1. Patchew
  2. Libvirt
  3. [libvirt] [PATCH v3 00/36] network: refactor to decouple virt drivers from network driver
  4. View patch

[libvirt] [PATCH v3 05/36] network: use 'bridge' as actual type instead of 'network'

Daniel P. Berrangé posted 36 patches 6 years, 10 months ago
There is a newer version of this series
[libvirt] [PATCH v3 05/36] network: use 'bridge' as actual type instead of 'network'
Posted by Daniel P. Berrangé 6 years, 10 months ago 
Ports allocated on virtual networks with type=nat|route|open all get
given an actual type of 'network'.

Only ports in networks with type=bridge use an actual type of 'bridge'.

This distinction makes little sense since the virtualization drivers
will treat both actual types in exactly the same way, as they're all
just bridge devices a VM needs to be connected to.

This doesn't affect user visible XML since the "actual" device XML
is internal only, but we need code to convert the data upgrades.

Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
---
 src/network/bridge_driver.c | 20 ++++++++++++--------
 1 file changed, 12 insertions(+), 8 deletions(-)

diff --git a/src/network/bridge_driver.c b/src/network/bridge_driver.c
index 4770dd1e4e..40122612c8 100644
--- a/src/network/bridge_driver.c
+++ b/src/network/bridge_driver.c
@@ -4454,11 +4454,7 @@ networkAllocateActualDevice(virNetworkPtr net,
     case VIR_NETWORK_FORWARD_NAT:
     case VIR_NETWORK_FORWARD_ROUTE:
     case VIR_NETWORK_FORWARD_OPEN:
-        /* for these forward types, the actual net type really *is*
-         * NETWORK; we just keep the info from the portgroup in
-         * iface->data.network.actual
-         */
-        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_NETWORK;
+        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
 
         /* we also store the bridge device and macTableManager settings
          * in iface->data.network.actual->data.bridge for later use
@@ -4832,6 +4828,15 @@ networkNotifyActualDevice(virNetworkPtr net,
                     netdef->bridge) < 0))
             goto error;
 
+    /* Older libvirtd uses actualType==network, but we now
+     * just use actualType==bridge, as nothing needs to
+     * distinguish the two cases, and this simplifies virt
+     * drive code */
+    if (actualType == VIR_DOMAIN_NET_TYPE_NETWORK) {
+        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
+        actualType = VIR_DOMAIN_NET_TYPE_BRIDGE;
+    }
+
     /* see if we're connected to the correct bridge */
     if (netdef->bridge) {
         bool useOVS = false;
@@ -5475,9 +5480,8 @@ networkBandwidthGenericChecks(virDomainNetDefPtr iface,
     virNetDevBandwidthPtr ifaceBand;
     unsigned long long old_floor, new_floor;
 
-    if (virDomainNetGetActualType(iface) != VIR_DOMAIN_NET_TYPE_NETWORK &&
-        (virDomainNetGetActualType(iface) != VIR_DOMAIN_NET_TYPE_BRIDGE ||
-         iface->data.network.actual->data.bridge.brname == NULL)) {
+    if (virDomainNetGetActualType(iface) != VIR_DOMAIN_NET_TYPE_BRIDGE ||
+        iface->data.network.actual->data.bridge.brname == NULL) {
         /* This is not an interface that's plugged into a network.
          * We don't care. Thus from our POV bandwidth change is allowed. */
         return false;
-- 
2.20.1

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH v3 05/36] network: use 'bridge' as actual type instead of 'network'
Posted by Cole Robinson 6 years, 10 months ago 
On 3/19/19 8:46 AM, Daniel P. Berrangé wrote:
> Ports allocated on virtual networks with type=nat|route|open all get
> given an actual type of 'network'.
> 
> Only ports in networks with type=bridge use an actual type of 'bridge'.
> 
> This distinction makes little sense since the virtualization drivers
> will treat both actual types in exactly the same way, as they're all
> just bridge devices a VM needs to be connected to.
> 
> This doesn't affect user visible XML since the "actual" device XML
> is internal only, but we need code to convert the data upgrades.
> 
> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
> ---
>  src/network/bridge_driver.c | 20 ++++++++++++--------
>  1 file changed, 12 insertions(+), 8 deletions(-)
> 

Conceptually this makes sense. I wonder what the original motivation for
the differentiation was. This also makes me wish there was a separate
enum for the internal actual->type field, it would make ambiguous code
much more readable

