Received: by 2002:a05:6359:c8b:b0:c7:702f:21d4 with SMTP id go11csp206172rwb; Wed, 28 Sep 2022 01:18:55 -0700 (PDT) X-Google-Smtp-Source: AMsMyM7ChRevALMzeQC7W+jWCQ3kEtu4MoY9QxZlBy42ZFk1x80U19M3ddLCTTU48mgU80Ev6hdc X-Received: by 2002:a17:906:fd86:b0:777:d739:1ede with SMTP id xa6-20020a170906fd8600b00777d7391edemr24731660ejb.576.1664353134724; Wed, 28 Sep 2022 01:18:54 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1664353134; cv=none; d=google.com; s=arc-20160816; b=ckAFVCj8OThtNQHv7of3AFcyzyRyauXy9QxVaunLhszKiClseRZbWl8KNjvdmquWmC MmVXyOU7Ac3VuiGDMnLmhFcKqZDtXy1QbYFj/8pUJcq/q8Z6AA19xkxImle7oFRIdYPI hiKcDzG81uYI6Dt6aQeTd3KRFxhknIEHLepxoA8FiUagzKZtwS1v+MJdohREaWPPbfUR /XFCd0474Ek00inzwHBNm6+4lQwPRI6n1lcwNLuWlTWFOpoHOOZsH6vy0BT7KgIj4w4e 8s5RYleZ/aNUbjNIQeb5S9S1jI1MEv7iVcHIxQ2lr9QRPof3UnAdFu/TC+hVXCSsGeLn 2OIA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:message-id:user-agent :references:in-reply-to:subject:cc:to:from:date:mime-version; bh=vN7VnlS9L1gMz0YueHFtltYZXWMoXCWKtd69ZVpUUwE=; b=iAV7MajqBQI/ZSB0Gqt0ARxiB/ysuIPQ6ZG83f6aZ8DZDx0JxGgRBsSXWc8PNWLL4O qeiVonxYDhsB4ZYbW1PWlykFmFl9p7wu4O8Ch2iMdO/VLTm4Mrf+/E70KiWDK5By6ypr EQ5b9miNmegih3qGGkrM8MQ10uSuHr0TF/IiX8DBONpK0aexZPnDxdaan1s5zZXx9dKN 7ybUct0J2sd4bHI/KLiQ6zu2wc5J68OJiYcxEaqSwQRhloqtaLaACManuijv6euUbE5m bHXTIPF0zZR9wgDyxTRp9Ht0nXcR38KajjMcYQNfNB5wB3eGtvjrkVTros0XArCxJsLm xIcg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id dz8-20020a0564021d4800b00457463dfcddsi4553018edb.70.2022.09.28.01.18.29; Wed, 28 Sep 2022 01:18:54 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S233487AbiI1HcU (ORCPT + 99 others); Wed, 28 Sep 2022 03:32:20 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:44108 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S233501AbiI1HcS (ORCPT ); Wed, 28 Sep 2022 03:32:18 -0400 Received: from mailout-taastrup.gigahost.dk (mailout-taastrup.gigahost.dk [46.183.139.199]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 10DE7F313E; Wed, 28 Sep 2022 00:31:48 -0700 (PDT) Received: from mailout.gigahost.dk (mailout.gigahost.dk [89.186.169.112]) by mailout-taastrup.gigahost.dk (Postfix) with ESMTP id D2A211883981; Wed, 28 Sep 2022 07:29:00 +0000 (UTC) Received: from smtp.gigahost.dk (smtp.gigahost.dk [89.186.169.109]) by mailout.gigahost.dk (Postfix) with ESMTP id C75842500370; Wed, 28 Sep 2022 07:29:00 +0000 (UTC) Received: by smtp.gigahost.dk (Postfix, from userid 1000) id B3B719EC0019; Wed, 28 Sep 2022 07:29:00 +0000 (UTC) X-Screener-Id: 413d8c6ce5bf6eab4824d0abaab02863e8e3f662 MIME-Version: 1.0 Date: Wed, 28 Sep 2022 09:29:00 +0200 From: netdev@kapio-technology.com To: Ido Schimmel Cc: Vladimir Oltean , davem@davemloft.net, kuba@kernel.org, netdev@vger.kernel.org, Florian Fainelli , Andrew Lunn , Vivien Didelot , Eric Dumazet , Paolo Abeni , Kurt Kanzenbach , Hauke Mehrtens , Woojung Huh , UNGLinuxDriver@microchip.com, Sean Wang , Landen Chao , DENG Qingfang , Matthias Brugger , Claudiu Manoil , Alexandre Belloni , Jiri Pirko , Ivan Vecera , Roopa Prabhu , Nikolay Aleksandrov , Shuah Khan , Christian Marangi , Daniel Borkmann , Yuwei Wang , linux-kernel@vger.kernel.org, linux-arm-kernel@lists.infradead.org, linux-mediatek@lists.infradead.org, bridge@lists.linux-foundation.org, linux-kselftest@vger.kernel.org Subject: Re: [PATCH v5 net-next 6/6] selftests: forwarding: add test of MAC-Auth Bypass to locked port tests In-Reply-To: References: <8dfc9b525f084fa5ad55019f4418a35e@kapio-technology.com> <20220908112044.czjh3xkzb4r27ohq@skbuf> <152c0ceadefbd742331c340bec2f50c0@kapio-technology.com> <20220911001346.qno33l47i6nvgiwy@skbuf> <15ee472a68beca4a151118179da5e663@kapio-technology.com> <086704ce7f323cc1b3cca78670b42095@kapio-technology.com> <7a4549d645f9bbbf41e814f087eb07d1@kapio-technology.com> User-Agent: Gigahost Webmail Message-ID: X-Sender: netdev@kapio-technology.com Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_LOW, SPF_HELO_NONE,SPF_NONE autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org On 2022-09-28 08:59, Ido Schimmel wrote: > Sorry for the delay, was away. Good to have you back. :-) > > On Tue, Sep 27, 2022 at 10:33:10AM +0200, netdev@kapio-technology.com > wrote: >> On 2022-09-21 09:15, Ido Schimmel wrote: >> > bridge fdb add `mac_get $h2` dev br0 blackhole >> >> To make this work, I think we need to change the concept, so that >> blackhole >> FDB entries are added to ports connected to the bridge, thus >> bridge fdb add MAC dev $swpX master blackhole >> >> This makes sense as the driver adds them based on the port where the >> SMAC is >> seen, even though the effect of the blackhole FDB entry is switch >> wide. > > Asking user space to associate a blackhole entry with a bridge port > does > not make sense to me because unlike regular entries, blackhole entries > do not forward packets out of this port. Blackhole routes and nexthops > are not associated with a device either. > >> Adding them to the bridge (e.g. f.ex. br0) will not work in the SW >> bridge as >> the entries then are not found. > > Why not found? This works: > > # bridge fdb add 00:11:22:33:44:55 dev br0 self local > $ bridge fdb get 00:11:22:33:44:55 br br0 > 00:11:22:33:44:55 dev br0 master br0 permanent > > With blackhole support I expect: > > # bridge fdb add 00:11:22:33:44:55 dev br0 self local blackhole > $ bridge fdb get 00:11:22:33:44:55 br br0 > 00:11:22:33:44:55 dev br0 master br0 permanent blackhole In my previous replies, I have notified that fdb_find_rcu() does not find the entry added with br0, and thus fdb_add_entry() that does the replace does not replace but adds a new entry. I have been thinking that it is because when added with br0 as dev it is added to dev br0's fdb, which is not the same as 'dev master' fdb... I think bridge fdb get works in a different way, as I know the get functionality gets all fdb entries from all devices and filters them (if I am not mistaken)...