From mboxrd@z Thu Jan  1 00:00:00 1970
Authentication-Results: passt.top; dmarc=pass (p=quarantine dis=none) header.from=redhat.com
Authentication-Results: passt.top;
	dkim=pass (1024-bit key; unprotected) header.d=redhat.com header.i=@redhat.com header.a=rsa-sha256 header.s=mimecast20190719 header.b=TiM0PvPv;
	dkim-atps=neutral
Received: from us-smtp-delivery-124.mimecast.com (us-smtp-delivery-124.mimecast.com [170.10.129.124])
	by passt.top (Postfix) with ESMTPS id 8D44C5A026F
	for <passt-dev@passt.top>; Fri, 04 Apr 2025 13:50:21 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhat.com;
	s=mimecast20190719; t=1743767420;
	h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
	 to:to:cc:cc:mime-version:mime-version:content-type:content-type:
	 content-transfer-encoding:content-transfer-encoding:
	 in-reply-to:in-reply-to:references:references;
	bh=M78ABR16Wer69tvvRuw/Vc5aP87lrzpbFjR1Ymiv5yQ=;
	b=TiM0PvPvgVBY/xm4V9YI5ldZwo9mnuqXJMW0sCoqExdPJmka4tZvB78kkfByg9//Qr/9r+
	YHXGHldEqrczmZMn3qjgXpELKEn2V85Xp2e4944pVegnlEVBxKcQOzH8KGY6yHhkk5b5FB
	Nv5jXiwrVNBOzPax+1QLMCZGv4I/qhA=
Received: from mail-wr1-f69.google.com (mail-wr1-f69.google.com
 [209.85.221.69]) by relay.mimecast.com with ESMTP with STARTTLS
 (version=TLSv1.3, cipher=TLS_AES_256_GCM_SHA384) id
 us-mta-15-Q3z8SMtzNci8l5r0do-CaA-1; Fri, 04 Apr 2025 07:50:19 -0400
X-MC-Unique: Q3z8SMtzNci8l5r0do-CaA-1
X-Mimecast-MFC-AGG-ID: Q3z8SMtzNci8l5r0do-CaA_1743767418
Received: by mail-wr1-f69.google.com with SMTP id ffacd0b85a97d-39131f2bbe5so830946f8f.3
        for <passt-dev@passt.top>; Fri, 04 Apr 2025 04:50:19 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1743767418; x=1744372218;
        h=content-transfer-encoding:mime-version:organization:references
         :in-reply-to:message-id:subject:cc:to:from:date:x-gm-message-state
         :from:to:cc:subject:date:message-id:reply-to;
        bh=M78ABR16Wer69tvvRuw/Vc5aP87lrzpbFjR1Ymiv5yQ=;
        b=DesGOeYIxwcZaF4AtgLY6gB9IREeVzuIowejM6yE9GnlHnG8yMRKPYGO+alxpjJ7Jv
         rYqdUWUrilwkThAh9QjCt5dzDXTjRmjFzaOAjSUnEcEmRW7/40nCgbIiWHu5NQplgDJY
         pRfavNhdKnUrWdzP8nSLk0MVsfO2PdYrOVZt59iL4sy4nHCL/p5K9FzvywmOpZpgy082
         apdTD+C9NjciJ/Qz/GWjFmETMamOe8WZu4YY91TOa1zoUq/po+Y7EONrtUTXVbLBj0gw
         OW0sa+HWmxvhAN5xjrqc1/6JFRpjdaPKv2tGgo1AXTgeR+n7nm55vi6k7H0/EEOuPkTg
         is4w==
X-Forwarded-Encrypted: i=1; AJvYcCUVh+tioPmzl/cLfjTd4wsIx93sZ9HNGOYZpwhFEn6WXcfSGEFAGuKNytVnN4dobT7hzCtWBjRiOeo=@passt.top
X-Gm-Message-State: AOJu0YxdNduHWjsJtXbncg1LuVoMucjjIZdRDb8jQdnx3sLRUdElHOf+
	BFd3EHPLwBB6ss3i57KmIHmeoEjxAzlUnqfngh83xXXDppOpFVzUo9ef4P3UFfjaiYDJ1jIT4sT
	mu2XzYkdL8lGjSF6VBS1NP8eRWceP9Yl0JpJSe7m0TWHLOAsorw==
