linux networking
play

Linux Networking Nima Honarmand Spring 2017 :: CSE 506 4- to - PowerPoint PPT Presentation

Nov 23, 2022 •286 likes •596 views

Spring 2017 :: CSE 506 Linux Networking Nima Honarmand Spring 2017 :: CSE 506 4- to 7-Layer Diagram OSI and TCP/IP Stacks (From Understanding Linux Network Internals ) Used in Real World Spring 2017 :: CSE 506 Ethernet (IEEE 802.3)

  1. Spring 2017 :: CSE 506 Linux Networking Nima Honarmand

  2. Spring 2017 :: CSE 506 4- to 7-Layer Diagram • OSI and TCP/IP Stacks (From Understanding Linux Network Internals ) Used in Real World

  3. Spring 2017 :: CSE 506 Ethernet (IEEE 802.3) • LAN (Local Area Network) connection • Simple packet layout: • Header • Type (e.g., IPv4) • source MAC address • destination MAC address • length (up to 1500 bytes) • … • Data block (payload) • Checksum • Higher- level protocols “wrapped” inside payload • “Unreliable” – no guarantee packet will be delivered

  4. Spring 2017 :: CSE 506 Internet Protocol (IP) • 2 flavors: Version 4 and 6 • Version 4 widely used in practice • Version 6 should be used in practice – but isn’t • Public IPv4 address space is practically exhausted (see arin.net) • Provides a network-wide unique address (IP address) • Along with netmask • Netmask determines if IP is on local LAN or not • If destination not on local LAN • Packet sent to LAN’s gateway • At each gateway, payload sent to next hop

  5. Spring 2017 :: CSE 506 Address Resolution Protocol (ARP) • IPs are logical (set in OS with ifconfig or ipconfig ) • OS needs to know where (physically) to send packet • And switch needs to know which port to send it to • Each NIC has a MAC (Media Access Control) address • “physical” address of the NIC • OS needs to translate IP to MAC to send • Broadcast “who has 10.22.17.20” on the LAN • Whoever responds is the physical location • Machines can cheat (spoof) addresses by responding • ARP responses cached to avoid lookup for each packet

  6. Spring 2017 :: CSE 506 User Datagram Protocol (UDP) • Applications on a host are assigned a port number • A simple integer • Multiplexes many applications on one device • Ports below 1k reserved for privileged applications • Simple protocol for communication • Send packet, receive packet • No association between packets in underlying protocol • Application is responsible for dealing with… • Packet ordering • Lost packets • Corruption of content • Flow control • Congestion

  7. Spring 2017 :: CSE 506 Transmission Control Protocol (TCP) • Same port abstraction (1-64k) • But different ports • i.e., TCP port 22 isn’t the same port as UDP port 22 • Higher-level protocol providing end-to-end reliability • Transparent to applications • Lots of features • packet acks, sequence numbers, automatic retry, etc. • Pretty complicated

  8. Spring 2017 :: CSE 506 Web Request Example Source: Understanding Linux Network Internals

  9. Spring 2017 :: CSE 506 User-Level Networking APIs • Programmers rarely create Ethernet frames • Or IP or TCP packets • Most applications use the socket abstraction • Stream of messages or bytes between two applications • Applications specify protocol (TCP or UDP), remote IP address and port number • socket() : create a socket; returns associated file descriptor • bind()/listen()/accept() : waits for incoming connection ( server ) • connect() : connect to remote end ( client ) • send()/recv() : send and receive data • All headers are added/stripped by OS

  10. Spring 2017 :: CSE 506 Linux Implementation • Sockets implemented in the kernel • So are TCP, UDP, and IP • Benefits: • Application not involved in TCP ACKs, retransmit, etc. • If TCP is implemented in library, app wakes up for timers • Kernel trusted with correct delivery of packets • A single system call: • sys_socketcall(call, args) • Has a sub-table of calls, like bind, connect, etc.

