CHROMIUM: SFE Conntrack Mark Event Support
Extend SFE Conntrack Event handling to support Mark event
notifications (in addition to existing Destroy event notifications).
When Conntrack notifies SFE of connmark policy change then the
associated SFE flow is dynamically updated to match Conntrack, all
following SFE offloaded packets will have the new Mark applied.
Connmark policies are applied symetrically for both directions of
data flow.
BUG=b:174690382
TEST=Autotest
https://jetstream-autotest.corp.google.com/afe/#tab_id=view_job&object_id=2322426
TEST=System test
Initiated iperf data flow and verified SFE instantiated without
any 'mark' policy. Dynamically updated connmark via
'contrack --update --mark', verfiied Conntrack and SFE 'mark'
policies updated and verified effect was visible at egress
interface via Qdisc selection.
Signed-off-by: Danny J. Mitzel <mitzel@google.com>
Change-Id: Ic37ba9b9a9208cc80b449768a579cd4e84c13442
Reviewed-on: https://chromium-review.googlesource.com/c/chromiumos/third_party/kernel/+/2585759
Reviewed-by: Kan Yan <kyan@chromium.org>
1 file changed
