Page MenuHomeFreeBSD
Differential D39225

lagg(4): Tap traffic after protocol processing
ClosedPublic
Actions

Authored by zlei on Mar 23 2023, 9:39 AM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, Oct 16, 1:46 PM
Unknown Object (File)
Wed, Oct 16, 1:46 PM
Unknown Object (File)
Wed, Oct 16, 1:45 PM
Unknown Object (File)
Wed, Oct 16, 1:45 PM
Unknown Object (File)
Wed, Oct 16, 1:44 PM
Unknown Object (File)
Wed, Oct 16, 1:20 PM
Unknown Object (File)
Sep 27 2024, 6:25 AM
Unknown Object (File)
Sep 27 2024, 6:25 AM
View All 74 Files
Subscribers
ae
glebius
imp
melifaro

Details

Reviewers
kp
kib
melifaro
Group Reviewers
network
Commits
rG114126825629: lagg(4): Tap traffic after protocol processing
rGed44ba413c54: lagg(4): Tap traffic after protocol processing
rG5f3d0399e903: lagg(4): Tap traffic after protocol processing
Summary

Different lagg protocols have different means and policies to process incoming traffic. For example, for failover protocol, by default received traffic is only accepted when they are received through the active port. For lacp protocol, LACP control messages are tapped off, also traffic will be dropped if they are received through the port which is not in collecting state and is not joined to the active aggregator. It confuses if user dump and see inbound traffic on lagg(4) interface but they are actually silently dropped and not passed into net stack.

Tap traffic after protocol processing so that user will have consistent view of the inbound traffic, meanwhile mbuf is set with correct receiving interface and bpf(4) will diagnose the right direction of inbound packets.

PR: 270417
MFC after: 1 week

Test Plan

Setup lagg0 and capture on the receive direction

ifconfig cxl0 up
ifconfig cxl1 up
ifconfig lagg0 create laggproto lacp laggport cxl0 laggport cxl1 up
tcpdump -nvi lagg0 --direction in

Verify the output. Should see incoming packets but not those are LACP PDUs when either or both lagg port is/are active.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped

Event Timeline

zlei created this revision.Mar 23 2023, 9:39 AM
Herald added subscribers: glebius, melifaro, ae, imp. · View Herald TranscriptMar 23 2023, 9:39 AM
zlei requested review of this revision.Mar 23 2023, 9:39 AM
melifaro added inline comments.Mar 23 2023, 10:10 AM
sys/net/if_lagg.c
399

I'd suggest either removing the lagg_proto_input() altogether (as it just returns m in the current code) OR
having a default handler function, so do you don't have the branch here.

melifaro accepted this revision as: melifaro.Mar 23 2023, 10:34 AM

Generally it LGTM, I’d suggest introducing a default no-op handler first (so it can be merged to 13) and removing pr_input at all (if there are no other uses) as a separate commit. I’d also wait for the feedback from other folks maro familiar with the code.

This revision is now accepted and ready to land.Mar 23 2023, 10:34 AM
zlei updated this revision to Diff 119337.Mar 23 2023, 2:16 PM
  1. Use default noop input handler.
  2. Inline fast path.
This revision now requires review to proceed.Mar 23 2023, 2:16 PM
zlei marked an inline comment as done.Mar 23 2023, 2:18 PM
zlei added inline comments.Mar 24 2023, 2:54 AM
sys/net/if_lagg.c
2185–2186

While testing lacp setup, tcpdump shows LACP packets on lagg interfaces.

LACP packets should receive or be sent on lagg child interfaces but striped out from lagg interfaces. So bpf filter on lagg interfaces should not able to see them.

I'm not certain about it. Can someone comment on it?

zlei added a comment.Mar 24 2023, 10:11 AM

Split and refactor default input handler into D39251. So it will be easy to MFCed.

zlei updated this revision to Diff 119399.Mar 24 2023, 1:38 PM
zlei edited the summary of this revision. (Show Details)
zlei added a parent revision: D39251: lagg(4): Refactor out some lagg protocol input routines into default one.
zlei added a comment.Mar 24 2023, 2:49 PM

Tap the interface after protocol input.

  1. LACP control messages are tapped off. bpf(4) should not see them.
  2. Set receive interface to lagg, so that bpf(4) on lagg(4) will diagnose the right direction of incoming packets.
zlei added a child revision: D39267: lagg(4): Do not enter net epoch recursively.Mar 25 2023, 3:48 PM
zlei retitled this revision from lagg: Set receive interface earlier to lagg(4): Tap traffic after protocol processing.Mar 31 2023, 7:18 AM
zlei edited the summary of this revision. (Show Details)
zlei edited the test plan for this revision. (Show Details)
zlei edited the test plan for this revision. (Show Details)Mar 31 2023, 7:29 AM
zlei edited the summary of this revision. (Show Details)Mar 31 2023, 7:37 AM

Ping network .

This revision was not accepted when it landed; it landed in state Needs Review.Apr 2 2023, 5:12 PM
Closed by commit rG5f3d0399e903: lagg(4): Tap traffic after protocol processing (authored by zlei). · Explain Why
This revision was automatically updated to reflect the committed changes.
zlei added a commit: rG5f3d0399e903: lagg(4): Tap traffic after protocol processing.
zlei added a commit: rGed44ba413c54: lagg(4): Tap traffic after protocol processing.Apr 10 2023, 4:17 AM
zlei added a commit: rG114126825629: lagg(4): Tap traffic after protocol processing.Apr 10 2023, 5:08 AM

Revision Contents
Changeset List

PathSize
sys/
net/
24 lines

Diff 119399

View Options

sys/net/if_lagg.c

Loading...