  11. Spring 2017 :: CSE 506 Other Networking Services in Linux • In addition to the socket interface, the kernel provides a ton of other services • Bridging (L2 switching) • Loopback and virtual network devices • Routing (L3 switching) • Firewall and filtering • Packet sniffing • … • We only focus on general packet processing for application send and receives

  12. Spring 2017 :: CSE 506 (Part of) Received Packet Processing Source: http://www.cs.unh.edu/cnrg/people/gherrin/linux-net.html

  13. Spring 2017 :: CSE 506 Linux Plumbing • Each message is put in a sk_buff structure • Passed through a stack of protocol handlers • Handlers update bookkeeping, wrap headers, etc. • At the bottom is the device itself (e.g., NIC driver) • Sends/receives packets on the wire

  14. Spring 2017 :: CSE 506 Efficient Packet Processing • Receive side: Moving pointers is better than removing headers • Send side: Prepending headers is more efficient than re- copy head/end vs. data/tail pointers in sk_buff Source: Understanding Linux Network Internals

  15. Spring 2017 :: CSE 506 Interrupt Handler • “Top half” responsible to: • Allocate/get a buffer ( sk_buff ) • Copy received data into the buffer • Initialize a few fields • Call “bottom half” handler • For modern devices: • Systems allocate ring of sk_buffs and give to NIC • Just “take” the buff from the ring • No need to allocate (was done before) • No need to copy data into it (DMA already did it)

  16. Spring 2017 :: CSE 506 Software IRQs (1) • A hardware IRQ is the hardware interrupt line • Use to trigger the top half handler from IDT • Software IRQ is the big/complicated software handler • You know it as the bottom half • Why separate top and bottom halves? • To minimize time in an interrupt handler with other interrupts disabled • Simplifies service routines (defer complicated operations to a more general processing context) • E.g., what if you need to wait for a lock? • or, be put to sleep until your kmalloc() succeeds? • Gives kernel more scheduling flexibility

  17. Spring 2017 :: CSE 506 Software IRQs (2) • How are these implemented in Linux? • Two canonical ways: Softirq and Tasklet • More general than just networking • There is a per-cpu bitmask of pending Soft-IRQs • One bit per Soft IRQ (e.g., NET_RX_SOFTIRQ and NET_TX_SOFTIRQ for network receive and send) • There is a (function, data) tuple associated with each Soft IRQ • Hard IRQ service routine sets the bit in the bitmask • The bit can also be set by other code in the kernel including Soft IRQ code itself • At the right time, the kernel checks the bitmask and calls function(data) for pending Soft IRQs • Right time: Return from exceptions/interrupts/syscalls • Each CPU also has a kernel thread ksoftirqd<CPU#> • Processes pending bottom halves for that CPU • ksoftirqd is nice +19: Lowest priority — only called when nothing else to do

  18. Spring 2017 :: CSE 506 Softirq • Only one instance of softirq will run on a CPU at a time • If interrupted by HW interrupt, will not be called again • Guaranteed that invocation will be finished before start of next • One instance can run on each CPU concurrently • Need to be thread-safe • Must use locks to avoid conflicting on data structures

  19. Spring 2017 :: CSE 506 Tasklet • Special form of softirq • For the faint of heart (and faint of locking prowess) • Constrained to only run one instance at a time on any CPU • Useful for poorly synchronized device drivers • Those that assume a single CPU in the 90’s • Downside: All tasklets are serialized • Regardless of how many cores you have • Even if processing for different devices of the same type • e.g., multiple disks using the same driver

  20. Spring 2017 :: CSE 506 Back to Receive: Bottom Half • For each pending sk_buff : • Pass a copy to any taps (sniffers) • Do any MAC-layer processing, like bridging • Pass a copy to the appropriate protocol handler (e.g., IP) • Recur on protocol handler until you get to a port number • Perform some handling transparently (filtering, ACK, retry) • If good, deliver to associated socket • If bad, drop

  21. Spring 2017 :: CSE 506 Socket Delivery • Once bottom half moves payload into a socket: • Check to see if a task is blocked on input for this socket • If yes, wake it up • Read/recv system calls copy data into application