> diff --git a/src/network/bridge_driver.c b/src/network/bridge_driver.c
> index 4770dd1e4e..40122612c8 100644
> --- a/src/network/bridge_driver.c
> +++ b/src/network/bridge_driver.c
> @@ -4454,11 +4454,7 @@ networkAllocateActualDevice(virNetworkPtr net,
>      case VIR_NETWORK_FORWARD_NAT:
>      case VIR_NETWORK_FORWARD_ROUTE:
>      case VIR_NETWORK_FORWARD_OPEN:
> -        /* for these forward types, the actual net type really *is*
> -         * NETWORK; we just keep the info from the portgroup in
> -         * iface->data.network.actual
> -         */
> -        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_NETWORK;
> +        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
>  
>          /* we also store the bridge device and macTableManager settings
>           * in iface->data.network.actual->data.bridge for later use
> @@ -4832,6 +4828,15 @@ networkNotifyActualDevice(virNetworkPtr net,
>                      netdef->bridge) < 0))
>              goto error;
>  
> +    /* Older libvirtd uses actualType==network, but we now
> +     * just use actualType==bridge, as nothing needs to
> +     * distinguish the two cases, and this simplifies virt
> +     * drive code */
> +    if (actualType == VIR_DOMAIN_NET_TYPE_NETWORK) {
> +        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
> +        actualType = VIR_DOMAIN_NET_TYPE_BRIDGE;
> +    }
> +

Why do this here and not at the status XML parse time? This code path is
only called on reconnected devices correct? So that should always be
hitting the status XML parser too AFAICT. That would make it easier to
audit any TYPE_NETWORK paths in the status parser as well

qemu_driver.c processNicRxFilterChangedEvent also has a

if (virDomainNetGetActualType(def) == VIR_DOMAIN_NET_TYPE_NETWORK) {

which looks sketchy after this. And it's involving bandwidth stuff so it
may affect the previous patch too.

- Cole

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH v3 05/36] network: use 'bridge' as actual type instead of 'network'
Posted by Laine Stump 6 years, 10 months ago 
On 3/21/19 9:07 PM, Cole Robinson wrote:
> On 3/19/19 8:46 AM, Daniel P. Berrangé wrote:
>> Ports allocated on virtual networks with type=nat|route|open all get
>> given an actual type of 'network'.
>>
>> Only ports in networks with type=bridge use an actual type of 'bridge'.
>>
>> This distinction makes little sense since the virtualization drivers
>> will treat both actual types in exactly the same way, as they're all
>> just bridge devices a VM needs to be connected to.
>>
>> This doesn't affect user visible XML since the "actual" device XML
>> is internal only, but we need code to convert the data upgrades.
>>
>> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
>> ---
>>   src/network/bridge_driver.c | 20 ++++++++++++--------
>>   1 file changed, 12 insertions(+), 8 deletions(-)
>>
> Conceptually this makes sense. I wonder what the original motivation for
> the differentiation was.


I remember there was *some* reason for it, but it's very possible it's 
not valid. So lacking any solid memory from that distant time, one thing 
to do is audit all occurrences of VIR_DOMAIN_NET_TYPE_NETWORK where the 
actualType is being compared (rather than the NetDef's type), and 
behavior is different from VIR_DOMAIN_NET_TYPE_BRIDGE (which is 
apparently what Cole did, since he's already found most of the 
"interesting" places I found :-)). He mentions one that he found below, 
and he also pointed out the class_id thing during parsing in the 
previous patch, which will now be broken even if we don't support 
bandwidth on unmanaged bridge networks (because class_id is only parsed 
when actualType == NETWORK). I'll see if I find any others with a quick 
search...


