pisces a programmable protocol independent software switch
play

PISCES: A Programmable, Protocol-Independent Software Switch - PowerPoint PPT Presentation

Dec 23, 2023 •1.03k likes •1.34k views

PISCES: A Programmable, Protocol-Independent Software Switch Muhammad Shahbaz, Sean Choi , Ben Pfaff, Changhoon Kim, Nick Feamster, Nick McKeown, and Jennifer Rexford Fixed Set of Protocols Fixed-Function Switch Chip Ethernet TCP HTTP UDP

  1. PISCES: A Programmable, Protocol-Independent Software Switch Muhammad Shahbaz, Sean Choi , Ben Pfaff, Changhoon Kim, Nick Feamster, Nick McKeown, and Jennifer Rexford

  2. Fixed Set of Protocols Fixed-Function Switch Chip Ethernet TCP HTTP UDP IPv4 BGP TLS IPv6 2

  3. • Ease of Adding new protocols • Ease of Removing unused protocols • Gain greater Visibility into the network • Perform network functions at the switch 3

  4. Programmable Switching Chip Custom Protocols Ethernet TCP HTTP CUSTOM_P IPv4 BGP TLS IPv6 4

  5. VM VM Software Switch Virtual Port Physical Port 5

  6. Approx. Number of Physical Ports vs. Virtual Ports in Global Data Centers [1] 60 40 20 Millions 0 2010 2011 2012 2013 2014 2015 Phyical Ports Virtual Ports [1] Martin Casado, VMWorld 2013 6

  7. It should be EASY to program software switches! Not really… 7

  8. Software Switch Kernel Fast Packet Forwarding DPDK 8

  9. Requires domain expertise in: Software Switch - Network protocol design - Kernel development Slow to release changes Parser Packet Processing Logic Match-Action Pipeline Specialized APIs Kernel DPDK 9

  10. To add TCP Flag in Open vSwitch… Software Switch changed 20 files and 370 lines of code [1] Weeks of development and Test Parser Match-Action Pipeline Kernel DPDK [1] https://github.com/openvswitch/ovs/commit/dc235f7fbcff 10

  11. We can do this in 4 lines and within minutes with PISCES! header_type tcp_t { header_type flow_t { fields { fields { srcPort : 16; ... dstPort : 16; tcp_flags_pad : 4; seqNo : 32; tcp_flags : 12; ackNo : 32; ... dataOffset : 4; } res : 4; } tcp_flags : 12; window : 16; parser tcp { checksum : 16; extract(tcp); urgentPtr : 16; set_metadata(flow.tcp_flags, } tcp.tcp_flags); } return ingress; } 11

  12. Software Switch Parser Match-Action Pipeline Kernel DPDK 12

  13. TCP Header Domain-Specific Language (DSL) header_type tcp_t { fields { Parser Match-Action Pipeline srcPort : 16; dstPort : 16; seqNo : 32; ackNo : 32; dataOffset : 4; Compile res : 4; window : 16; checksum : 16; Software Switch urgentPtr : 16; } Parser Match-Action Pipeline } parser tcp { extract(tcp); Kernel DPDK return ingress; } ... 13

  14. Domain-Specific Language Domain-Specific Language 2 PISCES is a software switch that takes Parser Match-Action Pipeline Parser Match-Action Pipeline a Domain-Specific Language input • Compile and outputs a customized Software Switch Switch 2 a Software Switch Target • Parser Match-Action Pipeline Parser Match-Action Pipeline Kernel DPDK Kernel DPDK 14

  15. P4 [1] P4 is an open-source language . [1] Parser Match-Action Pipeline Easily defines - Packet headers and fields Compile - Parser - Actions OVS - Match-Action Tables Parser Match-Action Pipeline Kernel DPDK [1] http://p4.org 15

  16. P4 Parser Match-Action Pipeline 341 lines of P4 code Compile Native OVS Packet Processing Logic OVS Parser Match-Action Pipeline 14,535 lines of C code Kernel DPDK 16

  17. header_type tcp_t { header_type tcpv2_t { fields { fields { srcPort : 16; P4 Program srcPort : 16; dstPort : 16; dstPort : 16; seqNo : 32; seqNo : 32; ackNo : 32; PISCES ackNo : 32; dataOffset : 4; dataOffset : 4; res : 4; res : 4; Compiler window : 16; tcp_flags : 8; checksum : 16; window : 16; urgentPtr : 16; checksum : 16; } urgentPtr : 16; } parse match action } parser tcp { P.I. OVS } extract(tcp); parser tcpv2 { return ingress; extract(tcpv2); } set_metadata(flow.tcp_flags, ... tcpv2.tcp_flags); return ingress; OVS Executable } ... 17

