From mboxrd@z Thu Jan 1 00:00:00 1970 From: David Miller Subject: Re: [PATCH 00/12 net-next,v2] add flow_rule infrastructure Date: Mon, 19 Nov 2018 12:12:29 -0800 (PST) Message-ID: <20181119.121229.2109900411029672811.davem@davemloft.net> References: <20181119001519.12124-1-pablo@netfilter.org> Mime-Version: 1.0 Content-Type: Text/Plain; charset=us-ascii Content-Transfer-Encoding: 7bit Cc: netdev@vger.kernel.org, thomas.lendacky@amd.com, f.fainelli@gmail.com, ariel.elior@cavium.com, michael.chan@broadcom.com, santosh@chelsio.com, madalin.bucur@nxp.com, yisen.zhuang@huawei.com, salil.mehta@huawei.com, jeffrey.t.kirsher@intel.com, tariqt@mellanox.com, saeedm@mellanox.com, jiri@mellanox.com, idosch@mellanox.com, jakub.kicinski@netronome.com, peppe.cavallaro@st.com, grygorii.strashko@ti.com, andrew@lunn.ch, vivien.didelot@savoirfairelinux.com, alexandre.torgue@st.com, joabreu@synopsys.com, linux-net-drivers@solarflare.com, ganeshgr@chelsio.com, ogerlitz@mellanox.com To: pablo@netfilter.org Return-path: Received: from shards.monkeyblade.net ([23.128.96.9]:49546 "EHLO shards.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1730687AbeKTGh5 (ORCPT ); Tue, 20 Nov 2018 01:37:57 -0500 In-Reply-To: <20181119001519.12124-1-pablo@netfilter.org> Sender: netdev-owner@vger.kernel.org List-ID: From: Pablo Neira Ayuso Date: Mon, 19 Nov 2018 01:15:07 +0100 > This patchset introduces a kernel intermediate representation (IR) to > express ACL hardware offloads, as already described in previous RFC and > v1 patchset [1] [2]. The idea is to normalize the frontend U/APIs to use > the flow dissectors and the flow actions so drivers can reuse the > existing TC offload driver codebase - that has been converted to use the > flow_rule infrastructure. I'm go to bring up the elephant in the room. I think the real motivation here is to offload netfilter rules to HW, and you should be completely honest about that.