X-Gm-Gg: ASbGnctfX85q4j77bBJoFGz8r5HZVEM9KR6tconDik8jy6VD4RvXbNvd22KDxG7TEql
	yQjbjPmXRlwCRZtQ4d+hrUH21bjUM7xoArQVBg9/6JTe2S8vT5nWogdWj9/UqsIHLfuZsu7cF7Z
	KWQBFLJ91D/t1pJ+HR022yCaq2YAYDdN4mHxCdlpXNZUc/npOgsFKAkRWqVS8DgRE+UNFxqHCCt
	knJQImco5PlzTD2/p2w1jENABXxmdN44behitr7Ih0TFq9if6V3QJXYP19uYzxpVl4+5VXy2Alj
	Fca/6vo4KfaZNPbpisroJ1fIyRk=
X-Received: by 2002:a05:6000:4304:b0:391:2889:4ea4 with SMTP id ffacd0b85a97d-39d07f9dacemr1971526f8f.9.1743767417831;
        Fri, 04 Apr 2025 04:50:17 -0700 (PDT)
X-Google-Smtp-Source: AGHT+IGvaK04YaOQ2raFw8G3Ch97zaP7J+BdvHBEaqgrICVF4IqK0vvbO6Rva05nexm96t6gI7wi+Q==
X-Received: by 2002:a05:6000:4304:b0:391:2889:4ea4 with SMTP id ffacd0b85a97d-39d07f9dacemr1971501f8f.9.1743767417319;
        Fri, 04 Apr 2025 04:50:17 -0700 (PDT)
Received: from maya.myfinge.rs (ifcgrfdd.trafficplex.cloud. [2a10:fc81:a806:d6a9::1])
        by smtp.gmail.com with ESMTPSA id ffacd0b85a97d-39c3020d938sm4184585f8f.65.2025.04.04.04.50.16
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Fri, 04 Apr 2025 04:50:16 -0700 (PDT)
Date: Fri, 4 Apr 2025 13:50:15 +0200
From: Stefano Brivio <sbrivio@redhat.com>
To: Jon Maloy <jmaloy@redhat.com>
Subject: Re: [PATCH v4] udp: support traceroute
Message-ID: <20250404135015.069d5a91@elisabeth>
In-Reply-To: <Z-8aUbqW2ot67PAc@zatzit>
References: <20250403022229.836067-1-jmaloy@redhat.com>
	<20250403174833.6d033172@elisabeth>
	<4986e27d-20d9-4b2b-883d-d696e84ec9cf@redhat.com>
	<Z-8aUbqW2ot67PAc@zatzit>
Organization: Red Hat
X-Mailer: Claws Mail 4.2.0 (GTK 3.24.41; x86_64-pc-linux-gnu)
MIME-Version: 1.0
X-Mimecast-Spam-Score: 0
X-Mimecast-MFC-PROC-ID: QVg1y1UZXQZ_P7ejslh-aonnc5zFzyucB28nqq2Fubw_1743767418
X-Mimecast-Originator: redhat.com
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Message-ID-Hash: D6XGLGXJYUZM3MEE2L273CB7SBCN6CCR
X-Message-ID-Hash: D6XGLGXJYUZM3MEE2L273CB7SBCN6CCR
X-MailFrom: sbrivio@redhat.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: David Gibson <david@gibson.dropbear.id.au>, passt-dev@passt.top
X-Mailman-Version: 3.3.8
Precedence: list
List-Id: Development discussion and patches for passt <passt-dev.passt.top>
Archived-At: <https://archives.passt.top/passt-dev/20250404135015.069d5a91@elisabeth/>
Archived-At: <https://passt.top/hyperkitty/list/passt-dev@passt.top/message/D6XGLGXJYUZM3MEE2L273CB7SBCN6CCR/>
List-Archive: <https://archives.passt.top/passt-dev/>
List-Archive: <https://passt.top/hyperkitty/list/passt-dev@passt.top/>
List-Help: <mailto:passt-dev-request@passt.top?subject=help>
List-Owner: <mailto:passt-dev-owner@passt.top>
List-Post: <mailto:passt-dev@passt.top>
List-Subscribe: <mailto:passt-dev-join@passt.top>
List-Unsubscribe: <mailto:passt-dev-leave@passt.top>

