Received: by 2002:a05:6358:d09b:b0:dc:cd0c:909e with SMTP id jc27csp10839778rwb;
        Fri, 25 Nov 2022 08:17:45 -0800 (PST)
X-Google-Smtp-Source: AA0mqf6uKNX2D+LMgtZVBjOsspjvb0Q3IuWCWcKEyRlV/pg54RXOANdv6YvX0AI+xc13FsG5T+yS
X-Received: by 2002:a05:6a00:410b:b0:56b:dc84:7783 with SMTP id bu11-20020a056a00410b00b0056bdc847783mr24229817pfb.35.1669393065583;
        Fri, 25 Nov 2022 08:17:45 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1669393065; cv=none;
        d=google.com; s=arc-20160816;
        b=cln3kU68H8/m6PFbnjQv/+adp8FlT2VG8DCrAFgW3Es8XontJAP5l+7KHNHbndfaqw
         gcgj2G6fuuGla0nCz6ycDprMPBnolMQmU4JPDktkoX202eTXaW4h7+fEnLUQFv9XweCW
         D4M+VFb/eIddZQAtExW9byBh5/yc89uVuAd8DDGlftRkNk3J8qD89Dkkf7jqCutg+J1Q
         G37pCk/qn6+XkBNvy2lD0J7dUFQ+uRPeKeOYFC6aACTFKsY+wlZY/fklERaNVab33gVt
         fJTsb04gFcUQF0d9fk9qmME8FQAoxA/cRXvb2e6YpSd/xr7B3H500EUkxmOSQLgabvaL
         X9Mw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:in-reply-to:subject
         :from:references:to:content-language:cc:user-agent:mime-version:date
         :message-id;
        bh=WbhI1ZPJSx9w5CYt/f5AHJpTl75LdN8aMPM63tkYIs4=;
        b=Tj+qW9eDpnSfrkysfFjgskQZUTzokgOo2BZxLbUjTjK+/q+UCJ6b3vHxVkbDRSzeti
         9FZBEP2JwxuNWa+h/b+NtO/8J+D76U4Al3ZoF4dkAjaRR4IThCfQ2XkkrBIT0eTlxFpw
         W1DuVk22VwkXZEujQNn8v6T+G995Tf6WRcU1fGiT9yjiUAtKqZkzNyCfsyXc9xTwO4NR
         5aQ+x7HsP1pajHLNvvFxPWzIdGF8iJoBq5aZZYD/93duttoQnrbiw+/rZ9mMK9fy+BGm
         BfZ4WSsSoqLPcW71OwoHP2vVE0K8NJZymvVhrxev6Iny5hzmD7RctUhNweG5qmcOLppZ
         Zo9g==
ARC-Authentication-Results: i=1; mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id w28-20020a63935c000000b0046ec3853223si5443530pgm.1.2022.11.25.08.17.33;
        Fri, 25 Nov 2022 08:17:45 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S229675AbiKYPxi (ORCPT <rfc822;41i3n8@gmail.com> + 85 others);
        Fri, 25 Nov 2022 10:53:38 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:42732 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S229814AbiKYPx2 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Fri, 25 Nov 2022 10:53:28 -0500
Received: from relay1-d.mail.gandi.net (relay1-d.mail.gandi.net [217.70.183.193])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 6B78C490B1;
        Fri, 25 Nov 2022 07:53:16 -0800 (PST)
Received: (Authenticated sender: i.maximets@ovn.org)
        by mail.gandi.net (Postfix) with ESMTPSA id 3B44324000F;
        Fri, 25 Nov 2022 15:51:13 +0000 (UTC)
Message-ID: <bf975714-7edc-efdd-de84-56194aa6eb60@ovn.org>
Date:   Fri, 25 Nov 2022 16:51:25 +0100
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101
 Thunderbird/102.4.1
Cc:     i.maximets@ovn.org, dev@openvswitch.org,
        linux-kernel@vger.kernel.org, Eric Dumazet <edumazet@google.com>,
        linux-kselftest@vger.kernel.org, Jakub Kicinski <kuba@kernel.org>,
        Paolo Abeni <pabeni@redhat.com>, Shuah Khan <shuah@kernel.org>,
        "David S. Miller" <davem@davemloft.net>
Content-Language: en-US
To:     Adrian Moreno <amorenoz@redhat.com>,
        Aaron Conole <aconole@redhat.com>, netdev@vger.kernel.org
References: <20221122140307.705112-1-aconole@redhat.com>
 <20221122140307.705112-2-aconole@redhat.com>
 <c04242ee-f125-6d95-e263-65470222d3cf@ovn.org>
 <83a0b3e4-1327-c1c4-4eb4-9a25ff533d1d@redhat.com>
From:   Ilya Maximets <i.maximets@ovn.org>
Subject: Re: [ovs-dev] [RFC net-next 1/6] openvswitch: exclude kernel flow key
 from upcalls
In-Reply-To: <83a0b3e4-1327-c1c4-4eb4-9a25ff533d1d@redhat.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,NICE_REPLY_A,
        RCVD_IN_DNSWL_LOW,RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL,SPF_HELO_NONE,
        SPF_PASS autolearn=ham autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

