From: Jakub Kicinski <kuba@kernel.org>
To: Alexandra Winter <wintera@linux.ibm.com>,
Nikolay Aleksandrov <razor@blackwall.org>
Cc: linux-s390@vger.kernel.org, netdev@vger.kernel.org,
Heiko Carstens <hca@linux.ibm.com>,
bridge@lists.linux-foundation.org,
Ido Schimmel <idosch@nvidia.com>,
Jay Vosburgh <j.vosburgh@gmail.com>,
Hangbin Liu <liuhangbin@gmail.com>,
Roopa Prabhu <roopa@nvidia.com>, Paolo Abeni <pabeni@redhat.com>,
"David S. Miller" <davem@davemloft.net>,
Jiri Pirko <jiri@nvidia.com>
Subject: Re: [Bridge] [PATCH net-next v2] veth: Support bonding events
Date: Wed, 30 Mar 2022 08:51:54 -0700 [thread overview]
Message-ID: <20220330085154.34440715@kernel.org> (raw)
In-Reply-To: <c1ec0612-063b-dbfa-e10a-986786178c93@linux.ibm.com>
On Wed, 30 Mar 2022 13:14:12 +0200 Alexandra Winter wrote:
> >> This patch in no way addresses (2). But then, again, if we put
> >> a macvlan on top of a bridge master it will shotgun its GARPS all
> >> the same. So it's not like veth would be special in that regard.
> >>
> >> Nik, what am I missing?
> >
> > If we're talking about macvlan -> bridge -> bond then the bond flap's
> > notify peers shouldn't reach the macvlan.
Hm, right. I'm missing a step in my understanding. As you say bridge
does not seem to be re-broadcasting the event to its master. So how
does Alexandra catch this kind of an event? :S
case NETDEV_NOTIFY_PEERS:
/* propagate to peer of a bridge attached veth */
if (netif_is_bridge_master(dev)) {
IIUC bond will notify with dev == bond netdev. Where is the event with
dev == br generated?
> > Generally broadcast traffic
> > is quite expensive for the bridge, I have patches that improve on the
> > technical side (consider ports only for the same bcast domain), but you also
> > wouldn't want unnecessary bcast packets being sent around. :)
> > There are setups with tens of bond devices and propagating that to all would be
> > very expensive, but most of all unnecessary. It would also hurt setups with
> > a lot of vlan devices on the bridge. There are setups with hundreds of vlans
> > and hundreds of macvlans on top, propagating it up would send it to all of
> > them and that wouldn't scale at all, these mostly have IP addresses too.
Ack.
> > Perhaps we can enable propagation on a per-port or per-bridge basis, then we
> > can avoid these walks. That is, make it opt-in.
Maybe opt-out? But assuming the event is only generated on
active/backup switch over - when would it be okay to ignore
the notification?
> >>> It also seems difficult to avoid re-bouncing the notifier.
> >>
> >> syzbot will make short work of this patch, I think the potential
> >> for infinite loops has to be addressed somehow. IIUC this is the
> >> first instance of forwarding those notifiers to a peer rather
> >> than within a upper <> lower device hierarchy which is a DAG.
>
> My concern was about the Hangbin's alternative proposal to notify all
> bridge ports. I hope in my porposal I was able to avoid infinite loops.
Possibly I'm confused as to where the notification for bridge master
gets sent..
WARNING: multiple messages have this Message-ID (diff)
From: Jakub Kicinski <kuba@kernel.org>
To: Alexandra Winter <wintera@linux.ibm.com>,
Nikolay Aleksandrov <razor@blackwall.org>
Cc: "David S. Miller" <davem@davemloft.net>,
Paolo Abeni <pabeni@redhat.com>,
Hangbin Liu <liuhangbin@gmail.com>,
netdev@vger.kernel.org, linux-s390@vger.kernel.org,
Heiko Carstens <hca@linux.ibm.com>,
Roopa Prabhu <roopa@nvidia.com>,
bridge@lists.linux-foundation.org,
Ido Schimmel <idosch@nvidia.com>, Jiri Pirko <jiri@nvidia.com>,
Jay Vosburgh <j.vosburgh@gmail.com>
Subject: Re: [PATCH net-next v2] veth: Support bonding events
Date: Wed, 30 Mar 2022 08:51:54 -0700 [thread overview]
Message-ID: <20220330085154.34440715@kernel.org> (raw)
In-Reply-To: <c1ec0612-063b-dbfa-e10a-986786178c93@linux.ibm.com>
On Wed, 30 Mar 2022 13:14:12 +0200 Alexandra Winter wrote:
> >> This patch in no way addresses (2). But then, again, if we put
> >> a macvlan on top of a bridge master it will shotgun its GARPS all
> >> the same. So it's not like veth would be special in that regard.
