[pve-devel] [PATCH qemu-server 1/3] tap_plug: add support for bridge disable learning

Fri, 24 Sep 2021 01:51:29 -0700 

This disabling mac learning && unicast flood for the tap interface

for vmstart, we don't add mac directly to fdb.
We set it latter if it's a migration or a fresh start.

for nic hotplug, we directly add mac to fdb

Signed-off-by: Alexandre Derumier <aderum...@odiso.com>
---
 PVE/QemuServer.pm             | 7 ++++++-
 vm-network-scripts/pve-bridge | 6 +++++-
 2 files changed, 11 insertions(+), 2 deletions(-)

diff --git a/PVE/QemuServer.pm b/PVE/QemuServer.pm
index 0fb8628..1023ede 100644
--- a/PVE/QemuServer.pm
+++ b/PVE/QemuServer.pm
@@ -4867,8 +4867,13 @@ sub vmconfig_update_net {
 
                if ($have_sdn) {
                    PVE::Network::SDN::Zones::tap_plug($iface, 
$newnet->{bridge}, $newnet->{tag}, $newnet->{firewall}, $newnet->{trunks}, 
$newnet->{rate});
+                   PVE::Network::SDN::Zones::add_bridge_fdb($iface, 
$newnet->{macaddr}, $newnet->{bridge}, $newnet->{firewall});
                } else {
-                   PVE::Network::tap_plug($iface, $newnet->{bridge}, 
$newnet->{tag}, $newnet->{firewall}, $newnet->{trunks}, $newnet->{rate});
+                   my $interfaces_config = 
PVE::INotify::read_file('interfaces');
+                   my $bridge = $newnet->{bridge};
+                   my $disablelearning = 1 if 
$interfaces_config->{ifaces}->{$bridge} && 
$interfaces_config->{ifaces}->{$bridge}->{'bridge-disable-mac-learning'};
+                   PVE::Network::tap_plug($iface, $newnet->{bridge}, 
$newnet->{tag}, $newnet->{firewall}, $newnet->{trunks}, $newnet->{rate}, 
$disablelearning);
+                   PVE::Network::add_bridge_fdb($iface, $newnet->{macaddr}, 
$newnet->{firewall}) if $disablelearning;
                }
            } elsif (safe_num_ne($oldnet->{rate}, $newnet->{rate})) {
                # Rate can be applied on its own but any change above needs to
diff --git a/vm-network-scripts/pve-bridge b/vm-network-scripts/pve-bridge
index d37ce33..ced5831 100755
--- a/vm-network-scripts/pve-bridge
+++ b/vm-network-scripts/pve-bridge
@@ -47,8 +47,12 @@ if ($have_sdn) {
     PVE::Network::SDN::Zones::tap_create($iface, $net->{bridge});
     PVE::Network::SDN::Zones::tap_plug($iface, $net->{bridge}, $net->{tag}, 
$net->{firewall}, $net->{trunks}, $net->{rate});
 } else {
+    my $interfaces_config = PVE::INotify::read_file('interfaces');
+    my $bridge = $net->{bridge};
+    my $disablelearning = 1 if $interfaces_config->{ifaces}->{$bridge} && 
$interfaces_config->{ifaces}->{$bridge}->{'bridge-disable-mac-learning'};
+
     PVE::Network::tap_create($iface, $net->{bridge});
-    PVE::Network::tap_plug($iface, $net->{bridge}, $net->{tag}, 
$net->{firewall}, $net->{trunks}, $net->{rate});
+    PVE::Network::tap_plug($iface, $net->{bridge}, $net->{tag}, 
$net->{firewall}, $net->{trunks}, $net->{rate}, $disablelearning);
 }
 
 exit 0;
-- 
2.30.2


_______________________________________________
pve-devel mailing list
pve-devel@lists.proxmox.com
https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel

Reply via email to