  22. Spring 2017 :: CSE 506 Socket Sending • Send/write system calls copy data into socket • Allocate sk_buff for data • Be sure to leave plenty of head and tail room! • System call handles protocol in application’s timeslice • Receive handling not counted toward app • Last protocol handler enqueues packet for transmit • If there is space in the TX ring • Interrupt usually signals completion • Interrupt handler frees the sk_buff • Also, adds pending packets to the TX ring if previously full

  23. Spring 2017 :: CSE 506 Receive Livelock • What happens when packets arrive at a very high frequency? • You spend all of your time handling interrupts! • Receive Livelock: Condition when system never makes progress • Because spends all of its time starting to process new packets • Bottom halves never execute • Hard to prioritize other work over interrupts • Better process one packet to completion than to run just the top half on a million

  24. Spring 2017 :: CSE 506 Receive Livelock in Practice Ideal Source: Mogul & Ramakrishnan, ToCS, Aug 1997

  25. Spring 2017 :: CSE 506 Shedding Load • If can’t process all incoming packets, must drop some • If going to drop some packets, better do it early! • Stop taking packets off of the network card • NIC will drop packets once its buffers get full on its own

Recommend

NETWORKING NETWORKING PART 2: LINUX UX commands PART 2: LINUX commands Agenda Agenda Network

NETWORKING NETWORKING PART 2: LINUX UX commands PART 2: LINUX commands Agenda Agenda Network

Moreno Baricevic CNR-INFM DEMOCRITOS Trieste, ITALY INTRO TO INTRO TO NETWORKING NETWORKING PART 2: LINUX UX commands PART 2: LINUX commands Agenda Agenda Network Interfaces Network Interfaces LINUX command line utilities LINUX

598 views • 38 slides
NETWORKING NETWORKING PART RT 2: 2: LI LINUX UX commands PART 2: LINUX commands Agenda

NETWORKING NETWORKING PART RT 2: 2: LI LINUX UX commands PART 2: LINUX commands Agenda

Moreno Baricevic CNR-IOM DEMOCRITOS Trieste, ITALY INTRO TO INTRO TO NETWORKING NETWORKING PART RT 2: 2: LI LINUX UX commands PART 2: LINUX commands Agenda Agenda Network Interfaces Network Interfaces LINUX command line utilities

612 views • 46 slides
CSN09101 Networked Services Week 5 : Networking Week 5 : Networking Module Leader: Dr Gordon

CSN09101 Networked Services Week 5 : Networking Week 5 : Networking Module Leader: Dr Gordon

CSN09101 Networked Services Week 5 : Networking Week 5 : Networking Module Leader: Dr Gordon Russell Lecturers: G. Russell This lecture Linux networking for end systems Linux as a router Linux as a switch Debugging

875 views • 58 slides
Linux Networking and Data Center Operation Challenges Damascene Joachimpillai (DJ) Verizon

Linux Networking and Data Center Operation Challenges Damascene Joachimpillai (DJ) Verizon

Proceedings of NetDev 1.1: The Technical Conference on Linux Networking (February 10th-12th 2016. Seville, Spain) Linux Networking and Data Center Operation Challenges Damascene Joachimpillai (DJ) Verizon Proceedings of NetDev 1.1: The

234 views • 4 slides
Linux Multiqueue Networking RX Multiqueue TX Multiqueue David S. Miller Application- based

Linux Multiqueue Networking RX Multiqueue TX Multiqueue David S. Miller Application- based

Linux Multiqueue Networking David S. Miller Background Linux Multiqueue Networking RX Multiqueue TX Multiqueue David S. Miller Application- based and SW Steering Red Hat Inc. The End Portland, 2009 T RENDS Linux Multiqueue

681 views • 20 slides
LibOS as a regression test framework for Linux networking Hajime Tazaki 2016/02/12 netdev 1.2

LibOS as a regression test framework for Linux networking Hajime Tazaki 2016/02/12 netdev 1.2

Proceedings of NetDev 1.1: The Technical Conference on Linux Networking (February 10th-12th 2016. Seville, Spain) LibOS as a regression test framework for Linux networking Hajime Tazaki 2016/02/12 netdev 1.2 Proceedings of NetDev 1.1: The

613 views • 44 slides
Linux Networking Explained LinuxCon 2016, Toronto Thomas Graf (@tgraf__) Kernel, Cilium &amp;

