From: "Michael S. Tsirkin" <mst@redhat.com>
To: Jiri Pirko <jiri@resnulli.us>
Cc: Willem de Bruijn <willemdebruijn.kernel@gmail.com>,
vmireyno@marvell.com, netdev@vger.kernel.org,
virtualization@lists.linux-foundation.org, edumazet@google.com,
kuba@kernel.org, pabeni@redhat.com, davem@davemloft.net
Subject: Re: [patch net-next v2] net: virtio_net: implement exact header length guest feature
Date: Tue, 21 Feb 2023 12:39:13 -0500 [thread overview]
Message-ID: <20230221123857-mutt-send-email-mst@kernel.org> (raw)
In-Reply-To: <Y/TltJnD4k5hB6Z1@nanopsycho>
On Tue, Feb 21, 2023 at 04:39:32PM +0100, Jiri Pirko wrote:
> Tue, Feb 21, 2023 at 04:11:53PM CET, willemdebruijn.kernel@gmail.com wrote:
> >Jiri Pirko wrote:
> >> From: Jiri Pirko <jiri@nvidia.com>
> >>
> >> Virtio spec introduced a feature VIRTIO_NET_F_GUEST_HDRLEN which when
> >> set implicates that the driver provides the exact size of the header.
> >>
> >> Quoting the original virtio spec:
> >> "hdr_len is a hint to the device as to how much of the header needs to
> >> be kept to copy into each packet"
> >>
> >> "a hint" might not be clear for the reader what does it mean, if it is
> >> "maybe like that" of "exactly like that". This feature just makes it
> >> crystal clear and let the device count on the hdr_len being filled up
> >> by the exact length of header.
> >>
> >> Also note the spec already has following note about hdr_len:
> >> "Due to various bugs in implementations, this field is not useful
> >> as a guarantee of the transport header size."
> >>
> >> Without this feature the device needs to parse the header in core
> >> data path handling. Accurate information helps the device to eliminate
> >> such header parsing and directly use the hardware accelerators
> >> for GSO operation.
> >>
> >> virtio_net_hdr_from_skb() fills up hdr_len to skb_headlen(skb).
> >> The driver already complies to fill the correct value. Introduce the
> >> feature and advertise it.
> >>
> >> Note that virtio spec also includes following note for device
> >> implementation:
> >> "Caution should be taken by the implementation so as to prevent
> >> a malicious driver from attacking the device by setting
> >> an incorrect hdr_len."
> >>
> >> There is a plan to support this feature in our emulated device.
> >> A device of SolidRun offers this feature bit. They claim this feature
> >> will save the device a few cycles for every GSO packet.
> >>
> >> Signed-off-by: Jiri Pirko <jiri@nvidia.com>
> >> ---
> >> v1->v2:
> >> - extended patch description
> >
> >Is the expectation that in-kernel devices support this feature, and
> >if so how would it affect them? If I read the spec correctly, devices
>
> Well, the tap driver actually trusts the hdr_len to be of correct header
> size nowadays.
>
>
> >still need to be careful against malicious drivers, so cannot assume
> >much beyond what they do today (i.e., a hint).
>
> Malicious how? There is upper limit of size in tap which is checked.
> I assume that for hw implementation, that would be the same.
>
> But anyway, this discussion would be rather part of the spec/device
> patch, don't you think?
>
>
> >
> >Might be good to point to the definition commit:
> >https://github.com/oasis-tcs/virtio-spec/commit/4f1981a1ff46b7aeb801c4c524ff76e93d9ce022
>
> There were couple of fixes to the spec since then, that's why I didn't
> include it. It is trivial to look it up in the spec.
This might be a good link:
https://docs.oasis-open.org/virtio/virtio/v1.2/cs01/virtio-v1.2-cs01.html#x1-230006x3
_______________________________________________
Virtualization mailing list
Virtualization@lists.linux-foundation.org
https://lists.linuxfoundation.org/mailman/listinfo/virtualization
WARNING: multiple messages have this Message-ID (diff)
From: "Michael S. Tsirkin" <mst@redhat.com>
To: Jiri Pirko <jiri@resnulli.us>
Cc: Willem de Bruijn <willemdebruijn.kernel@gmail.com>,
netdev@vger.kernel.org, davem@davemloft.net, kuba@kernel.org,
pabeni@redhat.com, edumazet@google.com, jasowang@redhat.com,
virtualization@lists.linux-foundation.org,
alvaro.karsz@solid-run.com, vmireyno@marvell.com,
parav@nvidia.com
Subject: Re: [patch net-next v2] net: virtio_net: implement exact header length guest feature
Date: Tue, 21 Feb 2023 12:39:13 -0500 [thread overview]
Message-ID: <20230221123857-mutt-send-email-mst@kernel.org> (raw)
In-Reply-To: <Y/TltJnD4k5hB6Z1@nanopsycho>
On Tue, Feb 21, 2023 at 04:39:32PM +0100, Jiri Pirko wrote:
> Tue, Feb 21, 2023 at 04:11:53PM CET, willemdebruijn.kernel@gmail.com wrote:
> >Jiri Pirko wrote:
> >> From: Jiri Pirko <jiri@nvidia.com>
> >>
> >> Virtio spec introduced a feature VIRTIO_NET_F_GUEST_HDRLEN which when
> >> set implicates that the driver provides the exact size of the header.
