git.kernel.dk Git - linux-block.git/commit

author	Chris Mi <cmi@nvidia.com>
	Thu, 27 Jun 2024 18:02:37 +0000 (21:02 +0300)
committer	David S. Miller <davem@davemloft.net>
	Fri, 28 Jun 2024 11:58:11 +0000 (12:58 +0100)
commit	b20c2fb45470d0c7a603613c9cfa5d45720e17f2
tree	ab5d75317e55093c81d4c3bf1ecee9c18ffb23fa	tree \| snapshot
parent	5dbf647367e86488632a531bcc8685c37b1b5a51	commit \| diff

net/mlx5: E-switch, Create ingress ACL when needed

Currently, ingress acl is used for three features. It is created only
when vport metadata match and prio tag are enabled. But active-backup
lag mode also uses it. It is independent of vport metadata match and
prio tag. And vport metadata match can be disabled using the
following devlink command:

# devlink dev param set pci/0000:08:00.0 name esw_port_metadata \
value false cmode runtime

If ingress acl is not created, will hit panic when creating drop rule
for active-backup lag mode. If always create it, there will be about
5% performance degradation.

Fix it by creating ingress acl when needed. If esw_port_metadata is
true, ingress acl exists, then create drop rule using existing
ingress acl. If esw_port_metadata is false, create ingress acl and
then create drop rule.

Fixes: 1749c4c51c16 ("net/mlx5: E-switch, add drop rule support to ingress ACL")
Signed-off-by: Chris Mi <cmi@nvidia.com>
Signed-off-by: Tariq Toukan <tariqt@nvidia.com>
Signed-off-by: David S. Miller <davem@davemloft.net>