Linux Networking Explained LinuxCon 2016, Toronto Thomas Graf (@tgraf__) Kernel, Cilium &amp;

Linux Networking Explained LinuxCon 2016, Toronto Thomas Graf (@tgraf__) Kernel, Cilium &amp; Open vSwitch Team Noiro Networks (Cisco) Did you catch part I? Part II: LinuxCon, Toronto, 2016 Linux Networking Explained Network devices,

562 views • 27 slides
Linux Kernel Issues in End Host Systems Wenji Wu, Matt Crawford US-LHC End-to-End Networking

Linux Kernel Issues in End Host Systems Wenji Wu, Matt Crawford US-LHC End-to-End Networking

1 Linux Kernel Issues in End Host Systems Wenji Wu, Matt Crawford US-LHC End-to-End Networking Meeting Fermi National Accelerator Lab, 2006 wenji@fnal.gov; crawdad@fnal.gov 2 Topics Background Linux 2.6 Characteristics Kernel

619 views • 24 slides
TCP/IP Networking and Linux By David F. Skoll Roaring Penguin Software Inc. 17 May 2000

TCP/IP Networking and Linux By David F. Skoll Roaring Penguin Software Inc. 17 May 2000

TCP/IP Networking and Linux By David F. Skoll Roaring Penguin Software Inc. 17 May 2000 http://www.roaringpenguin.com dfs@roaringpenguin.com TCP/IP and Linux: Overview &quot; TCP/IP Basics: &quot; Networks and the Internet &quot; IP Addresses

911 views • 68 slides
Networking In Your Pocket How the Linux networking stack is made to work on Android devices

Networking In Your Pocket How the Linux networking stack is made to work on Android devices

Google Proprietary + Confidential Networking In Your Pocket How the Linux networking stack is made to work on Android devices netdev1.1, Seville, 2016-02-10 {lorenzo,ek}@google.com Google Proprietary + Confidential Proprietary + Confidential

298 views • 29 slides
i p s e t Proceedings of NetDev 1.1: The Technical Conference on Linux Networking (February

i p s e t Proceedings of NetDev 1.1: The Technical Conference on Linux Networking (February

i p s e t Proceedings of NetDev 1.1: The Technical Conference on Linux Networking (February 10th-12th 2016. Seville, Spain) a t o o l f o r f a s t e r , m o r e e ffj c i e n t fj r e w a l l i n g w i t

863 views • 37 slides
Production Snabb Simple, fast software networking with Snabb 20 January 2017 linux.conf.au

Production Snabb Simple, fast software networking with Snabb 20 January 2017 linux.conf.au

Production Snabb Simple, fast software networking with Snabb 20 January 2017 linux.conf.au Andy Wingo wingo@igalia.com @andywingo hey User-space networking is for us! hacker Snabb is a great way to do it! Make a thing with Snabb!

467 views • 45 slides
BGP Here, There and Everywhere Tor Ldre 2 BGP Here, There and Everywhere The networking

BGP Here, There and Everywhere Tor Ldre 2 BGP Here, There and Everywhere The networking

1 BGP Here, There and Everywhere Tor Ldre 2 BGP Here, There and Everywhere The networking revolution is coming now 3 BGP Here, There and Everywhere Extend your code defined network to the data center, using linux on the control plane

564 views • 20 slides
(Linux) Networking Nima Honarmand Fall 2017 :: CSE 306 Network Layer Diagrams OSI and

(Linux) Networking Nima Honarmand Fall 2017 :: CSE 306 Network Layer Diagrams OSI and

Fall 2017 :: CSE 306 (Linux) Networking Nima Honarmand Fall 2017 :: CSE 306 Network Layer Diagrams OSI and TCP/IP Stacks (From Understanding Linux Network Internals ) Used in Real World Fall 2017 :: CSE 306 Ethernet (IEEE 802.3)

615 views • 36 slides
Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client and a server? What is Linux? Linux generally refers to a group of Unix-like free and open-source operating system distributions that use the Linux

