Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF

From: Toke Høiland-Jørgensen
Date: Tue Jun 27 2023 - 10:26:29 EST

Next message: Rodolfo Giometti: "Re: [PATCH 1/5] pps: add pulse-width calculation in nsec"
Previous message: Moger, Babu: "Re: [PATCH v5 0/8] x86/resctrl: Miscellaneous resctrl features"
In reply to: Daniel Xu: "Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF"
Next in thread: Daniel Xu: "Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> The basic idea is we bump a refcnt on the netfilter defrag module and
> then run the bpf prog after the defrag module runs. This allows bpf
> progs to transparently see full, reassembled packets. The nice thing
> about this is that progs don't have to carry around logic to detect
> fragments.

One high-level comment after glancing through the series: Instead of
allocating a flag specifically for the defrag module, why not support
loading (and holding) arbitrary netfilter modules in the UAPI? If we
need to allocate a new flag every time someone wants to use a netfilter
module along with BPF we'll run out of flags pretty quickly :)

-Toke

Next message: Rodolfo Giometti: "Re: [PATCH 1/5] pps: add pulse-width calculation in nsec"
Previous message: Moger, Babu: "Re: [PATCH v5 0/8] x86/resctrl: Miscellaneous resctrl features"
In reply to: Daniel Xu: "Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF"
Next in thread: Daniel Xu: "Re: [PATCH bpf-next 0/7] Support defragmenting IPv(4|6) packets in BPF"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]