> This also makes me wish there was a separate
> enum for the internal actual->type field, it would make ambiguous code
> much more readable
>
>> diff --git a/src/network/bridge_driver.c b/src/network/bridge_driver.c
>> index 4770dd1e4e..40122612c8 100644
>> --- a/src/network/bridge_driver.c
>> +++ b/src/network/bridge_driver.c
>> @@ -4454,11 +4454,7 @@ networkAllocateActualDevice(virNetworkPtr net,
>>       case VIR_NETWORK_FORWARD_NAT:
>>       case VIR_NETWORK_FORWARD_ROUTE:
>>       case VIR_NETWORK_FORWARD_OPEN:
>> -        /* for these forward types, the actual net type really *is*
>> -         * NETWORK; we just keep the info from the portgroup in
>> -         * iface->data.network.actual
>> -         */
>> -        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_NETWORK;
>> +        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
>>   
>>           /* we also store the bridge device and macTableManager settings
>>            * in iface->data.network.actual->data.bridge for later use
>> @@ -4832,6 +4828,15 @@ networkNotifyActualDevice(virNetworkPtr net,
>>                       netdef->bridge) < 0))
>>               goto error;
>>   
>> +    /* Older libvirtd uses actualType==network, but we now
>> +     * just use actualType==bridge, as nothing needs to
>> +     * distinguish the two cases, and this simplifies virt
>> +     * drive code */
>> +    if (actualType == VIR_DOMAIN_NET_TYPE_NETWORK) {
>> +        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
>> +        actualType = VIR_DOMAIN_NET_TYPE_BRIDGE;
>> +    }
>> +
> Why do this here and not at the status XML parse time? This code path is
> only called on reconnected devices correct? So that should always be
> hitting the status XML parser too AFAICT.


I *think* that's correct, but it's been too long since I looked at the code.


>   That would make it easier to
> audit any TYPE_NETWORK paths in the status parser as well
>
> qemu_driver.c processNicRxFilterChangedEvent also has a
>
> if (virDomainNetGetActualType(def) == VIR_DOMAIN_NET_TYPE_NETWORK) {
>
> which looks sketchy after this. And it's involving bandwidth stuff so it
> may affect the previous patch too.

virDomainNetResolveActualType() also needs to be adjusted.


Also libxl handles the two types differently in libxlMakeNic, although I 
don't know enough about Xen networking to know which is way is better.


Those are the only additional places I could find.

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH v3 05/36] network: use 'bridge' as actual type instead of 'network'
Posted by Cole Robinson 6 years, 10 months ago 
On 3/21/19 10:16 PM, Laine Stump wrote:
> On 3/21/19 9:07 PM, Cole Robinson wrote:
>> On 3/19/19 8:46 AM, Daniel P. Berrangé wrote:
>>> Ports allocated on virtual networks with type=nat|route|open all get
>>> given an actual type of 'network'.
>>>
>>> Only ports in networks with type=bridge use an actual type of 'bridge'.
>>>
>>> This distinction makes little sense since the virtualization drivers
>>> will treat both actual types in exactly the same way, as they're all
>>> just bridge devices a VM needs to be connected to.
>>>
>>> This doesn't affect user visible XML since the "actual" device XML
>>> is internal only, but we need code to convert the data upgrades.
>>>
>>> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
>>> ---
>>>   src/network/bridge_driver.c | 20 ++++++++++++--------
>>>   1 file changed, 12 insertions(+), 8 deletions(-)
>>>
>> Conceptually this makes sense. I wonder what the original motivation for
>> the differentiation was.
> 
> 
> I remember there was *some* reason for it, but it's very possible it's
> not valid. So lacking any solid memory from that distant time, one thing
> to do is audit all occurrences of VIR_DOMAIN_NET_TYPE_NETWORK where the
> actualType is being compared (rather than the NetDef's type), and
> behavior is different from VIR_DOMAIN_NET_TYPE_BRIDGE (which is
> apparently what Cole did, since he's already found most of the
> "interesting" places I found :-)). He mentions one that he found below,
> and he also pointed out the class_id thing during parsing in the
> previous patch, which will now be broken even if we don't support
> bandwidth on unmanaged bridge networks (because class_id is only parsed
> when actualType == NETWORK). I'll see if I find any others with a quick
> search...
> 

It's difficult to audit: to know whether actualType can even be
TYPE_NETWORK after this patch requires knowing if the caller is acting
on a live/starting VM or not which is context dependent.