Jon, I wasn't actually suggesting that you would drop *all* the Cc:'s.
:) I just saw no reason to specifically spam Laurent with this.

On Fri, 4 Apr 2025 10:31:29 +1100
David Gibson <david@gibson.dropbear.id.au> wrote:

> On Thu, Apr 03, 2025 at 04:27:12PM -0400, Jon Maloy wrote:
> > 
> > 
> > On 2025-04-03 11:48, Stefano Brivio wrote:  
> > > The implementation looks solid to me, a list of nits (or a bit
> > > more) below.
> > > 
> > > By the way, I don't think you need to Cc: people who are already on
> > > this list unless you specifically want their attention.
> > > 
> > > On Wed,  2 Apr 2025 22:22:29 -0400
> > > Jon Maloy <jmaloy@redhat.com> wrote:
> > >   
> > > > Now that ICMP pass-through from socket-to-tap is in place, it is
> > > > easy to support UDP based traceroute functionality in direction
> > > > tap-to-socket.
> > > > 
> > > > We fix that  in this commit.
> > > > 
> > > > Signed-off-by: Jon Maloy <jmaloy@redhat.com>  
> > > 
> > > This fixes https://bugs.passt.top/show_bug.cgi?id=64 ("Link:" tag) if I
> > > understood correctly.
> > >   
> > > > ---
> > > > v2: - Using ancillary data instead of setsockopt to transfer outgoing
> > > >        TTL.
> > > >      - Support IPv6
> > > > v3: - Storing ttl per packet instead of per flow. This may not be
> > > >        elegant, but much less intrusive than changing the flow  
> > 
> > [...]
> >   
> > > > @@ -11,6 +11,8 @@
> > > >   /* Maximum size of a single packet stored in pool, including headers */
> > > >   #define PACKET_MAX_LEN	((size_t)UINT16_MAX)
> > > > +#define DEFAULT_TTL 64  
> > > 
> > > If I understood correctly, David's comment to this on v3:
> > > 
> > >    https://archives.passt.top/passt-dev/Z-om3Ey-HR1Hj8UH@zatzit/
> > > 
> > > was meant to imply that, as the default value can be changed via
> > > sysctl, the value set via sysctl could be read at start-up. I'm fine
> > > with 64 as well, by the way, with a slight preference for reading the
> > > value via sysctl.  
> > 
> > I don't think the local host/container setting will have any effect
> > if the sending guest is a VM.  
> 
> That's true, but..
> 
> > The benefit is of this is dubious.  
> 
> .. uflow->ttl[] isn't so much representing what the guest set, as a
> cache of what the socket is sending and that *does* depend on the host
> value.

Right, my concern is that now we'll use the host value (whatever it is)
if the value from the container / guest is 64.

So:

- guest uses 63, host has 255 configured: we use 63

- guest uses 64, host has 64 configured: we use 64

- ...but: guest uses 64, host has 255 configured: we use 255

...and this might actually break traceroute itself in some extreme
cases.

Let's say we have 255 configured on the host and you're in the middle
of a traceroute:

- guest sends TTL 62, goes out with 62 -> 62nd hop replies
- guest sends TTL 63, goes out with 63 -> 63rd hop replies
- guest sends TTL 64, goes out with 255 -> destination replies
- guest sends TTL 65, goes out with 65 -> 65th hop replies, traceroute broken

See also the comment below.