  18. P4 Parser Match-Action Pipeline Performance Overhead? Compile OVS Parser Match-Action Pipeline Kernel DPDK 18

  19. Throughput on Eth + IPv4 + ACL benchmark application 50 43.00 45 Throughput (Gbps) 40 33.17 35 25.71 30 23.35 25 19.00 PISCES v0.1 20 13.43 13.62 15 OVS 8.29 10 5 0 64 128 192 256 Packet Size (Bytes) Performance overhead of ~ 40% 19

  20. Cause for the Overhead Egress Ingress Packet Checksum Checksum Packet Match-Action Parser Verify Update Deparser Tables CPU Cycles per Packet 20

  21. Extra CPU cycles are consumed by • Checksum computation • Packet header editing mode and more… 21

  22. Checksum Inefficiencies Checksum Update ( Checksum Verify ( version, ihl, diffserv, totalLen, version, ihl, diffserv, totalLen, identification, flags, fragOffset, identification, flags, fragOffset, ttl, protocol, hdrChecksum, ttl, protocol, hdrChecksum, srcAddr, dstAddr) srcAddr, dstAddr) Egress Ingress Match-Action Packet Checksum Checksum Pipeline Parser Verify Update 22

  23. Checksum Inefficiencies Checksum Verify ( version, ihl, diffserv, totalLen, Incremental Checksum Update ( ttl ) identification, flags, fragOffset, ttl, protocol, hdrChecksum, srcAddr, dstAddr) Egress Ingress Checksum Packet Checksum Decrement(ttl) Verify Parser Update 23

  24. Post-Pipeline Editing Egress Ingress Packet Checksum Checksum Packet Parser Verify Match-Action Update Deparser Tables Ingress Packet Egress Packet Header Fields 24

  25. Inline Editing Ingress Packet Egress Packet Ingress Packet Egress Match-Action Parser Tables 25

  26. Editing Mode Editing Mode Advantage Advantage Disadvantage Disadvantage Post-Pipeline Post-Pipeline Packet header size is Extra copy of headers Extra copy of headers adjusted only once Inline Inline No extra copy of headers No extra copy of headers Packet header size is adjusted multiple times 26

  27. PISCES automatically chooses between • Inline Editing • Post-pipeline Editing Egress Ingress Packet Checksum Checksum Packet Match-Action Parser Verify Update Deparser Tables 27

  28. Throughput on Eth + IPv4 + ACL benchmark application 16 13.43 PISCES v0.1 13.32 12.56 12.28 Throughput (Gbps) 14 Incremental Checksum 12 Editing Mode Selection 10 7.59 PISCES v1.0 8 Native OVS 6 4 2 0 64 Performance overhead of Packet Size (Bytes) < 2% 28

  29. Number of Files Changed Lines of Code Changed 28 411 30 450 370 400 25 350 20 18 20 300 250 15 170 200 10 150 100 5 1 1 1 50 5 6 4 0 0 Connection Label Tunnel OAM Flag TCP Flag Connection Label Tunnel OAM Flag TCP Flag Native OVS PISCES Native OVS PISCES 29

  30. A method to quickly develop and deploy packet • processing logic on a software switch With hardly any performance cost! • Learn more and Try PISCES here: http://pisces.cs.princeton.edu 30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

PISCES:'A'Programmable,'Protocol4 Independent'So8ware'Switch' [SIGCOMM'2016] ' Sean%Choi%

PISCES:'A'Programmable,'Protocol4 Independent'So8ware'Switch' [SIGCOMM'2016] ' Sean%Choi%

PISCES:'A'Programmable,'Protocol4 Independent'So8ware'Switch' [SIGCOMM'2016] ' Sean%Choi% Slide'Credits'to' Professor'Nick'McKeown'and'Muhammad'Shahbaz' Outline' MoLvaLons'and'history'of'SDN'' Use'cases'of'SDN'

999 views • 80 slides
Programmable Data Plane at Terabit Speeds Milad Sharif SOFTWARE ENGINEER PISA: Protocol

Programmable Data Plane at Terabit Speeds Milad Sharif SOFTWARE ENGINEER PISA: Protocol

AUGUST 2018 Programmable Data Plane at Terabit Speeds Milad Sharif SOFTWARE ENGINEER PISA: Protocol Independent Switch Architecture PISA Block Diagram Match+Action Stage Memory ALU Programmable Programmable Match-Action Pipeline

627 views • 20 slides
PISA: Protocol Independent Switch Architecture [Sigcomm 2013] Match+AcHon ALU Memory

PISA: Protocol Independent Switch Architecture [Sigcomm 2013] Match+AcHon ALU Memory

Programming the Forwarding Plane Nick McKeown Stanford University PISA: Protocol Independent Switch Architecture [Sigcomm 2013] Match+AcHon ALU Memory Programmable Parser 2 PISA: Protocol Independent Switch Architecture Match+AcHon

