Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Ido Schimmel <idosch@xxxxxxxxxx>
Subject: Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
From: netdev@xxxxxxxxxxxxxxxxxxxx
Date: Mon, 01 Aug 2022 17:33:49 +0200
Cc: Ivan Vecera <ivecera@xxxxxxxxxx>, Andrew Lunn <andrew@xxxxxxx>, Florian Fainelli <f.fainelli@xxxxxxxxx>, Jiri Pirko <jiri@xxxxxxxxxxx>, Daniel Borkmann <daniel@xxxxxxxxxxxxx>, netdev@xxxxxxxxxxxxxxx, Nikolay Aleksandrov <razor@xxxxxxxxxxxxx>, bridge@xxxxxxxxxxxxxxxxxxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx, Vivien Didelot <vivien.didelot@xxxxxxxxx>, Eric Dumazet <edumazet@xxxxxxxxxx>, Paolo Abeni <pabeni@xxxxxxxxxx>, linux-kselftest@xxxxxxxxxxxxxxx, Roopa Prabhu <roopa@xxxxxxxxxx>, kuba@xxxxxxxxxx, Vladimir Oltean <olteanv@xxxxxxxxx>, Shuah Khan <shuah@xxxxxxxxxx>, davem@xxxxxxxxxxxxx
In-reply-to: <Ys69DiAwT0Md+6ai@shredder>
References: <20220707152930.1789437-1-netdev@kapio-technology.com> <20220707152930.1789437-4-netdev@kapio-technology.com> <20220708084904.33otb6x256huddps@skbuf> <e6f418705e19df370c8d644993aa9a6f@kapio-technology.com> <20220708091550.2qcu3tyqkhgiudjg@skbuf> <e3ea3c0d72c2417430e601a150c7f0dd@kapio-technology.com> <20220708115624.rrjzjtidlhcqczjv@skbuf> <723e2995314b41ff323272536ef27341@kapio-technology.com> <YsqPWK67U0+Iw2Ru@shredder> <d3f674dc6b4f92f2fda3601685c78ced@kapio-technology.com> <Ys69DiAwT0Md+6ai@shredder>
User-agent: Gigahost Webmail

On 2022-07-13 14:39, Ido Schimmel wrote:


What are "Storm Prevention" and "zero-DPV" FDB entries?


For the zero-DPV entries, I can summarize:

Since a CPU can become saturated from constant SA Miss Violations from adenied source, source MAC address are masked by loading a zero-DPV(Destination Port Vector) entry in the ATU. As the address now appearsin the database it will not cause more Miss Violations. ANY port tryingto send a frame to this unauthorized address is discarded. Any lockedport trying to use this unauthorized address has its frames discardedtoo (as the ports SA bit is not set in the ATU entry).

Follow-Ups:
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: Ido Schimmel via Bridge

References:
- [PATCH v4 net-next 0/6] Extend locked port feature with FDB locked flag (MAC-Auth/MAB)
  - From: Hans Schultz
- [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: Hans Schultz
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: Vladimir Oltean
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: netdev
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: Vladimir Oltean
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: netdev
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: Vladimir Oltean
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: netdev
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: Ido Schimmel via Bridge
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: netdev
- Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
  - From: Ido Schimmel via Bridge

Prev by Date: Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
Next by Date: Re: [PATCH v4 net-next 2/6] net: switchdev: add support for offloading of fdb locked flag
Previous by thread: Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
Next by thread: Re: [PATCH v4 net-next 3/6] drivers: net: dsa: add locked fdb entry flag to drivers
Index(es):
- Date
- Thread

[Index of Archives] [Netdev] [AoE Tools] [Linux Wireless] [Kernel Newbies] [Security] [Linux for Hams] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux RAID] [Linux Admin] [Samba] [Video 4 Linux]