nixos/mptcp: multipath TCP module #59342
Conversation
| fi | ||
|
|
||
|
|
||
| if [ `grep "$DEVICE_IFACE" "$RT_TABLE" | wc -l` -eq 0 ]; then |
| fi | ||
|
|
||
| if [ "$DHCP4_IP_ADDRESS" ]; then | ||
| SUBNET=`echo $IP4_ADDRESS_0 | cut -d \ -f 1 | cut -d / -f 2` |
There was a problem hiding this comment.
Extract this code to a function with a meaningful name, because it's duplicated below.
| echo "$NUM $DEVICE_IFACE" >> "$RT_TABLE" | ||
| fi | ||
|
|
||
| if [ "$DHCP4_IP_ADDRESS" ]; then |
There was a problem hiding this comment.
Did you forget an operator here?
| } | ||
|
|
||
| (mkIf (!config.networking.networkmanager.enable) { | ||
| warnings = [ "You have `networkmanager` disabled. Expect things to break." ]; |
There was a problem hiding this comment.
Spelling (NetworkManager). Why is there only support for NetworkManager?
There was a problem hiding this comment.
because that's the only thing I use.
There was a problem hiding this comment.
I don't use NetworkManager, but I might switch because of this change.
Is there a reason to not enable this by default for everyone?
There was a problem hiding this comment.
Well, given the dependency on the dispatcher script this should be a failure rather a warning.
|
|
||
| RT_TABLE=/etc/iproute2/rt_tables | ||
|
|
||
| if [ "$DEVICE_IFACE" = "lo" ]; then |
There was a problem hiding this comment.
Redundant quotes around lo.
There was a problem hiding this comment.
Thanks for the comments, I can definitely improve the hook (copied from the mptcp wiki) and will do but it should already allow you to get started with mptcp (which is why I hurried with the PR :p ).
|
|
||
| # TODO remove | ||
| echo $PATH | ||
| env > /tmp/if_up_env |
There was a problem hiding this comment.
Insecure use of temporary files. /tmp/if_up_env could be an attacker controlled symlink.
There was a problem hiding this comment.
He said in the comment that he is going to remove that.
There was a problem hiding this comment.
I still added the comment so it won't be forgotten.
| if [ `grep "$DEVICE_IFACE" "$RT_TABLE" | wc -l` -eq 0 ]; then | ||
| logger -p user.info -t mptcp "Adding new routing table $DEVICE_IFACE" | ||
| NUM=$(wc -l < "$RT_TABLE") | ||
| echo "$NUM $DEVICE_IFACE" >> "$RT_TABLE" |
There was a problem hiding this comment.
Why do we need this to be created at runtime rather then controlling the whole etc/iproute2/rt_tables file?
There was a problem hiding this comment.
One big motivation for these multipath solutions (multipath QUIC/MPTCP/SCTP) is to deal with mobility scenarios so you need to handle dynamic usecases.
There was a problem hiding this comment.
By default /etc/iproute2/rt_tables does not exists, which would make:
NUM=$(wc -l < /etc/iproute2/rt_tables)
zsh: no such file or directory: /etc/iproute2/rt_tables
fail. If it is an empty file it would also collide with the local table (number 0)
There was a problem hiding this comment.
Is it needed at all to maintain rt_table for this to work?
There was a problem hiding this comment.
might be fixed by networking.iproute2.enable = true; so.
| ip rule add from "$DHCP4_IP_ADDRESS" table "$DEVICE_IFACE" | ||
| else | ||
| # PPP-interface | ||
| IPADDR=`echo $IP4_ADDRESS_0 | cut -d \ -f 1 | cut -d / -f 1` |
There was a problem hiding this comment.
what's IPv6 :D ? I haven't tested with IPv6 (haven't done much IPv6 in general). I can try but if someone wanna step up before or after the PR, I would be really happy.
| fi | ||
|
|
||
| if [ -z "$DEVICE_IFACE" ]; then | ||
| logger -p user.warn -t mptcp "invalid $DEVICE_IFACE" |
There was a problem hiding this comment.
Is logging to stdout/stderr not better so it would end up in the journald log of network manager?
There was a problem hiding this comment.
logger also ends up in journald. I used it because it was in the base example and seemed good enough: like you can set debug levels and a keyword to grep to ("mptcp" here). Now that I am looking to upstream, stdout/stderr may be better.
Upon test failure, I sometimes want to access the VM to check artifacts/rerun tests. This allows to get path to the test driver via: nixosTests.mptcp.driver.outPath
... when qemu.networkingOptions is overriden and thus there is no default SLIRP interface.
Sane defaults for configuration of MPTCP kernel.
Starts a multihomed VM, configure the redundant scheduler with the msh path manager so that all paths are used. We then launch an iperf session. nix-build -A nixosTests.mptcp .
|
I've spent a fair deal of time looking into the nixos testing infrastructure (also to reuse it in https://github.com/Mic92/nixos-shell) and finally cleaned up the PR. |
|
@grahamc I would very much like to reproduce the error locally. Looking at ofborg's repo, I ran this script to no avail (it succeeds). EDIT: got a solution on IRC |
|
Thank you for your contributions.
|
stale
bot
added
the
2.status: stale
|
let me alone bot, I am still on it :) |
stale
bot
removed
the
2.status: stale
|
I am moving this module and other MPTCP-related software to https://github.com/teto/mptcp-flake. |
Multipath TCP is an IETF extension of TCP that makes use of several TCP connections to speed up transfer/increase reliability/confidentiality. Applications don't have to be changed (yet they can use the new MPTCP API for even better performance), the kernel will use MPTCP when applicable and fall back to TCP otherwise.
I had this in my repo for a while but #59301 convinced me to propose it. It only works with networkmanager for now (you need to update routing tables depending on added/removed interfaces).
Motivation for this change
Things done
sandboxinnix.confon non-NixOS)nix-shell -p nix-review --run "nix-review wip"./result/bin/)nix path-info -Sbefore and after)