Re: [Patch bpf-next v7 00/13] sockmap: introduce BPF_SK_SKB_VERDICT and support UDP

[Patch bpf-next v7 00/13] sockmap: introduce BPF_SK_SKB_VERDICT and support UDP · Cong Wang <hidden> · 2021-03-28
[Patch bpf-next v7 03/13] net: introduce skb_send_sock() for sock_map · Cong Wang <hidden> · 2021-03-28
[Patch bpf-next v7 02/13] skmsg: introduce a spinlock to protect ingress_msg · Cong Wang <hidden> · 2021-03-28
RE: [Patch bpf-next v7 02/13] skmsg: introduce a spinlock to protect ingress_msg · John Fastabend <john.fastabend@gmail.com> · 2021-03-29
[Patch bpf-next v7 01/13] skmsg: lock ingress_skb when purging · Cong Wang <hidden> · 2021-03-28
[Patch bpf-next v7 07/13] sock_map: introduce BPF_SK_SKB_VERDICT · Cong Wang <hidden> · 2021-03-28
RE: [Patch bpf-next v7 07/13] sock_map: introduce BPF_SK_SKB_VERDICT · John Fastabend <john.fastabend@gmail.com> · 2021-03-29
Re: [Patch bpf-next v7 07/13] sock_map: introduce BPF_SK_SKB_VERDICT · Cong Wang <hidden> · 2021-03-30
[Patch bpf-next v7 05/13] skmsg: use rcu work for destroying psock · Cong Wang <hidden> · 2021-03-28
RE: [Patch bpf-next v7 05/13] skmsg: use rcu work for destroying psock · John Fastabend <john.fastabend@gmail.com> · 2021-03-29
[Patch bpf-next v7 06/13] skmsg: use GFP_KERNEL in sk_psock_create_ingress_msg() · Cong Wang <hidden> · 2021-03-28
RE: [Patch bpf-next v7 06/13] skmsg: use GFP_KERNEL in sk_psock_create_ingress_msg() · John Fastabend <john.fastabend@gmail.com> · 2021-03-29
[Patch bpf-next v7 04/13] skmsg: avoid lock_sock() in sk_psock_backlog() · Cong Wang <hidden> · 2021-03-28
RE: [Patch bpf-next v7 04/13] skmsg: avoid lock_sock() in sk_psock_backlog() · John Fastabend <john.fastabend@gmail.com> · 2021-03-29
[Patch bpf-next v7 10/13] skmsg: extract __tcp_bpf_recvmsg() and tcp_bpf_wait_data() · Cong Wang <hidden> · 2021-03-28
[Patch bpf-next v7 13/13] selftests/bpf: add a test case for udp sockmap · Cong Wang <hidden> · 2021-03-28
[Patch bpf-next v7 09/13] udp: implement ->read_sock() for sockmap · Cong Wang <hidden> · 2021-03-28
RE: [Patch bpf-next v7 09/13] udp: implement ->read_sock() for sockmap · John Fastabend <john.fastabend@gmail.com> · 2021-03-29
Re: [Patch bpf-next v7 09/13] udp: implement ->read_sock() for sockmap · Cong Wang <hidden> · 2021-03-30
Re: [Patch bpf-next v7 09/13] udp: implement ->read_sock() for sockmap · John Fastabend <john.fastabend@gmail.com> · 2021-03-30
Re: [Patch bpf-next v7 09/13] udp: implement ->read_sock() for sockmap · Cong Wang <hidden> · 2021-03-30
Re: [Patch bpf-next v7 09/13] udp: implement ->read_sock() for sockmap · John Fastabend <john.fastabend@gmail.com> · 2021-03-30
[Patch bpf-next v7 11/13] udp: implement udp_bpf_recvmsg() for sockmap · Cong Wang <hidden> · 2021-03-28
[Patch bpf-next v7 08/13] sock: introduce sk->sk_prot->psock_update_sk_prot() · Cong Wang <hidden> · 2021-03-28
[Patch bpf-next v7 12/13] sock_map: update sock type checks for UDP · Cong Wang <hidden> · 2021-03-28
RE: [Patch bpf-next v7 12/13] sock_map: update sock type checks for UDP · John Fastabend <john.fastabend@gmail.com> · 2021-03-29
Re: [Patch bpf-next v7 12/13] sock_map: update sock type checks for UDP · Cong Wang <hidden> · 2021-03-30
Re: [Patch bpf-next v7 00/13] sockmap: introduce BPF_SK_SKB_VERDICT and support UDP · Alexei Starovoitov <hidden> · 2021-03-28
Re: [Patch bpf-next v7 00/13] sockmap: introduce BPF_SK_SKB_VERDICT and support UDP · John Fastabend <john.fastabend@gmail.com> · 2021-03-29
Re: [Patch bpf-next v7 00/13] sockmap: introduce BPF_SK_SKB_VERDICT and support UDP · Cong Wang <hidden> · 2021-03-29

From: John Fastabend <john.fastabend@gmail.com>
Date: 2021-03-29 15:04:17
Also in: bpf

Alexei Starovoitov wrote:

On Sun, Mar 28, 2021 at 01:20:00PM -0700, Cong Wang wrote:

quoted

From: Cong Wang <redacted>

We have thousands of services connected to a daemon on every host
via AF_UNIX dgram sockets, after they are moved into VM, we have to
add a proxy to forward these communications from VM to host, because
rewriting thousands of them is not practical. This proxy uses an
AF_UNIX socket connected to services and a UDP socket to connect to
the host. It is inefficient because data is copied between kernel
space and user space twice, and we can not use splice() which only
supports TCP. Therefore, we want to use sockmap to do the splicing
without going to user-space at all (after the initial setup).

Currently sockmap only fully supports TCP, UDP is partially supported
as it is only allowed to add into sockmap. This patchset, as the second
part of the original large patchset, extends sockmap with:
1) cross-protocol support with BPF_SK_SKB_VERDICT; 2) full UDP support.

On the high level, ->read_sock() is required for each protocol to support
sockmap redirection, and in order to do sock proto update, a new ops
->psock_update_sk_prot() is introduced, which is also required. And the
BPF ->recvmsg() is also needed to replace the original ->recvmsg() to
retrieve skmsg. To make life easier, we have to get rid of lock_sock()
in sk_psock_handle_skb(), otherwise we would have to implement
->sendmsg_locked() on top of ->sendmsg(), which is ugly.

Please see each patch for more details.

To see the big picture, the original patchset is available here:
https://github.com/congwang/linux/tree/sockmap
this patchset is also available:
https://github.com/congwang/linux/tree/sockmap2

---
v7: use work_mutex to protect psock->work
    return err in udp_read_sock()
    add patch 6/13
    clean up test case

The feature looks great to me.
I think the selftest is a bit light in terms of coverage, but it's acceptable.

+1

I'd like to see the final Acks from John/Daniel and Jakub/Lorenz before merging.
Folks,
please prioritize the review of these patches.

This is getting really close I'll take another pass over it today. Thanks

`h`	back out one level
`j`	next message in thread
`k`	previous message in thread
`l`	drill in
`Esc`	close help / fold thread tree
`?`	toggle this help