[PATCH ipsec-next v3 0/2] xfrm: scalability enhancements for policy database

[PATCH ipsec-next 0/2] xfrm: scalability enhancements for policy database · Christophe Gouault <hidden> · 2014-05-12
[PATCH ipsec-next 1/2] xfrm: hash prefixed policies based on preflen thresholds · Christophe Gouault <hidden> · 2014-05-12
[PATCH ipsec-next 2/2] xfrm: configure policy hash table thresholds by /proc · Christophe Gouault <hidden> · 2014-05-12
Re: [PATCH ipsec-next 2/2] xfrm: configure policy hash table thresholds by /proc · Steffen Klassert <steffen.klassert@secunet.com> · 2014-05-15
Re: [PATCH ipsec-next 2/2] xfrm: configure policy hash table thresholds by /proc · Christophe Gouault <hidden> · 2014-05-19
Re: [PATCH ipsec-next 2/2] xfrm: configure policy hash table thresholds by /proc · Steffen Klassert <steffen.klassert@secunet.com> · 2014-05-22
RE: [PATCH ipsec-next 2/2] xfrm: configure policy hash table thresholds by /proc · David Laight <hidden> · 2014-05-22
Re: [PATCH ipsec-next 2/2] xfrm: configure policy hash table thresholds by /proc · Christophe Gouault <hidden> · 2014-05-23
[PATCH net-next v2 0/2] xfrm: scalability enhancements for policy database · Christophe Gouault <hidden> · 2014-08-01
[PATCH net-next v2 1/2] xfrm: hash prefixed policies based on preflen thresholds · Christophe Gouault <hidden> · 2014-08-01
[PATCH net-next v2 2/2] xfrm: configure policy hash table thresholds by netlink · Christophe Gouault <hidden> · 2014-08-01
[PATCH RFC iproute2 0/2] ipxfrm: configuration of SPD hash · Christophe Gouault <hidden> · 2014-08-01
[PATCH RFC iproute2 1/2] Update headers to net-next · Christophe Gouault <hidden> · 2014-08-01
[PATCH RFC iproute2 2/2] ipxfrm: add command for configuring SPD hash table · Christophe Gouault <hidden> · 2014-08-01
Re: [PATCH net-next v2 2/2] xfrm: configure policy hash table thresholds by netlink · Steffen Klassert <steffen.klassert@secunet.com> · 2014-08-21
Re: [PATCH net-next v2 2/2] xfrm: configure policy hash table thresholds by netlink · Christophe Gouault <hidden> · 2014-08-26
[PATCH ipsec-next v3 0/2] xfrm: scalability enhancements for policy database · Christophe Gouault <hidden> · 2014-08-27
[PATCH ipsec-next v3 1/2] xfrm: hash prefixed policies based on preflen thresholds · Christophe Gouault <hidden> · 2014-08-27
[PATCH ipsec-next v3 2/2] xfrm: configure policy hash table thresholds by netlink · Christophe Gouault <hidden> · 2014-08-27
Re: [PATCH ipsec-next v3 2/2] xfrm: configure policy hash table thresholds by netlink · Steffen Klassert <steffen.klassert@secunet.com> · 2014-08-29
Re: [PATCH ipsec-next v3 2/2] xfrm: configure policy hash table thresholds by netlink · Christophe Gouault <hidden> · 2014-08-29
[ipsec-next v4 0/2] xfrm: scalability enhancements for policy database · Christophe Gouault <hidden> · 2014-08-29
[ipsec-next v4 1/2] xfrm: hash prefixed policies based on preflen thresholds · Christophe Gouault <hidden> · 2014-08-29
[ipsec-next v4 2/2] xfrm: configure policy hash table thresholds by netlink · Christophe Gouault <hidden> · 2014-08-29
Re: [ipsec-next v4 0/2] xfrm: scalability enhancements for policy database · Steffen Klassert <steffen.klassert@secunet.com> · 2014-09-03
Re: [ipsec-next v4 0/2] xfrm: scalability enhancements for policy database · Christophe Gouault <hidden> · 2014-09-03
Re: [PATCH net-next v2 0/2] xfrm: scalability enhancements for policy database · David Miller <davem@davemloft.net> · 2014-08-04

STALE4292d

Revisions (3)

2014-05-12 v1 [diff vs current]
2014-08-01 v2 [diff vs current]
2014-08-27 v3 current

From: Christophe Gouault <hidden>
Date: 2014-08-27 15:48:34

This patchset enables to hash more policies than just non-prefixed
ones: hash policies whose prefix lengths are greater or equal to
configurable thresholds.

These thresholds are configured via netlink message
XFRM_MSG_NEWSPDINFO, attributes XFRMA_SPD_IPV4_HTHRESH and
XFRMA_SPD_IPV6_HTHRESH.

The related iproute2 patch for configuring the thresholds is available
on demand.

Best Regards,
Christophe
----
v2:
- change configuration API from proc to netlink
v3:
- initialize xfrm_policy_hthresh lock
- remove "rebuilding SPD hash table" log
- replace deprecated hlist_add_after by hlist_add_behind
- remove netlink reply to XFRM_MSG_NEWSPDINFO request
---
 include/net/netns/xfrm.h  |  14 +++++++
 include/net/xfrm.h        |   1 +
 include/uapi/linux/xfrm.h |   7 ++++
 net/xfrm/xfrm_hash.h      |  76 +++++++++++++++++++++++++++++++-----
 net/xfrm/xfrm_policy.c    | 140 +++++++++++++++++++++++++++++++++++++++++++++++
 net/xfrm/xfrm_user.c      |  83 +++++++++++++++++++++++++++++++++++++--
 6 files changed, 302 insertions(+), 19 deletions(-)

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help