HP announces OpenSwitch, an open-source network operating system (opens in new tab)

(openswitch.net)

143 pointsnoplay10y ago51 comments

51 comments

40 comments · 11 top-level

ChuckMcM10y ago· 7 in thread

This seems like a good, if belated, move on HPs part. Ethernet switches have become trivial to build with off the shelf parts. If you open up the software then you can focus on things like build quality and reliability.

ju-st10y ago

It sounds too good to me. How will they make money in the Ethernet switching sector?

gricardo9910y ago

the higher-end switches take considerable engineering, just on the hardware side, and are fairly high-margin products. If the networking equipment space becomes OS agnostic, or consolidates around OpenSwitch, this removes one of Cisco's major advantages (their huge installed-base, network OS dominance, customer switching costs), and allows HP (and others) to compete directly on network equipment hardware architecture/performance/cost. More competition in that area would be a very good thing (maybe not so good for Cisco's dominance). It's also good to decouple the hardware from the OS/software, and allow innovation in both areas independently.

1 more reply

tw0410y ago

Candidly - their switches in my experience are garbage. They aren't making money, and they know they can't beat Cisco with a traditional approach. If I had to guess they're hoping that opening things up will make them the vendor of choice for enterprises looking to mimic Google/Facebook. This feels like a hail mary with the future of their presence in the network switching space to me.

jeffasinger10y ago

If this becomes the main type of switch, then HP would be in a great position to offer integrations and consulting.

2 more replies

mzayats10y ago

"all of the above" is probably the correct one :)

noplayOP10y ago

Selling software for central management

pm9010y ago

Its probably aimed at bringing Cisco's revenues down.

epistasis10y ago· 7 in thread

The hardware compatibility list is pretty slim at the moment:

http://www.openswitch.net/documents/user/hardware-compatibil...

mzayats10y ago

The release today is about opening it up for the community participation. Making sure we release it early and not overbaked. So the community can shape the direction. We wanted to have one real HW platform that would be fully functional + Docker container image, which is being heavily used in the development and CIT. Other Broadcom Trident II/Tomahawk based platforms would be quite easy to support. For other ASICs, we would be glad to get their vendors involved.

epistasis10y ago

That seems like a solid strategy. I look forward to the Tomahawk chip, but also support for Trident+ would be great, as there's a large installed base of those. And I'm sure you're already planning supporting a 32x 40Gb Trident II switch, as those are common spine switches.

I could see us switching from Cumulus Linux to Open Switch, with that hardware support, and if Open Switch stays open source. We'd likely even pay for support, if cost competitive.

1 more reply

teacup5010y ago

Is there a kernel in here somewhere? I'm curious about the BCM hardware interface (and I'm hoping this isn't Linux, but ...)

1 more reply

voltagex_10y ago

So I'm guessing this gear is well out of the range of the hobbyist hacker? Is there a virtualized one I can play with instead?

2 more replies

teooet10y ago

More info on the supported switch, which is produced by Accton: http://www.edge-core.com/ProdDtl.asp?sno=457&AS5712-54X

ubercow10y ago

I couldn't even find any pricing details on the "HP Altoline" series.

kijiki10y ago

The same switch, without the HP Altoline branding on it: https://bm-switch.com/index.php/bare-metal-switches/10g-bare...

$5,795.00

victorhugo3133710y ago· 4 in thread

How is this any better/different than Open vSwitch?

http://openvswitch.org/

vault_10y ago

I believe the difference is that Open vSwtich is intended to be used as a software switch similar to how a VM is intended to be a virtual server (and its intended use there would presumably be networking between VMs). While OpenSwitch is intended to be an OS run on an actual physical switch. There seem to be overlaps though since it looks like Open vSwitch will also run as an OS on a physical switch.

pjakma10y ago

OpenVSwitch is a component in OpenSwitch. E.g. OpenSwitch uses OVSDB as its pub/sub configuration store, and also for other state. Other free software / open-source network projects like Quagga have been modified to take their config from that, and store their state to it. Tools like the CLI, the WebUI and REST API then can build on that OVSDB store.

Essentially, one of the aims of OpenSwitch is to build a cohesive API around a wide set of Linux networking tools and daemons, and build a broad community to make it happen.

caust1c10y ago

openvswitch is simply an interface which provides the ability to programmatically configure your network devices.

You could run it on OpenSwitch as the program/module which talks with a controller.

illotum10y ago

More so, there's already a white box switch that runs it, Pica8 switch is basically a Debian distro with OVS and proprietary drivers.

1 more reply

Animats10y ago· 3 in thread

So I look at a random source file, and find:

https://git.openswitch.net/cgit/openswitch/ops-arpmgrd/tree/...

    /* Build hash key for a given vrf name and ip address */
    static int
    get_hash_key(char* vrf_name, char *ip, char *key)
    {
        sprintf(key, "%s-%s", vrf_name, ip);
        return strlen(key);
    } /* get_hash_key */

What could possibly go wrong?

Definitely not thinking hard about security over there.

pjmlp10y ago

Oh, well another example of the typical C code I have seen at many companies.

Just check Herb Sutter's talk at CppCon 2015, to the question who uses static analyzers, about 1% of the audience said yes.

function_seven10y ago

Ha. Kind of like PHP's function name lengths being used as a "hash" back in the day.

But, what contexts is this function used in? Is it supposed to be one-way at all? If not, then this is just a simple way of distributing vrf/ip pairs into buckets. Still smells funny, though.

EDIT: This comment looks like I'm defending the implementation here. I'm not. Seems like it'd me more uniform to just add the bytes in the vrf/IP pair and mod them with something. Seeing a hyphen in the format string of sprintf() is really weird, considering that just he string's length is being used.

Again, assuming this is in no way security-related, then this is just a general, run-of-the-mill WTF.

Animats10y ago

An unchecked "sprintf" is a potential buffer overflow, especially in something like this where the input and output string buffers are parameters to the function.

I didn't even go looking for bad code. I was just curious to see what language they were using. This was near the top of the first file I looked at.

The code looks like C code circa 1990. If a first glance turned up this, what else bad is in there?

1 more reply

you_eeeeeediot10y ago· 3 in thread

Gonna be hard to compete with the likes of Cisco Nexus... I mean after almost 5 years of the Nexus 1000V platform they come to the table with an "open-source" software platform to be used on hardware that no one is currently using?

I could see this getting traction if they announced it was compatible with some of the newer switches

epistasis10y ago

The Nexus 1000V is not really in the same category at all. This is a replacement for NX-OS.

And honestly, I really don't know how Cisco's Nexus line is going to survive at all. They will coast for a while on the population of Cisco certified engineers that don't want to learn new things, but it is literally cheaper for us to buy new hardware and support contracts than it is to renew our Cisco support contract. And the alternatives are far more capable than NX-OS for our ops people.

The Nexus line is effectively dead, as I see it.

technion10y ago

I asked our Cisco representative to offer a competing quote against an HP networking deal, and he responded with a quote for Cisco servers, and Ironport mail filtering.

When I asked him what was going on, he pointed out that he only responds to bids he can win. I told him there were no servers in that opportunity, and he went on to discuss that, from a sales point of view, I have a better chance of pushing servers anyway, than pricing Cisco against HP networking. That's from one of their own guys, and it says a lot.

1 more reply

wmf10y ago

Keep in mind that ODM switches are 1/3 to 1/5 the price of Cisco.

lifeisstillgood10y ago· 3 in thread

As I stopped knowing anything about datacenters around 2001, can anyone tell me what a network operating system is?

I am going to guess large high throughput switches and some degree of software defined networks that knock putting your printers on one C-network and your servers on another into a cock hat

Apart from raw power, is there some way I can reconfigure my network without moving a cable that I previously could not?

(It's late, so just to be sure, I'm not trolling)

andrewstuart210y ago

It's more about tenancy from what I understand. You can give unlimited people access to their own private, encrypted virtual 10.0.0.0/8 block all in the same data center and SDN makes that possible by encapsulating packets in another layer.

One area where a lot of smarts are needed needed, for example, is making sure that you're intelligently routing encrypted packets to the right machines without reverting to a broadcast to every router, switch, and machine in the DC.

I've also heard a lot about people running brand new untested protocols (like TCP replacements) right alongside traditional protocols through SDN.

I'm probably going to do a much worse job of explaining things than the guys who presented at the Open Networking Summit [1]. I highly recommend giving the keynotes a listen.

[1] https://www.youtube.com/user/OpenNetSummit

Edit: I do think this relates to SDN more than a traditional router/switch OS, based on the comments about "traditional and programmatic, declarative control plane." Either way, though, the link above is definitely good stuff.

ju-st10y ago

It's just like the usual IOS or JunOS. It's just open source, thats the only new thing I suppose. This has nothing to do with SDN.

standel10y ago

Actually, to the contrary. It's all about SDN.

It provides open interfaces to interact with the switch through several means like OVSDB, REST API ... or CLI. OpenFlow is not supported yet although will be in near future.

Since it's open source, it also gives you the opportunity to run other agents in the switch control plane ... which is hardly possible with IOS or JunOS.

pm9010y ago· 1 in thread

Their Github organization is empty, but you can see the code at: http://git.openswitch.net/cgit.

mzayats10y ago

main repository is indeed at git.openswitch.net where it's paired with Gerrit for code reviews (review.openswitch.net).

Github mirroring will be set up in about week.

mrmondo10y ago· 1 in thread

In my experience HP has never been good at software or networking - that their two weak points. Will be interesting to see how this pans out.

cenal10y ago

I disagree. HP Networking is a great mid market solution.

If you want a bad network solution check out the LG IPECS line of network gear.

victorhugo3133710y ago

"OpenSwitch is a network operating system for disaggregated switches that are built around OCP compliant hardware and that utilizes the ONIE boot loader to install and uninstall network operating systems. It is aimed at accelerating the transition to open networking as well as the adoption of disaggregated data center networks."

readams10y ago

This is a "me too" move by HP. Open network linux already exists, already uses ONIE, and is already a part of the open compute project. http://opennetlinux.org/

This is just a land grab by HP.

cchip10y ago

I was recently polling for some hp Openflow switches; which are not supported here...

Isn't this just another move to sell more switches?

Will there ever be code for some of the older MIPS based switches?

j / k navigate · click thread line to collapse

51 comments

40 comments · 11 top-level

ChuckMcM10y ago· 7 in thread

ju-st10y ago

It sounds too good to me. How will they make money in the Ethernet switching sector?

gricardo9910y ago

1 more reply

tw0410y ago

jeffasinger10y ago

If this becomes the main type of switch, then HP would be in a great position to offer integrations and consulting.

2 more replies

mzayats10y ago

"all of the above" is probably the correct one :)

noplayOP10y ago

Selling software for central management

pm9010y ago

Its probably aimed at bringing Cisco's revenues down.

epistasis10y ago· 7 in thread

The hardware compatibility list is pretty slim at the moment:

http://www.openswitch.net/documents/user/hardware-compatibil...

mzayats10y ago

epistasis10y ago

I could see us switching from Cumulus Linux to Open Switch, with that hardware support, and if Open Switch stays open source. We'd likely even pay for support, if cost competitive.

1 more reply

teacup5010y ago

Is there a kernel in here somewhere? I'm curious about the BCM hardware interface (and I'm hoping this isn't Linux, but ...)

1 more reply

voltagex_10y ago

So I'm guessing this gear is well out of the range of the hobbyist hacker? Is there a virtualized one I can play with instead?

2 more replies

teooet10y ago

More info on the supported switch, which is produced by Accton: http://www.edge-core.com/ProdDtl.asp?sno=457&AS5712-54X

ubercow10y ago

I couldn't even find any pricing details on the "HP Altoline" series.

kijiki10y ago

The same switch, without the HP Altoline branding on it: https://bm-switch.com/index.php/bare-metal-switches/10g-bare...

$5,795.00

victorhugo3133710y ago· 4 in thread

How is this any better/different than Open vSwitch?

http://openvswitch.org/

vault_10y ago

pjakma10y ago

Essentially, one of the aims of OpenSwitch is to build a cohesive API around a wide set of Linux networking tools and daemons, and build a broad community to make it happen.

caust1c10y ago

openvswitch is simply an interface which provides the ability to programmatically configure your network devices.

You could run it on OpenSwitch as the program/module which talks with a controller.

illotum10y ago

More so, there's already a white box switch that runs it, Pica8 switch is basically a Debian distro with OVS and proprietary drivers.

