From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.129.124]) by mail.toke.dk (Postfix) with ESMTPS id EE6A89B149A for ; Tue, 1 Nov 2022 13:53:02 +0100 (CET) Authentication-Results: mail.toke.dk; dkim=pass (1024-bit key; unprotected) header.d=redhat.com header.i=@redhat.com header.a=rsa-sha256 header.s=mimecast20190719 header.b=Pqo/z48T DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com; s=mimecast20190719; t=1667307181; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: in-reply-to:in-reply-to:references:references; bh=zAuqpjNSQDmHK4eVVdNvYAUpPeJmn3ZvCnWYn2SThKI=; b=Pqo/z48TiwyIhkuEQD6Sdj6bmjEYpvG64dZs/NIkwqI67wVyR0UeCrp5JFZh2aTesXYXGM fsOmXOWbTSayjRCWSkVgbqaT5Ayx/P5YF1SrPYu2EIS22r43XmRVdwrpJAjOEbIyeB2Y7j CEuFJLf3Oi6o2SUvotKnL7Kbu5/ONcQ= Received: from mail-ej1-f72.google.com (mail-ej1-f72.google.com [209.85.218.72]) by relay.mimecast.com with ESMTP with STARTTLS (version=TLSv1.3, cipher=TLS_AES_128_GCM_SHA256) id us-mta-333-_D1knq7vO-KluPE43QAc-A-1; Tue, 01 Nov 2022 08:53:00 -0400 X-MC-Unique: _D1knq7vO-KluPE43QAc-A-1 Received: by mail-ej1-f72.google.com with SMTP id qw17-20020a1709066a1100b0078e25b6a52fso7750149ejc.3 for ; Tue, 01 Nov 2022 05:53:00 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=mime-version:message-id:date:references:in-reply-to:subject:cc:to :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=zAuqpjNSQDmHK4eVVdNvYAUpPeJmn3ZvCnWYn2SThKI=; b=6ioKCQIPw2mwPcWi8xKMRzLg6dFKD4D1hnNwmAuaLyjhGrL+/MFF0XS6j9qVkstlZl KuVWtAvPPyn5YvoNr9VnwkWaUZAmgPUhzyxwD3x7sHDV4UPHyHQV9gow51j8dhgmYIxO EcV9qz5ABZt5CGRP3h12YkRPXPvn022SLrc14hfBkYRIEpxmDPjSOKBkDyjIvxIv/iej U5KVi1zGeCqD6G04z4FBrxqZeh8f0JlTAXK/92eWmp9gXizQvpFrIaO+WD9N0KhduTML CF2lFMegTqx9d+EMgMAKUwlAcxeaxmyI25rD8nYZsB8AU/ROa47hnBbsHqHsHVK7aVhn bNqg== X-Gm-Message-State: ACrzQf237eZ5+Yxos6bHWDKQmJEMwgCJA4ZcQwCYYIqBCuGtboy0wsiN XfTA+7eZg3d1BBbtHl1EZecwZGjKYNan5mB5dKD983FNP2cOfobSyRoj92EcoMTSmfk3VXC1DDE Y8zz56j6ckwxUbE4dBcZE X-Received: by 2002:aa7:da9a:0:b0:461:eea0:514c with SMTP id q26-20020aa7da9a000000b00461eea0514cmr117463eds.296.1667307178201; Tue, 01 Nov 2022 05:52:58 -0700 (PDT) X-Google-Smtp-Source: AMsMyM4kxppzdaXroY6AxpsBc+e2cRbM2r7liAB8w9BfrQkNb5NS0h4fF4vLsR1YZY54iS1hSxYWnA== X-Received: by 2002:aa7:da9a:0:b0:461:eea0:514c with SMTP id q26-20020aa7da9a000000b00461eea0514cmr117458eds.296.1667307176361; Tue, 01 Nov 2022 05:52:56 -0700 (PDT) Received: from alrua-x1.borgediget.toke.dk ([2a0c:4d80:42:443::2]) by smtp.gmail.com with ESMTPSA id l10-20020a1709060cca00b007a1d4944d45sm4208809ejh.142.2022.11.01.05.52.55 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Tue, 01 Nov 2022 05:52:55 -0700 (PDT) Received: by alrua-x1.borgediget.toke.dk (Postfix, from userid 1000) id 53F3C723703; Tue, 1 Nov 2022 13:52:55 +0100 (CET) From: Toke =?utf-8?Q?H=C3=B8iland-J=C3=B8rgensen?= To: Stanislav Fomichev , Martin KaFai Lau In-Reply-To: References: <20221027200019.4106375-1-sdf@google.com> <635bfc1a7c351_256e2082f@john.notmuch> <20221028110457.0ba53d8b@kernel.org> <635c62c12652d_b1ba208d0@john.notmuch> <20221028181431.05173968@kernel.org> <5aeda7f6bb26b20cb74ef21ae9c28ac91d57fae6.camel@siemens.com> <875yg057x1.fsf@toke.dk> <77b115a0-bbba-48eb-89bd-3078b5fb7eeb@linux.dev> X-Clacks-Overhead: GNU Terry Pratchett Date: Tue, 01 Nov 2022 13:52:55 +0100 Message-ID: <87wn8e4z14.fsf@toke.dk> MIME-Version: 1.0 X-Mimecast-Spam-Score: 0 X-Mimecast-Originator: redhat.com Content-Type: text/plain Message-ID-Hash: K3JEDYFXNVLAKICP6SDEQOYCJBYQNUCM X-Message-ID-Hash: K3JEDYFXNVLAKICP6SDEQOYCJBYQNUCM X-MailFrom: toke@redhat.com X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header CC: "Bezdeka, Florian" , "kuba@kernel.org" , "john.fastabend@gmail.com" , "alexandr.lobakin@intel.com" , "anatoly.burakov@intel.com" , "song@kernel.org" , "Deric, Nemanja" , "andrii@kernel.org" , "Kiszka, Jan" , "magnus.karlsson@gmail.com" , "willemb@google.com" , "ast@kernel.org" , "brouer@redhat.com" , "yhs@fb.com" , "kpsingh@kernel.org" , "daniel@iogearbox.net" , "bpf@vger.kernel.org" , "mtahhan@redhat.com" , "xdp-hints@xdp-project.net" , "netdev@vger.kernel.org" , "jolsa@kernel.org" , "haoluo@google.com" X-Mailman-Version: 3.3.5 Precedence: list Subject: [xdp-hints] Re: [RFC bpf-next 0/5] xdp: hints via kfuncs List-Id: XDP hardware hints design discussion Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: Stanislav Fomichev writes: > On Mon, Oct 