694 views • 26 slides
Programmable Switch Hardware ECE/CS598HPN Radhika Mittal Conventional SDN Programmable

Programmable Switch Hardware ECE/CS598HPN Radhika Mittal Conventional SDN Programmable

Programmable Switch Hardware ECE/CS598HPN Radhika Mittal Conventional SDN Programmable control plane . Data plane can support high bandwidth. But has limited flexibility. Restricted to conventional packet protocols. Software

556 views • 40 slides
Exploring the Pisces-Perseus Supercluster (PPS) with FAST Li Xiao Ming Zhu Mei Ai FAST

Exploring the Pisces-Perseus Supercluster (PPS) with FAST Li Xiao Ming Zhu Mei Ai FAST

Exploring the Pisces-Perseus Supercluster (PPS) with FAST Li Xiao Ming Zhu Mei Ai FAST Martha Haynes, Riccardo Giovanelli Cornell 2014 5.20 GBT Outline Overview of PPS Infall motion towards PPS Background on

258 views • 21 slides
Polarization independent microsecond electro-optic switch Mohammad Mohammadimasoudi, Jungsoon

Polarization independent microsecond electro-optic switch Mohammad Mohammadimasoudi, Jungsoon

Polarization independent microsecond electro-optic switch Mohammad Mohammadimasoudi, Jungsoon Shin, Keechang Lee, Kristiaan Neyts,Jeroen Beeckman 18th Annual Workshop of the IEEE Photonics Benelux Chapter 1 of 17 Mohammad MohammadiMasoudi

335 views • 18 slides
Software Component Protocol Inference Tao Xie General Examination Presentation Dept. of

Software Component Protocol Inference Tao Xie General Examination Presentation Dept. of

Software Component Protocol Inference Tao Xie General Examination Presentation Dept. of Computer Science and Engineering University of Washington 6 June 2003 1 Outline Background Overview of protocol inference Dynamic protocol

810 views • 52 slides
Fugue: Annotations for Protocol Checking Reading: The Fugue Protocol Checker: Is Your Software

Fugue: Annotations for Protocol Checking Reading: The Fugue Protocol Checker: Is Your Software

Fugue: Annotations for Protocol Checking Reading: The Fugue Protocol Checker: Is Your Software Baroque? 17-654/17-765 Analysis of Software Artifacts Jonathan Aldrich Find the Bug! 2/22/2005 4 Find the Bug! 2/22/2005 6 Specifications(1)

338 views • 15 slides
Resolution Independent NURBS Curves Rendering using Programmable Graphics Pipeline Rami Santina

Resolution Independent NURBS Curves Rendering using Programmable Graphics Pipeline Rami Santina

Resolution Independent NURBS Curves Rendering using Programmable Graphics Pipeline Rami Santina CCT International Graphicon 2011 Moscow, Russia September 2011 Motivation Visualize NURBS Curves: Resolution independence Fast

589 views • 17 slides
Software Defined Networking Is it really the future of networking? And are the big switch vendors

Software Defined Networking Is it really the future of networking? And are the big switch vendors

Software Defined Networking Is it really the future of networking? And are the big switch vendors finished? 0 Data Centers a network crunch More Traffic Complexity More Dollars Less Latency Infiniband Fiber Channel More Servers

240 views • 9 slides
NEPP Update of Independent Single Event Upset Field Programmable Gate Array Testing Melanie

NEPP Update of Independent Single Event Upset Field Programmable Gate Array Testing Melanie

https://ntrs.nasa.gov/search.jsp?R=20170005805 2017-12-10T00:44:12+00:00Z NEPP Update of Independent Single Event Upset Field Programmable Gate Array Testing Melanie Berg, AS&amp;D Inc. in support of the NEPP Program and NASA/GSFC

682 views • 50 slides
FAB: Towards Flow-aware Bu fg er Sharing in Programmable Switches Maria Apostolaki Joint work

FAB: Towards Flow-aware Bu fg er Sharing in Programmable Switches Maria Apostolaki Joint work

FAB: Towards Flow-aware Bu fg er Sharing in Programmable Switches Maria Apostolaki Joint work with Laurent Vanbever &amp; Manya Ghobadi An old story An old story Fan-in causing queue built-up Switch Senders Receivers An

1.04k views • 85 slides
The Internet of Programmable Things Kasper Lund Background Kasper Lund, software engineer @

The Internet of Programmable Things Kasper Lund Background Kasper Lund, software engineer @

The Internet of Programmable Things Kasper Lund Background Kasper Lund, software engineer @ Google Projects: - OOVM embedded Smalltalk system - V8 high-performance JavaScript engine - Dart structured programming for the web An explosion

547 views • 50 slides
State Abstractions for Programmable Switches Lior Zeno , Dan R. K. Ports, Jacob Nelson, Mark

State Abstractions for Programmable Switches Lior Zeno , Dan R. K. Ports, Jacob Nelson, Mark