On 11/25/22 16:29, Adrian Moreno wrote:
> 
> 
> On 11/23/22 22:22, Ilya Maximets wrote:
>> On 11/22/22 15:03, Aaron Conole wrote:
>>> When processing upcall commands, two groups of data are available to
>>> userspace for processing: the actual packet data and the kernel
>>> sw flow key data.  The inclusion of the flow key allows the userspace
>>> avoid running through the dissection again.
>>>
>>> However, the userspace can choose to ignore the flow key data, as is
>>> the case in some ovs-vswitchd upcall processing.  For these messages,
>>> having the flow key data merely adds additional data to the upcall
>>> pipeline without any actual gain.  Userspace simply throws the data
>>> away anyway.
>>
>> Hi, Aaron.  While it's true that OVS in userpsace is re-parsing the
>> packet from scratch and using the newly parsed key for the OpenFlow
>> translation, the kernel-porvided key is still used in a few important
>> places.  Mainly for the compatibility checking.  The use is described
>> here in more details:
>>    https://docs.kernel.org/networking/openvswitch.html#flow-key-compatibility
>>
>> We need to compare the key generated in userspace with the key
>> generated by the kernel to know if it's safe to install the new flow
>> to the kernel, i.e. if the kernel and OVS userpsace are parsing the
>> packet in the same way.
>>
> 
> Hi Ilya,
> 
> Do we need to do that for every packet?
> Could we send a bitmask of supported fields to userspace at feature
> negotiation and let OVS slowpath flows that it knows the kernel won't
> be able to handle properly?

It's not that simple, because supported fields in a packet depend
on previous fields in that same packet.  For example, parsing TCP
header is generally supported, but it won't be parsed for IPv6
fragments (even the first one), number of vlan headers will affect
the parsing as we do not parse deeper than 2 vlan headers, etc.
So, I'm afraid we have to have a per-packet information, unless we
can somehow probe all the possible valid combinations of packet
headers.

> 
> 
>> On the other hand, OVS today doesn't check the data, it only checks
>> which fields are present.  So, if we can generate and pass the bitmap
>> of fields present in the key or something similar without sending the
>> full key, that might still save some CPU cycles and memory in the
>> socket buffer while preserving the ability to check for forward and
>> backward compatibility.  What do you think?
>>
>>
>> The rest of the patch set seems useful even without patch #1 though.
>>
>> Nit: This patch #1 should probably be merged with the patch #6 and be
>> at the end of a patch set, so the selftest and the main code are updated
>> at the same time.
>>
>> Best regards, Ilya Maximets.
>> _______________________________________________
>> dev mailing list
>> dev@openvswitch.org
>> https://mail.openvswitch.org/mailman/listinfo/ovs-dev
>>
> 
> Thanks