[RFC PATCH v2 0/1] Introduce UCI support for configuring DSA VLAN filter rules

Jo-Philipp Wich jo at mein.io
Fri Jul 24 04:37:23 EDT 2020


Hi Luiz,

I mostly agree with your proposal (though I'd call "device_for" simply
"bridge" instead but that's details).

I don't think everything can be simply switched in one go but I do think your
proposal could be broken down into the following measures.

The simple things:

 - Rename "config wifi-device" to "config radio", keep supporting the old
   name for backwards compatibility

 - For network.device sections, make "option name" optional and default it
   to the section name, ignore section if it is anonymous and no option name
   is set

The harder things:

 - Untangle the meaning of "option ifname" - for some protocols it specifies
   the existing device to use, for some protocols, e.g. tunnel ones, it
   specifies the name of the device to create. Ideally we should switch to
   "option device"  instead and introduce an "option name" for those cases
   where the resulting device name is controllable. This would also clear up
   some quirks with protocol types that both use a physical link and create a
   tunnel interface on top like PPPoE. One could then use "option device eth0"
   and "option name pppoe-wan" to specify both the L2 device to use and the
   name of the L3 device to create.

 - Support "@" style notation for "option device" to resolve netdev names once
   the above untangling is done

 - Handling name clashes and device name limitations. Given tunnel devices
   with arbitrary names and - since the introduction of DSA - existing netdevs
   with generic names like "wan", "lan1" etc. clashes between configured
   bridge or tunnel devices and existing netdevs become likely. What should
   happen if a bridge with name "wan" is declared and a "wan" DSA port device
   already exists on the system? What should happen if a chosen name exceeds
   the 15 byte ifname limit?

 - Transform "config wifi-iface" in the wireless config into "config device"
   in the network config and handle it like yet another device type which
   happens to understand the various logical wifi network properties like
   SSID, encryption etc. Problem here: a logical wifi network does not really
   represent a 1:1 relationship to a netdev in all cases, an AP/VLAN interface
   for example will create a new vlan-subdevice for each associated station,
   so one wifi network can result in N+1 wifi netdevs. The only sensible
   use case for such uci "devices" would be associating them with a bridge
   or to leave them alone in case something outside of netifd's realm is
   somehow dealing with the existing vlan netdevs. What likely would not work
   is associating them with a "config interface" that specifies "proto static"
   since multiple netdev would get the same subnets assigned then

Things to consider:

 - In addition to shell based protocol handlers, implement a similar machinery
   for shell based device type handlers to allow to quickly bootstrap uci
   support for new device types (think things like veth, vxlan etc. - I know
   that they have been implemented in C already for netifd, but just serving
   as an example)

 - When actually moving "config wifi-iface" as "config device" to the network
   config, it might make sense to move "config wifi-device" as "config radio"
   to the network config as well, entirely eliminating /etc/config/wireless

 - If we find some way to deal with name clashes (what about MS DOS style
   wan~1 :P), consider eliminating the concept of protocol prefixes like
   "pppoe-", "3g-" etc.


I probably missed many details, but I think we really should consider tidying
up the network configuration.

Regards,
Jo

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openwrt.org/pipermail/openwrt-devel/attachments/20200724/faa3caee/attachment.sig>


More information about the openwrt-devel mailing list