[ovs-dev,v3] dpif-netdev: ct maxconns config persistence

Message ID	1653011221-17553-1-git-send-email-lic121@chinatelecom.cn
State	Changes Requested
Headers	show Return-Path: <ovs-dev-bounces@openvswitch.org> From: lic121 <lic121@chinatelecom.cn> To: dev@openvswitch.org, aconole@redhat.com Date: Fri, 20 May 2022 01:47:01 +0000 Message-Id: <1653011221-17553-1-git-send-email-lic121@chinatelecom.cn> Subject: [ovs-dev] [PATCH v3] dpif-netdev: ct maxconns config persistence Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: ovs-dev-bounces@openvswitch.org Sender: "dev" <ovs-dev-bounces@openvswitch.org>
Series	[ovs-dev,v3] dpif-netdev: ct maxconns config persistence \| expand [ovs-dev,v3] dpif-netdev: ct maxconns config persistence

Message ID

1653011221-17553-1-git-send-email-lic121@chinatelecom.cn

State

Changes Requested

Headers

HMM_SOURCE_IP: 172.18.0.218:54768.2037502795
HMM_ATTACHE_NUM: 0000
HMM_SOURCE_TYPE: SMTP
Received: from clientip-36.111.64.85 (unknown [172.18.0.218])
 by chinatelecom.cn (HERMES) with SMTP id 2A6732800F6;
 Fri, 20 May 2022 09:47:16 +0800 (CST)
X-189-SAVE-TO-SEND: +lic121@chinatelecom.cn
Received: from  ([172.18.0.218])
 by app0025 with ESMTP id b82223cf850742628c348378b4db6e53 for
 dev@openvswitch.org; Fri, 20 May 2022 09:47:18 CST
X-Transaction-ID: b82223cf850742628c348378b4db6e53
X-Real-From: lic121@chinatelecom.cn
X-Receive-IP: 172.18.0.218
X-MEDUSA-Status: 0
From: lic121 <lic121@chinatelecom.cn>
To: dev@openvswitch.org,
	aconole@redhat.com
Date: Fri, 20 May 2022 01:47:01 +0000
Message-Id: <1653011221-17553-1-git-send-email-lic121@chinatelecom.cn>
X-Mailer: git-send-email 1.8.3.1
Subject: [ovs-dev] [PATCH v3] dpif-netdev: ct maxconns config persistence
X-BeenThere: ovs-dev@openvswitch.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <ovs-dev.openvswitch.org>
List-Unsubscribe: <https://mail.openvswitch.org/mailman/options/ovs-dev>,
 <mailto:ovs-dev-request@openvswitch.org?subject=unsubscribe>
List-Archive: <http://mail.openvswitch.org/pipermail/ovs-dev/>
List-Post: <mailto:ovs-dev@openvswitch.org>
List-Help: <mailto:ovs-dev-request@openvswitch.org?subject=help>
List-Subscribe: <https://mail.openvswitch.org/mailman/listinfo/ovs-dev>,
 <mailto:ovs-dev-request@openvswitch.org?subject=subscribe>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: ovs-dev-bounces@openvswitch.org
Sender: "dev" <ovs-dev-bounces@openvswitch.org>

Series

[ovs-dev,v3] dpif-netdev: ct maxconns config persistence | expand

Checks

Context	Check	Description
ovsrobot/apply-robot	success	apply and check: success
ovsrobot/github-robot-_Build_and_Test	success	github build: passed
ovsrobot/intel-ovs-compilation	fail	test: fail

Context

Check

Description

ovsrobot/apply-robot

success

apply and check: success

ovsrobot/github-robot-_Build_and_Test

success

github build: passed

ovsrobot/intel-ovs-compilation

fail

test: fail

Commit Message

Cheng Li May 20, 2022, 1:47 a.m. UTC

Max allowed userspace dp conntrack entries is configurable with
'ovs-appctl dpctl/ct-set-maxconns' command. In real scenarios,
this configuration is expected to survive from host reboot, from
ovs service restart.

Signed-off-by: lic121 <lic121@chinatelecom.cn>
---

Notes:
    v3:
      - add a warning to dpctl_ct_set_maxconns
      - add NEWS entry
    v2:
      - rename "ct-maxconns" to "userspace-ct-maxconns"

 NEWS                    |  5 +++++
 lib/dpctl.c             |  3 +++
 lib/dpctl.man           |  4 +++-
 lib/dpif-netdev.c       | 11 +++++++++++
 tests/system-traffic.at | 10 ++++++++++
 vswitchd/vswitch.xml    |  7 +++++++
 6 files changed, 39 insertions(+), 1 deletion(-)

Comments

Aaron Conole May 25, 2022, 12:02 p.m. UTC | #1

lic121 <lic121@chinatelecom.cn> writes:

> Max allowed userspace dp conntrack entries is configurable with
> 'ovs-appctl dpctl/ct-set-maxconns' command. In real scenarios,
> this configuration is expected to survive from host reboot, from
> ovs service restart.
>
> Signed-off-by: lic121 <lic121@chinatelecom.cn>
> ---