> > > All this might go away, though, please read the comment to
> > > udp_flow_new() below, first.
> > >   
> > > > +
> > > >   /**
> > > >    * struct pool - Generic pool of packets stored in a buffer
> > > >    * @buf:	Buffer storing packet descriptors,
> > > > diff --git a/tap.c b/tap.c
> > > > index 3a6fcbe..e65d592 100644
> > > > --- a/tap.c
> > > > +++ b/tap.c
> > > > @@ -563,6 +563,7 @@ PACKET_POOL_DECL(pool_l4, UIO_MAXIOV, pkt_buf);
> > > >    * @dest:	Destination port
> > > >    * @saddr:	Source address
> > > >    * @daddr:	Destination address
> > > > + * @ttl:	Time to live
> > > >    * @msg:	Array of messages that can be handled in a single call
> > > >    */
> > > >   static struct tap4_l4_t {
> > > > @@ -574,6 +575,8 @@ static struct tap4_l4_t {
> > > >   	struct in_addr saddr;
> > > >   	struct in_addr daddr;
> > > > +	uint8_t ttl;  
> > > 
> > > If you move this after 'protocol' you save 4 or 8 bytes depending on
> > > the architecture and, perhaps more importantly, with 64-byte cachelines,
> > > you can fit the set of fields involved in the L4_MATCH() comparison
> > > four times instead of three. If you have a look with pahole(1):
> > >   
> > Good point. I  didn't notice.
> > 
> > 
> > [...]  
> > > >   	const struct flowside *toside;
> > > >   	struct mmsghdr mm[UIO_MAXIOV];
> > > > @@ -938,6 +940,19 @@ int udp_tap_handler(const struct ctx *c, uint8_t pif,
> > > >   		mm[i].msg_hdr.msg_controllen = 0;
> > > >   		mm[i].msg_hdr.msg_flags = 0;
> > > > +		if (ttl != uflow->ttl[tosidx.sidei]) {
> > > > +			uflow->ttl[tosidx.sidei] = ttl;
> > > > +			if (af == AF_INET) {
> > > > +				if (setsockopt(s, IPPROTO_IP, IP_TTL,
> > > > +					       &ttl, sizeof(ttl)) < 0)
> > > > +					perror("setsockopt (IP_TTL)");  
> > > 
> > > This would print to file descriptor 2 even if it's a socket. It should
> > > be err_perror() instead, but now we also have flow_perror() which
> > > prints flow index and type, given 'uflow' here, say:
> > > 
> > > 					flow_perror(uflow, "IP_TTL setsockopt");
> > >   
> > > > +			} else {
> > > > +				if (setsockopt(s, IPPROTO_IPV6, IPV6_HOPLIMIT,
> > > > +					       &ttl, sizeof(ttl)) < 0)
> > > > +					perror("setsockopt (IP_TTL)");  
> > > 
> > > ...and this is IPV6_HOPLIMIT, not IP_TTL, so perhaps:
> > > 
> > > 					flow_perror(uflow,
> > > 						    "setsockopt IPV6_HOPLIMIT");
> > >   
> > Ok.
> >   
> > > > +			}
> > > > +		}
> > > > +
> > > >   		count++;
> > > >   	}
> > > > diff --git a/udp.h b/udp.h
> > > > index de2df6d..041fad4 100644
> > > > --- a/udp.h
> > > > +++ b/udp.h
> > > > @@ -15,7 +15,8 @@ void udp_reply_sock_handler(const struct ctx *c, union epoll_ref ref,
> > > >   			    uint32_t events, const struct timespec *now);
> > > >   int udp_tap_handler(const struct ctx *c, uint8_t pif,
> > > >   		    sa_family_t af, const void *saddr, const void *daddr,
> > > > -		    const struct pool *p, int idx, const struct timespec *now);
> > > > +		    uint8_t  ttl, const struct pool *p, int idx,  
> > > 
> > > Excess whitespace beetween 'uint8_t' and 'ttl'.
> > >   
> > > > +		    const struct timespec *now);
> > > >   int udp_sock_init(const struct ctx *c, int ns, const union inany_addr *addr,
> > > >   		  const char *ifname, in_port_t port);
> > > >   int udp_init(struct ctx *c);
> > > > diff --git a/udp_flow.c b/udp_flow.c
> > > > index bf4b896..39372c2 100644
> > > > --- a/udp_flow.c
> > > > +++ b/udp_flow.c
> > > > @@ -137,6 +137,7 @@ static flow_sidx_t udp_flow_new(const struct ctx *c, union flow *flow,
> > > >   	uflow = FLOW_SET_TYPE(flow, FLOW_UDP, udp);
> > > >   	uflow->ts = now->tv_sec;
> > > >   	uflow->s[INISIDE] = uflow->s[TGTSIDE] = -1;
> > > > +	uflow->ttl[INISIDE] = uflow->ttl[TGTSIDE] = DEFAULT_TTL;  
> > > 
> > > By the way, instead of using a default value, what about fetching the
> > > current value with getsockopt()?
> > > 
> > > One additional system call per UDP flow doesn't feel like a lot of
> > > overhead, and we can be sure it's correct, no matter if the user
> > > configures a different value before or after we start.
> > >   
> > This patch fixes UDP messaging tap->socket, and TTL may have any
> > value in the first arriving packet. Reading it from the socket here only
> > makes sense when I add the same support in direction socket->tap.
> > That is my next project.

Well, wait, the getsockopt() will not tell you the value the socket is
receiving. It tells you the value that the socket would send, at least
according to the documentation:

       IP_TTL (since Linux 1.0)
              Set or retrieve the current time-to-live field that is
              used in every packet sent from this socket.

and that's what makes it relevant: this is the value that we would
normally use, unless you issue the setsockopt().

But... there's a plot twist: this is just for IPv4. For IPv6:

       IPV6_RTHDR, IPV6_AUTHHDR, IPV6_DSTOPTS, IPV6_HOPOPTS, IPV6_FLOWINFO,
       IPV6_HOPLIMIT
              Set delivery of control messages for incoming datagrams
              containing extension headers from the received packet.

              [...]

              IPV6_HOPLIMIT delivers an integer containing the hop count of
              the packet.

so I wonder: is it correct to use IPV6_HOPLIMIT at all, even for the
setsockopt() you're adding?

I haven't tested this (at least not yet), but from the documentation
that seems to apply to *received* packets. No idea what the
setsockopt() would do, at this point.

Could it be that we should use IP_TTL for *sent* IPv4 packets as well?

I'll try to test this specific part in a bit, unless you already did.

-- 
Stefano