Re: [ULOGD PATCH] rework, fill MAC address in ULOG for ethernet.

Linux Netfilter development
 help / color / mirror / Atom feed

From: Patrick McHardy <kaber@trash.net>
To: Eric Leblond <eric@inl.fr>, Patrick McHardy <kaber@trash.net>,
	Pablo Neira Ayuso <pablo@netfilter.org>,
	netfilter-devel@vger.kernel.org
Subject: Re: [ULOGD PATCH] rework, fill MAC address in ULOG for ethernet.
Date: Tue, 15 Jul 2008 15:26:28 +0200	[thread overview]
Message-ID: <487CA584.3030200@trash.net> (raw)
In-Reply-To: <20080715124924.GA7175@khasse.inl.fr>

Eric Leblond wrote:
> Hello,
> 
> On Friday, 2008 July 11 at 16:08:50 +0200, Patrick McHardy wrote:
>>>> This comment made me believe that it would break header
>>>> printing for non-ethernet packets. If that is not true,
>>>> I have no objections.
>>> Hmm, you're right but user using non-ethernet packets can upgrade to
>>> NFLOG ;)
>> I assume thats not meant seriously :) But we should integrate
>> new features into the new things, not break old things and
>> expect users to upgrade :)
> 
> Well, we still have a problem here:
>  * ULOG logs raw hardware header
>  * NFLOG logs source hardware address only
>  * SQL output module only support real MAC address (at least for PGSQL which
>  has a dedicated type)
> 
> I'm not able to find a clean and easy way to fix this.
> 
> Here's some possible solutions:
>  * Modify mac type in database to support everything:
>   * Performance impact
>   * Different datatypes in same field :(

It seems we already have a problem here since we can't put
other link layer headers in the database.

>  * NFLOG modification to log full hardware header:
>   * Will revert to a non parsable field :(

How about extending nfnetlink_log to include the full MAC header
and link layer type? That will make it a superset of ULOG.

>  * ULOG header parsing:
>   * Incomplete and untrustable by design
>   * May be able to retrieve source HW address info in most cases
>   * ULOG could output fields raw.mac and raw.mac.saddr to ensure
>   compatibility with older applications

Why don't you do something similar to your previous patch,
but instead of refusing unknown header lengths, treat
them as before?

> IMHO last solution is the less worst one. If it seems ok for you, I will
> provide a patchset implementing this solution.

I don't think I understand the problem well enough yet
to make that decision. Generally, I'm fine with anything
that doesn't break existing features and doesn't stand
in the way of correctly handling non-ethernet headers.

next prev parent reply	other threads:[~2008-07-15 13:26 UTC|newest]

Thread overview: 50+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2008-06-19 12:23 [ULOGD PATCH 0/6] Fix difference between ULOG and NFLOG Eric Leblond
2008-06-19 12:23 ` [ULOGD PATCH 1/6] Suppress spaces at end of line Eric Leblond
2008-06-23 14:23   ` Pablo Neira Ayuso
2008-06-19 12:23 ` [ULOGD PATCH 2/6] Convert struct to [KEY] = {} format Eric Leblond
2008-06-23 14:23   ` Pablo Neira Ayuso
2008-06-19 12:23 ` [ULOGD PATCH 3/6] Fix warning about unused variable if NFLOG_GID is not available Eric Leblond
2008-06-23 14:25   ` Pablo Neira Ayuso
2008-06-27 19:41     ` Eric Leblond
2008-06-27 20:29       ` Eric Leblond
2008-06-28  9:54         ` Pablo Neira Ayuso
2008-06-28 10:25           ` Eric Leblond
2008-06-28 10:45             ` Pablo Neira Ayuso
2008-06-28 10:45             ` Pablo Neira Ayuso
2008-06-19 12:23 ` [ULOGD PATCH 4/6] Introduce datatype and hwaddrlen param to MAC2STR plugin Eric Leblond
2008-06-23 14:42   ` Pablo Neira Ayuso
2008-06-27 23:02     ` [ULOGD PATCH 0/6] rework mac address related issues Eric Leblond
2008-06-27 23:02     ` [ULOGD PATCH 1/6] Specify that NFLOG only return mac saddr Eric Leblond
2008-06-27 23:02     ` [ULOGD PATCH 2/6] Adapt MAC2STR to NFLOG and ULOG input key change Eric Leblond
2008-06-27 23:02     ` [ULOGD PATCH 3/6] Output mac.saddr and mac.daddr in ULOG plugin Eric Leblond
2008-07-02 13:52       ` [ULOGD PATCH] Output mac.saddr, mac.daddr and oob.protocol " Eric Leblond
2008-07-02 13:56         ` Patrick McHardy
2008-07-08 21:56           ` [ULOGD PATCH] rework, fill MAC address in ULOG for ethernet Eric Leblond
2008-07-09 10:50             ` Pablo Neira Ayuso
2008-07-09 10:53               ` Patrick McHardy
2008-07-09 11:03                 ` Pablo Neira Ayuso
2008-07-09 11:10                   ` Patrick McHardy
2008-07-09 21:04                     ` Eric Leblond
2008-07-09 21:18                       ` Patrick McHardy
2008-07-10 20:39                         ` Eric Leblond
2008-07-11 14:08                           ` Patrick McHardy
2008-07-15 12:49                             ` Eric Leblond
2008-07-15 13:26                               ` Patrick McHardy [this message]
2008-07-16 22:24                                 ` netfilter: Send complete hardware header in NFLOG Eric Leblond
2008-07-17  9:01                                   ` Patrick McHardy
2008-07-17  9:12                                     ` Eric Leblond
2008-07-17  9:14                                       ` Patrick McHardy
2008-07-16 22:29                                 ` [libnetfilter_log PATCH] Add parsing function for raw hardware header Eric Leblond
2008-07-17  9:13                                   ` Patrick McHardy
2008-07-16 22:31                                 ` [ULOGD2 PATCH] Sync NFLOG input plugin with NFLOG modification related to " Eric Leblond
2008-07-20 23:51                                   ` Pablo Neira Ayuso
2008-06-27 23:02     ` [ULOGD PATCH 4/6] Parse oob protocol in ULOG when possible Eric Leblond
2008-06-27 23:02     ` [ULOGD PATCH 5/6] Add destination mac_addr to database Eric Leblond
2008-06-27 23:03     ` [ULOGD PATCH 6/6] Sync PRINTPKT with mac modification Eric Leblond
2008-06-19 12:23 ` [ULOGD PATCH 5/6] Add destination mac_addr to database Eric Leblond
2008-06-23 14:44   ` Pablo Neira Ayuso
2008-06-19 12:23 ` [ULOGD PATCH 6/6] Suppress verbose debug message in ULOG Eric Leblond
2008-06-23 14:46   ` Pablo Neira Ayuso
2008-06-19 12:25 ` netfilter: Make NFLOG dump all hardware header Eric Leblond
2008-06-19 12:30   ` Patrick McHardy
2008-06-19 12:55   ` [PATCH] Change packet hw header struct accordingly to NFLOG update Eric Leblond

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=487CA584.3030200@trash.net \
    --to=kaber@trash.net \
    --cc=eric@inl.fr \
    --cc=netfilter-devel@vger.kernel.org \
    --cc=pablo@netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox