Re: [PATCH 4/4] first conntrack ID must be 1 not 2

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Patrick McHardy <kaber@trash.net>
To: Jozsef Kadlecsik <kadlec@blackhole.kfki.hu>
Cc: Harald Welte <laforge@netfilter.org>,
	Pablo Neira Ayuso <pablo@netfilter.org>,
	Netfilter Development Mailinglist
	<netfilter-devel@lists.netfilter.org>,
	Amin Azez <azez@ufomechanic.net>,
	Yasuyuki Kozakai <yasuyuki.kozakai@toshiba.co.jp>
Subject: Re: [PATCH 4/4] first conntrack ID must be 1 not 2
Date: Fri, 31 Mar 2006 20:44:56 +0200	[thread overview]
Message-ID: <442D78A8.4050300@trash.net> (raw)
In-Reply-To: <Pine.LNX.4.58.0603312026030.9154@blackhole.kfki.hu>

Jozsef Kadlecsik wrote:
> On Fri, 31 Mar 2006, Patrick McHardy wrote:
> 
> 
>>>>Actually it would still not be unique if connections live
>>>>shorter than a jiffy and are resurrected.
>>>
>>>In which case would there be any harm in it not being unqiue, if it were
>>>the same connection resurrected, why try to avoid having the same id?
>>
>>Besides solving an implementation problem, so ID was meant as a
>>long-term unique identifier. For the life-time of a connection
>>the tuples are already a unique identifier.
>>
>>It's amazing, I've never had so many discussions about a single
>>32 bit field :)
> 
> 
> It's amazingly hard to accept we need it :-).
> 
> Putting aside the implementation problem, there are so many information
> already available in the conntrack entries: tuples, packet and byte
> counters, state, timeout value. Those together can serve as a short-term
> unique identifier, even after the entry is actually deleted. Not
> bulletproof, but in practice those can be sufficient.
> 
> I could not resist... :-))

Me neither :) I was just pointing out the idea behind the ID, not
necessarily condoning it. After discussing it with Rusty in Sevilla,
it became clear that we can provide guarantees similar to filesystems
without it, which seems to be good enough. So I have absolutely
nothing against removing it. In fact, IIRC the last discussion
stopped after I had sent a patch to remove it. I need to dig out that
patch again :)

next prev parent reply	other threads:[~2006-03-31 18:44 UTC|newest]

Thread overview: 40+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-02-13  2:41 [PATCH 4/4] first conntrack ID must be 1 not 2 Pablo Neira Ayuso
2006-02-13 11:20 ` Harald Welte
2006-02-16  8:33   ` Patrick McHardy
2006-02-16  8:47     ` Jozsef Kadlecsik
2006-02-16  9:02       ` Patrick McHardy
2006-02-16  9:11         ` Jozsef Kadlecsik
2006-02-16  9:14           ` Patrick McHardy
2006-02-16  9:36             ` Jozsef Kadlecsik
2006-02-16 20:09               ` Patrick McHardy
2006-02-17  8:18                 ` Jozsef Kadlecsik
2006-02-17  8:45                   ` Martin Josefsson
2006-02-17  9:30                     ` Jozsef Kadlecsik
2006-02-17 18:41                       ` Jozsef Kadlecsik
2006-03-04 16:23                         ` Hashtrie testing (was: Re: [PATCH 4/4] first conntrack ID must be 1 not 2) Martin Josefsson
2006-03-05  9:49                           ` Jozsef Kadlecsik
2006-03-05 13:24                             ` Martin Josefsson
2006-03-04 20:11                       ` Hashtrie testing2 " Martin Josefsson
2006-03-05 11:24                         ` Jozsef Kadlecsik
2006-03-05 17:48                           ` Martin Josefsson
2006-03-06 13:15                             ` Jozsef Kadlecsik
2006-03-07 18:33                               ` Martin Josefsson
2006-03-08  6:34                                 ` Patrick Schaaf
2006-03-12 18:49                                 ` Martin Josefsson
2006-03-14 11:35                                   ` Jozsef Kadlecsik
2006-03-23 11:27                                   ` Jozsef Kadlecsik
2006-03-23 21:07                                     ` Martin Josefsson
2006-03-25  8:39                                       ` Jozsef Kadlecsik
2006-03-28 12:26                                         ` Jozsef Kadlecsik
2006-03-30  8:28                                 ` Hashtrie testing2, dancing trees Amin Azez
2006-03-31 18:43                                   ` Jozsef Kadlecsik
2006-02-17  8:50                   ` [PATCH 4/4] first conntrack ID must be 1 not 2 Patrick McHardy
2006-03-30  8:31                 ` Amin Azez
2006-03-31  1:11                   ` Patrick McHardy
2006-03-31 18:35                     ` Jozsef Kadlecsik
2006-03-31 18:44                       ` Patrick McHardy [this message]
2006-04-01 19:31                         ` Harald Welte
2006-04-06 11:02                           ` Patrick McHardy
2006-04-11 16:09                             ` Amin Azez
2006-04-11 16:17                               ` Patrick McHardy
     [not found]                                 ` <443CA579.3030908@ufomechanic.net>
2006-04-12 18:30                                   ` Patrick McHardy

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=442D78A8.4050300@trash.net \
    --to=kaber@trash.net \
    --cc=azez@ufomechanic.net \
    --cc=kadlec@blackhole.kfki.hu \
    --cc=laforge@netfilter.org \
    --cc=netfilter-devel@lists.netfilter.org \
    --cc=pablo@netfilter.org \
    --cc=yasuyuki.kozakai@toshiba.co.jp \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.