From: Pablo Neira Ayuso <pablo@netfilter.org>
To: Holger Eitzenberger <heitzenberger@astaro.com>
Cc: Patrick McHardy <kaber@trash.net>, netfilter-devel@vger.kernel.org
Subject: Re: [ULOGD RFC 08/30] NFCT: rework
Date: Fri, 01 Feb 2008 17:47:36 +0100 [thread overview]
Message-ID: <47A34D28.2010303@netfilter.org> (raw)
In-Reply-To: <47A34696.5070109@astaro.com>
Holger Eitzenberger wrote:
> Pablo Neira Ayuso wrote:
>> * Default hashtable size reduced to 512, why?
>
> You are still talking about the ulogd-NFCT-plugin.diff, right? Please
> comment on the version as it is at the end of the patchset.
Sorry, I don't understand your patchset logic since I have to apply them
all to understand what you want to do, this is confusing.
>> * This patch checks if every conntrack exists in the kernel every N
>> seconds to handle overruns. Instead, why doesn't it wait for ENOBUFS in
>> the recv buffer and, then try to resync to kernel?
>
> This is one of the future improvements I've only queued locally. As
> this isn't critical I suggest to wait for that.
The point is that I don't understand why we have to apply these NFCT
patches which IMO do a sloppy netlink handling and then wait until this
is completely rewritten again properly... (continue below)
>> * ct_hash_find_seq is O(n). Overruns sometimes happen because the CPU
>> reaches 100% consumption, so if it can't backoff, this function won't
>> help that much in those cases.
>
> [ULOGD RFC 15/30] NFCT: add sequence cache
>
> That patch was provided exactly to solve that issue.
... because AFAICS if we check for ENOBUFS and then resync against the
kernel table using GET_CONNTRACK we won't need the sequence cache later,
will we?
--
"Los honestos son inadaptados sociales" -- Les Luthiers
next prev parent reply other threads:[~2008-02-01 16:47 UTC|newest]
Thread overview: 68+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-01-30 18:58 [ULOGD RFC 00/30] [ULOGD RFC] ulogd V2 improvements, round #1 heitzenberger
2008-01-30 18:58 ` [ULOGD RFC 01/30] Add NACCT output plugin heitzenberger
2008-01-30 18:58 ` [ULOGD RFC 02/30] common.h: added heitzenberger
2008-01-30 18:58 ` [ULOGD RFC 03/30] Replace timer code by working version heitzenberger
2008-02-01 3:42 ` Pablo Neira Ayuso
2008-02-01 8:15 ` Holger Eitzenberger
2008-02-01 9:25 ` Patrick McHardy
2008-02-01 9:43 ` Holger Eitzenberger
2008-02-01 9:51 ` Patrick McHardy
2008-01-30 18:58 ` [ULOGD RFC 04/30] Add IFI list heitzenberger
2008-01-30 18:58 ` [ULOGD RFC 05/30] Add signalling subsystem heitzenberger
2008-02-01 3:46 ` Pablo Neira Ayuso
2008-02-01 8:18 ` Holger Eitzenberger
2008-02-01 9:17 ` Patrick McHardy
2008-02-01 9:30 ` Holger Eitzenberger
2008-02-01 10:11 ` Holger Eitzenberger
2008-01-30 18:58 ` [ULOGD RFC 06/30] Conffile cleanup, use common pr_debug() heitzenberger
2008-01-30 18:58 ` [ULOGD RFC 07/30] Renice to -1 on startup heitzenberger
2008-02-01 3:47 ` Pablo Neira Ayuso
2008-02-01 7:19 ` Patrick McHardy
2008-02-01 9:12 ` Holger Eitzenberger
2008-01-30 18:58 ` [ULOGD RFC 08/30] NFCT: rework heitzenberger
2008-02-01 1:23 ` Pablo Neira Ayuso
2008-02-01 8:09 ` Holger Eitzenberger
2008-02-01 9:11 ` Patrick McHardy
2008-02-01 13:37 ` Pablo Neira Ayuso
2008-02-01 16:19 ` Holger Eitzenberger
2008-02-01 16:47 ` Pablo Neira Ayuso [this message]
2008-02-01 17:06 ` Holger Eitzenberger
2008-02-02 21:10 ` Pablo Neira Ayuso
2008-02-01 9:10 ` Patrick McHardy
2008-02-01 9:38 ` Patrick McHardy
2008-02-02 16:20 ` [PATCH] " Eric Leblond
2008-02-02 20:07 ` Holger Eitzenberger
2008-01-30 18:58 ` [ULOGD RFC 09/30] Port to ulogd 2.00, mostly a rewrite heitzenberger
2008-01-30 18:58 ` [ULOGD RFC 10/30] Initial round to make plugins reconfigurable heitzenberger
2008-01-30 18:58 ` [ULOGD RFC 11/30] NFCT: make reconfigurable heitzenberger
2008-01-30 19:30 ` NFCT ulogd pluging [was Re: [ULOGD RFC 11/30] NFCT: make reconfigurable] Pablo Neira Ayuso
2008-01-30 19:51 ` Patrick McHardy
2008-01-30 20:39 ` Harald Welte
2008-01-30 21:04 ` Holger Eitzenberger
2008-02-01 1:17 ` Pablo Neira Ayuso
2008-01-30 18:58 ` [ULOGD RFC 12/30] SQLITE3: make reconfigurable heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 13/30] NFCT: add disable switch heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 14/30] SQLITLE3: " heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 15/30] NFCT: add sequence cache heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 16/30] SQLITE3: handle locked DB smarter heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 17/30] NFCT: use localtime for timestamps heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 18/30] NFCT: properly account both directions in all cases heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 19/30] llist: add llist_for_each_prev_safe() heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 20/30] SQLITE3: generalize error handling heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 21/30] Improve select performance heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 22/30] Add set_sockbuf_len() heitzenberger
2008-02-01 3:50 ` Pablo Neira Ayuso
2008-02-01 8:20 ` Holger Eitzenberger
2008-02-01 9:20 ` Patrick McHardy
2008-01-30 18:59 ` [ULOGD RFC 23/30] NFCT: make sequence cache bigger, make handling smarter heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 24/30] NFCT: increase socket buffers heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 25/30] Introduce global state, skip some stacks during reconfiguration heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 26/30] llist: turn poisoning off by default heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 27/30] NFCT: cleanup direction handling heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 28/30] NFCT: fix start/stop handling heitzenberger
2008-01-30 18:59 ` [ULOGD RFC 29/30] NFCT: adapt to new libnetfilter_conntrack heitzenberger
2008-02-01 3:55 ` Pablo Neira Ayuso
2008-02-01 8:33 ` Holger Eitzenberger
2008-01-30 18:59 ` [ULOGD RFC 30/30] SQLITE3: move timer initialization to start handler heitzenberger
2008-01-30 19:18 ` [ULOGD RFC 00/30] [ULOGD RFC] ulogd V2 improvements, round #1 Patrick McHardy
2008-01-30 20:59 ` Holger Eitzenberger
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=47A34D28.2010303@netfilter.org \
--to=pablo@netfilter.org \
--cc=heitzenberger@astaro.com \
--cc=kaber@trash.net \
--cc=netfilter-devel@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox