Re: [PATCH v2 bpf-next 3/4] libbpf: deprecate legacy BPF map definitions

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Tue, Jan 25, 2022 at 2:35 PM John Fastabend <john.fastabend@xxxxxxxxx> wrote:
>
> Toke Høiland-Jørgensen wrote:
> > John Fastabend <john.fastabend@xxxxxxxxx> writes:
> >
> > > Toke Høiland-Jørgensen wrote:
> > >> Andrii Nakryiko <andrii.nakryiko@xxxxxxxxx> writes:
> > >>
> > >> > On Fri, Jan 21, 2022 at 12:43 PM Toke Høiland-Jørgensen <toke@xxxxxxxxxx> wrote:
> > >> >>
> > >> >> Andrii Nakryiko <andrii.nakryiko@xxxxxxxxx> writes:
> > >> >>
> > >> >> > On Thu, Jan 20, 2022 at 3:44 AM Toke Høiland-Jørgensen <toke@xxxxxxxxxx> wrote:
> > >> >> >>
> > >> >> >> Andrii Nakryiko <andrii@xxxxxxxxxx> writes:
> > >> >> >>
> > >> >> >> > Enact deprecation of legacy BPF map definition in SEC("maps") ([0]). For
> > >> >> >> > the definitions themselves introduce LIBBPF_STRICT_MAP_DEFINITIONS flag
> > >> >> >> > for libbpf strict mode. If it is set, error out on any struct
> > >> >> >> > bpf_map_def-based map definition. If not set, libbpf will print out
> > >> >> >> > a warning for each legacy BPF map to raise awareness that it goes
> > >> >> >> > away.
> > >> >> >>
> > >> >> >> We've touched upon this subject before, but I (still) don't think it's a
> > >> >> >> good idea to remove this support entirely: It makes it impossible to
> > >> >> >> write a loader that can handle both new and old BPF objects.
> > >> >> >>
> > >> >> >> So discourage the use of the old map definitions, sure, but please don't
> > >> >> >> make it completely impossible to load such objects.
> > >> >> >
> > >> >> > BTF-defined maps have been around for quite a long time now and only
> > >> >> > have benefits on top of the bpf_map_def way. The source code
> > >> >> > translation is also very straightforward. If someone didn't get around
> > >> >> > to update their BPF program in 2 years, I don't think we can do much
> > >> >> > about that.
> > >> >> >
> > >> >> > Maybe instead of trying to please everyone (especially those that
> > >> >> > refuse to do anything to their BPF programs), let's work together to
> > >> >> > nudge laggards to actually modernize their source code a little bit
> > >> >> > and gain some benefits from that along the way?
> > >> >>
> > >> >> I'm completely fine with nudging people towards the newer features, and
> > >> >> I think the compile-time deprecation warning when someone is using the
> > >> >> old-style map definitions in their BPF programs is an excellent way to
> > >> >> do that.
> > >> >>
> > >> >> I'm also fine with libbpf *by default* refusing to load programs that
> > >> >> use the old-style map definitions, but if the code is removed completely
> > >> >> it becomes impossible to write general-purpose loaders that can handle
> > >> >> both old and new programs. The obvious example of such a loader is
> > >> >> iproute2, the loader in xdp-tools is another.
> > >> >
> > >> > This is because you want to deviate from underlying BPF loader's
> > >> > behavior and feature set and dictate your own extended feature set in
> > >> > xdp-tools/iproute2/etc. You can technically do that, but with a lot of
> > >> > added complexity and headaches. But demanding libbpf to maintain
> > >> > deprecated and discouraged features/APIs/practices for 10+ years and
> > >> > accumulate all the internal cruft and maintenance burden isn't a great
> > >> > solution either.
> > >>
> > >> Right, so work with me to find a solution? I already suggested several
> > >> ideas, and you just keep repeating "just use the old library", which is
> > >> tantamount to saying "take a hike".
> > >
> > > I'll just throw my $.02 here as I'm reviewing. On major versions its
> > > fairly common to not force API compat with the libs I'm used to working
> > > with. Most recent example that comes to my mind (just did this yesterday
> > > for example) was porting code into openssl3.x from older version. I
> > > mumbled a bit, but still did it so that I could get my tools working on
> > > latest and greatest.
> > >
> > > Going from 0.x -> 1.0 seems reasonable to break compat, users don't
> > > need to update immediately right? They can linger around on 0.x release
> > > until they have some time or reason to jump onto 1.0? Distro's can
> > > carry all versions for as long as necessary. Thats the value add of
> > > distributions in my mind anyways. And a 0.x version somewhat implies
> > > its not stable yet imo.
> >
> > I'm fine with breaking compatibility of the library. We already handle
> > that in xdp-tools via standard configure probing. The problem here is
> > with breaking compatibility the data file format (i.e., BPF ELF files);
> > in your openssl example that would correspond to new versions of openssl
> > refusing to read certificate files that were issued before the upgrade.

Comparing something so complex and rapidly evolving as BPF ecosystem,
which includes kernel, compiler, libbpf (and other BPF loaders) and
BPF-related tooling (like, bpftool) all interacting with each other to
loading a certificate file is a bit unfair, don't you think? Requiring
something that was written and compiled 2 years ago to work with a
complex BPF loader after a major version bump and a year+ warning
ahead of time is also a bit unfair.

Even extremely widely used programming languages, like C++ and its
standard library, do deprecate and remove stuff over time.

> >
> > I really don't get why this distinction is so hard to explain? Is there
> > some mental model disconnect here somewhere, or something?
>
> Ah I think the difference is, in my mental model a BPF Program is the
> BPF object file, the loader code, user space components to manage BPF
> maps/perf-rings/objects, and a bunch of other user space code to do
> something useful with whatever is showing up in maps, perf ring, etc.
> These are one program in my model. A BPF object on its own has little
> value in my model. (A BPF lib on the other hand implementing common
> functionality is very useful though) Even if the BPF object files are
> coming from a different team we have to work closely together because
> map value/keys have an API, perf-ring events have an API and so on.
>
> I don't see it as a paticularly major problem if we break old things
> here because the only things in my model that get loaded over these
> loaders are debug progs and experimental code. Super useful stuff
> by the way, but something I would expect a human to go 'oh it didn't
> load' I guess I shouldn't have ignored the warning for the last
> year and then they fix it. Or if it is a program shell'ing out to
> the tool they manage the versions carefully so wouldn't upgrade
> to latest version until their system is ready. I'm not seeing how
> this would end up breaking a deployed production system.

Great point, thanks!

If someone is unwilling to fix and recompile their BPF program, they
should be OK not upgrading iproute2 or whatnot.

>
> So my mental model doesn't seem to have the same issues here of some
> long lived/unmaintained and isolated BPF object file that doesn't have
> close ties to the loader. A bit curious how you get these
> BPF programs that are not changeable and don't control the loader.
>
> >
> > >> I'm perfectly fine with having to jump through some more hoops to load
> > >> old programs, and moving the old maps section parsing out of libbpf and
> > >> into the caller is fine as well; but then we'd need to add some hooks to
> > >> libbpf to create the maps inside the bpf_object. I can submit patches to
> > >> do this, but I'm not going to bother if you're just going to reject them
> > >> because you don't want to accommodate anything other than your way of
> > >> doing things :/
> > >
> > > Can't xdp-tools run on 0.x for as long as wanted and flip over when
> > > it is ready? Same for iproute2 'tc' loader? I'm not seeing what would
> > > break except for random people trying to use tools in debug or
> > > experiments.
> >
> > New stuff would break. I.e., then xdp-tools / tc would be stuck on that
> > version forever, and wouldn't be able to load any BPF programs that rely
> > on features added to libbpf after 1.0.
> >
> > > FWIW the dumb netlink based loader I wrote to attach create qdiscs and
> > > attach filters is <100 lines of code so its not a huge lift if you end
> > > up having to roll your own here.
> >
> > We're not just talking about "creating qdiscs and attaching filters"
> > here, we're talking about the loading of BPF object files. "Rolling my
> > own" means writing code that parses elf files, populates maps, creates
> > them in the kernel, does the relocations etc. That's essentially a
> > rewrite / fork of libbpf, which is what I'm trying to avoid...
>
> In practice I just forked/wrote my own loader code where needed and
> libbpf didn't have what was needed. The thinking being my use case was so
> niche it didn't make much sense to put in a general purpose lib and
> burden everyone with the support/maintenance/cluter cost. I
> think its ok for a library to not support all possible use cases.
>
> .John
>
> >
> > -Toke
> >




[Index of Archives]     [Linux Samsung SoC]     [Linux Rockchip SoC]     [Linux Actions SoC]     [Linux for Synopsys ARC Processors]     [Linux NFS]     [Linux NILFS]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux Kernel]     [Linux SCSI]


  Powered by Linux