31, 2022 at 3:57 PM Martin KaFai Lau wrote: >> >> On 10/31/22 10:00 AM, Stanislav Fomichev wrote: >> >> 2. AF_XDP programs won't be able to access the metadata without using a >> >> custom XDP program that calls the kfuncs and puts the data into the >> >> metadata area. We could solve this with some code in libxdp, though; if >> >> this code can be made generic enough (so it just dumps the available >> >> metadata functions from the running kernel at load time), it may be >> >> possible to make it generic enough that it will be forward-compatible >> >> with new versions of the kernel that add new fields, which should >> >> alleviate Florian's concern about keeping things in sync. >> > >> > Good point. I had to convert to a custom program to use the kfuncs :-( >> > But your suggestion sounds good; maybe libxdp can accept some extra >> > info about at which offset the user would like to place the metadata >> > and the library can generate the required bytecode? >> > >> >> 3. It will make it harder to consume the metadata when building SKBs. I >> >> think the CPUMAP and veth use cases are also quite important, and that >> >> we want metadata to be available for building SKBs in this path. Maybe >> >> this can be resolved by having a convenient kfunc for this that can be >> >> used for programs doing such redirects. E.g., you could just call >> >> xdp_copy_metadata_for_skb() before doing the bpf_redirect, and that >> >> would recursively expand into all the kfunc calls needed to extract the >> >> metadata supported by the SKB path? >> > >> > So this xdp_copy_metadata_for_skb will create a metadata layout that >> >> Can the xdp_copy_metadata_for_skb be written as a bpf prog itself? >> Not sure where is the best point to specify this prog though. Somehow during >> bpf_xdp_redirect_map? >> or this prog belongs to the target cpumap and the xdp prog redirecting to this >> cpumap has to write the meta layout in a way that the cpumap is expecting? > > We're probably interested in triggering it from the places where xdp > frames can eventually be converted into skbs? > So for plain 'return XDP_PASS' and things like bpf_redirect/etc? (IOW, > anything that's not XDP_DROP / AF_XDP redirect). > We can probably make it magically work, and can generate > kernel-digestible metadata whenever data == data_meta, but the > question - should we? > (need to make sure we won't regress any existing cases that are not > relying on the metadata) So I was thinking about whether we could have the kernel do this automatically, and concluded that this was probably not feasible in general, which is why I suggested the explicit helper. My reasoning was as follows: For straight XDP_PASS in the driver we don't actually need to do anything today, as the driver itself will build the SKB and read any metadata it needs from the HW descriptor[0]. This leaves packets that are redirected (either to a veth or a cpumap so we build SKBs from them later); here the problem is that we buffer the packets (for performance reasons) so that the redirect doesn't actually happen until after the driver exits the NAPI loop. At which point we don't have access to the HW descriptors anymore, so we can't actually read the metadata. This means that if we want to execute the metadata gathering automatically, we'd have to do it in xdp_do_redirect(). Which means that we'll have to figure out, at that point, whether the XDP frame is likely to be converted to an SKB. This will add at least one branch (and probably more) that will be in-path for every redirected frame. Hence, making it up to the XDP program itself to decide whether it will need the metadata for SKB conversion seems like a better choice, as long as we make it easy for the XDP program to do this. Instead of a helper, this could also simply be a new flag to the bpf_redirect{,_map}() helpers (either opt-in or opt-out depending on the overhead), which would be even simpler? I.e., return bpf_redirect_map(&cpumap, 0, BPF_F_PREPARE_SKB_METADATA); -Toke [0] As an aside, in the future drivers may want to take advantage of the XDP-specific metadata reading also when building SKBs (so it doesn't have to implement it in both BPF and C code). For this, we could expose a new internal helper function that the drivers could call to simply execute the XDP-to-skb metadata helpers the same way the stack/helper does.