From: Marcelo Ricardo Leitner <marcelo.leitner@gmail.com>
To: Hannes Frederic Sowa <hannes@stressinduktion.org>
Cc: Maximilian Wilhelm <max@rfc2324.org>, netdev@vger.kernel.org
Subject: Re: [RFC] Stable interface index option
Date: Wed, 2 Dec 2015 09:03:35 -0200 [thread overview]
Message-ID: <20151202110335.GA3597@mrl.redhat.com> (raw)
In-Reply-To: <1449014338.3866712.455236865.50F81F7F@webmail.messagingengine.com>
Hi,
On Wed, Dec 02, 2015 at 12:58:58AM +0100, Hannes Frederic Sowa wrote:
> Hello,
>
> On Tue, Dec 1, 2015, at 23:43, Maximilian Wilhelm wrote:
> > How should net-snmp handle cases where new interfaces come up on old
> > and now unused numbers? What should it report? That would escalate the
> > problem a lot IMHO.
>
> ifindexes are only reused when the ifindex allocator wraps around which
> should hopefully take a while and that is exactly my point.
>
> In general the ifindexes are designed to not be reused very fast. Most
> ifindex usage is in socket layer where one specifies which way a packet
> should go in sendto/msg calls to override routing lookups or use link
> local addresses. Imagine an application looks up an interface and
> determines the ifindex to send out data to an ipv6 link local address
> (which needs the ifindex obviously). If we don't bias the ifindex
> selection during device creation time the app will get an error and
> won't race with other tunnels being setup and can handle that
> accordingly because new tunnels simply have new ifindexes until the
> per-namespace counter wraps around. If we have name based policies we
> have to audit user space applications how they do interface name
> selection to protect them against reusing interface names. Based on your
> mail you simply already do ensure that interface names are unique, so
> your monitoring software should use just them.
>
> I simply see this feature being misused way too easily.
This is very similar to processes and their pids. On (small) embedded
systems it's common that a given process will always have the same pid
after boot. Then for some reason a process is restarted and you want it
to have that same pid, which is not good.
Same semantics would apply, I think. Monitoring software has to know how
to handle with that change and cope with it.
I don't know the details but I know that it's also possible to monitor
processes via SNMP, meaning that monitoring apps must already do that
for processes, then why not for interfaces?
Marcelo
next prev parent reply other threads:[~2015-12-02 11:03 UTC|newest]
Thread overview: 21+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-12-01 12:04 [RFC] Stable interface index option Maximilian Wilhelm
2015-12-01 15:34 ` Sowmini Varadhan
2015-12-01 15:50 ` Maximilian Wilhelm
2015-12-01 16:02 ` Hannes Frederic Sowa
2015-12-01 16:06 ` Stephen Hemminger
2015-12-01 19:28 ` David Miller
2015-12-01 20:20 ` Stephen Hemminger
2015-12-01 20:57 ` David Miller
2015-12-01 21:06 ` Sowmini Varadhan
2015-12-01 21:14 ` Hannes Frederic Sowa
2015-12-01 21:44 ` Stephen Hemminger
2015-12-01 21:54 ` Hannes Frederic Sowa
2015-12-01 22:31 ` Stephen Hemminger
2015-12-01 19:27 ` David Miller
2015-12-01 20:26 ` Hannes Frederic Sowa
2015-12-01 22:43 ` Maximilian Wilhelm
2015-12-01 23:58 ` Hannes Frederic Sowa
2015-12-02 1:41 ` Andrew Lunn
2015-12-02 11:03 ` Marcelo Ricardo Leitner [this message]
2015-12-01 16:11 ` Sowmini Varadhan
-- strict thread matches above, loose matches on Subject: below --
2015-12-01 16:10 Maximilian Wilhelm
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20151202110335.GA3597@mrl.redhat.com \
--to=marcelo.leitner@gmail.com \
--cc=hannes@stressinduktion.org \
--cc=max@rfc2324.org \
--cc=netdev@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).