Received: by 2002:ac0:a5a7:0:0:0:0:0 with SMTP id m36-v6csp7214808imm; Tue, 24 Jul 2018 10:15:12 -0700 (PDT) X-Google-Smtp-Source: AAOMgpc/HV6uyleWaz55nnc2ds1+hmFYX+7N16II6Hy7w44LYhNhwJirgr/TjN1g2vzpMvvTx8ch X-Received: by 2002:a65:6211:: with SMTP id d17-v6mr17545840pgv.450.1532452512349; Tue, 24 Jul 2018 10:15:12 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1532452512; cv=none; d=google.com; s=arc-20160816; b=nYv+l+ZB4pUZ2c9D0dAhu7wqYZwjZElfJM7RU5FY9p69lwb2VEboM4wLKFPjzJaopo KWbPXoR5iZe7emfkSxUTrf0QVJnMD2LFtV+kYMT0EMz0FhdSz/16lkwUoc5CwHqEvDxq nzXhxjDtFdW+cIsYwAu6ujvdMMFqcR1Fu4DtveiBgU+uljZmofyq5wBqYM1psWJkCC7v D+PZJ+dMmqlLiJA86YRi3F/FGYbqjbLPwfMgo0kWMAGITvRAa50Grh7WDDNUK7/RkgVl lbM0MiyfAVeZkb+PexCZwbVHdb1/0SgN45AsEZJXbRrAnz0PCpkzu6ksIHsU3k8g4wno cBfA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :references:in-reply-to:from:subject:cc:to:message-id:date :arc-authentication-results; bh=dN5mgr/MgfqNHm6Ts/5HfiivyHl8qOBJhOq3lOpHOCo=; b=wfu33EyD7XykwwZ0KUCNLpqoOFyLEj/oz5WUn733/pNy0AYRL0JzooU+sWl0Cd5Orc GYbTcMbiOkcEfqvE6sSiRVCkCnWfiebU2zycASGauUhG9CnKMee0014ZYpyT9CpRPp0G 8B0ak+EyDg3/PYA3Tx2ThlzgYNGl0U3QG1rISSUm71pU0EOPQL5hRucDzwrJEkyt5GKN NNaEZW/+oMeHIgsrUSMr5OAmV2Cp4FSQo+wdsHn0eldrRmGq2WqXxBuFIq3exDz6XEw4 OTonwk9dR/642FOf7j3d/nAtCvI631XPuGkfdP2ydEnP4kiMEisgNPsn+8TOEB4xLOWM GwDg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id y78-v6si13031447pfj.159.2018.07.24.10.14.57; Tue, 24 Jul 2018 10:15:12 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S2388526AbeGXSVe (ORCPT + 99 others); Tue, 24 Jul 2018 14:21:34 -0400 Received: from shards.monkeyblade.net ([23.128.96.9]:35054 "EHLO shards.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S2388422AbeGXSVe (ORCPT ); Tue, 24 Jul 2018 14:21:34 -0400 Received: from localhost (c-24-20-22-31.hsd1.or.comcast.net [24.20.22.31]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (Client did not present a certificate) (Authenticated sender: davem-davemloft) by shards.monkeyblade.net (Postfix) with ESMTPSA id 5D00C108B62A7; Tue, 24 Jul 2018 10:14:06 -0700 (PDT) Date: Tue, 24 Jul 2018 10:14:05 -0700 (PDT) Message-Id: <20180724.101405.797730329231867648.davem@davemloft.net> To: dsahern@gmail.com Cc: xiyou.wangcong@gmail.com, netdev@vger.kernel.org, nikita.leshchenko@oracle.com, roopa@cumulusnetworks.com, stephen@networkplumber.org, idosch@mellanox.com, jiri@mellanox.com, saeedm@mellanox.com, alex.aring@gmail.com, linux-wpan@vger.kernel.org, netfilter-devel@vger.kernel.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH RFC/RFT net-next 00/17] net: Convert neighbor tables to per-namespace From: David Miller In-Reply-To: <5021d874-8e99-6eba-f24b-4257c62d4457@gmail.com> References: <28c30574-391c-b4bd-c337-51d3040d901a@gmail.com> <5021d874-8e99-6eba-f24b-4257c62d4457@gmail.com> X-Mailer: Mew version 6.7 on Emacs 26 / Mule 6.0 (HANACHIRUSATO) Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.5.12 (shards.monkeyblade.net [149.20.54.216]); Tue, 24 Jul 2018 10:14:06 -0700 (PDT) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: David Ahern Date: Tue, 24 Jul 2018 09:14:01 -0600 > I get the impression there is no longer a strong resistance against > moving the tables to per namespace, but deciding what is the right > approach to handle backwards compatibility. Correct? Changing the > accounting is inevitably going to be noticeable to some use case(s), but > with sysctl settings it is a simple runtime update once the user knows > to make the change. > > neighbor entries round up to 512 byte allocations, so with the current > gc_thresh defaults (128/512/1024) 512k can be consumed. Using those > limits per namespace seems high which is why I suggested a per-namespace > default of (16/32/64) which amounts to 32k per namespace limit by > default. Open to other suggestions as well. No objection from me about going to per-ns neigh tables. About the defaults, I wonder if we can scale them to the amount of memory given to the ns or something like that? I bet this will better match the intended use of the ns.