563 views • 53 slides
100G Networking Technology Overview Christopher Lameter &lt;cl@linux.com&gt; Fernando Garcia

100G Networking Technology Overview Christopher Lameter &lt;cl@linux.com&gt; Fernando Garcia

100G Networking Technology Overview Christopher Lameter &lt;cl@linux.com&gt; Fernando Garcia &lt;fgarcia@dasgunt.com&gt; 1 Berlin, October 5, 2016 Why 100G now? Capacity and speed requirements on data links keep increasing. Fiber

1.22k views • 26 slides
Scope focused on Linux using Linux terminology the principles are general Assumption knowledge

Scope focused on Linux using Linux terminology the principles are general Assumption knowledge

% Networking % Ji Benc, Red Hat % Advanced Operating Systems, MFF UK Scope focused on Linux using Linux terminology the principles are general Assumption knowledge of OSI model understanding of packet structure basic understanding of

407 views • 11 slides
Networking Updates Roopa Prabhu Aug 14, 2020 Linux Kernel dataplane for an Open standards based

Networking Updates Roopa Prabhu Aug 14, 2020 Linux Kernel dataplane for an Open standards based

Networking Updates Roopa Prabhu Aug 14, 2020 Linux Kernel dataplane for an Open standards based multihoming protocol 2 Traditional Multihoming peerlink switch2 switch1 Host2 Host1 3 Open Multihoming solution with VxLAN Overlay E-VPN

673 views • 11 slides
BPF Turning Linux into a Microservices-aware Operating System About the Speaker Thomas Graf

BPF Turning Linux into a Microservices-aware Operating System About the Speaker Thomas Graf

BPF Turning Linux into a Microservices-aware Operating System About the Speaker Thomas Graf Linux kernel developer for ~15 years working on networking and security Helped write one of the biggest monoliths ever Worked on many

520 views • 27 slides
Hardware Checksumming David S. Miller Red Hat Inc. Proceedings of NetDev 1.1: The Technical

Hardware Checksumming David S. Miller Red Hat Inc. Proceedings of NetDev 1.1: The Technical

Proceedings of NetDev 1.1: The Technical Conference on Linux Networking (February 10th-12th 2016. Seville, Spain) Hardware Checksumming David S. Miller Red Hat Inc. Proceedings of NetDev 1.1: The Technical Conference on Linux Networking

401 views • 16 slides
Herding networking cats: Integrating Linux routing with FusionCLI Stephen Hemminger

Herding networking cats: Integrating Linux routing with FusionCLI Stephen Hemminger

Herding networking cats: Integrating Linux routing with FusionCLI Stephen Hemminger shemminger@vyatta.com Vyatta versions http://vyatta.org http://vyatta.com Free download Subscription livecd Update 2x year Update 4x

645 views • 19 slides
Linux Networking Nima Honarmand (Based on slides by Don Porter and Mike Ferdman) Fall 2014:: CSE

Linux Networking Nima Honarmand (Based on slides by Don Porter and Mike Ferdman) Fall 2014:: CSE

Fall 2014:: CSE 506:: Section 2 (PhD) Linux Networking Nima Honarmand (Based on slides by Don Porter and Mike Ferdman) Fall 2014:: CSE 506:: Section 2 (PhD) 4- to 7-Layer Diagram Used in Read World OSI and TCP/IP Stacks (From Understanding

585 views • 32 slides
Using Your Network 10-07-16 Networking &amp; You What is networking? Benefits of

Using Your Network 10-07-16 Networking &amp; You What is networking? Benefits of

Jordan Borrell Networking &amp; Bioengineering Program Using Your Network 10-07-16 Networking &amp; You What is networking? Benefits of networking. Who do I network with? Family/Friends/Neighbors School Connections

395 views • 14 slides
Linux Kernel Networking Raoul Rivas Kernel vs Application Programming No memory protection

Linux Kernel Networking Raoul Rivas Kernel vs Application Programming No memory protection

Linux Kernel Networking Raoul Rivas Kernel vs Application Programming No memory protection Memory Protection We share memory with Segmentation Fault devices, scheduler Preemption Sometimes no preemption Scheduling

377 views • 25 slides

More recommend