SwiShmem: Distributed Shared State Abstractions for Programmable Switches Lior Zeno , Dan R. K. Ports, Jacob Nelson, Mark Silberstein Hardware Trend: PISA Barefoot Tofino Broadcom Trident NVIDIA Networking Spectrum Current Trend: In-Switch

306 views • 17 slides
Multicast Protocols IGMP IP Group Membership Protocol DVMRP DV Multicast Routing Protocol

Multicast Protocols IGMP IP Group Membership Protocol DVMRP DV Multicast Routing Protocol

Multicast Protocols IGMP IP Group Membership Protocol DVMRP DV Multicast Routing Protocol MOSPF Multicast OSPF PIM Protocol Independent Multicast S-38.2121 / Fall-2007 / RKa, NB Multicast2-1 Multicast in local area networks

489 views • 25 slides
What is i i KP KP? ? i KP i KP: : i i - -Key Key- -Protocol Protocol What is i

What is i i KP KP? ? i KP i KP: : i i - -Key Key- -Protocol Protocol What is i

What is i i KP KP? ? i KP i KP: : i i - -Key Key- -Protocol Protocol What is i -Key-Protocol, i = 1, 2, 3, Family of protocols Secure electronic payment Based on credit card payments Christopher Hsu Can be extended

407 views • 4 slides
Is End-to-End Integrity Verification Really End- to-End? Ahmed Alhussen, Batyr Charyyev, and Engin

Is End-to-End Integrity Verification Really End- to-End? Ahmed Alhussen, Batyr Charyyev, and Engin

Is End-to-End Integrity Verification Really End- to-End? Ahmed Alhussen, Batyr Charyyev, and Engin Arslan Whats End-to-End Integrity Verification Data corruption may occur during transfers Faulty equipment, transient errors etc.

523 views • 13 slides
Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits

Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits

Cryptographic Checksums Mathematical function to generate a set of k bits from a set of n bits (where k n ). k is smaller then n except in unusual circumstances Example: ASCII parity bit ASCII has 7 bits; 8th bit is

979 views • 40 slides
Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment

Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment

Fault Tolerance For Sparse Linear Algebra Computations Implemented In A Grid Environment Experiments with Fault Tolerant Linear Algebra Algorithms Jack Dongarra Jeffery Chen Zhiao Shi Asim YarKhan University of Tennessee Fault Tolerance:

412 views • 22 slides
Crash recovery Organization 13: Failure and Recovery Boris Glavic Slides: adapted from a

Crash recovery Organization 13: Failure and Recovery Boris Glavic Slides: adapted from a

Now CS 525: Advanced Database Crash recovery Organization 13: Failure and Recovery Boris Glavic Slides: adapted from a course taught by Hector Garcia-Molina, Stanford InfoLab CS 525 Notes 13 - Failure and Recovery 1 CS 525 Notes 13 -

494 views • 23 slides
Introduction CS 4410 Operating Systems [ R. Agarwal, L. Alvisi, A. Bracy, M. George, F. B.

Introduction CS 4410 Operating Systems [ R. Agarwal, L. Alvisi, A. Bracy, M. George, F. B.

Introduction CS 4410 Operating Systems [ R. Agarwal, L. Alvisi, A. Bracy, M. George, F. B. Schneider, E. G. Sirer, R. van Renesse ] What an OS does OS is an intermediary between programs and hardware. OS creates an environment to

697 views • 21 slides
Security improvements in T EX Live Norbert Preining T EX Live Team Tug 2016, Toronto T EX

Security improvements in T EX Live Norbert Preining T EX Live Team Tug 2016, Toronto T EX

Security improvements in T EX Live Norbert Preining T EX Live Team Tug 2016, Toronto T EX Live security 2 Overview status up to (and including) 2015 possible attack vectors integrity and authenticity verification

715 views • 68 slides
Security Public key (e.g., RSA) Message digest (e.g., MD5) Security services

Security Public key (e.g., RSA) Message digest (e.g., MD5) Security services

Overview Cryptography functions Secret key (e.g., DES) Security Public key (e.g., RSA) Message digest (e.g., MD5) Security services Privacy: preventing unauthorized release of information Outline Authentication:

883 views • 5 slides
Pr Pract ctica cal Web-ba based d Delta Sy Sync fo for Cloud Storage Services He Xiao

Pr Pract ctica cal Web-ba based d Delta Sy Sync fo for Cloud Storage Services He Xiao

Pr Pract ctica cal Web-ba based d Delta Sy Sync fo for Cloud Storage Services He Xiao Zhenhua Li Ennan Zhai Tianyin Xu xiaoh16@gmail.com July 10, 2017 Hotstorage17 Ne Network Traffic is Ov Overwhelming in in Clo loud Storag age

622 views • 26 slides

More recommend