[ovs-dev] CT Meeting Minutes - 20-May
Aaron Conole
aconole at redhat.com
Thu May 20 19:28:10 UTC 2021
Next meeting: 03-June, 2021
Attendees:
* Aaron
* Paolo
* Korol
* Gaetan
Agenda:
A Security concerns, raised by NVidia
- tcp_loose mode support
- Kernel supports this via sysctl knob
- Userspace has no such knob or function
- Aconole: will start work on this as a separate series
- Q: Should this be configured via ovs-appctl or ovsdb?
- synproxy support
- Not used in kernel space, not existing in userspace
- Needs more details (what is the use case, etc). Lots of technical
details missing
B Usability:
- Flow HW offloads
* Nvidia POV, wants to enable HWOL but running into issues
- Discrepencies between sw & hw datapaths
* Tcp_loose / tcp_liberal - should these be set via the DB
* Tcp_liberal / no seq checking is already defaulted in kernel, and
cannot be modified at run time
* Aconole: Maybe we can fire an RFC to match this behavior
* Should tcp_liberal be configurable via the OVSDB, or tied to HWOL?
- IP Fragmentation behavior in kernel does not match userspace
* Userspace ct() calls do not lose fragment boundaries, while
kernel space ct() calls can:
https://patchwork.kernel.org/project/netdevbpf/patch/20210319204307.3128280-1-aconole@redhat.com/
Patch statuses
Q: How to increase reviews?
- Checking with internal teams for more assistance
Individual Patch Status Discussions:
1 https://patchwork.ozlabs.org/project/openvswitch/patch/161943952616.327630.4676425878426520994.stgit@ebuild/
- Aaron to reply upstream re: issues with Dumitru's suggestion
- Paolo V to also reply
2 https://patchwork.ozlabs.org/project/openvswitch/list/?series=217356&state=*
- Gaetan to submit a new revision
3 https://patchwork.ozlabs.org/project/openvswitch/list/?series=241223
- Pending resolution on (1)
4 https://patchwork.ozlabs.org/project/openvswitch/patch/161980273210.95131.8863959545804983824.stgit@fed.void/
- No change
5 https://patchwork.ozlabs.org/project/openvswitch/patch/161643132356.178714.585911287654021306.stgit@fed.void/
- Paolo asked someone with SCTP experience to review
More information about the dev
mailing list