> >>
> >> Quoting the original virtio spec:
> >> "hdr_len is a hint to the device as to how much of the header needs to
> >> be kept to copy into each packet"
> >>
> >> "a hint" might not be clear for the reader what does it mean, if it is
> >> "maybe like that" of "exactly like that". This feature just makes it
> >> crystal clear and let the device count on the hdr_len being filled up
> >> by the exact length of header.
> >>
> >> Also note the spec already has following note about hdr_len:
> >> "Due to various bugs in implementations, this field is not useful
> >> as a guarantee of the transport header size."
> >>
> >> Without this feature the device needs to parse the header in core
> >> data path handling. Accurate information helps the device to eliminate
> >> such header parsing and directly use the hardware accelerators
> >> for GSO operation.
> >>
> >> virtio_net_hdr_from_skb() fills up hdr_len to skb_headlen(skb).
> >> The driver already complies to fill the correct value. Introduce the
> >> feature and advertise it.
> >>
> >> Note that virtio spec also includes following note for device
> >> implementation:
> >> "Caution should be taken by the implementation so as to prevent
> >> a malicious driver from attacking the device by setting
> >> an incorrect hdr_len."
> >>
> >> There is a plan to support this feature in our emulated device.
> >> A device of SolidRun offers this feature bit. They claim this feature
> >> will save the device a few cycles for every GSO packet.
> >>
> >> Signed-off-by: Jiri Pirko <jiri@nvidia.com>
> >> ---
> >> v1->v2:
> >> - extended patch description
> >
> >Is the expectation that in-kernel devices support this feature, and
> >if so how would it affect them? If I read the spec correctly, devices
>
> Well, the tap driver actually trusts the hdr_len to be of correct header
> size nowadays.
>
>
> >still need to be careful against malicious drivers, so cannot assume
> >much beyond what they do today (i.e., a hint).
>
> Malicious how? There is upper limit of size in tap which is checked.
> I assume that for hw implementation, that would be the same.
>
> But anyway, this discussion would be rather part of the spec/device
> patch, don't you think?
>
>
> >
> >Might be good to point to the definition commit:
> >https://github.com/oasis-tcs/virtio-spec/commit/4f1981a1ff46b7aeb801c4c524ff76e93d9ce022
>
> There were couple of fixes to the spec since then, that's why I didn't
> include it. It is trivial to look it up in the spec.
This might be a good link:
https://docs.oasis-open.org/virtio/virtio/v1.2/cs01/virtio-v1.2-cs01.html#x1-230006x3
next prev parent reply other threads:[~2023-02-21 17:39 UTC|newest]
Thread overview: 26+ messages / expand[flat|nested] mbox.gz Atom feed top
2023-02-21 14:47 [patch net-next v2] net: virtio_net: implement exact header length guest feature Jiri Pirko
2023-02-21 14:47 ` Jiri Pirko
2023-02-21 15:11 ` Willem de Bruijn
2023-02-21 15:11 ` Willem de Bruijn
2023-02-21 15:39 ` Jiri Pirko
2023-02-21 15:39 ` Jiri Pirko
2023-02-21 16:12 ` Willem de Bruijn
2023-02-21 16:12 ` Willem de Bruijn
2023-02-22 7:58 ` Jiri Pirko
2023-02-22 7:58 ` Jiri Pirko
2023-02-22 15:14 ` Willem de Bruijn
2023-02-22 15:14 ` Willem de Bruijn
2023-02-22 16:11 ` Michael S. Tsirkin
2023-02-22 16:11 ` Michael S. Tsirkin
2023-02-22 17:22 ` Willem de Bruijn
2023-02-22 17:22 ` Willem de Bruijn
2023-02-21 17:39 ` Michael S. Tsirkin [this message]
2023-02-21 17:39 ` Michael S. Tsirkin
2023-02-21 15:20 ` Parav Pandit via Virtualization
2023-02-21 15:20 ` Parav Pandit
2023-02-21 15:26 ` Alvaro Karsz
2023-02-21 15:26 ` Alvaro Karsz
2023-02-21 17:21 ` Michael S. Tsirkin
2023-02-21 17:21 ` Michael S. Tsirkin
2023-02-22 7:59 ` Jiri Pirko
2023-02-22 7:59 ` Jiri Pirko
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20230221123857-mutt-send-email-mst@kernel.org \
--to=mst@redhat.com \
--cc=davem@davemloft.net \
--cc=edumazet@google.com \
--cc=jiri@resnulli.us \
--cc=kuba@kernel.org \
--cc=netdev@vger.kernel.org \
--cc=pabeni@redhat.com \
--cc=virtualization@lists.linux-foundation.org \
--cc=vmireyno@marvell.com \
--cc=willemdebruijn.kernel@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.