[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Qemu-devel] [PATCH v12 09/10] netfilter: add a netbuffer filter
|
From: |
Markus Armbruster |
|
Subject: |
Re: [Qemu-devel] [PATCH v12 09/10] netfilter: add a netbuffer filter |
|
Date: |
Wed, 30 Sep 2015 19:11:46 +0200 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux) |
Yang Hongyang <address@hidden> writes:
> This filter is to buffer/release packets, this feature can be used
> when using MicroCheckpointing, or other Remus like VM FT solutions, you
> can also use it to simulate the network delay.
Suggest to polish this slightly:
This filter is to buffer/release packets. Can be used
when using MicroCheckpointing or other Remus-like VM FT solutions.
You can also use it to simulate network delay.
However, I doubt it's useful for simulating a network delay, because it
doesn't really delay individual packets, it *batches* them.
>
> Usage:
> -netdev tap,id=bn0
> -object filter-buffer,id=f0,netdev=bn0,queue=rx,interval=1000
>
> NOTE:
> Interval is in microseconds, it can't be omitted currently, and can't be 0.
>
> Signed-off-by: Yang Hongyang <address@hidden>
> Signed-off-by: Jason Wang <address@hidden>
> ---
> net/Makefile.objs | 1 +
> net/filter-buffer.c | 187
> ++++++++++++++++++++++++++++++++++++++++++++++++++++
> qemu-options.hx | 14 ++++
> vl.c | 6 +-
> 4 files changed, 207 insertions(+), 1 deletion(-)
> create mode 100644 net/filter-buffer.c
>
> diff --git a/net/Makefile.objs b/net/Makefile.objs
> index 914aec0..5fa2f97 100644
> --- a/net/Makefile.objs
> +++ b/net/Makefile.objs
> @@ -14,3 +14,4 @@ common-obj-$(CONFIG_SLIRP) += slirp.o
> common-obj-$(CONFIG_VDE) += vde.o
> common-obj-$(CONFIG_NETMAP) += netmap.o
> common-obj-y += filter.o
> +common-obj-y += filter-buffer.o
> diff --git a/net/filter-buffer.c b/net/filter-buffer.c
> new file mode 100644
> index 0000000..776827e
> --- /dev/null
> +++ b/net/filter-buffer.c
> @@ -0,0 +1,187 @@
> +/*
> + * Copyright (c) 2015 FUJITSU LIMITED
> + * Author: Yang Hongyang <address@hidden>
> + *
> + * This work is licensed under the terms of the GNU GPL, version 2 or
> + * later. See the COPYING file in the top-level directory.
> + */
> +
> +#include "net/filter.h"
> +#include "net/queue.h"
> +#include "qemu-common.h"
> +#include "qemu/timer.h"
> +#include "qemu/iov.h"
> +#include "qapi/qmp/qerror.h"
> +#include "qapi-visit.h"
> +#include "qom/object.h"
> +
> +#define TYPE_FILTER_BUFFER "filter-buffer"
> +
> +#define FILTER_BUFFER(obj) \
> + OBJECT_CHECK(FilterBufferState, (obj), TYPE_FILTER_BUFFER)
> +
> +struct FilterBufferState {
> + NetFilterState parent_obj;
> +
> + NetQueue *incoming_queue;
> + uint32_t interval;
> + QEMUTimer release_timer;
> +};
> +typedef struct FilterBufferState FilterBufferState;
No separate typedef, please.
> +
> +static void filter_buffer_flush(NetFilterState *nf)
> +{
> + FilterBufferState *s = FILTER_BUFFER(nf);
> +
> + if (!qemu_net_queue_flush(s->incoming_queue)) {
> + /* Unable to empty the queue, purge remaining packets */
> + qemu_net_queue_purge(s->incoming_queue, nf->netdev);
> + }
> +}
> +
> +static void filter_buffer_release_timer(void *opaque)
> +{
> + NetFilterState *nf = opaque;
> +
> + FilterBufferState *s = FILTER_BUFFER(nf);
Style nit: blank line between declarations and statements, please.
> + /*
> + * TODO: We should queue the packet if the receiver or next filter
> + * could not receive packets. But currently there's no way for the
> + * next filter or recivier to notify us that it can receive more packet.
more packets
> + * This could be done in the future.
> + */
Perhaps:
/*
* Note: filter_buffer_flush() drops packets that can't be sent
* TODO: We should leave them queued. But currently there's no way
* for the next filter or recivier to notify us that it can receive
* more packets.
*/
> + filter_buffer_flush(nf);
> + /* Timer rearmed to fire again in s->interval microseconds. */
> + timer_mod(&s->release_timer,
> + qemu_clock_get_us(QEMU_CLOCK_VIRTUAL) + s->interval);
> +}
> +
> +/* filter APIs */
> +static ssize_t filter_buffer_receive_iov(NetFilterState *nf,
> + NetClientState *sender,
> + unsigned flags,
> + const struct iovec *iov,
> + int iovcnt,
> + NetPacketSent *sent_cb)
> +{
> + FilterBufferState *s = FILTER_BUFFER(nf);
> +
> + /*
> + * We return size when buffer a packet, the sender will take it as
> + * a already sent packet, so sent_cb should not be called later.
> + *
> + * FIXME: Even if guest can't receive packet for some reasons. Filter
> + * can still accept packet until its internal queue is full.
Even if the guest can't receive packets for some reasons, the filter can
still accept packets until its internal queue is full.
> + * For example:
> + * For some reason, receiver could not receive more packets
> + * (.can_receive() returns zero). Without a filter, at most one packet
> + * will be queued in incoming queue and sender's poll will be disabled
> + * unit its sent_cb() was called. With a filter, it will keep receive
will keep receiving
> + * the packets without caring about the receiver. This is suboptimal.
> + * May need more thoughts (e.g keeping sent_cb).
> + */
> + qemu_net_queue_append_iov(s->incoming_queue, sender, flags,
> + iov, iovcnt, NULL);
> + return iov_size(iov, iovcnt);
> +}
> +
> +static void filter_buffer_cleanup(NetFilterState *nf)
> +{
> + FilterBufferState *s = FILTER_BUFFER(nf);
> +
> + if (s->interval) {
> + timer_del(&s->release_timer);
> + }
> +
> + /* flush packets */
> + if (s->incoming_queue) {
> + filter_buffer_flush(nf);
> + g_free(s->incoming_queue);
> + }
> +}
> +
> +static void filter_buffer_setup(NetFilterState *nf, Error **errp)
> +{
> + FilterBufferState *s = FILTER_BUFFER(nf);
> +
> + /*
> + * We may want to accept zero interval when VM FT solutions like MC
> + * or COLO use this filter to release packets on demand.
> + */
> + if (!s->interval) {
> + error_setg(errp, QERR_INVALID_PARAMETER_VALUE, "interval",
> + "a non-zero interval");
> + return;
> + }
> +
> + s->incoming_queue = qemu_new_net_queue(qemu_netfilter_pass_to_next, nf);
> + if (s->interval) {
> + timer_init_us(&s->release_timer, QEMU_CLOCK_VIRTUAL,
> + filter_buffer_release_timer, nf);
> + /* Timer armed to fire in s->interval microseconds. */
> + timer_mod(&s->release_timer,
> + qemu_clock_get_us(QEMU_CLOCK_VIRTUAL) + s->interval);
> + }
> +}
> +
> +static void filter_buffer_class_init(ObjectClass *oc, void *data)
> +{
> + NetFilterClass *nfc = NETFILTER_CLASS(oc);
> +
> + nfc->setup = filter_buffer_setup;
> + nfc->cleanup = filter_buffer_cleanup;
> + nfc->receive_iov = filter_buffer_receive_iov;
> +}
> +
> +static void filter_buffer_get_interval(Object *obj, Visitor *v, void *opaque,
> + const char *name, Error **errp)
> +{
> + FilterBufferState *s = FILTER_BUFFER(obj);
> + uint32_t value = s->interval;
> +
> + visit_type_uint32(v, &value, name, errp);
> +}
> +
> +static void filter_buffer_set_interval(Object *obj, Visitor *v, void *opaque,
> + const char *name, Error **errp)
> +{
> + FilterBufferState *s = FILTER_BUFFER(obj);
> + Error *local_err = NULL;
> + uint32_t value;
> +
> + visit_type_uint32(v, &value, name, &local_err);
> + if (local_err) {
> + goto out;
> + }
> + if (!value) {
> + error_setg(&local_err, "Property '%s.%s' requires a positive value",
> + object_get_typename(obj), name);
> + goto out;
> + }
> + s->interval = value;
> +
> +out:
> + error_propagate(errp, local_err);
> +}
> +
> +static void filter_buffer_init(Object *obj)
> +{
> + object_property_add(obj, "interval", "int",
> + filter_buffer_get_interval,
> + filter_buffer_set_interval, NULL, NULL, NULL);
> +}
> +
> +static const TypeInfo filter_buffer_info = {
> + .name = TYPE_FILTER_BUFFER,
> + .parent = TYPE_NETFILTER,
> + .class_init = filter_buffer_class_init,
> + .instance_init = filter_buffer_init,
> + .instance_size = sizeof(FilterBufferState),
> +};
> +
> +static void register_types(void)
> +{
> + type_register_static(&filter_buffer_info);
> +}
> +
> +type_init(register_types);
> diff --git a/qemu-options.hx b/qemu-options.hx
> index 328404c..3c09114 100644
> --- a/qemu-options.hx
> +++ b/qemu-options.hx
> @@ -3643,6 +3643,20 @@ in PEM format, in filenames @var{ca-cert.pem},
> @var{ca-crl.pem} (optional),
> @var{server-cert.pem} (only servers), @var{server-key.pem} (only servers),
> @var{client-cert.pem} (only clients), and @var{client-key.pem} (only
> clients).
>
> address@hidden -object
> filter-buffer,address@hidden,address@hidden,address@hidden,address@hidden|rx|tx}]
> +
> +Interval @var{t} can't be 0, this filter batches the packet delivery: all
> +packets arriving in a given interval on netdev @var{netdevid} are delayed
> +until the end of the interval. Interval is in microseconds.
> +
> +queue @var{all|rx|tx} is an option that can be applied to any netfilter.
> +
> address@hidden: the filter will receive packets both sent to/by the netdev
> (default).
> +
> address@hidden: the filter will receive packets sent to the netdev.
> +
> address@hidden: the filter will receive packets sent by the netdev.
> +
I like the wording you used in the schema better. Something like
@option{rx}: the filter is attached to the receive queue of the netdev,
where it will receive packets sent to the netdev.
@option{tx}: the filter is attached to the transmit queue of the netdev,
where it will receive packets sent to the netdev.
> @end table
>
> ETEXI
> diff --git a/vl.c b/vl.c
> index 6f27b64..a593041 100644
> --- a/vl.c
> +++ b/vl.c
> @@ -2760,7 +2760,11 @@ static bool object_create_initial(const char *type)
> if (g_str_equal(type, "rng-egd")) {
> return false;
> }
> - /* TODO: implement netfilters */
> +
> + if (g_str_equal(type, "filter-buffer")) {
> + return false;
> + }
> +
> return true;
> }
- Re: [Qemu-devel] [PATCH v12 09/10] netfilter: add a netbuffer filter,
Markus Armbruster <=