> 
>> This also makes me wish there was a separate
>> enum for the internal actual->type field, it would make ambiguous code
>> much more readable
>>
>>> diff --git a/src/network/bridge_driver.c b/src/network/bridge_driver.c
>>> index 4770dd1e4e..40122612c8 100644
>>> --- a/src/network/bridge_driver.c
>>> +++ b/src/network/bridge_driver.c
>>> @@ -4454,11 +4454,7 @@ networkAllocateActualDevice(virNetworkPtr net,
>>>       case VIR_NETWORK_FORWARD_NAT:
>>>       case VIR_NETWORK_FORWARD_ROUTE:
>>>       case VIR_NETWORK_FORWARD_OPEN:
>>> -        /* for these forward types, the actual net type really *is*
>>> -         * NETWORK; we just keep the info from the portgroup in
>>> -         * iface->data.network.actual
>>> -         */
>>> -        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_NETWORK;
>>> +        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
>>>             /* we also store the bridge device and macTableManager
>>> settings
>>>            * in iface->data.network.actual->data.bridge for later use
>>> @@ -4832,6 +4828,15 @@ networkNotifyActualDevice(virNetworkPtr net,
>>>                       netdef->bridge) < 0))
>>>               goto error;
>>>   +    /* Older libvirtd uses actualType==network, but we now
>>> +     * just use actualType==bridge, as nothing needs to
>>> +     * distinguish the two cases, and this simplifies virt
>>> +     * drive code */
>>> +    if (actualType == VIR_DOMAIN_NET_TYPE_NETWORK) {
>>> +        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
>>> +        actualType = VIR_DOMAIN_NET_TYPE_BRIDGE;
>>> +    }
>>> +
>> Why do this here and not at the status XML parse time? This code path is
>> only called on reconnected devices correct? So that should always be
>> hitting the status XML parser too AFAICT.
> 
> 
> I *think* that's correct, but it's been too long since I looked at the
> code.
> 
> 
>>   That would make it easier to
>> audit any TYPE_NETWORK paths in the status parser as well
>>
>> qemu_driver.c processNicRxFilterChangedEvent also has a
>>
>> if (virDomainNetGetActualType(def) == VIR_DOMAIN_NET_TYPE_NETWORK) {
>>
>> which looks sketchy after this. And it's involving bandwidth stuff so it
>> may affect the previous patch too.
> 
> virDomainNetResolveActualType() also needs to be adjusted.
> 
> 
> Also libxl handles the two types differently in libxlMakeNic, although I
> don't know enough about Xen networking to know which is way is better.
> 

Patch 8 addresses that case, by removing it entirely :)

- Cole

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH v3 05/36] network: use 'bridge' as actual type instead of 'network'
Posted by Daniel P. Berrangé 6 years, 10 months ago 
On Fri, Mar 22, 2019 at 10:30:08AM -0400, Cole Robinson wrote:
> On 3/21/19 10:16 PM, Laine Stump wrote:
> > On 3/21/19 9:07 PM, Cole Robinson wrote:
> >> On 3/19/19 8:46 AM, Daniel P. Berrangé wrote:
> >>> Ports allocated on virtual networks with type=nat|route|open all get
> >>> given an actual type of 'network'.
> >>>
> >>> Only ports in networks with type=bridge use an actual type of 'bridge'.
> >>>
> >>> This distinction makes little sense since the virtualization drivers
> >>> will treat both actual types in exactly the same way, as they're all
> >>> just bridge devices a VM needs to be connected to.
> >>>
> >>> This doesn't affect user visible XML since the "actual" device XML
> >>> is internal only, but we need code to convert the data upgrades.
> >>>
> >>> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
> >>> ---
> >>>   src/network/bridge_driver.c | 20 ++++++++++++--------
> >>>   1 file changed, 12 insertions(+), 8 deletions(-)
> >>>
> >> Conceptually this makes sense. I wonder what the original motivation for
> >> the differentiation was.
> > 
> > 
> > I remember there was *some* reason for it, but it's very possible it's
> > not valid. So lacking any solid memory from that distant time, one thing
> > to do is audit all occurrences of VIR_DOMAIN_NET_TYPE_NETWORK where the
> > actualType is being compared (rather than the NetDef's type), and
> > behavior is different from VIR_DOMAIN_NET_TYPE_BRIDGE (which is
> > apparently what Cole did, since he's already found most of the
> > "interesting" places I found :-)). He mentions one that he found below,
> > and he also pointed out the class_id thing during parsing in the
> > previous patch, which will now be broken even if we don't support
> > bandwidth on unmanaged bridge networks (because class_id is only parsed
> > when actualType == NETWORK). I'll see if I find any others with a quick
> > search...
> > 
> 
> It's difficult to audit: to know whether actualType can even be
> TYPE_NETWORK after this patch requires knowing if the caller is acting
> on a live/starting VM or not which is context dependent.

