf_xdp_flow_offload_lookup kfunc through xdp_flowtable utility. Signed-off-by: Lorenzo Bianconi <lorenzo@kernel.org>
|
Upstream branch: 6f130e4 |
kernel-patches-daemon-bpf
bot
force-pushed
the
series/852307=>bpf-next
branch
from
64f766b
to
18da9b6
Compare
|
At least one diff in series https://patchwork.kernel.org/project/netdevbpf/list/?series=854168 expired. Closing PR. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pull request for series with
subject: netfilter: Add the capability to offload flowtable in XDP layer
version: 1
url: https://patchwork.kernel.org/project/netdevbpf/list/?series=853510