1 more reply

Animats10y ago· 3 in thread

So I look at a random source file, and find:

https://git.openswitch.net/cgit/openswitch/ops-arpmgrd/tree/...

    /* Build hash key for a given vrf name and ip address */
    static int
    get_hash_key(char* vrf_name, char *ip, char *key)
    {
        sprintf(key, "%s-%s", vrf_name, ip);
        return strlen(key);
    } /* get_hash_key */

What could possibly go wrong?

Definitely not thinking hard about security over there.

pjmlp10y ago

Oh, well another example of the typical C code I have seen at many companies.

Just check Herb Sutter's talk at CppCon 2015, to the question who uses static analyzers, about 1% of the audience said yes.

function_seven10y ago

Ha. Kind of like PHP's function name lengths being used as a "hash" back in the day.

But, what contexts is this function used in? Is it supposed to be one-way at all? If not, then this is just a simple way of distributing vrf/ip pairs into buckets. Still smells funny, though.

Again, assuming this is in no way security-related, then this is just a general, run-of-the-mill WTF.

Animats10y ago

An unchecked "sprintf" is a potential buffer overflow, especially in something like this where the input and output string buffers are parameters to the function.

I didn't even go looking for bad code. I was just curious to see what language they were using. This was near the top of the first file I looked at.

The code looks like C code circa 1990. If a first glance turned up this, what else bad is in there?

1 more reply

you_eeeeeediot10y ago· 3 in thread

I could see this getting traction if they announced it was compatible with some of the newer switches

epistasis10y ago

The Nexus 1000V is not really in the same category at all. This is a replacement for NX-OS.

The Nexus line is effectively dead, as I see it.

technion10y ago

I asked our Cisco representative to offer a competing quote against an HP networking deal, and he responded with a quote for Cisco servers, and Ironport mail filtering.

1 more reply

wmf10y ago

Keep in mind that ODM switches are 1/3 to 1/5 the price of Cisco.

lifeisstillgood10y ago· 3 in thread

As I stopped knowing anything about datacenters around 2001, can anyone tell me what a network operating system is?

I am going to guess large high throughput switches and some degree of software defined networks that knock putting your printers on one C-network and your servers on another into a cock hat

Apart from raw power, is there some way I can reconfigure my network without moving a cable that I previously could not?

(It's late, so just to be sure, I'm not trolling)

andrewstuart210y ago

I've also heard a lot about people running brand new untested protocols (like TCP replacements) right alongside traditional protocols through SDN.

I'm probably going to do a much worse job of explaining things than the guys who presented at the Open Networking Summit [1]. I highly recommend giving the keynotes a listen.

[1] https://www.youtube.com/user/OpenNetSummit

ju-st10y ago

It's just like the usual IOS or JunOS. It's just open source, thats the only new thing I suppose. This has nothing to do with SDN.

standel10y ago

Actually, to the contrary. It's all about SDN.

It provides open interfaces to interact with the switch through several means like OVSDB, REST API ... or CLI. OpenFlow is not supported yet although will be in near future.

Since it's open source, it also gives you the opportunity to run other agents in the switch control plane ... which is hardly possible with IOS or JunOS.

pm9010y ago· 1 in thread

Their Github organization is empty, but you can see the code at: http://git.openswitch.net/cgit.

mzayats10y ago

main repository is indeed at git.openswitch.net where it's paired with Gerrit for code reviews (review.openswitch.net).

Github mirroring will be set up in about week.

mrmondo10y ago· 1 in thread

In my experience HP has never been good at software or networking - that their two weak points. Will be interesting to see how this pans out.

cenal10y ago

I disagree. HP Networking is a great mid market solution.

If you want a bad network solution check out the LG IPECS line of network gear.

victorhugo3133710y ago

readams10y ago

This is a "me too" move by HP. Open network linux already exists, already uses ONIE, and is already a part of the open compute project. http://opennetlinux.org/

This is just a land grab by HP.

cchip10y ago

I was recently polling for some hp Openflow switches; which are not supported here...

Isn't this just another move to sell more switches?

Will there ever be code for some of the older MIPS based switches?

j / k navigate · click thread line to collapse