> >>
> >> Nik, what am I missing?
> >
> > If we're talking about macvlan -> bridge -> bond then the bond flap's
> > notify peers shouldn't reach the macvlan.
Hm, right. I'm missing a step in my understanding. As you say bridge
does not seem to be re-broadcasting the event to its master. So how
does Alexandra catch this kind of an event? :S
case NETDEV_NOTIFY_PEERS:
/* propagate to peer of a bridge attached veth */
if (netif_is_bridge_master(dev)) {
IIUC bond will notify with dev == bond netdev. Where is the event with
dev == br generated?
> > Generally broadcast traffic
> > is quite expensive for the bridge, I have patches that improve on the
> > technical side (consider ports only for the same bcast domain), but you also
> > wouldn't want unnecessary bcast packets being sent around. :)
> > There are setups with tens of bond devices and propagating that to all would be
> > very expensive, but most of all unnecessary. It would also hurt setups with
> > a lot of vlan devices on the bridge. There are setups with hundreds of vlans
> > and hundreds of macvlans on top, propagating it up would send it to all of
> > them and that wouldn't scale at all, these mostly have IP addresses too.
Ack.
> > Perhaps we can enable propagation on a per-port or per-bridge basis, then we
> > can avoid these walks. That is, make it opt-in.
Maybe opt-out? But assuming the event is only generated on
active/backup switch over - when would it be okay to ignore
the notification?
> >>> It also seems difficult to avoid re-bouncing the notifier.
> >>
> >> syzbot will make short work of this patch, I think the potential
> >> for infinite loops has to be addressed somehow. IIUC this is the
> >> first instance of forwarding those notifiers to a peer rather
> >> than within a upper <> lower device hierarchy which is a DAG.
>
> My concern was about the Hangbin's alternative proposal to notify all
> bridge ports. I hope in my porposal I was able to avoid infinite loops.
Possibly I'm confused as to where the notification for bridge master
gets sent..
next prev parent reply other threads:[~2022-03-30 15:51 UTC|newest]
Thread overview: 23+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-03-29 11:40 [PATCH net-next v2] veth: Support bonding events Alexandra Winter
2022-03-30 0:54 ` [Bridge] " Jakub Kicinski
2022-03-30 0:54 ` Jakub Kicinski
2022-03-30 10:23 ` [Bridge] " Nikolay Aleksandrov
2022-03-30 10:23 ` Nikolay Aleksandrov
2022-03-30 11:14 ` [Bridge] " Alexandra Winter
2022-03-30 11:14 ` Alexandra Winter
2022-03-30 11:25 ` [Bridge] " Nikolay Aleksandrov
2022-03-30 11:25 ` Nikolay Aleksandrov
2022-03-30 15:51 ` Jakub Kicinski [this message]
2022-03-30 15:51 ` Jakub Kicinski
2022-03-30 16:16 ` [Bridge] " Nikolay Aleksandrov
2022-03-30 16:16 ` Nikolay Aleksandrov
2022-03-30 17:12 ` [Bridge] " Jakub Kicinski
2022-03-30 17:12 ` Jakub Kicinski
2022-03-30 19:15 ` [Bridge] " Jay Vosburgh
2022-03-30 19:15 ` Jay Vosburgh
2022-03-31 9:59 ` [Bridge] " Alexandra Winter
2022-03-31 9:59 ` Alexandra Winter
2022-03-31 10:33 ` [Bridge] " Nikolay Aleksandrov
2022-03-31 10:33 ` Nikolay Aleksandrov
2022-03-31 12:07 ` [Bridge] " Alexandra Winter
2022-03-31 12:07 ` Alexandra Winter
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20220330085154.34440715@kernel.org \
--to=kuba@kernel.org \
--cc=bridge@lists.linux-foundation.org \
--cc=davem@davemloft.net \
--cc=hca@linux.ibm.com \
--cc=idosch@nvidia.com \
--cc=j.vosburgh@gmail.com \
--cc=jiri@nvidia.com \
--cc=linux-s390@vger.kernel.org \
--cc=liuhangbin@gmail.com \
--cc=netdev@vger.kernel.org \
--cc=pabeni@redhat.com \
--cc=razor@blackwall.org \
--cc=roopa@nvidia.com \
--cc=wintera@linux.ibm.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.