The notion of "actual type" should not ever exist for VMs which are
not running. Only once we start the VM and resolve type=network into
a real type, does "actual type" become useful information.

There is a small window where we  are part way though starting
which it might be TYPE_NETWORK but if any code sees that it
indicates a bug in that code trying to access the network info
too early in startup.

The other place we'd see it is during shutdown/teardown of a
VM that failed during our setup process. In this case the switch
just has to allow TYPE_NETWORK but be a no-op.


Regards,
Daniel
-- 
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list
Re: [libvirt] [PATCH v3 05/36] network: use 'bridge' as actual type instead of 'network'
Posted by Daniel P. Berrangé 6 years, 10 months ago 
On Thu, Mar 21, 2019 at 09:07:36PM -0400, Cole Robinson wrote:
> On 3/19/19 8:46 AM, Daniel P. Berrangé wrote:
> > Ports allocated on virtual networks with type=nat|route|open all get
> > given an actual type of 'network'.
> > 
> > Only ports in networks with type=bridge use an actual type of 'bridge'.
> > 
> > This distinction makes little sense since the virtualization drivers
> > will treat both actual types in exactly the same way, as they're all
> > just bridge devices a VM needs to be connected to.
> > 
> > This doesn't affect user visible XML since the "actual" device XML
> > is internal only, but we need code to convert the data upgrades.
> > 
> > Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
> > ---
> >  src/network/bridge_driver.c | 20 ++++++++++++--------
> >  1 file changed, 12 insertions(+), 8 deletions(-)
> > 
> 
> Conceptually this makes sense. I wonder what the original motivation for
> the differentiation was. This also makes me wish there was a separate
> enum for the internal actual->type field, it would make ambiguous code
> much more readable
> 
> > diff --git a/src/network/bridge_driver.c b/src/network/bridge_driver.c
> > index 4770dd1e4e..40122612c8 100644
> > --- a/src/network/bridge_driver.c
> > +++ b/src/network/bridge_driver.c
> > @@ -4454,11 +4454,7 @@ networkAllocateActualDevice(virNetworkPtr net,
> >      case VIR_NETWORK_FORWARD_NAT:
> >      case VIR_NETWORK_FORWARD_ROUTE:
> >      case VIR_NETWORK_FORWARD_OPEN:
> > -        /* for these forward types, the actual net type really *is*
> > -         * NETWORK; we just keep the info from the portgroup in
> > -         * iface->data.network.actual
> > -         */
> > -        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_NETWORK;
> > +        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
> >  
> >          /* we also store the bridge device and macTableManager settings
> >           * in iface->data.network.actual->data.bridge for later use
> > @@ -4832,6 +4828,15 @@ networkNotifyActualDevice(virNetworkPtr net,
> >                      netdef->bridge) < 0))
> >              goto error;
> >  
> > +    /* Older libvirtd uses actualType==network, but we now
> > +     * just use actualType==bridge, as nothing needs to
> > +     * distinguish the two cases, and this simplifies virt
> > +     * drive code */
> > +    if (actualType == VIR_DOMAIN_NET_TYPE_NETWORK) {
> > +        iface->data.network.actual->type = VIR_DOMAIN_NET_TYPE_BRIDGE;
> > +        actualType = VIR_DOMAIN_NET_TYPE_BRIDGE;
> > +    }
> > +
> 
> Why do this here and not at the status XML parse time? This code path is
> only called on reconnected devices correct? So that should always be
> hitting the status XML parser too AFAICT. That would make it easier to
> audit any TYPE_NETWORK paths in the status parser as well

This has to come after the code that is a few lines higher outside
the diffstat. So the XML parser is too early. That said we might
delete the earlier code entirely.

> qemu_driver.c processNicRxFilterChangedEvent also has a
> 
> if (virDomainNetGetActualType(def) == VIR_DOMAIN_NET_TYPE_NETWORK) {
> 
> which looks sketchy after this. And it's involving bandwidth stuff so it
> may affect the previous patch too.

Yeah, that looks like something i missed.

Regards,
Daniel
-- 
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|

--
libvir-list mailing list
libvir-list@redhat.com
https://www.redhat.com/mailman/listinfo/libvir-list

Patchew 2.1-devel-b67e4c2

© 2016 - 2026 Red Hat, Inc.