Acked-by: Aaron Conole <aconole@redhat.com>

diff --git a/NEWS b/NEWS
index eece0d0..e75b2af 100644
--- a/NEWS
+++ b/NEWS
@@ -29,6 +29,11 @@  Post-v2.17.0
    - Windows:
      * Conntrack support for TCPv6, UDPv6, ICMPv6, FTPv6.
      * IPv6 Geneve tunnel support.
+   - Userspace datapath:
+     * 'ovs-appctl dpctl/ct-set-maxconns' is deprecated for lack of persistence
+       capabilitiy.
+     * New configuration knob 'other_config:userspace-ct-maxconns' to set
+       maximum number of connection tracker entries for userspace datapath.
 
 
 v2.17.0 - 17 Feb 2022
diff --git a/lib/dpctl.c b/lib/dpctl.c
index 29041fa..73cf14c 100644
--- a/lib/dpctl.c
+++ b/lib/dpctl.c
@@ -1990,6 +1990,9 @@  dpctl_ct_set_maxconns(int argc, const char *argv[],
     struct dpif *dpif;
     int error = opt_dpif_open(argc, argv, dpctl_p, 3, &dpif);
     if (!error) {
+        dpctl_print(dpctl_p,
+                    "Warning: dpctl/ct-set-maxconns is deprecated by "
+                    "other_config:userspace-ct-maxconns");
         uint32_t maxconns;
         if (ovs_scan(argv[argc - 1], "%"SCNu32, &maxconns)) {
             error = ct_dpif_set_maxconns(dpif, maxconns);
diff --git a/lib/dpctl.man b/lib/dpctl.man
index c100d0a..4f08a3f 100644
--- a/lib/dpctl.man
+++ b/lib/dpctl.man
@@ -343,7 +343,9 @@  system due to connection tracking or simply limiting connection
 tracking.  If the number of connections is already over the new maximum
 limit request then the new maximum limit will be enforced when the
 number of connections decreases to that limit, which normally happens
-due to connection expiry.  Only supported for userspace datapath.
+due to connection expiry.  Only supported for userspace datapath. This
+command is deprecated by ovsdb cfg other_config:userspace-ct-maxconns
+because of persistence capability.
 .
 .TP
 \*(DX\fBct\-get\-maxconns\fR [\fIdp\fR]
diff --git a/lib/dpif-netdev.c b/lib/dpif-netdev.c
index 21277b2..bfbe6db 100644
--- a/lib/dpif-netdev.c
+++ b/lib/dpif-netdev.c
@@ -4828,6 +4828,17 @@  dpif_netdev_set_config(struct dpif *dpif, const struct smap *other_config)
         }
     }
 
+    uint32_t ct_maxconns, cur_maxconns;
+    ct_maxconns = smap_get_int(other_config, "userspace-ct-maxconns",
+                               UINT32_MAX);
+    /* Leave runtime value as it is when cfg is removed. */
+    if (ct_maxconns < UINT32_MAX) {
+        conntrack_get_maxconns(dp->conntrack, &cur_maxconns);
+        if (ct_maxconns != cur_maxconns) {
+            conntrack_set_maxconns(dp->conntrack, ct_maxconns);
+        }
+    }
+
     bool smc_enable = smap_get_bool(other_config, "smc-enable", false);
     bool cur_smc;
     atomic_read_relaxed(&dp->smc_enable_db, &cur_smc);
diff --git a/tests/system-traffic.at b/tests/system-traffic.at
index 1d20366..cb1eb16 100644
--- a/tests/system-traffic.at
+++ b/tests/system-traffic.at
@@ -2305,6 +2305,16 @@  AT_CHECK([ovs-appctl dpctl/ct-get-maxconns], [], [dnl
 10
 ])
 
+AT_CHECK([ovs-vsctl set Open_vswitch . other_config:userspace-ct-maxconns=20], [0])
+AT_CHECK([ovs-appctl dpctl/ct-get-maxconns], [], [dnl
+20
+])
+
+AT_CHECK([ovs-vsctl remove Open_vswitch . other_config userspace-ct-maxconns], [0])
+AT_CHECK([ovs-appctl dpctl/ct-get-maxconns], [], [dnl
+20
+])
+
 OVS_TRAFFIC_VSWITCHD_STOP
 AT_CLEANUP
 
diff --git a/vswitchd/vswitch.xml b/vswitchd/vswitch.xml
index cc1dd77..f2324be 100644
--- a/vswitchd/vswitch.xml
+++ b/vswitchd/vswitch.xml
@@ -183,6 +183,13 @@ 
         </p>
       </column>
 
+      <column name="other_config" key="userspace-ct-maxconns"
+              type='{"type": "integer", "minInteger": 0}'>
+        The maximum number of connection tracker entries allowed in the
+        userspace datapath.  This deprecates "ovs-appctl dpctl/ct-set-maxconns"
+        command.
+      </column>
+
       <column name="other_config" key="max-idle"
               type='{"type": "integer", "minInteger": 500}'>
         <p>

[ovs-dev,v3] dpif-netdev: ct maxconns config persistence

Checks

Commit Message

Comments

Patch